Bot releases are visible (Hide)
Published by github-actions[bot] 3 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.27.0_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.27.0_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.27.0_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 3978d2b8 Update changelog for 0.27.0 | add actionlint | update go.step.sm/crypto (#1923)
- 383d281c Merge pull request #1765 from smallstep/mariano/init-provisioners
- 343e7308 Remove Disabled provisioner add add an Uninitialized state
- 39089325 Merge branch 'master' into mariano/init-provisioners
- b6da1def Merge pull request #1922 from smallstep/mariano/identity
- ffbbdf6f Update api/ssh.go
- 955338a8 Create identity uri on any provisioner
- 95afe686 Merge pull request #1920 from smallstep/mariano/crypto
- 191f1a59 Fix unit tests after introduction of rawSubject
- 8f19b3de Upgrades go.step.sm/crypto
- e28eae78 Merge pull request #1919 from smallstep/mariano/fix-acme-http-port
- 8ac876df Fix HTTP01 challenge url when --acme-http-host is used
- 0eee6f0f Merge pull request #1918 from smallstep/carl/make-install-path
- e81512db Merge pull request #1913 from smallstep/herman/improve-missing-device-attestation-error
- ecd6c62f Mirrors smallstep/cli#1214
- a7d41418 Merge pull request #1915 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.33.1
- 530810fb Merge pull request #1914 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.9
- 2590690b Merge pull request #1916 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.65.0
- a5539076 Bump google.golang.org/grpc from 1.64.0 to 1.65.0
- 78aa7b0a Bump github.com/newrelic/go-agent/v3 from 3.33.0 to 3.33.1
- e733cf9a Bump cloud.google.com/go/longrunning from 0.5.8 to 0.5.9
- 5fecc2bd Fix HTTP internal server error when bad attestation object is provided
- bc35b0c8 Merge pull request #1911 from smallstep/mariano/crypto-update
- f93ad60c Upgrade go.step.sm/crypto
- b9657b67 Merge pull request #1910 from smallstep/mariano/dns
- 87c80203 make fmt
- 2b30ae50 Show clean URL on HTTP-01 errors
- c79a4d5c Add helper annotation on test function
- ed71ac02 Wait for CA to start in a goroutine
- 5817c95a Upgrade github.com/smallstep/nosql
- 5c07d20a Do strict DNS lookup on ACME
- 8829b422 Merge pull request #1903 from smallstep/mariano/validity
- f8bda969 Apply suggestions from code review
- caea80d6 Use a tagged version of go.step.sm/crypto
- 1704ab93 Merge pull request #1908 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.8
- b3f538f2 Merge pull request #1907 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.1.0
- 143c027c Merge pull request #1906 from smallstep/dependabot/go_modules/google.golang.org/api-0.186.0
- 596dcb95 Bump cloud.google.com/go/longrunning from 0.5.7 to 0.5.8
- 0ca263c2 Bump github.com/go-chi/chi/v5 from 5.0.14 to 5.1.0
- 12e7089b Bump google.golang.org/api from 0.185.0 to 0.186.0
- cb9abbe2 Add support for validities in templates
- a85723d9 Merge pull request #1897 from smallstep/dependabot/go_modules/google.golang.org/api-0.185.0
- c3beeaf4 Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.185.0
- 367d90d0 Merge pull request #1898 from smallstep/dependabot/go_modules/github.com/go-chi/chi/v5-5.0.14
- 27bea359 Bump github.com/go-chi/chi/v5 from 5.0.12 to 5.0.14
- 5eb1849a Merge pull request #1896 from smallstep/dependabot/github_actions/softprops/action-gh-release-2.0.6
- ee69818c Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.185.0
- 7ff52f6e Merge pull request #1899 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.7.0
- 12c2e75d Update goreleaser YML version (#1901)
- d12d866f Bump github.com/fxamacker/cbor/v2 from 2.6.0 to 2.7.0
- 43bf6b5a Bump google.golang.org/api from 0.184.0 to 0.185.0
- fffffc60 Bump softprops/action-gh-release from 2.0.5 to 2.0.6
- 9bf6a836 Merge pull request #1891 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.2
- 43bdd618 Bump google.golang.org/protobuf from 1.34.1 to 1.34.2
- 1563c264 Merge pull request #1890 from smallstep/dependabot/go_modules/google.golang.org/api-0.184.0
- 14230d86 Merge pull request #1889 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.1
- 958c344f Bump google.golang.org/api from 0.183.0 to 0.184.0
- 8a789246 Bump go.step.sm/crypto from 0.47.0 to 0.47.1
- 890e81cb [actions] dependabot to common workflow | move to new release action (#1887)
- 2d4bc954 Merge pull request #1883 from smallstep/dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
- 93ca1e21 Merge branch 'master' into dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
- 7bc9d158 Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity
- 06a9d2e2 Allow custom SCEP key manager
- 976bf0c2 Do not fail if a provisioner cannot be initialized
Thanks!
