Right that was it, I would suggest adding the following to the script: wget http://www.apache.org/dist/felix/KEYS gpg --import KEYS
Anyway, +1 from me On Mon, Sep 7, 2009 at 11:14, Guillaume Nodet <gno...@gmail.com> wrote: > The gpg signatures looks bad from the output of check_staged_release. > Did you release using maven 2.1 ? Or is it just that the script does not > import the keys ? > > > On Mon, Sep 7, 2009 at 01:53, Karl Pauls <karlpa...@gmail.com> wrote: > >> I would like to call a vote on the following subproject releases: >> >> org.osgi.core 1.4.0 * >> org.osgi.compendium 1.4.0 * >> shell 1.4.0 >> shell.tui 1.4.0 >> bundlerepository 1.4.1 >> framework 2.0.0 >> main 2.0.0 >> >> Staging repository: >> https://repository.apache.org/content/repositories/felix-staging-044// >> >> You can use this UNIX script to download the release and verify the >> signatures: >> http://svn.apache.org/repos/asf/felix/trunk/check_staged_release.sh >> >> Usage: >> sh check_staged_release.sh 44 /tmp/felix-staging >> >> Additionally, a convenience binary release is provided at: >> >> http://people.apache.org/~pauls/2.0.0/<http://people.apache.org/%7Epauls/2.0.0/> >> >> Please vote to approve this release: >> >> [ ] +1 Approve the release >> [ ] -1 Veto the release (please provide specific comments) >> >> * The core and compendium subprojects are being released because >> framework depends on them, but they will not be published. >> > > > > -- > Cheers, > Guillaume Nodet > ------------------------ > Blog: http://gnodet.blogspot.com/ > ------------------------ > Open Source SOA > http://fusesource.com > > > -- Cheers, Guillaume Nodet ------------------------ Blog: http://gnodet.blogspot.com/ ------------------------ Open Source SOA http://fusesource.com