You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
While releasing takari parent pom, I had several issues with signing the POM artifact, with jpgp to be more precise.
The lifecycle uses takari/jpgp version 1.0.9, and only source I found is this repository https://github.com/takari/jpgp but it does NOT contains the latest code (has 1.0.0 only).
As I see jgpg reimplements PGP using Bouncy Castle...
Same thing is done by Slawek here (he is Maven PMC):
While releasing takari parent pom, I had several issues with signing the POM artifact, with jpgp to be more precise.
The lifecycle uses takari/jpgp version 1.0.9, and only source I found is this repository https://github.com/takari/jpgp but it does NOT contains the latest code (has 1.0.0 only).
As I see jgpg reimplements PGP using Bouncy Castle...
Same thing is done by Slawek here (he is Maven PMC):
Maybe it would be ok to switch custom (and non existent) code with something maintained?
The text was updated successfully, but these errors were encountered: