Re: [DISCUSS] Removal of ineffective switch for Maven 4

ue to drop them from the Maven CLI. >> >> Would that make sense? > > That would make sense. If the investigation takes longer, you can at least remove them from usage output I had glanced over those options more often than I like, just to learn they are Ine

Re: [VOTE] Require Java 17 for Maven 4

t > of Maven-Core 4 to 17 and hence require Java 17 for Maven 4. Gruß Bernd — https://bernd.eckenfels.net - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: [DISCUSS] Java version for Maven

hem on 9+ with maven.compiler.target. Luckily you can solve that with a profile activated by runtime version. https://maven.apache.org/plugins/maven-compiler-plugin/examples/set-compiler-release.html Gruß Bernd — https://bernd.eckenfels.net - To

Re: [DISCUSS] Java version for Maven

technologies. And if the whole ecosystem understands there is a 3.d and 4.x branch, the better… Gruss Bernd Jorge Solórzano wrote on 24. Feb 2024 23:42 (GMT +01:00): > Hi Maven Developers, > > A lot has been told already from both sides, but please, please, let's > focus on h

Re: [DISCUSS] Usage of Maven Changes Plugin/Reduction of Features

The Apache Commons Project Sites use the jira integration, the plugin works in principle, but does not support paging. https://commons.apache.org/proper/commons-vfs/jira-report.html Gruss Bernd -- http://bernd.eckenfels.net Von: Michael Osipov Gesendet

Re: [VOTE] Release Maven Site Plugin version 4.0.0-M1

BTW it would probably be good to explain the relation with other maven 4 projects, just to not confuse people with the major number. Like can it be used (only) with maven 3 and so on. Gruss Bernd -- http://bernd.eckenfels.net Von: Romain Manni-Bucau Gesendet

Re: [DISCUSS] Radical Fast Forward to 3.5.4

, minimum versions and requirements). Of course you could try to negotiate with the biggest distributions on a common ground, but that will mean more versions than today (not less) - so why waste your cycles… Gruss Bernd -- http://bernd.eckenfels.net Von: Jorge

Re: Maven Dependency Plugin - Log4j vulnerabilities

Bernd -- http://bernd.eckenfels.net Von: Martin Gainty Gesendet: Thursday, March 3, 2022 1:18:50 PM An: Maven Developers List Cc: David Milet ; iss...@maven.apache.org ; VZ-Product-OneTalk ; Danylo Volokh Betreff: RE: Maven Dependency Plugin - Log4j vulnerabilities

Re: Formal identification of license in a POM license element

are some OSI sourced entries as well: https://github.com/OpenSourceOrg/licenses/tree/master/licenses Gruss Bernd -- http://bernd.eckenfels.net Von: Gary Gregory Gesendet: Friday, February 11, 2022 7:48:58 PM An: Maven Developers List Betreff: Formal

Re: MD5, SHA1, but nothing (still) safe?

deployer. (You better not generate the trusted lists from the untrusted repository hash files). Gruss Bernd -- http://bernd.eckenfels.net Von: Mickael Istria Gesendet: Thursday, October 14, 2021 9:56:04 AM An: Maven Developers List Betreff: Re: MD5, SHA1, but nothing

Re: MD5, SHA1, but nothing (still) safe?

broken/short/fast md5 would be strong enough to detect bit errors, especially considering TLS is now mandatory. Having said that, I guess the policy should come from maven central what’s required for new uploads. Gruss Bernd -- http://bernd.eckenfels.net Von

Re: system path dependency warning, accurate or not?

that warning) Gruss Bernd -- http://bernd.eckenfels.net Von: Romain Manni-Bucau Gesendet: Sunday, September 26, 2021 8:15:30 AM An: Maven Developers List Betreff: Re: system path dependency warning, accurate or not? Yep but it is not consistent since it is the

Re: system path dependency warning, accurate or not?

