Title: Add info about which signing keys will be used for published artifacts. · Issue #767 · stleary/JSON-java · GitHub
Open Graph Title: Add info about which signing keys will be used for published artifacts. · Issue #767 · stleary/JSON-java
X Title: Add info about which signing keys will be used for published artifacts. · Issue #767 · stleary/JSON-java
Description: Add info about which signing keys will be used for published artifacts. Looks like the signing key changed for the 20230618 release. 20230618 appears to be signed with this key: https://keyserver.ubuntu.com/pks/lookup?search=fb35c8d02b47...
Open Graph Description: Add info about which signing keys will be used for published artifacts. Looks like the signing key changed for the 20230618 release. 20230618 appears to be signed with this key: https://keyserver.u...
X Description: Add info about which signing keys will be used for published artifacts. Looks like the signing key changed for the 20230618 release. 20230618 appears to be signed with this key: https://keyserver.u...
Opengraph URL: https://github.com/stleary/JSON-java/issues/767
X: @github
Domain: github.com
{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Add info about which signing keys will be used for published artifacts. ","articleBody":"### Add info about which signing keys will be used for published artifacts. \r\n\r\nLooks like the signing key changed for the [20230618](https://github.com/stleary/JSON-java/tree/20230618) release.\r\n\r\n`20230618` appears to be signed with this key: https://keyserver.ubuntu.com/pks/lookup?search=fb35c8d02b4724dada23de0afd116c1969fccff3\u0026fingerprint=on\u0026op=index\r\n\r\nFor security purposes, it would be great if you were able to publish details (in the project docs) about the gpg public keys that are \"valid\" for use when verifying signing artifacts uploaded to maven central.\r\n\r\nThis allows for \"out of band\" verification of the expected signing key. \r\n\r\nSome examples of other libs publishing their signing keys:\r\n\r\nhttps://square.github.io/okhttp/security/security/#verifying-artifacts\r\n\r\nhttps://github.com/eclipse/jetty.project/blob/jetty-10.0.x/KEYS.txt\r\nhttps://downloads.apache.org/commons/KEYS\r\nhttps://downloads.apache.org/logging/KEYS","author":{"url":"https://github.com/yogurtearl","@type":"Person","name":"yogurtearl"},"datePublished":"2023-09-04T16:36:29.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":3},"url":"https://github.com/767/JSON-java/issues/767"}
| route-pattern | /_view_fragments/issues/show/:user_id/:repository/:id/issue_layout(.:format) |
| route-controller | voltron_issues_fragments |
| route-action | issue_layout |
| fetch-nonce | v2:211530fe-43f8-f0bf-bfd7-efa8fcd280e6 |
| current-catalog-service-hash | 81bb79d38c15960b92d99bca9288a9108c7a47b18f2423d0f6438c5b7bcd2114 |
| request-id | CE1E:1A97B4:12F25F8:19729EE:6A5B7E96 |
| html-safe-nonce | 8ebd2aa0966d69e3bb4fcb9e79dc20fd954303a9299dce3677ff59934f4bc567 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJDRTFFOjFBOTdCNDoxMkYyNUY4OjE5NzI5RUU6NkE1QjdFOTYiLCJ2aXNpdG9yX2lkIjoiNTAwODY1NzI1ODgzMTkwNDQwNiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | fac898b9d7f272d94582b4f7ed73f219f68f1d1b9212c2d56abd761ca267df04 |
| hovercard-subject-tag | issue:1880613801 |
| github-keyboard-shortcuts | repository,issues,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/issues/show/stleary/JSON-java/767/issue_layout |
| twitter:image | https://opengraph.githubassets.com/0883ea49373f4858a163f377fe112c23a695e0bf50f04b362caf5d32f36f792e/stleary/JSON-java/issues/767 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/0883ea49373f4858a163f377fe112c23a695e0bf50f04b362caf5d32f36f792e/stleary/JSON-java/issues/767 |
| og:image:alt | Add info about which signing keys will be used for published artifacts. Looks like the signing key changed for the 20230618 release. 20230618 appears to be signed with this key: https://keyserver.u... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | yogurtearl |
| hostname | github.com |
| expected-hostname | github.com |
| None | 5290d7e14309ad1e76106a9c4237bd1041517e83ea182c8ab756752cb0c6940b |
| turbo-cache-control | no-preview |
| go-import | github.com/stleary/JSON-java git https://github.com/stleary/JSON-java.git |
| octolytics-dimension-user_id | 5107558 |
| octolytics-dimension-user_login | stleary |
| octolytics-dimension-repository_id | 1187853 |
| octolytics-dimension-repository_nwo | stleary/JSON-java |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 1187853 |
| octolytics-dimension-repository_network_root_nwo | stleary/JSON-java |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 9c975978430e9ad293956f2bbdaf153b1bd84a99 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width