+1 (binding) + sigs look good + LICENSE, NOTICE, DISCLAIMER look good + licenses in source and xml files look good. + tests compile and pass, mvn package compiles
-Jakob On 13 June 2016 at 12:13, Julian Hyde <jh...@apache.org> wrote: > >> On Jun 13, 2016, at 12:08 PM, Marvin Humphrey <mar...@rectangular.com> wrote: >> >> On Mon, Jun 13, 2016 at 11:37 AM, Julian Hyde <jh...@apache.org> wrote: >> >>> But I imported >>> https://github.com/apache/incubator-beam/blob/v0.1.0-incubating-RC3/KEYS >>> <https://github.com/apache/incubator-beam/blob/v0.1.0-incubating-RC3/KEYS> >>> easily enough. >> >> Bundling PGP keys inside a package is worse than worthless -- an attacker can >> just bundle spoofed keys with a bogus distort! > > My mistake — thanks for the correction! > > Julian > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org > For additional commands, e-mail: general-h...@incubator.apache.org > --------------------------------------------------------------------- To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org For additional commands, e-mail: general-h...@incubator.apache.org
