[jira] [Commented] (DERBY-7104) Sign the JAR files

Richard N. Hillegas (Jira) Thu, 11 Mar 2021 06:58:40 -0800


    [ 
https://issues.apache.org/jira/browse/DERBY-7104?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17299612#comment-17299612
 ]


Richard N. Hillegas commented on DERBY-7104:
--------------------------------------------

Derby release artifacts are PGP- and SHA-512-signed via the following process: 
https://infra.apache.org/release-signing.html

Does your application use other Apache assets, which are signed with 
certificates? If so, what are the certificate-signed Apache artifacts you are 
using? Thanks.

> Sign the JAR files
> ------------------
>
>                 Key: DERBY-7104
>                 URL: https://issues.apache.org/jira/browse/DERBY-7104
>             Project: Derby
>          Issue Type: Improvement
>          Components: Miscellaneous
>    Affects Versions: 10.15.2.0
>            Reporter: Shawn Fernandes
>            Priority: Trivial
>              Labels: Signed, jars
>
> Please sign all jar files with valid third party cert using below directions
> https://www.digicert.com/kb/code-signing/java-code-signing-guide.htm



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (DERBY-7104) Sign the JAR files

Reply via email to