fix(deps): update terraform (major)

[renovate-bot]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change
google (source)	required_provider	major	6.24.0 → 7.24.0
kubernetes (source)	required_provider	major	2.36.0 → 3.0.1
terraform-google-modules/kubernetes-engine/google (source)	module	major	36.0.2 → 44.0.0

---

Release Notes

hashicorp/terraform-provider-google (google)

v7.24.0

Compare Source

DEPRECATIONS:

• iamworkforcepool: deprecated extended_attributes_oauth2_client on google_iam_workforce_pool_provider. Use scim_usage instead. (#​26388)

FEATURES:

• New Resource: google_biglake_iceberg_table (#​26394)
• New Resource: google_contact_center_insights_auto_labeling_rule (#​26426)
• New Resource: google_observability_trace_scope (#​26428)
• New Resource: google_sql_provision_script (#​26432)

IMPROVEMENTS:

• ces: added Service Account OAuth scopes fields to google_ces_toolset resource (#​26368)
• cloudrunv2: added DISK fields to google_cloud_run_v2_service resource (#​26418)
• cloudsql: added max_custom_on_demand_retention_days field to sqladmin resource (#​26407)
• compute: added ForwardProxy field in google_compute_region_backend_service resource (#​26449)
• compute: added accelerator_topology_mode field to google_compute_resource_policy resource (#​26383)
• compute: added target_type and target_forwarding_rules on google_compute_region_network_firewall_policy_rule resource (#​26369)
• compute: promoted the endpoint_url field in google_compute_service_attachment to GA (#​26434)
• container: marked subnetwork as settable in google_container_node_pool (#​26416)
• container: added disruption_budget field to google_container_cluster resource (#​26425)
• discoveryengine: added search_engine_config.required_subscription_tier field to google_discovery_engine_search_engine resource (#​26398)
• discoveryengine: marked content_config as optional field in google_discovery_engine_data_store (#​26398)
• memorystore: added server_ca_mode and server_ca_pool fields to google_memorystore_instance resource (#​26437)
• networkservices: relaxed authority validation in google_network_services_authz_extension for different target types (#​26386)
• redis: added server_ca_mode and server_ca_pool fields to google_redis_cluster resource (#​26437)
• sql: added clone_context.source_project field to google_sql_database_instance resource to support cross project clone (beta) (#​26384)
• transport: added automatic retry for GCE 403 errors with reason CONCURRENT_OPERATIONS_QUOTA_EXCEEDED (#​26417)

BUG FIXES:

• compute: fixed perpetual diff for oauth2_client_id in iap block of google_compute_backend_service and google_compute_region_backend_service when disabling IAP (#​26385)
• datastream: fixed an issue in google_datastream_stream where source_config.mysql_source_config.binary_log_position would show a diff when unset (#​26435)
• workbench: marked install-nvidia-driver metadata key as settable for google_workbench_instance (#​26402)

v7.23.0

Compare Source

DEPRECATIONS:

• notebooks: google_notebooks_environment is deprecated and will be removed in a future major release. Use google_workbench_instance instead (#​26288)
• provider: google_*_iam_* resources and datasources will now show deprecation messages when their parent resource has been deprecated (#​26288)

FEATURES:

• New Data Source: google_oracle_database_odb_network (#​26290)
• New Data Source: google_oracle_database_odb_subnet (#​26290)
• New Resource: google_vector_search_collection (ga) (#​26353)

IMPROVEMENTS:

• alloydb: added dataplex_config field to google_alloydb_cluster resource (#​26304)
• biglake: added primary_location to google_biglake_iceberg_catalog resource (#​26307)
• compute: added params field to google_compute_external_vpn_gateway resource (ga) (#​26348)
• compute: added params field to google_compute_ha_vpn_gateway resource (ga) (#​26348)
• compute: added params field to google_compute_vpn_gateway resource (ga) (#​26348)
• compute: added params field to google_compute_vpn_tunnel resource (ga) (#​26348)
• compute: added storage_pool support to google_compute_instance_template and google_compute_region_instance_template disks (#​26347)
• container: added control_plane_disk_encryption_key_versions field to user_managed_keys_config in google_container_cluster resource (#​26289)
• dataproc: added cluster_type to google_dataproc_cluster resource (#​26350)
• dlp: added actions.publish_to_scc, actions.publish_to_chronicle, actions.export_data.sample_findings_table and targets.big_query_target.filter.table_reference.project_id fields to google_data_loss_prevention_discovery_config resource (#​26281)
• gkebackup: added protected_namespace_count field to google_gke_backup_backup_plan resource (#​26283)
• netapp: added mode field to google_netapp_storage_pool resource (#​26319)
• osconfig: added patch_config.skip_unpatchable_vms field to google_os_config_patch_deployment resource (#​26282)
• pubsub: added text_config field to google_pubsub_subscription resource (#​26329)

