diff --git a/.github/actions/extract-version/action.yml b/.github/actions/extract-version/action.yml
new file mode 100644
index 0000000..c31d03e
--- /dev/null
+++ b/.github/actions/extract-version/action.yml
@@ -0,0 +1,62 @@
+name: Extract Version
+description: >
+  Extracts the version from the nearest git tag matching v<major>.<minor>.<patch>.
+  If HEAD is exactly on that tag, snapshot=false. Otherwise snapshot=true.
+
+outputs:
+  major:
+    description: Major version number
+    value: ${{ steps.extract.outputs.major }}
+  minor:
+    description: Minor version number
+    value: ${{ steps.extract.outputs.minor }}
+  patch:
+    description: Patch version number
+    value: ${{ steps.extract.outputs.patch }}
+  snapshot:
+    description: "true if HEAD is not on a release tag, false if it is"
+    value: ${{ steps.extract.outputs.snapshot }}
+  version:
+    description: "Full version string, e.g. 2.0.67 or 2.0.67-SNAPSHOT"
+    value: ${{ steps.extract.outputs.version }}
+
+runs:
+  using: composite
+  steps:
+    - name: Extract version from nearest tag
+      id: extract
+      shell: bash
+      run: |
+        TAG_PATTERN="^v([0-9]+)\.([0-9]+)\.([0-9]+)$"
+
+        # Check if HEAD itself carries a matching tag
+        HEAD_TAG=$(git tag --points-at HEAD | grep -E "$TAG_PATTERN" | head -1)
+
+        if [[ -n "$HEAD_TAG" ]]; then
+          TAG="$HEAD_TAG"
+          SNAPSHOT="false"
+        else
+          # Find the nearest ancestor tag matching strict semver format
+          TAG=$(git describe --tags --abbrev=0 --match "v[0-9]*.[0-9]*.[0-9]*" 2>/dev/null)
+
+          if [[ -z "$TAG" ]] || [[ ! "$TAG" =~ $TAG_PATTERN ]]; then
+            echo "ERROR: No tag matching v<major>.<minor>.<patch> found in git history." >&2
+            exit 1
+          fi
+          SNAPSHOT="true"
+        fi
+
+        # Parse the version components
+        [[ "$TAG" =~ $TAG_PATTERN ]]
+        MAJOR="${BASH_REMATCH[1]}"
+        MINOR="${BASH_REMATCH[2]}"
+        PATCH="${BASH_REMATCH[3]}"
+
+        echo "Found tag: $TAG (snapshot=$SNAPSHOT)"
+        VERSION="${MAJOR}.${MINOR}.${PATCH}"
+        [[ "$SNAPSHOT" == "true" ]] && VERSION="${VERSION}-SNAPSHOT"
+        echo "major=$MAJOR"     >> "$GITHUB_OUTPUT"
+        echo "minor=$MINOR"     >> "$GITHUB_OUTPUT"
+        echo "patch=$PATCH"     >> "$GITHUB_OUTPUT"
+        echo "snapshot=$SNAPSHOT" >> "$GITHUB_OUTPUT"
+        echo "version=$VERSION" >> "$GITHUB_OUTPUT"
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index f5dfb91..bff33ca 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -3,9 +3,8 @@ on:
   pull_request:
     branches:
       - master
-  push:
-    branches:
-      - master
+  workflow_dispatch:
+
 jobs:
   maven-package:
     runs-on: ubuntu-24.04
@@ -15,8 +14,10 @@ jobs:
           fetch-depth: 0
       - uses: actions/setup-java@v5
         with:
-          java-version: 17.0.13
-          distribution: liberica
+          java-version: '17'
+          distribution: zulu
+      - name: Print Java and Maven versions
+        run: mvn --version
       - name: Cache Maven dependencies
         uses: actions/cache@v4
         with:
@@ -27,7 +28,7 @@ jobs:
             ${{ runner.os }}-maven-
             ${{ runner.os }}-
       - name: Run maven build
-        run: mvn verify -PprettierCheck -Dprettier.nodePath=node -Dprettier.npmPath=npm
+        run: mvn verify -PprettierCheck -Dprettier.nodePath=node -Dprettier.npmPath=npm -ntp
       - name: codecov
         uses: codecov/codecov-action@v5
         with:
diff --git a/.github/workflows/deploy-snapshot.yml b/.github/workflows/deploy-snapshot.yml
new file mode 100644
index 0000000..30a3cdc
--- /dev/null
+++ b/.github/workflows/deploy-snapshot.yml
@@ -0,0 +1,79 @@
+name: Publish Snapshot
+
+concurrency:
+  group: deploy-master
+  cancel-in-progress: false
+
+on:
+  push:
+    branches:
+      - master
+      - 187-create-mobilitydata-maven-packages  # TEMPORARY: remove after testing
+  workflow_dispatch:  # Manual trigger
+
+env:
+  java_version: '17'
+  java_distribution: 'zulu'
+
+jobs:
+  publish-snapshot:
+    if: "github.event_name == 'workflow_dispatch' || !contains(github.event.head_commit.message, 'ci skip')"
+    runs-on: ubuntu-24.04
+    env:
+      HAS_1PASSWORD: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN != '' && vars.ONE_PASSWORD_SECRET_REFERENCES != '' }}
+    steps:
+      - uses: actions/checkout@v5
+        with:
+          fetch-depth: 0
+      - name: Set up JDK ${{ env.java_version }}-${{ env.java_distribution }}
+        uses: actions/setup-java@v5
+        with:
+          java-version: ${{ env.java_version }}
+          distribution: ${{ env.java_distribution }}
+      - name: Print Java and Maven versions
+        run: mvn --version
+      - name: Cache Maven dependencies
+        uses: actions/cache@v4
+        with:
+          path: ~/.m2/repository
+          key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+          restore-keys: |
+            ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+            ${{ runner.os }}-maven-
+            ${{ runner.os }}-
+      - name: Load secrets from 1Password
+        if: env.HAS_1PASSWORD == 'true'
+        uses: MobilityData/gtfs-validator/.github/actions/extract-1password-secret@master
+        with:
+          OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}
+          VARIABLES_TO_EXTRACT: 'MAVEN_GPG_PASSPHRASE, MAVEN_GPG_PRIVATE_KEY, MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME, MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD'
+          ONE_PASSWORD_SECRET_REFERENCES: ${{ vars.ONE_PASSWORD_SECRET_REFERENCES }}
+      - name: Load secrets from GitHub secrets (fallback for forks without 1Password)
+        if: env.HAS_1PASSWORD != 'true'
+        env:
+          GPG_KEY: ${{ secrets.MAVEN_GPG_PRIVATE_KEY }}
+          GPG_PASS: ${{ secrets.MAVEN_GPG_PASSPHRASE }}
+          MVN_USER: ${{ secrets.MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME }}
+          MVN_PASS: ${{ secrets.MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD }}
+        run: |
+          {
+            echo "MAVEN_GPG_PASSPHRASE=$GPG_PASS"
+            echo "MAVEN_GPG_PRIVATE_KEY<<GPG_EOF"
+            echo "$GPG_KEY"
+            echo "GPG_EOF"
+            echo "MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME=$MVN_USER"
+            echo "MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD=$MVN_PASS"
+          } >> "$GITHUB_ENV"
+      - name: Stage artifacts
+        run: mvn deploy -Ppublication -Dprettier.skip=true -ntp
+      - name: Publish snapshot to Maven Central
+        env:
+          JRELEASER_GPG_PASSPHRASE: ${{ env.MAVEN_GPG_PASSPHRASE }}
+          JRELEASER_GPG_SECRET_KEY: ${{ env.MAVEN_GPG_PRIVATE_KEY }}
+        run: mvn jreleaser:deploy -Djreleaser.output.directory=out -ntp
+      - name: Upload JReleaser output
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: jreleaser-snapshot-logs
+          path: out/
diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
deleted file mode 100644
index 9b0a877..0000000
--- a/.github/workflows/deploy.yml
+++ /dev/null
@@ -1,57 +0,0 @@
-name: Deploy Maven Central
-
-concurrency:
-  group: deploy-master
-  cancel-in-progress: false
-
-on:
-  push:
-    branches:
-      - master
-env:
-    JFROG_USER: ${{ secrets.ARTIFACTORY_AUTH_USER }}
-    JFROG_PASS: ${{ secrets.ARTIFACTORY_AUTH_TOKEN }}
-    SONATYPE_GPG_KEY_BASE64: ${{ secrets.SONATYPE_GPG_KEY_BASE64 }}
-    SONATYPE_USERNAME: ${{ secrets.SONATYPE_USERNAME }}
-    SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
-    SONATYPE_GPG_KEY_PASSWORD: ${{ secrets.SONATYPE_GPG_KEY_PASSWORD }}
-    NVD_API_KEY: ${{ secrets.NVD_API_KEY }}
-jobs:
-  maven-package:
-    if: github.event_name == 'push' && !contains(github.event.head_commit.message, 'ci skip')
-    runs-on: ubuntu-24.04
-    steps:
-      - uses: actions/checkout@v5
-        with:
-          fetch-depth: 0
-      - name: Copy maven settings
-        run: |
-          wget https://raw.githubusercontent.com/entur/ror-maven-settings/master/.m2/settings.xml -O .github/workflows/settings.xml
-      - uses: actions/setup-java@v5
-        with:
-          java-version: 17.0.13
-          distribution: liberica
-      - name: Cache Maven dependencies
-        uses: actions/cache@v4
-        with:
-          path: ~/.m2/repository
-          key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
-          restore-keys: |
-            ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
-            ${{ runner.os }}-maven-
-            ${{ runner.os }}-
-      - name: Run maven build
-        run: mvn package -s .github/workflows/settings.xml -PprettierCheck -Dprettier.nodePath=node -Dprettier.npmPath=npm
-      - name: Upload artifact
-        uses: actions/upload-artifact@v4.6.2
-        with:
-          path: gbfs-validator-java/target/*.jar
-  publish-release:
-    if: github.repository_owner == 'entur' && github.event_name == 'push'
-    name: Publish release to maven central
-    uses: entur/gha-maven-central/.github/workflows/maven-publish.yml@v1
-    secrets: inherit
-    with:
-      push_to_repo: true
-      snapshot: false
-      next_version: ''
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
new file mode 100644
index 0000000..d719077
--- /dev/null
+++ b/.github/workflows/release.yml
@@ -0,0 +1,100 @@
+name: Release
+
+# Triggered by GitHub release events:
+#   - Creating a pre-release with tag vX.Y.Z → builds and stages artifacts to Maven Central
+#     (USER_MANAGED, pending). Review them at https://central.sonatype.com, then convert
+#     the pre-release to a full release when satisfied.
+#   - Publishing a full release → rebuilds and publishes artifacts to Maven Central immediately.
+#
+# The project version is derived from the git tag (e.g. v3.0.0 → 3.0.0) and applied to all
+# modules in-place via versions:set before building. No pom.xml version commits are needed.
+on:
+  release:
+    types: [prereleased, released]
+
+env:
+  java_version: '17'
+  java_distribution: 'zulu'
+
+jobs:
+  release:
+    runs-on: ubuntu-24.04
+    permissions:
+      contents: write
+    env:
+      HAS_1PASSWORD: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN != '' && vars.ONE_PASSWORD_SECRET_REFERENCES != '' }}
+    steps:
+      - uses: actions/checkout@v5
+        with:
+          fetch-depth: 0
+          # Check out the exact tagged commit so the version is correctly resolved from the tag.
+          ref: ${{ github.event.release.tag_name }}
+      - name: Set up JDK ${{ env.java_version }}-${{ env.java_distribution }}
+        uses: actions/setup-java@v5
+        with:
+          java-version: ${{ env.java_version }}
+          distribution: ${{ env.java_distribution }}
+      - name: Print Java and Maven versions
+        run: mvn --version
+      - name: Cache Maven dependencies
+        uses: actions/cache@v4
+        with:
+          path: ~/.m2/repository
+          key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+          restore-keys: |
+            ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+            ${{ runner.os }}-maven-
+            ${{ runner.os }}-
+      - name: Load secrets from 1Password
+        if: env.HAS_1PASSWORD == 'true'
+        uses: MobilityData/gtfs-validator/.github/actions/extract-1password-secret@master
+        with:
+          OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.OP_SERVICE_ACCOUNT_TOKEN }}
+          VARIABLES_TO_EXTRACT: 'MAVEN_GPG_PASSPHRASE, MAVEN_GPG_PRIVATE_KEY, MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME, MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD'
+          ONE_PASSWORD_SECRET_REFERENCES: ${{ vars.ONE_PASSWORD_SECRET_REFERENCES }}
+      - name: Load secrets from GitHub secrets (fallback for forks without 1Password)
+        if: env.HAS_1PASSWORD != 'true'
+        env:
+          GPG_KEY: ${{ secrets.MAVEN_GPG_PRIVATE_KEY }}
+          GPG_PASS: ${{ secrets.MAVEN_GPG_PASSPHRASE }}
+          MVN_USER: ${{ secrets.MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME }}
+          MVN_PASS: ${{ secrets.MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD }}
+        run: |
+          {
+            echo "MAVEN_GPG_PASSPHRASE=$GPG_PASS"
+            echo "MAVEN_GPG_PRIVATE_KEY<<GPG_EOF"
+            echo "$GPG_KEY"
+            echo "GPG_EOF"
+            echo "MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME=$MVN_USER"
+            echo "MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD=$MVN_PASS"
+          } >> "$GITHUB_ENV"
+      - name: Set release version from tag
+        run: |
+          TAG="${{ github.event.release.tag_name }}"
+          VERSION="${TAG#v}"
+          echo "Setting version: $VERSION"
+          mvn --batch-mode -ntp versions:set -DnewVersion="$VERSION" -DprocessAllModules=true -DgenerateBackupPoms=false
+      - name: Stage artifacts
+        run: mvn deploy -Ppublication -Dprettier.skip=true -ntp
+      - name: Deploy to Maven Central
+        # prereleased: USER_MANAGED — artifacts sit pending in the portal for review.
+        # released:    AUTOMATIC   — artifacts are published immediately after validation.
+        # jreleaser:deploy only handles Maven Central; GitHub release management is done by the GitHub UI.
+        env:
+          JRELEASER_DEPLOY_MAVEN_MAVENCENTRAL_SONATYPE_PUBLISHING_TYPE: ${{ github.event.action == 'prereleased' && 'USER_MANAGED' || 'AUTOMATIC' }}
+          JRELEASER_GPG_PASSPHRASE: ${{ env.MAVEN_GPG_PASSPHRASE }}
+          JRELEASER_GPG_SECRET_KEY: ${{ env.MAVEN_GPG_PRIVATE_KEY }}
+        run: mvn jreleaser:deploy -Djreleaser.output.directory=out -ntp
+      - name: Upload CLI fat jar to GitHub release
+        run: |
+          gh release upload "${{ github.event.release.tag_name }}" \
+            gbfs-validator-java-cli/target/gbfs-validator-cli.jar \
+            --clobber
+        env:
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: Upload JReleaser output
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: jreleaser-release-logs
+          path: out/
diff --git a/.gitignore b/.gitignore
index 0bf1286..b6868e8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -10,5 +10,7 @@ buildNumber.properties
 .mvn/timing.properties
 # https://github.com/takari/maven-wrapper#usage-without-binary-jar
 .mvn/wrapper/maven-wrapper.jar
+# generated by maven-git-versioning-extension
+.git-versioned-pom.xml
 
 .vscode
diff --git a/.mvn/extensions.xml b/.mvn/extensions.xml
new file mode 100644
index 0000000..76a9ecb
--- /dev/null
+++ b/.mvn/extensions.xml
@@ -0,0 +1,10 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<extensions xmlns="http://maven.apache.org/EXTENSIONS/1.0.0"
+            xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+            xsi:schemaLocation="http://maven.apache.org/EXTENSIONS/1.0.0 https://maven.apache.org/xsd/core-extensions-1.0.0.xsd">
+  <extension>
+    <groupId>me.qoomon</groupId>
+    <artifactId>maven-git-versioning-extension</artifactId>
+    <version>9.11.0</version>
+  </extension>
+</extensions>
diff --git a/.mvn/maven-git-versioning-extension.xml b/.mvn/maven-git-versioning-extension.xml
new file mode 100644
index 0000000..7e2ce87
--- /dev/null
+++ b/.mvn/maven-git-versioning-extension.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<configuration xmlns="https://github.com/qoomon/maven-git-versioning-extension"
+               xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+               xsi:schemaLocation="https://github.com/qoomon/maven-git-versioning-extension
+                                   https://github.com/qoomon/maven-git-versioning-extension/raw/master/src/main/resources/configuration-schema.xsd">
+
+  <refs>
+    <!-- Tagged commit: use the tag version directly (e.g. v2.0.67 → 2.0.67) -->
+    <ref type="tag" pattern="v(?&lt;version&gt;.*)">
+      <version>${version}</version>
+    </ref>
+
+    <!-- master branch: increment patch and add SNAPSHOT (e.g. after v2.0.66 → 2.0.67-SNAPSHOT) -->
+    <ref type="branch" pattern="master">
+      <version>${describe.tag.version.major}.${describe.tag.version.minor}.${describe.tag.version.patch.next}-SNAPSHOT</version>
+    </ref>
+
+    <!-- Any other branch: use next patch version + SNAPSHOT for local development -->
+    <ref type="branch" pattern=".*">
+      <version>${describe.tag.version.major}.${describe.tag.version.minor}.${describe.tag.version.patch.next}-SNAPSHOT</version>
+    </ref>
+  </refs>
+</configuration>
diff --git a/gbfs-validator-java-api/pom.xml b/gbfs-validator-java-api/pom.xml
index c5cc643..eea2b1d 100644
--- a/gbfs-validator-java-api/pom.xml
+++ b/gbfs-validator-java-api/pom.xml
@@ -5,13 +5,14 @@
     <parent>
         <groupId>org.mobilitydata</groupId>
         <artifactId>gbfs-validator-java-parent</artifactId>
-        <version>2.0.67</version>
+        <!-- Version is derived at build time from the latest git tag via maven-git-versioning-extension (.mvn/). -->
+        <version>0.0.0-placeholder</version>
     </parent>
 
