当需要在 sonatype
认证 com.xxx
命名空间时,需要将 @.xxx.com
配置域名解析。
记录类型:TXT
文本内容:验证的 key。
GPG
下载地址:https://www.gnupg.org/download/index.html
Mac 可以使用 brew install gpg
直接安装
使用方式可参考:
$ gpg --gen-key
$ gpg --list-keys
gpg: 正在检查信任度数据库
gpg: marginals needed: 3 completes needed: 1 trust model: pgp
gpg: 深度:0 有效性: 1 已签名: 0 信任度:0-,0q,0n,0m,0f,1u
gpg: 下次信任度数据库检查将于 2027-04-06 进行
[keyboxd]
---------
pub ed25519 2024-04-06 [SC] [有效至:2027-04-06]
ABC
uid [ 绝对 ] xxx
sub cv25519 2024-04-06 [E] [有效至:2027-04-06]
$ gpg --keyserver keyserver.ubuntu.com --send-keys ABC
gpg: 正在发送密钥 ABC 到 hkp://keyserver.ubuntu.com
如果报错 gpg: keyserver send failed: No route to host
可以参考该文章上传公钥:https://vayne.cc/2022/03/13/gpg/
https://github.com/xxx/yyy
The Apache Software License, Version 2.0
http://www.apache.org/licenses/LICENSE-2.0.txt
repo
github
https://github.com/xxx/yyy/issues
scm:git:https://github.com/xxx/yyy.git
scm:git:https://github.com/xxx/yyy.git
https://github.com/xxx/yyy
xxx
xxx@zzz.com
https://github.com/xxx
org.codehaus.mojo
flatten-maven-plugin
1.5.0
true
oss
flatten
process-resources
flatten
flatten.clean
clean
clean
org.apache.maven.plugins
maven-source-plugin
3.1.0
true
attach-sources
jar
true
true
org.apache.maven.plugins
maven-javadoc-plugin
3.1.0
true
bundle-sources
package
jar
1024
UTF-8
protected
true
false
none
release
org.apache.maven.plugins
maven-gpg-plugin
1.6
sign-artifacts
verify
sign
--pinentry-mode
loopback
org.sonatype.central
central-publishing-maven-plugin
0.4.0
true
central
true
true
xxx-yyy
central
xxx
yyy
gpg
true
gpg
xxx@zzz.com
passphrase
true
$ mvn clean deploy -Prelease
分享并记录所学所见
参与评论
手机查看
返回顶部