. 25 sept. 2021 à 17:42, Bernd Eckenfels a écrit : > Hello, > > I am a Repo user and despise binaries in git, therefore I would not run > into this problem. It also means you might be outside of the maven > conventions. > > However I can see that you might need in expect

Re: system path dependency warning, accurate or not?

plug-in dependency? So all in all, the warning is a good thing unless we have a way to not export that dependency into the consumer transitive tree (as those don’t know anything about your base) Gruss Bernd -- http://bernd.eckenfels.net Von: Michael Osipov Gesendet

Re: Removing IRC channel mentions from official website documentation

gets access and how) On what URLs you saw the irc channel? Gruss Bernd -- http://bernd.eckenfels.net Von: Dawid Pura Gesendet: Wednesday, September 8, 2021 10:16:27 PM An: dev@maven.apache.org Betreff: Removing IRC channel mentions from official website

Re: Request for Enhancement: Dependency Overrides

o replace transitive dependencies with fixed minor updates. This is however seldomly needed since maven adjusts version conflicts to the closest version anyway. Gruss Bernd -- http://bernd.eckenfels.net Von: Enno Thieleke Gesendet: Saturday, August 14, 2021 3:3

Re: Request for Enhancement: Dependency Overrides

. Gruss Bernd -- http://bernd.eckenfels.net Von: Enno Thieleke Gesendet: Saturday, August 14, 2021 1:24:26 PM An: Maven Developers List Betreff: Re: Request for Enhancement: Dependency Overrides So, you're saying that I can replace artifact coordinates

Re: Software Heritage connector to Maven repositories

ask OSSIndex for cooperation. Gruss Bernd -- http://bernd.eckenfels.net Von: Boris Baldassari Gesendet: Montag, Juni 14, 2021 5:25 PM An: dev@maven.apache.org Betreff: Re: Software Heritage connector to Maven repositories Hi Frederik, Thanks for the kind answer

Re: Security/Versioning policy proposal

I agree, maven does not need to concern itself with branches as long as it stays fairly forward drop-in compatible. Having said that, things like changing the policy for handling http might not be that drop-in, but on the other hand it’s just a config option and does not require complicated (pl

Re: maven 4.0.0 new XML stuff

explicite semantic (and the inherent compatibility with exiting POMs). Gruss Bernd -- http://bernd.eckenfels.net Von: Matthieu BROUILLARD Gesendet: Thursday, December 31, 2020 3:19:09 PM An: dev@maven.apache.org Betreff: maven 4.0.0 new XML stuff Hello all

Re: Build windows-jdk15

issue?) Gruss Bernd -- http://bernd.eckenfels.net Von: Elliotte Rusty Harold Gesendet: Thursday, December 31, 2020 12:37:18 PM An: Maven Developers List Betreff: Re: Build windows-jdk15 Here's one example: https://ci-builds.apache.org/job/Maven/job/maven-bo

Re: [DISCUSS] Allow attributes shorthand in pom.xml

(after all its project model not build script) BTW i abstain from commenting on your tone since we are all passionate about our experiences, it does trigger me to add this footnote, however. Gruss Bernd -- http://bernd.eckenfels.net Von: Hunter C Payne Gesendet

Re: Apache Maven Software

3.5.x line. (However as already explained, if enough organizations invest the time and produce a critical fix, together with this free development community, why not. It would be however much easier to just upgrade) Gruss Bernd (An unofficial bystander, triggered by formal requests) -- http

Re: Jenkins + Github

I think this is not possible for security reasons, you cannot trust pull requests to have malicious code. The Jenkins builds are not that isolated. Gruss Bernd -- http://bernd.eckenfels.net Von: Elliotte Rusty Harold Gesendet: Thursday, February 20, 2020 1:46

Re: Maven Wrapper

How about adding a system property or environment variable stating the type of starter script and it's version, so this can be logged by Maven runs for better troubleshooting and potentially warnings from enforcer plugin? BTW: I wrote a longish argument for maintainability and binaries in Repos,