     <artifactId>gbfs-validator-java-api</artifactId>
     <name>gbfs-validator-java-api</name>
     <description>gbfs-validator-java-api</description>
-    <url>https://github.com/entur/gbfs-validator-java</url>
+    <url>https://github.com/MobilityData/gbfs-validator-java</url>
     <licenses>
         <license>
             <name>Apache License, Version 2.0</name>
@@ -134,13 +135,13 @@
         <dependency>
             <groupId>org.mobilitydata</groupId>
             <artifactId>gbfs-validator-java-loader</artifactId>
-            <version>2.0.67</version>
+            <version>${project.version}</version>
         </dependency>
 
         <dependency>
             <groupId>org.mobilitydata</groupId>
             <artifactId>gbfs-validator-java</artifactId>
-            <version>2.0.67</version>
+            <version>${project.version}</version>
         </dependency>
         <dependency>
             <groupId>com.google.guava</groupId>
diff --git a/gbfs-validator-java-cli/pom.xml b/gbfs-validator-java-cli/pom.xml
index 75d9c44..dbc13e7 100644
--- a/gbfs-validator-java-cli/pom.xml
+++ b/gbfs-validator-java-cli/pom.xml
@@ -6,7 +6,8 @@
     <parent>
         <groupId>org.mobilitydata</groupId>
         <artifactId>gbfs-validator-java-parent</artifactId>
-        <version>2.0.67</version>
+        <!-- Version is derived at build time from the latest git tag via maven-git-versioning-extension (.mvn/). -->
+        <version>0.0.0-placeholder</version>
     </parent>
 
