Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
-key https://raw.githubusercontent.com/smallstep/certificates/master/cosign.pub \
-signature ~/Downloads/step-ca_darwin_0.22.0_amd64.tar.gz.sig
~/Downloads/step-ca_darwin_0.22.0_amd64.tar.gz
The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.
Changelog
- a893d6e Upgrade go.step.sm/cli-utils
- 432477a Merge pull request #1030 from smallstep/herman/fix-template-validation
- 1938b1b Merge branch 'master' into herman/fix-template-validation
- 1d1e024 Upgrade to go.step.sm/crypto v0.18.0
- 6b7b989 Add provisioner template validation
- dd6f59b Merge pull request #1024 from smallstep/gosec
- 23b8f45 Address gosec warnings
- 713dfad Merge pull request #1019 from smallstep/head-middleware
- 8f88740 Merge pull request #1014 from smallstep/max/dns-id
- 6cab4d3 Add a middleware to automatically route HEAD requests to GET
- c040e4b Add unit tests
- 85fc837 Merge pull request #1018 from smallstep/ra-config
- 3c88a9c Fixed changelog
- 8e08f0d Add entries to changelog
- 0c7467c Allow to automatically configure and linked RA
- 5e0be92 Allow option to skip the validation of config
- b7c2f6c Check for DNS name validity
- ae76d94 Merge pull request #1009 from smallstep/code-ql
- 2db15e4 Remove unnecessary log entries
- 759aa26 Fix linter warning
- 90d2785 Sanitize log entries in logging package
- b62f4d1 Add lgtm comments on some security warnings
- a5439c4 Remove ciphersuites without Lucky13 countermeasures
- d6baad4 Merge pull request #1008 from smallstep/endpoint-id
- 8bd0174 Rename field to IsCAServerCert
- 5df1694 Add endpoint id for the RA certificate
- 20784c7 Merge pull request #1006 from smallstep/max/revoke-serial-validation
- 1dd0d7d Update bad serial error to be more specific
- 73ba411 [action] parameterize golangci-lint version
- eb091ae Simplify field names for ProvisionerInfo
- a65adc0 Merge pull request #1005 from smallstep/crypto-kms
- 7052a32 Validate revocation serial number
- 4985ab1 Remove kms package
- 369b8f8 Use go.step.sm/crypto/kms
- 3e2729e Merge pull request #989 from smallstep/max/disable-ssh-hosts
- 9f67a80 Merge pull request #1004 from smallstep/go-1.19
- f1aabaa Use functions from os instead of io/ioutil
- 8445c29 Change actions to build using Go 1.19
- 99c9155 disableSSHHostsListAPI -> disableGetSSHHosts
- 38fb924 Merge pull request #993 from smallstep/ra-ids
- 22337da Merge pull request #990 from qbit/master
- 821743f Upgrade newrelic to v3
- 135c481 Update deps to bring in support for OpenBSD
- a2f7766 Use released version of linkedca
- c5c7c30 Fix typo in ProvisionerInfo
- 6474456 Send RA provisioner to linkedca.
- 6b5d3dc Add provisioner name to RA info
- 9648fe6 Remove debug statement
- a1f5492 Rename internal field
- f9df8ac Remove unused interface
- 7a1e6a0 Fix and extend stepcas unit tests
- 9408d0f Send RA provisioner information to the CA
- a881937 Remove empty lines on debug information
- 87f28a7 Create codeql-analysis.yml
- 0efaf51 Create SECURITY.md
- fb7f57a Add attribute to disable SSH Hosts list API
- 01423e3 [action] combine label and triage project add in one workflow
Thanks!
Those were the changes on v0.22.0!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.