Instead of "authenticate as admin" the prompt should contains specific privileges required by a program, for example:
- read .ssh directory
- write to .ssh directory
- read motherboard serial number
And so on. Accessing the keychain should require confirmation if one program wants to read other program's secrets. If it wants only its own secrets, then no prompt needed.
- read .ssh directory
- write to .ssh directory
- read motherboard serial number
And so on. Accessing the keychain should require confirmation if one program wants to read other program's secrets. If it wants only its own secrets, then no prompt needed.