Hello Apache NiFi community, Please find the associated guidance to help those interested in validating/verifying the release so they can vote.
# Download latest KEYS file: https://dist.apache.org/repos/dist/dev/nifi/KEYS # Import keys file: gpg --import KEYS # Pull down nifi-minifi-cpp-0.5.0 source release artifacts for review: wget https://dist.apache.org/repos/dist/dev/nifi/nifi-minifi-cpp/0.5.0/nifi-minifi-cpp-0.5.0-source.tar.gz wget https://dist.apache.org/repos/dist/dev/nifi/nifi-minifi-cpp/0.5.0/nifi-minifi-cpp-0.5.0-source.tar.gz.asc wget https://dist.apache.org/repos/dist/dev/nifi/nifi-minifi-cpp/0.5.0/nifi-minifi-cpp-0.5.0-source.tar.gz.md5 wget https://dist.apache.org/repos/dist/dev/nifi/nifi-minifi-cpp/0.5.0/nifi-minifi-cpp-0.5.0-source.tar.gz.sha1 wget https://dist.apache.org/repos/dist/dev/nifi/nifi-minifi-cpp/0.5.0/nifi-minifi-cpp-0.5.0-source.tar.gz.sha256 # Verify the signature gpg --verify nifi-minifi-cpp-0.5.0-source.tar.gz.asc # Verify the hashes (md5, sha1, sha256) match the source and what was provided in the vote email thread md5sum nifi-minifi-cpp-0.5.0-source.tar.gz sha1sum nifi-minifi-cpp-0.5.0-source.tar.gz sha256sum nifi-minifi-cpp-0.5.0-source.tar.gz # tar -xzvf nifi-minifi-cpp-0.5.0-source.tar.gz # Verify the build works including release audit tool (RAT) checks cd nifi-minifi-cpp-0.5.0-source ./bootstrap.sh && cd build && make package && make test && make linter # Verify the contents contain a good README, NOTICE, and LICENSE. # Verify the git commit ID is correct # Verify the RC was branched off the correct git commit ID # Look at the resulting convenience binary as found in nifi-assembly/target # Make sure the README, NOTICE, and LICENSE are present and correct # Run the resulting convenience binary and make sure it works as expected # Send a response to the vote thread indicating a +1, 0, -1 based on your findings. Thank you for your time and effort to validate the release!