maven-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (JIRA)" <>
Subject [jira] [Commented] (MINSTALL-133) Take Security More Seriously - Checksum by default
Date Sun, 04 Dec 2016 17:26:58 GMT


ASF GitHub Bot commented on MINSTALL-133:

GitHub user nhojpatrick opened a pull request:

    MINSTALL-133 createChecksum default true

    Patch for

You can merge this pull request into a Git repository by running:

    $ git pull bugfix/MINSTALL-133-createChecksum-true

Alternatively you can review and apply these changes as the patch at:

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #97
commit d5ea2a8b57a9b212ba35728448fc0a4e2321fb66
Author: John Patrick <>
Date:   2016-12-04T17:23:42Z

    MINSTALL-133 createChecksum default true


> Take Security More Seriously - Checksum by default
> --------------------------------------------------
>                 Key: MINSTALL-133
>                 URL:
>             Project: Maven Install Plugin
>          Issue Type: Bug
>          Components: install:install, install:install-file
>    Affects Versions: 2.5.2
>            Reporter: John Patrick
> I believe that a default of createChecksum being false is bad practice and a checksum
should always being produced.
> Maven doesn't appear to have a guide so I'm looking towards the main apache guide i.e.

This message was sent by Atlassian JIRA

View raw message