[cross-project-issues-dev] Change in signing plug-in results in reposito

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[cross-project-issues-dev] Change in signing plug-in results in repository changes

From: Jeff Johnston <jjohnstn@xxxxxxxxxx>
Date: Fri, 13 Sep 2013 13:44:14 -0400
Delivered-to: cross-project-issues-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/cross-project-issues-dev>
List-help: <mailto:cross-project-issues-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/cross-project-issues-dev>, <mailto:cross-project-issues-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/cross-project-issues-dev>, <mailto:cross-project-issues-dev-request@eclipse.org?subject=unsubscribe>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130805 Thunderbird/17.0.8

In Linux Tools, we have switched over to use theeclipse-jarsigner-plugin instead of eclipse-signing-maven-plugin.

We have noted that in past builds, we ended up getting a top-levelMETA-INF directory with signing info for artifacts.jar when we used theold eclipse-signing-maven-plugin.

Is this an issue? Does anything use this info to verify thatartifacts.jar is not tampered with?


-- Jeff J.

Follow-Ups:
- Re: [cross-project-issues-dev] Change in signing plug-in results in repository changes
  - From: David M Williams

Prev by Date: [cross-project-issues-dev] Reminder of our "Final Daze" ...
Next by Date: Re: [cross-project-issues-dev] Change in signing plug-in results in repository changes
Previous by thread: [cross-project-issues-dev] Reminder of our "Final Daze" ...
Next by thread: Re: [cross-project-issues-dev] Change in signing plug-in results in repository changes
Index(es):
- Date
- Thread

Breadcrumbs