[jira] [Commented] (MPOM-118) Enforce strong GPG signatures by default

Hudson (JIRA) Tue, 24 May 2016 11:43:47 -0700

    [ 
https://issues.apache.org/jira/browse/MPOM-118?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15298691#comment-15298691
 ]


Hudson commented on MPOM-118:
-----------------------------

SUCCESS: Integrated in ASF Parent Pom #152 (See 
[https://builds.apache.org/job/ASF%20Parent%20Pom/152/])
[MPOM-118] Enforce strong GPG signatures by default (hboutemy: 
[http://svn.apache.org/viewvc/?view=rev&rev=1745383])
* pom.xml


> Enforce strong GPG signatures by default
> ----------------------------------------
>
>                 Key: MPOM-118
>                 URL: https://issues.apache.org/jira/browse/MPOM-118
>             Project: Maven POMs
>          Issue Type: Improvement
>          Components: asf
>    Affects Versions: ASF-17
>            Reporter: Christopher Tubbs
>
> maven-gpg-plugin configuration could be improved a bit so that ASF releases 
> are not weakened by a user's weak personal configuration.
> I suggest adding something like the following to maven-gpg-plugin's 
> configuration in the pluginManagement section:
> {code:xml}
> <gpgArguments combine.children="append">
>   <arg>--digest-algo=SHA512</arg>
> </gpgArguments>
> {code}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (MPOM-118) Enforce strong GPG signatures by default

Reply via email to