jira-importer commented on issue #456: URL: https://github.com/apache/maven-apache-parent/issues/456#issuecomment-2771730791
**[Konrad Windszus](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=kwin)** commented In the past the Maven generated SHA1 checksum has been used by a lot of ASF projects as checksum which was pushed to dist once finalizing a release. Now that ASF has the requirement for SHA512 in dist this is on longer possible, but as I said, generating the SHA512 checksums with checksum-maven-plugin, attach them as 2nd artifacts and deploy them to the staging repo allows to use the same approach. That allows also to easily verify a release from just the contents of the stage repository.... -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@maven.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
