reef-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mariia Mykhailova (JIRA)" <>
Subject [jira] [Commented] (REEF-1021) Spurious file in
Date Tue, 01 Dec 2015 01:01:18 GMT


Mariia Mykhailova commented on REEF-1021:

The script itself was added before any of us were release managers, I think. It might have
been an utility to simplify first-time setup of KEYS file in that folder.

C:\reef-dist-release\reef> svn log .\
r6171 | omalley | 2014-08-14 14:35:58 -0700 (Thu, 14 Aug 2014) | 2 lines

Adding reef KEYS

Our release management guide doesn't rely on {{}}
in any way, all KEYS instructions in it are related to proper file at
(and its twin at So it should
be safe to delete {{}}.

> Spurious file in
> ---------------------------------------------------------------------------
>                 Key: REEF-1021
>                 URL:
>             Project: REEF
>          Issue Type: Bug
>         Environment:
>            Reporter: Sebb
> The directory contains the
> This does not belong on the ASF mirror system.
> Also the script is not suitable for downloading KEYS.
> The file is not guaranteed to contain all
the keys needed to validate a signature, because the file only contains the current keys for
the current members of the PPMC. However the KEYS file is also used for checking archived
releases so must contain all keys that have ever been used to sign a release.
> Please remove the script file, and ensure that the KEYS file contains all the keys for
every ASF release that has been made. Entries should never be dropped from KEYS files if they
have been used to sign a release.

This message was sent by Atlassian JIRA

View raw message