sling-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrea Tarocchi (Jira)" <j...@apache.org>
Subject [jira] [Commented] (SLING-7534) Release policy - stop providing MD5 and start providing SHA-512 signatures
Date Sun, 17 May 2020 13:19:00 GMT

    [ https://issues.apache.org/jira/browse/SLING-7534?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17109475#comment-17109475
] 

Andrea Tarocchi commented on SLING-7534:
----------------------------------------

Is there any update on this one? It is, I believe a common problem throughout all the projects.

Releasing a project with ~300 artifacts is simply not feasible with sha512 verified and added
"manually".

> Release policy - stop providing MD5 and start providing SHA-512 signatures
> --------------------------------------------------------------------------
>
>                 Key: SLING-7534
>                 URL: https://issues.apache.org/jira/browse/SLING-7534
>             Project: Sling
>          Issue Type: Task
>          Components: Tooling
>            Reporter: Robert Munteanu
>            Priority: Major
>             Fix For: Parent 40
>
>
> See http://www.apache.org/dev/release-distribution#sigs-and-sums , we SHOULD no longer
provide MD5 checksums for new releases.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message