You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@beam.apache.org by Luke Cwik <lc...@google.com> on 2020/03/05 18:55:04 UTC
[VOTE] Vendored Dependencies Release gRPC 1.26.0 v0.3 for BEAM-9288
RC #3
Please review the release of the following artifacts that we vendor:
* beam-vendor-grpc-1_26_0
Hi everyone,
Please review and vote on the release candidate #1 for the version 0.3, as
follows:
[ ] +1, Approve the release
[ ] -1, Do not approve the release (please provide specific comments)
The complete staging area is available for your review, which includes:
* the official Apache source release to be deployed to dist.apache.org [1],
which is signed with the key with
fingerprint EAD5DE293F4A03DD2E77565589E68A56E371CCA2 [2],
* all artifacts to be deployed to the Maven Central Repository [3],
* commit hash "28d05d317a39b5d60a31988c69d1fb8a9c5006fc" [4],
The vote will be open for at least 72 hours. It is adopted by majority
approval, with at least 3 PMC affirmative votes.
Thanks,
Release Manager
[1] https://dist.apache.org/repos/dist/dev/beam/vendor/
[2] https://dist.apache.org/repos/dist/release/beam/KEYS
[3] https://repository.apache.org/content/repositories/orgapachebeam-1098/
[4]
https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc
[RESULT] [VOTE] Vendored Dependencies Release gRPC 1.26.0 v0.3 for
BEAM-9288 RC #3
Posted by Luke Cwik <lc...@google.com>.
I'm happy to announce that we have unanimously approved this release.
There are 3 approving votes, 3 of which are binding:
* Ismaël Mejía
* Jean-Baptiste Onofre
* Luke Cwik
There are no disapproving votes.
Thanks everyone!
On Thu, Mar 5, 2020 at 1:56 PM Ismaël Mejía <ie...@gmail.com> wrote:
> +1 (binding)
>
> Verified signatures
> Verified that there are no conscrypt classes or binaries in jar
> Verified pom.xml has runtime dependency on conscrypt
>
> On Thu, Mar 5, 2020 at 9:14 PM Jean-Baptiste Onofre <jb...@nanthrax.net>
> wrote:
> >
> > +1 (binding)
> >
> > Regards
> > JB
> >
> > Le 5 mars 2020 à 19:55, Luke Cwik <lc...@google.com> a écrit :
> >
> > Please review the release of the following artifacts that we vendor:
> > * beam-vendor-grpc-1_26_0
> >
> > Hi everyone,
> > Please review and vote on the release candidate #1 for the version 0.3,
> as follows:
> > [ ] +1, Approve the release
> > [ ] -1, Do not approve the release (please provide specific comments)
> >
> >
> > The complete staging area is available for your review, which includes:
> > * the official Apache source release to be deployed to dist.apache.org
> [1], which is signed with the key with fingerprint
> EAD5DE293F4A03DD2E77565589E68A56E371CCA2 [2],
> > * all artifacts to be deployed to the Maven Central Repository [3],
> > * commit hash "28d05d317a39b5d60a31988c69d1fb8a9c5006fc" [4],
> >
> > The vote will be open for at least 72 hours. It is adopted by majority
> approval, with at least 3 PMC affirmative votes.
> >
> > Thanks,
> > Release Manager
> >
> > [1] https://dist.apache.org/repos/dist/dev/beam/vendor/
> > [2] https://dist.apache.org/repos/dist/release/beam/KEYS
> > [3]
> https://repository.apache.org/content/repositories/orgapachebeam-1098/
> > [4]
> https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc
> >
> >
>
Re: [VOTE] Vendored Dependencies Release gRPC 1.26.0 v0.3 for
BEAM-9288 RC #3
Posted by Ismaël Mejía <ie...@gmail.com>.
