top | item 41347156 (no title) rho138 | 1 year ago Are packages cryptographically signed by the actual package maintainer or only with the repo owners key? discuss order hn newest erikvanoosten|1 year ago As package maintainer you are required to sign the packages with a PGP key. Maven Central also requires that you upload that PGP key (the public part only of course) to one of a few well-known key servers.
erikvanoosten|1 year ago As package maintainer you are required to sign the packages with a PGP key. Maven Central also requires that you upload that PGP key (the public part only of course) to one of a few well-known key servers.
erikvanoosten|1 year ago