Reference: https://www.apache.org/dev/release-publishing.html
Apache releases require at least 3 +1 votes, and there must be more +1s than -1s.
Note: There is no benefit in having more than 3 +1 votes. Don't waste your time if a vote already looks in good shape.
How to start / close a vote thread is described in the release process docs. This page focuses on what it means to +1 a vote thread.
When we (or at least, members of the PMC), vote on a release, we are expressing confidence that:
* These items are generally checked by the Release Manager. The Release Manager should state that they've checked them when they +1 the vote.
** It is the responsibility of committers to ensure that no invalid IP enters the codebase. It's not something that we need to re-check at each release. For more info, see this discussion
When you +1 a vote. You should say what work you did in order to gain confidence in the release.
For example, the Release Manager would say:
+1 * Ran coho audit-license-headers over the relevant repos * Used `license-checker` to ensure all dependencies have Apache-compatible licenses * Ensured continuous build was green when repos were tagged
Note: here are the repos with continuous builds:
For example, someone else might say:
+1 * Confirmed sigs & hashes with `coho verify-archive` * Verified sha1s match tags with `coho verify-tags` * Re-created archives to ensure contents match release candidate
About the quality of the release (in the list above):
Given these: