Rolling Back In

PSA: Did you think, like us, that Rollout thing looked pretty neat, but questionable despite their assurances

Update Native iOS Apps without the App Store. How is this Legit?

…FYI, Rollout’s SDK is installed on over 50 million iOS devices and there’s never been an app rejected because it uses Rollout. I’m just saying that because it’s good to know that thousands of other developers are using Rollout, so you’re not alone.

Um, yeah. About that:

Apple Rejecting Apps That Use Rollout

Just got this message for a few of my apps that are live in the app store (and have been for years).

“Your app, extension, and/or linked framework appears to contain code designed explicitly with the capability to change your app’s behavior or functionality after App Review approval, which is not in compliance with section 3.3.2 of the Apple Developer Program License Agreement and App Store Review Guideline 2.5.2. This code, combined with a remote resource, can facilitate significant changes to your app’s behavior compared to when it was initially reviewed for the App Store. While you may not be using this functionality currently, it has the potential to load private frameworks, private methods, and enable future feature changes.

This includes any code which passes arbitrary parameters to dynamic methods such as dlopen(), dlsym(), respondsToSelector:, performSelector:, method_exchangeImplementations(), and running remote scripts in order to change app behavior or call SPI, based on the contents of the downloaded script…

Well, that’s a start; how about banning React Native next so we can stop having to argue with pointy-haired bosses that JavaScript sucks? We kid, we kid. We like JavaScripters, really. It’s so cute watching them pretend to be grownups! Okay, we’ll actually stop teasing now, let’s see how Rollout is addressing the situation:

While Apple has not modified its guidelines , it appears that these guidelines are now being interpreted in a more narrow way. We are disappointed that Apple has made this change before we have had an opportunity to address any concerns. We have already reached out to Apple to discuss and are committed to adjusting our offering as needed to remain in compliance under the more narrow interpretation of the guidelines…

We understand and respect the fact that Apple must have the ability to control its ecosystem, and we recognize that our appeal may not succeed.

However, will move forward regardless!

First, for the last year we have been readying an entirely NEW product offering which addresses the entire app development process, not only post-production. This new product, which we will be announcing and launching for developer preview in April, will be in full compliance with Apple’s more narrow interpretation of its guidelines…

Well, good luck with that, guys. We’ll check back in April and update with how that’s going!


An Open Letter to Apple from – Proposing a SECURE JavaScript Injection Approval Process

Alex | March 9, 2017

Leave a Reply