Re: Maven Pom Property replacement - possible bug?

someGroupID} but it might depend on how often the plugin interpolates it. Haven't tried it, though. Bernd -- http://bernd.eckenfels.net Von: Nick Stolwijk Gesendet: Wednesday, February 5, 2020 2:32:28 AM An: Maven Developers List Betreff: Fwd: Maven Pom Prope

Re: Prevent maven-release-plugin from reformatting attributes on project element

For the declaration element we took the easy route and use the single line element as it gets regenerated by the release. This is actually a good thing it contains absolutely nothing of value, so wasting only one line is ok (you just must get over the need of printing it on paper ,) -- http:

Re: Prevent maven-release-plugin from reformatting attributes on project element

PM An: Maven Developers List Betreff: Re: Prevent maven-release-plugin from reformatting attributes on project element Ah, yes, I do remember the changed indentation of the tag element in the past, put I don't recall seeing that lately. Have to check tomorrow when I get to the office. Be

Re: Prevent maven-release-plugin from reformatting attributes on project element

Hm, for me it keeps the line breaks, it does however change the intention for the tag element. I thought this was configurable, but can't find it at the moment. Anyway this is an open (and rejected) issue: https://issues.apache.org/jira/browse/MRELEASE-1008 Gruss Bernd --

Re: Profiles, builds, and repositories

Hello, Yes profiles can severely affect the content of a build artifact and there is no way to tell the used profile in the Maven repo. This is generally the reason why it should not be used to influence the released build artifacts and can also not be relied upon. Gruss Bernd -- http

Re: is macen repo down?

Please send the error message as text, the image seems not to be received via the mailing list. (Although Maven central repository is not managed on this list) -- http://bernd.eckenfels.net Von: Alexius Diakogiannis Gesendet: Freitag, November 29, 2019 7:36 P

Re: [SUMMARY] 3 ITs permanently fail on Linux / Maven Core

ix it on the project-level. The project simply wasn't aware of - side effects and impact of creating this file on Jenkins - the existence of .mvn/jvm.config Robert On Sun, 04 Aug 2019 18:51:52 +0200, Bernd Eckenfels wrote: > Do we need a Maven Option to turn of processing of implicit >

Re: [SUMMARY] 3 ITs permanently fail on Linux / Maven Core

Do we need a Maven Option to turn of processing of implicit configurations, just like you can turn of shellrc Files? -- http://bernd.eckenfels.net Von: Robert Scholte Gesendet: Samstag, August 3, 2019 9:12 PM An: Maven Developers List Betreff: [SUMMARY] 3 ITs p

Re: JDK 13 - Early Access build 17 is available

releases but in respect for this mailing list I refrain from discussing it. Gruss Bernd -- http://bernd.eckenfels.net Von: Tibor Digana Gesendet: Freitag, April 19, 2019 11:04 PM An: Maven Developers List Betreff: Re: JDK 13 - Early Access build 17 is

Re: Ojdbc7 dependency issue

repeatable builds you would normally just upload the driver there. Gruss Bernd Gruss Bernd -- http://bernd.eckenfels.net Von: Paul Hammant Gesendet: Samstag, März 16, 2019 3:20 PM An: Maven Developers List Betreff: Re: Ojdbc7 dependency issue Does 'central'

AW: Fwd: FOSDEM 19 Debian Java talk

“, „official“ to avoid those Groups to feel unwelcome (especially in the ASF spirit of open SOURCE). Gruss Bernd -- http://bernd.eckenfels.net Von: Michael Osipov Gesendet: Mittwoch, 13. Februar 2019 19:36 An: Maven Developers List; Robert Scholte; Dalibor Topic; Markus Koschany Cc: debian-j

Re: Update versions of all plugins in default-bindings.xml

wrappers). So this means: keep old standard versions and overwrite them always in poms. (And it means the amount of default versions should be reduced or at least not add new ones) Gruss Bernd -- http://bernd.eckenfels.net Von: Robert Scholte Gesendet: Samstag

