diff --git a/Makefile b/Makefile
index 18eac69cf3..fa58f8f4c6 100644
--- a/Makefile
+++ b/Makefile
@@ -713,6 +713,7 @@ MACOS_INNER_BUNDLE := $(MACOS_OUTER_BUNDLE)/Contents/Frameworks/QtWebEngineCore.
 STATUS_CLIENT_DMG ?= pkg/Status.dmg
 
 $(STATUS_CLIENT_DMG): override RESOURCES_LAYOUT := $(PRODUCTION_PARAMETERS)
+$(STATUS_CLIENT_DMG): ENTITLEMENTS ?= resources/Entitlements.plist
 $(STATUS_CLIENT_DMG): nim_status_client $(DMG_TOOL)
 	rm -rf tmp/macos pkg/*.dmg
 	mkdir -p $(MACOS_OUTER_BUNDLE)/Contents/MacOS
@@ -740,7 +741,8 @@ $(STATUS_CLIENT_DMG): nim_status_client $(DMG_TOOL)
 	# if MACOS_CODESIGN_IDENT is not set then the outer and inner .app
 	# bundles are not signed
 ifdef MACOS_CODESIGN_IDENT
-	scripts/sign-macos-pkg.sh $(MACOS_OUTER_BUNDLE) $(MACOS_CODESIGN_IDENT) --entitlements Entitlements.plist
+	scripts/sign-macos-pkg.sh $(MACOS_OUTER_BUNDLE) $(MACOS_CODESIGN_IDENT) \
+		--entitlements $(ENTITLEMENTS)
 endif
 	echo -e $(BUILD_MSG) "dmg"
 	mkdir -p pkg
diff --git a/ci/Jenkinsfile.macos b/ci/Jenkinsfile.macos
index b8bf9b96a8..daaec47a4f 100644
--- a/ci/Jenkinsfile.macos
+++ b/ci/Jenkinsfile.macos
@@ -31,6 +31,11 @@ pipeline {
       description: 'Decides whether the mocked status-keycard-go library is built.',
       defaultValue: false
     )
+    choice(
+      name: 'ENTITLEMENTS',
+      description: 'Select app entitlements. Squish requires extra entitlements.',
+      choices: ['resources/Entitlements.plist', 'resources/Entitlements_squish.plist']
+    )
   }
 
   options {
diff --git a/Entitlements.plist b/resources/Entitlements.plist
similarity index 79%
rename from Entitlements.plist
rename to resources/Entitlements.plist
index bba4be795c..8eec77611c 100644
--- a/Entitlements.plist
+++ b/resources/Entitlements.plist
@@ -4,9 +4,11 @@
 <dict>
 	<key>com.apple.security.device.camera</key>
 	<true/>
-    <!-- <key>com.apple.developer.associated-domains</key>
+	<!--
+	<key>com.apple.developer.associated-domains</key>
 	<array>
 		<string>applinks:status.app</string>
-	</array> -->
+	</array>
+	-->
 </dict>
 </plist>
diff --git a/resources/Entitlements_squish.plist b/resources/Entitlements_squish.plist
new file mode 100644
index 0000000000..f01bb5df4c
--- /dev/null
+++ b/resources/Entitlements_squish.plist
@@ -0,0 +1,14 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>com.apple.security.device.camera</key>
+	<true/>
+	<key>com.apple.security.cs.allow-dyld-environment-variables</key>
+	<true/>
+	<key>com.apple.security.cs.disable-library-validation</key>
+	<true/>
+	<key>com.apple.security.cs.allow-jit</key>
+	<true/>
+</dict>
+</plist>