Endpoint Security Communicate with GUI App (sandbox)

What are our options for the Endpoint Security system extension to communicate with a GUI component?

If I understand correctly:
  • NSEndpointSecurityMachServiceName wont work when sandboxed

  • com.apple.security.temporary-exception.mach-lookup.global-name is frownedupon by the app store review

What about using the filesystem e.g. write to a file the GUI App can read and vice/versa?
Endpoint Security Communicate with GUI App (sandbox)
 
 
Q