Releases · smallstep/cli

12 Jul 06:53

github-actions

v0.27.1

00417a3

Step CLI v0.27.1 (24-07-12)

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

📦 step_darwin_0.27.1_amd64.tar.gz
📦 step_darwin_0.27.1_arm64.tar.gz

Windows

📦 step_windows_0.27.1_amd64.zip
📦 step_windows_0.27.1_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.27.1_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.27.1_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.27.1_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

00417a3 neq -> ne (#1234)

Thanks!

Those were the changes on v0.27.1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

12 Jul 06:32

github-actions

v0.27.1-rc1

454dc26

Step CLI v0.27.1-rc1 (24-07-12) Pre-release

Pre-release

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

Windows

📦 step_windows_0.27.1-rc1_amd64.zip
📦 step_windows_0.27.1-rc1_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.27.1-rc1_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.27.1-rc1_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.27.1-rc1_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

454dc26 neq -> ne

Thanks!

Those were the changes on v0.27.1-rc1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

12 Jul 06:08

github-actions

v0.27.0

df7ae7b

Release refs/tags/v0.27.0

Update certificate to 0.27.0 (#1233)

Assets 2

13 Jun 17:31

github-actions

v0.26.2

3aef425

Step CLI v0.26.2 (24-06-13)

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

📦 step_darwin_0.26.2_amd64.tar.gz
📦 step_darwin_0.26.2_arm64.tar.gz

Windows

📦 step_windows_0.26.2_amd64.zip
📦 step_windows_0.26.2_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.26.2_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.26.2_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.26.2_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

3aef425 Bump smallstep/certificates to 0.26.2 (#1200)
8268b4f Merge pull request #1195 from smallstep/dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
0baa3f4 Merge branch 'master' into dependabot/go_modules/github.com/Azure/azure-sdk-for-go/sdk/azidentity-1.6.0
3f91698 Changelog update for 0.26.2 (#1198)
4fffd0f Merge pull request #1154 from jdoupe/AuthParams
615f8c8 Fix linter warnings
b54fa82 Bump github.com/Azure/azure-sdk-for-go/sdk/azidentity
1b886a4 Merge branch 'master' into AuthParams
cc0b543 Merge pull request #1197 from smallstep/mariano/certificates
089412e Upgrade certificates to master
7be7142 Merge branch 'master' into AuthParams
f0e3653 Merge pull request #1196 from smallstep/mariano/linkedca
d33d773 Upgrade linkedca dependencies
86aaac3 Merge pull request #1193 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.24.0
f28438f Bump golang.org/x/crypto from 0.23.0 to 0.24.0
e817600 Merge pull request #1191 from smallstep/dependabot/go_modules/golang.org/x/term-0.21.0
156bb9f Merge branch 'master' into dependabot/go_modules/golang.org/x/term-0.21.0
e8f7eb4 Merge pull request #1192 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.47.0
613e5f8 Bump go.step.sm/crypto from 0.46.0 to 0.47.0
54974a0 Bump golang.org/x/term from 0.20.0 to 0.21.0
dfcab02 Merge pull request #1189 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.46.0
e621236 Bump go.step.sm/crypto from 0.45.1 to 0.46.0
73cd7f4 Merge pull request #1184 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.45.1
a7467ed Bump go.step.sm/crypto from 0.45.0 to 0.45.1
7888a37 Merge pull request #1181 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.45.0
3fdf6da Bump go.step.sm/crypto from 0.44.8 to 0.45.0
9a01088 Merge pull request #1174 from smallstep/carl/template-flags
3156aec Merge pull request #1175 from smallstep/carl/template-flags-1
af6511a Fix linter errors
9fef15b Add OCSP and CRL support to certificate verify
cd22f47 Fix spacing in ssh/certificate with goimports (#1178)
32bdf40 Allow users to define certificate comment in agent (#1158)
aeee3d0 Add support for setting ssh key types
bf70d3e Merge pull request #1177 from smallstep/herman/read-certificate-once
42e275a Reduce number of times certificate file is read when installing
e5ab833 Add CSR common name to SANs if no other SANs are defined in CSR (#1172)
ae17a8a Add template flags to step ca provisioner add help text
d4bd44f Add template flags to step ca provisioner update help text
028915b Merge pull request #1170 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.34.1
1e4bb89 Bump google.golang.org/protobuf from 1.33.0 to 1.34.1
48dac3f Merge pull request #1167 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.23.0
1f36d23 Allow stdin input of cert for needs-renewal (#1157)
d84fb79 Bump golang.org/x/crypto from 0.22.0 to 0.23.0
8e4c5d7 Merge branch 'master' into AuthParams
f0aab19 Merge pull request #1166 from smallstep/dependabot/go_modules/github.com/urfave/cli-1.22.15
b54d419 Merge pull request #1165 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.26.1
80f0b89 Merge pull request #1164 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.1.0
54b6212 Bump github.com/urfave/cli from 1.22.14 to 1.22.15
3537984 Bump github.com/smallstep/certificates from 0.26.0 to 0.26.1
cddd7f2 Bump dependabot/fetch-metadata from 2.0.0 to 2.1.0
a7b2b3a Merge pull request #1163 from smallstep/herman/upgrade-crypto-v0.44.8
e356894 Fix go.mod
d82d752 Upgrade go.step.sm/crypto to v0.44.8
85e8884 add scope and authparam flags and parameters for OIDC
cae069c allow auth scopes from provisioner
c216086 add AuthParams to token

Thanks!

Those were the changes on v0.26.2!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

23 Apr 00:07

github-actions

v0.26.1

576d8ad

Step CLI v0.26.1 (24-04-23)

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

📦 step_darwin_0.26.1_amd64.tar.gz
📦 step_darwin_0.26.1_arm64.tar.gz

Windows

📦 step_windows_0.26.1_amd64.zip
📦 step_windows_0.26.1_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.26.1_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.26.1_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.26.1_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

576d8ad Fix certificate inspect (#1153)
6236b6e Merge pull request #1159 from smallstep/dependabot/go_modules/github.com/Microsoft/go-winio-0.6.2
7cba07f Merge branch 'master' into dependabot/go_modules/github.com/Microsoft/go-winio-0.6.2
1e37e72 Merge pull request #1160 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.6
0a178ea Bump go.step.sm/crypto from 0.44.3 to 0.44.6
ddcae60 Bump github.com/Microsoft/go-winio from 0.6.1 to 0.6.2
31e62a0 Bump go version to 1.21 in go.mod (#1155)
60484c9 Merge pull request #1152 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.3
555602c Bump go.step.sm/crypto from 0.44.2 to 0.44.3
dc731e0 Merge pull request #1148 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.22.0
cb86d05 Bump golang.org/x/crypto from 0.21.0 to 0.22.0
b3c4df5 Merge pull request #1143 from smallstep/carl/winget-fix
8b88dc4 Fix winget release URL
b838891 Add version number to winget branch name (#1142)
6e0fba5 Merge pull request #1141 from smallstep/herman/improve-plugin-not-found-error
2ee14c5 Improve error message when a known plugin is not found

Thanks!

Those were the changes on v0.26.1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

29 Mar 02:24

github-actions

v0.26.0

05f95e5

Step CLI v0.26.0 (24-03-29)

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

📦 step_darwin_0.26.0_amd64.tar.gz
📦 step_darwin_0.26.0_arm64.tar.gz

Windows

📦 step_windows_0.26.0_amd64.zip
📦 step_windows_0.26.0_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.26.0_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.26.0_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.26.0_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

05f95e5 Upgrade certificate 0.26.0 | fix linter warnings (#1140)
ea6ffb3 Update go.step.sm/crypto (#1139)
e5f1be6 Merge pull request #1138 from smallstep/herman/update-changelog-20240327
6668ab2 Update changelog for v0.26.0
65f97a8 Merge pull request #1136 from smallstep/herman/fix-oauth-cors
589416d Merge pull request #1135 from jindraj/jindraj/missing-dash-in-help
ef4a736 add missing dash for --offline in help

Thanks!

Those were the changes on v0.26.0!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

26 Mar 15:41

github-actions

v0.25.3-rc3

9d1b9a0

Step CLI v0.25.3-rc3 (24-03-26) Pre-release

Pre-release

Official Release Artifacts

Below are the most popular artifacts for step on each platform.

For packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Linux

macOS Darwin

Windows

📦 step_windows_0.25.3-rc3_amd64.zip
📦 step_windows_0.25.3-rc3_arm64.zip

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.25.3-rc3_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.25.3-rc3_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.25.3-rc3_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

9d1b9a0 Return HTTP OK on CORS Options request
9f9412c Merge pull request #1132 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-2.0.0
0b6aedd Merge pull request #1133 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.26.0-rc2
40867fd Bump github.com/smallstep/certificates from 0.25.3-rc7 to 0.26.0-rc2
9c5bfbe Merge pull request #1134 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.44.1
3c217fc Bump go.step.sm/crypto from 0.43.1 to 0.44.1
0db9019 Bump dependabot/fetch-metadata from 1.6.0 to 2.0.0
5cba7ab Merge pull request #1130 from smallstep/herman/cosign-2.x
07cdbd6 Use --yes to acknowledge user prompts for Cosign signing
d90586e Upgrade certinfo
7a6c3cf Merge pull request #1128 from smallstep/max/assets
d49acd0 Update .goreleaser.yml
3ead9e0 Update .goreleaser.yml
0622365 Update .goreleaser.yml
dbaee8b Update .goreleaser.yml
0ead710 Bump jackc dependency in gomod
e69cb2f Add a few more popular assets to the releases header.
384d4ab Merge pull request #1125 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.3
631f1a7 Bump github.com/go-jose/go-jose/v3 from 3.0.2 to 3.0.3
0bae350 Merge pull request #1124 from smallstep/herman/fix-load-vintage-error
49148fc Merge pull request #1123 from smallstep/fix-peak-typo
3841ae5 Fix ignored error from loading vintage context configuration
3fa35cc Fix peak -> peek
94ebbb3 go mod tidy (#1122)
0b07dde Merge pull request #1121 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.25.3-rc7
1c0daea Upgrade google.golang.org/protobuf to v1.33.0
eb5fbfb Use localhost in the step ca health CA url
efe7e38 Bump github.com/smallstep/certificates
eeb3d87 Merge pull request #1120 from smallstep/herman/upgrade-dependencies-20240304
c25f5c3 Add very basic step ca health integration test
6c8661f Fix usage of deprecated Sign() method
d6626c8 Upgrade dependencies and fix linting issues
491effd Merge pull request #1114 from smallstep/dependabot/go_modules/github.com/go-jose/go-jose/v3-3.0.2
5a0c428 Bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.2
57505a0 Merge pull request #1103 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.25.3-rc5
12cdd9b Merge pull request #1112 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.1
3dc8b46 Bump github.com/smallstep/certificates
bbfc8fe Merge pull request #1111 from smallstep/dependabot/go_modules/github.com/fxamacker/cbor/v2-2.6.0
9668c3d Bump go.step.sm/crypto from 0.43.0 to 0.43.1
e95bbbc Bump github.com/fxamacker/cbor/v2 from 2.5.0 to 2.6.0
c592ed4 Teach step ca init about --key-password-file
3d2769a Merge pull request #1107 from smallstep/dependabot/github_actions/webfactory/ssh-agent-0.9.0
c7b90c6 Bump webfactory/ssh-agent from 0.8.0 to 0.9.0
7e6a58d Merge pull request #1109 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.19.0
93022d1 Bump golang.org/x/crypto from 0.18.0 to 0.19.0
badf024 Merge pull request #1104 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.43.0
01e544d Bump go.step.sm/crypto from 0.42.1 to 0.43.0
869c359 Merge pull request #1101 from smallstep/dependabot/go_modules/github.com/google/uuid-1.6.0
d029945 Merge pull request #1102 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.1
df54f22 Bump go.step.sm/crypto from 0.42.0 to 0.42.1
0af8755 Bump github.com/google/uuid from 1.5.0 to 1.6.0
1fa24c9 Merge pull request #1100 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.42.0
c000bfc Bump go.step.sm/crypto from 0.41.0 to 0.42.0

Thanks!

Those were the changes on v0.25.3-rc3!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peek at the freshest PKI memes.

Assets 116

19 Jan 21:15

github-actions

v0.25.2

4f55cda

Step CLI v0.25.2 (24-01-19)

Official Release Artifacts

Linux

macOS Darwin

📦 step_darwin_0.25.2_amd64.tar.gz
📦 step_darwin_0.25.2_arm64.tar.gz

Windows

📦 step_windows_0.25.2_amd64.zip

For more builds across platforms and architectures see the Assets section below.
And for packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.25.2_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.25.2_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.25.2_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

4f55cda Merge pull request #1099 from smallstep/changelog-0.25.2
971e954 Upgrade changelog
06fa8a8 Merge pull request #1097 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.41.0
ad07303 Bump go.step.sm/crypto from 0.40.0 to 0.41.0
9cf18ee Merge pull request #1098 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.18.0
4ce778a Merge pull request #1096 from smallstep/dependabot/go_modules/github.com/slackhq/nebula-1.8.2
33d9354 Bump golang.org/x/crypto from 0.17.0 to 0.18.0
ff8094b Bump github.com/slackhq/nebula from 1.8.1 to 1.8.2
c0af50f Merge pull request #1095 from smallstep/dependabot/go_modules/golang.org/x/term-0.16.0
f78d3f5 Bump golang.org/x/term from 0.15.0 to 0.16.0
71ae5c6 Merge pull request #1094 from smallstep/dependabot/go_modules/golang.org/x/sys-0.16.0
a6ed0cf Bump golang.org/x/sys from 0.15.0 to 0.16.0
c8a74b5 Merge pull request #1093 from smallstep/mariano/certinfo
d17b636 Bump certinfo to v1.12.1
cc55113 Merge pull request #1090 from smallstep/dependabot/go_modules/google.golang.org/protobuf-1.32.0
7eef805 Merge pull request #1091 from smallstep/dependabot/go_modules/github.com/slackhq/nebula-1.8.1
37c588b Bump github.com/slackhq/nebula from 1.8.0 to 1.8.1
28e4a82 Bump google.golang.org/protobuf from 1.31.0 to 1.32.0
2961f40 Merge pull request #1085 from smallstep/herman/fix-nebula-verify-with-curve
2818a2a Merge branch 'master' into herman/fix-nebula-verify-with-curve
4c8600c Merge pull request #1089 from smallstep/herman/use-uuid-validate
ac097ff Use uuid.Validate for cases where the UUID isn't used
d4dc84e Merge pull request #1088 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.17.0
aca9412 Bump golang.org/x/crypto from 0.16.0 to 0.17.0
d55769a Bump github.com/google/uuid from 1.4.0 to 1.5.0
def9b01 Merge branch 'master' into herman/fix-nebula-verify-with-curve
29e9f7f Merge pull request #1086 from smallstep/go-jose
636acdd Upgrade go.step.sm/crypto to use go-jose/v3
6be1922 Fix panic trying to create a key with a public key
2cc7174 Add more test cases for Nebula token
84519a7 Fix linting issue
b84beef Add key type to error message
7c490d1 Fix Nebula VerifyPrivateKey by selecting curve to use based on key
cc063b1 Merge pull request #1084 from smallstep/dependabot/github_actions/actions/setup-go-5
5478e0f Merge pull request #1083 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.39.0
73f2970 Bump actions/setup-go from 4 to 5
39bbc66 Bump go.step.sm/crypto from 0.38.0 to 0.39.0
926e9ba Bump github.com/slackhq/nebula from 1.6.1 to 1.8.0
38a2780 Merge pull request #1080 from smallstep/carl/debian-bookworm
e855e87 Update debian docker build to bookworm
947641c Merge pull request #1079 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.16.0
620a7a6 Merge pull request #1078 from smallstep/dependabot/go_modules/github.com/smallstep/certificates-0.25.2
2f14ccb Bump golang.org/x/crypto from 0.15.0 to 0.16.0
108d916 Bump github.com/smallstep/certificates from 0.25.1 to 0.25.2

Thanks!

Those were the changes on v0.25.2!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.

Assets 116

29 Nov 03:44

github-actions

v0.25.1

7f2d5f4

Step CLI v0.25.1 (23-11-29)

Official Release Artifacts

Linux

macOS Darwin

📦 step_darwin_0.25.1_amd64.tar.gz
📦 step_darwin_0.25.1_arm64.tar.gz

Windows

📦 step_windows_0.25.1_amd64.zip

For more builds across platforms and architectures see the Assets section below.
And for packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.25.1_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.25.1_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/workflows/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.25.1_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

7f2d5f4 Merge pull request #1071 from smallstep/update-changelog-20231127
e9902f8 Merge branch 'master' into update-changelog-20231127
a78932c Merge pull request #1072 from smallstep/sort-ca-kms
3f2963d Merge branch 'master' into sort-ca-kms
ad52904 Merge pull request #1074 from smallstep/bump-gopkcs12
9bf3d4e Merge branch 'master' into bump-gopkcs12
949215e golang dep updates (#1073)
0b51ad0 Upgrade go-pkcs12 and use modern encoders
0f2ff58 Sort step certificate create flags
29ffa8d Set v0.25.1 release date
e3bce7a Run gofmt on decrypt.go
7683b87 Merge pull request #1067 from smallstep/update-changelog-20231127
8865323 Merge pull request #1060 from ncaq/add-password-file-for-step-crypto-jwe-decrypt
5d33840 Merge pull request #1068 from smallstep/dependabot/go_modules/golang.org/x/term-0.15.0
a851722 Bump golang.org/x/term from 0.14.0 to 0.15.0
552aa3f Changes for v0.25.1 release
3f81750 Merge pull request #1066 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.37.0
3e616f8 Bump go.step.sm/crypto from 0.36.1 to 0.37.0
e1e15f5 Merge pull request #1063 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.15.0
d63f7c7 Bump golang.org/x/crypto from 0.14.0 to 0.15.0
c4cc60e Merge pull request #1064 from smallstep/dependabot/go_modules/golang.org/x/term-0.14.0
b71a30a Bump golang.org/x/term from 0.13.0 to 0.14.0
5f700b5 Merge pull request #1062 from smallstep/dependabot/go_modules/golang.org/x/sys-0.14.0
d2c7831 Bump golang.org/x/sys from 0.13.0 to 0.14.0
ba4214f Merge pull request #1054 from smallstep/mariano/rand
822c29b feat: add: --password-file option for step crypto jwe decrypt
75d7a7b Merge pull request #1057 from smallstep/dependabot/go_modules/github.com/google/uuid-1.4.0
afba645 Bump github.com/google/uuid from 1.3.1 to 1.4.0
bf32ddf Merge pull request #1055 from terabyte128/master
12263b8 Clarify docs for die
53eb468 Fix examples
bb072b1 Move step rand to step crypto rand and prime format
a0135a0 Update command/rand/rand.go
82999ac Update command/rand/rand.go
c5608d1 Fix command completion for zsh
3ce9382 Add step rand command
e397d84 Merge pull request #1045 from smallstep/herman/ignore-bom
92f807f Make the utfbom package internal
eda17fc Merge branch 'master' into herman/ignore-bom
8d489d1 Merge pull request #1053 from smallstep/mariano/truststore
3b0f22a Upgrades truststore
2e6ff3e Merge pull request #1044 from smallstep/mariano/tpm-device
3df0ad1 Merge pull request #1052 from smallstep/herman/fix-leaf-certificate-public-key-type
9dc90a4 Fix leaf certificate *rsa.PublicKey example
7fb818c Merge branch 'master' into herman/ignore-bom
e6e358d Merge pull request #1047 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.36.1
172d3fe Merge pull request #1048 from smallstep/dependabot/github_actions/dependabot/fetch-metadata-1.6.0
c275804 Merge branch 'master' into dependabot/github_actions/dependabot/fetch-metadata-1.6.0
c3dee7e Merge branch 'master' into dependabot/go_modules/go.step.sm/crypto-0.36.1
141af6e Bump ad-m/github-push-action from 0.6.0 to 0.8.0 (#1049)
72ea770 Merge pull request #1050 from smallstep/dependabot/github_actions/webfactory/ssh-agent-0.8.0
c118251 Merge branch 'master' into dependabot/github_actions/webfactory/ssh-agent-0.8.0
cc50901 Merge branch 'master' into dependabot/go_modules/go.step.sm/crypto-0.36.1
43e8d20 Merge branch 'master' into dependabot/github_actions/dependabot/fetch-metadata-1.6.0
50f295c [action] fix actionlint warnings (#1046)
1031717 Bump webfactory/ssh-agent from 0.7.0 to 0.8.0
5966905 Bump dependabot/fetch-metadata from 1.1.1 to 1.6.0
20e1aa1 Bump go.step.sm/crypto from 0.36.0 to 0.36.1
deda87e Fix linting issues
f97a0f2 Make the file reader utility aware of BOMs
7d70cea Allow the define a custom tpm device
01d41bb Merge pull request #1040 from smallstep/carl/fix-release-action-i-broke
7eb652d Fixes a yaml error in release.yml that I introduced
cecdb62 Merge pull request #1039 from smallstep/carl/fixes-1032
ac234c6 Merge pull request #1034 from smallstep/carl/unversioned
d6db060 Fixes #1032
dcef695 [action] check for updates to dependabot actions (#1038)
83f2696 Merge pull request #1037 from smallstep/dependabot/go_modules/go.step.sm/crypto-0.36.0
96d08b9 Merge pull request #1036 from smallstep/dependabot/go_modules/github.com/google/go-cmp-0.6.0
abb9aad Bump go.step.sm/crypto from 0.35.1 to 0.36.0
dc41fb9 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0
1c46be6 Wrap unversioned step into an unversioned dir
8a17e78 Wrap unversioned step into an unversioned dir
27a1e29 Merge pull request #1033 from smallstep/dependabot/go_modules/golang.org/x/net-0.17.0
699a864 Bump golang.org/x/net from 0.15.0 to 0.17.0
463a137 Merge pull request #1031 from smallstep/dependabot/go_modules/golang.org/x/crypto-0.14.0
09fecd3 Bump golang.org/x/crypto from 0.13.0 to 0.14.0
6cbf2f4 Remove gitleaksignore file (#1027)
abf6c29 Merge pull request #1025 from smallstep/carl/fixes-1023
4b8020a Merge branch 'master' into carl/fixes-1023
01a5d12 Fix cosign identity regexp
cfca45a Merge pull request #1024 from smallstep/carl/reference-fix
85eb21a Path fix for step cli command refernce build step
57f839f Merge pull request #984 from smallstep/carl/winget
4653094 Explicitly specify the scoop buget repository branch name.
02e9286 Merge branch 'master' into carl/winget
6a2da40 Merge pull request #1021 from smallstep/max/scoop
cfe9ddb Merge pull request #1022 from Juneezee/jwt/redundant-len-check
312adcb crypto/jwt: remove redundant len check in verify
a710bb7 [action] Change scoop name to step
6813a53 Merge branch 'master' into carl/winget
be0e53f Only make PRs on releases, not release candidates
5ae0337 Use MS repo as base
6b5b7e4 Remove broken config
35a699b Add base branch for PR
895c18a Add base branch for PR
8b0d08d Fix goreleaser deprecation warnings
6fdddea erge branch 'master' into carl/winget
6f66fa3 Use a 'step' branch for Winget PRs
4c1de11 Test winget
626414c Add Winget automation to GoReleaser
5c2c5ef Add Winget automation to GoReleaser

