GCP releases
Google Cloud releases and Terraform Google provider. New features, breaking changes, security advisories and deprecations - each summarised in plain English and updated continuously.
Tracking 330 GCP releases · Updated
- Google Cloud release notes infragcpgaengineer ·
GKE Adds Bare Metal, Confidential Nodes, and L4 Load Balancer Logging
Google Kubernetes Engine (GKE) announces general availability for bare metal instances on C4A Arm processors, alongside enhanced Confidential GKE Nodes supporting AMD SEV-SNP and Intel TDX on Autopilot. Additionally, GKE versions 1.36.0-gke.2459000+ allow direct Cloud Logging configuration for L4 load balancer backend services. These updates benefit users deploying Arm workloads, requiring enhanced security for sensitive data, and needing finer-grained visibility into L4 load balancer traffic.
feature - Google Cloud release notes governanceinfragcpengineer ·
Google Cloud Backup and DR: Organization-level Protection Summary
Google Cloud Backup and DR now offers protection summary views at the organization and folder levels. This enhancement helps administrators identify unprotected resources across their entire Google Cloud environment. The feature is available now and provides improved visibility for managing backup and disaster recovery.
feature - Terraform Google Provider Releases terraforminfragcpgaengineer ·
Terraform Google Provider v7.34.0: New Resources and Enhancements
Terraform Google Provider v7.34.0 introduces several new resources, including data sources for compute service attachments and Oracle GoldenGate environments, alongside new resources for configuration deployment and Dialogflow. Key enhancements include added fields for Bigtable instances, CES guardrails, Compute subnetworks, and SSL policies, plus improved support for resource identity management in IAM and project resources. These updates benefit users managing Google Cloud infrastructure via Terraform, offering expanded configuration options and bug fixes for existing resources.
feature patch announcement - Google Cloud release notes infrapreviewdeprecation ·
Google Cloud Managed Airflow Updates: Tags, Secrets, and Deprecations
Google Cloud's Managed Service for Apache Airflow now supports resource tagging for environments, enabling policy enforcement based on annotations. Additionally, Gen 3 environments can now manage Kubernetes Secrets of type kubernetes.io/dockerconfigjson via the beta Cloud Composer API. This release also includes log filtering fixes in the Airflow UI and announces end-of-support for several older Airflow versions and builds.
deprecation feature patch - Google Cloud release notes datainfragcp ·
Oracle Database@Google Cloud expands to Australia and Italy
Oracle Database@Google Cloud has been expanded to new regions in Australia and Italy, providing customers with enhanced local access to Exadata Database Service, Base Database Service, and Goldengate. This expansion aims to improve performance and compliance for workloads running on Google Cloud infrastructure. The update is relevant to organizations utilizing Oracle databases within Google Cloud, particularly those requiring data residency in these new locations.
feature - Google Cloud release notes infragcpgaengineer ·
Google Distributed Cloud for VMware 1.34.500-gke.108 Released
Google Distributed Cloud (software only) for VMware 1.34.500-gke.108 is now available, running on Kubernetes v1.34.7-gke.200. This release includes fixes for several critical issues, including those impacting cluster upgrades, provisioning, and diagnostic commands. Users should verify third-party storage compatibility and note the typical 7-14 day delay for API client availability after release.
patch announcement - Google Cloud release notes infradeprecation ·
GKE Updates: New Versions and Deprecations Across Channels
Google Kubernetes Engine (GKE) has released new cluster versions across its Rapid, Regular, Stable, and Extended channels. These updates offer new default versions for cluster creation and introduce new minor and patch versions available for upgrades, impacting users managing GKE clusters. Additionally, several older versions are being deprecated and will be removed within 90 days, requiring users to plan for upgrades.
security patch - Google Cloud release notes infragcpengineer ·
Google Distributed Cloud for bare metal 1.34.500-gke.108 released
Google Distributed Cloud (software only) for bare metal version 1.34.500-gke.108 is now available, running on Kubernetes v1.34.7-gke.200. This release includes several bug fixes addressing issues with control plane node bootstrapping, certificate rotation, etcd encryption updates, and cluster provisioning. Administrators and engineers managing bare-metal environments should review the release notes for specific details on the fixed vulnerabilities and operational improvements.
patch announcement - Google Cloud release notes infragcppreviewengineer ·
App Engine Python: Secure bundled service enablement
App Engine standard environment for Python now supports selectively enabling legacy bundled services via the `app_engine_bundled_services` field. This change enhances application security and maintainability by allowing developers to activate only necessary services. This feature is currently available as a preview.
