chore(deps): update all non-major dependencies
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| gitlab (source) | required_provider | minor |
18.0.0 -> 18.3.0
|
| google (source) | required_provider | minor |
6.37.0 -> 6.49.2
|
| google-beta (source) | required_provider | minor |
6.37.0 -> 6.49.2
|
| registry.gitlab.developers.cam.ac.uk/uis/devops/infra/dockerimages/logan-terraform | minor |
1.12 -> 1.13
|
|
| uis/devops/continuous-delivery/ci-templates | repository | minor |
v7.7.0 -> v7.14.1
|
Release Notes
gitlabhq/terraform-provider-gitlab (gitlab)
v18.3.0
FEATURES (3 changes)
-
Add new
gitlab_group_deploy_tokenandgitlab_project_deploy_tokenresources. The existing genericgitlab_deploy_tokenresource has now been deprecated. by @mness (merge request) -
Add new
gitlab_group_saml_linksdatasource by @heidi.berry (merge request) - Support client-go config file for provider authentication. See more information here: https://gitlab.com/gitlab-org/api/client-go#use-the-config-package-experimental by @timofurrer (merge request)
IMPROVEMENTS (6 changes)
- resource/gitlab_project_level_notifications: Update to handle unknown value validation by @PatrickRice (merge request)
- resource/gitlab_group: Add support for
administratortoproject_creation_levelby @aldo.salas1 (merge request) - resource/gitlab_group_security_policy_attachments: This resource now checks permissions prior to adding the policy, and fails with a informative error if permissions are missing by @PatrickRice (merge request)
- resource/gitlab_project_security_policy_attachments: This resource now checks permissions prior to adding the policy, and fails with a informative error if permissions are missing by @PatrickRice (merge request)
- resource/gitlab_deploy_token: Add support for previously missing scope options by @mness (merge request)
- resource/gitlab_instance_service_account: Allow instance service accounts to be created without username and/or name by @heidi.berry (merge request)
BUG FIXES (6 changes)
- resource/gitlab_global_level_notifications: Update to handle unknown value validation by @PatrickRice (merge request)
- resource/gitlab_project_level_notifications: Update to handle unknown value validation by @PatrickRice (merge request)
- resource/gitlab_project_protected_environment: Fix error in protected environment using unknown deploy attributes by @PatrickRice (merge request)
- resource/gitlab_project_integration_github: Fix a provider panic that occurs when importing a non-existent integration by @heidi.berry (merge request)
- resource/gitlab_group_dependency_proxy: Fixed a bug where importing using an
importblock caused an immediate replace by @PatrickRice (merge request) - resource/gitlab_group: Fixed an issue with
permanently_remove_on_deletethat occurred when deleting groups on GitLab versions later than 18.0 by @heidi.berry (merge request)
v18.2.0
FEATURES (2 changes)
- datasource/gitlab_project_access_tokens: Allows retrieving project access tokens by @ruben.aleman (merge request)
- resource/gitlab_project_container_registry_protection: Allows managing container registry protections for a project by @hristiyan.ivanov (merge request)
IMPROVEMENTS (5 changes)
- resource/gitlab_project: Added support for
ci_push_repository_for_job_token_allowedby @danilobuerger (merge request) - resource/gitlab_group_hook: Add
emoji_eventssupport by @lllkq546449541 (merge request) - resource/gitlab_project_protected_environment: Create new
deploy_access_levels_attributeusing an object list instead of nested blocks to enable easier operations with other resources. The existingdeploy_access_levelsis deprecated and will be removed in 19.0. by @heidi.berry (merge request) - resource/gitlab_group_service_account: Allow using custom emails with group service accounts by @heidi.berry (merge request)
- resource/gitlab_branch_protection: Add
adminpush access level support by @netflash (merge request)
BUG FIXES (2 change)
- resource/gitlab_project_label: Fixed a bug that caused a plan operation when a named color was used instead of a hex by @heidi.berry (merge request)
- access token resources: Fixed a bug where using an
unknownvalue forscopescaused an error by @PatrickRice (merge request)
v18.1.1
BUG FIXES (1 change)
- resource/gitlab_group_service_account_access_token: Fix a bug when using
scopeswith anunknownset, resulting in an error message about the provider by @heidi.berry (merge request)
v18.1.0
FEATURES (3 changes)
- resource/gitlab_project_merge_request_note: New resource allows creating merge request notes by @heidi.berry (merge request)
- resource/gitlab_application_appearance: New resource allows managing instance-wide application appearance by @heidi.berry (merge request)
- datasource/gitlab_project_merge_requests: New datasource allows listing project merge requests by @heidi.berry (merge request)
IMPROVEMENTS (15 changes)
- resource/gitlab_project: Add support for
ci_forward_deployment_rollback_allowedby @paroose (merge request) - resource/gitlab_project: Add support for
auto_duo_code_review_enabledby @mness (merge request) - resource/gitlab_project: Add
branchesoption to project resource when forking by @Taucher2003 (merge request) - resource/gitlab_group_saml_link: Update group access level list for SAML group links to include
plannerby @heidi.berry (merge request) - resource/gitlab_deploy_key: Add support for
expires_at, allowing expiring project deploy keys by @heidi.berry (merge request) - resource/gitlab_project_integration_mattermost: Rename mattermost integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_project_integration_emails_on_push: Rename emails on push integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_project_integration_external_wiki: Rename external wiki integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_project_integration_custom_issue_tracker: Rename custom issue tracker integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_project_integration_jenkins: Rename jenkins integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_project_integration_harbor: Rename harbor integration resource to clarify that it's project-level. The old resource name is now deprecated. by @heidi.berry (merge request)
- resource/gitlab_group_service_account_access_token: Add support creating service account tokens with no expiry by @heidi.berry (merge request)
- resource/gitlab_project_job_token_scopes: The
enabledattribute will now attempt to check the instanceenforce_ci_inbound_job_token_scope_enabledprior to allowing a user to set the value tofalse, and will fail at plan time instead of apply time if theenabledsetting conflicts with instance settings. by @PatrickRice (merge request) - datasource/gitlab_user: Add experimental support for
email_exact_match, which will always return an exact match on the email. This will override the fuzzy matching of the GitLab search API when no users match the given email. by @ricardo.bartels (merge request) - multiple resources: Add missing examples to resources by @heidi.berry (merge request)
BUG FIXES (3 changes)
- resource/gitlab_branch: Add warning to use lifecycle ignore_changes for gitlab_branch.ref by @heidi.berry (merge request)
- resource/gitlab_project: If a project import fails, the specific import error will now be surfaces to the user by @heidi.berry (merge request)
- multiple label resources: Fixed an issue where using label color names would cause an error by @heidi.berry (merge request)
hashicorp/terraform-provider-google (google)
v6.49.2
BUG FIXES:
- container: fixed issue where a failed creation on
google_container_node_poolwould result in an unrecoverable tainted state (#10586)
v6.49.1
BUG FIXES:
- secretmanager: fixed issue where upgrading to 6.49.0 would cause all
google_secret_manager_secret_versionresources to be recreated unlesssecret_data_wo_versionwas set (#24061)
v6.49.0
DEPRECATIONS:
- beyondcorp:
google_beyondcorp_application_iam_binding,google_beyondcorp_application_iam_memberandgoogle_beyondcorp_application_iam_policyIAM resources, and thegoogle_beyondcorp_application_iam_policydatasource have been deprecated and will be removed in the upcoming major release (#23995) - tpu: deprecated
google_tpu_tensorflow_versionsdata source. Usegoogle_tpu_v2_runtime_versionsinstead. (#23958)
BREAKING CHANGES:
- vertexai: made the
metadatafield required ingoogle_vertex_ai_index(#23953)
FEATURES:
-
New Data Source:
google_artifact_registry_tag(#23994) -
New Data Source:
google_artifact_registry_tags(#23969) -
New Resource:
google_dialogflow_convesation_profile(#23996)
IMPROVEMENTS:
- apikeys: added
service_account_emailtogoogle_apikeys_key(#24001) - compute: added
advanced_options_configfield togoogle_compute_region_security_policyresource (#23914) - container: added
eviction_soft,eviction_soft_grace_period,eviction_minimum_reclaim,eviction_max_pod_grace_period_seconds,max_parallel_image_pulls,transparent_hugepage_enabled,transparent_hugepage_defragandmin_node_cpusfields tonode_configblock ofgoogle_container_node_poolandgoogle_container_clusterresources (#23973) - networkmanagement: added
subnetandnetworkfields to thegoogle_network_management_vpc_flow_logs_configresource (beta) (#23945) - networkmanagement: added output-only field
target_resource_stateto thegoogle_network_management_vpc_flow_logs_configresource (#23945) - resourcemanager: added
management_projectandconfigured_capabilitiesfields to thegoogle_folderresource. (#23983)
BUG FIXES:
- cloud_tasks: set
namefield set to required ingoogle_cloud_tasks_queueresource (#23997) - clouddeploy: allowed sending
weekly_windows.start_timeas an empty object in order to use default values in thegoogle_clouddeploy_deploy_policyresource (#23993) - kms:
skip_initial_version_creationfield is no longer immutable ingoogle_kms_crypto_key, but is still only settable at-creation (#23984) - netapp: fixed bug where
google_netapp_volume.large_capacitywas not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#24004) - networkconnectivity: added update support for
linked_vpc_networkingoogle_network_connectivity_spoke(#23949)
v6.48.0
FEATURES:
-
New Data Source:
google_artifact_registry_package(#23901) -
New Data Source:
google_artifact_registry_repositories(#23906) -
New Data Source:
google_artifact_registry_version(#23868) -
New Resource:
google_dialogflow_cx_playbook(initial basic support, full features to follow in a later release) (#23895) -
New Resource:
google_vertexai_rag_engine_config(#23889)
IMPROVEMENTS:
- backupdr: added
log_retention_daysfield togoogle_backup_dr_backup_planresource (#23846) - compute: added
advanced_options_configfield togoogle_compute_region_security_policyresource (#23914) - compute: added
ha_policyfield togoogle_compute_region_backend_serviceresource (#23905) - compute: added the ability to use global target forwarding rule for
target_servicefield ingoogle_compute_service_attachmentresource (#23892) - container: added
boot_disktonode_configingoogle_container_clusterandgoogle_container_node_poolresources (#23840) - container: added
node_config.kubelet_config.single_process_oom_killfield togoogle_container_node_poolandgoogle_container_clusterresources (#23844) - container: added in-place update support for
user_managed_keys_configfield ingoogle_container_clusterresource (#23883) - dataproc: added
cluster_config.cluster_tierfield togoogle_dataproc_clusterresource (#23830) - gkeonprem: added
enable_advanced_clusterfield togoogle_gkeonprem_vmware_admin_clusterresource (#23908) - memorystore: added
allow_fewer_zones_deploymentfield togoogle_memorystore_instanceresource (#23845) - sql: added field
psa_write_endpointflag togoogle_sql_database_instanceresource (#23867) - sql: added
network_attachment_urifield togoogle_sql_database_instanceresource (#23894) - sql: added
node_countfield tosql_database_instanceresource, and added new valueREAD_POOL_INSTANCEenum to theinstance_typefield ofsql_database_instanceresource (#23897) - storagetransfer: added
federated_identity_configfield togoogle_storage_transfer_jobresource (#23900) - storagetransfer: added
transfer_spec.aws_s3_data_source.cloudfront_domainfield togoogle_storage_transfer_jobresource (#23887)
BUG FIXES:
- accesscontextmanager: made
scopesfield as immutable foraccess_context_manager_access_policyresource. (#23886) - bigquery: fixed handling of non-legacy roles for access block inside
google_bigquery_dataset(#23898) - container: fixed an issue causing errors during updates to
node_configto be suppressed ingoogle_container_clusterandgoogle_container_node_pool(#23842)
v6.47.0
DEPRECATIONS:
- compute: deprecated
network_self_linkfield ingoogle_compute_subnetworksdata source. Usenetwork_nameinstead. (#23753) - resourcemanager: deprecated
projectfield ingoogle_service_account_keydata source. The field is non functional and can safely be removed from your configuration. (#23813)
FEATURES:
-
New Data Source:
google_artifact_registry_docker_images(#23751) -
New Resource:
google_apigee_security_action(#23721) -
New Resource:
google_developer_connect_insights_config(#23789) -
New Resource:
google_discovery_engine_cmek_config(#23745) -
New Resource:
google_iam_workforce_pool_iam_binding(#23784) -
New Resource:
google_iam_workforce_pool_iam_member(#23784) -
New Resource:
google_iam_workforce_pool_iam_policy(#23784)
IMPROVEMENTS:
- backupdr: added
backup_retention_inheritancefield togoogle_backup_dr_backup_vaultresource (#23817) - bigqueryanalyticshub: added
commercial_infoanddelete_commercialfields ingoogle_bigquery_analytics_hub_listingresource (#23731) - bigqueryanalyticshub: added
discovery_typefield togoogle_bigquery_analytics_hub_data_exchangeresource (#23801) - bigqueryanalyticshub: added
state,discovery_type, andallow_only_metadata_sharingfields togoogle_bigquery_analytics_hub_listingresource (#23801) - cloudfunction: added
automatic_update_policyandon_deploy_update_policytogoogle_cloudfunctions_functionresource (#23819) - cloudrunv2: added
gpu_zonal_redundancy_disabledfield togoogle_cloud_run_v2_jobresource. (#23811) - compute: added
labelsfield togoogle_compute_storage_poolresource (#23783) - compute: added
network_namefield togoogle_compute_subnetworksdata source (#23753) - container: added
ip_allocation_policy.additional_ip_ranges_configfield togoogle_container_clusterresource (#23828) - container: added
network_config.additional_node_network_configs.subnetworkfield togoogle_container_node_poolresource (#23828) - container: added
addons_config.lustre_csi_driver_configfield togoogle_container_clusterresource (#23729) - container: added support for
rbac_binding_configingoogle_container_cluster(#23812) - dataproc: added
cluster_config.cluster_tierfield togoogle_dataproc_clusterresource (#23830) - looker: added
LOOKER_CORE_TRIAL_STANDARD,LOOKER_CORE_TRIAL_ENTERPRISE, andLOOKER_CORE_TRIAL_EMBEDeditions togoogle_looker_instanceresource. (#23785) - managedkafka: added
tls_configfield togoogle_managed_kafka_clusterresource (#23749) - memorystore: added
allow_fewer_zones_deploymentfield togoogle_redis_clusterresource (#23800) - storage: added
deletion_policyfield togoogle_storage_bucket_objectresource (#23816) - vertexai: added
custom_deletefield togoogle_vertex_ai_endpoint_with_model_garden_deploymentresource (#23788)
BUG FIXES:
- bigquery: fixed a crash in
google_bigquery_tablewhen configured as an external table withparquet_options(#23808) - cloudrunv2: fixed an issue where
manual_instance_countwas unable to set to0ingoogle_cloud_run_v2_worker_pool. (#23798) - composer: fixed updates failing for
recovery_configwith explicitly disabled scheduled snapshots (#23715) - iap: fixed an issue where deleting
google_iap_settingswithout settingGOOGLE_PROJECTincorrectly failed (#23724) - storage: removed client-side GCS name validations for
google_storage_bucket(#23719)
v6.46.0
FEATURES:
-
New Data Source:
google_storage_insights_dataset_config(#23709) -
New Resource:
google_apigee_api_product(#23648) -
New Resource:
google_discovery_engine_recommendation_engine(#23692) -
New Resource:
google_oracle_database_odb_network(#23675) -
New Resource:
google_oracle_database_odb_subnet(#23694) -
New Resource:
google_storage_insights_dataset_config(#23707)
IMPROVEMENTS:
- compute: added
params.resourceManagerTagsfield to thegoogle_compute_router(#23690) - compute: added in-place update support for
provisioned_iops,provisioned_throughput, andaccess_modefields ingoogle_compute_region_diskresource (#23697) - dataproc: added
authentication_configfield togoogle_dataproc_batchandgoogle_dataproc_session_templateresource (#23644) - dataproc: added
idle_ttlfield togoogle_dataproc_session_templateresource (#23680) - networkconnectivity: added field
allocation_optionsto resourcegoogle_network_connectivity_internal_range(#23687) - oracledatabase: added
odb_networkandodb_subnetfields, and madenetworkandcidrfields optional ingoogle_oracle_database_autonomous_databaseresource (#23686) - oracledatabase: added
odb_network,odb_subnetandbackup_odb_subnetfields, and madenetwork,cidrandbackup_subnet_cidrfields optional ingoogle_oracle_database_cloud_vm_clusterresource (#23688) - secretmanager: added
tagsfield togoogle_secret_manager_regional_secretto allow setting tags for regional_secrets at creation time (#23706) - securesourcemanager: added
deletion_policyfield togoogle_secure_source_manager_repositoryresource (#23693) - workbench: added
enable_managed_eucfield togoogle_workbench_instanceresource. (#23682) - workbench: added
reservation_affinityfield togoogle_workbench_instanceresource. (#23676)
BUG FIXES:
- composer: fixed updates failing for
google_composer_environmentrecovery_configwith explicitly disabled scheduled snapshots (#23715) - datastore: fixed a permadiff with
google_datastream_connection_profile'screate_without_validationfield (#23711) - memorystore: fixed bug to allow
google_memorystore_instanceto be used with no provider default region or with alocationthat doesn't match the provider default region. (#23666) - networkconnectivity: fixed
instances[].ip_address&instances[].virtual_machinefields inlinked_router_appliance_instancesblock being incorrectly treated as immutable forgoogle_network_connectivity_spokeresource (#23705) - resourcemanager: updated service account creation to prevent failures due to eventual consistency in
google_service_accountresource (#23639) - sql: fixed a provider crash when importing
google_sql_databaseresource (#23643)
v6.45.0
DEPRECATIONS:
- gemini: deprecated the
disable_web_groundingfield in thegoogle_gemini_gemini_gcp_enablement_settingresource (#23581)
FEATURES:
-
New Resource:
google_bigtable_schema_bundle(#23585) -
New Resource:
google_compute_preview_feature(#23631) -
New Resource:
google_dialogflow_cx_generator(#23605) -
New Resource:
google_model_armor_floorsetting(#23621) -
New Resource:
google_vertex_ai_endpoint_with_model_garden_deployment(#23632)
IMPROVEMENTS:
- accesscontextmanager: added
nametogoogle_access_context_manager_gcp_user_access_bindingresource (#23638) - apigee: marked the field
access_logging_configimmutable ingoogle_apigee_instanceresource (#23571) - bigquery: added
ignore_auto_generated_schemavirtual field togoogle_bigquery_tableresource to ignore server-added columns in theschemafield (#23633) - cloudrunv2: added field
node_selectoringoogle_cloud_run_v2_job(#23586) - compute: added
params.resourceManagerTagsfield to thegoogle_compute_subnetwork(#23618) - compute: added
rule.match.src_secure_tags,rule.target_secure_tags,predefined_rules.match.src_secure_tagsandpredefined_rules.target_secure_tagsfields togoogle_compute_firewall_policy_with_rulesresource (#23635) - dataproc: added
cluster_config.security_config.identity_configfield togoogle_dataproc_clusterresource (#23613) - dataproc: updated
cluster_config.gce_cluster_config.metadatafield to be computed ingoogle_dataproc_clusterresource (#23613) - dialogflowcx: added
flexiblesupport togoogle_dialogflow_cx_webhookresource. (#23582) - gemini: added
web_grounding_typefield togoogle_gemini_gemini_gcp_enablement_settingresource (#23581) - netapp: added in-place update support for
allow_auto_tieringfield ingoogle_netapp_storage_poolresource (#23614) - secretmanager: added
tagsfield togoogle_secret_manager_secretto allow setting tags for secrets at creation time (#23625) - securesourcemanager: added
deletion_policyfield togoogle_secure_source_manager_instanceresource (#23606) - sql: added
network_attachment_urifield togoogle_sql_database_instance(#23615) - vmwareengine: added
GOOGLE_CLOUD_NETAPP_VOLUMESpeering type to resourcegoogle_vmwareengine_network_peering(#23628)
BUG FIXES:
- modelarmor: fixed conflicting field validation for
filter_config.sdp_settingsongoogle_model_armor_template(#23626) - resourcemanager: updated service account creation to prevent failures due to eventual consistency in
google_service_accountresource (#23639)
v6.44.0
FEATURES:
-
New Data Source:
google_compute_network_attachment(#23570) -
New Data Source:
google_firestore_document(#23553) -
New Resource:
google_backup_dr_service_config(#23552) -
New Resource:
google_bigquery_analytics_hub_data_exchange_subscription(#23560) -
New Resource:
google_gkeonprem_vmware_admin_cluster(#23554) -
New Resource:
google_network_security_backend_authentication_config(#23555)
IMPROVEMENTS:
- alloydb: added
machine_config.machine_typefield togoogle_alloydb_instanceresource (#23562) - apigee: added
access_logging_configfield togoogle_apigee_instanceresource (#23522) - apigee: marked
access_logging_configfield immutable ingoogle_apigee_instanceresource (#23571) - backupdr: added in-place update support for
google_backup_dr_backup_planresource (#23537) - compute: added
params.resource_manager_tagsfield togoogle_compute_firewallresource (#23524) - compute: added
application_aware_interconnectandaai_enabledfields togoogle_compute_interconnectresource (#23567) - compute: added
load_balancing_schemefield togoogle_compute_backend_bucketresource (#23499) - compute: added
provisioned_iopsandprovisioned_throughputfields togoogle_compute_region_diskresource (#23551) - compute: added
specific_reservation.source_instance_template,delete_at_time,delete_after_duration.seconds,delete_after_duration.nanosandreservation_sharing_policy.service_share_typefields togoogle_compute_reservationresource (#23561) - firestore: added
tagsfield togoogle_firestore_databaseresource (#23569) - securesourcemanager: added in-place update support for
descriptionfield ingoogle_secure_source_manager_repositoryresource (#23557) - storage: added
force_empty_content_typefield togoogle_storage_bucket_objectresource (#23568)
BUG FIXES:
- artifactregistry: fixed an issue where changes to
cleanup_policieswere not being applied correctly ingoogle_artifact_registry_repositoryresource (#23556) - iambeta: fixed perma-diff for
jwks_jsonfield when GCP normalizes JSON formatting ingoogle_iam_workload_identity_pool_providerresource (#23526)
v6.43.0
DEPRECATIONS:
- iap: deprecated
google_iap_clientandgoogle_iap_brand(#23431)
FEATURES:
-
New Data Source:
google_kms_autokey_config(#23490) -
New Data Source:
google_kms_key_handle(#23490) -
New Data Source:
google_kms_key_handles(#23490) -
New Data Source:
google_network_management_connectivity_test_run(#23497) -
New Data Source:
google_redis_cluster(#23436) -
New Resource:
google_contact_center_insights_analysis_rule(#23435) -
New Resource:
google_kms_autokey_config(#23490) -
New Resource:
google_kms_key_handle(#23490) -
New Resource:
google_model_armor_template(#23432)
IMPROVEMENTS:
- bigquery: added
ignore_schema_changesvirtual field togoogle_bigquery_tableresource. OnlydataPoliciesfield is supported inignore_schema_changesfor now. (#23495) - billing: added
currency_codetogoogle_billing_accountdata source (#23474) - compute: added
params.resource_manager_tagsfield togoogle_compute_networkresource (#23421) - compute: added
load_balancing_schemefield togoogle_compute_backend_bucketresource (#23499) - compute: added
params.resource_manager_tagsfield togoogle_compute_routeresource (#23489) - container: added
anonymous_authentication_configfield togoogle_container_clusterresource (#23491) - dataplex: added
suspendedfield togoogle_dataplex_datascanresource (#23456) - discoveryengine: added
enable_table_annotation,enable_image_annotation,structured_content_types,exclude_html_elements,exclude_html_classesandexclude_html_idsfields tolayout_parsing_configofgoogle_discovery_engine_data_storeresource (#23478) - discoveryengine: added
kms_key_namefield togoogle_discovery_engine_data_storeresource (#23469) - memorystore: added
managed_server_cafield togoogle_memorystore_instanceresource (#23430) - secretmanager: added
deletion_protectionfield togoogle_secret_manager_secretresource to optionally make deleting them require an explicit intent (#23480) - secretmanager: added
fetch_secret_datafield togoogle_secret_manager_secret_versionto optionally skip fetching the secret data (#23471)
BUG FIXES:
- compute: fixed
matchfield ingoogle_compute_router_route_policyresource to be marked as required (#23494) - compute: fixed an issue with
bgp_always_compare_medingoogle_compute_networkwhere it was unable to be set fromtruetofalse(#23477) - compute: made no replication status in
google_compute_disk_async_replicationa retryable error (#23492) - gkeonprem: fixed type of
load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assigningoogle_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#23472) - integrationconnectors: removed validation from auth configs in
google_integration_connectors_connectionresource (#23429)
v6.42.0
FEATURES:
-
New Resource:
google_apihub_plugin_instance(#23346) -
New Resource:
google_apihub_plugin(#23407) -
New Resource:
google_dialogflow_cx_generative_settings(#23394)
IMPROVEMENTS:
- cloudidentity: added
create_ignore_already_existsfield togoogle_cloud_identity_group_membershipresource (#23376) - compute: added
access_modefield togoogle_compute_region_diskresource (#23409) - compute: added
match.src_secure_tagsandtarget_secure_tagsfields togoogle_compute_firewall_policy_ruleresource (#23414) - compute: added
params.resource_manager_tagsfield togoogle_compute_networkresource (#23421) - compute: added
resource_policies.workload_policyfield togoogle_compute_instance_group_managerresource (#23420) - container: added
confidential_nodes.confidential_instance_typefield togoogle_container_clusterresource (#23410) - container: added
gke_auto_upgrade_configfield togoogle_container_clusterresource (#23411) - container: added
node_config.confidential_nodes.confidential_instance_typefield togoogle_container_node_poolresource (#23410) - firestore: revoked deprecation of
deletion_policyfield ingoogle_firestore_databaseresource (#23403) - memorystore: added
kms_keyfield togoogle_memorystore_instanceresource (#23396) - redis: added
effective_reserved_ip_rangefield togoogle_redis_instanceresource (#23384) - secretmanager: added
deletion_protectionfield togoogle_secret_manager_regional_secretresource (#23398) - spanner: added
encryption_config.kms_key_namefield togoogle_spanner_backup_scheduleresource (#23378) - storage: added
allow_cross_org_vpcsandallow_all_service_agent_accessfields togoogle_storage_bucketresource (#23405)
BUG FIXES:
- alloydb: removed
machine_config.machine_typefield fromgoogle_alloydb_instanceresource because it is not yet supported in GA (#23415) - bigqueryanalyticshub: supported in-place update for
log_linked_dataset_query_user_emailingoogle_bigquery_analytics_hub_listingandgoogle_bigquery_analytics_hub_data_exchangeresources. Once enabled, this feature cannot be disabled. (#23391) - bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using
secret_access_keyongoogle_bigquery_data_transfer_config(#23417) - memorystore: added the ability to set the
replica_countfield ingoogle_memorystore_instanceresource to 0 (#23412) - monitoring: made
descriptionanddisplayNameoptional and mutable ingoogle_monitoring_metric_descriptorresource (#23381) - redis: fixed
reserved_ip_rangefield not being populated forgoogle_redis_instancedata source (#23384) - secretmanager: stopped surfacing persistent warnings recommending write-only field when using
secret_dataongoogle_secret_manager_secret_version(#23417) - sql: stopped surfacing persistent warnings recommending write-only field when using
passwordongoogle_sql_user(#23417) - workbench: added support for setting
serial-port-logging-enablekey inmetadatafield ingoogle_workbench_instanceresource (#23406)
v6.41.0
BREAKING CHANGES:
- lustre: added
per_unit_storage_throughputas a required field togoogle_lustre_instanceresource in response to a change in the API surface (#23319)
FEATURES:
-
New Data Source:
google_dataplex_data_quality_rules(#23255) -
New Resource:
google_apihub_plugin_instance(#23346) -
New Resource:
google_contact_center_insights_view(#23263) -
New Resource:
google_dataproc_session_template(#23288) -
New Resource:
google_dialogflow_encryption_spec(#23335)
IMPROVEMENTS:
- alloydb: added
network_config.allocated_ip_range_overridefield togoogle_alloydb_instanceresource (#23330) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_data_exchangeresource (#23271) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_listing_subscriptionresource (#23286) - bigqueryanalyticshub: added
pubsub_topicfield togoogle_bigquery_analytics_hub_listingresource (#23334) - bigtable: added
row_key_schematogoogle_bigtable_tableresource (#23337) - cloudasset: added support for universe domain handling for
google_cloud_asset_resources_search_alldatasource (#23318) - cloudquotas: added
inheritedandinherited_fromfields togoogle_cloud_quotas_quota_adjuster_settingsresource (#23339) - compute: added
CROSS_SITE_NETWORKenum option torequested_featuresfield ingoogle_compute_interconnectresource (#23316) - compute: added
TLS_JA4_FINGERPRINToption toenforce_on_keyfield ingoogle_compute_region_security_policy,google_compute_security_policy, andgoogle_compute_security_policy_ruleresources (#23270) - compute: added
send_propagated_connection_limit_if_zerotogoogle_compute_service_attachmentto resolve an issue wherepropagated_connection_limitwere not working for 0 value previously. Now settingsend_propagated_connection_limit_if_zero = truewill sendpropagated_connection_limit = 0when it's unset or set to0. (#23325) - compute: promoted
default_custom_error_response_policyto GA ingoogle_compute_url_map(#23268) - container: added
performance_monitoring_unitin node_config/advanced_machine_features to 'google_container_cluster' resource (#23260) - container: added
release_channel_upgrade_target_versiontogoogle_container_engine_versionsdata source (#23336) - dataplex: added support for discovery scan in
google_dataplex_datascanresource (#23291) - dns: added
target_name_servers.domain_namefield togoogle_dns_managed_zoneresource (#23265) - provider: added support for adc impersonation in different universes (#23320)
- storage: added
source_md5hashfield ingoogle_storage_bucket_object(#23267)
BUG FIXES:
- compute: fixed
google_compute_firewall_policy_rulestaying disabled after apply withdisabled = false(#23329) - compute: marked
nameingoogle_compute_node_group,google_compute_node_templateas required as it was impossible to create successfully without a value (#23345) - sql: fixed an error in updating
connection_pool_configingoogle_sql_database_instance(#23332) - tags: fixed perma-diff for
parentfield ingoogle_tags_location_tag_bindingresource (#23331)
v6.40.0
DEPRECATIONS:
- notebook:
google_notebook_runtimeis deprecated and will be removed in a future major release. Usegoogle_workbench_instanceinstead. (#23251)
FEATURES:
-
New Data Source:
google_dataplex_data_quality_rules(#23255) -
New Resource:
google_dialogflow_cx_tool(#23192)
IMPROVEMENTS:
- backupdr: added support for updating in-place to the
google_backup_dr_backup_plan_associationresource (#23237) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_listingresource (#23238) - compute: added
cipher_suiteblock with phase1 and phase2 encryption configurations togoogle_compute_vpn_tunnelresource. (#23253) - compute: added
fingerprintfield ingoogle_compute_target_http_proxyandgoogle_compute_target_https_proxyresources. (#23231) - compute: added
headers,expected_output_url, andexpected_redirect_response_codefields totestingoogle_compute_url_mapresource and madeservicefield optional (#23199) - compute: added
path_matcher.default_route_actionfields togoogle_compute_region_url_mapresource (#23226) - compute: added
workload_policyandgroup_placement_policy.gpu_topologyfields togoogle_compute_resource_policyresource (ga) (#23229) - gkehub: added
custom_rolefield togoogle_gke_hub_scope_rbac_role_bindingresource (#23183) - integrationconnectors: added support for
log_config.levelforgoogle_integration_connectors_connection(#23224) - networkconnectivity: added
psc_config.producer_instance_locationandpsc_config.allowed_google_producers_resource_hierarchy_levelfields togoogle_network_connectivity_service_connection_policy(#23240) - redis: added
managed_server_catogoogle_redis_clusterresource (#23223) - resourcemanager: allowed
dataproc-control.googleapis.comandstackdriverprovisioning.googleapis.comservices ingoogle_project_serviceresource (#23230) - storage: removed the hardcoded 80m timeout used during
google_storage_bucketdeletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#23198) - vertexai: added
regioningoogle_vertex_ai_index_endpoint_deployed_index(#23247)
BUG FIXES:
- beyondcorp: fixed the issue where
hubs.internet_gateway.assigned_ipswas not populated correctly in thegoogle_beyondcorp_security_gatewayresource (#23244) - compute: fixed
google_compute_router_natwhere changes toauto_network_tierare always shown after initial apply (#23190) - compute: fixed validation for
target_servicefield ingoogle_compute_service_attachmentresource causing issues when targeting agoogle_network_services_gatewayresource (#23239) - dataflow: fields
network,subnetwork,num_workers,max_num_workersandmachine_typewill no longer cause permadiff ondataflow_flex_template_job(#23222) - dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for
google_dataproc_cluster(#23207) - networksecurity: marked
google_network_security_address_groupcapacityas immutable because it can't be updated in place. (#23209)
v6.39.0
FEATURES:
-
New Resource:
google_apihub_curation(#23144) -
New Resource:
google_compute_interconnect_attachment_group(#23159) -
New Resource:
google_compute_interconnect_group(#23159) -
New Resource:
google_compute_snapshot_settings(#23151)
IMPROVEMENTS:
- apigee: added
client_ip_resolution_configfield togoogle_apigee_environmentresource (#23172) - beyondcorp: added
delegating_service_accountfield togoogle_beyondcorp_security_gatewayresource (#23094) - bigquery: added
data_source_idto update requests throughgoogle_bigquery_data_transfer_config(#23134) - cloudrunv2: added
google_cloud_run_v2_jobsupport fordepends_onandstartup_probeproperties (#23179) - container: added
network_performance_configfield togoogle_container_clusterresource (#23098) - container: promoted
flex_startingoogle_container_clusterto GA (#23093) - dataplex: added
catalog_publishing_enabledfield togoogle_dataplex_datascanresource (#23165) - datastream: added
network_attachmentsupport viapsc_interface_configattribute ingoogle_datastream_private_connection(#23091) - eventarc: made
network_attachmentfield optional ingoogle_eventarc_pipeline(#23133) - gemini: added
disable_web_groundingfield togoogle_gemini_gemini_gcp_enablement_settingresource (#23096) - gemini: added
enable_data_sharingfield togoogle_gemini_data_sharing_with_google_settingresource (#23173) - gkehub2: added
spec.rbacrolebindingactuationfield to resourcegoogle_gke_hub_feature(#23102) - gkehub: added
custom_rolefield togoogle_gke_hub_scope_rbac_role_bindingresource (#23183) - iambeta: enforced
workload_identity_pool_managed_identity_idfield validation per the documented specifications (#23149) - pubsub: added
message_transformfield togoogle_pubsub_topicresource (#23161) - pubsub: added
message_transformsfield togoogle_pubsub_subscriptionresource (#23162)
BUG FIXES:
- bigquery: modified
google_bigquery_dataset_iam_memberto no longer remove authorized views and routines (#23177) - colab: fixed perma-diff in
google_colab_runtime_templatecaused by the API returning a non-null default value. (#23137) - colab: fixed perma-diff in
google_colab_runtime_templatecaused by empty blocks. (#23163) - compute: fixed a permadiff in
network_profilefield ofgoogle_compute_networkrelated to specifying partial self-links (#23164) - compute: fixed an issue where
google_compute_firewall_policy_with_rules.target_resourcescould see a diff between the beta and v1 API in the resource's self-link (#23170) - container: fixed nodepool secondary range validation to allow the use of netmasks. (#23142)
- gemini: removed overly restrictive
productvalidation ongoogle_gemini_gemini_gcp_enablement_setting_binding,google_gemini_data_sharing_with_google_setting_binding. New values likeGOOGLE_CLOUD_ASSISTwill now be accepted. (#23178)
v6.38.0
DEPRECATIONS:
- colab: deprecated
post_startup_script_configfield ingoogle_colab_runtime_templateresource (#23075)
FEATURES:
IMPROVEMENTS:
- compute: added
numeric_idfield togoogle_compute_region_instance_templateresource (#23065) - compute: added
source_subnetwork_ip_ranges_to_nat64andnat64_subnetworkfields togoogle_compute_router_natresource (#23078) - container: promoted
pod_autoscalingfield ingoogle_container_clusterresource to GA (#23002) - datastream: added
psc_interface_configfield ingoogle_datastream_private_connectionresource (#23091) - dns: added
dns64_configfield togoogle_dns_policyresource (#23078) - filestore: added
effective_replication.roleandeffective_replication.replicas.peer_instancefields togoogle_filestore_instanceresource (#23001) - netapp: added
backup_retention_policy.backup_minimum_enforced_retention_days,backup_retention_policy.daily_backup_immutable,backup_retention_policy.weekly_backup_immutable,backup_retention_policy.monthly_backup_immutable, andbackup_retention_policy.manual_backup_immutablefields togoogle_netapp_backup_vault(#23087) - networkconnectivity: added
IPV6enum toprotocol_versionfield ingoogle_network_connectivity_policy_based_routeresource (#23069) - privateca: added support for setting default values for basic constraints for
google_privateca_certificate_templatevia thenull_caandzero_max_issuer_path_lengthfields (#22981) - privateca: added
name_constraintsfield forgoogle_privateca_certificate_templateresource (#22981) - provider: supported service account impersonation in different universes through credential file (#23063)
BUG FIXES:
- colab: fixed perma-diff in
google_colab_runtime_templatecaused by the API returning a non-null default value (#23137) - compute: fixed an issue where rules ordering in
google_compute_region_security_policycaused a diff after apply (#23076) - filestore: fixed bug where
google_filestore_instance.initial_replicationfield could not be set (#23001)
hashicorp/terraform-provider-google-beta (google-beta)
v6.49.2
BUG FIXES:
- container: fixed issue where a failed creation on
google_container_node_poolwould result in an unrecoverable tainted state (#24077)
v6.49.1
BUG FIXES:
- secretmanager: fixed issue where upgrading to 6.49.0 would cause all
google_secret_manager_secret_versionresources to be recreated unlesssecret_data_wo_versionwas set (#10574)
v6.49.0
DEPRECATIONS:
- beyondcorp:
google_beyondcorp_application_iam_binding,google_beyondcorp_application_iam_memberandgoogle_beyondcorp_application_iam_policyIAM resources, and thegoogle_beyondcorp_application_iam_policydatasource have been deprecated and will be removed in the upcoming major release (#10532) - tpu: deprecated
google_tpu_tensorflow_versionsdata source. Usegoogle_tpu_v2_runtime_versionsinstead. (#10514)
FEATURES:
-
New Data Source:
google_artifact_registry_tag(#10531) -
New Data Source:
google_artifact_registry_tags(#10518) -
New Resource:
google_dialogflow_convesation_profile(#10533)
IMPROVEMENTS:
- apikeys: added
service_account_emailtogoogle_apikeys_key(#10538) - bigqueryreservation: added support for
scaling_modeandmax_slotsproperties ongoogle_bigquery_reservation(beta) (#10509) - compute: added
advanced_options_configfield togoogle_compute_region_security_policyresource (#10498) - container: added
eviction_soft,eviction_soft_grace_period,eviction_minimum_reclaim,eviction_max_pod_grace_period_seconds,max_parallel_image_pulls,transparent_hugepage_enabled,transparent_hugepage_defragandmin_node_cpusfields tonode_configblock ofgoogle_container_node_poolandgoogle_container_clusterresources (#10522) - networkmanagement: added
subnetandnetworkfields to thegoogle_network_management_vpc_flow_logs_configresource (beta) (#10506) - networkmanagement: added output-only field
target_resource_stateto thegoogle_network_management_vpc_flow_logs_configresource (#10506) - resourcemanager: Added
management_projectandconfigured_capabilitiesfields to thegoogle_folderresource. (#10525)
BUG FIXES:
- cloud_tasks: correctly set
namefield to be required ingoogle_cloud_tasks_queueresource (#10534) - clouddeploy: allowed sending
start_timewith default values inweekly_windowsingoogle_clouddeploy_deploy_policyresource.start_time 00:00means the policy will start at midnight. (#10530) - kms:
skip_initial_version_creationfield is no longer immutable ingoogle_kms_crypto_key, but is still only settable at-creation (#10526) - netapp: fixed bug where
google_netapp_volume.large_capacitywas not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#10541) - networkconnectivity: added update support for
linked_vpc_networkingoogle_network_connectivity_spoke(#10507)
v6.48.0
FEATURES:
-
New Data Source:
google_artifact_registry_package(#10490) -
New Data Source:
google_artifact_registry_repositories(#10494) -
New Data Source:
google_artifact_registry_version(#10468) -
New Resource:
google_dialogflow_cx_playbook(initial basic support, full features to follow in a later release) (#10485) -
New Resource:
google_vertexai_rag_engine_config(#10481)
IMPROVEMENTS:
- backupdr: added
log_retention_daysfield togoogle_backup_dr_backup_planresource (#10463) - compute: added
advanced_options_configfield togoogle_compute_region_security_policyresource (#10498) - compute: added
ha_policyfield togoogle_compute_region_backend_serviceresource (#10493) - compute: added the ability to use global target forwarding rule for
target_servicefield ingoogle_compute_service_attachmentresource (#10483) - container: added
boot_disktonode_configingoogle_container_clusterandgoogle_container_node_poolresources (#10457) - container: added
node_config.kubelet_config.single_process_oom_killfield togoogle_container_node_poolandgoogle_container_clusterresources (#10461) - container: added in-place update support for
user_managed_keys_configfield ingoogle_container_clusterresource (#10475) - dataproc: added
cluster_config.cluster_tierfield togoogle_dataproc_clusterresource (#10453) - gkeonprem: added
enable_advanced_clusterfield togoogle_gkeonprem_vmware_admin_clusterresource (#10496) - memorystore: added
allow_fewer_zones_deploymentfield togoogle_memorystore_instanceresource (#10462) - sql: added field
psa_write_endpointflag togoogle_sql_database_instanceresource (#10467) - sql: added
network_attachment_urifield togoogle_sql_database_instanceresource (#10484) - sql: added
node_countfield tosql_database_instanceresource, and added new valueREAD_POOL_INSTANCEenum toinstance_typefield ofsql_database_instanceresource (#10487) - storagetransfer: added
federated_identity_configtogoogle_storage_transfer_jobresource (#10489) - storagetransfer: added
transfer_spec.aws_s3_data_source.cloudfront_domainfield togoogle_storage_transfer_jobresource (#10479)
BUG FIXES:
- accesscontextmanager: made
scopesfield as immutable foraccess_context_manager_access_policyresource (#10478) - bigquery: fixed handling of non-legacy roles for access block inside
google_bigquery_datasetresource (#10488) - container: fixed an issue causing errors during updates to
node_configto be suppressed ingoogle_container_clusterandgoogle_container_node_poolresources (#10459)
v6.47.0
DEPRECATIONS:
- compute: deprecated
network_self_linkfield ingoogle_compute_subnetworksdata source. Usenetwork_nameinstead. (#10423) - resourcemanager: deprecated
projectfield ingoogle_service_account_keydata source. The field is non functional and can safely be removed from your configuration. (#10442)
FEATURES:
-
New Data Source:
google_artifact_registry_docker_images(#10422) -
New Resource:
google_apigee_security_action(#10407) -
New Resource:
google_developer_connect_insights_config(#10431) -
New Resource:
google_discovery_engine_cmek_config(#10416) -
New Resource:
google_iam_workforce_pool_iam_binding(#10426) -
New Resource:
google_iam_workforce_pool_iam_member(#10426) -
New Resource:
google_iam_workforce_pool_iam_policy(#10426)
IMPROVEMENTS:
- backupdr: added
backup_retention_inheritancefield togoogle_backup_dr_backup_vaultresource (#10446) - bigqueryanalyticshub: added
commercial_infoanddelete_commercialfields ingoogle_bigquery_analytics_hub_listingresource (#10415) - bigqueryanalyticshub: added
discovery_typefield togoogle_bigquery_analytics_hub_data_exchangeresource (#10435) - bigqueryanalyticshub: added
state,discovery_type, andallow_only_metadata_sharingfields togoogle_bigquery_analytics_hub_listingresource (#10435) - cloudfunction: added
automatic_update_policyandon_deploy_update_policytogoogle_cloudfunctions_functionresource (#10448) - cloudrunv2: added
gpu_zonal_redundancy_disabledfield togoogle_cloud_run_v2_jobresource. (#10440) - compute: added
labelsfield togoogle_compute_storage_poolresource (#10425) - compute: added
network_namefield togoogle_compute_subnetworksdata source (#10423) - container: added
ip_allocation_policy.additional_ip_ranges_configfield togoogle_container_clusterresource (#10451) - container: added
network_config.additional_node_network_configs.subnetworkfield togoogle_container_node_poolresource (#10451) - container: added
addons_config.lustre_csi_driver_configfield togoogle_container_clusterresource (#10413) - container: added support for
rbac_binding_configingoogle_container_cluster(#10441) - dataproc: added
cluster_config.cluster_tierfield togoogle_dataproc_clusterresource (#10453) - looker: added
LOOKER_CORE_TRIAL_STANDARD,LOOKER_CORE_TRIAL_ENTERPRISE, andLOOKER_CORE_TRIAL_EMBEDeditions togoogle_looker_instanceresource. (#10427) - managedkafka: added
tls_configfield togoogle_managed_kafka_clusterresource (#10420) - memorystore: added
allow_fewer_zones_deploymentfield togoogle_redis_clusterresource (#10434) - storage: added
deletion_policyfield togoogle_storage_bucket_objectresource (#10445) - vertexai: added
custom_deletefield togoogle_vertex_ai_endpoint_with_model_garden_deploymentresource (#10430)
BUG FIXES:
- bigquery: fixed a crash in
google_bigquery_tablewhen configured as an external table withparquet_options(#10438) - cloudrunv2: fixed an issue where
manual_instance_countwas unable to set to0ingoogle_cloud_run_v2_worker_pool. (#10433) - composer: fixed updates failing for
recovery_configwith explicitly disabled scheduled snapshots (#10405) - iap: fixed an issue where deleting
google_iap_settingswithout settingGOOGLE_PROJECTincorrectly failed (#10410) - storage: removed client-side GCS name validations for
google_storage_bucket(#10406)
v6.46.0
FEATURES:
-
New Data Source:
google_storage_insights_dataset_config(#10402) -
New Resource:
google_apigee_api_product(#10378) -
New Resource:
google_discovery_engine_recommendation_engine(#10394) -
New Resource:
google_oracle_database_odb_network(#10383) -
New Resource:
google_oracle_database_odb_subnet(#10396) -
New Resource:
google_storage_insights_dataset_config(#10401)
IMPROVEMENTS:
- compute: added
params.resourceManagerTagsfield to thegoogle_compute_router(#10392) - compute: added in-place update support for
provisioned_iops,provisioned_throughput, andaccess_modefields ingoogle_compute_region_diskresource (#10397) - dataproc: added
authentication_configfield togoogle_dataproc_batchandgoogle_dataproc_session_templateresource (#10375) - dataproc: added
idle_ttlfield togoogle_dataproc_session_templateresource (#10386) - networkconnectivity: added field
allocation_optionsto resourcegoogle_network_connectivity_internal_range(#10390) - oracledatabase: added
odb_networkandodb_subnetfields, and madenetworkandcidrfields optional ingoogle_oracle_database_autonomous_databaseresource (#10389) - oracledatabase: added
odb_network,odb_subnetandbackup_odb_subnetfields, and madenetwork,cidrandbackup_subnet_cidrfields optional ingoogle_oracle_database_cloud_vm_clusterresource (#10391) - secretmanager: added
tagsfield togoogle_secret_manager_regional_secretto allow setting tags for regional_secrets at creation time (#10400) - securesourcemanager: added
deletion_policyfield togoogle_secure_source_manager_repositoryresource (#10395) - workbench: added
enable_managed_eucfield togoogle_workbench_instanceresource. (#10388) - workbench: added
reservation_affinityfield togoogle_workbench_instanceresource. (#10384)
BUG FIXES:
- composer: fixed updates failing for
google_composer_environmentrecovery_configwith explicitly disabled scheduled snapshots (#10405) - datastore: fixed a permadiff with
google_datastream_connection_profile'screate_without_validationfield (#10403) - memorystore: fixed bug to allow
google_memorystore_instanceto be used with no provider default region or with alocationthat doesn't match the provider default region. (#10380) - networkconnectivity: fixed
instances[].ip_address&instances[].virtual_machinefields inlinked_router_appliance_instancesblock being incorrectly treated as immutable forgoogle_network_connectivity_spokeresource (#10399) - resourcemanager: updated service account creation to prevent failures due to eventual consistency in
google_service_accountresource (#10371) - sql: fixed a provider crash when importing
google_sql_databaseresource (#10374)
v6.45.0
DEPRECATIONS:
- gemini: deprecated the
disable_web_groundingfield in thegoogle_gemini_gemini_gcp_enablement_settingresource (#10338)
FEATURES:
-
New Resource:
google_bigtable_schema_bundle(#10342) -
New Resource:
google_compute_preview_feature(#10364) -
New Resource:
google_dialogflow_cx_generator(#10348) -
New Resource:
google_model_armor_floorsetting(#10359) -
New Resource:
google_vertex_ai_endpoint_with_model_garden_deployment(#10365)
IMPROVEMENTS:
- accesscontextmanager: added
nametogoogle_access_context_manager_gcp_user_access_bindingresource (#10370) - bigquery: added
ignore_auto_generated_schemavirtual field togoogle_bigquery_tableresource to ignore server-added columns in theschemafield (#10366) - compute: added
params.resourceManagerTagsfield to thegoogle_compute_subnetwork(#10357) - compute: added
mirrorPercentfield torequestMirrorPolicyindefaultRouteAction,pathMatchers[].defaultRouteAction,pathMatchers[].pathRules[].routeAction, andpathMatchers[].routeRules[].routeActiontogoogle_compute_region_url_mapresource (#10351) - compute: added
rule.match.src_secure_tags,rule.target_secure_tags,predefined_rules.match.src_secure_tagsandpredefined_rules.target_secure_tagsfields togoogle_compute_firewall_policy_with_rulesresource (#10367) - dataproc: added
cluster_config.security_config.identity_configfield togoogle_dataproc_clusterresource (#10352) - dataproc: updated
cluster_config.gce_cluster_config.metadatafield to be computed ingoogle_dataproc_clusterresource (#10352) - dialogflowcx: added
flexiblesupport togoogle_dialogflow_cx_webhookresource. (#10339) - gemini: added
web_grounding_typefield togoogle_gemini_gemini_gcp_enablement_settingresource (#10338) - netapp: added in-place update support for
allow_auto_tieringfield ingoogle_netapp_storage_poolresource (#10353) - secretmanager: added
tagsfield togoogle_secret_manager_secretto allow setting tags for secrets at creation time (#10360) - securesourcemanager: added
deletion_policyfield togoogle_secure_source_manager_instanceresource (#10349) - sql: added
network_attachment_urifield togoogle_sql_database_instance(#10354) - vmwareengine: added
GOOGLE_CLOUD_NETAPP_VOLUMESpeering type to resourcegoogle_vmwareengine_network_peering(#10363)
BUG FIXES:
- modelarmor: fixed conflicting field validation for
filter_config.sdp_settingsongoogle_model_armor_template(#10361) - resourcemanager: updated service account creation to prevent failures due to eventual consistency in
google_service_accountresource (#10371)
v6.44.0
FEATURES:
-
New Data Source:
google_compute_network_attachment(#10336) -
New Data Source:
google_firestore_document(#10321) -
New Resource:
google_backup_dr_service_config(#10320) -
New Resource:
google_bigquery_analytics_hub_data_exchange_subscription(#10328)
IMPROVEMENTS:
- apigee: added
access_logging_configfield togoogle_apigee_instanceresource (#10303) - apigee: marked
access_logging_configfield immutable ingoogle_apigee_instanceresource (#10337) - backupdr: added in-place update support for
google_backup_dr_backup_planresource (#10312) - bigqueryanalyticshub: added
routinefield togoogle_bigquery_analytics_hub_listingresource (#10327) - compute: added
params.resource_manager_tagsfield togoogle_compute_firewallresource (#10304) - compute: added
aggregate_reservation.vm_family,aggregate_reservation.reserved_resources.accelerator.accelerator_count,aggregate_reservation.reserved_resources.accelerator.accelerator_typeandaggregate_reservation.workload_typefields togoogle_future_reservationresource (#10317) - compute: added
application_aware_interconnectandaai_enabledfields togoogle_compute_interconnectresource (#10333) - compute: added
load_balancing_schemefield togoogle_compute_backend_bucketresource (#10301) - compute: added
provisioned_iopsandprovisioned_throughputfields togoogle_compute_region_diskresource (#10319) - compute: added
request_body_inspection_sizefield togoogle_compute_security_policyresource (#10318) - compute: added
specific_reservation.instance_properties.maintenance_interval,share_settings.projectsandenable_emergent_maintenancefields togoogle_compute_reservationresource (#10329) - firestore: added
tagsfield togoogle_firestore_databaseresource (#10335) - securesourcemanager: added in-place update support for
descriptionfield ingoogle_secure_source_manager_repositoryresource (#10325) - storage: added
force_empty_content_typefield togoogle_storage_bucket_objectresource (#10334)
BUG FIXES:
- artifactregistry: fixed an issue where changes to
cleanup_policieswere not being applied correctly ingoogle_artifact_registry_repositoryresource (#10324) - firebasehosting: skipped deletion of
google_firebase_hosting_siteresource of typeDEFAULT_SITE(#10305) - iambeta: fixed perma-diff for
jwks_jsonfield when GCP normalizes JSON formatting ingoogle_iam_workload_identity_pool_providerresource (#10306)
v6.43.0
DEPRECATIONS:
- iap: deprecated
google_iap_clientandgoogle_iap_brand(#10269)
FEATURES:
-
New Data Source:
google_network_management_connectivity_test_run(#10300) -
New Data Source:
google_redis_cluster(#10273) -
New Resource:
google_contact_center_insights_analysis_rule(#10272) -
New Resource:
google_model_armor_template(#10270)
IMPROVEMENTS:
- bigquery: added
ignore_schema_changesvirtual field togoogle_bigquery_tableresource. OnlydataPoliciesfield is supported inignore_schema_changesfor now. (#10299) - billing: added
currency_codetogoogle_billing_accountdata source (#10284) - compute: added
params.resource_manager_tagsfield togoogle_compute_networkresource (#10266) - compute: added
load_balancing_schemefield togoogle_compute_backend_bucketresource (#10301) - compute: added
params.resource_manager_tagsfield togoogle_compute_routeresource (#10293) - compute: added
update_strategyfield togoogle_compute_network_peeringresource (#10275) - container: added
secret_manager_config.rotation_configfield togoogle_container_clusterresource (#10291) - container: added
anonymous_authentication_configfield togoogle_container_clusterresource (#10295) - dataplex: added
suspendedfield togoogle_dataplex_datascanresource (#10276) - discoveryengine: added
enable_table_annotation,enable_image_annotation,structured_content_types,exclude_html_elements,exclude_html_classesandexclude_html_idsfields tolayout_parsing_configofgoogle_discovery_engine_data_storeresource (#10288) - discoveryengine: added
kms_key_namefield togoogle_discovery_engine_data_storeresource (#10281) - memorystore: added
managed_server_cafield togoogle_memorystore_instanceresource (#10268) - secretmanager: added
deletion_protectionfield togoogle_secret_manager_secretresource to optionally make deleting them require an explicit intent (#10289) - secretmanager: added
fetch_secret_datatogoogle_secret_manager_secret_versionto optionally skip fetching the secret data (#10282)
BUG FIXES:
- compute: fixed
matchfield ingoogle_compute_router_route_policyresource to be marked as required (#10298) - compute: fixed an issue with
bgp_always_compare_medingoogle_compute_networkwhere it was unable to be set fromtruetofalse(#10286) - compute: made no replication status in
google_compute_disk_async_replicationa retryable error (#10296) - gkeonprem: fixed type of
load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assigningoogle_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#10283) - integrationconnectors: removed validation from auth configs in
google_integration_connectors_connectionresource (#10267)
v6.42.0
FEATURES:
-
New Resource:
google_apihub_plugin_instance(#10225) -
New Resource:
google_apihub_plugin(#10254) -
New Resource:
google_compute_wire_group(#10255) -
New Resource:
google_dialogflow_cx_generative_settings(#10244)
IMPROVEMENTS:
- cloudidentity: added
create_ignore_already_existsfield togoogle_cloud_identity_group_membershipresource (#10229) - cloudkms: added
etagfield togoogle_kms_autokey_configresource (#10227) - cloudrunv2: added
node_selectorfield togoogle_cloud_run_v2_jobresource (#10234) - compute: added
access_modefield togoogle_compute_region_diskresource (#10256) - compute: added
match.src_secure_tagsandtarget_secure_tagsfields togoogle_compute_firewall_policy_ruleresource (#10261) - compute: added
params.resource_manager_tagsfield togoogle_compute_networkresource (#10266) - compute: added
policy_typefield togoogle_compute_network_firewall_policy,google_compute_network_firewall_policy_with_rules,google_compute_region_network_firewall_policy, andgoogle_compute_region_network_firewall_policy_with_rulesresources (#10239) - compute: added
resource_policies.workload_policyfield togoogle_compute_instance_group_managerresource (#10265) - container: added
confidential_nodes.confidential_instance_typefield togoogle_container_clusterresource (#10257) - container: added
gke_auto_upgrade_configfield togoogle_container_clusterresource (#10258) - container: added
node_config.confidential_nodes.confidential_instance_typefield togoogle_container_node_poolresource (#10257) - firestore: revoked deprecation of
deletion_policyfield ingoogle_firestore_databaseresource (#10251) - iam_beta: added
attestation_rulesfield togoogle_iam_workload_identity_pool_managed_identityresource (#10250) - memorystore: added
kms_keyfield togoogle_memorystore_instanceresource (#10246) - redis: added
effective_reserved_ip_rangefield togoogle_redis_instanceresource (#10235) - secretmanager: added
deletion_protectionfield togoogle_secret_manager_regional_secretresource (#10247) - spanner: added
encryption_config.kms_key_namefield togoogle_spanner_backup_scheduleresource (#10230) - storage: added
allow_cross_org_vpcsandallow_all_service_agent_accessfields togoogle_storage_bucketresource (#10252)
BUG FIXES:
- bigqueryanalyticshub: supported in-place update for
log_linked_dataset_query_user_emailingoogle_bigquery_analytics_hub_listingandgoogle_bigquery_analytics_hub_data_exchangeresources. Once enabled, this feature cannot be disabled. (#10241) - bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using
secret_access_keyongoogle_bigquery_data_transfer_config(#10263) - memorystore: added the ability to set the
replica_countfield ingoogle_memorystore_instanceresource to 0 (#10259) - monitoring: made
descriptionanddisplayNameoptional and mutable ingoogle_monitoring_metric_descriptorresource (#10233) - redis: fixed
reserved_ip_rangefield not being populated forgoogle_redis_instancedata source (#10235) - secretmanager: stopped surfacing persistent warnings recommending write-only field when using
secret_dataongoogle_secret_manager_secret_version(#10263) - sql: stopped surfacing persistent warnings recommending write-only field when using
passwordongoogle_sql_user(#10263) - workbench: added support for setting
serial-port-logging-enablekey inmetadatafield ingoogle_workbench_instanceresource (#10253)
v6.41.0
BREAKING CHANGES:
- lustre: added
per_unit_storage_throughputas a required field togoogle_lustre_instanceresource in response to a change in the API surface (#10211)
FEATURES:
-
New Data Source:
google_dataplex_data_quality_rules(#10189) -
New Resource:
google_apihub_plugin_instance(#10225) -
New Resource:
google_contact_center_insights_view(#10192) -
New Resource:
google_dataproc_session_template(#10204) -
New Resource:
google_dialogflow_encryption_spec(#10220)
IMPROVEMENTS:
- alloydb: added
network_config.allocated_ip_range_overridefield togoogle_alloydb_instanceresource (#10216) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_data_exchangeresource (#10200) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_listing_subscriptionresource (#10202) - bigqueryanalyticshub: added
pubsub_topicfield togoogle_bigquery_analytics_hub_listingresource (#10219) - bigtable: added
row_key_schematogoogle_bigtable_tableresource (#10222) - cloudasset: added support for universe domain handling for
google_cloud_asset_resources_search_alldatasource. (#10210) - cloudquotas: added
inheritedandinherited_fromfields togoogle_cloud_quotas_quota_adjuster_settingsresource (#10223) - compute: added
CROSS_SITE_NETWORKoption torequested_featuresfield ingoogle_compute_interconnectresource (#10207) - compute: added
TLS_JA4_FINGERPRINToption toenforce_on_keyfield ingoogle_compute_region_security_policy,google_compute_security_policy, andgoogle_compute_security_policy_ruleresources (#10199) - compute: added
send_propagated_connection_limit_if_zerotogoogle_compute_service_attachmentto resolve an issue wherepropagated_connection_limitwere not working for 0 value previously. Now settingsend_propagated_connection_limit_if_zero = truewill sendpropagated_connection_limit = 0when it's unset or set to0. (#10213) - compute: added
wire_groupsfield togoogle_compute_interconnectresource (#10207) - container: added
performance_monitoring_unitin node_config/advanced_machine_features to 'google_container_cluster' resource (#10191) - container: added
release_channel_upgrade_target_versiontogoogle_container_engine_versionsdata source (#10221) - dataplex: added support for discovery scan in
google_dataplex_datascanresource (#10205) - provider: added support for adc impersonation in different universes (#10212)
- storage: added
source_md5hashfield ingoogle_storage_bucket_object(#10196)
BUG FIXES:
- compute: fixed
google_compute_firewall_policy_rulestaying disabled after apply withdisabled = false(#10215) - compute: marked
nameingoogle_compute_node_group,google_compute_node_templateas required as it was impossible to create successfully without a value (#10224) - sql: fixed an error in updating
connection_pool_configingoogle_sql_database_instance(#10218) - tags: fixed perma-diff for
parentfield ingoogle_tags_location_tag_bindingresource (#10217)
v6.40.0
DEPRECATIONS:
- notebook:
google_notebook_runtimeis deprecated and will be removed in a future major release. Usegoogle_workbench_instanceinstead. (#10186)
FEATURES:
-
New Data Source:
google_dataplex_data_quality_rules(#10189) -
