Hi! Usually we also have a KEYS file in the projects root directory which contains the public keys of the folks who usually run the deployment.
LieGrue, strub --- On Tue, 5/25/10, Donald Woods <[email protected]> wrote: > From: Donald Woods <[email protected]> > Subject: [DISCUSS] Apache Bean Validation 0.1-incubating Release Candidate > To: [email protected] > Date: Tuesday, May 25, 2010, 8:38 PM > Discussion thread for vote. > > What we're really voting on, is the source zip - > https://repository.apache.org/content/repositories/orgapachebval-016/org/apache/bval/bval-parent/0.1-incubating/bval-parent-0.1-incubating-source-release.zip > > For more information on the release process, checkout - > http://www.apache.org/dev/release.html > http://incubator.apache.org/guides/releasemanagement.html > > Some of the things to check before voting are: > - does "mvn rat:check" pass on the source > - can you build the source-release.zip and svn tag > - do all of the staged jars/zips contain the required > LICENSE, NOTICE > and DISCLAIMER files > - are all of the staged jars signed and the signature > verifiable > - is the signing key in the project's KEYS file and on a > public server > - does the release pass the TCK > > > -Donald > >
