+1 (binding)
I have checked the followings: 1. PGP signatures are valid. wget https://dist.apache.org/repos/dist/release/incubator/celeborn/KEYS gpg --import KEYS gpg --verify apache-celeborn-0.2.0-incubating-source.tgz.asc gpg --verify apache-celeborn-0.2.0-incubating-bin.tgz.asc 2. checksums are correct. sha512sum --check apache-celeborn-0.2.0-incubating-bin.tgz.sha512 sha512sum --check apache-celeborn-0.2.0-incubating-source.tgz.sha512 3. LICENSE and NOTICE files exist. 4. DISCLAIMER file exists. 5. release files are in correct location. 6. release files have the word "incubating" in their name. At 2023-02-20 23:28:36, "Ethan Feng" <[email protected]> wrote: >Hi Celeborn community, > >This is a call for a vote to release Apache Celeborn (Incubating) >0.2.0-incubating-rc5 > >The git tag to be voted upon: >https://github.com/apache/incubator-celeborn/releases/tag/v0.2.0-incubating-rc5 > >The git commit hash: >52527756c3d2262cfd3e313272b82216c505c7e2 > >The source and binary artifacts can be found at: >https://dist.apache.org/repos/dist/dev/incubator/celeborn/v0.2.0-incubating-rc5/ > >Fingerprint of the PGP key release artifacts are signed with: >FCF20BB29C7BEFDF58F998F76392F71F37356FA0 > >My public key to verify signatures can be found in: >https://dist.apache.org/repos/dist/release/incubator/celeborn/KEYS > >The vote will be open for at least 72 hours or until necessary >number of votes are reached. > >Please vote accordingly: > >[ ] +1 approve >[ ] +0 no opinion >[ ] -1 disapprove (and the reason) > >Checklist for release: >https://cwiki.apache.org/confluence/display/INCUBATOR/Incubator+Release+Checklist >Steps to validate the release: >https://www.apache.org/info/verification.html > >Starting with my +1 (binding): > >* Download links, checksums and PGP signatures are valid. >* Source code distributions have correct names matching the current release. >* Release files have the word incubating in their name. >* DISCLAIMER, LICENSE and NOTICE files are correct. >* All files have license headers if necessary. >* No unlicensed compiled archives bundled in source archive. >* The source tarball matches the git tag. >* Build from source is successful. > >Thanks, >Ethan Feng
