You are viewing a plain text version of this content. The canonical link for it is here.
Posted to derby-dev@db.apache.org by "Richard N. Hillegas (Jira)" <ji...@apache.org> on 2021/03/11 14:58:00 UTC
[jira] [Commented] (DERBY-7104) Sign the JAR files
[ https://issues.apache.org/jira/browse/DERBY-7104?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17299612#comment-17299612 ]
Richard N. Hillegas commented on DERBY-7104:
--------------------------------------------
Derby release artifacts are PGP- and SHA-512-signed via the following process: https://infra.apache.org/release-signing.html
Does your application use other Apache assets, which are signed with certificates? If so, what are the certificate-signed Apache artifacts you are using? Thanks.
> Sign the JAR files
> ------------------
>
> Key: DERBY-7104
> URL: https://issues.apache.org/jira/browse/DERBY-7104
> Project: Derby
> Issue Type: Improvement
> Components: Miscellaneous
> Affects Versions: 10.15.2.0
> Reporter: Shawn Fernandes
> Priority: Trivial
> Labels: Signed, jars
>
> Please sign all jar files with valid third party cert using below directions
> https://www.digicert.com/kb/code-signing/java-code-signing-guide.htm
--
This message was sent by Atlassian Jira
(v8.3.4#803005)