Those were the changes on v0.27.0!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.
Published by github-actions[bot] 4 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.26.2_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.26.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.26.2_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- d6973c97 Set date for 0.26.2 release in changelog (#1886)
- d4b29166 Changelog update for 0.26.2 (#1885)
- f9e59719 Merge pull request #1884 from smallstep/mariano/linkedca
- c8e65abf Fix linter warnings
- b4616ee8 Upgrade linkedca
- 634ece44 Merge pull request #1802 from jdoupe/AuthParams
- a017c0e3 Merge branch 'master' into AuthParams
- 8b36f7bc Merge pull request #1878 from smallstep/dependabot/go_modules/google.golang.org/api-0.183.0
- 30b2cd1e Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
- a0b93607 Merge pull request #1879 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.24.0
- d5171be9 Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
- 6e12cfa4 Merge pull request #1880 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.0
- d1de1ad8 Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
- 0ce8fb6d Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
- 3b9631b8 Merge branch 'master' into dependabot/go_modules/go.step.sm/crypto-0.47.0
- 474f5d28 Update hardcoded AWS certs (#1881)
- 7ab83910 Bump go.step.sm/crypto from 0.46.0 to 0.47.0
- 23f120e9 Bump golang.org/x/crypto from 0.23.0 to 0.24.0
- e3444c07 Bump google.golang.org/api from 0.182.0 to 0.183.0
- 669d992d Merge pull request #1870 from smallstep/dependabot/go_modules/google.golang.org/api-0.182.0
- 68c5238f Merge pull request #1869 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.7.0
- 48843797 Merge pull request #1868 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.46.0
- 437154d7 Bump google.golang.org/api from 0.181.0 to 0.182.0
- 2a9bbff8 Bump github.com/hashicorp/vault/api/auth/approle from 0.6.0 to 0.7.0
- 4d7ca9d6 Bump go.step.sm/crypto from 0.45.1 to 0.46.0
- 587d0d5a Merge pull request #1858 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.17.0
- 34fde599 Bump cloud.google.com/go/security from 1.16.1 to 1.17.0
- fe8c3d3e Merge pull request #1859 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.7.0
- 013c2f2f Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.6.0 to 0.7.0
- 4208b0a6 Merge pull request #1860 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.14.0
- 6de7aa97 Merge pull request #1861 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.45.1
- f3e4f0ae Bump go.step.sm/crypto from 0.45.0 to 0.45.1
- 2b8f3e70 Bump github.com/hashicorp/vault/api from 1.13.0 to 1.14.0
- 47b5048d Merge pull request #1850 from smallstep/mariano/signer
- 7d6eea0f Merge pull request #1853 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.64.0
- 99ce13a4 Fix linter warnings
- 5cdfc2c9 Bump google.golang.org/grpc from 1.63.2 to 1.64.0
- 980687bc Merge pull request #1854 from smallstep/dependabot/go_modules/google.golang.org/api-0.181.0
- 8121a05c Bump google.golang.org/api from 0.180.0 to 0.181.0
- ad0ac55b Merge pull request #1844 from smallstep/mariano/account-provisioner
- 192e90ee Merge branch 'master' into mariano/account-provisioner
- 812ffd3c Reverse assert statements
- d0548f9e Use %q instead of '%s'
- 14959dbb Merge pull request #1849 from smallstep/mariano/log-errors
- c0b7c33a Use a function as the error logger
- 9e8087fb Add GetX509Signer method
- 86738189 Split provisioner check in two cases
- f3f484ce Log errors using slog.Logger
- fdb0cf03 Merge pull request #1848 from smallstep/mariano/intermediates
- d4862a25 Add methods to get the intermediate certificates
- e08b2770 Merge pull request #1847 from smallstep/mariano/x5c-insecure
- b6afed3b Upgrade go.step.sm/crypto to v0.45.0
- 93559237 Merge pull request #1839 from smallstep/dependabot/go_modules/google.golang.org/api-0.180.0
- a8e9a18b Bump google.golang.org/api from 0.177.0 to 0.180.0
- 803d3d39 Merge pull request #1840 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.1
- e0e7ae6c Merge pull request #1841 from smallstep/dependabot/go_modules/golang.org/x/net-0.25.0
- 72a8bb3d Merge pull request #1842 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.19.1
- 5fa5a63d Verify provisioner with id if available
- 9cbdc738 Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
- 42341c7a Bump golang.org/x/net from 0.24.0 to 0.25.0
- 0dff5c4b Bump google.golang.org/protobuf from 1.34.0 to 1.34.1
- e3ba7028 Merge pull request #1827 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.23.0
- fe29ccae Merge pull request #1828 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.33.0
- 8cf5e3c2 Merge pull request #1829 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.7
- 928d446e Bump golang.org/x/crypto from 0.22.0 to 0.23.0
- e11833ef Bump cloud.google.com/go/longrunning from 0.5.6 to 0.5.7
- 591b9f74 Merge pull request #1826 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.16.1
- a2f23328 Merge pull request #1831 from smallstep/mariano/err-not-found
- b1e31b17 Use always acme.IsErrNotFound
- cca6f6d0 Merge pull request #1830 from smallstep/mariano/provisioner-id
- d037ed6f Add provisioner id to acme accounts
- 9b256655 Bump github.com/newrelic/go-agent/v3 from 3.32.0 to 3.33.0
- 8933a2e5 Bump cloud.google.com/go/security from 1.16.0 to 1.16.1
- 2c71543d Merge pull request #1817 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.8
- 949e2fdb Fix test error expectation in
TestAuthorityNew - 281efbb9 Bump go.step.sm/crypto from 0.44.6 to 0.44.8
- 14b1211e Merge pull request #1815 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.15
- 0b894a0d Merge pull request #1816 from smallstep/dependabot/go_modules/google.golang.org/api-0.176.1
- 20e315ba Merge pull request #1819 from smallstep/mariano/not-found
- 296ac4e2 Make ISErrNotFound more flexible
- 28a87bba Merge pull request #1818 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.1.0
- bf03d56a Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0
- 6715c653 Bump google.golang.org/api from 0.176.0 to 0.176.1
- 798e1906 Bump github.com/urfave/cli from 1.22.14 to 1.22.15
- 5072d7a5 chore: fix function names in comment (#1813)
- 03c3cf57 fixed Scopes and AuthParams assignment
- aa543a33 add Scopes to OIDC struct
- 48793761 add AuthParams and Scopes to linkedca OIDC structures
- 2fcf3406 add AuthParams to OIDC struct
Thanks!
Those were the changes on v0.26.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.
Published by github-actions[bot] 6 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.26.1_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.26.1_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.26.1_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 9cbab5a5 Add changelog for 0.26.1 (#1812)
- d6bf551f Merge pull request #1803 from smallstep/herman/fix-scep-vault-ra
- f4d506f6 Merge pull request #1811 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.13.0
- 1e5e267b Remove leftover debug print
- 760014c6 go mod tidy
- 2561a727 Dedupe CA and SCEP client creation logic
- 39653050 Bump github.com/hashicorp/vault/api from 1.12.2 to 1.13.0
- 65cfee56 Merge pull request #1810 from smallstep/dependabot/go_modules/google.golang.org/api-0.176.0
- 8d4effcc Bump google.golang.org/api from 0.172.0 to 0.176.0
- 4a375592 Merge pull request #1809 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.6
- d7ed0312 Merge pull request #1808 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.16.0
- 87202001 Rewrite SCEP integration tests to only use the HTTPS endpoint
- 57a6b853 Bump go.step.sm/crypto from 0.44.4 to 0.44.6
- 0ba61c58 Bump cloud.google.com/go/security from 1.15.6 to 1.16.0
- b0fabe13 Add some SCEP integration tests
- 113a6dd8 Remove reporting the CA mode from startup logs
- 6bc0a862 Fix CA startup with Vault RA configuration
- 07279dd2 Merge pull request #1801 from smallstep/herman/upgrade-crypto-v0.44.4
- 4c6b0b31 Upgrade
go.step.sm/cryptotov0.44.4 - f1a2c68f Merge pull request #1798 from smallstep/herman/fix-instrumented-key-manager
- 7df3ad05 Merge pull request #1797 from smallstep/mariano/init-scep
- 4202d667 Remove debug statement
- d6bbe5b0 Add support for
kmsapi.Decrypterto instrumented key manager - 721345ee Merge pull request #1793 from verytrap/master
- db924043 chore: fix function names in comment
- 725a913f Allow custom SCEP key manager
- 397877a7 Merge pull request #1795 from smallstep/herman/fix-scep-failinfo-oid
- b226b6eb Prevent exposing any internal details in SCEP failure message
- 02956ad0 Merge pull request #1794 from smallstep/herman/fix-scep-failinfo-oid
- 037554e7 Fix the
id-scep-failInfoTextOID - 1513152c Merge pull request #1791 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.32.0
- c9ba31ae Bump github.com/newrelic/go-agent/v3 from 3.31.0 to 3.32.0
- 1f69ff84 Merge pull request #1792 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.63.2
- a76f0714 Bump google.golang.org/grpc from 1.62.1 to 1.63.2
- 08ef9fe2 Merge pull request #1789 from smallstep/dependabot/go_modules/golang.org/x/net-0.24.0
- 57d62851 Bump golang.org/x/net from 0.22.0 to 0.24.0
- d5758ba3 Merge pull request #1784 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.31.0
- 166c4968 Merge pull request #1785 from smallstep/dependabot/go_modules/google.golang.org/api-0.172.0
- 1be0932a Merge pull request #1786 from smallstep/carl/winget-fix
- f04a5e39 Fix winget release URL
- d1523c93 Bump google.golang.org/api from 0.171.0 to 0.172.0
- 44c48a74 Bump github.com/newrelic/go-agent/v3 from 3.30.0 to 3.31.0
- 188e4e3f Add version number to winget branch name (#1783)
Thanks!
Those were the changes on v0.26.1!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.
Published by github-actions[bot] 7 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.26.0_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.26.0_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.26.0_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 395a3eeb Update go.step.sm/crypto (#1781)
- 4772d7cc Merge pull request #1780 from smallstep/herman/update-changelog-20240328
- 854288a0 Update changelog for
v0.26.0release - 4016b69b Merge pull request #1776 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.12.2
- b5b723e8 Merge pull request #1775 from smallstep/dependabot/go_modules/google.golang.org/api-0.171.0
- 0a6e79a7 Merge pull request #1778 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.0.0
- 9d86361a Bump github.com/hashicorp/vault/api from 1.12.1 to 1.12.2
- 7e053437 Merge pull request #1774 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.1
- 014b4ef2 Bump dependabot/fetch-metadata from 1.6.0 to 2.0.0
- 21734f77 Bump google.golang.org/api from 0.169.0 to 0.171.0
- 927cd97b Bump go.step.sm/crypto from 0.43.1 to 0.44.1
Thanks!
Those were the changes on v0.26.0!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.
Published by github-actions[bot] 7 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.26.0-rc2_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.26.0-rc2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.26.0-rc2_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 2650944d Merge pull request #1773 from smallstep/herman/cosign-2.x
- 7888d868 Use
--yesto acknowledge user prompts forcosignsigning
Thanks!
Those were the changes on v0.26.0-rc2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.
Published by github-actions[bot] 7 months ago
Published by github-actions[bot] 8 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.3-rc7_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.3-rc7_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.3-rc7_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 1583e53c Merge branch 'master' into wire-acme-extensions
- ec223c1c Merge pull request #1748 from smallstep/dependabot/go_modules/github.com/stretchr/testify-1.9.0
- b7e3e0be Merge pull request #1746 from smallstep/dependabot/go_modules/google.golang.org/api-0.167.0
- 022deaf6 Merge pull request #1749 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.19.0
- 5853c732 Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0
- cf0d6f8f Bump github.com/stretchr/testify from 1.8.4 to 1.9.0
- 69c7ca98 Bump google.golang.org/api from 0.165.0 to 0.167.0
- 755ae0b7 Fix Wire mock CA interface implementation
- 364566bb Merge branch 'master' into wire-acme-extensions
- 10aa48c7 Merge pull request #1743 from smallstep/herman/improve-request-id
- 2a47644d Fix linting issue
- d392c169 Improve functional coverage of request ID integration test
- 7fd524f7 Default to generating request IDs using UUIDv4 format in CA
- 0898c6db Use UUIDv4 as automatically generated client request identifier
- 0d5c692b Merge pull request #1744 from smallstep/carl/readme-updates
- cd3e91b1 Updated README
- b9d6bfc1 Cleanup CA client tests by removing
smallstep/assert - 532b9df0 Improve CA client request ID handling
- 06696e64 Move user ID handling to
useridpackage - 7e5f1092 Decouple request ID middleware from logging middleware
- 535e2a96 Fix the e2e request ID test (again)
- b83b8aa0 Make random TCP address reservation more contained
- 2255857b Fix
clientshadowing and e2e request ID test case - 5c2572c4 Add support for user provider
X-Request-Idheader value - cf8a5015 Add a basic e2e test for
X-Request-Idreflection - fb4cd6fe fix: Webhook-related instruments
- a58f5956 Add reflection of request ID in
X-Request-Idresponse header - c798735f Merge pull request #1542 from smallstep/herman/webhook-request-id
- c1c2e734 Add
X-Request-Idto all requests made by our CA clients - 4213a190 Use
X-Request-Idas canonical request identifier (if available) - 041b486c Remove usages of
Signwithout context - c16a0b70 Remove
smallstep/assertandpkg/errorsfrom webhook tests - 96895087 Add tests for webhook request IDs
- 2a8b80a3 Merge branch 'master' into herman/webhook-request-id
- 6ce502c5 Merge pull request #1741 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.2
- 0d2aeff9 Merge pull request #1739 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.62.0
- 5ee2e027 Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2
- e4bbe897 Bump google.golang.org/grpc from 1.61.0 to 1.62.0
- 98a976b5 Merge pull request #1740 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.6.0
- a583b59e Merge pull request #1738 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.12.2
- 0b196b0b Bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0
- fa941dc9 Bump github.com/googleapis/gax-go/v2 from 2.12.0 to 2.12.2
- bb6aae0d Merge pull request #1736 from patsevanton/master
- c2dfe595 Π‘orrection of spelling errors
- 0d4f53f5 Merge branch 'master' into wire-acme-extensions
- e968275a Merge pull request #1729 from patsevanton/master
- 7e1b93b6 Update examples/README.md
- dc577e22 Merge pull request #1724 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.30.0
- 3a2b4268 Bump github.com/newrelic/go-agent/v3 from 3.29.1 to 3.30.0
- f7554a0a Merge pull request #1725 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.6.0
- 685e107b Merge pull request #1726 from smallstep/dependabot/go_modules/google.golang.org/api-0.165.0
- 0a074cb8 Spelling errors and punctuation have been corrected
- 8e1f5385 Bump google.golang.org/api from 0.160.0 to 0.165.0
- e6491ca2 Merge pull request #1727 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.1
- 507f4d04 Bump go.step.sm/crypto from 0.43.0 to 0.43.1
- 2ffc9081 Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.5.0 to 0.6.0
- 0a97e1bd Merge branch 'master' into wire-acme-extensions
- bb296c9d Merge pull request #1708 from smallstep/herman/csr-expires-header
- bd99db00 Merge pull request #1685 from venkyg-sec/allow_custom_tls_config
- 503e5046 Merge branch 'master' into allow_custom_tls_config
- beea482a Fix linter errors in ca/ca.go
- 073fcb7e Merge pull request #1684 from venkyg-sec/allow_external_x509_ca_service_intf
- ac773ff4 Merge branch 'master' into allow_external_x509_ca_service_intf
- 9fcdd3ff Fix format warnings on ca/ca.go
- 3dbb4aad Change CRL unavailable case to HTTP 404
- 5d865b28 Merge pull request #1715 from rvichery/aws-ca-west-1-iid-certificate
- ee44ac10 fixup! Add AWS ca-west-1 identity document certificate
- aaf5a1c9 Merge branch 'master' into wire-acme-extensions
- 490d065c Merge pull request #1713 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.6.0
- 283d46d9 Add AWS ca-west-1 identity document certificate
- a3bed409 Bump github.com/hashicorp/vault/api/auth/approle from 0.5.0 to 0.6.0
- d174e788 Merge pull request #1712 from smallstep/dependabot/go_modules/golang.org/x/net-0.21.0
- 5f91441d Merge pull request #1711 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.5
- a32dade7 Bump golang.org/x/net from 0.20.0 to 0.21.0
- b9db4e3f Bump cloud.google.com/go/longrunning from 0.5.4 to 0.5.5
- c76dad8a Improve tests for CRL HTTP handler
- 69f5f8d8 Use
stretchr/testifyinstead ofsmallstep/assertfor tests - d1deb7f9 Add
Expiresheader to CRL response - 95fdbc18 Merge pull request #1691 from smallstep/herman/wire-acme-improvements
- 194341e5 Address review comments
- 745017cf Add test for OIDC auto discovery configuration
- 138c1013 Add validation for Wire UserID + DeviceID identifiers
- 5d7e5330 Add validation of
namein DPoP token - 2e783011 Simplify the DPoP target provider functionality
- c6a66228 Improve test coverage for Wire authorizations
- ef657d7d Fix OIDC target
- e153be36 Replace
smallstep/assertwithstretchr/testifyfor ACME provisioner - 37a9f363 Merge branch 'wire-acme-extensions' into herman/wire-acme-improvements
- 92b61915 Merge branch 'master' into wire-acme-extensions
- 67246925 Merge pull request #1706 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.18.0
- 6d29e8ad Merge pull request #1704 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.0
- 05ccf846 Merge pull request #1705 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.5
- 78522c75 Bump github.com/prometheus/client_golang from 1.15.1 to 1.18.0
- 053d05b4 Bump cloud.google.com/go/security from 1.15.4 to 1.15.5
- 52093931 Bump go.step.sm/crypto from 0.42.1 to 0.43.0
- e6d9208e Merge branch 'wire-acme-extensions' into herman/wire-acme-improvements
- ace27c09 Merge branch 'master' into wire-acme-extensions
- c5792392 Add basic support for OIDC provider instantiation through discovery
- cd21f8d5 Refactor OIDC verifier instantation to happen only once
- 19feae52 Add test for ACME initialization with Wire challenges
- 59ea7312 Merge pull request #1693 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.11.0
- 78d889a0 Bump github.com/hashicorp/vault/api from 1.10.0 to 1.11.0
- 2fcb33bd Merge pull request #1695 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.29.1
- fe926e9a Merge pull request #1694 from smallstep/dependabot/go_modules/github.com/google/uuid-1.6.0
- 8123d6a4 Merge pull request #1692 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.1
- d9cf8aa6 Bump github.com/newrelic/go-agent/v3 from 3.29.0 to 3.29.1
- eeaabbc4 Bump github.com/google/uuid from 1.5.0 to 1.6.0
- 11220903 Bump go.step.sm/crypto from 0.42.0 to 0.42.1
- 14e8d471 Skip Wire option validation and initialization if not enabled
- 8a9b1b3f Move Wire option validation to provisioner initialization
- 79943d2e Merge branch 'wire-acme-extensions' into herman/wire-acme-improvements
- a0e4cba0 Merge branch 'master' into wire-acme-extensions
- dd1ff9c1 Implementation of the Prometheus endpoint (#1669)
- 4d4719a4 Change URLs used in DPoP template test
- 356e7070 Allow usage of externally supplied TLS config
- fbc1e895 Allow x509 Service CA implementation to be injected through ca and authority options
- 6ee0d70b Add check for empty deviceID in target URI template evaluation
- 4ef093dc Fix broken tests relying on
Signin mocks - 9e3807ea Use
SignWithContextin the critical paths - 4e06bdbc Add
SignWithContextmethod to authority and mocks - b2301ea1 Remove the webhook
Domethod - f3229d3e Propagate (original) request ID to webhook requests
Thanks!
