smallstep/cli v0.30.0-rc2

Step CLI v0.30.0-rc2 (26-03-04)

on GitHub

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

• 📦 step_linux_0.30.0-rc2_amd64.tar.gz
• 📦 step_linux_0.30.0-rc2_arm64.tar.gz
• 📦 step_linux_0.30.0-rc2_armv7.tar.gz
• 📦 step-cli_0.30.0.rc2-1_amd64.deb
• 📦 step-cli-0.30.0.rc2-1.x86_64.rpm
• 📦 step-cli_0.30.0.rc2-1_arm64.deb
• 📦 step-cli-0.30.0.rc2-1.aarch64.rpm
• see Assets below for more builds

macOS Darwin

• 📦 step_darwin_0.30.0-rc2_amd64.tar.gz
• 📦 step_darwin_0.30.0-rc2_arm64.tar.gz

Windows

• 📦 step_windows_0.30.0-rc2_amd64.zip
• 📦 step_windows_0.30.0-rc2_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --bundle ~/Downloads/step_darwin_0.30.0-rc2_amd64.tar.gz.sigstore.json \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.30.0-rc2_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

• 1d49198 Merge pull request #1574 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.30.0-rc3
• fdc0b4d Upgrade golang.org/x/net to v0.51.0
• 5056193 Bump github.com/smallstep/certificates
• 4fbbd94 ci: Add actionci.yml (#1578)
• a0e8aa1 Merge pull request #1575 from smallstep/dependabot/github_actions/actions/setup-go-6.3.0
• 3faba15 Merge pull request #1576 from smallstep/carl/cicd-security-hardening
• 60b94c6 Add least-privilege permissions to triage workflow
• 496ca88 Bump actions/setup-go from 6.2.0 to 6.3.0
• 82c0b4f Merge pull request #1569 from smallstep/dependabot/go_modules/filippo.io/edwards25519-1.1.1
• fff1aac Bump filippo.io/edwards25519 from 1.1.0 to 1.1.1
• 8a8aaa5 Merge pull request #1568 from smallstep/herman/fix-nebula-certificate-handling
• 0b56704 Fix Nebula breaking changes
• 605d24c Bump github.com/slackhq/nebula from 1.9.7 to 1.10.3
• 7723678 Merge pull request #1572 from smallstep/herman/fix-gosec-linter-issues
• cff282e Fix gosec linter issues
• 3c47ad7 Bump go.step.sm/crypto from 0.76.0 to 0.76.2
• c344f95 ci: use step-ci as gh author instead of step-travis-ci (#1570)
• b6f2624 Merge pull request #1560 from smallstep/mariano/kms-uri
• 3a11f97 Apply suggestions from code review
• 6a0a16f Merge pull request #1563 from jesseck3013/fix-docs-link
• a0ffd6a Merge pull request #1566 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.48.0
• 03d5402 Bump golang.org/x/crypto from 0.47.0 to 0.48.0
• c2b110d Fix broken link in CONTRIBUTING.md
• cde7780 Allow loading a certificate from a KMS
• 99c4d7c Add sign example
• b36ab17 Add more kms examples
• 4be2273 Merge pull request #1562 from smallstep/carl/winget-tweaks
• 801e3b0 Add long description for Winget, fix scoop URL template
• 3da5429 Add examples of KMS URIs without the --kms flag
• e6b08fe Use KMS URIs without --kms flag
• 8aacf25 Merge pull request #1557 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.76.0
• 6881d81 Merge pull request #1558 from smallstep/dependabot/github_actions/actions/checkout-6.0.2
• 15d4570 Bump actions/checkout from 6.0.1 to 6.0.2
• ea82a7c Bump go.step.sm/crypto from 0.75.0 to 0.76.0
• a861ce1 Merge pull request #1555 from smallstep/mariano/cosign-docs
• faf54d7 Update header with cosign instructions
• 5e2785a Merge pull request #1554 from smallstep/mariano/cosign

Thanks!

Those were the changes on v0.30.0-rc2!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.