From a purely technical point of view, they should not - SHA-1 is not an encryption, since the data converted with it cannot be restored.
However, Apple and its favorites are known to have random tricks to reject applications “because they can.”