Re: JDK 11 Early Access build 12 available

string literals. The language really is on the go. (Despite this being very complex) http://openjdk.java.net/projects/amber/ And I am totally offtopic, sorry. I would recommend to check out the language architecture talks in the Oracle Code series. Gruss Bernd Gruss Bernd -- http

Re: Speeding up Maven

Hello, Maven is not the fastest, but in your case it sounds unusual slow. What are your machine specs? Any SSD? Do you happen to have a on-access malware scanner active? They react very bad to Java scanning large number of JAR files. Gruss Bernd Gruss Bernd -- http://bernd.eckenfels.net

[MJAR] please add MJAR-238 to jigsaw status as an open bug

has quite a few discussions, for example here: https://stackoverflow.com/questions/43671410/how-to-specify-main-class-and-module-version-in-maven-jar-plugin Gruss Bernd -- http://bernd.eckenfels.net

Re: Security related metadata

lists nobody really agreed) Having a standard way to attach annotations might do the whole eco system a favor. Gruss Bernd Gruss Bernd -- http://bernd.eckenfels.net From: Hervé BOUTEMY Sent: Wednesday, March 14, 2018 11:48:35 PM To: Maven Developers List Subject

Re: [m-jlink-p] NPE for small project

Hello, just found that this is a known and fixed issue: https://issues.apache.org/jira/browse/MJLINK-4 Gruss Bernd -- http://bernd.eckenfels.net Von: Bernd Eckenfels Gesendet: Freitag, 9. März 2018 01:37 An: Maven Developers List Betreff: [m-jlink-p] NPE for small project Hello, when I use

[m-jlink-p] NPE for small project

0 more I can open a bug Report if you think it is worth it - havent tried Alpha2-snapshot/master yet. Gruss Bernd -- http://bernd.eckenfels.net

Re: [VOTE] Release Apache Maven PDF Plugin version 1.4

-plugins/blob/trunk/maven-pdf-plugin/MOVED_TO_GIT Gruss Bernd Gruss Bernd -- http://bernd.eckenfels.net From: Hervé BOUTEMY Sent: Friday, December 22, 2017 10:11:32 AM To: Maven Developers List Subject: [VOTE] Release Apache Maven PDF Plugin version 1.4 Hi, We solved

AW: Maven 4.0.0

Hello, Adding annotations and processor as a compiletime dependency sounds like a reasonable thing. It would however be cool if the JAR could describe which package needs to go on the classpath and which is processor impl. (and having a different artifact for runtime) Gruss Bernd Von: Mark

Re: Building a Java9 project just using JDK9

You recreate a limited modules JRE with jlink. Haven't tried it but maybe you can generate an image with Java.se.ee as root that way, too. Gruss Bernd -- http://bernd.eckenfels.net From: Tibor Digana Sent: Wednesday, August 16, 2017 8:28:02 AM To:

Re: Fwd: How to name modules, automatic and otherwise

> > The idea is to not default to group:artifact but to check if the artifact > starts with a suffix of the group-ID and then skip this. So g=org.hibernate > a=hibernate-core would become org.hibernate.core and not > org.hibernate.hibernate.core. This is a neat trick I wished in the past in > some

Re: Taking Security Seriously

Having artifact checksums (hashes not signatures) in POM dependency declarations would be cool, but that is not what .md5 or .asc is used for.  Gruss Bernd -- http://bernd.eckenfels.net On Mon, Dec 5, 2016 at 10:45 PM +0100, "Alexander Kjäll" wrote: Maybe we are tal

Re: Discussion: Resource-only artifacts

) groupX permission-api ${version.groupX.permission-api} * * ... Gruss Bernd Am Thu, 18 Aug 2016 23:06:30 +0200 schrieb "Robert Scholte" : > O

