Official Release Artifacts
Below are the most popular artifacts for step on each platform.
For packaged versions (Homebrew, Scoop, etc.), see our installation docs.
Linux
- 📦 step_linux_0.28.6_amd64.tar.gz
- 📦 step_linux_0.28.6_arm64.tar.gz
- 📦 step_linux_0.28.6_armv7.tar.gz
- 📦 step-cli_0.28.6-1_amd64.deb
- 📦 step-cli-0.28.6-1.x86_64.rpm
- 📦 step-cli_0.28.6-1_arm64.deb
- 📦 step-cli-0.28.6-1.aarch64.rpm
- see
Assetsbelow for more builds
macOS Darwin
Windows
Signatures and Checksums
step uses sigstore/cosign for signing and verifying release artifacts.
Below is an example using cosign to verify a release artifact:
cosign verify-blob \
--certificate ~/Download/step_darwin_0.28.6_amd64.tar.gz.pem \
--signature ~/Downloads/step_darwin_0.28.6_amd64.tar.gz.sig \
--certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
~/Downloads/step_darwin_0.28.6_amd64.tar.gz
The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.
Changelog
- ea5f95e Bump certificates to 0.28.3 (#1390)
- 2e5b5c9 Add changelog for 0.28.6 (#1389)
- 20a81b4 Merge pull request #1387 from smallstep/dependabot/go_modules/golang.org/x/net-0.36.0
- fe48303 Bump golang.org/x/net from 0.35.0 to 0.36.0
- af579f3 Merge pull request #1384 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.36.0
- 533f832 Bump golang.org/x/crypto from 0.35.0 to 0.36.0
- 26abca7 Merge pull request #1386 from smallstep/dependabot/go_modules/golang.org/x/term-0.30.0
- ac5872a Bump golang.org/x/term from 0.29.0 to 0.30.0
- 7842976 Merge pull request #1385 from smallstep/dependabot/go_modules/golang.org/x/sys-0.31.0
- b06043e Bump golang.org/x/sys from 0.30.0 to 0.31.0
Thanks!
Those were the changes on v0.28.6!
Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.