-
Notifications
You must be signed in to change notification settings - Fork 9
/
Copy pathjreleaser.yml
49 lines (48 loc) · 1.65 KB
/
jreleaser.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
project:
name: maven-lockfile
description: A plugin to lock and validate the integrity of the dependencies of a maven based project.
longDescription: This plugin is a state-of-the-art solution that can be used to validate the integrity of a maven repository.
It does this by generating a lock file that contains the checksums of all the artifacts in the repository.
The lock file can then be used to validate the integrity of the repository.
This guards the supply chain against malicious actors that might tamper with the artifacts in the repository.
authors:
- MartinWitt
license: MIT
links:
homepage: https://github.com/chains-project/maven-lockfile
java:
groupId: io.github.chains-project
version: "11"
inceptionYear: "2023"
release:
github:
owner: chains-project
changelog:
formatted: ALWAYS
preset: 'gitmoji'
format: '- {{commitShortHash}} {{commitTitle}}'
contributors:
format: '- {{contributorName}} ({{contributorUsernameAsLink}})'
hide:
contributors:
- '[bot]'
- 'GitHub'
files:
active: ALWAYS
globs:
- pattern: target/*.buildinfo
- pattern: target/staging-deploy/**/*cyclonedx.json
signing:
active: ALWAYS
armored: true
deploy:
maven:
nexus2:
maven-central:
active: ALWAYS
url: https://s01.oss.sonatype.org/service/local
snapshotUrl: https://s01.oss.sonatype.org/content/repositories/snapshots/
closeRepository: true
releaseRepository: true
stagingRepositories:
- target/staging-deploy