rombert commented on pull request #10: URL: https://github.com/apache/sling-parent/pull/10#issuecomment-642073000
> For pom.xml it is not necessary. ASF only requires SHA-512 on source-release.* (built during release). IMHO we should additionally add those safer checksums to all binary artifacts. For pom.xml and metadata I don't care (i.e. IMHO we should stay with the default MD5/SHA1) Got it. For consistency it's I guess a bit distracting, but not a blocker. I was curious thought, do we not see a fix "upstream", e.g. in the maven install/deploy plugins or in Nexus? ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
