Howdy, The Apache Maven team is pleased to announce the release of the Apache Maven GPG Plugin, version 3.2.2
This release is a bugfix, restoring the sign-and-deploy Mojo to pick up remote repository authentication from settings.xml. Also contains smaller improvements as well. This plugin signs all of the project's attached artifacts with GnuPG or BC. https://maven.apache.org/plugins/maven-gpg-plugin/ You should specify the version in your project's plugin configuration: <plugin> <groupId>org.apache.maven.plugins</groupId> <artifactId>maven-gpg-plugin</artifactId> <version>3.2.2</version> </plugin> You can download the appropriate sources etc. from the download page: https://maven.apache.org/plugins/maven-gpg-plugin/download.cgi Release Notes - Maven GPG Plugin - Version 3.2.2 ** Bug * [MGPG-113] - Upgrading from 3.1.0 to 3.2.1 with no other changes causes "gpg:sign-and-deploy-file" failed: 401 Unauthorized ** Improvement * [MGPG-114] - BC Allow key size greater than 5KB from file * [MGPG-115] - Show more information about key used to sign Have fun, -The Apache Maven team