v6.30.0

FEATURES:

• New Resource: google_developer_connect_account_connector (#22270)
• New Resource: google_vertex_ai_feature_group_iam_* (#22260)
• New Resource: google_vertex_ai_feature_online_store_iam_* (#22260)
• New Resource: google_vertex_ai_feature_online_store_featureview_iam_* (#22260)

IMPROVEMENTS:

• bigquery: added external_catalog_table_options and schema_foreign_type_info fields to google_bigquery_table resource (#22302)
• cloudrunv2: added iap_enabled field to google_cloud_run_v2_service resource (#22301)
• compute: added source_disk_encryption_key.kms_key_self_link and source_disk_encryption_key.rsa_encrypted_key fields to google_compute_snapshot resource (#22247)
• compute: added source_disk_encryption_key, source_image_encryption_key and source_snapshot_encryption_key fields to google_compute_image resource (#22247)
• compute: added type, source_nat_active_ranges and source_nat_drain_ranges fields to google_compute_router_nat resource (#22282)
• databasemigrationservice: allowed setting ssl.type in google_database_migration_service_connection_profile resource (#22268)
• firestore: added MONGODB_COMPATIBLE_API enum option to api_scope field in google_firestore_index resource (#22287)
• firestore: added database_edition field to google_firestore_database resource (#22287)
• firestore: added density and multikey fields to google_firestore_index resource (#22287)
• memorystore: added managed_backup_source and gcs_source fields to google_memorystore_instance resource (#22295)
• monitoring: added password_wo write-only field and password_wo_version field to google_monitoring_uptime_check_config resource (#22242)
• redis: added managed_backup_source and gcs_source fields to google_redis_cluster resource (#22277)
• storage: added support for deleting pending caches present on bucket when setting force_destory to true in google_storage_bucket resource (#22262)
• storagecontrol: added trial_config field to google_storage_control_folder_intelligence_config resource (#22236)
• storagecontrol: added trial_config field to google_storage_control_organization_intelligence_config resource (#22236)
• storagecontrol: added trial_config field to google_storage_control_project_intelligence_config resource (#22236)

BUG FIXES:

• container: fixed perma-diff in fleet field when the fleet.project field being added is null or empty in google_container_cluster resource (#22240)
• pubsub: fixed perma-diff by changing allowed_persistence_regions field to set in google_pubsub_topic resource (#22273)

v6.29.0

FEATURES:

• New Resource: google_clouddeploy_deploy_policy (#22190)
• New Resource: google_control_plane_access (#22209)
• New Resource: google_gemini_code_tools_setting_binding (#22226)
• New Resource: google_gemini_code_tools_setting (#22203)
• New Resource: google_os_config_v2_policy_orchestrator_for_organization (#22192)

IMPROVEMENTS:

• accesscontextmanager: added session_settings field to gcp_user_access_binding resource (#22227)
• cloudedeploy: added timed_promote_release_rule and repair_rollout_rule fields to google_clouddeploy_automation resource (#22190)
• compute: added group_placement_policy.0.tpu_topology field to google_compute_resource_policy resource (#22201)
• datastream: added support for creating streams for Salesforce source in google_datastream_stream (#22205)
• gkehub: enabled partial results to be returned when a cloud region is unreachable in google_gke_hub_feature (#22218)
• gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_admin_cluster resource (#22188)
• gkeonprem: added enable_advanced_cluster field to google_gkeonprem_vmware_cluster resource (#22188)
• memorystore: added automated_backup_config field to google_memorystore_instance resource, (#22208)
• netapp: added tiering_policy to google_netapp_volume_replication resource (#22223)
• parametermanagerregional: added kms_key_version field to google_parameter_manager_regional_parameter_version resource and datasource (#22213)
• parametermanagerregional: added kms_key field to google_parameter_manager_regional_parameter resource and google_parameter_manager_regional_parameters datasource (#22213)
• redis: added automated_backup_config field to google_redis_cluster (#22117)
• storage: added md5hexhash field in google_storage_bucket_object (#22229)
• workbench: added confidential_instance_config field to google_workbench_instance resource (#22178)

