OWASP / wrongsecrets

Vulnerable app with examples showing how to not use secrets
https://owasp.org/www-project-wrongsecrets/
GNU Affero General Public License v3.0
1.24k stars 365 forks source link

chore(deps): update terraform-gcp to ~> 6.10.0 #1741

Closed renovate[bot] closed 2 weeks ago

renovate[bot] commented 2 weeks ago

This PR contains the following updates:

Package Type Update Change
google (source) required_provider minor ~> 6.5.0 -> ~> 6.10.0
google (source) required_provider minor ~> 4.1 -> ~> 6.5
google-beta (source) required_provider minor ~> 6.5.0 -> ~> 6.10.0

Release Notes

hashicorp/terraform-provider-google (google) ### [`v6.10.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#6100-November-4-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v6.9.0...v6.10.0) FEATURES: - **New Data Source:** `google_compute_instance_guest_attributes` ([#​20095](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20095)) - **New Data Source:** `google_service_accounts` ([#​20062](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20062)) - **New Resource:** `google_iap_settings` ([#​20085](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20085)) IMPROVEMENTS: - apphub: added `GLOBAL` enum value to `scope.type` field in `google_apphub_application` resource ([#​20015](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20015)) - assuredworkloads: added `workload_options` field to `google_assured_workloads_workload` resource ([#​19985](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19985)) - bigquery: added `external_catalog_dataset_options` fields to `google_bigquery_dataset` resource (beta) ([#​20097](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20097)) - bigquery: added descriptive validation errors for missing required fields in `google_bigquery_job` destination table configuration ([#​20077](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20077)) - compute: `desired_status` on google_compute_instance can now be set to `TERMINATED` or `SUSPENDED` on instance creation ([#​20031](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20031)) - compute: added `header_action` and `redirect_options` fields to `google_compute_security_policy_rule` resource ([#​20079](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20079)) - compute: added `interface.ipv6-address` field in `google_compute_external_vpn_gateway` resource ([#​20091](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20091)) - compute: added `propagated_connection_limit` and `connected_endpoints.propagated_connection_count` fields to `google_compute_service_attachment` resource ([#​20016](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20016)) - compute: added plan-time validation to `name` on `google_compute_instance` ([#​20036](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20036)) - compute: added support for `advanced_machine_features.turbo_mode` to `google_compute_instance`, `google_compute_instance_template`, and `google_compute_region_instance_template` ([#​20090](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20090)) - container: added in-place update support for `labels`, `resource_manager_tags` and `workload_metadata_config` in `google_container_cluster.node_config` ([#​20038](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20038)) - filestore: added `protocol` property to resource `google_filestore_instance` ([#​19982](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19982)) - memorystore: added `mode` flag to `google_memorystore_instance` ([#​19988](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19988)) - netapp: added `zone` and `replica_zone` fields to `google_netapp_storage_pool` resource ([#​19980](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19980)) - netapp: added `zone` and `replica_zone` fields to `google_netapp_volume` resource ([#​19980](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19980)) - networksecurity: added `tls_inspection_policy` field to `google_network_security_gateway_security_policy` ([#​19986](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19986)) - resourcemanager: added `disabled` to `google_service_account` datasource ([#​20034](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20034)) - spanner: added `asymmetric_autoscaling_options` field to `google_spanner_instance` ([#​20014](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20014)) - sql: removed the client-side default of `ENTERPRISE` for `edition` in `google_sql_database_instance` so that `edition` is determined by the API when unset. This will cause new instances to use `ENTERPRISE_PLUS` as the default for POSTGRES\_16. ([#​19977](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19977)) - vmwareengine: added `autoscaling_settings` to `google_vmwareengine_private_cloud` resource ([#​20057](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20057)) BUG FIXES: - accesscontextmanager: fixed permadiff for perimeter ingress / egress rule resources ([#​20046](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20046)) - compute: fixed an error in `google_compute_security_policy_rule` that prevented updating the default rule ([#​20066](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20066)) - container: fixed missing in-place updates for some `google_container_cluster.node_config` subfields ([#​20038](https://redirect.github.com/hashicorp/terraform-provider-google/pull/20038)) ### [`v6.9.