Official Release Artifacts
For more builds across platforms and architectures see the
Assets section below.
Don't see the artifact you need? Open an issue here.
Signatures and Checksums
step uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using
cosign to verify a release artifact:
cosign verify-blob \ -key https://raw.githubusercontent.com/smallstep/cli/master/cosign.pub \ -signature ~/Downloads/step_darwin_0.17.3-rc31_amd64.tar.gz.sig ~/Downloads/step_darwin_0.17.3-rc31_amd64.tar.gz
checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.
0c7521c Merge pull request #548 from smallstep/max/release-header
b12db5e [action] goreleaser official releases fixing links
16e1e37 [action] goreleaser windows official release is .zip not .tar.gz
ae989da [action] another forgotten close brace
266b757 [action] forgotten close brace
d5d3145 [action] more header official release work
6297e59 [action] thread deb version to goreleaser
8078d1a [action] goreleaser header adjustment
5241543 [action] add official releases section to GH release header
7e88fe9 [action] parameterize version in example and feng shui
99232f2 Merge pull request #547 from smallstep/max/release-header-footer
0c1d675 [action] add bit about checksums and rearrange a bit for feng shui
Those were the changes on v0.17.3-rc31!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.