[jira] [Commented] (KYLIN-3862) Check the binary packages
[ https://issues.apache.org/jira/browse/KYLIN-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16792233#comment-16792233 ] ASF subversion and git services commented on KYLIN-3862: Commit 2bdd4e1263b705b21f7276d1007935bf8bdb4ebd in kylin's branch refs/heads/2.6.x from Shao Feng Shi [ https://gitbox.apache.org/repos/asf?p=kylin.git;h=2bdd4e1 ] KYLIN-3862 add LICENSE and NOTICE to binary package > Check the binary packages > - > > Key: KYLIN-3862 > URL: https://issues.apache.org/jira/browse/KYLIN-3862 > Project: Kylin > Issue Type: Task >Reporter: Shaofeng SHI >Priority: Major > > As to the approval of binary packages: > > It's not possible in general to check the exact contents of a binary, however > there are some checks that should be made: > - sigs and hashes must be OK > - the package must contain the correct NOTICE and LICENSE files for the > included content > - the package must not contain any content not derived from the source. > - in the case of bundled binaries, reviewers must check that all contents are > represented in the LICENSE (and NOTICE file if required). > The bundle must not contain any files that are prohibited from distribution > (category X). -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (KYLIN-3862) Check the binary packages
[ https://issues.apache.org/jira/browse/KYLIN-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16792236#comment-16792236 ] ASF subversion and git services commented on KYLIN-3862: Commit acfb865fe339b3ee3cc3dd84ad01d0cc1df8942d in kylin's branch refs/heads/2.5.x from Shao Feng Shi [ https://gitbox.apache.org/repos/asf?p=kylin.git;h=acfb865 ] KYLIN-3862 add LICENSE and NOTICE to binary package > Check the binary packages > - > > Key: KYLIN-3862 > URL: https://issues.apache.org/jira/browse/KYLIN-3862 > Project: Kylin > Issue Type: Task >Reporter: Shaofeng SHI >Priority: Major > > As to the approval of binary packages: > > It's not possible in general to check the exact contents of a binary, however > there are some checks that should be made: > - sigs and hashes must be OK > - the package must contain the correct NOTICE and LICENSE files for the > included content > - the package must not contain any content not derived from the source. > - in the case of bundled binaries, reviewers must check that all contents are > represented in the LICENSE (and NOTICE file if required). > The bundle must not contain any files that are prohibited from distribution > (category X). -- This message was sent by Atlassian JIRA (v7.6.3#76005)
[jira] [Commented] (KYLIN-3862) Check the binary packages
[ https://issues.apache.org/jira/browse/KYLIN-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16791788#comment-16791788 ] ASF subversion and git services commented on KYLIN-3862: Commit fe43a3eba2716a8a534bb7916fbc425b22849157 in kylin's branch refs/heads/master from Shao Feng Shi [ https://gitbox.apache.org/repos/asf?p=kylin.git;h=fe43a3e ] KYLIN-3862 add LICENSE and NOTICE to binary package > Check the binary packages > - > > Key: KYLIN-3862 > URL: https://issues.apache.org/jira/browse/KYLIN-3862 > Project: Kylin > Issue Type: Task >Reporter: Shaofeng SHI >Priority: Major > > As to the approval of binary packages: > > It's not possible in general to check the exact contents of a binary, however > there are some checks that should be made: > - sigs and hashes must be OK > - the package must contain the correct NOTICE and LICENSE files for the > included content > - the package must not contain any content not derived from the source. > - in the case of bundled binaries, reviewers must check that all contents are > represented in the LICENSE (and NOTICE file if required). > The bundle must not contain any files that are prohibited from distribution > (category X). -- This message was sent by Atlassian JIRA (v7.6.3#76005)