smallstep/certificates v0.27.1

Step CA v0.27.1 (24-07-12)

on GitHub

Official Release Artifacts

Linux

• 📦 step-ca_linux_0.27.1_amd64.tar.gz
• 📦 step-ca_0.27.1_amd64.deb

OSX Darwin

• 📦 step-ca_darwin_0.27.1_amd64.tar.gz
• 📦 step-ca_darwin_0.27.1_arm64.tar.gz

Windows

• 📦 step-ca_windows_0.27.1_amd64.zip

For more builds across platforms and architectures, see the Assets section below.
And for packaged versions (Docker, k8s, Homebrew), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step-ca uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate step-ca_darwin_0.27.1_amd64.tar.gz.sig.pem \
  --signature step-ca_darwin_0.27.1_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  step-ca_darwin_0.27.1_amd64.tar.gz

The checksums.txt file (in the Assets section below) contains a checksum for every artifact in the release.

Changelog

• 3897771 Merge pull request #1926 from smallstep/mariano/dns
• 3e61796 Add a flag to enable strict DNS resolution
• 0a9dd62 [actions] use ref_name as release name (#1924)

Thanks!

Those were the changes on v0.27.1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.