Official Release Artifacts
Linux
OSX Darwin
Windows
For more builds across platforms and architectures, see the Assets
section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step-ca
uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign
to verify a release artifact:
cosign verify-blob \
--certificate step-ca_darwin_0.26.2_amd64.tar.gz.sig.pem \
--signature step-ca_darwin_0.26.2_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
step-ca_darwin_0.26.2_amd64.tar.gz
The checksums.txt
file (in the Assets
section below) contains a checksum for every artifact in the release.
Changelog
- d6973c9 Set date for 0.26.2 release in changelog (#1886)
- d4b2916 Changelog update for 0.26.2 (#1885)
- f9e5971 Merge pull request #1884 from smallstep/mariano/linkedca
- c8e65ab Fix linter warnings
- b4616ee Upgrade linkedca
- 634ece4 Merge pull request #1802 from jdoupe/AuthParams
- a017c0e Merge branch 'master' into AuthParams
- 8b36f7b Merge pull request #1878 from smallstep/dependabot/go_modules/google.golang.org/api-0.183.0
- 30b2cd1 Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
- a0b9360 Merge pull request #1879 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.24.0
- d5171be Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
- 6e12cfa Merge pull request #1880 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.0
- d1de1ad Merge branch 'master' into dependabot/go_modules/google.golang.org/api-0.183.0
- 0ce8fb6 Merge branch 'master' into dependabot/go_modules/golang.org/x/crypto-0.24.0
- 3b9631b Merge branch 'master' into dependabot/go_modules/go.step.sm/crypto-0.47.0
- 474f5d2 Update hardcoded AWS certs (#1881)
- 7ab8391 Bump go.step.sm/crypto from 0.46.0 to 0.47.0
- 23f120e Bump golang.org/x/crypto from 0.23.0 to 0.24.0
- e3444c0 Bump google.golang.org/api from 0.182.0 to 0.183.0
- 669d992 Merge pull request #1870 from smallstep/dependabot/go_modules/google.golang.org/api-0.182.0
- 68c5238 Merge pull request #1869 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/approle-0.7.0
- 4884379 Merge pull request #1868 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.46.0
- 437154d Bump google.golang.org/api from 0.181.0 to 0.182.0
- 2a9bbff Bump github.com/hashicorp/vault/api/auth/approle from 0.6.0 to 0.7.0
- 4d7ca9d Bump go.step.sm/crypto from 0.45.1 to 0.46.0
- 587d0d5 Merge pull request #1858 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.17.0
- 34fde59 Bump cloud.google.com/go/security from 1.16.1 to 1.17.0
- fe8c3d3 Merge pull request #1859 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api/auth/kubernetes-0.7.0
- 013c2f2 Bump github.com/hashicorp/vault/api/auth/kubernetes from 0.6.0 to 0.7.0
- 4208b0a Merge pull request #1860 from smallstep/dependabot/go_modules/github.com/hashicorp/vault/api-1.14.0
- 6de7aa9 Merge pull request #1861 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.45.1
- f3e4f0a Bump go.step.sm/crypto from 0.45.0 to 0.45.1
- 2b8f3e7 Bump github.com/hashicorp/vault/api from 1.13.0 to 1.14.0
- 47b5048 Merge pull request #1850 from smallstep/mariano/signer
- 7d6eea0 Merge pull request #1853 from smallstep/dependabot/go_modules/google.golang.org/grpc-1.64.0
- 99ce13a Fix linter warnings
- 5cdfc2c Bump google.golang.org/grpc from 1.63.2 to 1.64.0
- 980687b Merge pull request #1854 from smallstep/dependabot/go_modules/google.golang.org/api-0.181.0
- 8121a05 Bump google.golang.org/api from 0.180.0 to 0.181.0
- ad0ac55 Merge pull request #1844 from smallstep/mariano/account-provisioner
- 192e90e Merge branch 'master' into mariano/account-provisioner
- 812ffd3 Reverse assert statements
- d0548f9 Use %q instead of '%s'
- 14959db Merge pull request #1849 from smallstep/mariano/log-errors
- c0b7c33 Use a function as the error logger
- 9e8087f Add GetX509Signer method
- 8673818 Split provisioner check in two cases
- f3f484c Log errors using slog.Logger
- fdb0cf0 Merge pull request #1848 from smallstep/mariano/intermediates
- d4862a2 Add methods to get the intermediate certificates
- e08b277 Merge pull request #1847 from smallstep/mariano/x5c-insecure
- b6afed3 Upgrade go.step.sm/crypto to v0.45.0
- 9355923 Merge pull request #1839 from smallstep/dependabot/go_modules/google.golang.org/api-0.180.0
- a8e9a18 Bump google.golang.org/api from 0.177.0 to 0.180.0
- 803d3d3 Merge pull request #1840 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.1
- e0e7ae6 Merge pull request #1841 from smallstep/dependabot/go_modules/golang.org/x/net-0.25.0
- 72a8bb3 Merge pull request #1842 from smallstep/dependabot/go_modules/github.com/prometheus/client_golang-1.19.1
- 5fa5a63 Verify provisioner with id if available
- 9cbdc73 Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1
- 42341c7 Bump golang.org/x/net from 0.24.0 to 0.25.0
- 0dff5c4 Bump google.golang.org/protobuf from 1.34.0 to 1.34.1
- e3ba702 Merge pull request #1827 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.23.0
- fe29cca Merge pull request #1828 from smallstep/dependabot/go_modules/github.com/newrelic/go-agent/v3-3.33.0
- 8cf5e3c Merge pull request #1829 from smallstep/dependabot/go_modules/cloud.google.com/go/longrunning-0.5.7
- 928d446 Bump golang.org/x/crypto from 0.22.0 to 0.23.0
- e11833e Bump cloud.google.com/go/longrunning from 0.5.6 to 0.5.7
- 591b9f7 Merge pull request #1826 from smallstep/dependabot/go_modules/cloud.google.com/go/security-1.16.1
- a2f2332 Merge pull request #1831 from smallstep/mariano/err-not-found
- b1e31b1 Use always acme.IsErrNotFound
- cca6f6d Merge pull request #1830 from smallstep/mariano/provisioner-id
- d037ed6 Add provisioner id to acme accounts
- 9b25665 Bump github.com/newrelic/go-agent/v3 from 3.32.0 to 3.33.0
- 8933a2e Bump cloud.google.com/go/security from 1.16.0 to 1.16.1
- 2c71543 Merge pull request #1817 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.8
- 949e2fd Fix test error expectation in
TestAuthorityNew
- 281efbb Bump go.step.sm/crypto from 0.44.6 to 0.44.8
- 14b1211 Merge pull request #1815 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.15
- 0b894a0 Merge pull request #1816 from smallstep/dependabot/go_modules/google.golang.org/api-0.176.1
- 20e315b Merge pull request #1819 from smallstep/mariano/not-found
- 296ac4e Make ISErrNotFound more flexible
- 28a87bb Merge pull request #1818 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.1.0
- bf03d56 Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0
- 6715c65 Bump google.golang.org/api from 0.176.0 to 0.176.1
- 798e190 Bump github.com/urfave/cli from 1.22.14 to 1.22.15
- 5072d7a chore: fix function names in comment (#1813)
- 03c3cf5 fixed Scopes and AuthParams assignment
- aa543a3 add Scopes to OIDC struct
- 4879376 add AuthParams and Scopes to linkedca OIDC structures
- 2fcf340 add AuthParams to OIDC struct
Thanks!
Those were the changes on v0.26.2!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.