From df5e0ed1b0b1ceb67bea5d32a7a9c70659e3f64d Mon Sep 17 00:00:00 2001 From: Andrew Pollock Date: Tue, 12 Nov 2024 20:59:52 +1000 Subject: [PATCH 1/9] feat(sources): add more human_links to production (#2844) This commit partially replicates the changes from https://github.com/google/osv.dev/pull/2822 to production, adding additional human_links for records for Rocky Linux (but not yet SuSE), to improve signposting around the desired user journey for data feedback going directly to the source. It also modifies the frontend to not link out for `openSUSE`-prefixed records, because the approach taken in #2822 doesn't seem to work. Part of #2191 --- gcp/appengine/frontend3/src/templates/vulnerability.html | 6 +++--- source.yaml | 2 ++ 2 files changed, 5 insertions(+), 3 deletions(-) diff --git a/gcp/appengine/frontend3/src/templates/vulnerability.html b/gcp/appengine/frontend3/src/templates/vulnerability.html index 8895573f1eb..243bc5c520c 100644 --- a/gcp/appengine/frontend3/src/templates/vulnerability.html +++ b/gcp/appengine/frontend3/src/templates/vulnerability.html @@ -17,7 +17,7 @@

Suggest an improvement - {% elif vulnerability.human_source_link -%} + {% elif vulnerability.human_source_link and not vulnerability.id.startswith("openSUSE-") -%}
See a problem? @@ -42,7 +42,7 @@

Import Source
{{ vulnerability.source }}
- +
JSON Data
https://{{ api_url }}/v1/vulns/{{ vulnerability.id }} @@ -379,4 +379,4 @@

}); }); -{% endblock -%} \ No newline at end of file +{% endblock -%} diff --git a/source.yaml b/source.yaml index 52a12337e55..ab261cba73e 100644 --- a/source.yaml +++ b/source.yaml @@ -280,6 +280,7 @@ bucket: 'resf-osv-data' db_prefix: ['RLSA-'] ignore_git: False + human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}' link: 'https://storage.googleapis.com/resf-osv-data/' editable: False @@ -292,6 +293,7 @@ bucket: 'resf-osv-data' db_prefix: ['RXSA-'] ignore_git: False + human_link: 'https://errata.rockylinux.org/{{ BUG_ID }}' link: 'https://storage.googleapis.com/resf-osv-data/' editable: False From 7825e34750d01921742a8204d01d2a964ab99090 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:30:49 +0100 Subject: [PATCH 2/9] chore(deps): update node.js to 7eaecf1 (#2847) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [node](https://redirect.github.com/nodejs/node) | stage | digest | `a5e0ed5` -> `7eaecf1` | --- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ”• **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --- gcp/appengine/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gcp/appengine/Dockerfile b/gcp/appengine/Dockerfile index f60cb0e33ad..ce0503b1f81 100644 --- a/gcp/appengine/Dockerfile +++ b/gcp/appengine/Dockerfile @@ -1,5 +1,5 @@ # Build the Javascript frontend -FROM node:20.18@sha256:a5e0ed56f2c20b9689e0f7dd498cac7e08d2a3a283e92d9304e7b9b83e3c6ff3 AS FRONTEND3_BUILD +FROM node:20.18@sha256:7eaecf12ba40043be19af57e2c7fba35d61f9b906128e3e4d11eda81b1ecb857 AS FRONTEND3_BUILD WORKDIR /build/frontend3 # Install dependencies first for better caching From 8dfe10920df22e8aa30ae153e6e0e97e0e691117 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:32:56 +0100 Subject: [PATCH 3/9] chore(deps): update workflows (#2849) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | patch | `v2.27.0` -> `v2.27.3` | | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | patch | `v3.27.0` -> `v3.27.3` | | [pypa/gh-action-pypi-publish](https://redirect.github.com/pypa/gh-action-pypi-publish) | action | minor | `v1.11.0` -> `v1.12.2` | --- ### Release Notes
github/codeql-action (github/codeql-action) ### [`v2.27.3`](https://redirect.github.com/github/codeql-action/releases/tag/v2.27.3) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v2.27.2...v2.27.3) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 2.27.3 - 12 Nov 2024 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v2.27.3/CHANGELOG.md) for more information. ### [`v2.27.2`](https://redirect.github.com/github/codeql-action/releases/tag/v2.27.2) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v2.27.1...v2.27.2) ### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. #### 2.27.2 - 12 Nov 2024 - Fixed an issue where setting up the CodeQL tools would sometimes fail with the message "Invalid value 'undefined' for header 'authorization'". [#​2590](https://redirect.github.com/github/codeql-action/pull/2590) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v2.27.2/CHANGELOG.md) for more information. ### [`v2.27.1`](https://redirect.github.com/github/codeql-action/releases/tag/v2.27.1) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v2.27.0...v2.27.1) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 2.27.1 - 08 Nov 2024 - The CodeQL Action now downloads bundles compressed using Zstandard on GitHub Enterprise Server when using Linux or macOS runners. This speeds up the installation of the CodeQL tools. This feature is already available to GitHub.com users. [#​2573](https://redirect.github.com/github/codeql-action/pull/2573) - Update default CodeQL bundle version to 2.19.3. [#​2576](https://redirect.github.com/github/codeql-action/pull/2576) See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v2.27.1/CHANGELOG.md) for more information.
pypa/gh-action-pypi-publish (pypa/gh-action-pypi-publish) ### [`v1.12.2`](https://redirect.github.com/pypa/gh-action-pypi-publish/releases/tag/v1.12.2) [Compare Source](https://redirect.github.com/pypa/gh-action-pypi-publish/compare/v1.12.1...v1.12.2) #### πŸ› What's Fixed The fix for signing legacy zip sdists turned out to be incomplete, so [@​woodruffw](https://redirect.github.com/woodruffw)[πŸ’°](https://redirect.github.com/sponsors/woodruffw) promptly produced another follow-up that updated `pypi-attestations` from v0.0.13 to v0.0.15 in [#​297](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/297). This is the only change since the previous release. **πŸͺž Full Diff**: https://github.com/pypa/gh-action-pypi-publish/compare/v1.12.1...v1.12.2 **πŸ§”β€β™‚οΈ Release Manager:** [@​webknjaz](https://redirect.github.com/sponsors/webknjaz) [πŸ‡ΊπŸ‡¦](https://stand-with-ukraine.pp.ua) ### [`v1.12.1`](https://redirect.github.com/pypa/gh-action-pypi-publish/releases/tag/v1.12.1) [Compare Source](https://redirect.github.com/pypa/gh-action-pypi-publish/compare/v1.12.0...v1.12.1) #### πŸ› What's Fixed Version v1.12.0 hit several rare corner cases we never considered fully supported, and this release fixes a few of those. In [#​294](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/294), [@​webknjaz](https://redirect.github.com/webknjaz)[πŸ’°](https://redirect.github.com/sponsors/webknjaz) improved the self-hosted runner experience by pre-installing Python if it's not there, and with [#​293](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/293) the ability to use the action on GitHub Enterprise instances has been restored. The latter should've also fixed the ability to invoke [`pypi-publish`][pypi-publish] from nested in-repo composite actions β€” another exotic use-case that was never tested in our CI. [@​woodruffw](https://redirect.github.com/woodruffw)[πŸ’°](https://redirect.github.com/sponsors/woodruffw) also managed to squeeze in a last-minute fix for detecting legacy `.zip` sdists while producing attestations via [#​295](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/295). **πŸͺž Full Diff**: https://github.com/pypa/gh-action-pypi-publish/compare/v1.12.0...v1.12.1 **πŸ§”β€β™‚οΈ Release Manager:** [@​webknjaz](https://redirect.github.com/sponsors/webknjaz) [πŸ‡ΊπŸ‡¦](https://stand-with-ukraine.pp.ua) **πŸ™ Huge Thanks** to all the bug reporters for posting the logs, helping inspect the problems and verify the regression fixes! [`pypi-publish`]: https://redirect.github.com/marketplace/actions/pypi-publish ### [`v1.12.0`](https://redirect.github.com/pypa/gh-action-pypi-publish/releases/tag/v1.12.0) [Compare Source](https://redirect.github.com/pypa/gh-action-pypi-publish/compare/v1.11.0...v1.12.0) #### ⚑️ Why Should You Update? This is a minor version bump, but it does not add any new user-facing interfaces. Still, I felt like it should not be a patch-release: this update brings *significant changes* to the action invocation and internal release process. Previously, each invocation of [`pypi-publish`][pypi-publish] required building a container image in the invoking CI job. This was inefficient and added about 30 seconds to the publishing jobs at their startup just to build the container. I wanted to improve this for over three years ([#​58](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/58)) and a little over half a year ago [@​br3ndonland](https://redirect.github.com/br3ndonland)[πŸ’°](https://redirect.github.com/sponsors/br3ndonland) stepped up and offered a very comprehensive solution to the limitation I was hoping to overcome: [#​230](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/230). Going forward, I'm going to pre-build per-version containers prior to cutting each release. And the action invocations will just pull the image from GitHub Container registry. > \[!CAUTION] > Known quirks: > > - This seems to not work on self-hosted runners without a `python` executable: [#​289](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/289). The workaround could be installing it prior to running the action. > - \~Pinning to commit hashes does not work: [#​290](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/290). Workaround: postpone updating until it's fixed or switch to Git tags for now. Subscribe to that issue to follow the progress.~ *UPD:* This was an issue during the first 12 hours post release and it has been addressed upstream by publishing a commit SHA-tagged image for the release on Nov 12, 2024 at 10:27 UTC+1. > - Calling `pypi-publish` from another nested repo-local composite action might be breaking file paths: [#​291](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/291). Workaround: postpone updating until it's fixed. Subscribe to that issue to follow the progress. > - Running within GitHub Enterprise fails on the action repo clone: [#​292](https://redirect.github.com/pypa/gh-action-pypi-publish/issues/292). Workaround: postpone updating until it's fixed. Subscribe to that issue to follow the progress. **πŸͺž Full Diff**: https://github.com/pypa/gh-action-pypi-publish/compare/v1.11.0...v1.12.0 **πŸ§”β€β™‚οΈ Release Manager:** [@​webknjaz πŸ‡ΊπŸ‡¦](https://redirect.github.com/sponsors/webknjaz) [`pypi-publish`]: https://redirect.github.com/marketplace/actions/pypi-publish
--- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ‘» **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/publish-to-pypi.yaml | 2 +- .github/workflows/scorecards.yml | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index beb43500ca4..38476d5bc6a 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -43,7 +43,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0 + uses: github/codeql-action/init@396bb3e45325a47dd9ef434068033c6d5bb0d11a # v3.27.3 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -54,7 +54,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0 + uses: github/codeql-action/autobuild@396bb3e45325a47dd9ef434068033c6d5bb0d11a # v3.27.3 # ℹ️ Command-line programs to run using the OS shell. # πŸ“š https://git.io/JvXDl @@ -68,4 +68,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0 + uses: github/codeql-action/analyze@396bb3e45325a47dd9ef434068033c6d5bb0d11a # v3.27.3 diff --git a/.github/workflows/publish-to-pypi.yaml b/.github/workflows/publish-to-pypi.yaml index 443da2d4bf8..8950b25669b 100644 --- a/.github/workflows/publish-to-pypi.yaml +++ b/.github/workflows/publish-to-pypi.yaml @@ -44,7 +44,7 @@ jobs: build --sdist --wheel --outdir dist/ . - name: Publish distribution to PyPI - uses: pypa/gh-action-pypi-publish@fb13cb306901256ace3dab689990e13a5550ffaa # v1.11.0 + uses: pypa/gh-action-pypi-publish@15c56dba361d8335944d31a2ecd17d700fc7bcbc # v1.12.2 with: password: ${{ secrets.PYPI_API_TOKEN }} packages_dir: dist/ diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 69650d8ee02..6dea77a3cf3 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -50,6 +50,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@6a89f57882288b3d2f190cda65000eec9e9ebb7c # v2.27.0 + uses: github/codeql-action/upload-sarif@cb6549f9103a3855e5c5084c8f44b706e1b0a83f # v2.27.3 with: sarif_file: results.sarif From c125d140cfb22c8fa69df6227eb0b26d4607255a Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:33:31 +0100 Subject: [PATCH 4/9] chore(deps): update golang docker tag to v1.23.3 (#2848) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | golang | stage | patch | `1.23.2-alpine` -> `1.23.3-alpine` | --- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ”• **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --- docker/indexer/Dockerfile | 2 +- docker/terraform/Dockerfile | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/docker/indexer/Dockerfile b/docker/indexer/Dockerfile index 06394aba041..d85500f49b8 100644 --- a/docker/indexer/Dockerfile +++ b/docker/indexer/Dockerfile @@ -12,7 +12,7 @@ # See the License for the specific language governing permissions and # limitations under the License. -FROM golang:1.23.2-alpine@sha256:9dd2625a1ff2859b8d8b01d8f7822c0f528942fe56cfe7a1e7c38d3b8d72d679 AS GO_BUILD +FROM golang:1.23.3-alpine@sha256:25db3a0508ff009054bf467f25e1ab395fced0f93b69459dd736ae523e61c781 AS GO_BUILD WORKDIR /build # Cache dependencies in these steps diff --git a/docker/terraform/Dockerfile b/docker/terraform/Dockerfile index 5d222cba25a..7ecc0511816 100644 --- a/docker/terraform/Dockerfile +++ b/docker/terraform/Dockerfile @@ -1,6 +1,6 @@ # Taken and modified from https://github.com/GoogleCloudPlatform/cloud-builders-community/tree/master/terraform -FROM golang:1.23.2-alpine@sha256:9dd2625a1ff2859b8d8b01d8f7822c0f528942fe56cfe7a1e7c38d3b8d72d679 AS GO_BUILD +FROM golang:1.23.3-alpine@sha256:25db3a0508ff009054bf467f25e1ab395fced0f93b69459dd736ae523e61c781 AS GO_BUILD ARG TERRAFORM_VERSION WORKDIR /build/ From 22e5c2ed8f70744b565d2c947b73e3942b3d1151 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:34:09 +0100 Subject: [PATCH 5/9] chore(deps): update gcr.io/distroless/base-debian12 docker digest to 7a4bffc (#2861) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | gcr.io/distroless/base-debian12 | final | digest | `8fe31fb` -> `7a4bffc` | --- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ”• **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --- docker/indexer/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/indexer/Dockerfile b/docker/indexer/Dockerfile index d85500f49b8..2c4944e7208 100644 --- a/docker/indexer/Dockerfile +++ b/docker/indexer/Dockerfile @@ -24,7 +24,7 @@ RUN go mod download COPY ./ /build RUN CGO_ENABLED=0 ./build.sh -FROM gcr.io/distroless/base-debian12@sha256:8fe31fb9d159141d9c3ff99f1fd287239d89d97ea95fea1f08f82ea5f2b544da +FROM gcr.io/distroless/base-debian12@sha256:7a4bffcb07307d97aa731b50cb6ab22a68a8314426f4e4428335939b5b1943a5 COPY --from=GO_BUILD build/indexer /indexer ENTRYPOINT ["/indexer"] CMD ["--help"] From 1917f38ad74d1c212f695cace8ef7957ff560267 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:34:30 +0100 Subject: [PATCH 6/9] chore(deps): update gcr.io/google.com/cloudsdktool/google-cloud-cli:alpine docker digest to 5fb06d6 (#2846) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | gcr.io/google.com/cloudsdktool/google-cloud-cli | final | digest | `0909bcf` -> `5fb06d6` | --- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ”• **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --- docker/terraform/Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/terraform/Dockerfile b/docker/terraform/Dockerfile index 7ecc0511816..0c008e20b1a 100644 --- a/docker/terraform/Dockerfile +++ b/docker/terraform/Dockerfile @@ -6,7 +6,7 @@ ARG TERRAFORM_VERSION WORKDIR /build/ RUN GOBIN=$(pwd) go install github.com/hashicorp/terraform@v${TERRAFORM_VERSION} -FROM gcr.io/google.com/cloudsdktool/google-cloud-cli:alpine@sha256:0909bcf77e59a61a3430235d9be8f546907e72455eec196a59c8e18ee0df58f5 +FROM gcr.io/google.com/cloudsdktool/google-cloud-cli:alpine@sha256:5fb06d62786edacb958f6d5a8a993eac3b747d84a7ca3c6433ae1f9a6df098e1 COPY --from=GO_BUILD /build/terraform /usr/bin/terraform COPY entrypoint.bash /builder/entrypoint.bash From 533efdb1f5482c24c19ee19ccebd6f8d883783d1 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 00:49:21 +0100 Subject: [PATCH 7/9] chore(deps): lock file maintenance (#2851) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Update | Change | |---|---| | lockFileMaintenance | All locks refreshed | πŸ”§ This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ‘» **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). From b8e73e26bc5e5d024ff3ea6d258246e223bf5068 Mon Sep 17 00:00:00 2001 From: Mend Renovate Date: Wed, 13 Nov 2024 01:01:33 +0100 Subject: [PATCH 8/9] chore(deps): lock file maintenance terraform (#2859) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | | | lockFileMaintenance | All locks refreshed | | [google](https://registry.terraform.io/providers/hashicorp/google) ([source](https://redirect.github.com/hashicorp/terraform-provider-google)) | required_provider | minor | `~> 5.44.0` -> `~> 5.45.0` | | [google-beta](https://registry.terraform.io/providers/hashicorp/google-beta) ([source](https://redirect.github.com/hashicorp/terraform-provider-google-beta)) | required_provider | minor | `~> 5.44.0` -> `~> 5.45.0` | πŸ”§ This Pull Request updates lock files to use the latest dependency versions. --- ### Release Notes
hashicorp/terraform-provider-google (google) ### [`v5.45.0`](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v5.44.2...v5.45.0) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v5.44.2...v5.45.0)
hashicorp/terraform-provider-google-beta (google-beta) ### [`v5.45.0`](https://redirect.github.com/hashicorp/terraform-provider-google-beta/releases/tag/v5.45.0) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google-beta/compare/v5.44.2...v5.45.0) OTES: - 5.45.0 is a backport release, responding to a new Spanner feature that may result in creation of unwanted backups for users. The changes in this release will be available in 6.11.0 and users upgrading to 6.X should upgrade to that version or higher. IMPROVEMENTS: - spanner: added `default_backup_schedule_type` field to `google_spanner_instance` ([#​8644](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8644)) #### 5.44.2 (October 14, 2024) Notes: - 5.44.2 is a backport release, responding to a GKE rollout that created permadiffs for many users. The changes in this release will be available in 6.7.0 and users upgrading to 6.X should upgrade to that version or higher. IMPROVEMENTS: - container: `google_container_cluster` will now accept server-specified values for `node_pool_auto_config.0.node_kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​8385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8385)) BUG FIXES: - container: fixed a diff triggered by a new API-side default value for `node_config.0.kubelet_config.0.insecure_kubelet_readonly_port_enabled`. Terraform will now accept server-specified values for `node_config.0.kubelet_config` when it is not defined in configuration and will not detect drift. Note that this means that removing the value from configuration will now preserve old settings instead of reverting the old settings. ([#​8385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8385)) #### 5.44.1 (September 23, 2024) NOTES: - 5.44.1 is a backport release, intended to pull in critical container improvements and fixes for issues introduced in 5.44.0 IMPROVEMENTS: - container: added in-place update support for `gcfs_config` in in `google_container_cluster` and `google_container_node_pool` ([#​8101](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8101)) ([#​8207](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8207)) BUG FIXES: - container: fixed a permadiff on `gcfs_config` in `google_container_cluster` and `google_container_node_pool` ([#​8207](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8207)) - container: fixed a bug where specifying `node_pool_defaults.node_config_defaults` with `enable_autopilot = true` will cause `google_container_cluster` resource creation failure. ([#​8223](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8223)) #### 5.44.0 (September 9, 2024) NOTES: - 5.44.0 is a backport release, intended to pull in critical container improvements from 6.2.0 IMPROVEMENTS: - container: added `insecure_kubelet_readonly_port_enabled` to `node_pool.node_config.kubelet_config` and `node_config.kubelet_config` in `google_container_node_pool` resource. ([#​8071](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8071)) - container: added `insecure_kubelet_readonly_port_enabled` to `node_pool_defaults.node_config_defaults`, `node_pool.node_config.kubelet_config`, and `node_config.kubelet_config` in `google_container_cluster` resource. ([#​8071](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8071)) - container: added `node_pool_auto_config.node_kublet_config.insecure_kubelet_readonly_port_enabled` field to `google_container_cluster`. ([#​8076](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8076)) #### 5.43.1 (August 30, 2024) NOTES: - 5.43.1 is a backport release, and some changes will not appear in 6.X series releases until 6.1.0 BUG FIXES: - pubsub: fixed a validation bug that didn't allow empty filter definitions for `google_pubsub_subscription` resources ([#​8055](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8055)) #### 5.43.0 (August 26, 2024) DEPRECATIONS: - storage: deprecated `lifecycle_rule.condition.no_age` field in `google_storage_bucket`. Use the new `lifecycle_rule.condition.send_age_if_zero` field instead. ([#​7994](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7994)) FEATURES: - **New Resource:** `google_kms_ekm_connection_iam_binding` ([#​7969](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7969)) - **New Resource:** `google_kms_ekm_connection_iam_member` ([#​7969](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7969)) - **New Resource:** `google_kms_ekm_connection_iam_policy` ([#​7969](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7969)) - **New Resource:** `google_scc_v2_organization_scc_big_query_exports` ([#​8002](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8002)) IMPROVEMENTS: - compute: exposed service side id as new output field `forwarding_rule_id` on resource `google_compute_forwarding_rule` ([#​7972](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7972)) - container: added EXTENDED as a valid option for `release_channel` field in `google_container_cluster` resource ([#​7973](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7973)) - logging: changed `enable_analytics` parsing to "no preference" in analytics if omitted, instead of explicitly disabling analytics in `google_logging_project_bucket_config`. ([#​7964](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7964)) - networkservices: added `idle_timeout` field to the `google_network_services_tcp_route` resource ([#​7996](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7996)) - pusbub: added validation to `filter` field in resource `google_pubsub_subscription` ([#​7968](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7968)) - resourcemanager: added `default_labels` field to `google_client_config` data source ([#​7992](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7992)) - vmwareengine: added PC undelete support in `google_vmwareengine_private_cloud` ([#​8005](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/8005)) BUG FIXES: - alloydb: fixed a permadiff on `psc_instance_config` in `google_alloydb_instance` resource ([#​7975](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7975)) - compute: fixed a malformed URL that affected updating the `server_tls_policy` property on `google_compute_target_https_proxy` resources ([#​7988](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7988)) - compute: fixed force diff replacement logic for `network_ip` on resource `google_compute_instance` ([#​7971](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7971)) #### 5.42.0 (August 19, 2024) DEPRECATIONS: - compute: setting `google_compute_subnetwork.secondary_ip_range = []` to explicitly set a list of empty objects is deprecated and will produce an error in the upcoming major release. Use `send_secondary_ip_range_if_empty` while removing `secondary_ip_range` from config instead. ([#​7961](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7961)) FEATURES: - **New Data Source:** `google_artifact_registry_locations` ([#​7922](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7922)) - **New Data Source:** `google_cloud_identity_transitive_group_memberships` ([#​7917](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7917)) - **New Resource:** `google_discovery_engine_schema` ([#​7963](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7963)) - **New Resource:** `google_scc_folder_notification_config` ([#​7928](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7928)) - **New Resource:** `google_scc_v2_folder_notification_config` ([#​7927](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7927)) - **New Resource:** `google_vertex_ai_index_endpoint_deployed_index` ([#​7931](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7931)) IMPROVEMENTS: - clouddeploy: added `serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.gateway_service_mesh.pod_selector_label` and `serial_pipeline.stages.strategy.canary.runtime_config.kubernetes.service_networking.pod_selector_label` fields to `google_clouddeploy_delivery_pipeline` resource ([#​7945](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7945)) - compute: added `TDX` instance option to `confidential_instance_type` instance in `google_compute_instance` ([#​7913](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7913)) - compute: added `send_secondary_ip_range_if_empty` to `google_compute_subnetwork` ([#​7961](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7961)) - discoveryengine: added `skip_default_schema_creation` field to `google_data_store` resource ([#​7900](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7900)) - dns: changed `load_balancer_type` field from required to optional in `google_dns_record_set` ([#​7925](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7925)) - parallelstore: added `file_stripe_level`, `directory_stripe_level` fields to `google_parallelstore_instance` resource ([#​7942](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7942)) - servicenetworking: added `update_on_creation_fail` field to `google_service_networking_connection` resource. When it is set to true, enforce an update of the reserved peering ranges on the existing service networking connection in case of a new connection creation failure. ([#​7915](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7915)) - sql: added `server_ca_mode` field to `google_sql_database_instance` resource ([#​7886](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7886)) BUG FIXES: - bigquery: made `google_bigquery_dataset_iam_member` non-authoritative. To remove a bigquery dataset iam member, use an authoritative resource like `google_bigquery_dataset_iam_policy` ([#​7960](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7960)) - cloudfunctions2: fixed a "Provider produced inconsistent final plan" bug affecting the `service_config.environment_variables` field in `google_cloudfunctions2_function` resource ([#​7905](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7905)) - cloudfunctions2: fixed a permadiff on `storage_source.generation` in `google_cloudfunctions2_function` resource ([#​7912](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7912)) - compute: fixed issue where sub-resources managed by `google_compute_forwarding_rule` prevented resource deletion ([#​7958](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7958)) - logging: changed `google_logging_project_bucket_config.enable_analytics` behavior to set "no preference" in analytics if omitted, instead of explicitly disabling analytics. ([#​19126](https://redirect.github.com/hashicorp/terraform-provider-google/pull/19126)) - workbench: fixed a bug with `google_workbench_instance` metadata drifting when using custom containers. ([#​7959](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7959)) #### 5.41.0 (August 13, 2024) DEPRECATIONS: - resourcemanager: deprecated `skip_delete` field in the `google_project` resource. Use `deletion_policy` instead. ([#​7817](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7817)) FEATURES: - **New Data Source:** `google_scc_v2_organization_source_iam_policy` ([#​7888](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7888)) - **New Resource:** `google_access_context_manager_service_perimeter_dry_run_egress_policy` ([#​7882](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7882)) - **New Resource:** `google_access_context_manager_service_perimeter_dry_run_ingress_policy` ([#​7882](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7882)) - **New Resource:** `google_scc_v2_folder_mute_config` ([#​7846](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7846)) - **New Resource:** `google_scc_v2_project_mute_config` ([#​7881](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7881)) - **New Resource:** `google_scc_v2_project_notification_config` ([#​7892](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7892)) - **New Resource:** `google_scc_v2_organization_source` ([#​7888](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7888)) - **New Resource:** `google_scc_v2_organization_source_iam_binding` ([#​7888](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7888)) - **New Resource:** `google_scc_v2_organization_source_iam_member` ([#​7888](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7888)) - **New Resource:** `google_scc_v2_organization_source_iam_policy` ([#​7888](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7888)) IMPROVEMENTS: - clouddeploy: added `gke.proxy_url` field to `google_clouddeploy_target` ([#​7899](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7899)) - cloudrunv2: added field `binary_authorization.policy` to resource `google_cloud_run_v2_job` and resource `google_cloud_run_v2_service` to support named binary authorization policy. ([#​7883](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7883)) - compute: added update-in-place support for the `google_compute_target_https_proxy.server_tls_policy` field ([#​7884](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7884)) - compute: added update-in-place support for the `google_compute_region_target_https_proxy.server_tls_policy` field ([#​7891](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7891)) - container: added `auto_provisioning_locations` field to `google_container_cluster` ([#​7849](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7849)) - dataform: added `kms_key_name` field to `google_dataform_repository` resource ([#​7855](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7855)) - discoveryengine: added `skip_default_schema_creation` field to `google_discovery_engine_data_store` resource ([#​7900](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7900)) - gkehub: added `configmanagement.management` and `configmanagement.config_sync.enabled` fields to `google_gkehub_feature_membership` ([#​7899](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7899)) - gkehub: added `management` field to `google_gke_hub_feature.fleet_default_member_config.configmanagement` ([#​7862](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7862)) - resourcemanager: added `deletion_policy` field to the `google_project` resource. Setting `deletion_policy` to `PREVENT` will protect the project against any destroy actions caused by a terraform apply or terraform destroy. Setting `deletion_policy` to `ABANDON` allows the resource to be abandoned rather than deleted and it behaves the same with `skip_delete = true`. Default value is `DELETE`. `skip_delete = true` takes precedence over `deletion_policy = "DELETE"`. - storage: added `force_destroy` field to `google_storage_managed_folder` resource ([#​7867](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7867)) - storage: added `generation` field to `google_storage_bucket_object` resource ([#​7866](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7866)) BUG FIXES: - compute: fixed `google_compute_instance.alias_ip_range` update behavior to avoid temporarily deleting unchanged alias IP ranges ([#​7898](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7898)) - compute: fixed the bug that creation of PSC forwarding rules fails in `google_compute_forwarding_rule` resource when provider default labels are set ([#​7873](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7873)) - sql: fixed a perma-diff in `settings.insights_config` in `google_sql_database_instance` ([#​7861](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7861)) #### 5.40.0 (August 5, 2024) IMPROVEMENTS: - bigquery: added support for value `DELTA_LAKE` to `source_format` in `google_bigquery_table` resource ([#​7841](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7841)) - compute: added `access_mode` field to `google_compute_disk` resource ([#​7813](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7813)) - compute: added `stack_type`, and `gateway_ip_version` fields to `google_compute_router` resource ([#​7801](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7801)) - container: added field `ray_operator_config` for `resource_container_cluster` ([#​7795](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7795)) - monitoring: updated `goal` field to accept a max threshold of up to 0.9999 in `google_monitoring_slo` resource to 0.9999 ([#​7807](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7807)) - networkconnectivity: added `export_psc` field to `google_network_connectivity_hub` resource ([#​7816](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7816)) - sql: added `enable_dataplex_integration` field to `google_sql_database_instance` resource ([#​7810](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7810)) BUG FIXES: - bigquery: fixed a permadiff when handling "assets" in `params` in the `google_bigquery_data_transfer_config` resource ([#​7833](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7833)) - bigquery: fixed an issue preventing certain keys in `params` from being assigned values in `google_bigquery_data_transfer_config` ([#​7828](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7828)) - compute: fixed perma-diff in `google_compute_router` ([#​7818](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7818)) - container: fixed perma-diff on `node_config.guest_accelerator.gpu_driver_installation_config` field in GKE 1.30+ in `google_container_node_pool` resource ([#​7799](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7799)) - sql: fixed a perma-diff in `settings.insights_config` in `google_sql_database_instance` ([#​7861](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7861)) #### 5.39.1 (July 30, 2024) BUG FIXES: - datastream: fixed a breaking change in 5.39.0 `google_datastream_stream` that made one of `destination_config.0.bigquery_destination_config.0.merge` or `destination_config.0.bigquery_destination_config.0.append_only` required ([#​7835](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7835)) #### 5.39.0 (July 29, 2024) NOTES: - networkconnectivity: migrated `google_network_connectivity_hub` from DCL to MMv1 ([#​7724](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7724)) - networkconnectivity: migrated `google_network_connectivity_spoke` from DCL to MMv1 ([#​7762](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7762)) DEPRECATIONS: - bigquery: deprecated `allow_resource_tags_on_deletion` in `google_bigquery_table`. ([#​7782](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7782)) - bigqueryreservation: deprecated `multi_region_auxiliary` on `google_bigquery_reservation`. ([#​7778](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7778)) - datastore: deprecated the resource `google_datastore_index`. Use the `google_firestore_index` resource instead. ([#​7764](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7764)) FEATURES: - **New Resource:** `google_apigee_environment_keyvaluemaps_entries` ([#​7717](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7717)) - **New Resource:** `google_apigee_environment_keyvaluemaps` ([#​7717](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7717)) - **New Resource:** `google_compute_resize_request` ([#​7725](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7725)) - **New Resource:** `google_compute_router_route_policy` ([#​7748](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7748)) - **New Resource:** `google_scc_v2_organization_mute_config` ([#​7744](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7744)) IMPROVEMENTS: - alloydb: added `observability_config` field to `google_alloydb_instance` resource ([#​7737](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7737)) - bigquery: added `resource_tags` field to `google_bigquery_table` resource ([#​7735](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7735)) - bigtable: added `data_boost_isolation_read_only` and `data_boost_isolation_read_only.compute_billing_owner` fields to `google_bigtable_app_profile` resource ([#​7789](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7789)) - cloudfunctions: added `build_service_account` field to `google_cloudfunctions_function` resource ([#​7713](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7713)) - compute: added `aws_v4_authentication` field to `google_compute_backend_service` resource ([#​7775](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7775)) - compute: added `custom_learned_ip_ranges` and `custom_learned_route_priority` fields to `google_compute_router_peer` resource ([#​7727](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7727)) - compute: added `export_policies` and `import_policies` fields to `google_compute_router_peer` resource ([#​7748](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7748)) - compute: added `shared_secret` field to `google_compute_public_advertised_prefix` resource ([#​7767](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7767)) - compute: added `storage_pool` under `boot_disk.initialize_params` to `google_compute_instance` resource ([#​7787](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7787)) - compute: changed `target_service` field on the `google_compute_service_attachment` resource to accept a `ForwardingRule` or `Gateway` URL. ([#​7736](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7736)) - container: added field `ray_operator_config` for `google_container_cluster` ([#​7795](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7795)) - datastream: added `merge` and `append_only` fields to `google_datastream_stream` resource ([#​7726](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7726)) - dlp: added `cloud_storage_target` field to `google_data_loss_prevention_discovery_config` resource ([#​7734](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7734)) - resourcemanager: added `check_if_service_has_usage_on_destroy` field to `google_project_service` resource ([#​7745](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7745)) - resourcemanager: added the `member` property to `google_project_service_identity` ([#​7708](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7708)) - vmwareengine: added `deletion_delay_hours` field to `google_vmwareengine_private_cloud` resource ([#​7710](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7710)) - vmwareengine: supported type change from `TIME_LIMITED` to `STANDARD` for multi-node `google_vmwareengine_private_cloud` resource ([#​7710](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7710)) - workbench: added `access_configs` to `google_workbench_instance` resource ([#​7732](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7732)) BUG FIXES: - compute: fixed perma-diff for `interconnect_type` being `DEDICATED` in `google_compute_interconnect` resource ([#​7750](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7750)) - dialogflowcx: fixed intermittent issues with retrieving resource state soon after creating `google_dialogflow_cx_security_settings` resources ([#​7772](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7772)) - firestore: fixed missing import of `field` for `google_firestore_field`. ([#​7757](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7757)) - firestore: fixed bug where fields `database`, `collection`, `document_id`, and `field` could not be updated on `google_firestore_document` and `google_firestore_field` resources. ([#​7791](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7791)) - netapp: made the `smb_settings` field on the `google_netapp_volume` resource default to the value returned from the API. This solves permadiffs when the field is unset. ([#​7770](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7770)) - networksecurity: added recreate functionality on update for `client_validation_mode` and `client_validation_trust_config` in `google_network_security_server_tls_policy` ([#​7756](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7756)) #### 5.38.0 (July 15, 2024) FEATURES: - **New Data Source:** `google_gke_hub_membership_binding` ([#​7696](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7696)) - **New Data Source:** `google_site_verification_token` ([#​7704](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7704)) - **New Resource:** `google_scc_project_notification_config` ([#​7698](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7698)) IMPROVEMENTS: - cloudkms: added `key_access_justifications_policy` field to `google_kms_crypto_key` resource ([#​7693](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7693)) - compute: made the `google_compute_resource_policy` resource updatable in-place ([#​7692](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7692)) - vertexai: added `project_number` field to `google_vertex_ai_feature_online_store_featureview` resource ([#​7680](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7680)) BUG FIXES: - cloudfunctions2: fixed permadiffs on `service_config.environment_variables` field in `google_cloudfunctions2_function` resource ([#​7684](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7684)) - networksecurity: fixed permadiffs on `purpose` field in `google_network_security_address_group` resource ([#​7687](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7687)) #### 5.37.0 (July 8, 2024) FEATURES: - **New Data Source:** `google_kms_crypto_keys` ([#​7656](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7656)) - **New Data Source:** `google_kms_key_rings` ([#​7662](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7662)) - **New Resource:** `google_scc_v2_organization_notification_config` ([#​7649](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7649)) - **New Resource:** `google_secure_source_manager_repository` ([#​7634](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7634)) - **New Resource:** `google_storage_managed_folder_iam` ([#​7620](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7620)) - **New Resource:** `google_storage_managed_folder` ([#​7620](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7620)) IMPROVEMENTS: - certificatemanager: added `allowlisted_certificates` field to `google_certificate_manager_trust_config` resource ([#​7643](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7643)) - compute: added `source_regions` field to `google_compute_healthcheck` resource ([#​7647](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7647)) - dataplex: added `sql_assertion` field to `google_dataplex_datascan` resource ([#​7623](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7623)) - gkehub: added `fleet_default_member_config.configmanagement.config_sync.enabled` field to `google_gke_hub_feature` resource ([#​7639](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7639)) - netapp: added `zone` and `replica_zone` field to `google_netapp_storage_pool` resource ([#​7660](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7660)) - networksecurity: added `purpose` field to `google_network_security_address_group` resource ([#​7677](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7677)) - vertexai: added `project_number` field to `google_vertex_ai_feature_online_store_featureview` resource ([#​7680](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7680)) - workstations: added `host.gce_instance.vm_tags` field to `google_workstations_workstation_config` resource ([#​7644](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7644)) BUG FIXES: - compute: fixed a bug preventing the creation of `google_compute_autoscaler` and `google_compute_region_autoscaler` resources if both `autoscaling_policy.max_replicas` and `autoscaling_policy.min_replicas` were configured as zero. ([#​7658](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7658)) - resourcemanager: mitigated eventual consistency issues by adding a 10s wait after `google_service_account_key` resource creation ([#​7629](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7629)) - vertexai: fixed issue where updating "metadata" field could fail in `google_vertex_ai_index` resource ([#​7675](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7675)) #### 5.36.0 (July 1, 2024) FEATURES: - **New Resource:** `google_storage_managed_folder_iam` ([#​7620](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7620)) - **New Resource:** `google_storage_managed_folder` ([#​7620](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7620)) IMPROVEMENTS: - bigtable: added `ignore_warnings` field to `google_bigtable_gc_policy` resource ([#​7571](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7571)) - cloudfunctions2: added `build_config.automatic_update_policy` and `build_config.on_deploy_update_policy` to `google_cloudfunctions2_function` resource ([#​7608](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7608)) - compute: added `tls_early_data` field to `google_compute_target_https_proxy` resource ([#​7588](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7588)) - compute: added `custom_error_response_policy` and `default_custom_error_response_policy` fields to `google_compute_url_map` resource ([#​7587](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7587)) - datafusion: added `connection_type` and `private_service_connect_config` fields to `google_data_fusion_instance` resource ([#​7598](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7598)) - firebasehosting: added support for `google_firebase_hosting_site` resource to be used for an existing site without using import ([#​7594](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7594)) - healthcare: added `encryption_spec` field to `google_healthcare_dataset` resource ([#​7601](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7601)) - monitoring: added `links` field to `google_monitoring_alert_policy` resource ([#​7616](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7616)) - vertexai: added update support for `big_query.entity_id_columns` field on `google_vertex_ai_feature_group` resource ([#​7572](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7572)) BUG FIXES: - accesscontextmanager: fixed perma-diff caused by ordering of `service_perimeters` in `google_access_context_manager_service_perimeters` resource ([#​7595](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7595)) - compute: fixed a crash in `google_compute_reservation` resource when `share_settings` field has changes ([#​7577](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7577)) - compute: fixed issue in `google_compute_instance` resource where `service_account` is not set when specifying `service_account.email` and no `service_account.scopes` ([#​7596](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7596)) - gkehub2: fixed `google_gke_hub_feature` resource to allow `fleet_default_member_config` field to be unset ([#​7568](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7568)) - identityplatform: fixed perma-diff on `google_identity_platform_config` resource when `sms_region_config` is not set ([#​7607](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7607)) - logging: fixed perma-diff on `index_configs` in `google_logging_organization_bucket_config` resource ([#​7579](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7579)) #### 5.35.0 (June 24, 2024) FEATURES: - **New Data Source:** `google_artifact_registry_docker_image` ([#​7544](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7544)) - **New Data Source:** `google_composer_user_workloads_config_map` ([#​7519](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7519)) - **New Resource:** `google_service_networking_vpc_service_controls` ([#​7545](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7545)) IMPROVEMENTS: - bigquery: added `resource_tags` field to `google_bigquery_dataset` resource ([#​7549](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7549)) - billingbudget: added `enable_project_level_recipients` field to `google_billing_budget` resource ([#​7539](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7539)) - cloudrunv2: added fields `start_execution_token` and `run_execution_token` to resource `google_cloud_run_v2_job` ([#​7525](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7525)) - compute: added `action_token_site_keys` and `session_token_site_keys` fields to `google_compute_security_policy` and `google_compute_security_policy_rule` resources ([#​7520](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7520)) - dataprocmetastore: added `autoscaling_config` field to `google_dataproc_metastore_service` resource ([#​7528](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7528)) - gkehub2: added `ENTERPRISE` option to `security_posture_config` field on `google_gke_hub_fleet` resource ([#​7541](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7541)) - pubsub: added `bigquery_config.service_account_email` field to `google_pubsub_subscription` resource ([#​7543](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7543)) - redis: added `maintenance_version` field to `google_redis_instance` ([#​7527](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7527)) - storage: changed update behavior in `google_storage_bucket_object` to no longer delete to avoid object deletion on content update ([#​7564](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7564)) - sql: added support for more MySQL values in `type` field of `google_sql_user` resource ([#​7548](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7548)) - sql: increased timeouts on `google_sql_database_instance` to 90m to account for longer-running actions such as creation through cloning ([#​7553](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7553)) - workbench: added update support to `gce_setup.boot_disk` and `gce_setup.data_disks` fields in `google_workbench_instance` resource ([#​7566](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7566)) BUG FIXES: - compute: updated `google_compute_instance` to force reboot if `min_node_cpus` is updated ([#​7524](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7524)) - compute: fixed `description` field in `google_compute_firewall` to support empty/null values on update ([#​7563](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7563)) - compute: fixed perma-diff on `google_compute_disk` for Ubuntu amd64 canonical LTS images ([#​7522](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7522)) - storage: fixed lowercased `custom_placement_config` values in `google_storage_bucket` causing perma-destroy ([#​7551](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7551)) - workbench: fixed issue where instance was not starting after an update in `google_workbench_instance` resource ([#​7557](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7557)) - workbench: fixed perma-diff caused by empty `accelerator_configs` in `google_workbench_instance` resource ([#​7557](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7557)) #### 5.34.0 (June 17, 2024) NOTES: - compute: Updated field description of `connection_draining_timeout_sec`, `balancing_mode` and `outlier_detection` in `google_compute_region_backend_service` and `google_compute_backend_service` to inform that default values will be changed in 6.0.0 ([#​7513](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7513)) DEPRECATIONS: - vertexai: deprecated beta field `embedding_management` for `google_vertex_ai_feature_online_store` resource ([#​7473](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7473)) FEATURES: - **New Data Source:** `google_composer_user_workloads_config_map` (beta) ([#​7519](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7519)) - **New Data Source:** `google_composer_user_workloads_secret` (beta) ([#​7474](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7474)) - **New Resource:** `google_composer_user_workloads_config_map` (beta) ([#​7497](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7497)) - **New Resource:** `google_managed_kafka_cluster` (beta) ([#​7477](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7477)) - **New Resource:** `google_managed_kafka_topic` (beta) ([#​7503](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7503)) - **New Resource:** `google_netapp_backup` ([#​7479](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7479)) - **New Resource:** `google_network_services_service_lb_policies` ([#​7463](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7463)) - **New Resource:** `google_scc_management_folder_security_health_analytics_custom_module` ([#​7483](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7483)) - **New Resource:** `google_scc_management_organization_project_security_health_analytics_custom_module` ([#​7489](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7489)) - **New Resource:** `google_scc_management_organization_security_health_analytics_custom_module` ([#​7493](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7493)) IMPROVEMENTS: - alloydb: changed the resource `google_alloydb_instance` to be created directly with public IP enabled instead of creating the resource with public IP disabled and then enabling it ([#​7469](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7469)) - bigtable: added `automated_backup_configuration` field to `google_bigtable_table` resource ([#​7468](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7468)) - cloudbuildv2: added support for connecting to Bitbucket Data Center and Bitbucket Cloud with the `bitbucket_data_center_config` and `bitbucket_cloud_config` fields in `google_cloudbuildv2_connection` ([#​7494](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7494)) - compute: added support for Port Mapping NEG and endpoint. New NEG type is a regional type of `GCE_VM_IP_PORTMAP` that requires endpoints with `instance`, `port` and `client_destination_port` (beta) ([#​7471](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7471)) - compute: added update support to `ssl_policy` field in `google_compute_region_target_https_proxy` resource ([#​7484](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7484)) - compute: removed enum validation on `guest_os_features.type` in `google_compute_disk` to allow for new features to be used without provider update ([#​7465](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7465)) - compute: updated documentation of google_compute_target_https_proxy and google_compute_region_target_https_proxy ([#​7481](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7481)) - container: added support for `security_posture_config.mode` value "ENTERPRISE" in `resource_container_cluster` ([#​7467](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7467)) - discoveryengine: added `document_processing_config` field to `google_discovery_engine_data_store` resource ([#​7475](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7475)) - edgecontainer: added `maintenance_exclusions` field to `google_edgecontainer_cluster` resource ([#​7490](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7490)) - gkehub: added `prevent_drift` field to ConfigManagement `fleet_default_member_config` ([#​7464](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7464)) - netapp: added `administrators` field to `google_netapp_active_directory` resource ([#​7466](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7466)) - vertexai: promoted `optimized` field to GA for `google_vertex_ai_feature_online_store` resource ([#​7473](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7473)) - workbench: updated the metadata keys managed by the backend. ([#​7488](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7488)) BUG FIXES: - compute: fixed an issue where `google_compute_instance_group_manager` with a pending operation was incorrectly removed due to the operation no longer being present in the backend ([#​7498](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7498)) - compute: fixed issue where users could not create `google_compute_security_policy` resources with `layer_7_ddos_defense_config` explicitly disabled ([#​7470](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7470)) - workbench: fixed a bug in the `google_workbench_instance` resource where specifying a network in some scenarios would cause instance creation to fail ([#​7518](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7518)) #### 5.33.0 (June 10, 2024) DEPRECATIONS: - healthcare: deprecated `notification_config` deprecated `notification_config` in `google_healthcare_fhir_store` resource. Use `notification_configs` instead. ([#​7450](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7450)) FEATURES: - **New Data Source:** `google_compute_security_policy` ([#​7453](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7453)) - **New Resource:** `google_compute_project_cloud_armor_tier` ([#​7456](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7456)) - **New Resource:** `google_network_services_service_lb_policies` ([#​7463](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7463)) - **New Resource:** `google_scc_management_organization_event_threat_detection_custom_module` ([#​7454](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7454)) - **New Resource:** `google_spanner_instance_config` ([#​7459](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7459)) IMPROVEMENTS: - appengine: added `flexible_runtime_settings` field to `google_app_engine_flexible_app_version` resource ([#​7462](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7462)) - bigtable: added `force_destroy` field to `google_bigtable_instance` resource. This will force delete any backups present in the instance and allow the instance to be deleted. ([#​7441](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7441)) - clouddeploy: added `execution_configs.verbose` field to `google_clouddeploy_target` resource ([#​7442](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7442)) - compute: added `partner_metadata` field to `google_compute_instance_template` resource ([#​7449](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7449)) - compute: added `partner_metadata` field to `google_compute_instance` resource ([#​7449](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7449)) - compute: added `partner_metadata` field to `google_compute_regional_instance_template` resource ([#​7449](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7449)) - compute: added `standby_policy`, `target_suspended_size` and `target_stopped_size` fields to `google_compute_instance_group_manager` and `google_compute_region_instance_group_manager` resources ([#​7436](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7436)) - compute: added `storage_pool` field to `google_compute_disk` resource ([#​7434](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7434)) - container: added `secret_manager_config` field to `google_container_cluster` resource ([#​7448](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7448)) - dlp: added `secrets_discovery_target`, `cloud_sql_target.filter.database_resource_reference`, and `big_query_target.filter.table_reference` fields to `google_data_loss_prevention_discovery_config` resource ([#​7461](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7461)) - gkebackup: added `backup_schedule.backup_config.permissive_mode` field to `google_gke_backup_backup_plan` resource ([#​7430](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7430)) - gkebackup: added `restore_config.restore_order` field to `google_gke_backup_restore_plan` resource ([#​7430](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7430)) - gkebackup: added `restore_config.volume_data_restore_policy_bindings` field to `google_gke_backup_restore_plan` resource ([#​7430](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7430)) - gkebackup: added new enum values `MERGE_SKIP_ON_CONFLICT`, `MERGE_REPLACE_VOLUME_ON_CONFLICT` and `MERGE_REPLACE_ON_CONFLICT` to field `restore_config.namespaced_resource_restore_mode` in `google_gke_backup_restore_plan` resource ([#​7430](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7430)) - healthcare: added `notification_config.send_for_bulk_import` field to `google_healthcare_dicom_store` ([#​7457](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7457)) - integrationconnectors: added `endpoint_global_access` field to `google_integration_connectors_endpoint_attachment` resource ([#​7443](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7443)) - netapp: added `backup_config` field to `google_netapp_volume` resource ([#​7439](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7439)) - redis: added `zone_distribution_config` field to `google_redis_cluster` resource ([#​7451](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7451)) - resourcemanager: added support for `range_type = "default-domains-netblocks"` in `google_netblock_ip_ranges` data source ([#​7440](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7440)) - secretmanager: added support for IAM conditions in `google_secret_manager_secret_iam_*` resources ([#​7444](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7444)) - workstations: added `boot_disk_size_gb`, `enable_nested_virtualization`, and `pool_size` to `host.gce_instance.boost_configs` in `google_workstations_workstation_config` resource ([#​7452](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7452)) BUG FIXES: - container: fixed `google_container_node_pool` crash if `node_config.secondary_boot_disks.mode` is not set ([#​7460](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7460)) - dlp: removed `required` on `inspect_config.limits.max_findings_per_info_type.info_type` field to allow the use of default limit by not setting this field in `google_data_loss_prevention_inspect_template` resource ([#​7438](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7438)) - provider: fixed application default credential and access token authorization when `universe_domain` is set ([#​7433](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7433)) #### 5.32.0 (June 3, 2024) NOTES: - privateca: converted `google_privateca_certificate_template` to now use the MMv1 engine instead of DCL ([#​7409](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7409)) FEATURES: - **New Resource:** `google_dataplex_entry_type` ([#​7412](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7412)) - **New Resource:** `google_logging_log_view_iam_binding` ([#​7420](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7420)) - **New Resource:** `google_logging_log_view_iam_member` ([#​7420](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7420)) - **New Resource:** `google_logging_log_view_iam_policy` ([#​7420](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7420)) IMPROVEMENTS: - alloydb: added `psc_config` field to `google_alloydb_cluster` resource ([#​7429](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7429)) - alloydb: added `psc_instance_config` field to `google_alloydb_instance` resource ([#​7429](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7429)) - cloudrunv2: added `default_uri_disabled` field to `google_cloud_run_v2_service` resourceto ([#​7422](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7422)) - compute: added `NONE` to acceptable options for `update_policy.minimal_action` field in `google_compute_instance_group_manager` resource ([#​7417](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7417)) - sql: updated support for a new value `week5` in field `setting.maintenance_window.update_track` in `google_sql_database_instance` resource ([#​7408](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7408)) BUG FIXES: - cloudrunv2: added validation for `timeout` field to `google_cloud_run_v2_job`, `google_cloud_run_v2_service` resources ([#​7426](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7426)) - compute: fixed permadiff in ordering of `advertised_ip_ranges.range` field on `google_compute_router` resource ([#​7411](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7411)) - iam: added a 10 second sleep when creating `google_service_account` resource ([#​7427](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7427)) - storage: fixed `google_storage_bucket.lifecycle_rule.condition` block fields `days_since_noncurrent_time` and `days_since_custom_time` and `num_newer_versions` were not working for 0 value. ([#​7414](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7414)) #### 5.31.0 (May 28, 2024) FEATURES: - **New Data Source:** `google_compute_subnetworks` ([#​7371](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7371)) - **New Resource:** `google_dataplex_aspect_type` ([#​7397](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7397)) - **New Resource:** `google_dataplex_entry_group` ([#​7389](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7389)) - **New Resource:** `google_kms_autokey_config` ([#​7385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7385)) - **New Resource:** `google_kms_key_handle` ([#​7385](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7385)) - **New Resource:** `google_network_services_lb_route_extension` ([#​7394](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7394)) IMPROVEMENTS: - appengine: added field `instance_ip_mode` to resource `google_app_engine_flexible_app_version` resource (beta) ([#​7377](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7377)) - bigquery: added `external_data_configuration.bigtable_options` to `google_bigquery_table` ([#​7387](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7387)) - cloudrun: added support for `nfs` to `google_cloudrun_service` (beta). ([#​7381](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7381)) - composer: added support for importing `google_composer_user_workloads_secret` via the "{{environment}}/{{name}}" format. ([#​7390](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7390)) - composer: improved timeouts for `google_composer_user_workloads_secret`. ([#​7390](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7390)) - compute: added `TLS_JA3_FINGERPRINT` and `USER_IP` options in field `rate_limit_options.enforce_on_key` to `google_compute_security_policy` resource ([#​7376](https://redirect.github.com/hashicorp/terraform-provider-google-beta/pull/7376)) - compute: added 'rateLimitOptions'
--- ### Configuration πŸ“… **Schedule**: Branch creation - "before 6am on wednesday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. β™» **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. πŸ‘» **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv.dev). --------- Co-authored-by: Michael Kedar --- .../oss-vdb-test/.terraform.lock.hcl | 76 +++++++------------ .../environments/oss-vdb-test/main.tf | 4 +- .../environments/oss-vdb/.terraform.lock.hcl | 76 +++++++------------ .../terraform/environments/oss-vdb/main.tf | 4 +- 4 files changed, 60 insertions(+), 100 deletions(-) diff --git a/deployment/terraform/environments/oss-vdb-test/.terraform.lock.hcl b/deployment/terraform/environments/oss-vdb-test/.terraform.lock.hcl index be44ffc323c..f8cec64087b 100644 --- a/deployment/terraform/environments/oss-vdb-test/.terraform.lock.hcl +++ b/deployment/terraform/environments/oss-vdb-test/.terraform.lock.hcl @@ -32,61 +32,41 @@ provider "registry.terraform.io/hashicorp/external" { } provider "registry.terraform.io/hashicorp/google" { - version = "5.44.2" - constraints = ">= 4.50.0, ~> 5.44.0, < 6.0.0" + version = "5.45.0" + constraints = ">= 4.50.0, ~> 5.45.0, < 6.0.0" hashes = [ - "h1:AHWv7kf8xXa3dfUq7OLZLG+jtXPEQ3qjNxzJX+GyvoQ=", - "h1:ScKhMhplMe2aEJaew3ptqLc2w4J3AptAIktF+Bv9zIw=", - "h1:Tuz0jDxFyNEoCPZgzReui2pu511KklWTJnLveY6DEG8=", - "h1:Ubr0Wsab1o1b8ddtkL6ZQgRxHFPPmw9PGYIGy8BvcvY=", - "h1:VyIrCLvYKVdHIHl9KMdOUYa3K5zBFhjMRPGbzbuWcEQ=", - "h1:aRlYAC3oxCEmtO90g72cQqwu/d7Y5lnBz/dsN4oux5s=", - "h1:azoFK9bvjzil7U7dv6XzAZqqHgafyGmrJevM/VYyUVo=", - "h1:gqtQa4oy2DGnwsGv2cYvvX0d4R6HYnMHEYMvTwYr8jI=", - "h1:ldYrjIeJlqK9UizqM4nuZnhyc+Bs3uA3TYPlmnkoXcI=", - "h1:xbQ6PC9AiTrw+JCXSfDJFioGAFtmil6ktfwBrJECAZQ=", - "h1:yrZehR1cd7cgDdxQjK3cb4q63CIBkueEP63jO8FpA0g=", - "zh:2594d626d9148480688000b6c8e091d6bcc8f2a2dc28fe6e2ea27487f3c1726d", - "zh:2b0fafdb0ed7cbf4da5b4d7f3541ccd4402ee8cbdd66ebe26eaf9e904951da01", - "zh:310b1b0ac4f244a51abce22e41c7904e4bee50b5c1b66fd8646368f94ea6e563", - "zh:67c24e70b74e3d52f60e1b32d9c113f8d11e5db7265463e44a5b07474b79177c", - "zh:6d5069bf1e30570ef5189ad994a4b09c998b0f2630e169cc0b9cf68deafbb38d", - "zh:71bf6eb0d865082d736732cd48d9cb04a81500c55c48da91ac99816149cb3cb2", - "zh:970a29056d63a41bee915e634922cbb9caba7d34604f4884f001bfaf1e208b07", - "zh:a3b5ea6d67459a3237afcaaad4034998c8435b1d222f0c163d868a2863af5d24", - "zh:c049cb7edd8c797d7dd5b8f5a7a3a5b84cc08a1c60a50858fcdbec5d4db3f599", - "zh:c17c1133fce9ed5fea39da65f1c3024d5e04a5f0b94fd0d217c4988f6c1a3efd", - "zh:c657377f55a8a7abc16be34d26936d7879740d732136d40972013871c678db02", + "h1:O9Y/KFnZ9vd/fbdEN8sVUqJSwBQrnD41/gvcrq2tdjs=", + "zh:02916a209c660806a7ef30c3e404cd139705bdd401646791ac8876259d10d560", + "zh:3cd831a98d9de617d334be4885a253dcf7dfb54a383cf366482303fdd5fd7162", + "zh:42dfb0db08b7086f8de4f1d2f8326d3e07c99016ce6ca91f3d310458111acc97", + "zh:4a8cb3569e5006da3bc631bc340f0c6020f3d6140c4eb5821d92d0ff23fde2dd", + "zh:614e86cd8e793c8d622a869860f71dcedef783c1a72d754c8af919c1209b1f89", + "zh:7d42ec15014891c6b65c0115c2fc0e95066f71497ad9c56639f490f0922daa2c", + "zh:813d3f741280a75baea1bfb0eeaaf4c2910218bd7e3607749a1a86d89a17c4dd", + "zh:823a9133c1dc96d7069bb838438a4aa5bef1344aa9077521d129915f6371fe65", + "zh:98803e908ddf283a6967cc213b34bf0c04ba866a02a3e516db6462053625aad5", + "zh:bc47ab6583e549cd86f2fa6a69cdfdf85b795e1184b0e5e25b194bbf82377b32", + "zh:d0a8e77af1f1a1fab9f7867cc8b2b700dd988398093a7a3e3273dac6875c161a", "zh:f569b65999264a9416862bca5cd2a6177d94ccb0424f3a4ef424428912b9cb3c", ] } provider "registry.terraform.io/hashicorp/google-beta" { - version = "5.44.2" - constraints = ">= 4.50.0, ~> 5.44.0, < 6.0.0" + version = "5.45.0" + constraints = ">= 4.50.0, ~> 5.45.0, < 6.0.0" hashes = [ - "h1:+dWMbG9GzUR5ZmQRf4Q05Azict5CYh9ZcQnM/QjR75I=", - "h1:O3AwXzPFWNQUd/tWd2ynTqPieS7e2Zzl9e4gxRKU5VU=", - "h1:PQIEN1zfO9tSQE6nvIpTLJzuUnW4hjB30fwgMim6zUg=", - "h1:PSni6Z9r1qtjVJgMLb/FRae1duAUCZh8A3ueAUcMPck=", - "h1:PXwNxYvCoTF9GTQ2C6typhBKtCGIdIzUastmhsdqvF4=", - "h1:SlNgi1tWj3VVdOggDmJJF30zIBBgRpJTpSWUjOD7onc=", - "h1:Yb4rsiH+vcPRV8CcN3JDwYhtb7MRva8AGgIEWRrePAY=", - "h1:cWdSF9jThUv3mzSKMj9iwwZEy/ZuUwqBmKHA9VLtsYw=", - "h1:fH0lAfu5WXGWXtDwrIHvMfdNJlOhqzgvwxBvWq8l0dY=", - "h1:ja6TbOxTBOL4i7sJ5VYjGcmv3DW2NmEr7B5KKCAlssk=", - "h1:jhj2DoE4VJf8CPDZdCYE1GADEwTe0XautJfSc1467+s=", - "zh:108a43230ec91dc3bdf16a2ff50bb03c15c2d3a42aa63bb365954fc58f7f9fc1", - "zh:185b88114009697934bab658be8e4b98c12ebcee6911f194f1d9db47c7b81e38", - "zh:75d6a90eb83ef8b59a2abcb8806298e778bab9403863c32d290f94cb228dceaf", - "zh:7c71ace6802574191d8f49435c5419a3b8d9d3b7e4129a9b35ebdf7a95524a7a", - "zh:b44716e6c2f7f24891753500b658e534ea838dadb891ce7e72eca784c73dedbf", - "zh:b6aea90c19db615ed6714f4d8de0eb59288e2664f998600f9a874aac0b1bc8e1", - "zh:b9ead0a7b3c1491909eb3eeaf3fcf5c57319a17fa5f49dc476ad9bc527189bf0", - "zh:c29f51efe2eccd215fc0029233b994427d1673df5295949f51e592703a7b00c4", - "zh:c5b6af03119a0665c292ca9bb79609aa3a18b5e2ef86bf8118741748a436f54e", - "zh:e9d1eaf9a39260a82a8a529d2540d842b0c659b364b075d399b3f15b1eacf169", - "zh:eaa046a04df2601206a51db1a2fa68549d0759b960d05db269afe3b8877444c2", + "h1:WIl5hWBy0sM0Op4dguxXNaoiT9s+sY5DwbXKktMwBwA=", + "zh:1320129b0f6d2de7c0245d76118d83c7cdd052bee4a0234eb40fe000c3c0227b", + "zh:18592f31650e697c25f42a6ec26c79f7da5406c92330593242584ade57040b87", + "zh:1c2dd6050c9cfc4e690de056dcf58b262ea7f85abfbe4b60ee44dd360ff2a1b2", + "zh:560d9398296e52bfd64ada49f4c4ad120d5e98b1d0d75b103b78213d66df3c03", + "zh:7ce05dd2026c6ba6c3ee232cb1d66da5e472f5f77b8a0b0c44e854c37d06eff8", + "zh:7ffa5c7ccc53d5dd910cadd8c24ab78641080fe07b4c08eb714f98d46f1aa710", + "zh:9e429cf5c48bf7260add3cf7515d59cb25154cc5b36edeee0515dffeecf2d79e", + "zh:a2a54c710870bcb4ed614842271284eef6574d2eb618dc5162db4208d3014375", + "zh:b69ba5e5539699dcd4f9fdbb4d2e424b93137bf1fc5b812cbe18d823b0f09fea", + "zh:d26415fb70b8c3c9a2596f4244b8a2983a9b024bb54d85ccd87f348a7802545c", + "zh:d538686883e77e63ee01bcfe09076709cfdf95ce58277645d43695b1d880f467", "zh:f569b65999264a9416862bca5cd2a6177d94ccb0424f3a4ef424428912b9cb3c", ] } diff --git a/deployment/terraform/environments/oss-vdb-test/main.tf b/deployment/terraform/environments/oss-vdb-test/main.tf index 47165ef214d..82ebd20d4a5 100644 --- a/deployment/terraform/environments/oss-vdb-test/main.tf +++ b/deployment/terraform/environments/oss-vdb-test/main.tf @@ -39,11 +39,11 @@ terraform { required_providers { google = { source = "hashicorp/google" - version = "~> 5.44.0" + version = "~> 5.45.0" } google-beta = { source = "hashicorp/google-beta" - version = "~> 5.44.0" + version = "~> 5.45.0" } external = { source = "hashicorp/external" diff --git a/deployment/terraform/environments/oss-vdb/.terraform.lock.hcl b/deployment/terraform/environments/oss-vdb/.terraform.lock.hcl index be44ffc323c..f8cec64087b 100644 --- a/deployment/terraform/environments/oss-vdb/.terraform.lock.hcl +++ b/deployment/terraform/environments/oss-vdb/.terraform.lock.hcl @@ -32,61 +32,41 @@ provider "registry.terraform.io/hashicorp/external" { } provider "registry.terraform.io/hashicorp/google" { - version = "5.44.2" - constraints = ">= 4.50.0, ~> 5.44.0, < 6.0.0" + version = "5.45.0" + constraints = ">= 4.50.0, ~> 5.45.0, < 6.0.0" hashes = [ - "h1:AHWv7kf8xXa3dfUq7OLZLG+jtXPEQ3qjNxzJX+GyvoQ=", - "h1:ScKhMhplMe2aEJaew3ptqLc2w4J3AptAIktF+Bv9zIw=", - "h1:Tuz0jDxFyNEoCPZgzReui2pu511KklWTJnLveY6DEG8=", - "h1:Ubr0Wsab1o1b8ddtkL6ZQgRxHFPPmw9PGYIGy8BvcvY=", - "h1:VyIrCLvYKVdHIHl9KMdOUYa3K5zBFhjMRPGbzbuWcEQ=", - "h1:aRlYAC3oxCEmtO90g72cQqwu/d7Y5lnBz/dsN4oux5s=", - "h1:azoFK9bvjzil7U7dv6XzAZqqHgafyGmrJevM/VYyUVo=", - "h1:gqtQa4oy2DGnwsGv2cYvvX0d4R6HYnMHEYMvTwYr8jI=", - "h1:ldYrjIeJlqK9UizqM4nuZnhyc+Bs3uA3TYPlmnkoXcI=", - "h1:xbQ6PC9AiTrw+JCXSfDJFioGAFtmil6ktfwBrJECAZQ=", - "h1:yrZehR1cd7cgDdxQjK3cb4q63CIBkueEP63jO8FpA0g=", - "zh:2594d626d9148480688000b6c8e091d6bcc8f2a2dc28fe6e2ea27487f3c1726d", - "zh:2b0fafdb0ed7cbf4da5b4d7f3541ccd4402ee8cbdd66ebe26eaf9e904951da01", - "zh:310b1b0ac4f244a51abce22e41c7904e4bee50b5c1b66fd8646368f94ea6e563", - "zh:67c24e70b74e3d52f60e1b32d9c113f8d11e5db7265463e44a5b07474b79177c", - "zh:6d5069bf1e30570ef5189ad994a4b09c998b0f2630e169cc0b9cf68deafbb38d", - "zh:71bf6eb0d865082d736732cd48d9cb04a81500c55c48da91ac99816149cb3cb2", - "zh:970a29056d63a41bee915e634922cbb9caba7d34604f4884f001bfaf1e208b07", - "zh:a3b5ea6d67459a3237afcaaad4034998c8435b1d222f0c163d868a2863af5d24", - "zh:c049cb7edd8c797d7dd5b8f5a7a3a5b84cc08a1c60a50858fcdbec5d4db3f599", - "zh:c17c1133fce9ed5fea39da65f1c3024d5e04a5f0b94fd0d217c4988f6c1a3efd", - "zh:c657377f55a8a7abc16be34d26936d7879740d732136d40972013871c678db02", + "h1:O9Y/KFnZ9vd/fbdEN8sVUqJSwBQrnD41/gvcrq2tdjs=", + "zh:02916a209c660806a7ef30c3e404cd139705bdd401646791ac8876259d10d560", + "zh:3cd831a98d9de617d334be4885a253dcf7dfb54a383cf366482303fdd5fd7162", + "zh:42dfb0db08b7086f8de4f1d2f8326d3e07c99016ce6ca91f3d310458111acc97", + "zh:4a8cb3569e5006da3bc631bc340f0c6020f3d6140c4eb5821d92d0ff23fde2dd", + "zh:614e86cd8e793c8d622a869860f71dcedef783c1a72d754c8af919c1209b1f89", + "zh:7d42ec15014891c6b65c0115c2fc0e95066f71497ad9c56639f490f0922daa2c", + "zh:813d3f741280a75baea1bfb0eeaaf4c2910218bd7e3607749a1a86d89a17c4dd", + "zh:823a9133c1dc96d7069bb838438a4aa5bef1344aa9077521d129915f6371fe65", + "zh:98803e908ddf283a6967cc213b34bf0c04ba866a02a3e516db6462053625aad5", + "zh:bc47ab6583e549cd86f2fa6a69cdfdf85b795e1184b0e5e25b194bbf82377b32", + "zh:d0a8e77af1f1a1fab9f7867cc8b2b700dd988398093a7a3e3273dac6875c161a", "zh:f569b65999264a9416862bca5cd2a6177d94ccb0424f3a4ef424428912b9cb3c", ] } provider "registry.terraform.io/hashicorp/google-beta" { - version = "5.44.2" - constraints = ">= 4.50.0, ~> 5.44.0, < 6.0.0" + version = "5.45.0" + constraints = ">= 4.50.0, ~> 5.45.0, < 6.0.0" hashes = [ - "h1:+dWMbG9GzUR5ZmQRf4Q05Azict5CYh9ZcQnM/QjR75I=", - "h1:O3AwXzPFWNQUd/tWd2ynTqPieS7e2Zzl9e4gxRKU5VU=", - "h1:PQIEN1zfO9tSQE6nvIpTLJzuUnW4hjB30fwgMim6zUg=", - "h1:PSni6Z9r1qtjVJgMLb/FRae1duAUCZh8A3ueAUcMPck=", - "h1:PXwNxYvCoTF9GTQ2C6typhBKtCGIdIzUastmhsdqvF4=", - "h1:SlNgi1tWj3VVdOggDmJJF30zIBBgRpJTpSWUjOD7onc=", - "h1:Yb4rsiH+vcPRV8CcN3JDwYhtb7MRva8AGgIEWRrePAY=", - "h1:cWdSF9jThUv3mzSKMj9iwwZEy/ZuUwqBmKHA9VLtsYw=", - "h1:fH0lAfu5WXGWXtDwrIHvMfdNJlOhqzgvwxBvWq8l0dY=", - "h1:ja6TbOxTBOL4i7sJ5VYjGcmv3DW2NmEr7B5KKCAlssk=", - "h1:jhj2DoE4VJf8CPDZdCYE1GADEwTe0XautJfSc1467+s=", - "zh:108a43230ec91dc3bdf16a2ff50bb03c15c2d3a42aa63bb365954fc58f7f9fc1", - "zh:185b88114009697934bab658be8e4b98c12ebcee6911f194f1d9db47c7b81e38", - "zh:75d6a90eb83ef8b59a2abcb8806298e778bab9403863c32d290f94cb228dceaf", - "zh:7c71ace6802574191d8f49435c5419a3b8d9d3b7e4129a9b35ebdf7a95524a7a", - "zh:b44716e6c2f7f24891753500b658e534ea838dadb891ce7e72eca784c73dedbf", - "zh:b6aea90c19db615ed6714f4d8de0eb59288e2664f998600f9a874aac0b1bc8e1", - "zh:b9ead0a7b3c1491909eb3eeaf3fcf5c57319a17fa5f49dc476ad9bc527189bf0", - "zh:c29f51efe2eccd215fc0029233b994427d1673df5295949f51e592703a7b00c4", - "zh:c5b6af03119a0665c292ca9bb79609aa3a18b5e2ef86bf8118741748a436f54e", - "zh:e9d1eaf9a39260a82a8a529d2540d842b0c659b364b075d399b3f15b1eacf169", - "zh:eaa046a04df2601206a51db1a2fa68549d0759b960d05db269afe3b8877444c2", + "h1:WIl5hWBy0sM0Op4dguxXNaoiT9s+sY5DwbXKktMwBwA=", + "zh:1320129b0f6d2de7c0245d76118d83c7cdd052bee4a0234eb40fe000c3c0227b", + "zh:18592f31650e697c25f42a6ec26c79f7da5406c92330593242584ade57040b87", + "zh:1c2dd6050c9cfc4e690de056dcf58b262ea7f85abfbe4b60ee44dd360ff2a1b2", + "zh:560d9398296e52bfd64ada49f4c4ad120d5e98b1d0d75b103b78213d66df3c03", + "zh:7ce05dd2026c6ba6c3ee232cb1d66da5e472f5f77b8a0b0c44e854c37d06eff8", + "zh:7ffa5c7ccc53d5dd910cadd8c24ab78641080fe07b4c08eb714f98d46f1aa710", + "zh:9e429cf5c48bf7260add3cf7515d59cb25154cc5b36edeee0515dffeecf2d79e", + "zh:a2a54c710870bcb4ed614842271284eef6574d2eb618dc5162db4208d3014375", + "zh:b69ba5e5539699dcd4f9fdbb4d2e424b93137bf1fc5b812cbe18d823b0f09fea", + "zh:d26415fb70b8c3c9a2596f4244b8a2983a9b024bb54d85ccd87f348a7802545c", + "zh:d538686883e77e63ee01bcfe09076709cfdf95ce58277645d43695b1d880f467", "zh:f569b65999264a9416862bca5cd2a6177d94ccb0424f3a4ef424428912b9cb3c", ] } diff --git a/deployment/terraform/environments/oss-vdb/main.tf b/deployment/terraform/environments/oss-vdb/main.tf index b4d6d822cdb..58f66b02099 100644 --- a/deployment/terraform/environments/oss-vdb/main.tf +++ b/deployment/terraform/environments/oss-vdb/main.tf @@ -37,11 +37,11 @@ terraform { required_providers { google = { source = "hashicorp/google" - version = "~> 5.44.0" + version = "~> 5.45.0" } google-beta = { source = "hashicorp/google-beta" - version = "~> 5.44.0" + version = "~> 5.45.0" } external = { source = "hashicorp/external" From 7ca2f49acfb3692145774c881a103373891e3da7 Mon Sep 17 00:00:00 2001 From: Andrew Pollock Date: Wed, 13 Nov 2024 10:42:14 +1000 Subject: [PATCH 9/9] feat(importer): enable strict validation in staging (#2841) This only impacts sources that have `strict_validation` enabled for them, such as in #2837 Part of #2188 --- .../gke-workers/environments/oss-vdb-test/importer.yaml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/deployment/clouddeploy/gke-workers/environments/oss-vdb-test/importer.yaml b/deployment/clouddeploy/gke-workers/environments/oss-vdb-test/importer.yaml index 395b882500a..032e92e6f60 100644 --- a/deployment/clouddeploy/gke-workers/environments/oss-vdb-test/importer.yaml +++ b/deployment/clouddeploy/gke-workers/environments/oss-vdb-test/importer.yaml @@ -16,3 +16,7 @@ spec: # TODO(michaelkedar): ssh secrets # TODO(michaelkedar): single source of truth w/ terraform config - "--public_log_bucket=osv-test-public-import-logs" + # Note that with https://github.com/google/osv.dev/pull/2766 + # addition per-repository settings make this *really* take effect, see + # https://github.com/google/osv.dev/pull/2837 + - "--strict_validation=True"