GCP releases
Google Cloud releases and Terraform Google provider. New features, breaking changes, security advisories and deprecations - each summarised in plain English and updated continuously.
Tracking 330 GCP releases · Updated
- Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Apigee Emulator v2.0.0 improves security and decouples releases
Apigee Emulator has been updated to version 2.0.0, independently versioned from Apigee hybrid for faster security updates. This release addresses 78 security vulnerabilities across various components, including Jackson Databind, SnakeYAML, Guava, and Go standard library. The updated emulator is available now and can be accessed via Google Artifact Registry, with instructions provided for updating VS Code Cloud Code settings.
security feature announcement - Google Cloud release notes securitygcpga ·
Access Transparency with DNS Armor is GA
Google Cloud's Access Transparency is now generally available with DNS Armor. This feature helps customers maintain compliance and security by providing visibility into Google's access to customer data. It is now production-ready for all customers.
feature - Google Cloud release notes securityinfragcpsecurity-advisoryengineer ·
Container Optimized OS Updates: Kernel, Drivers, and Security Fixes
Container Optimized OS (COS) has been updated with a new Linux kernel version (6.18.32) and numerous security patches, including fixes for CVE-2025-38584 and CVE-2026-43060. The update also introduces support for new NVIDIA driver branches and adds the `cos_kernel_args` tool for manipulating kernel command line arguments. These changes are relevant for users running workloads on Google Cloud's Container Optimized OS, particularly those utilizing GPUs.
security feature patch announcement - Google Cloud release notes securitygcppreviewdeprecationengineer ·
Security Command Center updates and deprecations
Google Cloud's Security Command Center has updated several compliance frameworks, including CIS Controls and ISO 27001. The Security Command Center Enterprise tier is being deprecated and will be shut down on May 21, 2027, with organizations automatically migrating to the Premium tier. New features, Artifact Guard and Risk Engine for Cloud Build, are now available in preview.
deprecation feature patch - Google Cloud release notes securityinfragcppreview ·
Secure Web Proxy now supports listening on all ports
Google Cloud's Secure Web Proxy can now be configured to listen on all ports (1-65535) when used as a next hop. This simplifies security policy enforcement for all outbound traffic by removing the need for manual port list management. The feature is currently in preview.
feature - Google Cloud release notes securitygcpengineer ·
Google SecOps Marketplace Updates
The Google Security Operations Marketplace has released updates for several integrations, including refactoring and code updates for actions related to PCAP files and alerts. Notably, the ServiceNow connector now supports updating reference fields, and the Google Chronicle connector includes new filtering capabilities for alerts. These changes aim to improve integration functionality and data handling for security operations teams.
patch - Google Cloud release notes securitygcpengineer ·
Confidential Space adds Intel Trust Authority support
Google Cloud's Confidential Space now supports Intel Trust Authority (ITA) for independent attestation. This feature allows users to verify the hardware and software state of their Confidential Space environments using Intel's attestation service. The update is available with Confidential Space image 260500 and is primarily relevant for engineers and architects managing sensitive workloads.
announcement - Google Cloud release notes securitygcpsecurity-advisory ·
Apigee X Security Bulletin: SSRF Vulnerability
A security bulletin has been published for Apigee X detailing a Server-Side Request Forgery (SSRF) vulnerability (CVE-2026-2264). The vulnerability arises from insufficient validation of the IntegrationRegion parameter in the SetIntegrationRequest policy, potentially allowing service account token exfiltration. This impacts users who can manipulate flow variables controlling the IntegrationRegion parameter.
security - Google Cloud release notes securitygcpengineer ·
Security Command Center adds XFS/NTFS disk scanning
Google Cloud's Security Command Center now supports vulnerability assessment for XFS and NTFS disk partition types. This enhancement expands the scope of security monitoring to more diverse storage configurations commonly used in cloud environments. It benefits security engineers and architects by providing a more comprehensive view of potential vulnerabilities across various disk formats.
patch - Google Cloud release notes securitygcpgadeprecationengineer ·
Google SecOps SIEM Data Export API GA with Enhancements
Google SecOps SIEM's enhanced Data Export API is now generally available, offering improved security and scalability for exporting security data to Google Cloud Storage. Key new features include advanced data filtering, zero-trust encryption with customer-managed keys, and identity-aware extraction via RBAC. Legacy export APIs and specific endpoints are deprecated with an end-of-life date of June 18, 2026, requiring users to update their API calls to the new v1 endpoint.
deprecation feature - Google Cloud release notes securitygcpgadeprecationengineer ·
Google SecOps Enhanced Data Export API GA with Security Improvements
The Google SecOps Data Export API is now generally available with enhanced security and data filtering capabilities, allowing bulk export of security data to customer-controlled Google Cloud Storage buckets. This upgrade provides a more secure and scalable archival experience with features like customer-managed encryption keys and RBAC integration. Users must update their API settings to use the new v1 endpoint, and legacy endpoints will be deprecated by June 18, 2026.
deprecation feature - Google Cloud release notes securitygcpengineer ·
Google SecOps SOAR 6.3.85 Release
Google SecOps SOAR version 6.3.85 is rolling out, starting with an initial set of regions. This update primarily addresses internal and customer-reported bugs to improve stability and reliability. The release is available in specific regions, as detailed in the provided list.
announcement - Google Cloud release notes securitygcpengineer ·
Google SecOps SIEM adds new parser documentation
Google SecOps SIEM has released new documentation to assist users in ingesting and normalizing logs from a wide array of sources. This update enables better data integration for security analysis and threat detection. The documentation is now available for all Google SecOps SIEM users.
announcement - Google Cloud release notes securitygcpengineer ·
Google SecOps adds new log parser documentation
Google Cloud Security Operations (SecOps) has released new documentation to assist users in parsing and normalizing logs from a variety of sources. This documentation aims to simplify the ingestion process for security teams managing diverse log streams. The update provides guidance for collecting logs from numerous enterprise applications and security tools.
announcement - Google Cloud release notes securitygcpgaengineer ·
Google SecOps SOAR Release 6.3.84 Available
Google SecOps SOAR has released version 6.3.84, now available in all regions. This update brings general availability to the platform. The specific changes included in this release are not detailed.
announcement