FAQ | This is a LIVE service | Changelog

Skip to content

fix(deps): update all non-major dependencies

uis-devops-renovatebotrequested to merge
renovate/all-minor-patch into main

This MR contains the following updates:

Package Type Update Change
gitlab (source) required_provider minor 18.0.0 -> 18.5.0
google (source) required_provider minor 6.37.0 -> 6.50.0
google-beta (source) required_provider minor 6.37.0 -> 6.50.0
registry.gitlab.developers.cam.ac.uk/uis/devops/infra/dockerimages/logan-terraform minor 1.12 -> 1.13
uis/devops/continuous-delivery/ci-templates repository minor v7.7.0 -> v7.19.2

Release Notes

gitlabhq/terraform-provider-gitlab (gitlab)

v18.5.0

Compare Source

FEATURES (2 changes)
IMPROVEMENTS (2 changes)
DOCUMENTATION (2 changes)
BUG FIXES (3 changes)

v18.4.1

Compare Source

IMPROVEMENTS (1 change)
  • Bumped GitLab client-go dependency to v0.148.0 to improve default retry policy (merge request)

v18.4.0

Compare Source

FEATURES (2 changes)
IMPROVEMENTS (1 change)
BUG FIXES (2 changes)

v18.3.0

Compare Source

FEATURES (3 changes)
IMPROVEMENTS (6 changes)
BUG FIXES (6 changes)

v18.2.0

Compare Source

FEATURES (2 changes)
IMPROVEMENTS (5 changes)
BUG FIXES (2 change)

v18.1.1

Compare Source

BUG FIXES (1 change)

v18.1.0

Compare Source

FEATURES (3 changes)
IMPROVEMENTS (15 changes)
DOCUMENTATION (2 changes)
BUG FIXES (3 changes)
hashicorp/terraform-provider-google (google)

v6.50.0

Compare Source

NOTES:

  • bigtable: It is recommended for google_bigtable_table_iam_* resources to upgrade to v6.50.0 and switch from instance to instance_name in your configuration before upgrading to v7.X (#​24400)

DEPRECATIONS:

  • bigtable: deprecated instance in favor of instance_name in google_bigtable_table_iam_* resources (#​24400)

IMPROVEMENTS:

  • bigtable: added instance_name field to google_bigtable_table_iam_* resources (#​24400)

v6.49.3

Compare Source

BUG FIXES:

  • compute: fixed a crash in google_compute_security_policy due to a changed API response for empty match.0.expr_options blocks (#​24353)

v6.49.2

Compare Source

BUG FIXES:

  • container: fixed issue where a failed creation on google_container_node_pool would result in an unrecoverable tainted state (#​10586)

v6.49.1

Compare Source

BUG FIXES:

  • secretmanager: fixed issue where upgrading to 6.49.0 would cause all google_secret_manager_secret_version resources to be recreated unless secret_data_wo_version was set (#​24061)

v6.49.0

Compare Source

DEPRECATIONS:

  • beyondcorp: google_beyondcorp_application_iam_binding, google_beyondcorp_application_iam_member and google_beyondcorp_application_iam_policy IAM resources, and the google_beyondcorp_application_iam_policy datasource have been deprecated and will be removed in the upcoming major release (#​23995)
  • tpu: deprecated google_tpu_tensorflow_versions data source. Use google_tpu_v2_runtime_versions instead. (#​23958)

BREAKING CHANGES:

  • vertexai: made the metadata field required in google_vertex_ai_index (#​23953)

FEATURES:

  • New Data Source: google_artifact_registry_tag (#​23994)
  • New Data Source: google_artifact_registry_tags (#​23969)
  • New Resource: google_dialogflow_convesation_profile (#​23996)

IMPROVEMENTS:

  • apikeys: added service_account_email to google_apikeys_key (#​24001)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​23914)
  • container: added eviction_soft, eviction_soft_grace_period, eviction_minimum_reclaim, eviction_max_pod_grace_period_seconds, max_parallel_image_pulls, transparent_hugepage_enabled, transparent_hugepage_defrag and min_node_cpus fields to node_config block of google_container_node_pool and google_container_cluster resources (#​23973)
  • networkmanagement: added subnet and network fields to the google_network_management_vpc_flow_logs_config resource (beta) (#​23945)
  • networkmanagement: added output-only field target_resource_state to the google_network_management_vpc_flow_logs_config resource (#​23945)
  • resourcemanager: added management_project and configured_capabilities fields to the google_folder resource. (#​23983)

BUG FIXES:

  • cloud_tasks: set name field set to required in google_cloud_tasks_queue resource (#​23997)
  • clouddeploy: allowed sending weekly_windows.start_time as an empty object in order to use default values in thegoogle_clouddeploy_deploy_policy resource (#​23993)
  • kms: skip_initial_version_creation field is no longer immutable in google_kms_crypto_key, but is still only settable at-creation (#​23984)
  • netapp: fixed bug where google_netapp_volume.large_capacity was not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#​24004)
  • networkconnectivity: added update support for linked_vpc_network in google_network_connectivity_spoke (#​23949)

v6.48.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_package (#​23901)
  • New Data Source: google_artifact_registry_repositories (#​23906)
  • New Data Source: google_artifact_registry_version (#​23868)
  • New Resource: google_dialogflow_cx_playbook (initial basic support, full features to follow in a later release) (#​23895)
  • New Resource: google_vertexai_rag_engine_config (#​23889)

IMPROVEMENTS:

  • backupdr: added log_retention_days field to google_backup_dr_backup_plan resource (#​23846)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​23914)
  • compute: added ha_policy field to google_compute_region_backend_service resource (#​23905)
  • compute: added the ability to use global target forwarding rule for target_service field in google_compute_service_attachment resource (#​23892)
  • container: added boot_disk to node_config in google_container_cluster and google_container_node_pool resources (#​23840)
  • container: added node_config.kubelet_config.single_process_oom_kill field to google_container_node_pool and google_container_cluster resources (#​23844)
  • container: added in-place update support for user_managed_keys_config field in google_container_cluster resource (#​23883)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​23830)
  • gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_admin_cluster resource (#​23908)
  • memorystore: added allow_fewer_zones_deployment field to google_memorystore_instance resource (#​23845)
  • sql: added field psa_write_endpoint flag to google_sql_database_instance resource (#​23867)
  • sql: added network_attachment_uri field to google_sql_database_instance resource (#​23894)
  • sql: added node_count field to sql_database_instance resource, and added new value READ_POOL_INSTANCE enum to the instance_type field of sql_database_instance resource (#​23897)
  • storagetransfer: added federated_identity_config field to google_storage_transfer_job resource (#​23900)
  • storagetransfer: added transfer_spec.aws_s3_data_source.cloudfront_domain field to google_storage_transfer_job resource (#​23887)

BUG FIXES:

  • accesscontextmanager: made scopes field as immutable for access_context_manager_access_policy resource. (#​23886)
  • bigquery: fixed handling of non-legacy roles for access block inside google_bigquery_dataset (#​23898)
  • container: fixed an issue causing errors during updates to node_config to be suppressed in google_container_cluster and google_container_node_pool (#​23842)

v6.47.0

Compare Source

DEPRECATIONS:

  • compute: deprecated network_self_link field in google_compute_subnetworks data source. Use network_name instead. (#​23753)
  • resourcemanager: deprecated project field in google_service_account_key data source. The field is non functional and can safely be removed from your configuration. (#​23813)

FEATURES:

  • New Data Source: google_artifact_registry_docker_images (#​23751)
  • New Resource: google_apigee_security_action (#​23721)
  • New Resource: google_developer_connect_insights_config (#​23789)
  • New Resource: google_discovery_engine_cmek_config (#​23745)
  • New Resource: google_iam_workforce_pool_iam_binding (#​23784)
  • New Resource: google_iam_workforce_pool_iam_member (#​23784)
  • New Resource: google_iam_workforce_pool_iam_policy (#​23784)

IMPROVEMENTS:

  • backupdr: added backup_retention_inheritance field to google_backup_dr_backup_vault resource (#​23817)
  • bigqueryanalyticshub: added commercial_info and delete_commercial fields in google_bigquery_analytics_hub_listing resource (#​23731)
  • bigqueryanalyticshub: added discovery_type field to google_bigquery_analytics_hub_data_exchange resource (#​23801)
  • bigqueryanalyticshub: added state, discovery_type, and allow_only_metadata_sharing fields to google_bigquery_analytics_hub_listing resource (#​23801)
  • cloudfunction: added automatic_update_policy and on_deploy_update_policy to google_cloudfunctions_function resource (#​23819)
  • cloudrunv2: added gpu_zonal_redundancy_disabled field to google_cloud_run_v2_job resource. (#​23811)
  • compute: added labels field to google_compute_storage_pool resource (#​23783)
  • compute: added network_name field to google_compute_subnetworks data source (#​23753)
  • container: added ip_allocation_policy.additional_ip_ranges_config field to google_container_cluster resource (#​23828)
  • container: added network_config.additional_node_network_configs.subnetwork field to google_container_node_pool resource (#​23828)
  • container: added addons_config.lustre_csi_driver_config field to google_container_cluster resource (#​23729)
  • container: added support for rbac_binding_config in google_container_cluster (#​23812)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​23830)
  • looker: added LOOKER_CORE_TRIAL_STANDARD, LOOKER_CORE_TRIAL_ENTERPRISE, and LOOKER_CORE_TRIAL_EMBED editions to google_looker_instance resource. (#​23785)
  • managedkafka: added tls_config field to google_managed_kafka_cluster resource (#​23749)
  • memorystore: added allow_fewer_zones_deployment field to google_redis_cluster resource (#​23800)
  • storage: added deletion_policy field to google_storage_bucket_object resource (#​23816)
  • vertexai: added custom_delete field to google_vertex_ai_endpoint_with_model_garden_deployment resource (#​23788)

BUG FIXES:

  • bigquery: fixed a crash in google_bigquery_table when configured as an external table with parquet_options (#​23808)
  • cloudrunv2: fixed an issue where manual_instance_count was unable to set to 0 in google_cloud_run_v2_worker_pool. (#​23798)
  • composer: fixed updates failing for recovery_config with explicitly disabled scheduled snapshots (#​23715)
  • iap: fixed an issue where deleting google_iap_settings without setting GOOGLE_PROJECT incorrectly failed (#​23724)
  • storage: removed client-side GCS name validations for google_storage_bucket (#​23719)

v6.46.0

Compare Source

FEATURES:

  • New Data Source: google_storage_insights_dataset_config (#​23709)
  • New Resource: google_apigee_api_product (#​23648)
  • New Resource: google_discovery_engine_recommendation_engine (#​23692)
  • New Resource: google_oracle_database_odb_network (#​23675)
  • New Resource: google_oracle_database_odb_subnet (#​23694)
  • New Resource: google_storage_insights_dataset_config (#​23707)

IMPROVEMENTS:

  • compute: added params.resourceManagerTags field to the google_compute_router (#​23690)
  • compute: added in-place update support for provisioned_iops, provisioned_throughput, and access_mode fields in google_compute_region_disk resource (#​23697)
  • dataproc: added authentication_config field to google_dataproc_batch and google_dataproc_session_template resource (#​23644)
  • dataproc: added idle_ttl field to google_dataproc_session_template resource (#​23680)
  • networkconnectivity: added field allocation_options to resource google_network_connectivity_internal_range (#​23687)
  • oracledatabase: added odb_network and odb_subnet fields, and made network and cidr fields optional in google_oracle_database_autonomous_database resource (#​23686)
  • oracledatabase: added odb_network, odb_subnet and backup_odb_subnet fields, and made network, cidr and backup_subnet_cidr fields optional in google_oracle_database_cloud_vm_cluster resource (#​23688)
  • secretmanager: added tags field to google_secret_manager_regional_secret to allow setting tags for regional_secrets at creation time (#​23706)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_repository resource (#​23693)
  • workbench: added enable_managed_euc field to google_workbench_instance resource. (#​23682)
  • workbench: added reservation_affinity field to google_workbench_instance resource. (#​23676)

BUG FIXES:

  • composer: fixed updates failing for google_composer_environment recovery_config with explicitly disabled scheduled snapshots (#​23715)
  • datastore: fixed a permadiff with google_datastream_connection_profile's create_without_validation field (#​23711)
  • memorystore: fixed bug to allow google_memorystore_instance to be used with no provider default region or with a location that doesn't match the provider default region. (#​23666)
  • networkconnectivity: fixed instances[].ip_address & instances[].virtual_machine fields in linked_router_appliance_instances block being incorrectly treated as immutable for google_network_connectivity_spoke resource (#​23705)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​23639)
  • sql: fixed a provider crash when importing google_sql_database resource (#​23643)

v6.45.0

Compare Source

DEPRECATIONS:

  • gemini: deprecated the disable_web_grounding field in the google_gemini_gemini_gcp_enablement_setting resource (#​23581)

FEATURES:

  • New Resource: google_bigtable_schema_bundle (#​23585)
  • New Resource: google_compute_preview_feature (#​23631)
  • New Resource: google_dialogflow_cx_generator (#​23605)
  • New Resource: google_model_armor_floorsetting (#​23621)
  • New Resource: google_vertex_ai_endpoint_with_model_garden_deployment (#​23632)

IMPROVEMENTS:

  • accesscontextmanager: added name to google_access_context_manager_gcp_user_access_binding resource (#​23638)
  • apigee: marked the field access_logging_config immutable in google_apigee_instance resource (#​23571)
  • bigquery: added ignore_auto_generated_schema virtual field to google_bigquery_table resource to ignore server-added columns in the schema field (#​23633)
  • cloudrunv2: added field node_selector in google_cloud_run_v2_job (#​23586)
  • compute: added params.resourceManagerTags field to the google_compute_subnetwork (#​23618)
  • compute: added rule.match.src_secure_tags, rule.target_secure_tags, predefined_rules.match.src_secure_tags and predefined_rules.target_secure_tags fields to google_compute_firewall_policy_with_rules resource (#​23635)
  • dataproc: added cluster_config.security_config.identity_config field to google_dataproc_cluster resource (#​23613)
  • dataproc: updated cluster_config.gce_cluster_config.metadata field to be computed in google_dataproc_cluster resource (#​23613)
  • dialogflowcx: added flexible support to google_dialogflow_cx_webhook resource. (#​23582)
  • gemini: added web_grounding_type field to google_gemini_gemini_gcp_enablement_setting resource (#​23581)
  • netapp: added in-place update support for allow_auto_tiering field in google_netapp_storage_pool resource (#​23614)
  • secretmanager: added tags field to google_secret_manager_secret to allow setting tags for secrets at creation time (#​23625)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_instance resource (#​23606)
  • sql: added network_attachment_uri field to google_sql_database_instance (#​23615)
  • vmwareengine: added GOOGLE_CLOUD_NETAPP_VOLUMES peering type to resource google_vmwareengine_network_peering (#​23628)

BUG FIXES:

  • modelarmor: fixed conflicting field validation for filter_config.sdp_settings on google_model_armor_template (#​23626)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​23639)

v6.44.0

Compare Source

FEATURES:

  • New Data Source: google_compute_network_attachment (#​23570)
  • New Data Source: google_firestore_document (#​23553)
  • New Resource: google_backup_dr_service_config (#​23552)
  • New Resource: google_bigquery_analytics_hub_data_exchange_subscription (#​23560)
  • New Resource: google_gkeonprem_vmware_admin_cluster (#​23554)
  • New Resource: google_network_security_backend_authentication_config (#​23555)

IMPROVEMENTS:

  • alloydb: added machine_config.machine_type field to google_alloydb_instance resource (#​23562)
  • apigee: added access_logging_config field to google_apigee_instance resource (#​23522)
  • apigee: marked access_logging_config field immutable in google_apigee_instance resource (#​23571)
  • backupdr: added in-place update support for google_backup_dr_backup_plan resource (#​23537)
  • compute: added params.resource_manager_tags field to google_compute_firewall resource (#​23524)
  • compute: added application_aware_interconnect and aai_enabled fields to google_compute_interconnect resource (#​23567)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​23499)
  • compute: added provisioned_iops and provisioned_throughput fields to google_compute_region_disk resource (#​23551)
  • compute: added specific_reservation.source_instance_template, delete_at_time, delete_after_duration.seconds, delete_after_duration.nanos and reservation_sharing_policy.service_share_type fields to google_compute_reservation resource (#​23561)
  • firestore: added tags field to google_firestore_database resource (#​23569)
  • securesourcemanager: added in-place update support for description field in google_secure_source_manager_repository resource (#​23557)
  • storage: added force_empty_content_type field to google_storage_bucket_object resource (#​23568)

BUG FIXES:

  • artifactregistry: fixed an issue where changes to cleanup_policies were not being applied correctly in google_artifact_registry_repository resource (#​23556)
  • iambeta: fixed perma-diff for jwks_json field when GCP normalizes JSON formatting in google_iam_workload_identity_pool_provider resource (#​23526)

v6.43.0

Compare Source

DEPRECATIONS:

  • iap: deprecated google_iap_client and google_iap_brand (#​23431)

FEATURES:

  • New Data Source: google_kms_autokey_config (#​23490)
  • New Data Source: google_kms_key_handle (#​23490)
  • New Data Source: google_kms_key_handles (#​23490)
  • New Data Source: google_network_management_connectivity_test_run (#​23497)
  • New Data Source: google_redis_cluster (#​23436)
  • New Resource: google_contact_center_insights_analysis_rule (#​23435)
  • New Resource: google_kms_autokey_config (#​23490)
  • New Resource: google_kms_key_handle (#​23490)
  • New Resource: google_model_armor_template (#​23432)

IMPROVEMENTS:

  • bigquery: added ignore_schema_changes virtual field to google_bigquery_table resource. Only dataPolicies field is supported in ignore_schema_changes for now. (#​23495)
  • billing: added currency_code to google_billing_account data source (#​23474)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​23421)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​23499)
  • compute: added params.resource_manager_tags field to google_compute_route resource (#​23489)
  • container: added anonymous_authentication_config field to google_container_cluster resource (#​23491)
  • dataplex: added suspended field to google_dataplex_datascan resource (#​23456)
  • discoveryengine: added enable_table_annotation, enable_image_annotation, structured_content_types, exclude_html_elements, exclude_html_classes and exclude_html_ids fields to layout_parsing_config of google_discovery_engine_data_store resource (#​23478)
  • discoveryengine: added kms_key_name field to google_discovery_engine_data_store resource (#​23469)
  • memorystore: added managed_server_ca field to google_memorystore_instance resource (#​23430)
  • secretmanager: added deletion_protection field to google_secret_manager_secret resource to optionally make deleting them require an explicit intent (#​23480)
  • secretmanager: added fetch_secret_data field to google_secret_manager_secret_version to optionally skip fetching the secret data (#​23471)

BUG FIXES:

  • compute: fixed match field in google_compute_router_route_policy resource to be marked as required (#​23494)
  • compute: fixed an issue with bgp_always_compare_med in google_compute_network where it was unable to be set from true to false (#​23477)
  • compute: made no replication status in google_compute_disk_async_replication a retryable error (#​23492)
  • gkeonprem: fixed type of load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assign in google_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#​23472)
  • integrationconnectors: removed validation from auth configs in google_integration_connectors_connection resource (#​23429)

v6.42.0

Compare Source

FEATURES:

  • New Resource: google_apihub_plugin_instance (#​23346)
  • New Resource: google_apihub_plugin (#​23407)
  • New Resource: google_dialogflow_cx_generative_settings (#​23394)

IMPROVEMENTS:

  • cloudidentity: added create_ignore_already_exists field to google_cloud_identity_group_membership resource (#​23376)
  • compute: added access_mode field to google_compute_region_disk resource (#​23409)
  • compute: added match.src_secure_tags and target_secure_tags fields to google_compute_firewall_policy_rule resource (#​23414)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​23421)
  • compute: added resource_policies.workload_policy field to google_compute_instance_group_manager resource (#​23420)
  • container: added confidential_nodes.confidential_instance_type field to google_container_cluster resource (#​23410)
  • container: added gke_auto_upgrade_config field to google_container_cluster resource (#​23411)
  • container: added node_config.confidential_nodes.confidential_instance_type field to google_container_node_pool resource (#​23410)
  • firestore: revoked deprecation of deletion_policy field in google_firestore_database resource (#​23403)
  • memorystore: added kms_key field to google_memorystore_instance resource (#​23396)
  • redis: added effective_reserved_ip_range field to google_redis_instance resource (#​23384)
  • secretmanager: added deletion_protection field to google_secret_manager_regional_secret resource (#​23398)
  • spanner: added encryption_config.kms_key_name field to google_spanner_backup_schedule resource (#​23378)
  • storage: added allow_cross_org_vpcs and allow_all_service_agent_access fields to google_storage_bucket resource (#​23405)

BUG FIXES:

  • alloydb: removed machine_config.machine_type field from google_alloydb_instance resource because it is not yet supported in GA (#​23415)
  • bigqueryanalyticshub: supported in-place update for log_linked_dataset_query_user_email in google_bigquery_analytics_hub_listing and google_bigquery_analytics_hub_data_exchange resources. Once enabled, this feature cannot be disabled. (#​23391)
  • bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using secret_access_key on google_bigquery_data_transfer_config (#​23417)
  • memorystore: added the ability to set the replica_count field in google_memorystore_instance resource to 0 (#​23412)
  • monitoring: made description and displayName optional and mutable in google_monitoring_metric_descriptor resource (#​23381)
  • redis: fixed reserved_ip_range field not being populated for google_redis_instance data source (#​23384)
  • secretmanager: stopped surfacing persistent warnings recommending write-only field when using secret_data on google_secret_manager_secret_version (#​23417)
  • sql: stopped surfacing persistent warnings recommending write-only field when using password on google_sql_user (#​23417)
  • workbench: added support for setting serial-port-logging-enable key in metadata field in google_workbench_instance resource (#​23406)

v6.41.0

Compare Source

BREAKING CHANGES:

  • lustre: added per_unit_storage_throughput as a required field to google_lustre_instance resource in response to a change in the API surface (#​23319)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​23255)
  • New Resource: google_apihub_plugin_instance (#​23346)
  • New Resource: google_contact_center_insights_view (#​23263)
  • New Resource: google_dataproc_session_template (#​23288)
  • New Resource: google_dialogflow_encryption_spec (#​23335)

IMPROVEMENTS:

  • alloydb: added network_config.allocated_ip_range_override field to google_alloydb_instance resource (#​23330)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_data_exchange resource (#​23271)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing_subscription resource (#​23286)
  • bigqueryanalyticshub: added pubsub_topic field to google_bigquery_analytics_hub_listing resource (#​23334)
  • bigtable: added row_key_schema to google_bigtable_table resource (#​23337)
  • cloudasset: added support for universe domain handling for google_cloud_asset_resources_search_all datasource (#​23318)
  • cloudquotas: added inherited and inherited_from fields to google_cloud_quotas_quota_adjuster_settings resource (#​23339)
  • compute: added CROSS_SITE_NETWORK enum option to requested_features field in google_compute_interconnect resource (#​23316)
  • compute: added TLS_JA4_FINGERPRINT option to enforce_on_key field in google_compute_region_security_policy, google_compute_security_policy, and google_compute_security_policy_rule resources (#​23270)
  • compute: added send_propagated_connection_limit_if_zero to google_compute_service_attachment to resolve an issue where propagated_connection_limit were not working for 0 value previously. Now setting send_propagated_connection_limit_if_zero = true will send propagated_connection_limit = 0 when it's unset or set to 0. (#​23325)
  • compute: promoted default_custom_error_response_policy to GA in google_compute_url_map (#​23268)
  • container: added performance_monitoring_unit in node_config/advanced_machine_features to 'google_container_cluster' resource (#​23260)
  • container: added release_channel_upgrade_target_version to google_container_engine_versions data source (#​23336)
  • dataplex: added support for discovery scan in google_dataplex_datascan resource (#​23291)
  • dns: added target_name_servers.domain_name field to google_dns_managed_zone resource (#​23265)
  • provider: added support for adc impersonation in different universes (#​23320)
  • storage: added source_md5hash field in google_storage_bucket_object (#​23267)

BUG FIXES:

  • compute: fixed google_compute_firewall_policy_rule staying disabled after apply with disabled = false (#​23329)
  • compute: marked name in google_compute_node_group, google_compute_node_template as required as it was impossible to create successfully without a value (#​23345)
  • sql: fixed an error in updating connection_pool_config in google_sql_database_instance (#​23332)
  • tags: fixed perma-diff for parent field in google_tags_location_tag_binding resource (#​23331)

v6.40.0

Compare Source

DEPRECATIONS:

  • notebook: google_notebook_runtime is deprecated and will be removed in a future major release. Use google_workbench_instance instead. (#​23251)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​23255)
  • New Resource: google_dialogflow_cx_tool (#​23192)

IMPROVEMENTS:

  • backupdr: added support for updating in-place to the google_backup_dr_backup_plan_association resource (#​23237)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing resource (#​23238)
  • compute: added cipher_suite block with phase1 and phase2 encryption configurations to google_compute_vpn_tunnel resource. (#​23253)
  • compute: added fingerprint field in google_compute_target_http_proxy and google_compute_target_https_proxy resources. (#​23231)
  • compute: added headers, expected_output_url, and expected_redirect_response_code fields to test in google_compute_url_map resource and made service field optional (#​23199)
  • compute: added path_matcher.default_route_action fields to google_compute_region_url_map resource (#​23226)
  • compute: added workload_policy and group_placement_policy.gpu_topology fields to google_compute_resource_policy resource (ga) (#​23229)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​23183)
  • integrationconnectors: added support for log_config.level for google_integration_connectors_connection (#​23224)
  • networkconnectivity: added psc_config.producer_instance_location and psc_config.allowed_google_producers_resource_hierarchy_level fields to google_network_connectivity_service_connection_policy (#​23240)
  • redis: added managed_server_ca to google_redis_cluster resource (#​23223)
  • resourcemanager: allowed dataproc-control.googleapis.com and stackdriverprovisioning.googleapis.com services in google_project_service resource (#​23230)
  • storage: removed the hardcoded 80m timeout used during google_storage_bucket deletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#​23198)
  • vertexai: added region in google_vertex_ai_index_endpoint_deployed_index (#​23247)

BUG FIXES:

  • beyondcorp: fixed the issue where hubs.internet_gateway.assigned_ips was not populated correctly in the google_beyondcorp_security_gateway resource (#​23244)
  • compute: fixed google_compute_router_nat where changes to auto_network_tier are always shown after initial apply (#​23190)
  • compute: fixed validation for target_service field in google_compute_service_attachment resource causing issues when targeting a google_network_services_gateway resource (#​23239)
  • dataflow: fields network, subnetwork, num_workers, max_num_workers and machine_type will no longer cause permadiff on dataflow_flex_template_job (#​23222)
  • dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for google_dataproc_cluster (#​23207)
  • networksecurity: marked google_network_security_address_group capacity as immutable because it can't be updated in place. (#​23209)

v6.39.0

Compare Source

FEATURES:

  • New Resource: google_apihub_curation (#​23144)
  • New Resource: google_compute_interconnect_attachment_group (#​23159)
  • New Resource: google_compute_interconnect_group (#​23159)
  • New Resource: google_compute_snapshot_settings (#​23151)

IMPROVEMENTS:

  • apigee: added client_ip_resolution_config field to google_apigee_environment resource (#​23172)
  • beyondcorp: added delegating_service_account field to google_beyondcorp_security_gateway resource (#​23094)
  • bigquery: added data_source_id to update requests through google_bigquery_data_transfer_config (#​23134)
  • cloudrunv2: added google_cloud_run_v2_job support for depends_on and startup_probe properties (#​23179)
  • container: added network_performance_config field to google_container_cluster resource (#​23098)
  • container: promoted flex_start in google_container_cluster to GA (#​23093)
  • dataplex: added catalog_publishing_enabled field to google_dataplex_datascan resource (#​23165)
  • datastream: added network_attachment support via psc_interface_config attribute in google_datastream_private_connection (#​23091)
  • eventarc: made network_attachment field optional in google_eventarc_pipeline (#​23133)
  • gemini: added disable_web_grounding field to google_gemini_gemini_gcp_enablement_setting resource (#​23096)
  • gemini: added enable_data_sharing field to google_gemini_data_sharing_with_google_setting resource (#​23173)
  • gkehub2: added spec.rbacrolebindingactuation field to resource google_gke_hub_feature (#​23102)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​23183)
  • iambeta: enforced workload_identity_pool_managed_identity_id field validation per the documented specifications (#​23149)
  • pubsub: added message_transform field to google_pubsub_topic resource (#​23161)
  • pubsub: added message_transforms field to google_pubsub_subscription resource (#​23162)

BUG FIXES:

  • bigquery: modified google_bigquery_dataset_iam_member to no longer remove authorized views and routines (#​23177)
  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value. (#​23137)
  • colab: fixed perma-diff in google_colab_runtime_template caused by empty blocks. (#​23163)
  • compute: fixed a permadiff in network_profile field of google_compute_network related to specifying partial self-links (#​23164)
  • compute: fixed an issue where google_compute_firewall_policy_with_rules.target_resources could see a diff between the beta and v1 API in the resource's self-link (#​23170)
  • container: fixed nodepool secondary range validation to allow the use of netmasks. (#​23142)
  • gemini: removed overly restrictive product validation on google_gemini_gemini_gcp_enablement_setting_binding, google_gemini_data_sharing_with_google_setting_binding. New values like GOOGLE_CLOUD_ASSIST will now be accepted. (#​23178)

v6.38.0

Compare Source

DEPRECATIONS:

  • colab: deprecated post_startup_script_config field in google_colab_runtime_template resource (#​23075)

FEATURES:

  • New Data Source: google_bigquery_datasets (#​23059)
  • New Resource: google_dataplex_entry (#​23000)

IMPROVEMENTS:

  • compute: added numeric_id field to google_compute_region_instance_template resource (#​23065)
  • compute: added source_subnetwork_ip_ranges_to_nat64 and nat64_subnetwork fields to google_compute_router_nat resource (#​23078)
  • container: promoted pod_autoscaling field in google_container_cluster resource to GA (#​23002)
  • datastream: added psc_interface_config field in google_datastream_private_connection resource (#​23091)
  • dns: added dns64_config field to google_dns_policy resource (#​23078)
  • filestore: added effective_replication.role and effective_replication.replicas.peer_instance fields to google_filestore_instance resource (#​23001)
  • netapp: added backup_retention_policy.backup_minimum_enforced_retention_days, backup_retention_policy.daily_backup_immutable, backup_retention_policy.weekly_backup_immutable, backup_retention_policy.monthly_backup_immutable, and backup_retention_policy.manual_backup_immutable fields to google_netapp_backup_vault (#​23087)
  • networkconnectivity: added IPV6 enum to protocol_version field in google_network_connectivity_policy_based_route resource (#​23069)
  • privateca: added support for setting default values for basic constraints for google_privateca_certificate_template via the null_ca and zero_max_issuer_path_length fields (#​22981)
  • privateca: added name_constraints field for google_privateca_certificate_template resource (#​22981)
  • provider: supported service account impersonation in different universes through credential file (#​23063)

BUG FIXES:

  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value (#​23137)
  • compute: fixed an issue where rules ordering in google_compute_region_security_policy caused a diff after apply (#​23076)
  • filestore: fixed bug where google_filestore_instance.initial_replication field could not be set (#​23001)
hashicorp/terraform-provider-google-beta (google-beta)

v6.50.0

Compare Source

NOTES:

  • bigtable: It is recommended for google_bigtable_table_iam_* resources to upgrade to v6.50.0 and switch from instance to instance_name in your configuration before upgrading to v7.X (#​10746)

DEPRECATIONS:

  • bigtable: deprecated instance in favor of instance_name in google_bigtable_table_iam_* resources (#​10746)

IMPROVEMENTS:

  • bigtable: added instance_name field to google_bigtable_table_iam_* resources (#​10746)

v6.49.3

Compare Source

BUG FIXES:

  • compute: fixed a crash in google_compute_security_policy due to a changed API response for empty match.0.expr_options blocks (#​10715)

v6.49.2

Compare Source

BUG FIXES:

  • container: fixed issue where a failed creation on google_container_node_pool would result in an unrecoverable tainted state (#​24077)

v6.49.1

Compare Source

BUG FIXES:

  • secretmanager: fixed issue where upgrading to 6.49.0 would cause all google_secret_manager_secret_version resources to be recreated unless secret_data_wo_version was set (#​10574)

v6.49.0

Compare Source

DEPRECATIONS:

  • beyondcorp: google_beyondcorp_application_iam_binding, google_beyondcorp_application_iam_member and google_beyondcorp_application_iam_policy IAM resources, and the google_beyondcorp_application_iam_policy datasource have been deprecated and will be removed in the upcoming major release (#​10532)
  • tpu: deprecated google_tpu_tensorflow_versions data source. Use google_tpu_v2_runtime_versions instead. (#​10514)

FEATURES:

  • New Data Source: google_artifact_registry_tag (#​10531)
  • New Data Source: google_artifact_registry_tags (#​10518)
  • New Resource: google_dialogflow_convesation_profile (#​10533)

IMPROVEMENTS:

  • apikeys: added service_account_email to google_apikeys_key (#​10538)
  • bigqueryreservation: added support for scaling_mode and max_slots properties on google_bigquery_reservation (beta) (#​10509)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​10498)
  • container: added eviction_soft, eviction_soft_grace_period, eviction_minimum_reclaim, eviction_max_pod_grace_period_seconds, max_parallel_image_pulls, transparent_hugepage_enabled, transparent_hugepage_defrag and min_node_cpus fields to node_config block of google_container_node_pool and google_container_cluster resources (#​10522)
  • networkmanagement: added subnet and network fields to the google_network_management_vpc_flow_logs_config resource (beta) (#​10506)
  • networkmanagement: added output-only field target_resource_state to the google_network_management_vpc_flow_logs_config resource (#​10506)
  • resourcemanager: Added management_project and configured_capabilities fields to the google_folder resource. (#​10525)

BUG FIXES:

  • cloud_tasks: correctly set name field to be required in google_cloud_tasks_queue resource (#​10534)
  • clouddeploy: allowed sending start_time with default values in weekly_windows in google_clouddeploy_deploy_policy resource. start_time 00:00 means the policy will start at midnight. (#​10530)
  • kms: skip_initial_version_creation field is no longer immutable in google_kms_crypto_key, but is still only settable at-creation (#​10526)
  • netapp: fixed bug where google_netapp_volume.large_capacity was not properly marked as immutable, causing updates to fail (and making it impossible to change the field value after creation) (#​10541)
  • networkconnectivity: added update support for linked_vpc_network in google_network_connectivity_spoke (#​10507)

v6.48.0

Compare Source

FEATURES:

  • New Data Source: google_artifact_registry_package (#​10490)
  • New Data Source: google_artifact_registry_repositories (#​10494)
  • New Data Source: google_artifact_registry_version (#​10468)
  • New Resource: google_dialogflow_cx_playbook (initial basic support, full features to follow in a later release) (#​10485)
  • New Resource: google_vertexai_rag_engine_config (#​10481)

IMPROVEMENTS:

  • backupdr: added log_retention_days field to google_backup_dr_backup_plan resource (#​10463)
  • compute: added advanced_options_config field to google_compute_region_security_policy resource (#​10498)
  • compute: added ha_policy field to google_compute_region_backend_service resource (#​10493)
  • compute: added the ability to use global target forwarding rule for target_service field in google_compute_service_attachment resource (#​10483)
  • container: added boot_disk to node_config in google_container_cluster and google_container_node_pool resources (#​10457)
  • container: added node_config.kubelet_config.single_process_oom_kill field to google_container_node_pool and google_container_cluster resources (#​10461)
  • container: added in-place update support for user_managed_keys_config field in google_container_cluster resource (#​10475)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​10453)
  • gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_admin_cluster resource (#​10496)
  • memorystore: added allow_fewer_zones_deployment field to google_memorystore_instance resource (#​10462)
  • sql: added field psa_write_endpoint flag to google_sql_database_instance resource (#​10467)
  • sql: added network_attachment_uri field to google_sql_database_instance resource (#​10484)
  • sql: added node_count field to sql_database_instance resource, and added new value READ_POOL_INSTANCE enum to instance_type field of sql_database_instance resource (#​10487)
  • storagetransfer: added federated_identity_config to google_storage_transfer_job resource (#​10489)
  • storagetransfer: added transfer_spec.aws_s3_data_source.cloudfront_domain field to google_storage_transfer_job resource (#​10479)

BUG FIXES:

  • accesscontextmanager: made scopes field as immutable for access_context_manager_access_policy resource (#​10478)
  • bigquery: fixed handling of non-legacy roles for access block inside google_bigquery_dataset resource (#​10488)
  • container: fixed an issue causing errors during updates to node_config to be suppressed in google_container_cluster and google_container_node_pool resources (#​10459)

v6.47.0

Compare Source

DEPRECATIONS:

  • compute: deprecated network_self_link field in google_compute_subnetworks data source. Use network_name instead. (#​10423)
  • resourcemanager: deprecated project field in google_service_account_key data source. The field is non functional and can safely be removed from your configuration. (#​10442)

FEATURES:

  • New Data Source: google_artifact_registry_docker_images (#​10422)
  • New Resource: google_apigee_security_action (#​10407)
  • New Resource: google_developer_connect_insights_config (#​10431)
  • New Resource: google_discovery_engine_cmek_config (#​10416)
  • New Resource: google_iam_workforce_pool_iam_binding (#​10426)
  • New Resource: google_iam_workforce_pool_iam_member (#​10426)
  • New Resource: google_iam_workforce_pool_iam_policy (#​10426)

IMPROVEMENTS:

  • backupdr: added backup_retention_inheritance field to google_backup_dr_backup_vault resource (#​10446)
  • bigqueryanalyticshub: added commercial_info and delete_commercial fields in google_bigquery_analytics_hub_listing resource (#​10415)
  • bigqueryanalyticshub: added discovery_type field to google_bigquery_analytics_hub_data_exchange resource (#​10435)
  • bigqueryanalyticshub: added state, discovery_type, and allow_only_metadata_sharing fields to google_bigquery_analytics_hub_listing resource (#​10435)
  • cloudfunction: added automatic_update_policy and on_deploy_update_policy to google_cloudfunctions_function resource (#​10448)
  • cloudrunv2: added gpu_zonal_redundancy_disabled field to google_cloud_run_v2_job resource. (#​10440)
  • compute: added labels field to google_compute_storage_pool resource (#​10425)
  • compute: added network_name field to google_compute_subnetworks data source (#​10423)
  • container: added ip_allocation_policy.additional_ip_ranges_config field to google_container_cluster resource (#​10451)
  • container: added network_config.additional_node_network_configs.subnetwork field to google_container_node_pool resource (#​10451)
  • container: added addons_config.lustre_csi_driver_config field to google_container_cluster resource (#​10413)
  • container: added support for rbac_binding_config in google_container_cluster (#​10441)
  • dataproc: added cluster_config.cluster_tier field to google_dataproc_cluster resource (#​10453)
  • looker: added LOOKER_CORE_TRIAL_STANDARD, LOOKER_CORE_TRIAL_ENTERPRISE, and LOOKER_CORE_TRIAL_EMBED editions to google_looker_instance resource. (#​10427)
  • managedkafka: added tls_config field to google_managed_kafka_cluster resource (#​10420)
  • memorystore: added allow_fewer_zones_deployment field to google_redis_cluster resource (#​10434)
  • storage: added deletion_policy field to google_storage_bucket_object resource (#​10445)
  • vertexai: added custom_delete field to google_vertex_ai_endpoint_with_model_garden_deployment resource (#​10430)

BUG FIXES:

  • bigquery: fixed a crash in google_bigquery_table when configured as an external table with parquet_options (#​10438)
  • cloudrunv2: fixed an issue where manual_instance_count was unable to set to 0 in google_cloud_run_v2_worker_pool. (#​10433)
  • composer: fixed updates failing for recovery_config with explicitly disabled scheduled snapshots (#​10405)
  • iap: fixed an issue where deleting google_iap_settings without setting GOOGLE_PROJECT incorrectly failed (#​10410)
  • storage: removed client-side GCS name validations for google_storage_bucket (#​10406)

v6.46.0

Compare Source

FEATURES:

  • New Data Source: google_storage_insights_dataset_config (#​10402)
  • New Resource: google_apigee_api_product (#​10378)
  • New Resource: google_discovery_engine_recommendation_engine (#​10394)
  • New Resource: google_oracle_database_odb_network (#​10383)
  • New Resource: google_oracle_database_odb_subnet (#​10396)
  • New Resource: google_storage_insights_dataset_config (#​10401)

IMPROVEMENTS:

  • compute: added params.resourceManagerTags field to the google_compute_router (#​10392)
  • compute: added in-place update support for provisioned_iops, provisioned_throughput, and access_mode fields in google_compute_region_disk resource (#​10397)
  • dataproc: added authentication_config field to google_dataproc_batch and google_dataproc_session_template resource (#​10375)
  • dataproc: added idle_ttl field to google_dataproc_session_template resource (#​10386)
  • networkconnectivity: added field allocation_options to resource google_network_connectivity_internal_range (#​10390)
  • oracledatabase: added odb_network and odb_subnet fields, and made network and cidr fields optional in google_oracle_database_autonomous_database resource (#​10389)
  • oracledatabase: added odb_network, odb_subnet and backup_odb_subnet fields, and made network, cidr and backup_subnet_cidr fields optional in google_oracle_database_cloud_vm_cluster resource (#​10391)
  • secretmanager: added tags field to google_secret_manager_regional_secret to allow setting tags for regional_secrets at creation time (#​10400)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_repository resource (#​10395)
  • workbench: added enable_managed_euc field to google_workbench_instance resource. (#​10388)
  • workbench: added reservation_affinity field to google_workbench_instance resource. (#​10384)

BUG FIXES:

  • composer: fixed updates failing for google_composer_environment recovery_config with explicitly disabled scheduled snapshots (#​10405)
  • datastore: fixed a permadiff with google_datastream_connection_profile's create_without_validation field (#​10403)
  • memorystore: fixed bug to allow google_memorystore_instance to be used with no provider default region or with a location that doesn't match the provider default region. (#​10380)
  • networkconnectivity: fixed instances[].ip_address & instances[].virtual_machine fields in linked_router_appliance_instances block being incorrectly treated as immutable for google_network_connectivity_spoke resource (#​10399)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​10371)
  • sql: fixed a provider crash when importing google_sql_database resource (#​10374)

v6.45.0

Compare Source

DEPRECATIONS:

  • gemini: deprecated the disable_web_grounding field in the google_gemini_gemini_gcp_enablement_setting resource (#​10338)

FEATURES:

  • New Resource: google_bigtable_schema_bundle (#​10342)
  • New Resource: google_compute_preview_feature (#​10364)
  • New Resource: google_dialogflow_cx_generator (#​10348)
  • New Resource: google_model_armor_floorsetting (#​10359)
  • New Resource: google_vertex_ai_endpoint_with_model_garden_deployment (#​10365)

IMPROVEMENTS:

  • accesscontextmanager: added name to google_access_context_manager_gcp_user_access_binding resource (#​10370)
  • bigquery: added ignore_auto_generated_schema virtual field to google_bigquery_table resource to ignore server-added columns in the schema field (#​10366)
  • compute: added params.resourceManagerTags field to the google_compute_subnetwork (#​10357)
  • compute: added mirrorPercent field to requestMirrorPolicy in defaultRouteAction, pathMatchers[].defaultRouteAction, pathMatchers[].pathRules[].routeAction, and pathMatchers[].routeRules[].routeAction to google_compute_region_url_map resource (#​10351)
  • compute: added rule.match.src_secure_tags, rule.target_secure_tags, predefined_rules.match.src_secure_tags and predefined_rules.target_secure_tags fields to google_compute_firewall_policy_with_rules resource (#​10367)
  • dataproc: added cluster_config.security_config.identity_config field to google_dataproc_cluster resource (#​10352)
  • dataproc: updated cluster_config.gce_cluster_config.metadata field to be computed in google_dataproc_cluster resource (#​10352)
  • dialogflowcx: added flexible support to google_dialogflow_cx_webhook resource. (#​10339)
  • gemini: added web_grounding_type field to google_gemini_gemini_gcp_enablement_setting resource (#​10338)
  • netapp: added in-place update support for allow_auto_tiering field in google_netapp_storage_pool resource (#​10353)
  • secretmanager: added tags field to google_secret_manager_secret to allow setting tags for secrets at creation time (#​10360)
  • securesourcemanager: added deletion_policy field to google_secure_source_manager_instance resource (#​10349)
  • sql: added network_attachment_uri field to google_sql_database_instance (#​10354)
  • vmwareengine: added GOOGLE_CLOUD_NETAPP_VOLUMES peering type to resource google_vmwareengine_network_peering (#​10363)

BUG FIXES:

  • modelarmor: fixed conflicting field validation for filter_config.sdp_settings on google_model_armor_template (#​10361)
  • resourcemanager: updated service account creation to prevent failures due to eventual consistency in google_service_account resource (#​10371)

v6.44.0

Compare Source

FEATURES:

  • New Data Source: google_compute_network_attachment (#​10336)
  • New Data Source: google_firestore_document (#​10321)
  • New Resource: google_backup_dr_service_config (#​10320)
  • New Resource: google_bigquery_analytics_hub_data_exchange_subscription (#​10328)

IMPROVEMENTS:

  • apigee: added access_logging_config field to google_apigee_instance resource (#​10303)
  • apigee: marked access_logging_config field immutable in google_apigee_instance resource (#​10337)
  • backupdr: added in-place update support for google_backup_dr_backup_plan resource (#​10312)
  • bigqueryanalyticshub: added routine field to google_bigquery_analytics_hub_listing resource (#​10327)
  • compute: added params.resource_manager_tags field to google_compute_firewall resource (#​10304)
  • compute: added aggregate_reservation.vm_family, aggregate_reservation.reserved_resources.accelerator.accelerator_count, aggregate_reservation.reserved_resources.accelerator.accelerator_type and aggregate_reservation.workload_type fields to google_future_reservation resource (#​10317)
  • compute: added application_aware_interconnect and aai_enabled fields to google_compute_interconnect resource (#​10333)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​10301)
  • compute: added provisioned_iops and provisioned_throughput fields to google_compute_region_disk resource (#​10319)
  • compute: added request_body_inspection_size field to google_compute_security_policy resource (#​10318)
  • compute: added specific_reservation.instance_properties.maintenance_interval, share_settings.projects and enable_emergent_maintenance fields to google_compute_reservation resource (#​10329)
  • firestore: added tags field to google_firestore_database resource (#​10335)
  • securesourcemanager: added in-place update support for description field in google_secure_source_manager_repository resource (#​10325)
  • storage: added force_empty_content_type field to google_storage_bucket_object resource (#​10334)

BUG FIXES:

  • artifactregistry: fixed an issue where changes to cleanup_policies were not being applied correctly in google_artifact_registry_repository resource (#​10324)
  • firebasehosting: skipped deletion of google_firebase_hosting_site resource of type DEFAULT_SITE (#​10305)
  • iambeta: fixed perma-diff for jwks_json field when GCP normalizes JSON formatting in google_iam_workload_identity_pool_provider resource (#​10306)

v6.43.0

Compare Source

DEPRECATIONS:

  • iap: deprecated google_iap_client and google_iap_brand (#​10269)

FEATURES:

  • New Data Source: google_network_management_connectivity_test_run (#​10300)
  • New Data Source: google_redis_cluster (#​10273)
  • New Resource: google_contact_center_insights_analysis_rule (#​10272)
  • New Resource: google_model_armor_template (#​10270)

IMPROVEMENTS:

  • bigquery: added ignore_schema_changes virtual field to google_bigquery_table resource. Only dataPolicies field is supported in ignore_schema_changes for now. (#​10299)
  • billing: added currency_code to google_billing_account data source (#​10284)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​10266)
  • compute: added load_balancing_scheme field to google_compute_backend_bucket resource (#​10301)
  • compute: added params.resource_manager_tags field to google_compute_route resource (#​10293)
  • compute: added update_strategy field to google_compute_network_peering resource (#​10275)
  • container: added secret_manager_config.rotation_config field to google_container_cluster resource (#​10291)
  • container: added anonymous_authentication_config field to google_container_cluster resource (#​10295)
  • dataplex: added suspended field to google_dataplex_datascan resource (#​10276)
  • discoveryengine: added enable_table_annotation, enable_image_annotation, structured_content_types, exclude_html_elements, exclude_html_classes and exclude_html_ids fields to layout_parsing_config of google_discovery_engine_data_store resource (#​10288)
  • discoveryengine: added kms_key_name field to google_discovery_engine_data_store resource (#​10281)
  • memorystore: added managed_server_ca field to google_memorystore_instance resource (#​10268)
  • secretmanager: added deletion_protection field to google_secret_manager_secret resource to optionally make deleting them require an explicit intent (#​10289)
  • secretmanager: added fetch_secret_data to google_secret_manager_secret_version to optionally skip fetching the secret data (#​10282)

BUG FIXES:

  • compute: fixed match field in google_compute_router_route_policy resource to be marked as required (#​10298)
  • compute: fixed an issue with bgp_always_compare_med in google_compute_network where it was unable to be set from true to false (#​10286)
  • compute: made no replication status in google_compute_disk_async_replication a retryable error (#​10296)
  • gkeonprem: fixed type of load_balancer.0.bgp_lb_config.0.address_pools.0.manual_assign in google_gkeonprem_bare_metal_cluster, making it a boolean instead of a string (#​10283)
  • integrationconnectors: removed validation from auth configs in google_integration_connectors_connection resource (#​10267)

v6.42.0

Compare Source

FEATURES:

  • New Resource: google_apihub_plugin_instance (#​10225)
  • New Resource: google_apihub_plugin (#​10254)
  • New Resource: google_compute_wire_group (#​10255)
  • New Resource: google_dialogflow_cx_generative_settings (#​10244)

IMPROVEMENTS:

  • cloudidentity: added create_ignore_already_exists field to google_cloud_identity_group_membership resource (#​10229)
  • cloudkms: added etag field to google_kms_autokey_config resource (#​10227)
  • cloudrunv2: added node_selector field to google_cloud_run_v2_job resource (#​10234)
  • compute: added access_mode field to google_compute_region_disk resource (#​10256)
  • compute: added match.src_secure_tags and target_secure_tags fields to google_compute_firewall_policy_rule resource (#​10261)
  • compute: added params.resource_manager_tags field to google_compute_network resource (#​10266)
  • compute: added policy_type field to google_compute_network_firewall_policy, google_compute_network_firewall_policy_with_rules, google_compute_region_network_firewall_policy, and google_compute_region_network_firewall_policy_with_rules resources (#​10239)
  • compute: added resource_policies.workload_policy field to google_compute_instance_group_manager resource (#​10265)
  • container: added confidential_nodes.confidential_instance_type field to google_container_cluster resource (#​10257)
  • container: added gke_auto_upgrade_config field to google_container_cluster resource (#​10258)
  • container: added node_config.confidential_nodes.confidential_instance_type field to google_container_node_pool resource (#​10257)
  • firestore: revoked deprecation of deletion_policy field in google_firestore_database resource (#​10251)
  • iam_beta: added attestation_rules field to google_iam_workload_identity_pool_managed_identity resource (#​10250)
  • memorystore: added kms_key field to google_memorystore_instance resource (#​10246)
  • redis: added effective_reserved_ip_range field to google_redis_instance resource (#​10235)
  • secretmanager: added deletion_protection field to google_secret_manager_regional_secret resource (#​10247)
  • spanner: added encryption_config.kms_key_name field to google_spanner_backup_schedule resource (#​10230)
  • storage: added allow_cross_org_vpcs and allow_all_service_agent_access fields to google_storage_bucket resource (#​10252)