New Resource:
google_dialogflow_cx_tool(#10154)
IMPROVEMENTS:
- backupdr: added 'supported_resource_types' field to
google_backup_dr_backup_planresource (#10155) - backupdr: added support for updating in-place to the
google_backup_dr_backup_plan_associationresource (#10176) - bigqueryanalyticshub: added
log_linked_dataset_query_user_emailfield togoogle_bigquery_analytics_hub_listingresource (#10177) - compute: added
cipher_suiteblock with phase1 and phase2 encryption configurations togoogle_compute_vpn_tunnelresource. (#10188) - compute: added
fingerprintfield ingoogle_compute_target_http_proxyandgoogle_compute_target_https_proxyresources. (#10175) - compute: added
headers,expected_output_url, andexpected_redirect_response_codefields totestingoogle_compute_url_mapresource and madeservicefield optional (#10161) - compute: added
path_matcher.default_route_actionfields togoogle_compute_region_url_mapresource (#10171) - gkehub: added
custom_rolefield togoogle_gke_hub_scope_rbac_role_bindingresource (#10151) - integrationconnectors: added support for
log_config.levelforgoogle_integration_connectors_connection(#10170) - netapp: added
enable_hot_tier_auto_resizeandhot_tier_size_gibfields togoogle_netapp_storage_poolresource (#10153) - netapp: added
tiering_policy.hot_tier_bypass_mode_enabledfield togoogle_netapp_volumeresource (#10153) - networkconnectivity: added
psc_config.producer_instance_locationandpsc_config.allowed_google_producers_resource_hierarchy_levelfields togoogle_network_connectivity_service_connection_policy(#10179) - redis: added
managed_server_catogoogle_redis_clusterresource (#10169) - resourcemanager: allowed
dataproc-control.googleapis.comandstackdriverprovisioning.googleapis.comservices ingoogle_project_serviceresource (#10174) - storage: removed the hardcoded 80m timeout used during
google_storage_bucketdeletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#10160) - vertexai: added
regiontogoogle_vertex_ai_index_endpoint_deployed_index(#10184)
BUG FIXES:
- beyondcorp: fixed the issue where
hubs.internet_gateway.assigned_ipswas not populated correctly in thegoogle_beyondcorp_security_gatewayresource (#10182) - compute: fixed
google_compute_router_natwhere changes toauto_network_tierare always showed after initial apply (#10152) - compute: fixed validation for
target_servicefield ingoogle_compute_service_attachmentresource causing issues when targeting agoogle_network_services_gatewayresource (#10178) - dataflow: fields
network,subnetwork,num_workers,max_num_workersandmachine_typewill no longer cause permadiff ondataflow_flex_template_job(#10168) - dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for
google_dataproc_cluster(#10163) - networksecurity:
marked google_network_security_address_groupcapacityas immutable because it can't be updated in place. (#10165)
v6.39.0
FEATURES:
-
New Resource:
google_apihub_curation(#10130) -
New Resource:
google_compute_interconnect_attachment_group(#10136) -
New Resource:
google_compute_interconnect_group(#10136) -
New Resource:
google_compute_snapshot_settings(#10133)
IMPROVEMENTS:
- apigee: added
client_ip_resolution_configfield togoogle_apigee_environmentresource (#10143) - beyondcorp: added
delegating_service_accountfield togoogle_beyondcorp_security_gatewayresource (#10114) - bigquery: added
data_source_idto update requests throughgoogle_bigquery_data_transfer_config(#10126) - cloudrunv2: added
google_cloud_run_v2_jobsupport fordepends_onandstartup_probeproperties (#10147) - container: added
network_performance_configfield togoogle_container_clusterresource (#10117) - dataplex: added
catalog_publishing_enabledfield togoogle_dataplex_datascanresource (#10141) - datastream: added
network_attachmentsupport viapsc_interface_configattribute ingoogle_datastream_private_connection(#10112) - eventarc: made
network_attachmentoptional ingoogle_eventarc_pipeline(#10125) - gemini: added
disable_web_groundingfield togoogle_gemini_gemini_gcp_enablement_settingresource (#10115) - gemini: added
enable_data_sharingfield togoogle_gemini_data_sharing_with_google_settingresource (#10144) - gkehub2: added
spec.rbacrolebindingactuationfield to resourcegoogle_gke_hub_feature(#10121) - gkehub: added
custom_rolefield togoogle_gke_hub_scope_rbac_role_bindingresource (#10151) - gkeonprem: added
private_registry_configfield togoogle_gkeonprem_vmware_admin_clusterresource (#10150) - iambeta: enforced
workload_identity_pool_managed_identity_idfield validation per the documented specifications (#10132) - pubsub: added
message_transformfield togoogle_pubsub_topicresource (#10137) - pubsub: added
message_transformsfield togoogle_pubsub_subscriptionresource (#10138)
BUG FIXES:
- bigquery: modified
google_bigquery_dataset_iam_memberto no longer remove authorized views and routines (#10145) - colab: fixed perma-diff in
google_colab_runtime_templatecaused by the API returning a non-null default value. (#10127) - colab: fixed perma-diff in
google_colab_runtime_templatecaused by empty blocks. (#10139) - compute: fixed a permadiff in
network_profilefield ofgoogle_compute_networkrelated to specifying partial self-links (#10140) - compute: fixed an issue where
google_compute_firewall_policy_with_rules.target_resourcescould see a diff between the beta and v1 API in the resource's self-link (#10142) - container: fixed nodepool secondary range validation to allow the use of netmasks. (#10128)
- gemini: removed overly restrictive
productvalidation ongoogle_gemini_gemini_gcp_enablement_setting_binding,google_gemini_data_sharing_with_google_setting_binding. New values likeGOOGLE_CLOUD_ASSISTwill now be accepted. (#10146)
v6.38.0
DEPRECATIONS:
- colab: deprecated
post_startup_script_configfield ingoogle_colab_runtime_templateresource (#10104)
FEATURES:
IMPROVEMENTS:
- compute: added
candidate_cloud_router_ip_address,candidate_customer_router_ip_address,candidate_cloud_router_ipv6_address, andcandidate_customer_router_ipv6_addressfields togoogle_compute_interconnect_attachmentresource (#10092) - compute: added
httpFilterConfigsandhttpFilterMetadatafields ingoogle_compute_url_mapresource (#10101) - compute: added
numeric_idtogoogle_compute_region_instance_templateresource (#10098) - compute: added
source_subnetwork_ip_ranges_to_nat64andnat64_subnetworkfields ingoogle_compute_router_natresource (#10106) - datastream: added
psc_interface_configfield ingoogle_datastream_private_connectionresource (#23091) - dns: added
dns64_configfield togoogle_dns_policyresource (#10106) - filestore: added
effective_replication.roleandeffective_replication.replicas.peer_instancefields togoogle_filestore_instanceresource (#10087) - networkconnectivity: added
IPV6enum toprotocol_versionfield ingoogle_network_connectivity_policy_based_routeresource (#10099) - netapp: added
backup_retention_policy.backup_minimum_enforced_retention_days,backup_retention_policy.daily_backup_immutable,backup_retention_policy.weekly_backup_immutable,backup_retention_policy.monthly_backup_immutable, andbackup_retention_policy.manual_backup_immutablefields togoogle_netapp_backup_vault(#10110) - privateca: added support for setting default values for basic constraints for
google_privateca_certificate_templatevia thenull_caandzero_max_issuer_path_lengthfields (#22981) - privateca: added
name_constraintsfield forgoogle_privateca_certificate_templateresource (#22981) - provider: supported service account impersonation in different universes through credential file (#10097)
BUG FIXES:
- colab: fixed perma-diff in
google_colab_runtime_templatecaused by the API returning a non-null default value (#10127) - compute: fixed an issue where rules ordering in
google_compute_region_security_policycaused a diff after apply (#10105) - filestore: fixed bug where
google_filestore_instance.initial_replicationfield could not be set (#10087)
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)
v7.14.1: 7.14.1
7.14.1 (2025-09-04)
Bug Fixes
- maven.gitlab-ci.yml: move services section under maven job (a2c5dca)
v7.14.0: 7.14.0
7.14.0 (2025-09-02)
Features
v7.13.1: 7.13.1
7.13.1 (2025-09-01)
Bug Fixes
- rename detect-non-utf8-files job and make it work with spaces in filenames (4d7ec69)
v7.13.0: 7.13.0
7.13.0 (2025-08-27)
Features
- add detect-non-utf-files job (f629243)
v7.12.0: 7.12.0
7.12.0 (2025-08-27)
Features
- terraform-pipeline: remove duplicate kics job (354c3cc)
v7.11.1: 7.11.1
7.11.1 (2025-08-21)
v7.11.0: 7.11.0
7.11.0 (2025-08-21)
Features
- trivy job now to use logan-terrafrom image and run terraform init in before_script (b03b3e4)
v7.10.4: 7.10.4
7.10.4 (2025-08-14)
v7.10.3: 7.10.3
7.10.3 (2025-08-14)
v7.10.2: 7.10.2
7.10.2 (2025-08-14)
v7.10.1: 7.10.1
7.10.1 (2025-08-14)
v7.10.0: 7.10.0
7.10.0 (2025-08-14)
Features
- auto-devops: remove mandatory jobs from auto-devops template (5f7de9c)
v7.9.1: 7.9.1
7.9.1 (2025-08-13)
v7.9.0: 7.9.0
7.9.0 (2025-08-13)
Features
- mandatory-jobs: provide AST-related CI/CD variable defaults (3421a2e)
v7.8.0: 7.8.0
7.8.0 (2025-08-13)
Features
- add mandatory jobs template (975f4aa)
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by uis-devops-renovatebot