+1 (binding)
Verified signatures
Verified that there are no conscrypt classes or binaries in jar
Verified pom.xml has runtime dependency on conscrypt
On Thu, Mar 5, 2020 at 9:14 PM Jean-Baptiste Onofre <jb...@nanthrax.net> wrote:
>
> +1 (binding)
>
> Regards
> JB
>
> Le 5 mars 2020 à 19:55, Luke Cwik <lc...@google.com> a écrit :
>
> Please review the release of the following artifacts that we vendor:
> * beam-vendor-grpc-1_26_0
>
> Hi everyone,
> Please review and vote on the release candidate #1 for the version 0.3, as follows:
> [ ] +1, Approve the release
> [ ] -1, Do not approve the release (please provide specific comments)
>
>
> The complete staging area is available for your review, which includes:
> * the official Apache source release to be deployed to dist.apache.org [1], which is signed with the key with fingerprint EAD5DE293F4A03DD2E77565589E68A56E371CCA2 [2],
> * all artifacts to be deployed to the Maven Central Repository [3],
> * commit hash "28d05d317a39b5d60a31988c69d1fb8a9c5006fc" [4],
>
> The vote will be open for at least 72 hours. It is adopted by majority approval, with at least 3 PMC affirmative votes.
>
> Thanks,
> Release Manager
>
> [1] https://dist.apache.org/repos/dist/dev/beam/vendor/
> [2] https://dist.apache.org/repos/dist/release/beam/KEYS
> [3] https://repository.apache.org/content/repositories/orgapachebeam-1098/
> [4] https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc
>
>
Re: [VOTE] Vendored Dependencies Release gRPC 1.26.0 v0.3 for
BEAM-9288 RC #3
Posted by Jean-Baptiste Onofre <jb...@nanthrax.net>.
+1 (binding)
Regards
JB
> Le 5 mars 2020 à 19:55, Luke Cwik <lc...@google.com> a écrit :
>
> Please review the release of the following artifacts that we vendor:
> * beam-vendor-grpc-1_26_0
>
> Hi everyone,
> Please review and vote on the release candidate #1 for the version 0.3, as follows:
> [ ] +1, Approve the release
> [ ] -1, Do not approve the release (please provide specific comments)
>
>
> The complete staging area is available for your review, which includes:
> * the official Apache source release to be deployed to dist.apache.org <http://dist.apache.org/> [1], which is signed with the key with fingerprint EAD5DE293F4A03DD2E77565589E68A56E371CCA2 [2],
> * all artifacts to be deployed to the Maven Central Repository [3],
> * commit hash "28d05d317a39b5d60a31988c69d1fb8a9c5006fc" [4],
>
> The vote will be open for at least 72 hours. It is adopted by majority approval, with at least 3 PMC affirmative votes.
>
> Thanks,
> Release Manager
>
> [1] https://dist.apache.org/repos/dist/dev/beam/vendor/ <https://dist.apache.org/repos/dist/dev/beam/vendor/>
> [2] https://dist.apache.org/repos/dist/release/beam/KEYS <https://dist.apache.org/repos/dist/release/beam/KEYS>
> [3] https://repository.apache.org/content/repositories/orgapachebeam-1098/ <https://repository.apache.org/content/repositories/orgapachebeam-1098/>
> [4] https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc <https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc>
Re: [VOTE] Vendored Dependencies Release gRPC 1.26.0 v0.3 for
BEAM-9288 RC #3
Posted by Luke Cwik <lc...@google.com>.
+1 (binding)
Verified that conscrypt jars and .so files don't appear in the jar.
On Thu, Mar 5, 2020 at 10:55 AM Luke Cwik <lc...@google.com> wrote:
> Please review the release of the following artifacts that we vendor:
> * beam-vendor-grpc-1_26_0
>
> Hi everyone,
> Please review and vote on the release candidate #1 for the version 0.3, as
> follows:
> [ ] +1, Approve the release
> [ ] -1, Do not approve the release (please provide specific comments)
>
>
> The complete staging area is available for your review, which includes:
> * the official Apache source release to be deployed to dist.apache.org [1],
> which is signed with the key with
> fingerprint EAD5DE293F4A03DD2E77565589E68A56E371CCA2 [2],
> * all artifacts to be deployed to the Maven Central Repository [3],
> * commit hash "28d05d317a39b5d60a31988c69d1fb8a9c5006fc" [4],
>
> The vote will be open for at least 72 hours. It is adopted by majority
> approval, with at least 3 PMC affirmative votes.
>
> Thanks,
> Release Manager
>
> [1] https://dist.apache.org/repos/dist/dev/beam/vendor/
> [2] https://dist.apache.org/repos/dist/release/beam/KEYS
> [3] https://repository.apache.org/content/repositories/orgapachebeam-1098/
> [4]
> https://github.com/apache/beam/commit/28d05d317a39b5d60a31988c69d1fb8a9c5006fc
>