From 429e873981c0d51d509c6351605e9bb74d373064 Mon Sep 17 00:00:00 2001
From: rtrouton <rtrouton@yahoo.com>
Date: Mon, 11 Sep 2023 14:25:44 -0400
Subject: [PATCH] Uploading Privileges 1.5.4 source code

Uploading Privileges 1.5.4 source code, which includes security updates to address CVE-2023-40307.
---
 source/Constants.h                            | 50 +++++++++----------
 source/MTAuthCommon.h                         |  2 +-
 source/MTAuthCommon.m                         |  2 +-
 source/MTIdentity.h                           |  2 +-
 source/MTIdentity.m                           |  2 +-
 source/Privileges.xcodeproj/project.pbxproj   | 39 +++++++++------
 source/Privileges/AppDelegate.h               |  2 +-
 source/Privileges/AppDelegate.m               | 18 +++----
 source/Privileges/Base.lproj/MainMenu.xib     |  4 +-
 source/Privileges/Info.plist                  |  4 +-
 source/Privileges/MTNotification.h            |  2 +-
 source/Privileges/MTNotification.m            |  2 +-
 source/Privileges/Privileges.mobileconfig     | 12 +++++
 source/Privileges/de.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/de.lproj/Localizable.strings   |  6 +--
 source/Privileges/en.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/en.lproj/Localizable.strings   |  4 +-
 source/Privileges/es.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/es.lproj/Localizable.strings   |  4 +-
 source/Privileges/fr.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/fr.lproj/Localizable.strings   |  4 +-
 source/Privileges/it.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/it.lproj/Localizable.strings   |  4 +-
 source/Privileges/main.m                      |  2 +-
 source/Privileges/nl.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/nl.lproj/Localizable.strings   |  4 +-
 source/Privileges/pl.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/pl.lproj/Localizable.strings   |  4 +-
 source/Privileges/ru.lproj/InfoPlist.strings  |  4 +-
 .../Privileges/ru.lproj/Localizable.strings   |  4 +-
 .../zh-Hans.lproj/InfoPlist.strings           |  4 +-
 .../zh-Hans.lproj/Localizable.strings         |  4 +-
 source/PrivilegesCLI/main.m                   | 24 +++++----
 source/PrivilegesHelper/PrivilegesHelper.h    |  2 +-
 source/PrivilegesHelper/PrivilegesHelper.m    | 12 ++---
 source/PrivilegesHelper/main.m                |  2 +-
 source/PrivilegesTile/Info.plist              |  2 +-
 source/PrivilegesTile/PrivilegesTile.h        |  2 +-
 source/PrivilegesTile/PrivilegesTile.m        |  2 +-
 source/PrivilegesXPC/PrivilegesXPC.m          |  6 +--
 40 files changed, 146 insertions(+), 123 deletions(-)

diff --git a/source/Constants.h b/source/Constants.h
index 4ce5b81..c9598cd 100644
--- a/source/Constants.h
+++ b/source/Constants.h
@@ -1,6 +1,6 @@
 /*
  Constants.h
- Copyright 2022 SAP SE
+ Copyright 2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -15,28 +15,28 @@
  limitations under the License.
  */
 
-#define kMTAdminGroupID                 80
-#define kMTDockTimeoutDefault           20
-#define kMTReasonMinLengthDefault       10
-#define kMTReasonMaxLengthDefault       100
-#define kMTFixedTimeoutValues           @[@0, @5, @10, @20, @60]
+#define kMTAdminGroupID                     80
+#define kMTDockTimeoutDefault               20
+#define kMTReasonMinLengthDefault           10
+#define kMTReasonMaxLengthDefault           100
+#define kMTFixedTimeoutValues               @[@0, @5, @10, @20, @60]
 
