diff options
| author | Javen O'Neal <onealj@apache.org> | 2016-11-09 08:57:26 +0000 |
|---|---|---|
| committer | Javen O'Neal <onealj@apache.org> | 2016-11-09 08:57:26 +0000 |
| commit | d8e2b007e3a66363e9f67ab576bd37845a52c815 (patch) | |
| tree | 612affacb69c44d37c2429eb72a5c21338298c67 /KEYS | |
| parent | 776621c3bb18ccdd75f11d3e263d255616bf60d1 (diff) | |
| download | poi-d8e2b007e3a66363e9f67ab576bd37845a52c815.tar.gz poi-d8e2b007e3a66363e9f67ab576bd37845a52c815.zip | |
KEYS file should only have public keys used to sign previous releases
git-svn-id: https://svn.apache.org/repos/asf/poi/trunk@1768877 13f79535-47bb-0310-9956-ffa450edef68
Diffstat (limited to 'KEYS')
| -rw-r--r-- | KEYS | 8 |
1 files changed, 8 insertions, 0 deletions
@@ -9,6 +9,14 @@ Developers: (gpg --list-key <your email> && gpg --armor --export <your email>) >> this file. +Since the KEYS may be needed to check signatures for archived +releases, it is important that all keys that have ever been used +to sign releases are retained in the file. Entries should only +be added, not removed. +To keep the KEYS file manageable, it's recommended to only add +the keys of committers who have signed releases. +https://www.apache.org/dev/release-signing#keys-policy +https://people.apache.org/keys/ pub 1024D/12DAE9BE 2004-01-25 Glen Stampoultzis <glens@apache.org> |