Re: [VOTE] Release Apache Wagon version 3.3.4

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

Re: [VOTE] Release Apache Wagon version 3.3.4

olamy
+1

On Mon, 4 Nov 2019 at 06:04, Hervé BOUTEMY <[hidden email]> wrote:

> Hi,
>
> We solved 5 issues:
>
> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12318122&version=12345956&styleName=Text
>
> There are still a couple of issues left in JIRA:
>
> https://issues.apache.org/jira/issues/?jql=project%20%3D%20WAGON%20AND%20status%20%3D%20Open%20ORDER%20BY%20key%20DESC%2C%20priority%20DESC
>
> Staging repo:
> https://repository.apache.org/content/repositories/maven-1535/
>
> https://repository.apache.org/content/repositories/maven-1535/org/apache/maven/wagon/wagon/3.3.4/wagon-3.3.4-source-release.zip
>
> Source release checksum(s):
> wagon-3.3.4-source-release.zip sha512:
> 1484d17bede842ed45ae3642ccb12f585489a95604fd100a4fddea05e39b0d0471a3d878c8252cc2a29fcdc4f3d2ec0dd25629842ea4443d7557e488b0f3c25f
>
> Staging site:
> https://maven.apache.org/wagon-archives/wagon-LATEST/
>
> Guide to testing staged releases:
> https://maven.apache.org/guides/development/guide-testing-releases.html
>
> Vote open for at least 72 hours.
>
> [ ] +1
> [ ] +0
> [ ] -1
>
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>

--
Olivier Lamy
http://twitter.com/olamy | http://linkedin.com/in/olamy
Reply | Threaded
Open this post in threaded view
|

Re: [VOTE] Release Apache Wagon version 3.3.4

Michael Osipov-2
Am 2019-11-03 um 21:04 schrieb Hervé BOUTEMY:

> Hi,
>
> We solved 5 issues:
> https://issues.apache.org/jira/secure/ReleaseNote.jspa?projectId=12318122&version=12345956&styleName=Text
>
> There are still a couple of issues left in JIRA:
> https://issues.apache.org/jira/issues/?jql=project%20%3D%20WAGON%20AND%20status%20%3D%20Open%20ORDER%20BY%20key%20DESC%2C%20priority%20DESC
>
> Staging repo:
> https://repository.apache.org/content/repositories/maven-1535/
> https://repository.apache.org/content/repositories/maven-1535/org/apache/maven/wagon/wagon/3.3.4/wagon-3.3.4-source-release.zip
>
> Source release checksum(s):
> wagon-3.3.4-source-release.zip sha512: 1484d17bede842ed45ae3642ccb12f585489a95604fd100a4fddea05e39b0d0471a3d878c8252cc2a29fcdc4f3d2ec0dd25629842ea4443d7557e488b0f3c25f
>
> Staging site:
> https://maven.apache.org/wagon-archives/wagon-LATEST/
>
> Guide to testing staged releases:
> https://maven.apache.org/guides/development/guide-testing-releases.html
>
> Vote open for at least 72 hours.
>
> [ ] +1
> [ ] +0
> [ ] -1

+1

My upcoming improvements will need more time...


---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: [VOTE] Release Apache Wagon version 3.3.4

Michael Osipov
Am 2019-11-05 um 20:10 schrieb Vladimir Sitnikov:
>> Staging repo:
>> https://repository.apache.org/content/repositories/maven-1535/
>
> -1 since
> https://repository.apache.org/content/repositories/maven-1535/org/apache/maven/wagon/wagon-http/3.3.4/wagon-http-3.3.4-shaded.jar
> violates licensing terms for the third-party code.
> One of the violations is org.jsoup:jsoup.

Are you referring to his statement of the MIT license?



---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: [VOTE] Release Apache Wagon version 3.3.4

Tibor Digana
In reply to this post by Michael Osipov-2
The MIT license can be included in the project
https://www.apache.org/legal/resolved.html
Are we talking about the file /META-INF/DEPENDENCIES in JAR?

On Tue, Nov 5, 2019 at 8:10 PM Vladimir Sitnikov <
[hidden email]> wrote:

> > Staging repo:
> > https://repository.apache.org/content/repositories/maven-1535/
>
> -1 since
>
> https://repository.apache.org/content/repositories/maven-1535/org/apache/maven/wagon/wagon-http/3.3.4/wagon-http-3.3.4-shaded.jar
> violates licensing terms for the third-party code.
> One of the violations is org.jsoup:jsoup.
>
> I know releases may not be vetoed (
> https://www.apache.org/foundation/voting.html#ReleaseVotes )
> However, there's
>
> > http://www.apache.org/legal/release-policy.html#licensing
> >Every ASF release MUST comply with ASF licensing policy. This requirement
> is of utmost importance
>
> Vladimir
>
Reply | Threaded
Open this post in threaded view
|

Re: [VOTE] Release Apache Wagon version 3.3.4

Enrico Olivelli
Thank you Vladimir.
This problem affects Maven core binary package, as you already reported.

For the source release we do not have a real problem as we did not
copy/paste Jsoup code.

For binary release (that actually is not part of the official VOTE), the
jar we are deploying to Maven central, I think we can only bundle the
LICENSE file of Jsoup inside the jar such LICENSE file includes the NOTICE
we are talking about.

This is really some task we should document in maven shade plugin website,
or at least mention that whoever embeds another library to handle this kind
of problem

I wonder if we could enhance the pom in the future to report machiene
readable statements like 'the artifact will include a binary copy of this
other third party pom'
(I apologize, I don't want to pollute the vote thread, but this is somehow
related)
Enrico

Il mer 6 nov 2019, 00:38 Tibor Digana <[hidden email]> ha scritto:

> The MIT license can be included in the project
> https://www.apache.org/legal/resolved.html
> Are we talking about the file /META-INF/DEPENDENCIES in JAR?
>
> On Tue, Nov 5, 2019 at 8:10 PM Vladimir Sitnikov <
> [hidden email]> wrote:
>
> > > Staging repo:
> > > https://repository.apache.org/content/repositories/maven-1535/
> >
> > -1 since
> >
> >
> https://repository.apache.org/content/repositories/maven-1535/org/apache/maven/wagon/wagon-http/3.3.4/wagon-http-3.3.4-shaded.jar
> > violates licensing terms for the third-party code.
> > One of the violations is org.jsoup:jsoup.
> >
> > I know releases may not be vetoed (
> > https://www.apache.org/foundation/voting.html#ReleaseVotes )
> > However, there's
> >
> > > http://www.apache.org/legal/release-policy.html#licensing
> > >Every ASF release MUST comply with ASF licensing policy. This
> requirement
> > is of utmost importance
> >
> > Vladimir
> >
>