Maven 2 & 3

Securing Artifacts

Details

  • Type: New Feature New Feature
  • Status: Closed Closed
  • Priority: Major Major
  • Resolution: Duplicate
  • Affects Version/s: None
  • Fix Version/s: None
  • Component/s: None
  • Labels:
    None
  • Complexity:
    Intermediate
  • Number of attachments :
    0

Description

Email from Roy on general@incubator:

======
Yes, it would be nice if Maven was more secure, properly checked
signatures, and properly delegated namespaces so that third-parties
would be unable to add artifacts within other org's trees. None of
those issues are specific to incubator.
======

Please see here for full context : http://markmail.org/message/dpv2vbtw6ygeze4z

Issue Links

This issue duplicates:
MNG-2477 Implement repository security improvements for verification of downloaded artifacts Major Open

Activity

Hide
Permalink
Brett Porter added a comment -

please comment on this proposal: http://docs.codehaus.org/display/MAVEN/Repository+Security

Show
Brett Porter added a comment - please comment on this proposal: http://docs.codehaus.org/display/MAVEN/Repository+Security

People

Vote (0)
Watch (0)

Dates

  • Created:
    Updated:
    Resolved:
Atlassian JIRA (v4.4.3#663-r165197) | Report a problem
Powered by a free Atlassian JIRA open source license for Codehaus. Try JIRA - bug tracking software for your team.