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#690-October-28-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v6.8.0...v6.9.0) DEPRECATIONS: - containerattached: deprecated `security_posture_config` field in `google_container_attached_cluster` resource ([#​19912](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19912)) FEATURES: - **New Data Source:** `google_oracle_database_autonomous_database` ([#​19903](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19903)) - **New Data Source:** `google_oracle_database_autonomous_databases` ([#​19901](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19901)) - **New Data Source:** `google_oracle_database_cloud_exadata_infrastructures` ([#​19884](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19884)) - **New Data Source:** `google_oracle_database_cloud_vm_clusters` ([#​19900](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19900)) - **New Resource:** `google_apigee_app_group` ([#​19921](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19921)) - **New Resource:** `google_apigee_developer` ([#​19911](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19911)) - **New Resource:** `google_network_connectivity_group` ([#​19902](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19902)) IMPROVEMENTS: - compute: `google_compute_network_firewall_policy_association` now uses MMv1 engine instead of DCL. ([#​19976](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19976)) - compute: `google_compute_region_network_firewall_policy_association` now uses MMv1 engine instead of DCL. ([#​19976](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19976)) - compute: added `creation_timestamp` field to `google_compute_instance`, `google_compute_instance_template`, `google_compute_region_instance_template` ([#​19906](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19906)) - compute: added `key_revocation_action_type` to `google_compute_instance` and related resources ([#​19952](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19952)) - looker: added `deletion_policy` to `google_looker_instance` to allow force-destroying instances with nested resources by setting `deletion_policy = FORCE` ([#​19924](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19924)) - monitoring: added `alert_strategy.notification_prompts` field to `google_monitoring_alert_policy` ([#​19928](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19928)) - storage: added `hierarchical_namespace` to `google_storage_bucket` resource ([#​19882](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19882)) - sql: removed the client-side default of `ENTERPRISE` for `edition` in `google_sql_database_instance` so that `edition` is determined by the API when unset. This will cause new instances to use `ENTERPRISE_PLUS` as the default for POSTGRES\_16. ([#​19977](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19977)) - vmwareengine: added `autoscaling_settings` to `google_vmwareengine_cluster` resource ([#​19962](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19962)) - workstations: added `max_usable_workstations` field to `google_workstations_workstation_config` resource. ([#​19872](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19872)) BUG FIXES: - compute: fixed an issue where immutable `distribution_zones` was incorrectly sent to the API when updating `distribution_policy_target_shape` in `google_compute_region_instance_group_manager` resource ([#​19949](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19949)) - container: fixed a crash in `google_container_node_pool` caused by an occasional nil pointer ([#​19922](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19922)) - essentialcontacts: fixed `google_essential_contacts_contact` import to include required parent field. ([#​19877](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19877)) - sql: made `google_sql_database_instance.0.settings.0.data_cache_config` accept server-side changes when unset. When unset, no diffs will be created when instances change in `edition` and the feature is enabled or disabled as a result. ([#​19972](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19972)) - storage: removed retry on 404s during refresh for `google_storage_bucket`, preventing hanging when refreshing deleted buckets ([#​19964](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19964)) ### [`v6.8.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#680-October-21-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v6.7.0...v6.8.0) FEATURES: - **New Data Source:** `google_oracle_database_cloud_exadata_infrastructure` ([#​19856](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19856)) - **New Data Source:** `google_oracle_database_cloud_vm_cluster` ([#​19859](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19859)) - **New Data Source:** `google_oracle_database_db_nodes` ([#​19871](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19871)) - **New Data Source:** `google_oracle_database_db_servers` ([#​19823](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19823)) - **New Resource:** `google_oracle_database_autonomous_database` ([#​19860](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19860)) - **New Resource:** `google_oracle_database_cloud_exadata_infrastructure` ([#​19798](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19798)) - **New Resource:** `google_oracle_database_cloud_vm_cluster` ([#​19837](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19837)) - **New