Thank you for a very clear answer! On Wed, Jan 22, 2020 at 11:57 AM Christopher <ctubb...@apache.org> wrote:
> No. These are generated as part of Maven, and are described as part of > the Maven2 repository layout[1]. They are (optionally) used by the > artifact resolver in the Maven client to validate artifacts when they > are retrieved from a server using the Maven2 repository layout. > > It's possible that the tooling will change over time to use newer > hashes... but I would just ignore these, accepting them as part of the > Maven tooling, and not necessary to interact with directly. > > [1]: > https://cwiki.apache.org/confluence/display/MAVENOLD/Repository+Layout+-+Final > > On Fri, Jan 17, 2020 at 3:51 PM leerho <lee...@gmail.com> wrote: > > > > When I deploy to repository.apache.org > > <https://repository.apache.org/#welcome> in addition to the .asc > > signatures, either the Maven deploy plugin or the repository always adds > > MD5 and SHA1 signatures as well. > > > > Is there a configuration somewhere that will eliminate these being added? > > > > Lee. > > --------------------------------------------------------------------- > To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org > For additional commands, e-mail: general-h...@incubator.apache.org > >
