[incubator-linkis-website] branch dev updated: update how-to-verify.md

Fri, 21 Jan 2022 01:00:15 -0800 

This is an automated email from the ASF dual-hosted git repository.

peacewong pushed a commit to branch dev
in repository https://gitbox.apache.org/repos/asf/incubator-linkis-website.git


The following commit(s) were added to refs/heads/dev by this push:
     new fd3d13e  update how-to-verify.md
     new 6709432  Merge pull request #122 from casionone/dev
fd3d13e is described below

commit fd3d13e16261afd096f65d394d6aef3b1337fc3a
Author: casionone <[email protected]>
AuthorDate: Fri Jan 21 16:48:01 2022 +0800

    update how-to-verify.md
---
 community/how-to-verify.md                               | 12 ++++++++----
 .../current/how-to-verify.md                             | 16 ++++++++++------
 2 files changed, 18 insertions(+), 10 deletions(-)

diff --git a/community/how-to-verify.md b/community/how-to-verify.md
index 40208a6..ce1d3de 100644
--- a/community/how-to-verify.md
+++ b/community/how-to-verify.md
@@ -34,13 +34,14 @@ wget 
https://dist.apache.org/repos/dist/dev/incubator/linkis/${release_version}-
 ### 2.2 Check gpg signature
 First import the publisher's public key. Import KEYS from the svn repository 
to the local environment. (The person who releases the version does not need to 
import it again, the person who helps to do the verification needs to import 
it, and the user name is enough for the person who issued the version)
 
-- Import public key
+#### 2.2.1 Import public key
 ```shell
 curl https://dist.apache.org/repos/dist/dev/incubator/linkis/KEYS> KEYS # 
Download KEYS
 gpg --import KEYS # Import KEYS to local
 ```
-- Trust the public key
+#### 2.2.2 Trust the public key
 > Trust the KEY used in this version
+
 ```shell
     gpg --edit-key xxxxxxxxxx #KEY user used in this version
     gpg (GnuPG) 2.2.21; Copyright (C) 2020 Free Software Foundation, Inc.
@@ -65,7 +66,8 @@ gpg --import KEYS # Import KEYS to local
     gpg>
          
 ```
-- Use the following command to check the signature
+#### 2.2.3 Use the following command to check the signature
+
 ```shell
   for i in *.tar.gz; do echo $i; gpg --verify $i.asc $i; done
   #or
@@ -73,9 +75,10 @@ gpg --import KEYS # Import KEYS to local
   # If you upload a binary package, you also need to check whether the 
signature of the binary package is correct
   gpg --verify apache-linkis-${release_version}-bin.tar.gz.asc 
apache-linkis-${release_version}-bin.tar.gz
 ```
-- test result
+check result
 
 > If something like the following appears, it means the signature is correct. 
 > Keyword: **`Good signature`**
+
 ```shell
     apache-linkis-xxx-incubating-src.tar.gz
     gpg: Signature made XXXX
@@ -114,6 +117,7 @@ cd apache-linkis-${release_version}-incubating-src
 
 ````
 #normally can be executed within 5 minutes
+$ mvn -N install 
 $ mvn apache-rat:check
 
 #Check all rat files after no exception
diff --git 
a/i18n/zh-CN/docusaurus-plugin-content-docs-community/current/how-to-verify.md 
b/i18n/zh-CN/docusaurus-plugin-content-docs-community/current/how-to-verify.md
index 61ff443..6f5461c 100644
--- 
a/i18n/zh-CN/docusaurus-plugin-content-docs-community/current/how-to-verify.md
+++ 
b/i18n/zh-CN/docusaurus-plugin-content-docs-community/current/how-to-verify.md
@@ -31,13 +31,16 @@ wget 
https://dist.apache.org/repos/dist/dev/incubator/linkis/${release_version}-
 ### 2.2 检查gpg签名
 首先导入发布人公钥。从svn仓库导入KEYS到本地环境。(发布版本的人不需要再导入,帮助做验证的人需要导入,用户名填发版人的即可)
 
-- 导入公钥
+#### 2.2.1 导入公钥
+
 ```shell
 curl https://dist.apache.org/repos/dist/dev/incubator/linkis/KEYS > KEYS # 
下载KEYS
 gpg --import KEYS # 导入KEYS到本地
 ```
-- 信任公钥
+#### 2.2.2 信任公钥
+
 > 信任此次版本所使用的KEY
+
 ```shell
     gpg --edit-key xxxxxxxxxx #此次版本所使用的KEY用户
     gpg (GnuPG) 2.2.21; Copyright (C) 2020 Free Software Foundation, Inc.
@@ -62,7 +65,8 @@ gpg --import KEYS # 导入KEYS到本地
     gpg> 
          
 ```
-- 使用如下命令检查签名
+#### 2.2.3 使用如下命令检查签名
+
 ```shell
   for i in *.tar.gz; do echo $i; gpg --verify $i.asc $i ; done
   #或者
@@ -70,9 +74,9 @@ gpg --import KEYS # 导入KEYS到本地
   # 如果上传二进制包,则同样需要检查二进制包的签名是否正确
   gpg --verify apache-linkis-${release_version}-bin.tar.gz.asc 
apache-linkis-${release_version}-bin.tar.gz
 ```
-- 检查结果
-
+检查结果
 > 出现类似以下内容则说明签名正确,关键字:**`Good signature`**
+
 ```shell
     apache-linkis-xxx-incubating-src.tar.gz
     gpg: Signature made XXXX
@@ -86,7 +90,6 @@ gpg --import KEYS # 导入KEYS到本地
 > Mac OS/Linux
 
 ```shell
-
 for i in *.tar.gz; do echo $i; sha512sum --check  $i.sha512; done
 
 ```
@@ -112,6 +115,7 @@ cd apache-linkis-${release_version}-incubating-src
 
 ```
 #正常5分钟内可以执行完
+$ mvn -N install 
 $ mvn apache-rat:check
 
 #无异常后 检查所有的rat文件 

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to