Thank you sir! > On Mar 2, 2018, at 8:36 AM, Alex Harui <aha...@adobe.com.INVALID> wrote: > > The nightly builds have been SHA-512 since Feb 12, so yes 0.9.2 will be > SHA-512 instead of MD5. This is just more FUD from Justin. > > -Alex > > On 3/2/18, 8:20 AM, "Dave Fisher" <dave2w...@comcast.net> wrote: > >> Hi Justin, >> >> <snip> >> >>> Also not everyone may be aware are some new considerations around >>> hashes for releases. [2] But it is easily to comply, compared to the >>> last release you would need to add a SHA hash file or replace the >>> existing MD5 file with a SHA file. >> >> (a) Alex is aware. >> (b) The policy just officially changed this week. I don’t think that >> instant compliance is expected. Henk is watching - everyone can look here >> to see how all the projects stack up. [1] >> >> Alex - are you waiting for the next release to make the SHA changes? >> >> Regards, >> Dave >> >> <snip> >> >> [1] http://checker.apache.org >> >>> 2. https://www.apache.org/dev/release-distribution#sigs-and-sums >> >
signature.asc
Description: Message signed with OpenPGP