Those were the changes on v0.25.3-rc7!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] 8 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.3-rc6_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.3-rc6_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.3-rc6_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- fb4cd6fe fix: Webhook-related instruments
- c798735f Merge pull request #1542 from smallstep/herman/webhook-request-id
- 041b486c Remove usages of
Signwithout context - c16a0b70 Remove
smallstep/assertandpkg/errorsfrom webhook tests - 96895087 Add tests for webhook request IDs
- 2a8b80a3 Merge branch 'master' into herman/webhook-request-id
- 6ce502c5 Merge pull request #1741 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.2
- 0d2aeff9 Merge pull request #1739 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.62.0
- 5ee2e027 Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2
- e4bbe897 Bump google.golang.org/grpc from 1.61.0 to 1.62.0
- 98a976b5 Merge pull request #1740 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.6.0
- a583b59e Merge pull request #1738 from smallstep/dependabot/go_modules/github.com/googleapis/gax-go/v2-2.12.2
- 0b196b0b Bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0
- fa941dc9 Bump github.com/googleapis/gax-go/v2 from 2.12.0 to 2.12.2
- bb6aae0d Merge pull request #1736 from patsevanton/master
- c2dfe595 Π‘orrection of spelling errors
- e968275a Merge pull request #1729 from patsevanton/master
- 7e1b93b6 Update examples/README.md
- dc577e22 Merge pull request #1724 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.30.0
- 3a2b4268 Bump github.com/newrelic/go-agent/v3 from 3.29.1 to 3.30.0
- f7554a0a Merge pull request #1725 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.6.0
- 685e107b Merge pull request #1726 from smallstep/dependabot/go_modules/google.golang.org/api-0.165.0
- 0a074cb8 Spelling errors and punctuation have been corrected
- 8e1f5385 Bump google.golang.org/api from 0.160.0 to 0.165.0
- e6491ca2 Merge pull request #1727 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.1
- 507f4d04 Bump go.step.sm/crypto from 0.43.0 to 0.43.1
- 2ffc9081 Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.5.0 to 0.6.0
- bb296c9d Merge pull request #1708 from smallstep/herman/csr-expires-header
- bd99db00 Merge pull request #1685 from venkyg-sec/allow_custom_tls_config
- 503e5046 Merge branch 'master' into allow_custom_tls_config
- beea482a Fix linter errors in ca/ca.go
- 073fcb7e Merge pull request #1684 from venkyg-sec/allow_external_x509_ca_service_intf
- ac773ff4 Merge branch 'master' into allow_external_x509_ca_service_intf
- 9fcdd3ff Fix format warnings on ca/ca.go
- 3dbb4aad Change CRL unavailable case to HTTP 404
- 5d865b28 Merge pull request #1715 from rvichery/aws-ca-west-1-iid-certificate
- ee44ac10 fixup! Add AWS ca-west-1 identity document certificate
- 490d065c Merge pull request #1713 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.6.0
- 283d46d9 Add AWS ca-west-1 identity document certificate
- a3bed409 Bump github.com/hashicorp/vault/api/auth/approle from 0.5.0 to 0.6.0
- d174e788 Merge pull request #1712 from smallstep/dependabot/go_modules/golang.org/x/net-0.21.0
- 5f91441d Merge pull request #1711 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.5
- a32dade7 Bump golang.org/x/net from 0.20.0 to 0.21.0
- b9db4e3f Bump cloud.google.com/go/longrunning from 0.5.4 to 0.5.5
- c76dad8a Improve tests for CRL HTTP handler
- 69f5f8d8 Use
stretchr/testifyinstead ofsmallstep/assertfor tests - d1deb7f9 Add
Expiresheader to CRL response - 67246925 Merge pull request #1706 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.18.0
- 6d29e8ad Merge pull request #1704 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.0
- 05ccf846 Merge pull request #1705 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.15.5
- 78522c75 Bump github.com/prometheus/client_golang from 1.15.1 to 1.18.0
- 053d05b4 Bump cloud.google.com/go/security from 1.15.4 to 1.15.5
- 52093931 Bump go.step.sm/crypto from 0.42.1 to 0.43.0
- 59ea7312 Merge pull request #1693 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.11.0
- 78d889a0 Bump github.com/hashicorp/vault/api from 1.10.0 to 1.11.0
- 2fcb33bd Merge pull request #1695 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.29.1
- fe926e9a Merge pull request #1694 from smallstep/dependabot/go_modules/github.com/google/uuid-1.6.0
- 8123d6a4 Merge pull request #1692 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.1
- d9cf8aa6 Bump github.com/newrelic/go-agent/v3 from 3.29.0 to 3.29.1
- eeaabbc4 Bump github.com/google/uuid from 1.5.0 to 1.6.0
- 11220903 Bump go.step.sm/crypto from 0.42.0 to 0.42.1
- 356e7070 Allow usage of externally supplied TLS config
- fbc1e895 Allow x509 Service CA implementation to be injected through ca and authority options
- 4ef093dc Fix broken tests relying on
Signin mocks - 9e3807ea Use
SignWithContextin the critical paths - 4e06bdbc Add
SignWithContextmethod to authority and mocks - b2301ea1 Remove the webhook
Domethod - f3229d3e Propagate (original) request ID to webhook requests
Thanks!
