FYI,
I noticed today that RAP is contributing unsigned content:
https://github.com/eclipse-rap/org.eclipse.rap/issues/50
This slipped through the testing/reporting because in the platform 4.25
repo, the artifact is PGP signed, but in the RAP repo it is not. The
reporting process gathers information from all the repos and it finds
PGP signed one first; that one then looks fine. The aggregator picks up
the one without the PGP signature, at least for
org.apache.commons.commons-io.
I'll try find if I can improve that in the aggregator, pick the artifact
that is PGP signed, but of course ideally RAP fixes this for RC2 in
their own repository.
Regards,
Ed
_______________________________________________
cross-project-issues-dev mailing list
cross-project-issues-dev@eclipse.org
To unsubscribe from this list, visit
https://www.eclipse.org/mailman/listinfo/cross-project-issues-dev