Resource:** `google_transcoder_job_template` ([#​19854](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19854)) - **New Resource:** `google_transcoder_job` ([#​19854](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19854)) IMPROVEMENTS: - cloudfunctions: increased the timeouts to 20 minutes for `google_cloudfunctions_function` resource ([#​19799](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19799)) - cloudrunv2: added `invoker_iam_disabled` field to `google_cloud_run_v2_service` ([#​19833](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19833)) - compute: made `google_compute_network_firewall_policy_rule` use MMv1 engine instead of DCL. ([#​19862](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19862)) - compute: made `google_compute_region_network_firewall_policy_rule` use MMv1 engine instead of DCL. ([#​19862](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19862)) - compute: added `ip_address_selection_policy` field to `google_compute_backend_service` and `google_compute_region_backend_service`. ([#​19863](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19863)) - compute: added `provisioned_throughput` field to `google_compute_instance_template` resource ([#​19852](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19852)) - compute: added `provisioned_throughput` field to `google_compute_region_instance_template` resource ([#​19852](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19852)) - container: added support for additional values `KCP_CONNECTION`, and `KCP_SSHD`in `google_container_cluster.logging_config` ([#​19812](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19812)) - dialogflowcx: added `advanced_settings.logging_settings` and `advanced_settings.speech_settings` to `google_dialogflow_cx_agent` and `google_dialogflow_cx_flow` ([#​19801](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19801)) - networkconnectivity: added `linked_producer_vpc_network` field to `google_network_connectivity_spoke` resource ([#​19806](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19806)) - secretmanager: added `is_secret_data_base64` field to `google_secret_manager_secret_version` and `google_secret_manager_secret_version_access` datasources ([#​19831](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19831)) - secretmanager: added `is_secret_data_base64` field to `google_secret_manager_regional_secret_version` and `google_secret_manager_regional_secret_version_access` datasources ([#​19831](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19831)) - spanner: added `kms_key_names` to `encryption_config` in `google_spanner_database` ([#​19846](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19846)) - workstations: added `max_usable_workstations` field to `google_workstations_workstation_config` resource ([#​19872](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19872)) - workstations: added field `allowed_ports` to `google_workstations_workstation_config` ([#​19845](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19845)) BUG FIXES: - bigquery: fixed a regression that caused `google_bigquery_dataset_iam_*` resources to attempt to set deleted IAM members, thereby triggering an API error ([#​19857](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19857)) - compute: fixed an issue in `google_compute_backend_service` and `google_compute_region_backend_service` to allow sending `false` for `iap.enabled` ([#​19795](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19795)) - container: `node_config.linux_node_config`, `node_config.workload_metadata_config` and `node_config.kubelet_config` will now successfully send empty messages to the API when `terraform plan` indicates they are being removed, rather than null, which caused an error. The sole reliable case is `node_config.linux_node_config` when the block is removed, where there will still be a permadiff, but the update request that's triggered will no longer error and other changes displayed in the plan should go through. ([#​19842](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19842)) - pubsub: fixed permadiff with configuring an empty `retry_policy` in `google_pubsub_subscription` ([#​19784](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19784)) ### [`v6.7.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#670-October-14-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v6.6.0...v6.7.0) FEATURES: - **New Resource:** `google_healthcare_pipeline_job` ([#​19717](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19717)) - **New Resource:** `google_secure_source_manager_branch_rule` ([#​19773](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19773)) IMPROVEMENTS: - container: `google_container_cluster` will now accept server-specified values for `node_pool_auto_config.0.node_kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​19817](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19817)) - discoveryengine: added `chat_engine_config.dialogflow_agent_to_link` field to `google_discovery_engine_chat_engine` resource ([#​19723](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19723)) - networkconnectivity: added field `migration` to resource `google_network_connectivity_internal_range` ([#​19757](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19757)) - networkservices: added `routing_mode` field to `google_network_services_gateway` resource ([#​19764](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19764)) BUG FIXES: - bigtable: fixed an error where BigTable IAM resources could be created with