thanks Alin. Would be clever to fix at least the broken artifacts asap. Cannot do any ssh currently:
org\junit\org.junit\3.8.2\org.junit-3.8.2.jar (Invalid signature file digest for Manifest main attributes) org\junit4\org.junit4\4.3.1\org.junit4-4.3.1.jar (Invalid signature file digest for Manifest main attributes) as they break builds when downloading/using those artifacts. Don't know why we hosted those apprearantly changed artifacts before. On 6/4/09, Alin Dreghiciu <adreghi...@gmail.com> wrote: > I'm doing this right now. As part of clean up of our repos. > > On Mon, Jun 1, 2009 at 9:26 AM, Peter Neubauer <pe...@neubauer.se> wrote: > >> Yes, >> agree that we should not host artifacts that are in Maven central >> repos. Anyone up for cleaning? I can give you shell access in order to >> remove stuff ... >> >> /peter >> >> GTalk: neubauer.peter >> Skype peter.neubauer >> Phone +46 704 106975 >> LinkedIn http://www.linkedin.com/in/neubauer >> Twitter http://twitter.com/peterneubauer >> >> http://www.neo4j.org - New Energy for Data - The Graph Database. >> http://www.ops4j.org - New Energy for OSS Communities - Open >> Participation Software. >> http://www.qi4j.org - New Energy for Java - Domain Driven >> Development. >> >> >> >> On Thu, May 28, 2009 at 2:36 PM, Toni Menzel <t...@okidokiteam.com> wrote: >> > The (old?) maven2 repo contains the following jars: >> > org\junit\org.junit\3.8.2\org.junit-3.8.2.jar (Invalid signature file >> > digest for Manifest main attributes) >> > >> > org\junit4\org.junit4\4.3.1\org.junit4-4.3.1.jar (Invalid signature >> > file digest for Manifest main attributes) >> > >> > Both contain invalid signatures that make them unusable with some >> > tools/maven plugins that care about the signatures. >> > You can reproduce this when passing them through the jarsigner tool >> > (from your jdk installation): >> > jarsigner -verify org.junit4-4.3.1.jar >> > >> > As we are just cleaning up our repositories - i admit i haven't >> > followed the last progress from alin up to the minute - we must fix >> > this. >> > - why do we have them at all ? >> > - if we need them, we should have the correct ones. (either have >> > unsigned jars or have correct SHA-1 signatures in them) >> > >> > Toni >> > >> > -- >> > Toni Menzel >> > Independent Software Developer >> > Professional Profile: http://okidokiteam.com >> > t...@okidokiteam.com >> > http://www.ops4j.org - New Energy for OSS Communities - Open >> > Participation Software. >> > >> > _______________________________________________ >> > general mailing list >> > general@lists.ops4j.org >> > http://lists.ops4j.org/mailman/listinfo/general >> > >> > >> >> _______________________________________________ >> general mailing list >> general@lists.ops4j.org >> http://lists.ops4j.org/mailman/listinfo/general >> > > > > -- > Alin Dreghiciu > Software Developer - Looking for new projects! > My profile: http://www.linkedin.com/in/alindreghiciu > My blog: http://adreghiciu.blogspot.com > http://www.ops4j.org - New Energy for OSS Communities - Open Participation > Software. > http://www.qi4j.org - New Energy for Java - Domain Driven Development. > -- Toni Menzel Independent Software Developer Professional Profile: http://okidokiteam.com t...@okidokiteam.com http://www.ops4j.org - New Energy for OSS Communities - Open Participation Software. _______________________________________________ general mailing list general@lists.ops4j.org http://lists.ops4j.org/mailman/listinfo/general
