Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets
section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca
uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign
to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.25.2_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.25.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.25.2_amd64.tar.gz
The checksums.txt
file (in the Assets
section below) contains a checksum for every artifact in the release.
Changelog
Thanks!
Those were the changes on v0.25.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.