Hi Oliver, there are two differents of signing at play here:
- Detached OpenPGP signature - JAR/NBM signing with a Certificate The former is required by Sonatype for deployments to Maven Central, the latter is checked by the IDE. Hope that clears it up Matthias Am Samstag, den 11.07.2020, 22:42 +0200 schrieb Oliver Rettig: > Hi all, > > I have just uploaded the first release of a translator plugin > > https://github.com/orat/netbeans-translator/ > > into maven central. > > I have followed > > https://cwiki.apache.org/confluence/display/NETBEANS/Step+by+step+guide+for+upload > +NBM+to+Maven+Central > > Depolyment gives me no errors. > > If I install the nbm I get the message > > Warning: Installing untrusted plugins is potentially insecure. Use > unsigned or untrusted > plugins at your own risk. > > Why? The plugin should be signed? > > best regards > Oliver > > --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@netbeans.apache.org For additional commands, e-mail: dev-h...@netbeans.apache.org For further information about the NetBeans mailing lists, visit: https://cwiki.apache.org/confluence/display/NETBEANS/Mailing+lists