Those were the changes on v0.25.3-rc6!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] 9 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.3-rc5_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.3-rc5_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.3-rc5_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- dd1ff9c1 Implementation of the Prometheus endpoint (#1669)
- 27ea4de2 Merge pull request #1687 from smallstep/dependabot/go_modules/google.golang.org/api-0.157.0
- b0833d79 Merge pull request #1686 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.0
- bcaf8a56 Bump google.golang.org/api from 0.156.0 to 0.157.0
- 18d3b7f6 Bump go.step.sm/crypto from 0.41.0 to 0.42.0
Thanks!
Those were the changes on v0.25.3-rc5!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] 9 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.3-rc4_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.3-rc4_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.3-rc4_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 675e418f Merge branch 'master' into wire-acme-extensions
- 502334fd Merge pull request #1689 from smallstep/beltram/wire-acme-extensions
- a38132aa Fix policy check for Wire user and device identifiers
- 93ba1654 Fix tests to work with Wire
UserIDandDeviceID - 9eed61a9 use switch statement
- b8eb559e Update acme/order.go
- 27ea4de2 Merge pull request #1687 from smallstep/dependabot/go_modules/google.golang.org/api-0.157.0
- b0833d79 Merge pull request #1686 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.0
- bcaf8a56 Bump google.golang.org/api from 0.156.0 to 0.157.0
- 18d3b7f6 Bump go.step.sm/crypto from 0.41.0 to 0.42.0
- a3de984e fix: use 2 separate identifiers for Wire
- 7e6356ec Merge pull request #1670 from smallstep/herman/remove-rusty-cli
Thanks!
Those were the changes on v0.25.3-rc4!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] 9 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.3-rc3_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.3-rc3_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.3-rc3_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 9cc3295a empty commit
Thanks!
Those were the changes on v0.25.3-rc3!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] 11 months ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.2_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.2_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 7bfe11c6 Bump go.step.sm/crypto (#1635)
- d34f0f6a Fix linter warnings (#1634)
Thanks!
Those were the changes on v0.25.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] about 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.25.0_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.25.0_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.25.0_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 4e3b344 Update changelog for 0.25.0 release (#1561)
Thanks!
Those were the changes on v0.25.0!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] about 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.3-rc.5_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.3-rc.5_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.3-rc.5_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- d7efcea Merge pull request #1493 from smallstep/steppath
Thanks!
Those were the changes on v0.24.3-rc.5!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] about 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.3-rc.4_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.3-rc.4_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.3-rc.4_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- a1350b1 Merge pull request #1489 from smallstep/josh/authorization-principal-in-webhook
Thanks!
Those were the changes on v0.24.3-rc.4!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] about 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.3-rc.3_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.3-rc.3_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.3-rc.3_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- d89c3a9 Merge pull request #1486 from smallstep/migrate-admindb
Thanks!
Those were the changes on v0.24.3-rc.3!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] over 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.3-rc.2_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.3-rc.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.3-rc.2_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- eeb912e Add unversioned filenames to GitHub assets
Thanks!
Those were the changes on v0.24.3-rc.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] over 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.3-rc1_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.3-rc1_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.3-rc1_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- e52c45b [action] use common goreleaser workflow
Thanks!
Those were the changes on v0.24.3-rc1!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] over 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.2_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.2_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 6db3f5f Merge pull request #1385 from smallstep/update-changelog-v0.24.2
Thanks!
Those were the changes on v0.24.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
Published by github-actions[bot] over 1 year ago
Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Downloads/step-ca_darwin_0.24.1_amd64.tar.gz.sig.pem \
--signature ~/Downloads/step-ca_darwin_0.24.1_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/certificates/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step-ca_darwin_0.24.1_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- 7ad81a6 Merge pull request #1348 from smallstep/max/release-error
Thanks!
Those were the changes on v0.24.1!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.
