+1 binding I checked: - download links are valid - signatures and hashes fine - LICENSE and NOTICE good - no binary files - all source file have ASF headers if necessary
On 2020/08/01 02:33:08, JinChao Shuai <shuaijinc...@apache.org> wrote: > Hello, Community, > > This is a call for the vote to release Apache APISIX version 1.5. > > > Release notes: > > https://github.com/apache/apisix/blob/v1.5/CHANGELOG.md#150 > > > The release candidates: > > https://dist.apache.org/repos/dist/dev/apisix/1.5-rc1/ > > > Git tag for the release: > > https://github.com/apache/apisix/tree/v1.5 > > > Release Commit ID: > > https://github.com/apache/apisix/commit/6c5b52e93ea522009355643feb9d8c5a84e4baf4 > > > Keys to verify the Release Candidate: > > https://dist.apache.org/repos/dist/dev/apisix/KEYS > > > Steps to validating the release: > > 1. Download the release > > ``` > > wget > https://dist.apache.org/repos/dist/dev/apisix/1.5-rc1/apache-apisix-1.5-rc1-src.tar.gz > > ``` > > > 2. Checksums and signatures > > ``` > > wget https://dist.apache.org/repos/dist/dev/apisix/KEYS > > wget > https://dist.apache.org/repos/dist/dev/apisix/1.5-rc1/apache-apisix-1.5-rc1-src.tar.gz.asc > > wget > https://dist.apache.org/repos/dist/dev/apisix/1.5-rc1/apache-apisix-1.5-rc1-src.tar.gz.sha512 > > > shasum -c apache-apisix-1.5-rc1-src.tar.gz.sha512 > > > gpg --import KEYS > > # input `trust`, `5`, then `save` > > gpg --edit-key "Jinchao Shuai" > > gpg --verify apache-apisix-1.5-rc1-src.tar.gz.asc > apache-apisix-1.5-rc1-src.tar.gz > > ``` > > > 3. Unzip and Check files > > ``` > > tar zxvf apache-apisix-1.5-rc1-src.tar.gz > > ``` > > > 4. Build Apache APISIX: > > https://github.com/apache/apisix/blob/v1.5/doc/how-to-build.md > > > The vote will be open for at least 72 hours or until necessary number of > votes are reached. > > > Please vote accordingly: > > [ ] +1 approve > [ ] +0 no opinion > [ ] -1 disapprove with the reason > > -- > Thanks, > Janko >
