SPARK-2879 [BUILD] Use HTTPS to access Maven Central and other repos - spark

diff options

author	Sean Owen <srowen@gmail.com>	2014-08-06 18:13:35 -0700
committer	Patrick Wendell <pwendell@gmail.com>	2014-08-06 18:14:55 -0700
commit	40284a9a32a6efb6195098c93e292cbc6d128c42 (patch)
tree	df746d8d24d42bc3d6f39aecb21072b3684a2c5c /tools
parent	3f92ce4e2270f3a1bf5303af78763230dd6cca5c (diff)
download	spark-40284a9a32a6efb6195098c93e292cbc6d128c42.tar.gz spark-40284a9a32a6efb6195098c93e292cbc6d128c42.tar.bz2 spark-40284a9a32a6efb6195098c93e292cbc6d128c42.zip

SPARK-2879 [BUILD] Use HTTPS to access Maven Central and other repos

Maven Central has just now enabled HTTPS access for everyone to Maven Central (http://central.sonatype.org/articles/2014/Aug/03/https-support-launching-now/) This is timely, as a reminder of how easily an attacker can slip malicious code into a build that's downloading artifacts over HTTP (http://blog.ontoillogical.com/blog/2014/07/28/how-to-take-over-any-java-developer/). In the meantime, it looks like the Spring repo also now supports HTTPS, so can be used this way too. I propose to use HTTPS to access these repos. Author: Sean Owen <srowen@gmail.com> Closes #1805 from srowen/SPARK-2879 and squashes the following commits: 7043a8e [Sean Owen] Use HTTPS for Maven Central libs and plugins; use id 'central' to override parent properly; use HTTPS for Spring repo (cherry picked from commit 4201d2711cd20a2892c40eb11102f73c2f826b2e) Signed-off-by: Patrick Wendell <pwendell@gmail.com>

Diffstat (limited to 'tools')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: