Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Missing JAR Signing Public Key ID #3694

Open
mk-dev-code opened this issue Jan 22, 2024 · 2 comments
Open

Missing JAR Signing Public Key ID #3694

mk-dev-code opened this issue Jan 22, 2024 · 2 comments
Labels
documentation maintenance

Comments

@mk-dev-code
Copy link

JAR signing public key can not be validated, preventing from ensuring the authenticity of the JAR file on Maven. Would you please publish IDs.
@chayim
Copy link
Contributor

chayim commented Jan 22, 2024

@TaskP Where are you looking to see the GPG key published? It is publicly available on the MIT keyserver. Though we should include it in the README. Anywhere else?

@mk-dev-code
Copy link
Author

Yes, README is perfect.

However there is a difference.
https://repo1.maven.org/maven2/redis/clients/jedis/5.1.0/jedis-5.1.0.jar
https://repo1.maven.org/maven2/redis/clients/jedis/5.1.0/jedis-5.1.0.jar.asc
Signed with key 6BF6C1905C9642D1181D157443543D884CC71C96 which is
Redis OSS oss@redis.com 3072 bit RSA key 43543D884CC71C96, created: 2023-09-03

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation maintenance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@chayim @mk-dev-code