I vote +1 * signature ok * hash ok * no audit issues * tested some basic cli commands * CI green * tests pass locally * tag ok
On November 23, 2025, Erisu <[email protected]> wrote: > Please review and vote on this cordova-cli release v13.0.0 > by replying to this email (and keep discussion on the DISCUSS thread) > > The archive has been published to dist/dev: > > https://dist.apache.org/repos/dist/dev/cordova/cli-13.0.0 > > The package was published from its corresponding git tag: > > cordova-cli: 13.0.0 (fbc00dd9aa) > > Verifying Tag Notes: > > The above hash "fbc00dd9aa" is the annotated tag object ID associated > with the commit hash "42e4205b4a". > When comparing in the commit logs locally or on GitHub, you should > compare against the commit hash ID "42e4205b4a". > To confirm that "fbc00dd9aa" points to "42e4205b4a", you can use the > following command to reveal the referenced commit ID: > ``` > git cat-file -p fbc00dd9aa > ``` > > Upon a successful vote I will upload the archive to dist/, publish it > to > npm, and post the blog post. > > Voting guidelines: > https://github.com/apache/cordova-coho/blob/master/docs/release- > voting.md > > Voting will go on for a minimum of 48 hours. > > ===== > > I vote +1: > > * Ran coho audit-license-headers over the relevant repos > * Ran coho check-license to ensure all dependencies and sub- > dependencies > have Apache-compatible licenses > * Ensured the continuous build was green when repo was tagged > * Ran `npm test` > * Ran various `cordova` test w/ sample app: > * `cordova` > * `cordova create` > * `cordova info` > * `cordova requirements` > * `cordova platform` > * `cordova platform add` > * `cordova platform rm` > * `cordova plugin` > * `cordova plugin add` > * `cordova plugin rm` > * `cordova build` > * `cordova prepare` > * `cordova compile` > * Ran `npm audit` > > found 0 vulnerabilities > > Note: One npm package shows a deprecation warning but is not a > blocker. It > will be replaced in a future release.