BUG FIXES:

  • bigqueryanalyticshub: supported in-place update for log_linked_dataset_query_user_email in google_bigquery_analytics_hub_listing and google_bigquery_analytics_hub_data_exchange resources. Once enabled, this feature cannot be disabled. (#​10241)
  • bigquerydatatransfer: stopped surfacing persistent warnings recommending write-only field when using secret_access_key on google_bigquery_data_transfer_config (#​10263)
  • memorystore: added the ability to set the replica_count field in google_memorystore_instance resource to 0 (#​10259)
  • monitoring: made description and displayName optional and mutable in google_monitoring_metric_descriptor resource (#​10233)
  • redis: fixed reserved_ip_range field not being populated for google_redis_instance data source (#​10235)
  • secretmanager: stopped surfacing persistent warnings recommending write-only field when using secret_data on google_secret_manager_secret_version (#​10263)
  • sql: stopped surfacing persistent warnings recommending write-only field when using password on google_sql_user (#​10263)
  • workbench: added support for setting serial-port-logging-enable key in metadata field in google_workbench_instance resource (#​10253)

v6.41.0

Compare Source

BREAKING CHANGES:

  • lustre: added per_unit_storage_throughput as a required field to google_lustre_instance resource in response to a change in the API surface (#​10211)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​10189)
  • New Resource: google_apihub_plugin_instance (#​10225)
  • New Resource: google_contact_center_insights_view (#​10192)
  • New Resource: google_dataproc_session_template (#​10204)
  • New Resource: google_dialogflow_encryption_spec (#​10220)

IMPROVEMENTS:

  • alloydb: added network_config.allocated_ip_range_override field to google_alloydb_instance resource (#​10216)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_data_exchange resource (#​10200)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing_subscription resource (#​10202)
  • bigqueryanalyticshub: added pubsub_topic field to google_bigquery_analytics_hub_listing resource (#​10219)
  • bigtable: added row_key_schema to google_bigtable_table resource (#​10222)
  • cloudasset: added support for universe domain handling for google_cloud_asset_resources_search_all datasource. (#​10210)
  • cloudquotas: added inherited and inherited_from fields to google_cloud_quotas_quota_adjuster_settings resource (#​10223)
  • compute: added CROSS_SITE_NETWORK option to requested_features field in google_compute_interconnect resource (#​10207)
  • compute: added TLS_JA4_FINGERPRINT option to enforce_on_key field in google_compute_region_security_policy, google_compute_security_policy, and google_compute_security_policy_rule resources (#​10199)
  • compute: added send_propagated_connection_limit_if_zero to google_compute_service_attachment to resolve an issue where propagated_connection_limit were not working for 0 value previously. Now setting send_propagated_connection_limit_if_zero = true will send propagated_connection_limit = 0 when it's unset or set to 0. (#​10213)
  • compute: added wire_groups field to google_compute_interconnect resource (#​10207)
  • container: added performance_monitoring_unit in node_config/advanced_machine_features to 'google_container_cluster' resource (#​10191)
  • container: added release_channel_upgrade_target_version to google_container_engine_versions data source (#​10221)
  • dataplex: added support for discovery scan in google_dataplex_datascan resource (#​10205)
  • provider: added support for adc impersonation in different universes (#​10212)
  • storage: added source_md5hash field in google_storage_bucket_object (#​10196)

BUG FIXES:

  • compute: fixed google_compute_firewall_policy_rule staying disabled after apply with disabled = false (#​10215)
  • compute: marked name in google_compute_node_group, google_compute_node_template as required as it was impossible to create successfully without a value (#​10224)
  • sql: fixed an error in updating connection_pool_config in google_sql_database_instance (#​10218)
  • tags: fixed perma-diff for parent field in google_tags_location_tag_binding resource (#​10217)

v6.40.0

Compare Source

DEPRECATIONS:

  • notebook: google_notebook_runtime is deprecated and will be removed in a future major release. Use google_workbench_instance instead. (#​10186)

FEATURES:

  • New Data Source: google_dataplex_data_quality_rules (#​10189)
  • New Resource: google_dialogflow_cx_tool (#​10154)

IMPROVEMENTS:

  • backupdr: added 'supported_resource_types' field to google_backup_dr_backup_plan resource (#​10155)
  • backupdr: added support for updating in-place to the google_backup_dr_backup_plan_association resource (#​10176)
  • bigqueryanalyticshub: added log_linked_dataset_query_user_email field to google_bigquery_analytics_hub_listing resource (#​10177)
  • compute: added cipher_suite block with phase1 and phase2 encryption configurations to google_compute_vpn_tunnel resource. (#​10188)
  • compute: added fingerprint field in google_compute_target_http_proxy and google_compute_target_https_proxy resources. (#​10175)
  • compute: added headers, expected_output_url, and expected_redirect_response_code fields to test in google_compute_url_map resource and made service field optional (#​10161)
  • compute: added path_matcher.default_route_action fields to google_compute_region_url_map resource (#​10171)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​10151)
  • integrationconnectors: added support for log_config.level for google_integration_connectors_connection (#​10170)
  • netapp: added enable_hot_tier_auto_resize and hot_tier_size_gib fields to google_netapp_storage_pool resource (#​10153)
  • netapp: added tiering_policy.hot_tier_bypass_mode_enabled field to google_netapp_volume resource (#​10153)
  • networkconnectivity: added psc_config.producer_instance_location and psc_config.allowed_google_producers_resource_hierarchy_level fields to google_network_connectivity_service_connection_policy (#​10179)
  • redis: added managed_server_ca to google_redis_cluster resource (#​10169)
  • resourcemanager: allowed dataproc-control.googleapis.com and stackdriverprovisioning.googleapis.com services in google_project_service resource (#​10174)
  • storage: removed the hardcoded 80m timeout used during google_storage_bucket deletion when removing an anywhere cache, polling instead. This should speed up deletion in these cases. (#​10160)
  • vertexai: added region to google_vertex_ai_index_endpoint_deployed_index (#​10184)

BUG FIXES:

  • beyondcorp: fixed the issue where hubs.internet_gateway.assigned_ips was not populated correctly in the google_beyondcorp_security_gateway resource (#​10182)
  • compute: fixed google_compute_router_nat where changes to auto_network_tier are always showed after initial apply (#​10152)
  • compute: fixed validation for target_service field in google_compute_service_attachment resource causing issues when targeting a google_network_services_gateway resource (#​10178)
  • dataflow: fields network, subnetwork, num_workers, max_num_workers and machine_type will no longer cause permadiff on dataflow_flex_template_job (#​10168)
  • dataproc: fixed a permadiff with "prodcurrent" and "prodprevious" within image subminor version for google_dataproc_cluster (#​10163)
  • networksecurity: marked google_network_security_address_group capacity as immutable because it can't be updated in place. (#​10165)

v6.39.0

Compare Source

FEATURES:

  • New Resource: google_apihub_curation (#​10130)
  • New Resource: google_compute_interconnect_attachment_group (#​10136)
  • New Resource: google_compute_interconnect_group (#​10136)
  • New Resource: google_compute_snapshot_settings (#​10133)

IMPROVEMENTS:

  • apigee: added client_ip_resolution_config field to google_apigee_environment resource (#​10143)
  • beyondcorp: added delegating_service_account field to google_beyondcorp_security_gateway resource (#​10114)
  • bigquery: added data_source_id to update requests through google_bigquery_data_transfer_config (#​10126)
  • cloudrunv2: added google_cloud_run_v2_job support for depends_on and startup_probe properties (#​10147)
  • container: added network_performance_config field to google_container_cluster resource (#​10117)
  • dataplex: added catalog_publishing_enabled field to google_dataplex_datascan resource (#​10141)
  • datastream: added network_attachment support via psc_interface_config attribute in google_datastream_private_connection (#​10112)
  • eventarc: made network_attachment optional in google_eventarc_pipeline (#​10125)
  • gemini: added disable_web_grounding field to google_gemini_gemini_gcp_enablement_setting resource (#​10115)
  • gemini: added enable_data_sharing field to google_gemini_data_sharing_with_google_setting resource (#​10144)
  • gkehub2: added spec.rbacrolebindingactuation field to resource google_gke_hub_feature (#​10121)
  • gkehub: added custom_role field to google_gke_hub_scope_rbac_role_binding resource (#​10151)
  • gkeonprem: added private_registry_config field to google_gkeonprem_vmware_admin_cluster resource (#​10150)
  • iambeta: enforced workload_identity_pool_managed_identity_id field validation per the documented specifications (#​10132)
  • pubsub: added message_transform field to google_pubsub_topic resource (#​10137)
  • pubsub: added message_transforms field to google_pubsub_subscription resource (#​10138)

