Skip to content

Commit 140b479

Browse files
dopeydopey
authored
Changelog for v0.28.3 (#1364)
1 parent 3c3c6bf commit 140b479

File tree

1 file changed

+21
-10
lines changed

1 file changed

+21
-10
lines changed

CHANGELOG.md

Lines changed: 21 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -26,6 +26,17 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
2626

2727
---
2828

29+
## [0.28.3] - 2025-02-20
30+
31+
### Added
32+
33+
- Add support for KMS in the ca renew and rekey commands (smallstep/cli#1353)
34+
35+
### Fixed
36+
37+
- Correctly handle redirect-url flag when bootstrapping (smallstep/cli#1350)
38+
39+
2940
## [0.28.2] - 2024-11-20
3041

3142
### Fixed
@@ -192,11 +203,11 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
192203
- Detect OIDC tokens issued by Kubernetes (smallstep/cli#953)
193204
- Add support for Smallstep Managed Endpoint X509 extension
194205
(smallstep/cli#989)
195-
- Support signing a certificate for a private key that can only be used for
196-
encryption with the `--skip-csr-signature` flag in `step certificate create`.
197-
Some KMSs restrict key usage to a single type of cryptographic operation.
198-
This blocks RSA decryption keys from being used to sign a CSR for their public
199-
key. Using the `--skip-csr-signature` flag, the public key is used directly
206+
- Support signing a certificate for a private key that can only be used for
207+
encryption with the `--skip-csr-signature` flag in `step certificate create`.
208+
Some KMSs restrict key usage to a single type of cryptographic operation.
209+
This blocks RSA decryption keys from being used to sign a CSR for their public
210+
key. Using the `--skip-csr-signature` flag, the public key is used directly
200211
with a certificate template, removing the need for the CSR signature.
201212
- Add all AWS identity document certificates (smallstep/certificates#1510)
202213
- Add SCEP decrypter configuration flags (smallstep/cli#950)
@@ -206,8 +217,8 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
206217
### Changed
207218

208219
- Increase PBKDF2 iterations to 600k (smallstep/cli#949)
209-
- `--kms` flag is no longer used for the CA (signing) key for
210-
`step certificate create`. It was replaced by the `--ca-kms` flag
220+
- `--kms` flag is no longer used for the CA (signing) key for
221+
`step certificate create`. It was replaced by the `--ca-kms` flag
211222
(smallstep/cli#942).
212223
- Hide `step oauth command` on failure (smallstep/cli#993)
213224

@@ -222,7 +233,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
222233
- `step certificate format` correctly parse PEM files with non-PEM header
223234
(smallstep/cli#1006)
224235
- Fix TOFU flag in `ca provisioner update` (smallstep/cli#941)
225-
- Make `--team` incompatible with `--fingerprint` and `--ca-url` in
236+
- Make `--team` incompatible with `--fingerprint` and `--ca-url` in
226237
`step ca bootstrap (smallstep/cli#1017)
227238

228239
### Remove
@@ -243,15 +254,15 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
243254

244255
## [v0.24.3] - 2023-04-14
245256

246-
### Added
257+
### Added
247258

248259
- Storing of certificate chain for TPM keys in TPM storage (smallstep/cli#915)
249260

250261
### Changed
251262

252263
- The enrolment URL path used when enrolling with an attestation CA (smallstep/cli#915)
253264

254-
### Fixed
265+
### Fixed
255266

256267
- Issue with CLI reference not showing curly braces correctly (smallstep/cli#916)
257268
- Word wrapping for `step api token` example (smallstep/cli#917)

0 commit comments

Comments
 (0)