Skip to content
This repository has been archived by the owner on Sep 25, 2018. It is now read-only.

GPG artifact code signing should only be enabled in a release profile #71

Open
heuermh opened this issue Jul 8, 2016 · 1 comment · May be fixed by #74
Open

GPG artifact code signing should only be enabled in a release profile #71

heuermh opened this issue Jul 8, 2016 · 1 comment · May be fixed by #74

Comments

@heuermh
Copy link
Contributor

heuermh commented Jul 8, 2016

As an external developer, I shouldn't be code signing artifacts when running mvn package or mvn install locally, rather the maven-gpg-plugin should only be enabled in a release profile.

$ mvn install
...
[INFO] Building jar: /Users/heuermh/working/phenopacket-reference-implementation/target/phenopackets-api-0.0.5-SNAPSHOT-javadoc.jar
[INFO] 
[INFO] --- maven-gpg-plugin:1.5:sign (sign-artifacts) @ phenopackets-api ---
/bin/sh: gpg: command not found
[INFO] ------------------------------------------------------------------------
[INFO] BUILD FAILURE
[INFO] ------------------------------------------------------------------------
@cmungall
Copy link
Member

cmungall commented Jul 8, 2016 via email

heuermh added a commit to heuermh/phenopacket-reference-implementation that referenced this issue Jul 12, 2016
@heuermh
Refactor pom to add plugin management and release profile, fixes phen…
455aada 
…opackets#71
@heuermh heuermh linked a pull request Jul 12, 2016 that will close this issue
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@heuermh @cmungall