BUG FIXES:

  • bigquery: modified google_bigquery_dataset_iam_member to no longer remove authorized views and routines (#​10145)
  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value. (#​10127)
  • colab: fixed perma-diff in google_colab_runtime_template caused by empty blocks. (#​10139)
  • compute: fixed a permadiff in network_profile field of google_compute_network related to specifying partial self-links (#​10140)
  • compute: fixed an issue where google_compute_firewall_policy_with_rules.target_resources could see a diff between the beta and v1 API in the resource's self-link (#​10142)
  • container: fixed nodepool secondary range validation to allow the use of netmasks. (#​10128)
  • gemini: removed overly restrictive product validation on google_gemini_gemini_gcp_enablement_setting_binding, google_gemini_data_sharing_with_google_setting_binding. New values like GOOGLE_CLOUD_ASSIST will now be accepted. (#​10146)

v6.38.0

Compare Source

DEPRECATIONS:

  • colab: deprecated post_startup_script_config field in google_colab_runtime_template resource (#​10104)

FEATURES:

  • New Data Source: google_bigquery_datasets (#​10095)
  • New Resource: google_dataplex_entry (#​10086)

IMPROVEMENTS:

  • compute: added candidate_cloud_router_ip_address, candidate_customer_router_ip_address, candidate_cloud_router_ipv6_address, and candidate_customer_router_ipv6_address fields to google_compute_interconnect_attachment resource (#​10092)
  • compute: added httpFilterConfigs and httpFilterMetadata fields in google_compute_url_map resource (#​10101)
  • compute: added numeric_id to google_compute_region_instance_template resource (#​10098)
  • compute: added source_subnetwork_ip_ranges_to_nat64 and nat64_subnetwork fields in google_compute_router_nat resource (#​10106)
  • datastream: added psc_interface_config field in google_datastream_private_connection resource (#​23091)
  • dns: added dns64_config field to google_dns_policy resource (#​10106)
  • filestore: added effective_replication.role and effective_replication.replicas.peer_instance fields to google_filestore_instance resource (#​10087)
  • networkconnectivity: added IPV6 enum to protocol_version field in google_network_connectivity_policy_based_route resource (#​10099)
  • netapp: added backup_retention_policy.backup_minimum_enforced_retention_days, backup_retention_policy.daily_backup_immutable, backup_retention_policy.weekly_backup_immutable, backup_retention_policy.monthly_backup_immutable, and backup_retention_policy.manual_backup_immutable fields to google_netapp_backup_vault (#​10110)
  • privateca: added support for setting default values for basic constraints for google_privateca_certificate_template via the null_ca and zero_max_issuer_path_length fields (#​22981)
  • privateca: added name_constraints field for google_privateca_certificate_template resource (#​22981)
  • provider: supported service account impersonation in different universes through credential file (#​10097)

BUG FIXES:

  • colab: fixed perma-diff in google_colab_runtime_template caused by the API returning a non-null default value (#​10127)
  • compute: fixed an issue where rules ordering in google_compute_region_security_policy caused a diff after apply (#​10105)
  • filestore: fixed bug where google_filestore_instance.initial_replication field could not be set (#​10087)
uis/devops/continuous-delivery/ci-templates (uis/devops/continuous-delivery/ci-templates)

v7.19.2: 7.19.2

Compare Source

7.19.2 (2025-10-23)

Bug Fixes
  • maven.gitab-ci.yml: added missing GKE_RUNNER_TAG on build_artifact (470fc86)

v7.19.1: 7.19.1

Compare Source

7.19.1 (2025-10-23)

Bug Fixes
  • maven.gitlab-ci.yml: update publish to use CI_COMMIT_TAG for a release, or script for snapshot (e616bd4)

v7.19.0: 7.19.0

Compare Source

7.19.0 (2025-10-16)

Features
  • add poe-based test runner proof of concept (8e159c9)

v7.18.0: 7.18.0

Compare Source

7.18.0 (2025-10-02)
Features
  • python: remove Python 3.9 from default Python version list (6468459), closes #​167

v7.17.7: 7.17.7

Compare Source

7.17.7 (2025-10-02)

Bug Fixes
  • python-tox: increase Kubernetes memory limit for python-tox jobs (461ab04)

v7.17.6: 7.17.6

Compare Source

7.17.6 (2025-10-01)
Bug Fixes
  • terraform: set kubernetes CPU requests for terraform jobs (5c75c2d)

v7.17.5: 7.17.5

Compare Source

7.17.5 (2025-09-30)

Bug Fixes
  • exclude modules example sub-dirs from trivy scan (3adf47a)

v7.17.4: 7.17.4

Compare Source

7.17.4 (2025-09-29)
Bug Fixes

v7.17.3: 7.17.3

Compare Source

7.17.3 (2025-09-29)

v7.17.2: 7.17.2

Compare Source

7.17.2 (2025-09-25)

Bug Fixes
  • mandatory-jobs: reduce cpu and memory requests for SAST jobs (9d3526a)

v7.17.1: 7.17.1

Compare Source

7.17.1 (2025-09-25)

Bug Fixes
  • pre-commit: certdir variable must be an empty string (d608c55)

v7.17.0: 7.17.0

Compare Source

7.17.0 (2025-09-24)
Features
  • mandatory-jobs: increase runner resources for failing SAST jobs (cfb7fd5)

v7.16.0: 7.16.0

Compare Source

7.16.0 (2025-09-19)

Features
  • 🎸 Move standard job to Generic GKE Runner (59d2a0e)

v7.15.2: 7.15.2

Compare Source

7.15.2 (2025-09-17)

v7.15.1: 7.15.1

Compare Source

7.15.1 (2025-09-11)
Bug Fixes
  • maven.gitlab-ci.yml: moved PUBLISH_NEW_VERSION within .maven:publish script (e02809e)
  • maven.gitlab-ci.yml: updated semantic commit message pattern matching and logic (b9ad541)
  • maven.gitlab-ci.yml: updated semantic commit message pattern matching and logic (e8071e1)
  • maven.gitlab-ci.yml: updated semantic commit message pattern matching and logic (2574c8c)

v7.15.0: 7.15.0

Compare Source

7.15.0 (2025-09-08)

Features
  • add custom configuration for secrets (ef86a30)

v7.14.1: 7.14.1

Compare Source

7.14.1 (2025-09-04)
Bug Fixes
  • maven.gitlab-ci.yml: move services section under maven job (a2c5dca)

v7.14.0: 7.14.0

Compare Source

7.14.0 (2025-09-02)
Features

v7.13.1: 7.13.1

Compare Source

7.13.1 (2025-09-01)

Bug Fixes
  • rename detect-non-utf8-files job and make it work with spaces in filenames (4d7ec69)

v7.13.0: 7.13.0

Compare Source

7.13.0 (2025-08-27)
Features
  • add detect-non-utf-files job (f629243)

v7.12.0: 7.12.0

Compare Source

7.12.0 (2025-08-27)
Features
  • terraform-pipeline: remove duplicate kics job (354c3cc)

v7.11.1: 7.11.1

Compare Source

7.11.1 (2025-08-21)

v7.11.0: 7.11.0

Compare Source

7.11.0 (2025-08-21)

Features
  • trivy job now to use logan-terrafrom image and run terraform init in before_script (b03b3e4)

v7.10.4: 7.10.4

Compare Source

7.10.4 (2025-08-14)

v7.10.3: 7.10.3

Compare Source

7.10.3 (2025-08-14)

v7.10.2: 7.10.2

Compare Source

7.10.2 (2025-08-14)

v7.10.1: 7.10.1

Compare Source

7.10.1 (2025-08-14)

v7.10.0: 7.10.0

Compare Source

7.10.0 (2025-08-14)

Features
  • auto-devops: remove mandatory jobs from auto-devops template (5f7de9c)

v7.9.1: 7.9.1

Compare Source

7.9.1 (2025-08-13)

v7.9.0: 7.9.0

Compare Source

7.9.0 (2025-08-13)

Features
  • mandatory-jobs: provide AST-related CI/CD variable defaults (3421a2e)

v7.8.0: 7.8.0

Compare Source

7.8.0 (2025-08-13)

Features
  • add mandatory jobs template (975f4aa)

Configuration

📅 Schedule: Branch creation - Monday through Friday ( * * * * 1-5 ) in timezone Europe/London, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.

  • [ ] If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by uis-devops-renovatebot

Merge request reports