Update Terraform google to v7.27.0 #41

Merged
notarock-s-renovate[bot] merged 1 commit from renovate/google-7.x into main 2026-04-10 16:24:39 +00:00
notarock-s-renovate[bot] commented 2026-03-31 18:01:57 +00:00 (Migrated from github.com)

This PR contains the following updates:

Package Type Update Change
google (source) required_provider minor 7.25.07.27.0

Release Notes

hashicorp/terraform-provider-google (google)

v7.27.0

Compare Source

BREAKING CHANGES:

  • lustre: marked maintenance_policy.weekly_maintenance_windows field required in google_lustre_instance resource. Configuring maintenance_policy without weekly_maintenance_windows will cause an API error. (#​26741)

FEATURES:

  • New Data Source: google_discovery_engine_data_store (#​26651)
  • New Data Source: google_discovery_engine_data_stores (#​26651)
  • New Data Source: google_dns_record_sets (#​26736)
  • New Resource: google_chronicle_dashboard_chart (#​26707)
  • New Resource: google_chronicle_feed (#​26742)
  • New Resource: google_network_connectivity_transport (#​26626)
  • New Resource: google_iam_workload_identity_pool_managed_identity (#​26732)
  • New Resource: google_iam_workload_identity_pool_namespace (#​26647)

IMPROVEMENTS:

  • compute: added SEV_LIVE_MIGRATABLE_V2 to guest_os_features enum for google_compute_region_disk resource (#​26735)
  • compute: added SNP_SVSM_CAPABLE to guest_os_features enum for google_compute_image and google_compute_region_disk resources (#​26735)
  • compute: added excluded_folders and excluded_projects fields to google_compute_organization_security_policy_association resource (#​26694)
  • compute: supported in-place update for secondary_ip_range field in google_compute_subnetwork resource (#​26689)
  • container: added autopilot_privileged_admission field to google_container_cluster resource for Customer-Driven Allowlisting (#​26668)
  • dataplex: added aspects field to google_dataplex_entry_link resource (#​26664)
  • dataplex: supported in-place update for aspects field in google_dataplex_entry_link resource (#​26702)
  • dataproc: added boot_disk_provisioned_iops and boot_disk_provisioned_throughput fields to cluster_config.worker_config.disk_config in google_dataproc_cluster resource (#​26691)
  • dataproc: added value AUTO to runtime_config.autotuning_config.scenarios field in google_dataproc_batch resource (#​26646)
  • iambeta: added attestation_rules field to google_iam_workload_identity_pool resource (#​26706)
  • lustre: added dynamic_tier_options field to google_lustre_instance resource (#​26741)
  • migrationcenter: added virtual_machine_preferences.compute_engine_preferences.persistent_disk_type field to google_migration_center_preference_set resource (#​26693)
  • networkconnectivity: added exclude_import_ranges, include_export_ranges, exclude_export_ranges fields to google_network_connectivity_spoke resource (#​26730)
  • pubsub: added ai_inference field to google_pubsub_topic and google_pubsub_subscription resources (#​26738)
  • sql: added clone_context.source_project field to google_sql_database_instance resource to support cross project clone (#​26652)

BUG FIXES:

  • compute: fixed a permadiff on the adaptive_protection_config field in google_compute_security_policy resource (#​26692)
  • compute: fixed panic when setting google_compute_project_metadata on a project with no existing metadata (#​26630)
  • biglakeiceberg: changed the primary-location parameter to primary_location in the create URL of google_biglake_iceberg_catalog resource (#​26695)
  • securityposture: always sent value of enforce in policies.constraint.org_policy_constraint.policy_rules to the api in google_securityposture_posture resource (#​26645)
  • vertexai: fixed missing Private Service Connect service attachment for service_attachment field in google_vertex_ai_endpoint_with_model_garden_deployment resource (#​26690)
  • workstations: fixed update of private_cluster_config.allowed_projects in google_workstations_workstation_cluster resource (#​26705)

v7.26.0

Compare Source

BREAKING CHANGES:

  • compute: Removed google_compute_region_backend_bucket from the google (GA) provider. It is currently beta-only, and calls to the nonexistent GA API always returned a 404. Until released in google, use google-beta instead. (#​26597)

FEATURES:

  • New Data Source: google_network_security_address_groups (#​26562)
  • New Data Source: google_iam_workload_identity_pool_iam_policy (#​26598)
  • New Resource: google_bigqueryreservation_reservation_group (#​26560)
  • New Resource: google_compute_region_composite_health_check (#​26591)
  • New Resource: google_compute_region_health_aggregation_policy (#​26591)
  • New Resource: google_compute_region_health_source (#​26591)
  • New Resource: google_contact_center_insights_assessment_rule (#​26530)
  • New Resource: google_iam_workload_identity_pool_iam_* (#​26598)
  • New Resource: google_workstations_workstation (#​26561)
  • New Resource: google_workstations_workstation_iam_* (#​26561)
  • New Resource: google_workstations_workstation_cluster (#​26561)
  • New Resource: google_workstations_workstation_config (#​26561)
  • New Resource: google_workstations_workstation_config_iam_* (#​26561)

IMPROVEMENTS:

  • bigqueryreservation: added reservation_group field to google_bigquery_reservation resource (#​26560)
  • ces: added remote_dialogflow_agent.respect_response_interruption_settings field to google_ces_agent resource (#​26578)
  • clusterdirector: made boot_disk.size_gb and boot_disk.type editable within nodesets and login nodes in google_hypercomputecluster_cluster (#​26615)
  • colab: added colab_image field to google_colab_runtime_template resource (#​26582)
  • colab: made google_colab_runtime_template resource updatable (#​26582)
  • compute: added hyperdisk-balanced as an option for disk_type field in google_container_cluster resource (#​26581)
  • compute: made backend_service field optional for google_compute_target_tcp_proxy resource (#​26519)
  • compute: promoted resolve_subnet_field field in google_compute_subnetwork resource to GA (#​26570)
  • iambeta: promoted mode, inline_certificate_issuance_config, and inline_trust_config fields in google_iam_workload_identity_pool resource to GA (#​26598)
  • spanner: added autoscaling config for instance partition and missing asymmetric autoscaling override fields to google_spanner_instance resource (#​26577)
  • sql: added server_certificate_rotation_mode field to google_sql_database_instance resource (#​26572)
  • storage: added google_managed_encryption_enforcement_config, customer_managed_encryption_enforcement_config and customer_supplied_encryption_enforcement_config to google_storage_bucket resource (#​26529)

BUG FIXES:

  • alloydb: fixed an issue where password_wo and password_wo_version fields were not functioning properly during update requests in google_alloydb_user resource (#​26571)
  • biglake: fixed erroneous diff for the properties field in the google_biglake_iceberg_table and google_biglake_iceberg_namespace resources (#​26595)
  • cloudfunctionsv2: fixed validation to only allow one of direct_vpc_network_interface or vpc_connector on google_cloudfunctions2_function resource (#​26567)
  • cloudrunv2: fixed validation to only allow one of network_interfaces or connector on google_cloud_run_v2_service and google_cloud_run_v2_job resources (#​26567)
  • compute: fixed google_compute_region_backend_bucket being present in the google (GA) provider. It is currently beta-only, and calls to the nonexistent GA API always returned a 404. (#​26597)
  • compute: fixed invalid update mask used for rate_limit_options field in google_compute_region_security_policy_rule resource (#​26527)
  • compute: fixed invalid update mask used for rate_limit_options field in google_compute_security_policy and google_compute_security_policy_rule resources (#​26526)
  • iambeta: fixed a perma-diff on mode field for google_iam_workload_identity_pool resource (#​26601)
  • provider: fixed an issue when custom endpoints use http:// (#​26600)
  • vertexai: fixed operation calls in google_vertex_ai_ resources not respecting universe_domain and vertex_custom_endpoint (#​26556)

Configuration

📅 Schedule: Branch creation - Between 01:00 AM and 07:59 AM, only on Tuesday ( * 1-7 * * 2 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [google](https://registry.terraform.io/providers/hashicorp/google) ([source](https://redirect.github.com/hashicorp/terraform-provider-google)) | required_provider | minor | `7.25.0` → `7.27.0` | --- ### Release Notes <details> <summary>hashicorp/terraform-provider-google (google)</summary> ### [`v7.27.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#7270-Apr-07-2026) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v7.26.0...v7.27.0) BREAKING CHANGES: - lustre: marked `maintenance_policy.weekly_maintenance_windows` field required in `google_lustre_instance` resource. Configuring `maintenance_policy` without `weekly_maintenance_windows` will cause an API error. ([#&#8203;26741](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26741)) FEATURES: - **New Data Source:** `google_discovery_engine_data_store` ([#&#8203;26651](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26651)) - **New Data Source:** `google_discovery_engine_data_stores` ([#&#8203;26651](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26651)) - **New Data Source:** `google_dns_record_sets` ([#&#8203;26736](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26736)) - **New Resource:** `google_chronicle_dashboard_chart` ([#&#8203;26707](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26707)) - **New Resource:** `google_chronicle_feed` ([#&#8203;26742](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26742)) - **New Resource:** `google_network_connectivity_transport` ([#&#8203;26626](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26626)) - **New Resource:** `google_iam_workload_identity_pool_managed_identity` ([#&#8203;26732](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26732)) - **New Resource:** `google_iam_workload_identity_pool_namespace` ([#&#8203;26647](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26647)) IMPROVEMENTS: - compute: added `SEV_LIVE_MIGRATABLE_V2` to `guest_os_features` enum for `google_compute_region_disk` resource ([#&#8203;26735](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26735)) - compute: added `SNP_SVSM_CAPABLE` to `guest_os_features` enum for `google_compute_image` and `google_compute_region_disk` resources ([#&#8203;26735](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26735)) - compute: added `excluded_folders` and `excluded_projects` fields to `google_compute_organization_security_policy_association` resource ([#&#8203;26694](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26694)) - compute: supported in-place update for `secondary_ip_range` field in `google_compute_subnetwork` resource ([#&#8203;26689](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26689)) - container: added `autopilot_privileged_admission` field to `google_container_cluster` resource for Customer-Driven Allowlisting ([#&#8203;26668](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26668)) - dataplex: added `aspects` field to `google_dataplex_entry_link` resource ([#&#8203;26664](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26664)) - dataplex: supported in-place update for `aspects` field in `google_dataplex_entry_link` resource ([#&#8203;26702](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26702)) - dataproc: added `boot_disk_provisioned_iops` and `boot_disk_provisioned_throughput` fields to `cluster_config.worker_config.disk_config` in `google_dataproc_cluster` resource ([#&#8203;26691](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26691)) - dataproc: added value `AUTO` to `runtime_config.autotuning_config.scenarios` field in `google_dataproc_batch` resource ([#&#8203;26646](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26646)) - iambeta: added `attestation_rules` field to `google_iam_workload_identity_pool` resource ([#&#8203;26706](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26706)) - lustre: added `dynamic_tier_options` field to `google_lustre_instance` resource ([#&#8203;26741](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26741)) - migrationcenter: added `virtual_machine_preferences.compute_engine_preferences.persistent_disk_type` field to `google_migration_center_preference_set` resource ([#&#8203;26693](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26693)) - networkconnectivity: added `exclude_import_ranges`, `include_export_ranges`, `exclude_export_ranges` fields to `google_network_connectivity_spoke` resource ([#&#8203;26730](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26730)) - pubsub: added `ai_inference` field to `google_pubsub_topic` and `google_pubsub_subscription` resources ([#&#8203;26738](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26738)) - sql: added `clone_context.source_project` field to `google_sql_database_instance` resource to support cross project clone ([#&#8203;26652](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26652)) BUG FIXES: - compute: fixed a permadiff on the `adaptive_protection_config` field in `google_compute_security_policy` resource ([#&#8203;26692](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26692)) - compute: fixed panic when setting `google_compute_project_metadata` on a project with no existing metadata ([#&#8203;26630](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26630)) - biglakeiceberg: changed the `primary-location` parameter to `primary_location` in the create URL of google\_biglake\_iceberg\_catalog resource ([#&#8203;26695](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26695)) - securityposture: always sent value of `enforce` in `policies.constraint.org_policy_constraint.policy_rules` to the api in `google_securityposture_posture` resource ([#&#8203;26645](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26645)) - vertexai: fixed missing Private Service Connect service attachment for `service_attachment` field in `google_vertex_ai_endpoint_with_model_garden_deployment` resource ([#&#8203;26690](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26690)) - workstations: fixed update of `private_cluster_config.allowed_projects` in `google_workstations_workstation_cluster` resource ([#&#8203;26705](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26705)) ### [`v7.26.0`](https://redirect.github.com/hashicorp/terraform-provider-google/blob/HEAD/CHANGELOG.md#7260-Mar-31-2026) [Compare Source](https://redirect.github.com/hashicorp/terraform-provider-google/compare/v7.25.0...v7.26.0) BREAKING CHANGES: - compute: Removed `google_compute_region_backend_bucket` from the `google` (GA) provider. It is currently beta-only, and calls to the nonexistent GA API always returned a 404. Until released in `google`, use `google-beta` instead. ([#&#8203;26597](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26597)) FEATURES: - **New Data Source:** `google_network_security_address_groups` ([#&#8203;26562](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26562)) - **New Data Source:** `google_iam_workload_identity_pool_iam_policy` ([#&#8203;26598](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26598)) - **New Resource:** `google_bigqueryreservation_reservation_group` ([#&#8203;26560](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26560)) - **New Resource:** `google_compute_region_composite_health_check` ([#&#8203;26591](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26591)) - **New Resource:** `google_compute_region_health_aggregation_policy` ([#&#8203;26591](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26591)) - **New Resource:** `google_compute_region_health_source` ([#&#8203;26591](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26591)) - **New Resource:** `google_contact_center_insights_assessment_rule` ([#&#8203;26530](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26530)) - **New Resource:** `google_iam_workload_identity_pool_iam_*` ([#&#8203;26598](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26598)) - **New Resource:** `google_workstations_workstation` ([#&#8203;26561](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26561)) - **New Resource:** `google_workstations_workstation_iam_*` ([#&#8203;26561](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26561)) - **New Resource:** `google_workstations_workstation_cluster` ([#&#8203;26561](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26561)) - **New Resource:** `google_workstations_workstation_config` ([#&#8203;26561](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26561)) - **New Resource:** `google_workstations_workstation_config_iam_*` ([#&#8203;26561](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26561)) IMPROVEMENTS: - bigqueryreservation: added `reservation_group` field to `google_bigquery_reservation` resource ([#&#8203;26560](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26560)) - ces: added `remote_dialogflow_agent.respect_response_interruption_settings` field to `google_ces_agent` resource ([#&#8203;26578](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26578)) - clusterdirector: made `boot_disk.size_gb` and `boot_disk.type` editable within nodesets and login nodes in `google_hypercomputecluster_cluster` ([#&#8203;26615](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26615)) - colab: added `colab_image` field to `google_colab_runtime_template` resource ([#&#8203;26582](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26582)) - colab: made `google_colab_runtime_template` resource updatable ([#&#8203;26582](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26582)) - compute: added `hyperdisk-balanced` as an option for `disk_type` field in `google_container_cluster` resource ([#&#8203;26581](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26581)) - compute: made `backend_service` field optional for `google_compute_target_tcp_proxy` resource ([#&#8203;26519](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26519)) - compute: promoted `resolve_subnet_field` field in `google_compute_subnetwork` resource to GA ([#&#8203;26570](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26570)) - iambeta: promoted `mode`, `inline_certificate_issuance_config`, and `inline_trust_config` fields in `google_iam_workload_identity_pool` resource to GA ([#&#8203;26598](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26598)) - spanner: added autoscaling config for instance partition and missing asymmetric autoscaling override fields to `google_spanner_instance` resource ([#&#8203;26577](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26577)) - sql: added `server_certificate_rotation_mode` field to `google_sql_database_instance` resource ([#&#8203;26572](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26572)) - storage: added `google_managed_encryption_enforcement_config`, `customer_managed_encryption_enforcement_config` and `customer_supplied_encryption_enforcement_config` to `google_storage_bucket` resource ([#&#8203;26529](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26529)) BUG FIXES: - alloydb: fixed an issue where `password_wo` and `password_wo_version` fields were not functioning properly during update requests in `google_alloydb_user` resource ([#&#8203;26571](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26571)) - biglake: fixed erroneous diff for the `properties` field in the `google_biglake_iceberg_table` and `google_biglake_iceberg_namespace` resources ([#&#8203;26595](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26595)) - cloudfunctionsv2: fixed validation to only allow one of `direct_vpc_network_interface` or `vpc_connector` on `google_cloudfunctions2_function` resource ([#&#8203;26567](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26567)) - cloudrunv2: fixed validation to only allow one of `network_interfaces` or `connector` on `google_cloud_run_v2_service` and `google_cloud_run_v2_job` resources ([#&#8203;26567](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26567)) - compute: fixed `google_compute_region_backend_bucket` being present in the `google` (GA) provider. It is currently beta-only, and calls to the nonexistent GA API always returned a 404. ([#&#8203;26597](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26597)) - compute: fixed invalid update mask used for `rate_limit_options` field in `google_compute_region_security_policy_rule` resource ([#&#8203;26527](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26527)) - compute: fixed invalid update mask used for `rate_limit_options` field in `google_compute_security_policy` and `google_compute_security_policy_rule` resources ([#&#8203;26526](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26526)) - iambeta: fixed a perma-diff on `mode` field for `google_iam_workload_identity_pool` resource ([#&#8203;26601](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26601)) - provider: fixed an issue when custom endpoints use `http://` ([#&#8203;26600](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26600)) - vertexai: fixed operation calls in `google_vertex_ai_` resources not respecting `universe_domain` and `vertex_custom_endpoint` ([#&#8203;26556](https://redirect.github.com/hashicorp/terraform-provider-google/pull/26556)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - Between 01:00 AM and 07:59 AM, only on Tuesday ( * 1-7 * * 2 ) (UTC), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My43Ni4yIiwidXBkYXRlZEluVmVyIjoiNDMuNzYuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->
Sign in to join this conversation.
No description provided.