-#define kMTDefaultsToggleTimeout        @"DockToggleTimeout"
-#define kMTDefaultsToggleMaxTimeout     @"DockToggleMaxTimeout"
-#define kMTDefaultsEnforcePrivileges    @"EnforcePrivileges"
-#define kMTDefaultsAuthRequired         @"RequireAuthentication"
-#define kMTDefaultsLimitToUser          @"LimitToUser"
-#define kMTDefaultsLimitToGroup         @"LimitToGroup"
-#define kMTDefaultsRequireReason        @"ReasonRequired"
-#define kMTDefaultsReasonMinLength      @"ReasonMinLength"
-#define kMTDefaultsReasonMaxLength      @"ReasonMaxLength"
-#define kMTDefaultsReasonPresets        @"ReasonPresetList"
-#define kMTDefaultsRemoteLogging        @"RemoteLogging"
-#define kMTDefaultsRLServerType         @"ServerType"
-#define kMTDefaultsRLServerAddress      @"ServerAddress"
-#define kMTDefaultsRLServerPort         @"ServerPort"
-#define kMTDefaultsRLEnableTCP          @"EnableTCP"
-#define kMTDefaultsRLSyslogOptions      @"SyslogOptions"
-#define kMTDefaultsRLSyslogFacility     @"LogFacility"
-#define kMTDefaultsRLSyslogSeverity     @"LogSeverity"
-#define kMTDefaultsRLSyslogMaxSize      @"MaximumMessageSize"
+#define kMTDefaultsToggleTimeout            @"DockToggleTimeout"
+#define kMTDefaultsToggleMaxTimeout         @"DockToggleMaxTimeout"
+#define kMTDefaultsEnforcePrivileges        @"EnforcePrivileges"
+#define kMTDefaultsAuthRequired             @"RequireAuthentication"
+#define kMTDefaultsLimitToUser              @"LimitToUser"
+#define kMTDefaultsLimitToGroup             @"LimitToGroup"
+#define kMTDefaultsRequireReason            @"ReasonRequired"
+#define kMTDefaultsReasonMinLength          @"ReasonMinLength"
+#define kMTDefaultsReasonMaxLength          @"ReasonMaxLength"
+#define kMTDefaultsReasonPresets            @"ReasonPresetList"
+#define kMTDefaultsRemoteLogging            @"RemoteLogging"
+#define kMTDefaultsRLServerType             @"ServerType"
+#define kMTDefaultsRLServerAddress          @"ServerAddress"
+#define kMTDefaultsRLServerPort             @"ServerPort"
+#define kMTDefaultsRLEnableTCP              @"EnableTCP"
+#define kMTDefaultsRLSyslogOptions          @"SyslogOptions"
+#define kMTDefaultsRLSyslogFacility         @"LogFacility"
+#define kMTDefaultsRLSyslogSeverity         @"LogSeverity"
+#define kMTDefaultsRLSyslogMaxSize          @"MaximumMessageSize"
diff --git a/source/MTAuthCommon.h b/source/MTAuthCommon.h
index 7cf224b..3439145 100644
--- a/source/MTAuthCommon.h
+++ b/source/MTAuthCommon.h
@@ -1,6 +1,6 @@
 /*
  MTAuthCommon.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/MTAuthCommon.m b/source/MTAuthCommon.m
index 175ce9d..dc9e54c 100644
--- a/source/MTAuthCommon.m
+++ b/source/MTAuthCommon.m
@@ -1,6 +1,6 @@
 /*
  MTAuthCommon.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/MTIdentity.h b/source/MTIdentity.h
index 13e0e48..07a30d4 100644
--- a/source/MTIdentity.h
+++ b/source/MTIdentity.h
@@ -1,6 +1,6 @@
 /*
  MTIdentity.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/MTIdentity.m b/source/MTIdentity.m
index c51d7f6..c8892a1 100644
--- a/source/MTIdentity.m
+++ b/source/MTIdentity.m
@@ -1,6 +1,6 @@
 /*
  MTIdentity.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/Privileges.xcodeproj/project.pbxproj b/source/Privileges.xcodeproj/project.pbxproj
index edd20a1..9ee7185 100644
--- a/source/Privileges.xcodeproj/project.pbxproj
+++ b/source/Privileges.xcodeproj/project.pbxproj
@@ -524,7 +524,8 @@
 		ADA960591C905F36002AEFEA /* Project object */ = {
 			isa = PBXProject;
 			attributes = {
-				LastUpgradeCheck = 1400;
+				BuildIndependentTargetsInParallel = YES;
+				LastUpgradeCheck = 1500;
 				ORGANIZATIONNAME = "SAP SE";
 				TargetAttributes = {
 					AD703CF22385361700A8D946 = {
@@ -822,8 +823,8 @@
 				ENABLE_HARDENED_RUNTIME = YES;
 				GCC_C_LANGUAGE_STANDARD = gnu11;
 				INFOPLIST_FILE = PrivilegesXPC/Info.plist;
-				MACOSX_DEPLOYMENT_TARGET = 10.12;
