Skip to content

Step SDS v0.2.2-rc16 (22-10-27)

Pre-release
Pre-release
Compare
Choose a tag to compare
@github-actions github-actions released this 27 Oct 04:41
v0.2.2-rc16
892b89d
This commit was signed with the committer’s verified signature.
dopey Max
SSH Key Fingerprint: XqwT0oeU2w7K2xi256NPKLR78lp+Z9ZEastRNQDD49Q Learn about vigilant mode.

Signatures and Checksums

step-sds uses sigstore/cosign for signing and verifying release artifacts.

Below is an example using cosign to verify a release artifact:

cosign verify-blob \
  --certificate ~/Downloads/step-sds_darwin_0.2.2-rc16_amd64.tar.gz.pem \
  --signature ~/Downloads/step-sds_darwin_0.2.2-rc16_amd64.tar.gz.sig \
  ~/Downloads/step-sds_darwin_0.2.2-rc16_amd64.tar.gz

The checksums.txt file (in the 'Assets' section below) contains a checksum for every artifact in the release.

Changelog

  • 892b89d [action] get docker image digest for cosign

Thanks!

Those were the changes on v0.2.2-rc16!

Come join us on Discord to ask questions, chat about PKI, or get a sneak peak at the freshest PKI memes.

Assets 32
Loading