Re: Discussion: Resource-only artifacts

> And, if so, is that a justifiable assumption? It could have a config option for embedding/exploding such additional archives, just like assembly plugin or copy-deendencies can work on dependencies. Gruss Bernd - To unsubs

Re: Maven Memory Consumption

big as Xms, so you should set it low. It is however not an indication if you can decrease Xmx. If it tells you the total memory commited was 1,5GB it is possible that it would run with Xmx 1G as well. Gruss Bernd Am Sun, 17 Apr 2016 17:50:05 +0200 schrieb Karl Heinz Marbaise : >

Re: Reproducibility versus ranges

;t have > enough information to do that. > > On Tue, Oct 27, 2015 at 1:42 PM, Bernd Eckenfels > wrote: > > > Hello, > > > > if you lock down ranges on release your dependencies will also have > > no ranges and you do not need to lock them down transitively. > &

Re: Reproducibility versus ranges

Hello, you dont need to remeber the ranges if you will not touch the ranged pom on the trunk/master/devel branch, only the release tags/commits/branches have that expanded version. (Just like the version tag, its the only pom incarnation with a non-snapshot one). Gruss Bernd Am Mon, 26 Oct 2015

Re: Reproducibility versus ranges

Hello, if you lock down ranges on release your dependencies will also have no ranges and you do not need to lock them down transitively. BTW: I really think tis is a topic for the maven-user list. Gruss Bernd Am Tue, 27 Oct 2015 11:21:09 +1300 schrieb Fred Cooke : > In our case, we do

Re: Reproducibility versus ranges

but also versions:resolve-ranges: http://www.mojohaus.org/versions-maven-plugin/resolve-ranges-mojo.html Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

[buildnumber-maven-plugin] please release, current 1.3 does not work with Git

in/pull/19 Can you please merge this and consider a new release of the plugin. Gruss Bernd BTW: I claimed two ITs fail for me: the problem is that on my Oracle EL 7 VM I use for testing is a svn 1.7.14 installed. It looks like the IT delivers a .svn/format=12 which requires 1.8. So I guess th

Re: Help getting started contributing to maven

quests instead of patches. Yes, thats possible. A PR on github can be turned into a patch and commited by a commiter. For larger changes it might be best to first find someone willing to work with you in merging it. You always can download the PR as patch file and append it in addit

Re: Unable to deploy to repository.apache.org using Java 6 any more

issues.apache.org (JIRA) has the same problem. The 4096bit DHE prime is not supported by Java (not even 1.8). It helps to disable DHE completely in jre/lib/security/java.security: jdk.tls.disabledAlgorithms=MD5, RC4, SSLv3, DSA, RSA keySize < 2048, DHE Gruss Bernd Am Thu, 25 Jun 2015 20:35

Re: Maven structure plugin

d and next level and empty lines between all entries) Is outputDirectory actually an outputFile parameter? (like dependency:tree uses). Gruss Bernd Am Tue, 23 Jun 2015 01:58:19 +0200 schrieb burak sarac : > Since few days I was working on a maven plugin to print project > structure in ascii

Re: Do we want to go for gitpubsub?

ost valuable for samples. Gruss Bernd Am Sun, 3 May 2015 20:22:04 +0200 schrieb Andreas Gudian : > 5 gig? wow... > > I think a whole lot of of the pages is garbage that no one ever really > reads. No, not the docs itself ;-) - I'm talking about the many many > source xref and j

OS Family DOS not windows with Java 8

first would be to print all families which apply, not only the "first" one and secondly using a different data structure to hold the list of families to make them sorted (again). https://github.com/sonatype/plexus-utils/blob/f2beca21c75084986b49b3ab7b5f0f988021dcea/src/main/java/org/codeh

Re: maven-release-plugin does not build cleanly - M2_HOME is missing

eed to export it and the configuration is consistent (with the settings the IDEs typically set as well). Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: [DISCUSS] To SemVer or not to SemVer, that is the question

developing with that in mind (and if you do it it is still in the interest of your users). Gruss Bernd Am Sat, 21 Feb 2015 23:05:37 +0100 schrieb Dennis Lundberg : > Hi, > > Although I strongly feel that SemVer [1] is the way to go when it > comes to versioning, I still haven