conditions but the condition was not stored in state ([#​19725](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19725)) - container: fixed issue which caused to not being able to disable `enable_cilium_clusterwide_network_policy` field on `google_container_cluster`. ([#​19736](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19736)) - container: fixed a diff triggered by a new API-side default value for `node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled`. Terraform will now accept server-specified values for `node_config.0.kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​19817](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19817)) - dataproc: fixed a bug in `google_dataproc_cluster` that prevented creation of clusters with `internal_ip_only` set to false ([#​19782](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19782)) - iam: addressed `google_service_account` creation issues caused by the eventual consistency of the GCP IAM API by ignoring 403 errors returned on polling the service account after creation. ([#​19727](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19727)) - logging: fixed the whitespace permadiff on `exclusions.filter` field in `google_logging_billing_account_sink`, `google_logging_folder_sink`, `google_logging_organization_sink` and `google_logging_project_sink` resources ([#​19744](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19744)) - pubsub: fixed permadiff with configuring an empty `retry_policy`. ([#​19784](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19784)) - secretmanager: fixed the issue of unpopulated fields `labels`, `annotations` and `version_destroy_ttl` in the terraform state for the `google_secret_manager_secrets` datasource ([#​19748](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19748)) ### [`v6.6.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#660-October-7-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v6.5.0...v6.6.0) FEATURES: - **New Resource:** `google_dataproc_batch` ([#​19686](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19686)) - **New Resource:** `google_healthcare_pipeline_job` ([#​19717](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19717)) - **New Resource:** `google_site_verification_owner` ([#​19641](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19641)) IMPROVEMENTS: - assuredworkloads: added `HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS` and `HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS_WITH_US_SUPPORT` enum values to `compliance_regime` in the `google_assuredworkload_workload` resource ([#​19714](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19714)) - compute: added ` bgp_best_path_selection_mode `,`bgp_bps_always_compare_med` and ` bgp_bps_inter_region_cost ` fields to `google_compute_network` resource ([#​19708](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19708)) - compute: added ` next_hop_origin `,` next_hop_med ` and ` next_hop_inter_region_cost ` output fields to `google_compute_route` resource ([#​19708](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19708)) - compute: added enum `STATEFUL_COOKIE_AFFINITY` and `strong_session_affinity_cookie` field to `google_compute_backend_service` and `google_compute_region_backend_service` resource ([#​19665](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19665)) - compute: moved `TDX` instance option for `confidential_instance_type` in `google_compute_instance` from Beta to GA ([#​19706](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19706)) - containeraws: added `kubelet_config` field group to the `google_container_aws_node_pool` resource ([#​19714](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19714)) - pubsub: added GCS ingestion settings and platform log settings to `google_pubsub_topic` resource ([#​19669](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19669)) - sourcerepo: added `create_ignore_already_exists` field to `google_sourcerepo_repository` resource ([#​19716](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19716)) - sql: added in-place update support for `settings.time_zone` in `google_sql_database_instance` resource ([#​19654](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19654)) - tags: increased maximum accepted input length for the `short_name` field in `google_tags_tag_key` and `google_tags_tag_value` resources ([#​19712](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19712)) BUG FIXES: - bigquery: fixed `google_bigquery_dataset_iam_member` to be able to delete itself and overwrite the existing iam members for bigquery dataset keeping the authorized datasets as they are. ([#​19682](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19682)) - bigquery: fixed an error which could occur with service account field values containing non-lower-case characters in `google_bigquery_dataset_access` ([#​19705](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19705)) - compute: fixed an issue where the `boot_disk.initialize_params.resource_policies` field in `google_compute_instance` forced a resource recreation when used in combination with `google_compute_disk_resource_policy_attachment` ([#​19692](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19692)) - compute: fixed the issue that `labels` is not set when creating the resource `google_compute_interconnect` ([#​19632](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19632)) - tags: removed `google_tags_location_tag_binding` resource from the Terraform state when its parent resource has been removed outside of Terraform ([#​19693](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19693)) - workbench: fixed a bug in the `google_workbench_instance` resource where the removal of `labels` was not functioning as expected. ([#​19620](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19620))
hashicorp/terraform-provider-google-beta (google-beta) ### [`v6.10.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/blob/HEAD/CHANGELOG.md#6100-November-4-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v6.9.0...v6.10.0) FEATURES: - **New Data Source:** `google_compute_instance_guest_attributes` ([#​8556](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8556)) - **New Data Source:** `google_service_accounts` ([#​8532](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8532)) - **New Resource:** `google_iap_settings` ([#​8548](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8548)) IMPROVEMENTS: - apphub: added `GLOBAL` enum value to `scope.type` field in `google_apphub_application` resource ([#​8504](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8504)) - assuredworkloads: added `workload_options` field to `google_assured_workloads_workload` resource ([#​8495](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8495)) - backupdr: marked `networks` field optional in `google_backup_dr_management_server` resource ([#​8594](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8594)) - bigquery: added `external_catalog_dataset_options` fields to `google_bigquery_dataset` resource (beta) ([#​8558](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8558)) - bigquery: added descriptive validation errors for missing required fields in `google_bigquery_job` destination table configuration ([#​8542](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8542)) - compute: `desired_status` on google_compute_instance can now be set to `TERMINATED` or `SUSPENDED` on instance creation ([#​8515](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8515)) - compute: added `header_action` and `redirect_options` fields to `google_compute_security_policy_rule` resource ([#​8544](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8544)) - compute: added `interface.ipv6-address` field in `google_compute_external_vpn_gateway` resource ([#​8552](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8552)) - compute: added plan-time validation to `name` on `google_compute_instance` ([#​8520](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8520)) - compute: added support for `advanced_machine_features.turbo_mode` to `google_compute_instance`, `google_compute_instance_template`, and `google_compute_region_instance_template` ([#​8551](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8551)) - container: added in-place update support for `labels`, `resource_manager_tags` and `workload_metadata_config` in `google_container_cluster.node_config` ([#​8522](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8522)) - memorystore: added `mode` flag to `google_memorystore_instance` ([#​8498](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8498)) - resourcemanager: added `disabled` to `google_service_account` datasource ([#​8518](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8518)) - spanner: added `asymmetric_autoscaling_options` field to `google_spanner_instance` ([#​8503](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8503)) - sql: removed the client-side default of `ENTERPRISE` for `edition` in `google_sql_database_instance` so that `edition` is determined by the API when unset. This will cause new instances to use `ENTERPRISE_PLUS` as the default for POSTGRES\_16. ([#​8490](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8490)) - vmwareengine: added `autoscaling_settings` to `google_vmwareengine_private_cloud` resource ([#​8529](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8529)) BUG FIXES: - accesscontextmanager: fixed permadiff for perimeter ingress / egress rule resources ([#​8526](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8526)) - compute: fixed an error in `google_compute_region_security_policy_rule` that prevented updating the default rule ([#​8535](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8535)) - compute: fixed an error in `google_compute_security_policy_rule` that prevented updating the default rule ([#​8535](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8535)) - container: fixed missing in-place updates for some `google_container_cluster.node_config` subfields ([#​8522](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8522)) ### [`v6.9.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/blob/HEAD/CHANGELOG.md#690-October-28-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v6.8.0...v6.9.0) DEPRECATIONS: - containerattached: deprecated `security_posture_config` field in `google_container_attached_cluster` resource ([#​8446](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8446)) FEATURES: - **New Data Source:** `google_oracle_database_autonomous_database` ([#​8440](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8440)) - **New Data Source:** `google_oracle_database_autonomous_databases` ([#​8438](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8438)) - **New Data Source:** `google_oracle_database_cloud_exadata_infrastructures` ([#​8430](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8430)) - **New Data Source:** `google_oracle_database_cloud_vm_clusters` ([#​8437](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8437)) - **New