Thanks!

Those were the changes on v0.25.1!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.

Assets 116

27 Sep 05:35

github-actions

v0.25.0

effe01c

Step CLI v0.25.0 (23-09-27)

Official Release Artifacts

Linux

macOS Darwin

📦 step_darwin_0.25.0_amd64.tar.gz
📦 step_darwin_0.25.0_arm64.tar.gz

Windows

📦 step_windows_0.25.0_amd64.zip

For more builds across platforms and architectures see the Assets section below.
And for packaged versions (Homebrew, Scoop, etc.), see our installation docs.

Don't see the artifact you need? Open an issue here.

Signatures and Checksums

step uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Download/step_darwin_0.25.0_amd64.tar.gz.pem \
  --signature ~/Downloads/step_darwin_0.25.0_amd64.tar.gz.sig \
  --certificate-identity-regexp "https://github\.com/smallstep/cli/.*" \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  ~/Downloads/step_darwin_0.25.0_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

effe01c Update changelog for release (#1020)

Thanks!

Those were the changes on v0.25.0!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.

Assets 116

Releases: smallstep/cli

Step CLI v0.27.1 (24-07-12)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.27.1-rc1 (24-07-12)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Release refs/tags/v0.27.0

Step CLI v0.26.2 (24-06-13)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.26.1 (24-04-23)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.26.0 (24-03-29)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.25.3-rc3 (24-03-26)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.25.2 (24-01-19)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.25.1 (23-11-29)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!

Step CLI v0.25.0 (23-09-27)

Official Release Artifacts

Linux

macOS Darwin

Windows

Signatures and Checksums

Changelog

Thanks!