BUG FIXES:

• tags: fixed iam read-after-write consistency issue with conditions in google_tags_tag_key_iam_member resource (#​26330)

v7.22.0

Compare Source

DEPRECATIONS:

• dataplex: deprecated google_dataplex_data_asset. Use google_dataplex_data_product_data_asset instead. (#​26256)

FEATURES:

• New Resource: google_compute_organization_security_policy_rule (#​26202)
• New Resource: google_hypercomputecluster_cluster (#​26180)

IMPROVEMENTS:

• compute: initialize_params.size is now updatable in-place in the google_compute_instance resource (#​26195)
• compute: added dest_network_context, src_network_context and src_networks fields to google_compute_firewall_policy_rule resource (#​26227)
• compute: added dest_network_context, src_network_context and src_networks fields to google_compute_network_firewall_policy_rule resource (#​26227)
• compute: added dest_network_context, src_network_context and src_networks fields to google_compute_region_network_firewall_policy_rule resource (#​26227)
• container: promoted sandbox_config field in google_container_cluster and google_container_node_pool resources to GA (#​26247)
• developerconnect: added http_config field to google_developer_connect_connection resource (#​26232)
• filestore: added source_backupdr_backup field to google_filestore_instance resource (#​26238)
• gkehub2: added field spec.workloadidentity to resource google_gke_hub_feature (#​26259)
• iam: added AZURE_AD_GROUPS_DISPLAY_NAME enum value to extra_attributes_oauth2_client.attribute-type field in google_iam_workforce_pool_provider resource (#​26226)
• kms: added a KMS AutokeyConfig-specific 10s post-create/post-update (#​26236)
• networksecurity: added url_filtering_profile field to google_network_security_security_profile_group resource (#​26266)
• networksecurity: added url_filtering_profile field to google_network_security_security_profile resource (#​26266)
• networkservices: added support for use of multiple ports for google_network_services_gateway resources of type SECURE_WEB_GATEWAY (#​26265)
• sql: added auto_upgrade_enabled field to google_sql_database_instance resource. (#​26205)
• sql: added data_api_access field to google_sql_database_instance resource (#​26217)
• sql: added enhanced_query_insights_enabled field to google_sql_database_instance resource (#​26244)

BUG FIXES:

• datastream: fixed permadiff where google_datastream_connection_profile.salesforce_profile.oauth2_client_credentials.client_id is not read properly from the API (#​26201)
• servicenetworking: added retry when creating google_service_networking_connection if it looks like the service account permissions haven't yet propagated (#​26220)

v7.21.0

Compare Source

v7.20.0

Compare Source

FEATURES:

• New Data Source: google_access_context_manager_supported_service (#​26092)
• New Data Source: google_access_context_manager_supported_services (#​26092)
• New Data Source: google_backup_dr_data_sources (#​26080)
• New Data Source: google_kms_secret_asymmetric (#​26096)
• New Data Source: google_storage_bucket_object_contents (#​26054)
• New Resource: google_biglake_iceberg_namespace (#​26076)
• New Resource: google_compute_rollout_plan (#​26093)
• New Resource: google_oracle_database_exadb_vm_cluster (#​26021)
• New Resource: google_vector_search_collection (#​26098)

IMPROVEMENTS:

• alloydb: added write-only support for initial_user.password_wo to google_alloydb_cluster (#​26074)
• ces: added mcp_toolset field to google_ces_toolset resource (#​26025)
• compute: added allow_subnet_cidr_routes_overlap field to google_compute_subnetwork resource (#​26019)
• compute: added write-only support for private_key to google_compute_region_ssl_certificate resource (#​26072)
• compute: added write-only support for private_key to google_compute_ssl_certificate resource (#​26072)
• compute: added enable field to google_compute_packet_mirroring resource (#​26064)
• compute: added params field to google_compute_external_vpn_gateway resource (#​26089)
• compute: added params field to google_compute_ha_vpn_gateway resource (#​26089)
• compute: added params field to google_compute_interconnect_attachment resource (#​26042)
• compute: added params field to google_compute_vpn_gateway resource (#​26089)
• compute: added params field to google_compute_vpn_tunnel resource (#​26089)
• compute: added slice_controller_config field to google_container_cluster resource (#​26023)
• container: added additional_ip_ranges_config.status to google_container_cluster resource (#​26061)
• dataproc: added instance_flexibility_policy to master_config and worker_config in google_dataproc_cluster resource (#​26058)
• developerconnect: added target_projects field to google_developer_connect_insights_config resource (#​26073)
• filestore: added replica_action to google_filestore_instance resource (#​26082)
• networksecurity: added policy_profile, http_rules.0.to.0.operations.0.mcp to google_network_security_authz_policy resource (#​26090)
• networkservices: added ull_multicast_domain field to google_network_services_multicast_domain resource (#​26071)
• networkservices: relaxed load_balancing_scheme validation to support non-Backend Service targets in google_network_services_authz_extension (#​26090)
• spanner: added support for user_project_override in google_spanner_database_iam and google_spanner_instance_iam resources (#​26052)
• vmwareengine: added datastore_mount_config field to google_vmwareengine_cluster resource (#​26083)

BUG FIXES:

• bigquery: fixed permadiff with the collation field in google_bigquery_table.schema when it inherits the value from google_bigquery_dataset.default_collation (#​26065)
• bigqueryanalyticshub: fixed update failure for replica_locations in google_bigquery_analytics_hub_listing (#​26046)
• iam: fixed an issue where iam resources not retry on error 409 concurrent policy changes (#​26095)
• publicca: fixed mac_key fields not being properly set in google_public_ca_external_account_key (#​26099)

v7.19.0

Compare Source

DEPRECATIONS:

• backupdr: google_backupdr_restore_workload.name is deprecated and will be removed in a future major release. The backup is identified by the parameters (location, backup_vault_id, data_source_id, backup_id). (#​25986)
• publicca: google_public_ca_external_account_key.b64url_mac_key is deprecated and will be removed in a future major release. Use mac_key instead. (#​25964)

FEATURES:

• New Resource: google_network_security_mirroring_endpoint (#​25988)
• New Resource: google_network_security_mirroring_endpoint_group (#​25988)
• New Resource: google_backup_dr_restore_workload (#​26013)

IMPROVEMENTS:

• compute: added network_pass_through_lb_traffic_policy field to google_compute_region_backend_service resource (#​25994)
• compute: added RDMA_FALCON_POLICY and ULL_POLICY values to policy_type field in google_compute_region_network_firewall_policy, google_compute_region_network_firewall_policy_with_rules (#​25985)
• compute: added support for network_interface.network_attachment to google_compute_instance_template (#​25995)
• compute: added support for network_interface.network_attachment to google_compute_region_instance_template (#​25995)
• compute: added support for network_interface.vlan to google_compute_instance_template, enabling dynamic NIC (#​25995)
• compute: added support for network_interface.vlan to google_compute_instance, enabling dynamic NIC. Creating and deleting from an existing instance is not yet supported. (#​25995)
• compute: added support for network_interface.vlan to google_compute_region_instance_template, enabling dynamic NIC (#​25995)
• discoveryengine: added knowledge_graph_config field to google_discovery_engine_search_engine resource (#​25980)
• firestore: added firestore_data_access_mode, mongodb_compatible_data_acess_mode, and realtime_updates_mode fields to the google_firestore_database resource (#​26000)
• firestore: added deletion_policy virtual field to google_firestore_index resource (#​25984)
• monitoring: added write-only variants (auth_token_wo + auth_token_wo_version, password_wo + password_wo_version, service_key_wo + service_key_wo_version) for google_monitoring_notification_channel.sensitive_labels (#​25983)
• networkconnectivity: added support for update operation on google_network_connectivity_gateway_advertised_route resource (#​25945)
• provider: added a configurable poll_interval field to the provider for rare cases where it is being used in latency-sensitive situations. This can be set to a custom duration to change operation polling intervals. The default is unchanged, at 10s. (#​26008)
• publicca: added mac_key to google_public_ca_external_account_key (#​25964)
• run: added readiness_probe field to google_cloud_run_v2_service resource (#​26003)
• vertexai: added support for developer_connect_source to spec.source_code_spec in google_vertex_ai_reasoning_engine (#​26011)