     <artifactId>gbfs-validator-java-cli</artifactId>
@@ -25,6 +26,8 @@
         <jacoco-maven-plugin.version>0.8.14</jacoco-maven-plugin.version>
         <!-- empty argLine property, the value is set up by Jacoco during unit tests execution -->
         <argLine></argLine>
+        <!-- The CLI fat jar is published as a GitHub release artifact, not to Maven Central -->
+        <maven.deploy.skip>true</maven.deploy.skip>
     </properties>
 
     <dependencies>
@@ -115,7 +118,7 @@
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>
                 <artifactId>maven-shade-plugin</artifactId>
-                <version>3.6.1</version>
+                <version>3.6.2</version>
                 <executions>
                     <execution>
                         <phase>package</phase>
@@ -123,6 +126,11 @@
                             <goal>shade</goal>
                         </goals>
                         <configuration>
+                            <!-- Prevent shade from creating a dependency-reduced POM.
+                                 When enabled, shade rebuilds the project model from the reduced POM,
+                                 which triggers maven-git-versioning-extension to compare dependency
+                                 lists of unequal sizes, causing "Collections sizes are not equals". -->
+                            <createDependencyReducedPom>false</createDependencyReducedPom>
                             <transformers>
                                 <transformer implementation="org.apache.maven.plugins.shade.resource.ManifestResourceTransformer">
                                     <mainClass>org.entur.gbfs.validator.cli.GbfsValidatorCli</mainClass>
@@ -131,12 +139,16 @@
                             <finalName>gbfs-validator-cli</finalName>
                             <filters>
                                 <filter>
-                                    <!-- Exclude signature files -->
+                                    <!-- Exclude signature files and duplicate module descriptors.
+                                         3.6.1 had a bug where filters were not applied to all JARs (fixed in 3.6.2).
+                                         module-info.class and META-INF/versions prevent "Collections sizes are not equals". -->
                                     <artifact>*:*</artifact>
                                     <excludes>
                                         <exclude>META-INF/*.SF</exclude>
                                         <exclude>META-INF/*.DSA</exclude>
                                         <exclude>META-INF/*.RSA</exclude>
+                                        <exclude>META-INF/versions/**</exclude>
+                                        <exclude>module-info.class</exclude>
                                     </excludes>
                                 </filter>
                             </filters>
diff --git a/gbfs-validator-java-loader/pom.xml b/gbfs-validator-java-loader/pom.xml
index 9018146..73bad34 100644
--- a/gbfs-validator-java-loader/pom.xml
+++ b/gbfs-validator-java-loader/pom.xml
@@ -6,7 +6,8 @@
     <parent>
         <groupId>org.mobilitydata</groupId>
         <artifactId>gbfs-validator-java-parent</artifactId>
-        <version>2.0.67</version>
+        <!-- Version is derived at build time from the latest git tag via maven-git-versioning-extension (.mvn/). -->
+        <version>0.0.0-placeholder</version>
     </parent>
 
     <artifactId>gbfs-validator-java-loader</artifactId>
diff --git a/gbfs-validator-java/pom.xml b/gbfs-validator-java/pom.xml
index d633be2..a8673f7 100644
--- a/gbfs-validator-java/pom.xml
+++ b/gbfs-validator-java/pom.xml
@@ -4,20 +4,21 @@
     <parent>
         <groupId>org.mobilitydata</groupId>
         <artifactId>gbfs-validator-java-parent</artifactId>
-        <version>2.0.67</version>
+        <!-- Version is derived at build time from the latest git tag via maven-git-versioning-extension (.mvn/). -->
+        <version>0.0.0-placeholder</version>
     </parent>
 
