Return-Path: X-Original-To: apmail-cordova-dev-archive@www.apache.org Delivered-To: apmail-cordova-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 7F77D10136 for ; Wed, 5 Mar 2014 22:02:28 +0000 (UTC) Received: (qmail 59998 invoked by uid 500); 5 Mar 2014 22:02:27 -0000 Delivered-To: apmail-cordova-dev-archive@cordova.apache.org Received: (qmail 59960 invoked by uid 500); 5 Mar 2014 22:02:27 -0000 Mailing-List: contact dev-help@cordova.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@cordova.apache.org Delivered-To: mailing list dev@cordova.apache.org Received: (qmail 59952 invoked by uid 99); 5 Mar 2014 22:02:27 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Mar 2014 22:02:27 +0000 X-ASF-Spam-Status: No, hits=1.5 required=5.0 tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of iclelland@google.com designates 209.85.128.181 as permitted sender) Received: from [209.85.128.181] (HELO mail-ve0-f181.google.com) (209.85.128.181) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 05 Mar 2014 22:02:21 +0000 Received: by mail-ve0-f181.google.com with SMTP id oy12so1751811veb.12 for ; Wed, 05 Mar 2014 14:02:00 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=pV2xO2a12SWtmkhAEZXG71V4FAbRmD0i4fa+ttAXB2Q=; b=AJHj6UXiAY7ZzhbLpUHnx5diTDU6ToEkIhIybTxgK6cvvBsn/VDmDdPtQ3/2qZ9vc2 b8l1eZbrsGhwFzYt9rqfTB3iIMX+GyyJw7IXehmys1BF2/+A1KL7BRFY32y2zSkH8aOq PzSE3BPvaX9RBwX0i27C+xhxWq72lHlgllp0w2yGrXRdA1W9ZAcnkqSRMNHvLQLRENQu MfWGEug1zda2sz4vFX/LSUetrmB40AoS0SU1q4c9vtuimKL8XHS1+0EWkjHdW0LhBbKb vMG1F2ZQuVzPf7i4wuGpDTDFewQjscebBojc1XEFPCaarvY5Lejz8W0/Nqp5XeSE6PS9 7x8w== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=pV2xO2a12SWtmkhAEZXG71V4FAbRmD0i4fa+ttAXB2Q=; b=h1gOifx3Sytx1SAJsbqe3OSbPLvcxMd9LaeNolY4KlI2W0JRjzJMOECDjctGScbS4y w+rCWeoITnNI1B/ODOFY7tASHqSM8aUzIVgUqae3QbTY0QTQL64gTJaOxsZ+L6BHsHIH GtaGRkwUnvFVmfGBWanhUtNKdwhgw1yMb0zoU= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:content-type; bh=pV2xO2a12SWtmkhAEZXG71V4FAbRmD0i4fa+ttAXB2Q=; b=FX7FG1SKcyO1LQ3v39hITYzDNcuLofYSgP/XhiGvimqonqth2HiOg8hvmhHe0gb2w9 fJmvYRB4xOF1XQZ624pIRPPQ58pvo4xie+UelyljvW7f/NtWN+vNGblWDQGxPh8bsBau smc93ZEg9cbtEUl+FQpGAbpzMD2dUo7sraa3g+pcEJVlcKga9odFIAc1JkNRxm6p4WRt m7T+jr+lyBVmIX647qy0pTs99BRFpVZznNueKz2UbrvK+YH/hihPnAOTi6734XYCTlyi ajZLhFv9AkEU5neWu92tz+/JRqErhwEAbgvRCb8HTMtZx+Sg5oDzVcdnHBov3g9Vms5M V09w== X-Gm-Message-State: ALoCoQlf68HBuASw8P14NrQALCz0DcYjz2tIV0dZ+cKgMfACEmduozvS93igsu9xucosl2aJq4hNpq8anZ3DF1AVnOOcSLnY5vHcFSUuIJX4DKvb9TgPD+M0DKYgK6/ZsGLwsUTxATvk1K4MpqcCUXC3+6/U0IzYDe4iCYli2FiqhTvw6xfgjL0KWpOY+5KIto66u24cv7ydAZImFisbK6lZpwbchMr7xQ== X-Received: by 10.220.164.80 with SMTP id d16mr1860118vcy.15.1394056920779; Wed, 05 Mar 2014 14:02:00 -0800 (PST) MIME-Version: 1.0 Sender: iclelland@google.com Received: by 10.52.231.134 with HTTP; Wed, 5 Mar 2014 14:01:40 -0800 (PST) In-Reply-To: References: From: Ian Clelland Date: Wed, 5 Mar 2014 17:01:40 -0500 X-Google-Sender-Auth: eshCDGQoM8-oeEgYY8R-a1IEfiw Message-ID: Subject: Re: [Vote] cordova-plugin-inappbrowser@0.3.3 To: "dev@cordova.apache.org" Content-Type: multipart/alternative; boundary=047d7b3a946a8f8ade04f3e32b12 X-Virus-Checked: Checked by ClamAV on apache.org --047d7b3a946a8f8ade04f3e32b12 Content-Type: text/plain; charset=UTF-8 I've seen that before -- it just means that you haven't declared, explicitly or implicitly, that you trust that the signing key is really Andrew's. The important line should be above that, and should say gpg: Good signature from "Andrew Grieve (CODE SIGNING KEY) < agrieve@apache.org>" What you can do right now is run "gpg --fingerprint", and then have Andrew do that same, and verify that they match. Then you can safely ignore the message :) The long term solution is to get Andrew's (and Steven's, and anyone else's) public key signed by some Apache folks. Apparently there's a key signing party at every ApacheCon, so that'll be a good time to do it. -------- Instead of ignoring the message, you can also sign the key with your own: $ gpg --edit-key agrieve@apache.org > sign > save On Wed, Mar 5, 2014 at 3:19 PM, Michal Mocny wrote: > +1 > > However, gpg --verify gives me: > > gpg: WARNING: This key is not certified with a trusted signature! > gpg: There is no indication that the signature belongs to the > owner. > > I don't recall seeing this before. I had to add your new key to verify this > time. > > -Michal > > > On Wed, Mar 5, 2014 at 2:45 PM, Andrew Grieve > wrote: > > > Please review and vote on the release of this inappbrowser release. > > > > The plugin has been publish here: > > https://dist.apache.org/repos/dist/dev/cordova/iab/ > > > > It is the same as the recently published 0.3.2, except with: > > * CB-6172 Fix broken install on case-sensitive file-systems > > > > The packages were published from their corresponding git tags: > > cordova-plugin-inappbrowser: 0.3.3 (a5dedae631) > > > > Upon a successful vote I will upload the archives to dist/, upload them > to > > the Plugins Registry, and post the corresponding blog post. > > > > Voting will go on for a minimum of 20 hours. > > > > I vote +1. > > > --047d7b3a946a8f8ade04f3e32b12--