BUG FIXES:

• colab: fixed an issue where google_colab_* resources incorrectly required a provider-level region matching the resource location (#22217)
• datastream: updated private_keyto be mutable in google_datastream_connection_profile resource. (#22179)

v6.28.0

DEPRECATIONS:

• compute: deprecated enable_flow_logs in favor of log_config on google_compute_subnetwork resource. If log_config is present, flow logs are enabled, and enable_flow_logs can be safely removed. (#22111)
• containerregistry: Deprecated google_container_registry resource, and google_container_registry_image and google_container_registry_repository data sources. Use google_artifact_registry_repository instead. (#22071)

FEATURES:

• New Data Source: google_compute_region_backend_service (#21986)
• New Data Source: google_organization_iam_custom_roles (#22035)
• New Data Source: google_parameter_manager_parameter_version_render (#22099)
• New Data Source: google_parameter_manager_parameter_version (#22099)
• New Data Source: google_parameter_manager_parameter (#22099)
• New Data Source: google_parameter_manager_parameters (#22099)
• New Data Source: google_parameter_manager_regional_parameter_version_render (#22099)
• New Data Source: google_parameter_manager_regional_parameter_version (#22099)
• New Data Source: google_parameter_manager_regional_parameter (#22099)
• New Data Source: google_parameter_manager_regional_parameters (#22099)
• New Data Source: google_storage_control_folder_intelligence_config (#22077)
• New Data Source: google_storage_control_organization_intelligence_config (#22077)
• New Data Source: google_storage_control_project_intelligence_config (#22077)
• New Resource: google_apigee_dns_zone (#21992)
• New Resource: google_chronicle_data_access_scope (#21982)
• New Resource: google_chronicle_referencelist (#22090)
• New Resource: google_chronicle_retrohunt (#22092)
• New Resource: google_chronicle_rule (#22089)
• New Resource: google_chronicle_rule_deployment (#22093)
• New Resource: google_chronicle_watchlist (#21989)
• New Resource: google_dataproc_metastore_database_iam_* resources (#21985)
• New Resource: google_dataproc_metastore_table_iam_* (#22064)
• New Resource: google_discovery_engine_sitemap (#21976)
• New Resource: google_eventarc_enrollment (#22028)
• New Resource: google_firebase_app_hosting_build (#22063)
• New Resource: google_memorystore_instance_desired_user_created_endpoints (#22073)
• New Resource: google_parameter_manager_parameter_version (#22099)
• New Resource: google_parameter_manager_parameter (#22099)
• New Resource: google_parameter_manager_regional_parameter_version (#22099)
• New Resource: google_parameter_manager_regional_parameter (#22099)
• New Resource: google_storage_control_folder_intelligence_config (#22061)
• New Resource: google_storage_control_organization_intelligence_config (#21987)

IMPROVEMENTS:

• accesscontextmanager: added roles field to ingress and egress policies of google_access_context_manager_service_perimeter* resources (#22086)
• cloudfunctions2: added binary_authorization_policy field to google_cloudfunctions2_function resource (#22070)
• cloudrun: promoted node_selector field in google_cloud_run_service resource to GA (#22054)
• cloudrunv2: added gpu_zonal_redundancy_disabled field to google_cloud_run_v2_service resource (#22054)
• cloudrunv2: promoted node_selector field in google_cloud_run_v2_service resource to GA (#22054)
• compute: added md5_authentication_keys field to google_compute_router resource (#22101)
• compute: added EXTERNAL_IPV6_SUBNETWORK_CREATION as a supported value for the mode field in google_compute_public_delegated_prefix resource (#22037)
• compute: added external_ipv6_prefix, stack_type, and ipv6_access_type fields to google_compute_subnetwork data source (#22085)
• compute: added several boot_disk, attached_disk, and instance_encryption_key fields to google_compute_instance and google_compute_instance_template resources (#22096)
• compute: added image_encryption_key.raw_key and image_encryption_key.rsa_encrypted_key fields to google_compute_image resource (#22096)
• compute: added snapshot_encryption_key.rsa_encrypted_key field to google_compute_snapshot resource (#22096)
• container: added auto_monitoring_config field to google_container_cluster resource (#21970)
• container: added disable_l4_lb_firewall_reconciliation field to google_container_cluster resource (#22065)
• datafusion: added tags field to google_data_fusion_instance resource to allow setting tags for instances at creation time (#21977)
• datastream: added blmt_config field to bigquery_destination_config resource to enable support for BigLake Managed Tables streams (#22109)
• datastream: added secret_manager_stored_password field to google_datastream_connection_profile resource (#22046)
• identityplatform: added disabled_user_signup and disabled_user_deletion to google_identity_platform_tenant resource (#21983)
• memorystore: added psc_attachment_details field to google_memorystore_instance resource, to enable use of the fine-grained resource google_memorystore_instance_desired_user_created_connections (#22073)
• memorystore: added the cross_cluster_replication_config field to the google_redis_cluster resource (#22097)
• metastore: added deletion_protection field to google_dataproc_metastore_federation resource (#22106)
• networksecurity: added antivirus_overrides field to google_network_security_security_profile resource (#22060)
• networksecurity: added connected_deployment_groups and associations fields to google_network_security_mirroring_endpoint_group resource (#21974)
• networksecurity: added locations field to google_network_security_mirroring_deployment_group resource (#21975)
• networksecurity: added locations field to google_network_security_mirroring_endpoint_group_association resource (#21971)
• parametermanager: ...

v6.27.0

FEATURES:

• New Data Source: google_compute_images (#21872)
• New Data Source: google_organization_iam_custom_role (#21922)
• New Resource: google_lustre_instance (#21963)
• New Resource: google_os_config_v2_policy_orchestrator (#21930)
• New Resource: google_storage_control_project_intelligence_config (#21902)
• New Resource: google_chronicle_data_access_label (#21956)
• New Resource: google_compute_router_route_policy (#21945)

IMPROVEMENTS:

• bigquery: added secondary_location and replication_status fields to support managed disaster recovery feature in google_bigquery_reservation (#21920)
• clouddeploy: added dns_endpoint field to to google_clouddeploy_target resource (#21868)
• compute: added shielded_instance_initial_state structure to google_compute_image resource (#21937)
• compute: added LINK_TYPE_ETHERNET_400G_LR4 enum value to link_type field in google_compute_interconnect resource (#21903)
• compute: added architecture and guest_os_features to google_compute_instance (#21875)
• compute: added workload_policy.type, workload_policy.max_topology_distance and workload_policy.accelerator_topology fields to google_compute_resource_policy resource (#21961)
• container: added ip_endpoints_config field to google_container_cluster resource (#21959)
• container: added node_config.windows_node_config field to google_container_node_pool resource. (#21876)
• container: added pod_autoscaling field to google_container_cluster resource (#21919)
• memorystore: added the maintenance_policy field to the google_memorystore_instance resource (#21957)
• memorystore: enabled update support for node_type field in google_memorystore_instance resource (#21899)
• metastore: promoted scaling_config field of google_dataproc_metastore_service resource to GA (#21877)
• networksecurity: added connected_deployment_group and associations fields to google_network_security_intercept_endpoint_group resource (#21940)
• networksecurity: added locations field to google_network_security_intercept_deployment_group resource (#21923)
• networksecurity: added locations field to google_network_security_intercept_endpoint_group_association resource (#21962)
• redis: added update support for google_redis_cluster node_type (#21870)
• storage: added metadata_options in google_storage_transfer_job (#21897)

BUG FIXES:

• bigqueryanalyticshub: fixed a bug in google_bigquery_analytics_hub_listing_subscription where a subscription using a different project than the dataset would not work (#21958)
• cloudrun: fixed the perma-diffs for unchanged template.spec.containers.env in google_cloud_run_service resource (#21916)
• cloudrunv2: fixed the perma-diffs for unchanged template.containers.env in google_cloud_run_v2_service resource (#21916)
• compute: fixed the issue that user can't use regional disk in google_compute_instance_template (#21901)
• dataflow: fixed a permadiff on template_gcs_path in google_dataflow_job resource (#21894)
• storage: lowered the minimum required items for custom_placement_config.data_locations from 2 to 1, and removed the Terraform-enforced maximum item limit for the field in google_storage_bucket (#21878)

v6.26.0

FEATURES:

• New Data Source: google_project_iam_custom_role (#21866)
• New Data Source: google_project_iam_custom_roles (#21813)
• New Resource: google_eventarc_pipeline (#21761)
• New Resource: google_firebase_app_hosting_backend (#21840)
• New Resource: google_network_security_mirroring_deployment (#21853)
• New Resource: google_network_security_mirroring_deployment_group (#21853)
• New Resource: google_network_security_mirroring_endpoint_group_association (#21853)
• New Resource: google_network_security_mirroring_endpoint_group (#21853)

IMPROVEMENTS:

• alloydb: added psc_config field to ``google_alloydb_cluster` resource (#21863)
• bigquery: added table_metadata_view query param to google_bigquery_table (#21838)
• clouddeploy: added dns_endpoint field to to google_clouddeploy_target resource (#21868)
• compute: added UNRESTRICTED option to the tls_early_data field in the google_compute_target_https_proxy resource (#21821)
• compute: added enable_flow_logs and state fields to google_compute_subnetwork resource (#21851)
• compute: promoted fields single_instance_assignment and filter to GA for google_compute_autoscaler resource (#21760)
• container: added additional value KCP_HPA for logging_config.enable_components field in google_container_cluster resource (#21836)
• dataform: added deletion_policy field to google_dataform_repository resource. Default value is DELETE. Setting deletion_policy to FORCE will delete any child resources of this repository as well. (#21864)
• memorystore: added update support for engine_version field in google_memorystore_instance resource (#21843)
• metastore: added create_time and update_time fields to google_dataproc_metastore_federation resource (#21824)
• metastore: added create_time and update_time fields to google_dataproc_metastore_service resource (#21817)
• networksecurity: added not_operations field to google_network_security_authz_policy resource (#21785)
• networkservices: added ip_version and envoy_headers fields to google_network_services_gateway resource (#21788)
• sql: increased settings.insights_config.query_string_length and settings.insights_config.query_string_length limits for Enterprise Plus edition sql_database_instance resource. (#21848)
• storageinsights: added parquet_options field to google_storage_insights_report_config resource (#21816)
• workflows: added execution_history_level field to google_workflows_workflow resource (#21782)

BUG FIXES:

• accesscontextmanager: fixed panic on empty access_policies in google_access_context_manager_access_policy (#21845)
• compute: adjusted mapped image names that were preventing usage of fedora-coreos in google_compute_image resource (#21787)
• container: re-added DNS_SCOPE_UNSPECIFIED value to the dns_config.cluster_dns_scope field in google_container_cluster resource and suppressed diffs between DNS_SCOPE_UNSPECIFIED in config and empty/null in state (#21861)
• discoveryengine: changed field dataStoreIds to mutable in google_discovery_engine_search_engine (#21759)
• networksecurity: min_tls_version and tls_feature_profile fields updated to use the server assigned default and prevent a permadiff in google_network_security_tls_inspection_policy resource. (#21788)
• oslogin: added a wait after creating google_os_login_ssh_public_key to allow propagation (#21860)
• spanner: fixed issue with disabling autoscaling in google_spanner_instance (#21852)

v6.25.0

NOTES:

• eventarc: google_eventarc_channel now uses MMv1 engine instead of DCL. (#21728)
• workbench: increased create timeout for google_workbench_instance to 40mins. (#21700)

