GCP releases
Google Cloud releases and Terraform Google provider. New features, breaking changes, security advisories and deprecations - each summarised in plain English and updated continuously.
Tracking 330 GCP releases · Updated
- Google Cloud release notes securityazuredeprecationengineer ·
Google SecOps Marketplace Connector Updates and Deprecations
Google SecOps Marketplace is deprecating several connectors, including Azure Security Center, Microsoft Sentinel, Microsoft Defender ATP, and Microsoft Graph Security, by March 30, 2027. These connectors will only receive critical bug fixes until then. Concurrently, updates have been made to the Google Chronicle connector for improved batch handling and monitoring, and various other connectors have received logic updates for error handling and minor fixes.
patch - Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Compute Engine Addresses Arm Core Vulnerability
A security vulnerability, CVE-2025-10263, affecting bypass of translation stages or GPT protections in certain Arm core families has been resolved in Compute Engine. This addresses a critical security issue impacting users leveraging these specific Arm configurations. More details are available in the GCP-2026-036 security bulletin.
security - Google Cloud release notes securitygcpengineer ·
Google SecOps UDM fields indicate data enrichment status
Google SecOps now visually indicates whether UDM fields are enriched with additional context. This new enrichment feature helps users understand the source and added value of data within their security operations platform. All users managing security data in Google SecOps are affected.
feature - Google Cloud release notes securitygcpengineer ·
Google SecOps SIEM: UDM fields show enrichment status
Google SecOps SIEM now visually indicates whether User Data Model (UDM) fields are enriched or unenriched using new 'E' or 'U' icons. This feature helps users understand the origin of data and the additional context provided by Google SecOps. It applies to all UDM fields within the SIEM. More details are available in the "Viewing events" documentation.
feature - Google Cloud release notes securitygcpengineer ·
Sensitive Data Protection: Object Type infoType detector availability expanded
The OBJECT_TYPE/PERSON/SIGNATURE infoType detector for Sensitive Data Protection is now available in global regions and specific multi-regions including Asia, Europe, and the US. This expansion allows more users to leverage this sensitive data detection capability. Engineers and architects working with sensitive data in these regions will benefit from the enhanced availability.
feature - Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Container Optimized OS Update Includes Numerous Linux Kernel Security Fixes
This release of Google's Container Optimized OS (COS) addresses a significant number of security vulnerabilities within the Linux kernel, including multiple CVEs. These fixes are critical for maintaining the security posture of containerized workloads running on GCP. The update applies to all users of Container Optimized OS, with specific versions for Kernel, Docker, Containerd, and GPU drivers noted.
security patch - Google Cloud release notes securitygcpengineer ·
Apigee hybrid v1.16.5 release
Google Cloud released an updated version of Apigee hybrid, v1.16.5, on June 8, 2026. This patch release includes various security and CVE fixes. Users can upgrade via Helm charts, which automatically update container images, simplifying the process.
security announcement - Google Cloud release notes securitygcpengineer ·
Google SecOps SOAR Release 6.3.88
Google SecOps SOAR has released version 6.3.88, currently rolling out to initial regions. This update focuses on internal and customer-facing bug fixes. Further details on regional availability can be found in the provided documentation.
announcement - Google Cloud release notes securitygcpgaarchitect ·
VPC Service Controls GA for Firebase Phone Number Verification
VPC Service Controls now offers general availability for Firebase Phone Number Verification. This integration allows organizations to enforce security perimeters around sensitive data access. It is available for all users of both services.
feature - Google Cloud release notes securitygcpengineer ·
Google SecOps SOAR 6.3.87 Released
Google SecOps SOAR has released version 6.3.87, which is now available across all regions. This release signifies an update to the security orchestration, automation, and response platform. Users can expect the latest improvements and features to be accessible immediately.
announcement - Google Cloud release notes securityawsengineer ·
reCAPTCHA Mobile SDK for iOS v18.9.1 released
Version 18.9.1 of the reCAPTCHA Mobile SDK for iOS is now available. This update resolves issues with symbol collisions, particularly affecting libraries that use Objective-C protocols. This patch is relevant for iOS developers integrating reCAPTCHA into their applications.
patch - Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Container Optimized OS Updates Address Multiple Linux Kernel CVEs
Container Optimized OS (COS) has released updates for its kernel, Docker, and Containerd components. These updates are critical as they patch numerous security vulnerabilities (CVEs) identified in the Linux kernel, enhancing the overall security posture of the operating system. The fixes are included in the latest versions of COS, applicable to users running these container environments on Google Cloud Platform.
security patch - Google Cloud release notes securitygcpengineer ·
Anthos Config Management addresses CVEs
Anthos Config Management has been updated to address multiple Common Vulnerabilities and Exposures (CVEs). This security patch is critical for all users to ensure their systems are protected against known threats. The update involves dependency refreshes, a standard procedure for maintaining system integrity.
patch - Google Cloud release notes aisecuritygcpengineer ·
Security Command Center renames AI Protection findings
Security Command Center (SCC) has renamed two finding categories within AI Protection to more clearly indicate that these detections relate to Gemini foundation models. This change impacts users monitoring AI Protection findings in SCC, clarifying the specific models being detected or not protected by Model Armor. The updated names are GEMINI_MODEL_DETECTED and GEMINI_MODEL_NOT_PROTECTED_BY_MODEL_ARMOR.
patch - Google Cloud release notes securityinfragcpengineer ·
Google SecOps Marketplace Integrations Updated
Several integrations within the Google SecOps Marketplace have received updates, including refactored code for actions like getting PCAP files, creating alerts, and retrieving detection details. These changes primarily impact security operations teams using these specific connectors, aiming to improve their functionality and reliability. The updates cover integrations for AlienVault USM, ConnectWise, Google Chronicle, Jira, ServiceDesk Plus, ServiceNow, Siemplify, MISP, and Microsoft Sentinel.
patch - Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Cloud Service Mesh Updates Address Numerous CVEs
Multiple versions of Cloud Service Mesh have been released with significant security updates, including fixes for critical and high-severity CVEs across the proxy, control plane, and CNI components. These updates are crucial for maintaining the security posture of service mesh deployments. Users are advised to upgrade to the latest available patch versions to protect against identified vulnerabilities.
patch announcement - Google Cloud release notes securitygcpengineer ·
Sensitive Data Data Protection adds conversational content inspection
Sensitive Data Protection now inspects and de-identifies conversational content, allowing users to include conversation data in their ContentItem requests. This enhancement expands the tool's capability to protect sensitive information within dialogues and chat logs. This feature is available for use in ContentItem requests.
feature - Google Cloud release notes securitygcppreviewengineer ·
VPC Service Controls Preview Support for Workload Identity API
VPC Service Controls now supports a preview of Workload Identity API integration. This enhancement helps improve security posture by enabling fine-grained access control for workloads. The feature is currently in preview, meaning it is available for testing and feedback but not yet generally available for production use.
feature - Google Cloud release notes securitygcpsecurity-advisoryengineer ·
Apigee X: Updated Cassandra version released for security
Google Cloud has released an updated version of Apigee X's Cassandra, incorporating a security fix for infrastructure vulnerabilities. This update addresses multiple CVEs and aims to enhance the security posture of Apigee X deployments. The rollout began on June 2nd, 2026, and may take several business days to complete across all Google Cloud zones.
security announcement - Google Cloud release notes securitygcppreviewengineer ·
Cloud Load Balancing adds post-quantum key exchange
Google Cloud Load Balancing now supports post-quantum key exchange for Application Load Balancers and external proxy Network Load Balancers. This feature protects current traffic from future quantum decryption risks by enabling clients that support TLS 1.3 and X25519MLKEM768 to use post-quantum key exchange. The rollout occurs in three phases, with opt-in available now and enablement by default beginning October 2026.
feature