     <artifactId>gbfs-validator-java</artifactId>
-    <version>2.0.67</version>
+    <version>0.0.0-placeholder</version>
     <packaging>jar</packaging>
 
     <name>gbfs-validator-java</name>
     <description>Validate GBFS feeds</description>
-    <url>https://github.com/entur/gbfs-validator-java</url>
+    <url>https://github.com/MobilityData/gbfs-validator-java</url>
 
     <organization>
-        <name>Entur AS</name>
-        <url>http://www.entur.org/</url>
+        <name>MobilityData</name>
+        <url>https://mobilitydata.org/</url>
     </organization>
 
     <licenses>
diff --git a/pom.xml b/pom.xml
index df76ad2..aabf66b 100644
--- a/pom.xml
+++ b/pom.xml
@@ -4,16 +4,17 @@
 
     <groupId>org.mobilitydata</groupId>
     <artifactId>gbfs-validator-java-parent</artifactId>
-    <version>2.0.67</version>
+    <!-- Version is derived at build time from the latest git tag via maven-git-versioning-extension (.mvn/). -->
+    <version>0.0.0-placeholder</version>
 
     <packaging>pom</packaging>
 
     <name>GBFS Validator Parent</name>
     <description>Aggregator POM for GBFS Validator modules</description>
-    <url>https://github.com/entur/gbfs-validator-java</url>
+    <url>https://github.com/MobilityData/gbfs-validator-java</url>
     <organization>
-        <name>Entur AS</name>
-        <url>https://www.entur.org/</url>
+        <name>MobilityData</name>
+        <url>https://mobilitydata.org/</url>
     </organization>
     <licenses>
         <license>
@@ -51,7 +52,7 @@
         <tag>HEAD</tag>
     </scm>
     <properties>
-        <jreleaser-maven-plugin.version>1.20.0</jreleaser-maven-plugin.version>
+        <jreleaser-maven-plugin.version>1.23.0</jreleaser-maven-plugin.version>
         <sonar-maven-plugin.version>5.2.0.4988</sonar-maven-plugin.version>
         <prettier-java.version>2.1.0</prettier-java.version>
         <prettier-maven-plugin.version>0.22</prettier-maven-plugin.version>
@@ -68,6 +69,11 @@
                         <signing>
                             <active>ALWAYS</active>
                             <armored>true</armored>
+                            <!-- verify=false: skips local signature verification after signing.
+                                 Maven Central performs its own verification on upload, so this
+                                 is redundant locally and requires BouncyCastle to re-parse the
+                                 public key, which fails in some JReleaser versions. -->
+                            <verify>false</verify>
                         </signing>
                         <deploy>
                             <maven>
@@ -76,6 +82,8 @@
                                         <active>RELEASE</active>
                                         <url>https://central.sonatype.com/api/v1/publisher</url>
                                         <stagingRepositories>target/staging-deploy</stagingRepositories>
+                                        <username>${env.MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME}</username>
+                                        <password>${env.MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD}</password>
                                     </sonatype>
                                 </mavenCentral>
                                 <nexus2>
@@ -88,13 +96,15 @@
                                         <closeRepository>true</closeRepository>
                                         <releaseRepository>true</releaseRepository>
                                         <stagingRepositories>target/staging-deploy</stagingRepositories>
+                                        <username>${env.MAVEN_CENTRAL_PORTAL_TOKEN_USERNAME}</username>
+                                        <password>${env.MAVEN_CENTRAL_PORTAL_TOKEN_PASSWORD}</password>
                                     </maven-central>
                                 </nexus2>
                             </maven>
                         </deploy>
                         <release>
                             <github>
-                                <skipTag>false</skipTag>
+                                <skipTag>true</skipTag>
                                 <skipRelease>true</skipRelease>
                             </github>
                         </release>