FEATURES:

• New Data Source: google_compute_region_ssl_policy (#21633)
• New Resource: google_eventarc_google_api_source (#21732)
• New Resource: google_iam_oauth_client_credential (#21731)
• New Resource: google_iam_oauth_client (#21660)
• New Resource: network_services_endpoint_policy (#21676)
• New Resource: network_services_grpc_route (#21676)
• New Resource: network_services_http_route (#21676)
• New Resource: network_services_mesh (#21676)
• New Resource: network_services_service_binding (#21676)
• New Resource: network_services_tcp_route (#21676)
• New Resource: network_services_tls_route (#21676)

IMPROVEMENTS:

• alloydb: added psc_instance_config.psc_interface_configs field to google_alloydb_instance resource (#21701)
• compute: added create_snapshot_before_destroy to google_compute_disk and google_compute_region_disk to enable creating a snapshot before disk deletion (#21636)
• compute: added custom_metrics field to google_compute_backend_service and google_compute_region_backend_service (#21710)
• compute: added ip_collection and ipv6_gce_endpoint fields to google_compute_subnetwork resource (#21730)
• compute: added log_config.optional_mode and log_config.optional_fields fields to google_compute_region_backend_service resource (#21722)
• compute: added rsa_encrypted_key to google_compute_region_disk (#21636)
• compute: added scheduling.termination_time field to google_compute_instance, google_compute_instance_from_machine_image, google_compute_instance_from_template, google_compute_instance_template, and google_compute_region_instance_template resources (#21717)
• compute: added update support for 'purpose' field in google_compute_subnetwork resource (#21729)
• compute: added update support for firewall_policy in google_compute_firewall_policy_association resource. It is recommended to only perform this operation in combination with a protective lifecycle tag such as "create_before_destroy" or "prevent_destroy" on your previous firewall_policy resource in order to prevent situations where a target attachment has no associated policy. (#21735)
• container: added "JOBSET" as a supported value for enable_components in google_container_cluster resource (#21657)
• firebasedataconnect: added deletion_policy field to google_firebase_data_connect_service resource (#21736)
• networksecurity: added description field to google_network_security_intercept_deployment, google_network_security_intercept_deployment_group, google_network_security_intercept_endpoint_group resources (#21711)
• networksecurity: added description field to google_network_security_mirroring_deployment, google_network_security_mirroring_deployment_group, google_network_security_mirroring_endpoint_group resources (#21714)
• tpuv2: added spot field to google_tpu_v2_vm resource (#21716)
• workstations: added tags field to google_workstations_workstation_cluster resource (#21635)

BUG FIXES:

• backupdr: added missing SUNDAY option to days_of_week field in google_backup_dr_backup_plan resource (#21640)
• compute: fixed network_interface.internal_ipv6_prefix_length not being set or read in Terraform state in google_compute_instance resource (#21638)
• compute: fixed bug in google_compute_router_nat where max_ports_per_vm couldn't be unset once set. (#21721)
• container: fixed perma-diff in google_container_cluster when cluster_dns_scope is unspecified (#21637)
• networksecurity: added wait time on google_network_security_gateway_security_policy_rule resource when creating and deleting to prevent race conditions (#21643)

v6.24.0

NOTES:

• gemini: removed unsupported value GEMINI_CLOUD_ASSIST for field product in google_gemini_logging_setting_binding resource (#21630)
• iam: added member value to the error message when member validation fails for google_project_iam_* (#21586)

DEPRECATIONS:

• datacatalog: deprecated google_data_catalog_entry and google_data_catalog_tag resources. For steps to transition your Data Catalog users, workloads, and content to Dataplex Catalog, see https://cloud.google.com/dataplex/docs/transition-to-dataplex-catalog. (#21541)
• notebooks: deprecated non-functional google_notebooks_location resource (#21517)

FEATURES:

• New Data Source: google_memorystore_instance (#21579)
• New Resource: google_apihub_host_project_registration (#21607)
• New Resource: google_compute_instant_snapshot (#21598)
• New Resource: google_eventarc_message_bus (#21611)
• New Resource: google_gemini_data_sharing_with_google_setting_binding (GA) (#21629)
• New Resource: google_gemini_gcp_enablement_setting_binding (GA) (#21587)
• New Resource: google_gemini_gemini_gcp_enablement_setting_binding (#21540)
• New Resource: google_storage_anywhere_cache (#21537)

IMPROVEMENTS:

• alloydb: added ability to upgrade major version in google_alloydb_cluster with database_version (#21582)
• compute: added creation_timestamp, next_hop_peering, warnings.code, warnings.message, warnings.data.key, warnings.data.value, next_hop_hub, route_type, as_paths.path_segment_type, as_paths.as_lists and route_status fields to google_compute_route resource (#21534)
• compute: added max_stream_duration field to google_compute_url_map resource (#21535)
• compute: added network_interface.network_attachment field to google_compute_instance resource (ga) (#21606)
• compute: added network_interface.network_attachment to google_compute_instance data source (ga) (#21606)
• compute: added fields architecture, source_instant_snapshot, source_storage_object, resource_manager_tags to google_compute_disk. (#21598)
• container: added enum value UPGRADE_INFO_EVENT for GKE notification filter in google_container_cluster resource (#21609)
• iam: added AZURE_AD_GROUPS_ID field to google_iam_workforce_pool_provider.extra_attributes_oauth2_client.attributes_type resource (#21624)
• networkconnectivity: added policy_mode field to google_network_connectivity_hub resource (#21589)
• networkservices: added location field to google_network_services_grpc_route resource (#21621)
• storagetransfer: added logging_config field to google_storage_transfer_job resource (#21523)

BUG FIXES:

• bigquery: updated the max_staleness field in google_bigquery_table to be a computed field (#21596)
• chronicle: fixed an error during resource creation with certain run_frequency configurations in google_chronicle_rule_deployment (#21610)
• discoveryengine: fixed bug preventing creation of google_discovery_engine_target_site resources (#21628)
• eventarc: fixed an issue where google_eventarc_trigger creation failed due to the region could not be parsed from the trigger's name (#21528)
• publicca: encode b64_mac_key in base64url, not in base64 (#21612)
• storage: fixed a 412 error returned on some google_storage_bucket_iam_policy deletions (#21626)

v6.23.0

NOTES:

• The google_sql_user resource now supports password_wo write-only arguments
• The google_bigquery_data_transfer_config resource now supports secret_access_key_wo write-only arguments
• The google_secret_version resource now supports secret_data_wo write-only arguments

IMPROVEMENTS:

• sql: added password_wo and password_wo_version fields to google_sql_user resource (#21616)
• bigquerydatatransfer: added secret_access_key_wo and secret_access_key_wo_version fields to google_bigquery_data_transfer_config resource (#21617)
• secretmanager: added secret_data_wo and secret_data_wo_version fields to google_secret_version resource (#21618)

v6.22.0

NOTES:

• provider: The Terraform Provider for Google Cloud's regular release date will move from Monday to Tuesday in early March. The 2025/03/10 release will be made on 2025/03/11.

DEPRECATIONS:

• datacatalog: deprecated google_data_catalog_tag_template. Use google_dataplex_aspect_type instead. For steps to transition your Data Catalog users, workloads, and content to Dataplex Catalog, see https://cloud.google.com/dataplex/docs/transition-to-dataplex-catalog. (#9347)
• datacatalog: deprecated google_data_catalog_entry_group. Use google_dataplex_entry_group instead. For steps to transition your Data Catalog users, workloads, and content to Dataplex Catalog, see https://cloud.google.com/dataplex/docs/transition-to-dataplex-catalog. (#9349)

FEATURES:

• New Data Source: google_alloydb_cluster (#21496)
• New Data Source: google_project_ancestry (#21413)
• New Resource: google_gemini_data_sharing_with_google_setting_binding (#21479)
• New Resource: google_gemini_logging_setting_binding (#21429)
• New Resource: google_gemini_logging_setting (#21404)
• New Resource: google_spanner_instance_partition (#21475)

IMPROVEMENTS:

• backupdr: promoted google_backup_dr_management_server, google_backup_dr_backup_plan_association, and google_backup_dr_backup_plan resources to GA
• compute: added import_subnet_routes_with_public_ip and export_subnet_routes_with_public_ip fields to google_compute_network_peering_routes_config resource (#21405)
• developerconnect: added bitbucket_cloud_config and bitbucket_data_center_config fields to google_developer_connect_connection resource (#21433)
• gemini: promoted google_gemini_release_channel_setting resource to GA (#21481)
• iam: added extra_attributes_oauth2_client field to google_iam_workforce_pool_provider resource (#21430)
• iambeta: promoted google_iam_workload_identity_pool and google_iam_workload_identity_pool_provider data sources to GA (#21408)
• redis: added kms_key field to google_redis_cluster resource (#21428)
• tpuv2: added network_config field to google_tpu_v2_queued_resource resource (#21426)

BUG FIXES:

• apigee: fixed error when deleting google_apigee_organization (#21473)
• bigtable: fixed a bug where sometimes updating an instance's cluster list could result in an error if there was an existing cluster with autoscaling enabled (#21503)
• chronicle: fixed bug setting enabled on creation in google_chronicle_rule_deployment (#21460)

v6.21.0

NOTES:

• provider: The Terraform Provider for Google Cloud's regular release date will move from Monday to Tuesday in early March. The 2025/03/10 release will be made on 2025/03/11.

FEATURES:

• New Data Source: google_alloydb_instance (#21383)
• New Resource: google_firebase_data_connect_service (#21368)
• New Resource: google_gemini_data_sharing_with_google_setting (#21393)
• New Resource: google_gemini_gemini_gcp_enablement_setting (#21357)
• New Resource: google_gemini_logging_setting_binding (#21354)
• New Resource: google_gemini_release_channel_setting (#21387
• New Resource: google_gemini_release_channel_setting_binding (#21387
• New Resource: google_netapp_volume_quota_rule (#21283)

IMPROVEMENTS:

• accesscontextmanager: added etag to access context manager directional policy resources google_access_context_manager_service_perimeter_dry_run_egress_policy, google_access_context_manager_service_perimeter_dry_run_ingress_policy, google_access_context_manager_service_perimeter_egress_policy and google_access_context_manager_service_perimeter_ingress_policy to prevent overriding changes (#21366)
• accesscontextmanager: added title field to policy blocks under google_access_context_manager_service_perimeter and variants (#21302)
• artifactregistry: set pageSize to 1000 to speedup google_artifact_registry_docker_image data source queries (#21360)
• compute: added labels field to google_compute_ha_vpn_gateway resource (#21385)
• compute: added validation for disk names in google_compute_disk (#21335)
• container: added new fields container_log_max_size, container_log_max_files, image_gc_low_threshold_percent, image_gc_high_threshold_percent, image_minimum_gc_age, image_maximum_gc_age, and allowed_unsafe_sysctls to node_kubelet_config block in google_container_cluster resource. (#21319)
• monitoring: added condition_sql field to google_monitoring_alert_policy resource (#21277)
• networkservices: added location field to google_network_services_mesh resource (#21337)
• securitycenter: added type, expiry_time field to google_scc_mute_config resource (#21318)

BUG FIXES:

• chronicle: fixed creation issues when optional fields were missing for google_chronicle_rule_deployment resource (#21389)
• databasemigrationservice: fixed error details type on google_database_migration_service_migration_job (#21279)
• networkservices: fixed a bug with google_network_services_authz_extension.wire_format sending an invalid default value by removing the Terraform default and letting the API set the default. (#21280)