Re: maven git commit: .mvn/ for project specific jvm options and maven parameters

pt is optional. But having the logic only in one place is a big win. Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Build failed in Jenkins: core-it-maven-3-win

Hello, Ping? The mails still nag me. Maybe it is enough to clean the workspace for this job? Who should be responsible, so I can contact them directly? Gruss Bernd Am Tue, 27 Jan 2015 21:46:12 +0100 schrieb Bernd Eckenfels : > Hello, > > the core-it-maven-3-win are failing becaus

Fw: Build failed in Jenkins: core-it-maven-3-win

Hello, the core-it-maven-3-win are failing because of some get setup problem (it seems). The job sent a lot of failed mail messages. It looks like I do get a copy because one of my patches was commited meanwhile. Can somebody have a look? Gruss Bernd -- Datum: Mon, 26 Jan 2015 23:27:07 +

AW: 3.2.3 not available thoughhttp://archive.apache.org/dist/maven/binaries/?

Hello, It is on the archive site ob the new coordinates: http://archive.apache.org/dist/maven/maven-3/3.2.3/binaries/ Greetings bernd -- http://bernd.eckenfels.net - Ursprüngliche Nachricht - Von: "Milos Kleint" Gesendet: ‎29.‎12.‎2014 09:02 An: "Maven Developers Lis

Re: Why is distributionManagement inside the pom?

would be cool. Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Build Failing of Maven

Hello, Oh I can actually answer my question myself :) build:231 contains a with filter. So I guess it is not about a syntax error in the ant script but the filtered resources. So you need to provide more context: can you see before the error which file actually failed? Gruss Bernd PS: what

Re: Build Failing of Maven

Am Sat, 6 Dec 2014 17:36:45 +0530 schrieb kapil Ashiwal : > BUILD FAILED > /usr/local/apache-maven-3.2.3/*build.xml:231: Syntax error in > property: ${* Obvious question, what is the content of line 231? (and surrounding) Gr

Re: [DISCUSS] Adopt Mr Couché-Tard as our mascot, change the logo font to Alte Haas Grotesk, change the colour letter to "v"

) https://kenai.com/projects/duke/pages/Home Gruss Bernd Am 20.11.2014 22:41 schrieb "Stephen Connolly" < stephen.alan.conno...@gmail.com>: > On 20 November 2014 21:36, Paul Benedict wrote: > > > Trademarks are tied to an industry/usage. So someone using a name for a

Re: Logging in Maven 3.1.1

Hello, you need to escape : and \ in properties files: org.slf4j.simpleLogger.logFile=E\:\\Mavenlogs\\Mavenlog.txt BTW: this is a maven users question. Gruss Bernd Am Thu, 20 Nov 2014 14:37:08 + schrieb "Held, James E." : > We'd like to log all maven activity to o

Re: [SUREFIRE] List of simple issues to fix

. I would argue it makes sense to change the warning to actually mention reorting.outputEncoding. Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Toolchains part of Maven distribution / global toolchains

point to a shared toolchain.xml file but still get the whole resolving hierachy of settings.xml. (And you can use it to share or seperate other things. It is only a question on how to merge the DOMs). Gruss Bernd Am Sat, 01 Nov 2014 16:10:19 +0100 schrieb "Robert Scholte" : > Ver

Re: Q: Maven Toolchain

ntries as special properties, then one could use: ${toolchain.mavenhome.3.0.x} ${toolchain.jdkhome.1.7.0.51} Or similiar? Gruss Bernd maven-invoker-plugin > > /Anders > > > On Wed, Feb 19, 2014 at 7:12 PM, Karl Heinz Marbaise > wrote: > > &

