rfscholte commented on issue #37: [SECURITY] Use HTTPS to resolve dependencies in Maven Build URL: https://github.com/apache/maven-release/pull/37#issuecomment-609003123 This was a false positive: these poms were only used to verify if the changes to the pom done by the plugin were done correctly. Only applying this PR made the project fail. To prevent more false positives in the future I've updated the tests. Fixed in https://github.com/apache/maven-release/commit/9cae95d5fd7753983b194981c6a36546de8e9968
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