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				MTL_ENABLE_DEBUG_INFO = INCLUDE_SOURCE;
 				MTL_FAST_MATH = YES;
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges.xpc;
@@ -849,8 +850,8 @@
 				ENABLE_HARDENED_RUNTIME = YES;
 				GCC_C_LANGUAGE_STANDARD = gnu11;
 				INFOPLIST_FILE = PrivilegesXPC/Info.plist;
-				MACOSX_DEPLOYMENT_TARGET = 10.12;
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				MTL_FAST_MATH = YES;
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges.xpc;
 				PRODUCT_NAME = "$(TARGET_NAME)";
@@ -985,13 +986,14 @@
 					"$(SYSTEM_LIBRARY_DIR)/PrivateFrameworks",
 				);
 				INFOPLIST_FILE = Privileges/Info.plist;
+				INFOPLIST_KEY_LSApplicationCategoryType = "public.app-category.utilities";
 				LD_RUNPATH_SEARCH_PATHS = (
 					"$(inherited)",
 					"@loader_path/../Frameworks",
 					"@executable_path/../Frameworks",
 				);
-				MACOSX_DEPLOYMENT_TARGET = 10.12;
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges;
 				PRODUCT_NAME = "$(TARGET_NAME)";
 			};
@@ -1016,13 +1018,14 @@
 					"$(SYSTEM_LIBRARY_DIR)/PrivateFrameworks",
 				);
 				INFOPLIST_FILE = Privileges/Info.plist;
+				INFOPLIST_KEY_LSApplicationCategoryType = "public.app-category.utilities";
 				LD_RUNPATH_SEARCH_PATHS = (
 					"$(inherited)",
 					"@loader_path/../Frameworks",
 					"@executable_path/../Frameworks",
 				);
-				MACOSX_DEPLOYMENT_TARGET = 10.12;
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges;
 				PRODUCT_NAME = "$(TARGET_NAME)";
 			};
@@ -1038,7 +1041,8 @@
 				DEVELOPMENT_TEAM = 7R5ZEU67FQ;
 				ENABLE_HARDENED_RUNTIME = YES;
 				INFOPLIST_FILE = "PrivilegesHelper/PrivilegesHelper-Info.plist";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = (
 					"-sectcreate",
 					__TEXT,
@@ -1061,7 +1065,8 @@
 				DEVELOPMENT_TEAM = 7R5ZEU67FQ;
 				ENABLE_HARDENED_RUNTIME = YES;
 				INFOPLIST_FILE = "PrivilegesHelper/PrivilegesHelper-Info.plist";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = (
 					"-sectcreate",
 					__TEXT,
@@ -1085,7 +1090,8 @@
 				DEVELOPMENT_TEAM = 7R5ZEU67FQ;
 				ENABLE_HARDENED_RUNTIME = YES;
 				INFOPLIST_FILE = "$(SRCROOT)/PrivilegesCLI/PrivilegesCLI-Info.plist";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = "";
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges.cli;
 				PRODUCT_NAME = "$(TARGET_NAME)";
@@ -1104,7 +1110,8 @@
 				DEVELOPMENT_TEAM = 7R5ZEU67FQ;
 				ENABLE_HARDENED_RUNTIME = YES;
 				INFOPLIST_FILE = "$(SRCROOT)/PrivilegesCLI/PrivilegesCLI-Info.plist";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = "";
 				PRODUCT_BUNDLE_IDENTIFIER = corp.sap.privileges.cli;
 				PRODUCT_NAME = "$(TARGET_NAME)";
@@ -1149,7 +1156,8 @@
 				GCC_WARN_UNUSED_FUNCTION = YES;
 				INFOPLIST_FILE = PrivilegesTile/Info.plist;
 				INSTALL_PATH = "$(LOCAL_LIBRARY_DIR)/Bundles";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = (
 					"-framework",
 					AppKit,
@@ -1202,7 +1210,8 @@
 				GCC_WARN_UNUSED_FUNCTION = YES;
 				INFOPLIST_FILE = PrivilegesTile/Info.plist;
 				INSTALL_PATH = "$(LOCAL_LIBRARY_DIR)/Bundles";
-				MARKETING_VERSION = 1.5.3;
+				MACOSX_DEPLOYMENT_TARGET = 10.13;
+				MARKETING_VERSION = 1.5.4;
 				OTHER_LDFLAGS = (
 					"-framework",
 					AppKit,
diff --git a/source/Privileges/AppDelegate.h b/source/Privileges/AppDelegate.h
index 5a02c49..e9cd722 100644
--- a/source/Privileges/AppDelegate.h
+++ b/source/Privileges/AppDelegate.h
@@ -1,6 +1,6 @@
 /*
  AppDelegate.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/Privileges/AppDelegate.m b/source/Privileges/AppDelegate.m
index e053320..f0e331e 100644
--- a/source/Privileges/AppDelegate.m
+++ b/source/Privileges/AppDelegate.m
@@ -1,6 +1,6 @@
 /*
  AppDelegate.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -190,13 +190,13 @@ - (void)changeAdminGroup:(NSString*)userName remove:(BOOL)remove
     [self connectAndExecuteCommandBlock:^(NSError *connectError) {
         
