cocoon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Crossley <cross...@apache.org>
Subject Re: [PROPOSAL] Download of jars with Maven ant tasks
Date Wed, 27 Apr 2005 02:23:05 GMT
How do artifacts get into the remote Maven respository
and how are they guaranteed to be the legitimate file?

Surely this concern has been discussed before,
but i cannot find the answer.

The Maven web pages just say something like:
create a Jira issue and tell us what you want to add.
That doesn't sound very rigorous.

With the ASF mirror system, we the Cocoon committers/PMC
sign the release and create the MD5 sum. So then people
who download the products can know for certain.

http://maven.apache.org/using/repositories.html
http://maven.apache.org/reference/repository-upload.html

--David

Mime
View raw message