Same for MRMs, to perform checksum/signature/content analysis... to be able to cleanly refuse maven when asking for broken artifact (and having checksum/signature/content validation on).
Otherwise, if would be done while streaming, currently there's no clean way to say to client (Maven) at _the end_ of streaming: "ah, this is bad content, throw it away"... Thanks, ~t~ On Tue, Dec 13, 2011 at 9:24 AM, Anders Hammar <and...@hammar.net> wrote: > As someone pointed out, in most corporate environments downloads are > scanned by AV engines. And that means that the entire file needs to be > downloaded by that engine and then scanned, before made available to > the repo manager. So this isn't something that the repo manager could > fix. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org