           if (connectError) {
-              os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", connectError);
+              os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", connectError);
               [self displayErrorNotificationAndExit];
               
           } else {
               
               [[self.helperToolConnection remoteObjectProxyWithErrorHandler:^(NSError *proxyError) {
-                  os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", proxyError);
+                  os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", proxyError);
                   [self displayErrorNotificationAndExit];
                   
               }] changeAdminRightsForUser:userName
@@ -206,7 +206,7 @@ - (void)changeAdminGroup:(NSString*)userName remove:(BOOL)remove
                                 withReply:^(NSError *error) {
                   
                   if (error) {
-                      os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Unable to change privileges: %{public}@", error);
+                      os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Unable to change privileges: %{public}@", error);
                       [self displayErrorNotificationAndExit];
                 
                   } else {
@@ -285,12 +285,12 @@ - (void)checkForHelper
 
 - (void)helperCheckFailed:(NSString*)errorMessage
 {
-    os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", errorMessage);
+    os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", errorMessage);
     
     [self connectToXPCService];
     [[self.xpcServiceConnection remoteObjectProxyWithErrorHandler:^(NSError *proxyError) {
         
-        os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", proxyError);
+        os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", proxyError);
         
         [self displayDialog:NSLocalizedString(@"notificationText_Error", nil)
                 messageText:nil
@@ -309,7 +309,7 @@ - (void)helperCheckFailed:(NSString*)errorMessage
             
         } else {
             
-            os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Installation of the helper tool failed: %{public}@", installError);
+            os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Installation of the helper tool failed: %{public}@", installError);
             
             [self displayDialog:NSLocalizedString(@"notificationText_Error", nil)
                     messageText:nil
@@ -841,11 +841,11 @@ -(void)applicationWillTerminate:(NSNotification *)aNotification
     [self connectAndExecuteCommandBlock:^(NSError * connectError) {
         
            if (connectError) {
-               os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", connectError);
+               os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", connectError);
            } else {
                
                [[self.helperToolConnection remoteObjectProxyWithErrorHandler:^(NSError *proxyError) {
-                   os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! %{public}@", proxyError);
+                   os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: %{public}@", proxyError);
                }] quitHelperTool];
            }
        }
diff --git a/source/Privileges/Base.lproj/MainMenu.xib b/source/Privileges/Base.lproj/MainMenu.xib
index 028c391..5d95c41 100644
--- a/source/Privileges/Base.lproj/MainMenu.xib
+++ b/source/Privileges/Base.lproj/MainMenu.xib
@@ -1,8 +1,8 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<document type="com.apple.InterfaceBuilder3.Cocoa.XIB" version="3.0" toolsVersion="21179.7" targetRuntime="MacOSX.Cocoa" propertyAccessControl="none" useAutolayout="YES" customObjectInstantitationMethod="direct">
+<document type="com.apple.InterfaceBuilder3.Cocoa.XIB" version="3.0" toolsVersion="21507" targetRuntime="MacOSX.Cocoa" propertyAccessControl="none" useAutolayout="YES" customObjectInstantitationMethod="direct">
     <dependencies>
         <deployment identifier="macosx"/>
-        <plugIn identifier="com.apple.InterfaceBuilder.CocoaPlugin" version="21179.7"/>
+        <plugIn identifier="com.apple.InterfaceBuilder.CocoaPlugin" version="21507"/>
         <capability name="documents saved in the Xcode 8 format" minToolsVersion="8.0"/>
     </dependencies>
     <objects>
diff --git a/source/Privileges/Info.plist b/source/Privileges/Info.plist
index c9dddfc..9ac4737 100644
--- a/source/Privileges/Info.plist
+++ b/source/Privileges/Info.plist
@@ -19,7 +19,7 @@
 	<key>CFBundleSignature</key>
 	<string>????</string>
 	<key>CFBundleVersion</key>
-	<string>1330</string>
+	<string>1375</string>
 	<key>LSApplicationCategoryType</key>
 	<string>public.app-category.utilities</string>
 	<key>LSMinimumSystemVersion</key>
@@ -27,7 +27,7 @@
 	<key>NSDockTilePlugIn</key>
 	<string>PrivilegesTile.docktileplugin</string>
 	<key>NSHumanReadableCopyright</key>
-	<string>Copyright © 2016-2022 SAP SE. All rights reserved.</string>
+	<string>Copyright © 2016-2023 SAP SE. All rights reserved.</string>
 	<key>NSMainNibFile</key>
 	<string>MainMenu</string>
 	<key>NSPrincipalClass</key>
diff --git a/source/Privileges/MTNotification.h b/source/Privileges/MTNotification.h
index 210f4d4..742bb10 100644
--- a/source/Privileges/MTNotification.h
+++ b/source/Privileges/MTNotification.h
@@ -1,6 +1,6 @@
 /*
  MTNotification.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/Privileges/MTNotification.m b/source/Privileges/MTNotification.m
index fe958d9..2cf2a2d 100644
--- a/source/Privileges/MTNotification.m
+++ b/source/Privileges/MTNotification.m
@@ -1,6 +1,6 @@
 /*
  MTNotification.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/Privileges/Privileges.mobileconfig b/source/Privileges/Privileges.mobileconfig
index e107612..dcb8435 100644
--- a/source/Privileges/Privileges.mobileconfig
+++ b/source/Privileges/Privileges.mobileconfig
@@ -175,6 +175,18 @@ limitations under the License.
 