BUG FIXES:

• compute: fixed issue where it wasn't possible to set both ssl_certificates and certificate_map in google_compute_target_ssl_proxy (#​26012)
• container: fixed an issue when toggling default_compute_class_enabled in google_container_cluster with Autopilot enabled (#​25966)
• firebaseailogic: fixed bug in google_firebase_ai_logic_config.generative_language_config.api_key_wo where the value set wouldn't be sent to the API. (#​25983)
• publicca: fixed b64url_mac_key sometimes being empty in google_public_ca_external_account_key (#​25964)

v7.18.0

Compare Source

BREAKING CHANGES:

• alloydb: removed the incorrect top-level field last_successful_backup_consistency_time from google_backup_dr_backup_plan_association. No value has been present in this output-only field. (#​25928)

FEATURES:

• New Resource: google_dataplex_data_asset (#​25922)
• New Resource: google_logging_saved_query (#​25921)

IMPROVEMENTS:

• alloydb: added restore_backupdr_backup_source, restore_backupdr_pitr_source, and backupdr_backup_source to google_alloydb_cluster (#​25928)
• alloydb: added rules_config_info.last_successful_backup_consistency_time to google_backup_dr_backup_plan_association (#​25928)
• compute: updated target_service field to support update-in-place in google_compute_service_attachment resource (#​25924)
• datafusion: added patch_revision field to google_data_fusion_instance resource (#​25923)
• firestore: added skip_wait field to google_firestore_index resource, skipping the wait for index creation (#​25934)
• gkeonprem: added skip_validations field to google_gkeonprem_vmware_cluster resource (#​25917)
• sql: added database_role field and iam_email field to google_sql_user resource to support managing Cloud SQL users with database roles. (#​25926)

BUG FIXES:

• cloudbuild: fixed google_cloudbuild_trigger to allow creation without source configuration for manual triggers (#​25925)
• cloudrunv2: fix permadiff on scaling.scaling_mode in google_cloud_run_v2_worker_pool (#​25927)
• compute: resolved issues where show_nat_ips and nat_ips in google_compute_service_attachment were causing test failures due to an underlying API problem. These fields are now temporarily non-functional and will be ignored. (#​25908)
• container: fixed a bug in google_container_node_pool that prevented creation when blue_green_settings was specified (#​25916)
• container: fixed perma-diff in google_container_cluster when setting resource_limits with disabled node autoprovisioning (#​25929)

v7.17.0

Compare Source

BREAKING CHANGES:

• networkconnectivity: changed services in google_network_connectivity_multicloud_data_transfer_config from TypeList to TypeSet. The order of or value of interpolations referencing the field may change. (#​25767)

FEATURES:

• New Resource: google_dataplex_data_product (#​25844)
• New Resource: google_dialogflow_cx_tool_version (#​25809)
• New Resource: google_firebase_ai_logic_config (#​25846)
• New Resource: google_firebase_ai_logic_prompt_template (#​25862)
• New Resource: google_firebase_ai_logic_prompt_template_lock (#​25877)
• New Resource: google_saas_runtime_unit_operation (#​25760)
• New Resource: google_vmwareengine_datastore (#​25845)
• New Data Source: google_vmwareengine_datastore (#​25845)

IMPROVEMENTS:

• backupdr: added support for restore compute instance and disk (#​25723)
• bigquery: added source_column_match field to csv_options in google_bigquery_table resource (#​25868)
• compute: added FIPS_202205 enum to PROFILE field in SSL_POLICY and REGION_SSL_POLICY resources, and added TLS_1_3 enum to MIN_TLS_VERSION field in SSL_POLICY and REGION_SSL_POLICY resources. (#​25777)
• compute: added attachments field to google_compute_interconnect_attachment_group.logicalStructure.regions.metros.facilities.zones and deprecated attachment field (#​25842)
• compute: added enable_enhanced_ipv4_allocation field to google_compute_public_delegated_prefix resource (#​25732)
• compute: added ip_collection field to google_compute_address resource (#​25732)
• compute: added source_instant_snapshot field to google_compute_snapshot resource (#​25780)
• compute: added support for "IF_L2_FORWARDING" as a value for the availableFeatures field of the google_compute_interconnect resource (#​25751)
• compute: added support for "IF_L2_FORWARDING" as a value for the requestedFeatures field of the google_compute_interconnect resource (#​25751)
• compute: added support for "L2_DEDICATED" as a value for the type field of the google_compute_interconnect_attachment resource. (#​25751)
• compute: added support for igmp_query field in google_compute_instance, google_compute_instance_template, and related instance resources. (#​25752)
• compute: added support for the l2Forwarding field to google_compute_interconnect_attachment (#​25751)
• compute: promoted request_body_inspection_size to GA in google_compute_security_policy resource (ga) (#​25775)
• container: added accelerator_network_config field to node_pool resource (#​25856)
• container: added managed_opentelemetry_config to google_container_cluster resource (#​25861)
• container: added node_drain_config field to google_container_node_pool resources (#​25791)
• container: improved google_container_cluster reconciliation time by caching node pools and instance group managers after a list call instead of getting each one seperately. (#​25784)
• datastream: added backfill_all.spanner_excluded_objects and source_config.spanner_source_config fields to google_datastream_stream (#​25804)
• datastream: added spanner_profile field to google_datastream_connection_profile (#​25804)
• dialogflowcx: added serviceAccountAuthConfig field to google_dialogflow_cx_webhook resource (#​25781)
• oracledatabase: added peerAutonomousDatabases, disasterRecoverySupportedLocations, sourceConfig fields to Autonomous database resource. (#​25859)
• tags: added allowed_values_regex field to google_tags_tag_key resource (#​25869)
• tags: added support for dynamic tag keys in google_tags_tag_binding and google_tags_location_tag_binding resources (#​25874)
• vertex_ai: added deployment_spec.psc_interface_config to google_vertex_ai_reasoning_engine (#​25765)

BUG FIXES:

• bigquery: fixed permadiff with the collation field in google_bigquery_table.schema (#​25762)
• cloudasset: fixed bug in google_cloud_asset_folder_feed where folder_id was always empty (#​25798)
• cloudbuild: fixed permadiff on google_cloudbuild_trigger.pubsub_config.service_account_email (#​25792)
• compute: fix crash when specifying an empty instance_flexibility_policy block on the google_compute_region_instance_group_manager resource (#​25731)
• compute: fixed a permadiff that could occur when using mixed short and long form IPv6 addresses in the source_ranges field of google_compute_firewall (#​25867)
• iambeta: fixed a permadiff that could occur in the jwks_json field for google_iam_workload_identity_pool_provider resource (#​25847)
• netapp: fixed export_policy update bug with squash_mode in netapp volume (#​25776)
• networkconnectivity: fixed a diff on services in google_network_connectivity_multicloud_data_transfer_config reordering elements (#​25767)
• sql: fixed an issue where transient server errors caused false failures for SQL operations that eventually completed successfully (#​25735)
• workbench: made enable-jupyterlab4 metadata key settable for google_workbench_instance (#​25769)

v7.16.0

Compare Source

DEPRECATIONS:

• cloudrunv2: deprecated custom_audience field in the google_cloud_run_v2_worker_pool resource, as this field is not applicable to the WorkerPools resource (#​25688)

FEATURES:

• New Data Source: google_compute_routers (#​25715)
• New Resource: google_backup_dr_restore_workload (#​25723)

IMPROVEMENTS:

• backupdr: added max_custom_on_demand_retention_days field to google_backup_dr_backup_plan resource (#​25704)
• bigquery: added support for merge and update operations for dataPolicies in schema field in google_bigquery_table resource when ignore_schema_changes is defined (#​25721)
• bigtable: added etag field to google_bigtable_schema_bundle resource (#​25687)
• compute: added BPS_400G enum value to bandwidth field in google_compute_interconnect_attachment resource (#​25714)
• container: added registry_hosts field to containerd_config in google_container_cluster and google_container_node_pool resources (#​25705)
• dataplex: added one_time field to google_dataplex_datascan resource (#​25695)
• datastream: added postgresql_profile.ssl_config to google_datastream_connection_profile resource (#​25671)
• networkservices: added EXT_AUTHZ_GRPC enum value to wire_format field in google_network_services_authz_extension resource (#​25706)
• networkservices: added disable_placement_policy field to google_network_services_multicast_domain_activation resource (#​25720)
• networkservices: added metadata, supported_events, request_body_send_mode, and observability_mode fields to google_network_services_lb_route_extension resource (#​25702)
• securitycenterv2: added support for supplying location values other than "GLOBAL" to the google_scc_v2_project_notification_config resource (#​25698)
• storageinsights: added activity_data_retention_period_days field to google_storage_insights_dataset_config resource (#​25703)
• workbench: added support to set post-startup script metadata keys with managed EUC in google_workbench_instance resource (#​25719)

v7.15.0

Compare Source

NOTES:

• lustre: increased delete and update operation timeouts from 20 minutes to 60 minutes for google_lustre_instance resource (#​25662)

BREAKING CHANGES:

• compute: changed cipher_suite fields in the google_compute_vpn_tunnel resource to track order (#​25657)

FEATURES:

• New Resource: google_apigee_security_feedback (#​25589)
• New Resource: google_apphub_boundary (#​25640)
• New Resource: google_biglake_iceberg_catalog_iam_binding (#​25638)
• New Resource: google_biglake_iceberg_catalog_iam_member (#​25638)
• New Resource: google_biglake_iceberg_catalog_iam_policy (#​25638)
• New Resource: google_biglake_iceberg_catalog (#​25528)
• New Resource: google_compute_organization_security_policy_association (#​25643)
• New Resource: google_network_connectivity_destination (#​25663)
• New Resource: google_network_connectivity_multicloud_data_transfer_config (#​25609)
• New Resource: google_network_security_dns_threat_detector (#​25634)

IMPROVEMENTS:

• backupdr: added ignore_read to encryption_config field in google_backup_dr_backup_vault resource (#​25685)
• biglakeiceberg: made google_biglake_iceberg_catalog use the resource project as the quota project when user_project_override is true (#​25638)
• composer: added new enum ENVIRONMENT_SIZE_EXTRA_LARGE to environment_size field to google_composer_environment resource (#​25531)
• compute: added candidate_cloud_router_ip_address, candidate_customer_router_ip_address, candidate_cloud_router_ipv6_address, and candidate_customer_router_ipv6_address fields to google_compute_interconnect_attachment resource (#​25581)
• compute: added prefix_length field to google_compute_addresses data source (#​25654)
• compute: added client_destination_port and instance fields to google_compute_region_network_endpoints resource (#​25621)
• datastream: added support for the rule_sets field in the google_datastream_stream resource, allowing configuration of customization rules, such as BigQuery destinations partitioning and clustering. (#​25529)
• iamworkforcepool: added hard_delete support in google_iam_workforce_pool_provider_scim_tenant resource (#​25656)
• looker: added periodic_export_config field to google_looker_instance resource (#​25610)
• lustre: added access_rules_options field to google_lustre_instance resource to support root squashing and IP-based access control configuration (#​25617)
• managedkafka: replaced disk_size_gb with disk_size_gib in broker_capacity_config within the google_managed_kafka_cluster resource (#​25613)
• networkservices: added state field to google_network_services_multicast_domain resource (#​25532)
• redis: added labels to google_redis_cluster (#​25639)
• sql: marked replication_cluster.psa_write_endpoint field as Computed in google_sql_database_instance resource (#​25573)
• sql: set replication_cluster when update google_sql_database_instance resource if there is a disaster recovery(DR) replica set or there is a PSA write endpoint (#​25573)
• storage: updated datasource google_storage_object_signed_url.signed_url to use virtual style hosted url (#​25568)
• vertexai: added bigtable, zone, encryption_spec, and bigtable_options fields to google_vertex_ai_feature_online_store resource (#​25601)
• vertexai: added psc_automation_configs to resource google_vertex_ai_index_endpoint (#​25570)

