Seeing as the only way to run these apps is to get them through the App Store Apple could also just completely replace your app code with whatever they want.
They can also choose to just not validate signatures. If they wanted to MITM your app, this doesn't make it any easier for them as it's already very easy for them to do that.
They can also choose to just not validate signatures. If they wanted to MITM your app, this doesn't make it any easier for them as it's already very easy for them to do that.