 								</array>
 								
+								<!--
+                                    key: PostChangeExecutablePath
+                                    value: a string containing the absolute path to an executable 
+                                    
+                                    The specified executable is called whenever privileges changed. 
+                                    The name of the user who changed admin rights and the state of 
+                                    the admin rights (0 or 1) are provided as arguments $1 and $2. 
+                                    the executable is launched as the actual user (not as root).
+                                -->
+								<key>PostChangeExecutablePath</key>
+								<string>/Library/Application Support/Privileges/PrivilegesChanged.sh</string>
+								
 								<!--
                                     key: RemoteLogging
                                     value: a dictionary containing the server information:
diff --git a/source/Privileges/de.lproj/InfoPlist.strings b/source/Privileges/de.lproj/InfoPlist.strings
index 9a2463c..297d16b 100644
--- a/source/Privileges/de.lproj/InfoPlist.strings
+++ b/source/Privileges/de.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Alle Rechte vorbehalten.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Alle Rechte vorbehalten.";
diff --git a/source/Privileges/de.lproj/Localizable.strings b/source/Privileges/de.lproj/Localizable.strings
index b9cda8a..4d1c0b7 100644
--- a/source/Privileges/de.lproj/Localizable.strings
+++ b/source/Privileges/de.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -96,11 +96,11 @@
 // even more characters
 "evenMoreChars" = "%ld Zeichen";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
-"otherMenuEntry" = "Anderer…";
+"otherMenuEntry" = "Anderer …";
 
 // the message of the dialog box where the user has to provide a reason for getting admin rights. This version of
 // the text appears if the pop-up menu containing the pre-defined reasons is visible
diff --git a/source/Privileges/en.lproj/InfoPlist.strings b/source/Privileges/en.lproj/InfoPlist.strings
index 14d82f2..420534a 100644
--- a/source/Privileges/en.lproj/InfoPlist.strings
+++ b/source/Privileges/en.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. All rights reserved.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. All rights reserved.";
diff --git a/source/Privileges/en.lproj/Localizable.strings b/source/Privileges/en.lproj/Localizable.strings
index d4bd388..21e67bf 100644
--- a/source/Privileges/en.lproj/Localizable.strings
+++ b/source/Privileges/en.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld characters";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/es.lproj/InfoPlist.strings b/source/Privileges/es.lproj/InfoPlist.strings
index 51a5e22..24cf86b 100644
--- a/source/Privileges/es.lproj/InfoPlist.strings
+++ b/source/Privileges/es.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Todos los derechos reservados.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Todos los derechos reservados.";
diff --git a/source/Privileges/es.lproj/Localizable.strings b/source/Privileges/es.lproj/Localizable.strings
index cab345a..8b20772 100644
--- a/source/Privileges/es.lproj/Localizable.strings
+++ b/source/Privileges/es.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld caracteres";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/fr.lproj/InfoPlist.strings b/source/Privileges/fr.lproj/InfoPlist.strings
index 14d82f2..420534a 100644
--- a/source/Privileges/fr.lproj/InfoPlist.strings
+++ b/source/Privileges/fr.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. All rights reserved.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. All rights reserved.";
diff --git a/source/Privileges/fr.lproj/Localizable.strings b/source/Privileges/fr.lproj/Localizable.strings
index 6d19d2a..a9bb038 100644
--- a/source/Privileges/fr.lproj/Localizable.strings
+++ b/source/Privileges/fr.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld caractères";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/it.lproj/InfoPlist.strings b/source/Privileges/it.lproj/InfoPlist.strings
index 36dd88f..2ce15a8 100644
--- a/source/Privileges/it.lproj/InfoPlist.strings
+++ b/source/Privileges/it.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Tutti i diritti riservati.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Tutti i diritti riservati.";
diff --git a/source/Privileges/it.lproj/Localizable.strings b/source/Privileges/it.lproj/Localizable.strings
index 0c90d4b..c152938 100644
--- a/source/Privileges/it.lproj/Localizable.strings
+++ b/source/Privileges/it.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld caratteri";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/main.m b/source/Privileges/main.m
index cea40a1..9ebed0c 100644
--- a/source/Privileges/main.m
+++ b/source/Privileges/main.m
@@ -1,6 +1,6 @@
 /*
  main.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/Privileges/nl.lproj/InfoPlist.strings b/source/Privileges/nl.lproj/InfoPlist.strings
index 534ff72..1df41e7 100644
--- a/source/Privileges/nl.lproj/InfoPlist.strings
+++ b/source/Privileges/nl.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Alle rechten voorbehouden.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Alle rechten voorbehouden.";
diff --git a/source/Privileges/nl.lproj/Localizable.strings b/source/Privileges/nl.lproj/Localizable.strings
index 07ee2b1..308a774 100644
--- a/source/Privileges/nl.lproj/Localizable.strings
+++ b/source/Privileges/nl.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld karakters";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/pl.lproj/InfoPlist.strings b/source/Privileges/pl.lproj/InfoPlist.strings
index 940c680..15b1f89 100644
--- a/source/Privileges/pl.lproj/InfoPlist.strings
+++ b/source/Privileges/pl.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Wszystkie prawa zastrzeżone.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Wszystkie prawa zastrzeżone.";
diff --git a/source/Privileges/pl.lproj/Localizable.strings b/source/Privileges/pl.lproj/Localizable.strings
index a97d3c7..7e40751 100644
--- a/source/Privileges/pl.lproj/Localizable.strings
+++ b/source/Privileges/pl.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld znaków";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "5";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/ru.lproj/InfoPlist.strings b/source/Privileges/ru.lproj/InfoPlist.strings
index ee521d3..8c46f11 100644
--- a/source/Privileges/ru.lproj/InfoPlist.strings
+++ b/source/Privileges/ru.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. Все права сохранены.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. Все права сохранены.";
diff --git a/source/Privileges/ru.lproj/Localizable.strings b/source/Privileges/ru.lproj/Localizable.strings
index bc55552..64b2528 100644
--- a/source/Privileges/ru.lproj/Localizable.strings
+++ b/source/Privileges/ru.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/Privileges/zh-Hans.lproj/InfoPlist.strings b/source/Privileges/zh-Hans.lproj/InfoPlist.strings
index 14d82f2..420534a 100644
--- a/source/Privileges/zh-Hans.lproj/InfoPlist.strings
+++ b/source/Privileges/zh-Hans.lproj/InfoPlist.strings
@@ -1,6 +1,6 @@
 /*
  InfoPlist.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -16,4 +16,4 @@
  */
 
