The .asc files should be used for verification. I don't even see the point
of adding md5 hashes anymore. Most software repositories rely on gpg
signatures instead nowadays.
On 4 December 2016 at 07:44, sebb wrote:
> The hashes are not intended for authentication, only for checking that
> the dow
The hashes are not intended for authentication, only for checking that
the download works OK.
So the strength of the algorithm is not relevant here.
On 3 December 2016 at 20:02, Gary Gregory wrote:
> Well, getting SHA-1 hashes is not awesome either, we really need a plugin
> updated to use SHA-2/
Github user asfgit closed the pull request at:
https://github.com/apache/commons-compress/pull/12
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the featur
> On 24 Nov 2016, at 22:13, Pascal Schumacher wrote:
>
> Am 23.11.2016 um 21:29 schrieb Duncan Jones:
>> To create a deep toString() representation of an object, one must use a
>> combination of ReflectionToStringBuilder and RecursiveToStringStyle. IMO
>> this confuses behaviour and presentati
