Hi, I did try yesterday and got "Can't check signature: public key not found" (the artifacts are signed with RSA ID 2D51AAC6). Did you send your GPG key to the default gpg server? Perhaps doing
gpg --send-key 2D51AAC6 is enough to solve the issue? Same thing happens when checking 2.12.1 artifacts, so not sure that a new release will be enough to fix this problem :-? HTH, juan pablo El lun, 24 jun 2024, 11:30, Arturo Bernal <aber...@apache.org> escribió: > Hi all, > > I've reviewed the .war and source files, and they appear to be in order. > However, I'm unsure what might have caused the GPG signature to be invalid. > > To resolve this issue comprehensively, I propose generating a new version > from scratch. I will prepare a version 2.12.3 that addresses all potential > issues. > > what do you think? > > Best regards, > > Arturo > > > On Sat, Jun 22, 2024 at 6:05 PM Arturo Bernal <aber...@apache.org> wrote: > > > Hi, > > > > Let me check. > > > > Cheers > > > > > > Arturo > > > > > > On Sat, Jun 22, 2024 at 6:03 PM Florian Preinstorfer < > > lists-jspw...@nblock.org> wrote: > > > >> Hi, > >> it seems the GPG signature for jspwiki-wikipages-de-2.12.2.zip is > >> invalid: > >> > >> wget -q > >> > https://archive.apache.org/dist/jspwiki/2.12.2/wikipages/jspwiki-wikipages-de-2.12.2.zip > >> wget -q > >> > https://archive.apache.org/dist/jspwiki/2.12.2/wikipages/jspwiki-wikipages-de-2.12.2.zip.asc > >> > >> gpg --verify jspwiki-wikipages-de-2.12.2.zip.asc > >> gpg: assuming signed data in 'jspwiki-wikipages-de-2.12.2.zip' > >> gpg: Signature made Wed Jun 12 21:52:44 2024 CEST > >> gpg: using RSA key > >> C650FF7A0C0817441BAC320743B5E9442D51AAC6 > >> gpg: BAD signature from "Arturo Bernal <aber...@apache.org>" > [unknown] > >> > >> Best, > >> Florian > >> > > >
