Hi, +1 binding
Tested on OSX selected FP 11.9/AIR 3.9 en_AU locale - Compiles - LICENSE, README, NOTICE, RELEASE_NOTES all OK - rat report give 0 unknown licenses - MD5 hash and sigs all good (but see below) Notes: - Probably should default to 11.9/3.9 not 11.8/3.8 - README refer to 3.0 config file should be 3.1 config file - README doesn't mention 2.7 re config file change or OSMF change but that may be OK Also while the signatures are good - not all are in the Apache web of trust. gpg: Signature made Mon 21 Oct 18:35:40 2013 EST using RSA key ID C1708693 gpg: Good signature from "OmPrakash Muppirala (CODE SIGNING KEY) <bigosma...@apache.org>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: BC1C AA3B 706B 8AB2 B901 5328 5C2B 8102 C170 8693 But I can match that with what's in the KEYS file in the sdk directory which give it a certain level of trust. Perhaps the installer needs a KEYS file as well to make it easier to check? See Validating Authenticity of a Key here for more info: http://www.apache.org/info/verification.html Thanks, Justin
