"deny mach-lookup com.apple.nsurlstorage-cache” sounds exactly like the OS denying something because the app isn’t provisioned for that capability, but I’m having trouble identifying which provision I need to turn on in Xcode.
I believe URL access requires com.apple.security.files.bookmarks.app-scope entitlement in a sandboxed app.
