We're looking at allowing access to the Atlassian 3rd party repository from our network but there is little information about the kind of content that is in there. https://developer.atlassian.com/server/framework/atlassian-sdk/atlassian-maven-repositories-2818705/ says "The third-party directory contains jars that we are allowed to re-distribute or re-host but we do not own.".
Where do these packages come from? Is this repo a mirror of another repo?
Is there a process for deciding what goes into this repo? Are there procedures to limit security risk?
The third-party directory contains jars that we are allowed to re-distribute or re-host but we do not own
It is generally the case for 3rdparty repository. In atlassian, if we want to host a 3rd party binary that is not available in other maven repos which we can proxy, or we want to fork a library, we deploy it to 3rdparty repository as long as the license allows us to do so. There's not other process for deciding what goes into it. It is a hosted repository, not a proxy.
I'm happy to announce that Bamboo 7.1 has been released and it’s overflowing with awesome new features. Top-voted issues First and foremost, a bunch of JAC top voted issues has been delivered - y...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events