On Wed, Dec 18, 2019 at 4:21 PM Justin Mclean <jus...@classsoftware.com>
wrote:

> Hi,
>
> Forgive me for top posting.
>
>  Some things that may help:
> - Unusually release are only signed by the RM (but you can have others
> sign it as well)
> - It’s best to use your apache email address (but it’s not required)
> -  A key signing party is a good idea
> - Emails don’t have to be signed (although some projects sign announce
> emails)
> - Signatures go into a KEYS file so people can verify the release artefacts


Will the release artifacts go into SVN at dist.apache.org? Or are git-based
projects released differently?

Thanks,
Nathan

Reply via email to