-0.5(no-binding) I checked:
1. All the links valid 2. Checksum valid but signature got warning, gpg key not certified with a trusted signature[1] 3. LICENSE and NOTICE exists [1] gpg --verify apache-apisix-ingress-controller-1.4.1-src.tgz.asc gpg: assuming signed data in 'apache-apisix-ingress-controller-1.4.1-src.tgz' gpg: Signature made Fri Apr 29 14:11:53 2022 CST gpg: using RSA key 983B64818EE9E1A22DE5FFB5D23A11ABA758DA2D gpg: Good signature from "Jintao Zhang <zhangjin...@apache.org>" [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 983B 6481 8EE9 E1A2 2DE5 FFB5 D23A 11AB A758 DA2D Kwanhur Huang TL;DR > 2022年4月29日 下午2:32,Jintao Zhang <zhangjin...@apache.org> 写道: > > shasum -c apache-apisix-ingress-controller-1.4.1-src.tgz.sha512
