gcp Google Cloud release notes ·

Dataform Security Vulnerability in BigQuery and Colab Enterprise

datasecuritygcpengineergcp-bigquery
security

A security vulnerability was found in Dataform repositories within BigQuery and Colab Enterprise, allowing authenticated attackers to escalate privileges and take over cross-tenant repositories. This impacts users of Dataform, BigQuery, and Colab Enterprise. Further details are available in the GCP-2026-047 security bulletin.

Security (1)
  • Dataform

    A Missing Authorization vulnerability was discovered in repositories in BigQuery, Dataform, and Colab Enterprise. An authenticated attacker could potentially escalate permissions and perform cross-tenant repository takeover. For more information, see the GCP-2026-047 Dataform security bulletin.

Read the original announcement →

https://docs.cloud.google.com/release-notes#July_13_2026