 // the copyright string (for the application's info window in Finder)
-"NSHumanReadableCopyright" = "© 2016-2022 SAP SE. All rights reserved.";
+"NSHumanReadableCopyright" = "© 2016-2023 SAP SE. All rights reserved.";
diff --git a/source/Privileges/zh-Hans.lproj/Localizable.strings b/source/Privileges/zh-Hans.lproj/Localizable.strings
index 335a868..e79b719 100644
--- a/source/Privileges/zh-Hans.lproj/Localizable.strings
+++ b/source/Privileges/zh-Hans.lproj/Localizable.strings
@@ -1,6 +1,6 @@
 /*
  Localizable.strings
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -99,7 +99,7 @@
 // even more characters
 "evenMoreChars" = "%ld个字符";
 
-// the value to differenciate between "more" and "even more" characters (if applicable)
+// the value to differentiate between "more" and "even more" characters (if applicable)
 "evenMoreCharsThreshold" = "";
 
 // the default menu entry "Other…" (other reason) for the reason pop-up button
diff --git a/source/PrivilegesCLI/main.m b/source/PrivilegesCLI/main.m
index f38ba5b..902398f 100644
--- a/source/PrivilegesCLI/main.m
+++ b/source/PrivilegesCLI/main.m
@@ -1,6 +1,6 @@
 /*
  main.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -28,6 +28,7 @@ @interface Main : NSObject
 @property (atomic, strong, readwrite) NSXPCConnection *helperToolConnection;
 @property (atomic, strong, readwrite) NSString *currentUser;
 @property (atomic, strong, readwrite) NSString *adminReason;
+@property (atomic, strong, readwrite) NSUserDefaults *userDefaults;
 @property (atomic, assign) BOOL grantAdminRights;
 @property (atomic, assign) BOOL shouldTerminate;
 @end
@@ -43,11 +44,11 @@ - (void)run
         _currentUser = NSUserName();
         
         // check if we're managed
-        NSUserDefaults *userDefaults = [[NSUserDefaults alloc] initWithSuiteName:@"corp.sap.privileges"];
+        _userDefaults = [[NSUserDefaults alloc] initWithSuiteName:@"corp.sap.privileges"];
         
