It is always worth trying to find source code for the application, to bypass certain functionality like jailbreak detection, SSL certificate pinning, login forms, etc. One method to do this would be to use Ghidra.

To run the application in Ghidra extract the .ipa file and import the raw binary file. Ghidra will then be able to analyze the file which will then create a (pseudo)source-code view which allows the consultant to see what is happening in the code-base.