I've recently submitted an application to the Mac App Store and have received an email informing me that the build contains resources (two in total) that carry an invalid signature:
We have discovered one or more issues with your recent binary submission for "X". Your app has proceeded to review, but the following issues should be corrected in your next submission:
Invalid Signature - the nested app bundle Y is not signed, the signature is invalid, or it is not signed with an Apple submission certificate. Refer to the Code Signing and Application Sandboxing Guide for more information.
I've read the linked Code Signing and Application Sandboxing Guide but am unfortunately none the wiser as to how I'd go about correctly signing these resources. The first is an executable and the second is a framework. Neither of which I compile manually.
What's the correct way of correctly signing these resources?