-        NSString *enforcedPrivileges = ([userDefaults objectIsForcedForKey:kMTDefaultsEnforcePrivileges]) ? [userDefaults objectForKey:kMTDefaultsEnforcePrivileges] : nil;
-        NSString *limitToUser = ([userDefaults objectIsForcedForKey:kMTDefaultsLimitToUser]) ? [userDefaults objectForKey:kMTDefaultsLimitToUser] : nil;
-        NSString *limitToGroup = ([userDefaults objectIsForcedForKey:kMTDefaultsLimitToGroup]) ? [userDefaults objectForKey:kMTDefaultsLimitToGroup] : nil;
+        NSString *enforcedPrivileges = ([_userDefaults objectIsForcedForKey:kMTDefaultsEnforcePrivileges]) ? [_userDefaults objectForKey:kMTDefaultsEnforcePrivileges] : nil;
+        NSString *limitToUser = ([_userDefaults objectIsForcedForKey:kMTDefaultsLimitToUser]) ? [_userDefaults objectForKey:kMTDefaultsLimitToUser] : nil;
+        NSString *limitToGroup = ([_userDefaults objectIsForcedForKey:kMTDefaultsLimitToGroup]) ? [_userDefaults objectForKey:kMTDefaultsLimitToGroup] : nil;
         
         NSArray *theArguments = [NSArray arrayWithArray:[[NSProcessInfo processInfo] arguments]];
         NSString *lastArgument = [theArguments lastObject];
@@ -99,7 +100,7 @@ - (void)run
                         } else {
                             
                             // if admin rights are requested and authentication is required, we ask for the user's password ...
-                            if (_grantAdminRights && ([userDefaults objectIsForcedForKey:kMTDefaultsAuthRequired] && [userDefaults boolForKey:kMTDefaultsAuthRequired])) {
+                            if (_grantAdminRights && ([_userDefaults objectIsForcedForKey:kMTDefaultsAuthRequired] && [_userDefaults boolForKey:kMTDefaultsAuthRequired])) {
                                 
                                 char *password = getpass("Please enter your account password: ");
                                 NSString *userPassword = [NSString stringWithUTF8String:password];
@@ -110,16 +111,17 @@ - (void)run
                                 }
                             }
                             
-                            if (allowUsage && _grantAdminRights && ([userDefaults objectIsForcedForKey:kMTDefaultsRequireReason] && [userDefaults boolForKey:kMTDefaultsRequireReason])) {
+                            if (allowUsage && _grantAdminRights && ([_userDefaults objectIsForcedForKey:kMTDefaultsRequireReason] && [_userDefaults boolForKey:kMTDefaultsRequireReason])) {
                                 
                                 NSInteger minReasonLength = 0;
-                                if ([userDefaults objectIsForcedForKey:kMTDefaultsReasonMinLength]) { minReasonLength = [userDefaults integerForKey:kMTDefaultsReasonMinLength]; }
-                                if (minReasonLength <= 0) { minReasonLength = 10; }
+                                if ([_userDefaults objectIsForcedForKey:kMTDefaultsReasonMinLength]) { minReasonLength = [_userDefaults integerForKey:kMTDefaultsReasonMinLength]; }
+                                if (minReasonLength <= 0) { minReasonLength = kMTReasonMinLengthDefault; }
                                 
                                 _adminReason = nil;
-                                char reason[100] = {0};
+                                char reason[kMTReasonMaxLengthDefault] = {0};
                                 printf("Please enter the reason for needing admin rights (at least %ld characters): ", (long)minReasonLength);
-                                scanf("%[^\n]s", reason);
+                                fgets(reason, kMTReasonMaxLengthDefault, stdin);
+                                reason[strcspn(reason, "\n")] = '\0';
                                 NSString *reasonText = [NSString stringWithUTF8String:reason];
                                 
                                 if ([reasonText length] < minReasonLength) {
diff --git a/source/PrivilegesHelper/PrivilegesHelper.h b/source/PrivilegesHelper/PrivilegesHelper.h
index 0ab6ad2..cab6a5b 100644
--- a/source/PrivilegesHelper/PrivilegesHelper.h
+++ b/source/PrivilegesHelper/PrivilegesHelper.h
@@ -1,6 +1,6 @@
 /*
  PrivilegesHelper.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/PrivilegesHelper/PrivilegesHelper.m b/source/PrivilegesHelper/PrivilegesHelper.m
index f6ac4ce..72a0347 100644
--- a/source/PrivilegesHelper/PrivilegesHelper.m
+++ b/source/PrivilegesHelper/PrivilegesHelper.m
@@ -1,6 +1,6 @@
 /*
  PrivilegesHelper.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
@@ -63,7 +63,7 @@ - (void)run
 }
 
 - (BOOL)listener:(NSXPCListener *)listener shouldAcceptNewConnection:(NSXPCConnection *)newConnection
-// Called by our XPC listener when a new connection comes in.  We configure the connection
+// Called by our XPC listener when a new connection comes in. We configure the connection
 // with our protocol and ourselves as the main object.
 {
     assert(listener == _listener);
@@ -93,14 +93,14 @@ - (BOOL)listener:(NSXPCListener *)listener shouldAcceptNewConnection:(NSXPCConne
                 [newConnection resume];
                 