BUG FIXES:

• provider: fixed an issue where error type 409 and 412 were not being correctly retried. This commonly shows up in IAM resources, but can appear in other resources as well (#​25596)
• alloydb: fixed an issue where boolean fields were ignored when set to false for google_alloydb_cluster and google_alloydb_instance (#​25561)
• cloudrunv2: fixed a permadiff when default values of the scaling block were explicitly declared on the google_cloud_run_v2_service resource (#​25569)
• compute: fixed a crash in google_compute_disk/google_compute_region_disk when deleting a disk attached to an instance that had any scratch disks attached (#​25641)
• compute: fixed issue where endpoints.interconnects.vlan_tags wouldn't be read correctly from the API in google_compute_wire_group resource (#​25602)
• compute: fixed update logic that causes empty instance being sent for google_compute_network_endpoints (#​25621)
• datacatalog: fixed issue where fields.display_name wouldn't be read correctly from the API in google_data_catalog_tag resource (#​25602)
• discoveryengine: marked cmek_config_id field in google_discovery_engine_cmek_config resource as required (#​25527)
• securitygateway: allowed empty field for service_discovery in google_beyondcorp_security_gateway (#​25653)
• securitygateway: allowed empty fields for user_info, group_info and device_info in google_beyondcorp_security_gateway (#​25653)
• servicedirectory: fixed an issue where google_service_directory_endpoint or google_service_directory_service without metadata specified would have other fields removed (#​25588)
• storage: fixed the behavior in google_storage_bucket resource when force_destroy is set to true. Previously, failing to list anywhere caches would prevent destroying objects on the bucket. Now, both objects and caches are processed independently. (#​25655)

v7.14.1

Compare Source

BUG FIXES:

• provider: fixed an issue where error type 409 and 412 were not being correctly retried. This commonly shows up in IAM resources, but can appear in other resources as well (#​25596)
• servicedirectory: fixed an issue where google_service_directory_endpoint or google_service_directory_service without metadata specified would have other fields removed on update (#​25588)

v7.14.0

Compare Source

DEPRECATIONS:

• managedkafka: added deprecation warning for google_managed_kafka_connect_cluster additional_subnets field (#​25487)

FEATURES:

• New Data Source: google_artifact_registry_versions (#​25512)
• New Data Source: google_cloud_identity_policies (#​25513)
• New Data Source: google_compute_region_security_policy (#​25488)
• New Data Source: google_compute_storage_pool (#​25485)
• New Resource: google_compute_cross_site_network (#​25479)
• New Resource: google_compute_wire_group (#​25479)
• New Resource: google_network_services_multicast_group_consumer_activation (#​25515)
• New Resource: google_network_services_multicast_group_producer_activation (#​25472)

IMPROVEMENTS:

• alloydb: added connection_pool_config, connection_pool_config.enabled and connection_pool_config.flags in google_alloydb_instance resource (#​25484)
• colab: added software_config.post_startup_script_config field to google_colab_runtime_template (#​25509)
• compute: added new field instance_flexibility_policy.instance_selection.min_cpu_platform & instance_flexibility_policy.instance_selection.disks to google_compute_region_instance_group_manager (#​25444)
• dataplex: removed the need for import in google_dataplex_entry when using first party source systems (#​25507)
• dataproc: added auto_stop_time and idle_stop_ttl to google_dataproc_cluster resource (#​25456)
• eventarc: added retry_policy field to google_eventarc_trigger resource (#​25467)
• networksecurity: enabled in-place update for custom_mirroring_profile.mirroring_deployment_groups on google_network_security_security_profile (#​25508)
• spanner: added autoscaling_config.autoscaling_targets.total_cpu_utilization_percent field to google_spanner_instance resource (#​25495)
• sql: added changes to ignore changes in backup configuration's fields like enabled, binary_log_enabled, start_time, point_in_time_recovery_enabled, transaction_log_retention_days and backup_retention_settings.retained_backups in google_sql_database_instance if the instance is managed by Google Cloud Backup and Disaster (DR) Recovery Service.

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[nielm]

/gcbrun