Update site to only reference SHA 512 instead of md5
diff --git a/pom.xml b/pom.xml
index e2b6da8..1dd4985 100644
--- a/pom.xml
+++ b/pom.xml
@@ -25,7 +25,7 @@
<parent>
<groupId>org.apache</groupId>
<artifactId>apache</artifactId>
- <version>9</version>
+ <version>21</version>
</parent>
<description>Apache Log4j Audit</description>
<url>http://logging.apache.org/log4j-audit</url>
diff --git a/src/site/markdown/download.md.vm b/src/site/markdown/download.md.vm
index 716e5fc..f0666ec 100644
--- a/src/site/markdown/download.md.vm
+++ b/src/site/markdown/download.md.vm
@@ -28,25 +28,25 @@
| Distribution | Mirrors | Checksum | Signature |
| ---------------------------------- | ------------------------------------------------------------ | ------------------------------------------------------------------- | ------------------------------------------------------------------- |
-| Apache Log4j Audit binary (tar.gz) | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz][bintar] | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.md5][bintarmd5] | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.asc][bintarasc] |
-| Apache Log4j Audit binary (zip) | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip][binzip] | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip.md5][binzipmd5] | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip.asc][binzipasc] |
-| Apache Log4j Audit source (tar.gz) | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz][srctar] | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.md5][srctarmd5] | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.asc][srctarasc] |
-| Apache Log4j Audit source (zip) | [apache-log4j-audit-${Log4jAuditVersion}-src.zip][srczip] | [apache-log4j-audit-${Log4jAuditVersion}-src.zip.md5][srczipmd5] | [apache-log4j-audit-${Log4jAuditVersion}-src.zip.asc][srczipasc] |
+| Apache Log4j Audit binary (tar.gz) | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz][bintar] | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.sha512][bintarsha] | [apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.asc][bintarasc] |
+| Apache Log4j Audit binary (zip) | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip][binzip] | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip.sha512][binzipsha] | [apache-log4j-audit-${Log4jAuditVersion}-bin.zip.asc][binzipasc] |
+| Apache Log4j Audit source (tar.gz) | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz][srctar] | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.sha512][srctarsha] | [apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.asc][srctarasc] |
+| Apache Log4j Audit source (zip) | [apache-log4j-audit-${Log4jAuditVersion}-src.zip][srczip] | [apache-log4j-audit-${Log4jAuditVersion}-src.zip.sha512][srczipsha] | [apache-log4j-audit-${Log4jAuditVersion}-src.zip.asc][srczipasc] |
[bintar]: https://www.apache.org/dyn/closer.lua/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz
-[bintarmd5]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.md5
+[bintarsha]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.sha512
[bintarasc]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.tar.gz.asc
[binzip]: https://www.apache.org/dyn/closer.lua/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.zip
-[binzipmd5]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.zip.md5
+[binzipsha]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.zip.sha512
[binzipasc]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-bin.zip.asc
[srctar]: https://www.apache.org/dyn/closer.lua/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz
-[srctarmd5]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.md5
+[srctarsha]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.sha512
[srctarasc]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.tar.gz.asc
[srczip]: https://www.apache.org/dyn/closer.lua/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.zip
-[srczipmd5]: https://www.apache.org/dist/logging/log4j-aduit/apache-log4j-audit-${Log4jAuditVersion}-src.zip.md5
+[srczipsha]: https://www.apache.org/dist/logging/log4j-aduit/apache-log4j-audit-${Log4jAuditVersion}-src.zip.sha512
[srczipasc]: https://www.apache.org/dist/logging/log4j-audit/apache-log4j-audit-${Log4jAuditVersion}-src.zip.asc
-It is essential that you verify the integrity of the downloaded files using the PGP or MD5 signatures.
+It is essential that you verify the integrity of the downloaded files using the PGP or SHA signatures.
Please read [Verifying Apache HTTP Server Releases](https://httpd.apache.org/dev/verification.html) for more
information on why you should verify our releases.
@@ -60,7 +60,7 @@
Apache Log4j ${Log4jAuditVersion} is signed by ${Log4jReleaseManager} (${Log4jReleaseKey})
-Alternatively, you can verify the MD5 signature on the files. A unix program called md5 or md5sum is included
+Alternatively, you can verify the MD5 signature on the files. A unix program called sha512sum or gpg is included
in many unix distributions.
All previous releases of Apache log4j-Audit can be found in the