Re: Toolchains part of Maven distribution / global toolchains

). Gruss Bernd Am Sun, 19 Oct 2014 18:18:34 +0200 schrieb "Robert Scholte" : > Hi, > > since we're slowly upgrading the minimum JDK to run Maven it becomes > more and more important to let our users know how they can compile > with an ancient/older version of the

Re: Maven deploy does not respect finalName

names in a maven-repo compliant way. This is btw better asked in the maven-users mailing list. Gruss Bernd - Am Thu, 25 Sep 2014 06:51:21 -0700 (PDT) schrieb Victor : > Hi, > > When you run the maven deploy phase, maven upload to nexus the final > file with the name ${artifactId}-${v

Re: Release javadoc-plugin

, and therefore link.length-1 would do. This is true for both versions. Gruss Bernd Am Sat, 13 Sep 2014 21:25:47 +0200 schrieb Dennis Lundberg : > Hi > > Maven Javadoc Plugin is one of our components that currently does not > work with Java 8. I have had a look at the issues in JIRA [1]

Maven Central artifacts list

artifacts without the need of guessing PGP keys. Maybe the index process already has that information available... Bernd -- http://bernd.eckenfels.net - Ursprüngliche Nachricht - Von: "Jason van Zyl" Gesendet: ‎27.‎08.‎2014 14:11 An: "Maven Developers List" Betreff: [Prop

Re: Central and Man-in-the-middle

b.com/ecki/lockdep-maven-plugin There is a productive plugin which can generate checksums, but not check them: https://github.com/nicoulaj/checksum-maven-plugin Greetings Bernd BTW: Bintray' jcenter mirrors central and other stuff and offers SSL, of course it adds additional possibilities to i

Re: POM 5.0 and Maven.next idea - re: 's

ailable. I think this is an (important) best practice since years: http://blog.sonatype.com/2010/03/why-external-repos-are-being-phased-out-of-central/ And it is really good if it is enforced on MC. Gruss Bernd - To unsubscri

Re: Processing Pull Request

encourages a review workflow and is exactly the same as in Gerrit. Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Processing Pull Request

nfra ticket for it to be closed or not,thats why I am interested in this topic as well. Greeetings Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Let's fix the Rat Check usability fail

ed #forkMeOnGitHub( ) : source = META-INF/maven/site.vm 180205 [INFO] Generating "Checkstyle" report--- maven-checkstyle-plugin:2.9.1 Greetings Bernd Am Sun, 18 May 2014 14:38:56 -0400 schrieb Jason van Zyl : > It's the site phase itself that takes a long time. > &g

Re: Let's fix the Rat Check usability fail

sure if the same process applies to maven development. Greetings Bernd Am 18.05.2014 um 19:43 schrieb "Jason Pyeron" : >> -Original Message- >> From: Jason van Zyl >> Sent: Sunday, May 18, 2014 13:05 >> >> Right now though we require all files t

Re: Thoughts on MNG-5626 and the need for a log file

://maven.apache.org/maven-logging.html Gruss Bernd Am Mon, 5 May 2014 15:14:33 -0500 schrieb Paul Benedict : > -X is debug/stack traces, right? That's great when you want a > slosh-load of debug information, but that's only useful when you're > looking for a problem. There's no r

Re: Thoughts on MNG-5626 and the need for a log file

://maven.apache.org/maven-logging.html Gruss Bernd Am Mon, 5 May 2014 15:14:33 -0500 schrieb Paul Benedict : > -X is debug/stack traces, right? That's great when you want a > slosh-load of debug information, but that's only useful when you're > looking for a problem. There's no r

Re: Thoughts on MNG-5626 and the need for a log file

Am Mon, 5 May 2014 14:17:50 -0500 schrieb Paul Benedict : > What should be logged? Warnings. I actually would propose exceptions > too because them on the screen only help if you have "logging" like a > Hudson instance to view them. Uh, what is wrong with mvn

