Yes, I was talking about chirp having access to open the files. Now I see your problem.
Since it's not "signed" (a cert is added by a developer who paid Apple for the the certificate), the first time you open it, you have to right-click (or control-click) and select open. You'll get a warning it wasn't signed and click "open" on the warning. After that first time, you can just double-click like normal.
I wouldn't put my call in my sig unless I wanted everyone to know exactly who I was and my exact street address.
Would you like me to pm it to you for proof?