There seems to be a step missing in the Struts 2 release process. The jars in the rsynced Maven repo are missing pgp/gpg signatures, for example:
http://people.apache.org/repo/m2-ibiblio-rsync-repository/org/apache/struts/struts2-core/2.0.5/ All the jars for both the 2.0.5 and 2.0.6 releases need to be signed. For future builds, there is a 'release' profile in the struts2-parent pom that will use maven-gpg-plugin to sign all the artifacts when they are deployed to the staging repo. Or it can be done by signing the jars in your local repo, and uploading the signatures. Thanks, -- Wendy --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