Resource:** `google_apigee_app_group` ([#​8451](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8451)) - **New Resource:** `google_apigee_developer` ([#​8445](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8445)) - **New Resource:** `google_network_connectivity_group` ([#​8439](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8439)) IMPROVEMENTS: - compute: `google_compute_network_firewall_policy_association` now uses MMv1 engine instead of DCL. ([#​8489](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8489)) - compute: `google_compute_region_network_firewall_policy_association` now uses MMv1 engine instead of DCL. ([#​8489](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8489)) - compute: added `creation_timestamp` field to `google_compute_instance`, `google_compute_instance_template`, `google_compute_region_instance_template` ([#​8442](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8442)) - compute: added `key_revocation_action_type` to `google_compute_instance` and related resources ([#​8473](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8473)) - looker: added `deletion_policy` to `google_looker_instance` to allow force-destroying instances with nested resources by setting `deletion_policy = FORCE` ([#​8453](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8453)) - monitoring: added `alert_strategy.notification_prompts` field to `google_monitoring_alert_policy` ([#​8457](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8457)) - storage: added `hierarchical_namespace` to `google_storage_bucket` resource ([#​8428](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8428)) - sql: removed the client-side default of `ENTERPRISE` for `edition` in `google_sql_database_instance` so that `edition` is determined by the API when unset. This will cause new instances to use `ENTERPRISE_PLUS` as the default for POSTGRES\_16. ([#​8490](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8490)) - vmwareengine: added `autoscaling_settings` to `google_vmwareengine_cluster` resource ([#​8477](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8477)) - workstations: added `max_usable_workstations` field to `google_workstations_workstation_config` resource. ([#​8421](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8421)) BUG FIXES: - compute: fixed an issue where immutable `distribution_zones` was incorrectly sent to the API when updating `distribution_policy_target_shape` in `google_compute_region_instance_group_manager` resource ([#​8470](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8470)) - container: fixed a crash in `google_container_node_pool` caused by an occasional nil pointer ([#​8452](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8452)) - essentialcontacts: fixed `google_essential_contacts_contact` import to include required parent field. ([#​8423](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8423)) - sql: made `google_sql_database_instance.0.settings.0.data_cache_config` accept server-side changes when unset. When unset, no diffs will be created when instances change in `edition` and the feature is enabled or disabled as a result. ([#​8485](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8485)) - storage: removed retry on 404s during refresh for `google_storage_bucket`, preventing hanging when refreshing deleted buckets ([#​8478](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8478)) ### [`v6.8.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/blob/HEAD/CHANGELOG.md#680-October-21-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v6.7.0...v6.8.0) FEATURES: - **New Data Source:** `google_oracle_database_cloud_exadata_infrastructure` ([#​8407](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8407)) - **New Data Source:** `google_oracle_database_cloud_vm_cluster` ([#​8410](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8410)) - **New Data Source:** `google_oracle_database_db_nodes` ([#​8420](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8420)) - **New Data Source:** `google_oracle_database_db_servers` ([#​8389](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8389)) - **New Resource:** `google_oracle_database_autonomous_database` ([#​8411](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8411)) - **New Resource:** `google_oracle_database_cloud_exadata_infrastructure` ([#​8371](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8371)) - **New Resource:** `google_oracle_database_cloud_vm_cluster` ([#​8397](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8397)) - **New Resource:** `google_transcoder_job_template` ([#​8406](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8406)) - **New Resource:** `google_transcoder_job` ([#​8406](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8406)) IMPROVEMENTS: - cloudfunctions: increased the timeouts to 20 minutes for `google_cloudfunctions_function` resource ([#​8372](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8372)) - cloudrunv2: added `invoker_iam_disabled` field to `google_cloud_run_v2_service` ([#​8395](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8395)) - compute: made `google_compute_network_firewall_policy_rule` use MMv1 engine instead of DCL. ([#​8412](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8412)) - compute: made `google_compute_region_network_firewall_policy_rule` use MMv1 engine instead of DCL. ([#​8412](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8412)) - compute: added `ip_address_selection_policy` field to `google_compute_backend_service` and `google_compute_region_backend_service`. ([#​8413](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8413)) - compute: added `provisioned_throughput` field to `google_compute_instance_template` resource ([#​8405](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8405)) - compute: added `provisioned_throughput` field to `google_compute_region_instance_template` resource ([#​8405](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8405)) - container: `google_container_cluster` will now accept server-specified values for `node_pool_auto_config.0.node_kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​8385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8385)) - container: added support for additional values `KCP_CONNECTION`, and `KCP_SSHD`in `google_container_cluster.logging_config` ([#​8381](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8381)) - dialogflowcx: added `advanced_settings.logging_settings` and `advanced_settings.speech_settings` to `google_dialogflow_cx_agent` and `google_dialogflow_cx_flow` ([#​8374](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8374)) - networkconnectivity: added `linked_producer_vpc_network` field to `google_network_connectivity_spoke` resource ([#​8376](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8376)) - secretmanager: added `is_secret_data_base64` field to `google_secret_manager_secret_version` and `google_secret_manager_secret_version_access` datasources ([#​8394](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8394)) - secretmanager: added `is_secret_data_base64` field to `google_secret_manager_regional_secret_version` and `google_secret_manager_regional_secret_version_access` datasources ([#​8394](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8394)) - spanner: added `kms_key_names` to `encryption_config` in `google_spanner_database` ([#​8403](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8403)) - workstations: added `max_usable_workstations` field to `google_workstations_workstation_config` resource ([#​8421](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8421)) - workstations: added field `allowed_ports` to `google_workstations_workstation_config` ([#​8402](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8402)) BUG FIXES: - bigquery: fixed a regression that caused `google_bigquery_dataset_iam_*` resources to attempt to set deleted IAM members, thereby triggering an API error ([#​8408](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8408)) - compute: fixed an issue in `google_compute_backend_service` and `google_compute_region_backend_service` to allow sending `false` for `iap.enabled` ([#​8369](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8369)) - container: `node_config.linux_node_config`, `node_config.workload_metadata_config` and `node_config.kubelet_config` will now successfully send empty messages to the API when `terraform plan` indicates they are being removed, rather than null, which caused an error. The sole reliable case is `node_config.linux_node_config` when the block is removed, where there will still be a permadiff, but the update request that's triggered will no longer error and other changes displayed in the plan should go through. ([#​8400](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8400)) - pubsub: fixed permadiff with configuring an empty `retry_policy` in `google_pubsub_subscription` ([#​8365](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8365)) ### [`v6.7.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/blob/HEAD/CHANGELOG.md#670-October-14-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v6.6.0...v6.7.0) FEATURES: - **New Resource:** `google_healthcare_pipeline_job` ([#​8330](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8330)) - **New Resource:** `google_secure_source_manager_branch_rule` ([#​8360](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8360)) IMPROVEMENTS: - container: `google_container_cluster` will now accept server-specified values for `node_pool_auto_config.0.node_kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​8385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8385)) - discoveryengine: added `chat_engine_config.dialogflow_agent_to_link` field to `google_discovery_engine_chat_engine` resource ([#​8333](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8333)) - networkconnectivity: added field `migration` to resource `google_network_connectivity_internal_range` ([#​8350](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8350)) - networkservices: added `routing_mode` field to `google_network_services_gateway` resource ([#​8355](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8355)) BUG FIXES: - bigtable: fixed an error where BigTable IAM resources could be created with conditions but the condition was not stored in state ([#​8334](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8334)) - container: fixed issue which caused to not being able to disable `enable_cilium_clusterwide_network_policy` field on `google_container_cluster`. ([#​8338](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8338)) - container: fixed a diff triggered by a new API-side default value for `node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled`. Terraform will now accept server-specified values for `node_config.0.kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​8385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8385)) - dataproc: fixed a bug in `google_dataproc_cluster` that prevented creation of clusters with `internal_ip_only` set to false ([#​8363](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8363)) - iam: addressed `google_service_account` creation issues caused by the eventual consistency of the GCP IAM API by ignoring 403 errors returned on polling the service account after creation. ([#​8336](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8336)) - logging: fixed the whitespace permadiff on `exclusions.filter` field in `google_logging_billing_account_sink`, `google_logging_folder_sink`, `google_logging_organization_sink` and `google_logging_project_sink` resources ([#​8343](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8343)) - pubsub: fixed permadiff with configuring an empty `retry_policy`. ([#​8365](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8365)) - secretmanager: fixed the issue of unpopulated fields `labels`, `annotations` and `version_destroy_ttl` in the terraform state for the `google_secret_manager_secrets` datasource ([#​8346](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8346)) ### [`v6.6.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/blob/HEAD/CHANGELOG.md#660-October-7-2024) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v6.5.0...v6.6.0) FEATURES: - **New Resource:** `google_dataproc_batch` ([#​8306](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8306)) - **New Resource:** `google_healthcare_pipeline_job` ([#​8330](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8330)) - **New Resource:** `google_site_verification_owner` ([#​8287](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8287)) IMPROVEMENTS: - assuredworkloads: added `HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS` and `HEALTHCARE_AND_LIFE_SCIENCES_CONTROLS_WITH_US_SUPPORT` enum values to `compliance_regime` in the `google_assured_workloads_workload` resource ([#​8326](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8326)) - compute: added ` bgp_best_path_selection_mode `,`bgp_bps_always_compare_med` and ` bgp_bps_inter_region_cost ` fields to `google_compute_network` resource ([#​8321](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8321)) - compute: added ` next_hop_origin `,` next_hop_med ` and ` next_hop_inter_region_cost ` output fields to `google_compute_route` resource ([#​8321](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8321)) - compute: added enum `STATEFUL_COOKIE_AFFINITY` and `strong_session_affinity_cookie` field to `google_compute_backend_service` and `google_compute_region_backend_service` resource ([#​8296](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8296)) - compute: added `TDX` instance option for `confidential_instance_type` in `google_compute_instance` ([#​8320](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8320)) - containeraws: added `kubelet_config` field group to the `google_container_aws_node_pool` resource ([#​8326](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8326)) - dataproc: switched to the v1 API for `google_dataproc_autoscaling_policy` resource ([#​8306](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8306)) - pubsub: added GCS ingestion settings and platform log settings to `google_pubsub_topic` resource ([#​8298](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8298)) - sourcerepo: added `create_ignore_already_exists` field to `google_sourcerepo_repository` resource ([#​8329](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8329)) - sql: added in-place update support for `settings.time_zone` in `google_sql_database_instance` resource ([#​8293](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8293)) - tags: increased maximum accepted input length for the `short_name` field in `google_tags_tag_key` and `google_tags_tag_value` resources ([#​8324](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8324)) BUG FIXES: - bigquery: fixed `google_bigquery_dataset_iam_member` to be able to delete itself and overwrite the existing iam members for bigquery dataset keeping the authorized datasets as they are. ([#​8304](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8304)) - bigquery: fixed an error which could occur with service account field values containing non-lower-case characters in `google_bigquery_dataset_access` ([#​8319](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8319)) - compute: fixed an issue where the `boot_disk.initialize_params.resource_policies` field in `google_compute_instance` forced a resource recreation when used in combination with `google_compute_disk_resource_policy_attachment` ([#​8309](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8309)) - compute: fixed the issue that `labels` was not set when creating the resource `google_compute_interconnect` ([#​8284](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8284)) - tags: removed `google_tags_location_tag_binding` resource from the Terraform state when its parent resource has been removed outside of Terraform ([#​8310](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8310)) - workbench: fixed a bug in the `google_workbench_instance` resource where the removal of `labels` was not functioning as expected. ([#​8280](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8280))

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

â™» Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.



This PR was generated by Mend Renovate. View the repository job log.