             } else {
-                os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Code signature verification failed");
+                os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Code signature verification failed");
             }
             
             CFRelease(taskRef);
         }
         
     } else {
-        os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Failed to get code signature: %{public}@", error);
+        os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Failed to get code signature: %{public}@", error);
     }
     
     return acceptConnection;
@@ -269,14 +269,14 @@ - (void)changeAdminRightsForUser:(NSString*)userName
                                 [_syslogServer sendMessage:message completionHandler:^(NSError *networkError) {
                                     
                                     if (networkError) {
-                                        os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Remote logging failed: %{public}@", networkError);
+                                        os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Remote logging failed: %{public}@", networkError);
                                     }
                                     
                                     dispatch_async(dispatch_get_main_queue(), ^{ self->_networkOperation = NO; });
                                 }];
                                 
                             } else {
-                                os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Remote logging is misconfigured");
+                                os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Remote logging is misconfigured");
                             }
                         }
                         
diff --git a/source/PrivilegesHelper/main.m b/source/PrivilegesHelper/main.m
index 5363423..f92fb76 100644
--- a/source/PrivilegesHelper/main.m
+++ b/source/PrivilegesHelper/main.m
@@ -1,6 +1,6 @@
 /*
  main.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/PrivilegesTile/Info.plist b/source/PrivilegesTile/Info.plist
index bbcaa4c..a5d8e35 100644
--- a/source/PrivilegesTile/Info.plist
+++ b/source/PrivilegesTile/Info.plist
@@ -21,7 +21,7 @@
 	<key>CFBundleVersion</key>
 	<string>$(CURRENT_PROJECT_VERSION)</string>
 	<key>NSHumanReadableCopyright</key>
-	<string>Copyright © 2016-2022 SAP SE. All rights reserved.</string>
+	<string>Copyright © 2016-2023 SAP SE. All rights reserved.</string>
 	<key>NSPrincipalClass</key>
 	<string>DockTile</string>
 </dict>
diff --git a/source/PrivilegesTile/PrivilegesTile.h b/source/PrivilegesTile/PrivilegesTile.h
index eee5fe9..c41e080 100644
--- a/source/PrivilegesTile/PrivilegesTile.h
+++ b/source/PrivilegesTile/PrivilegesTile.h
@@ -1,6 +1,6 @@
 /*
  PrivilegesTile.h
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/PrivilegesTile/PrivilegesTile.m b/source/PrivilegesTile/PrivilegesTile.m
index 7382f98..eb9763e 100644
--- a/source/PrivilegesTile/PrivilegesTile.m
+++ b/source/PrivilegesTile/PrivilegesTile.m
@@ -1,6 +1,6 @@
 /*
  PrivilegesTile.m
- Copyright 2016-2022 SAP SE
+ Copyright 2016-2023 SAP SE
  
  Licensed under the Apache License, Version 2.0 (the "License");
  you may not use this file except in compliance with the License.
diff --git a/source/PrivilegesXPC/PrivilegesXPC.m b/source/PrivilegesXPC/PrivilegesXPC.m
index 2be18dc..7072534 100644
--- a/source/PrivilegesXPC/PrivilegesXPC.m
+++ b/source/PrivilegesXPC/PrivilegesXPC.m
@@ -109,14 +109,14 @@ - (BOOL)listener:(NSXPCListener *)listener shouldAcceptNewConnection:(NSXPCConne
                 [newConnection resume];
     
             } else {
-                    os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Code signature verification failed");
+                    os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Code signature verification failed");
             }
                 
             CFRelease(taskRef);
         }
             
     } else {
-        os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Failed to get code signature: %{public}@", error);
+        os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Failed to get code signature: %{public}@", error);
     }
         
     return acceptConnection;
@@ -188,7 +188,7 @@ - (void)connectWithEndpointAndAuthorizationReply:(void(^)(NSXPCListenerEndpoint
 
         // Call the helper tool to get the endpoint we need.
         [[self.helperToolConnection remoteObjectProxyWithErrorHandler:^(NSError *proxyError) {
-            os_log(OS_LOG_DEFAULT, "SAPCorp: ERROR! Failed to connect to helper tool: %{public}@ / %{public}d", [proxyError domain], (int)[proxyError code]);
+            os_log_with_type(OS_LOG_DEFAULT, OS_LOG_TYPE_ERROR, "SAPCorp: Failed to connect to helper tool: %{public}@ / %{public}d", [proxyError domain], (int)[proxyError code]);
             reply(nil, nil);
         }] connectWithEndpointReply:^(NSXPCListenerEndpoint *replyEndpoint) {
             reply(replyEndpoint, self.authorization);