Hi Zhaojing, All the encryption keys in KEYS file mentioned below are expired. I think it is required to sign the artifacts with a valid key.
Best regards, Moaz On Mon, Apr 3, 2023 at 4:30 AM zhaojing Luo <[email protected]> wrote: > > Hi all, > > After fixing some issues discussed previously, we have prepared the second > release candidate for version 4.0.0. > > The release note is at > https://github.com/apache/singa/blob/master/RELEASE_NOTES > > The artifacts to be voted on are located here: > https://dist.apache.org/repos/dist/dev/singa/4.0.0.rc2/apache-singa-4.0.0.rc2.tar.gz > > The hashes of the artifacts are as follows: > SHA512: > 776065932a8d84db28fca877263e7bece9537d376ab8dc5f830e3c733d880f8d4f53a740b0d8a4a7e2c5d2f12e5441d8361004a72043baab3f10e72e16c3cee2 > > Release artifacts are signed with the following key: > https://dist.apache.org/repos/dist/dev/singa/KEYS > > The signature file is: > https://dist.apache.org/repos/dist/dev/singa/4.0.0.rc2/apache-singa-4.0.0.rc2.tar.gz.asc > > The Github tag is at: > https://github.com/apache/singa/releases/tag/4.0.0.rc2 > > The documentation website is at > http://singa.apache.org/docs/next/installation/ > > Some examples are available for testing: > https://github.com/apache/singa/tree/master/examples > > Please check and vote on releasing this package. The vote is open for at > least 72 hours and passes if a majority of at least three +1 votes are cast. > > [ ] +1 Release this package as Apache SINGA 4.0.0 > [ ] 0 I don't feel strongly about it, but I'm okay with the release > [ ] -1 Do not release this package because... > > Here is my vote: > +1 (binding) > > Thank you! > > Best Regards, > Zhaojing.