feature - Google Cloud release notes infragcpengineer ·
GKE adds Cloud Storage FUSE CSI driver support for dedicated clusters
Google Kubernetes Engine now supports the Cloud Storage FUSE CSI driver for dedicated clusters and node pools running GKE version 1.36.0-gke.1266000 and higher. This feature allows for more integrated access to Cloud Storage buckets from within GKE workloads. Users must specify the custom-endpoint mount option to enable the driver.
feature - Google Cloud release notes securityinfragcpsecurity-advisoryengineer ·
Container Optimized OS Updates Address Security Vulnerabilities
This release of Google Container Optimized OS includes multiple package upgrades and patches to address numerous security vulnerabilities, primarily in the Linux kernel, Go, and curl. The updates ensure system security and stability for users running COS. The changes are available now for all users.
security patch announcement - Google Cloud release notes infragcppreviewengineer ·
GKE adds JobSet efficiency metrics in preview
Google Kubernetes Engine is now offering two new system metrics in preview to monitor the efficiency of GKE training JobSets. These metrics, kubernetes.io/jobset/scheduling_goodput and kubernetes.io/jobset/proxy_runtime_goodput, aim to provide insights into resource availability and accelerator productivity during training jobs. They are accessible via the GKE metrics and a dedicated JobSet monitoring dashboard.
feature - Google Cloud release notes infragcpengineer ·
Apigee hybrid v1.14.5 includes security fixes and UI improvements
Google Cloud has released Apigee hybrid version 1.14.5, which incorporates various security and CVE fixes, alongside updates to the Apigee UI. This release also marks the independent versioning of the Apigee Emulator, decoupling its updates from the hybrid release cycle. The update is available now for users managing Apigee hybrid instances.
security announcement - Google Cloud release notes infragcpengineer ·
Google Distributed Cloud for bare metal 1.35.100-gke.72 released
Google Distributed Cloud (software only) for bare metal version 1.35.100-gke.72 is now available. This release runs on Kubernetes v1.35.3-gke.400 and includes fixes for vulnerabilities. Users should check storage partner qualifications before upgrading.
patch announcement - Google Cloud release notes securityinfragcpsecurity-advisoryengineer ·
Container Optimized OS Updates: Kernel, Drivers, and Security Fixes
Container Optimized OS (COS) has been updated with a new Linux kernel version (6.18.32) and numerous security patches, including fixes for CVE-2025-38584 and CVE-2026-43060. The update also introduces support for new NVIDIA driver branches and adds the `cos_kernel_args` tool for manipulating kernel command line arguments. These changes are relevant for users running workloads on Google Cloud's Container Optimized OS, particularly those utilizing GPUs.
security feature patch announcement - Google Cloud release notes infragcpengineer ·
Config Controller Updates with Config Connector and Config Sync
Config Controller has been updated to use specific versions of its bundled components: Config Connector v1.148.0-cc.3 and Config Sync v1.23.3. These updates likely include bug fixes and minor enhancements for managing Google Cloud resources. This change affects users of Config Controller who rely on these integrated tools for their infrastructure as code deployments.
patch - Google Cloud release notes securityinfragcppreview ·
Secure Web Proxy now supports listening on all ports
Google Cloud's Secure Web Proxy can now be configured to listen on all ports (1-65535) when used as a next hop. This simplifies security policy enforcement for all outbound traffic by removing the need for manual port list management. The feature is currently in preview.
feature - Google Cloud release notes infrapreviewdeprecation ·
Google Kubernetes Engine Updates Include New Versions and Security Fixes
Google Kubernetes Engine (GKE) has released updated cluster versions across its Rapid, Regular, Stable, and Extended channels. These updates provide access to newer Kubernetes versions and include crucial security fixes through updated Container-Optimized OS images. The new versions are available for new clusters and for manual upgrades of existing control planes and nodes, with rollouts progressing across Google Cloud zones.
security patch - Google Cloud release notes infragcpgaarchitect ·
Google Distributed Cloud for VMware 1.35.100-gke.72 Released
Google Distributed Cloud (software only) for VMware version 1.35.100-gke.72 is now available, running on Kubernetes v1.35.3-gke.400. This update includes a fix for cluster health checks and diagnostics on non-advanced user clusters. Administrators should verify storage partner compatibility and be aware of a 7-14 day rollout period for API clients.
patch announcement - Google Cloud release notes infragcppreviewengineer ·
App Engine standard Python: Migrate to Cloud Run
App Engine standard environment Python users can now leverage the App Engine Migration hub to move services to Cloud Run. This feature also offers cost-saving recommendations for the migration. This is available as a preview, with more details provided in the documentation on deploying an App Engine app to Cloud Run.
feature