+1 (binding) - Verified checksum, signatures and the source code - Built from source - Ran performance tools
In addition, to avoid issues like [1] happening again, I wrote a script [2] to compare it with the GitHub tag's source code. [1] https://lists.apache.org/thread/pndqy7lfb8nrsgjh0wfq1bsrs1g7ds3y [2] https://gist.github.com/BewareMyPower/ca6d340100b9546ac134c372714d1838 Thanks, Yunze On Tue, May 20, 2025 at 4:26 PM Zike Yang <z...@apache.org> wrote: > > Hi everyone, > Please review and vote on the release candidate #2 for the version > 0.15.1, as follows: > [ ] +1, Approve the release > [ ] -1, Do not approve the release (please provide specific comments) > > This is the second release candidate for Apache Pulsar Go client, > version 0.15.1. > > It fixes the following issues: > https://github.com/apache/pulsar-client-go/compare/v0.15.0...v0.15.1-candidate-2 > > Pulsar Client Go's KEYS file contains PGP keys we used to sign this release: > https://downloads.apache.org/pulsar/KEYS > > Please download these packages and review this release candidate: > - Review release notes > - Download the source package (verify shasum, and asc) and follow the > README.md to build and run the pulsar-client-go. > > The vote will be open for at least 72 hours. It is adopted by majority > approval, with at least 3 PMC affirmative votes. > > Source file: > https://dist.apache.org/repos/dist/dev/pulsar/pulsar-client-go-0.15.1-candidate-2/ > > The tag to be voted upon: > v0.15.1-candidate-2 > https://github.com/apache/pulsar-client-go/tree/v0.15.1-candidate-2 > > SHA-512 checksums: > 896c7e658c4a0be54174c682817213ed7a3e92154561b409258e122a1637a56fc733b0f9b528da585dd6889f1c44ac191ca50ad880742cbfbc98cc2ea5ee8c42 > apache-pulsar-client-go-0.15.1-src.tar.gz