Re: help text maven-javadoc-plugin contains (lost) link

Am Wed, 30 Apr 2014 02:31:21 +0200 schrieb Bernd Eckenfels : > # javadoc:fix > # Fix Javadoc documentation and tags for the Java code for the > # project. See Where Tags Can Be Used. Another thing I notices is, it inserts single-line comments like this: +/** + * Constr

help text maven-javadoc-plugin contains (lost) link

://maven.apache.org/plugins/maven-javadoc-plugin/fix-mojo.html -> http://docs.oracle.com/javase/1.5.0/docs/tooldocs/windows/javadoc.html#wheretags BTW: the 8 version is here: http://docs.oracle.com/javase/8/docs/technotes/tools/windows/javadoc.html#CHDHJGAH Should I report this as an bug? Be

Re: "Not a local repository. It is a local repository cache." (was: Fwd: Why Is Maven Ignoring My Local Repo?)

mvn verify" and pick up the artifacts in target/ where they are easier to find anyway. (which does of course not work if multiple ad-hoc projects depend on each other) (This is BTW a personal pet peeve, any idea why eclipse e2m offers some default targets but the verfiy (or a

Re: "Not a local repository. It is a local repository cache." (was: Fwd: Why Is Maven Ignoring My Local Repo?)

eting for example only the cache of the 'snapshot-repo') (But I guess this would slow down searching/resolution?) Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-mail: dev-h...@maven.apache.org

Re: Model Version 5.0.0

repository releases and rough proxies. With the extra lock file it should be easier to adopt to new versions. Greetings Bernd Am Mon, 24 Mar 2014 11:19:30 +0100 schrieb Baptiste Mathus : > Hi, > > Sorry if it's the wrong thread, just let me know. > > I thought I'd dump

Re: [VOTE] Release ASF Parent POM version 14

(Is there actually a test which checks if all those upgraded plugin dependencies still work with 2.x? It seems to not come with a integration test) Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For addition

Re: [VOTE] Release ASF Parent POM version 14

still maintains maven 2.x POMs I am not sure where that is coming from I wonder? Bernd Am Thu, 06 Mar 2014 22:18:56 +0100 schrieb Hervé BOUTEMY : > Hi, > > Changes since the last release: > http://svn.apache.org/viewvc/maven/pom/tags/apache-14/pom.xml?r1=HEAD&r2=14347

Re: Exposing security vulnerability information (CVEs) when building with Maven

it would be a real helpfull static analysis tool for build time. https://securityblog.redhat.com/2013/01/02/detecting-vulnerable-java-dependencies-at-build-time/ http://victi.ms Greetings Bernd > Am 27.02.2014 um 11:34 schrieb Mark Thomas : > > Hi, > > For those of you tha

Re: What is in a version? (was Towards faster releases)

release is cut (and then deciding if older functional releases still get bugfixes or not). Bernd BTW: I think this is totally Independent of the topic if running Integration builds with automatic promotions. > Am 19.02.2014 um 15:36 schrieb Paul Benedict : > > I don't see an

Re: Getting a list of used artifacts

Am Thu, 13 Feb 2014 02:19:17 +0100 schrieb Bernd Eckenfels : > @Mojo(requiresDependencyCollection=TEST) > project.getArtifacts() > project.getPluginArtifacts() Actual test source is here: https://github.com/ecki/lockdep-maven-plugin Gr

Getting a list of used artifacts

A1 hash of the (used) files? Do you think this is a robust method to get hold of the most resolved dependencies? Gruss Bernd - To unsubscribe, e-mail: dev-unsubscr...@maven.apache.org For additional commands, e-m

Re: JDK 8 Build 121 & JDK 7 Update 60 build 02 are available on java.net

the list is empty but I guess thats not a critical problem. Greetings Bernd Am 30.12.2013, 13:19 Uhr, schrieb Rory O'Donnell Oracle, Dublin Ireland : Hi, I am from the OpenJDK QA group at Oracle, and I'm trying to get an idea about how much community testing is happening o

  1   2   >