Skip to content

chore(deps): update terraform

Common Ground Bot requested to merge renovate/terraform into main

This MR contains the following updates:

Package Type Update Change
aws (source) required_provider minor 5.39.1 -> 5.41.0
azurerm (source) required_provider minor 3.94.0 -> 3.96.0
google (source) required_provider minor 5.19.0 -> 5.21.0
terraform-google-modules/kubernetes-engine/google (source) module minor 30.1.0 -> 30.2.0

Release Notes

hashicorp/terraform-provider-aws (aws)

v5.41.0

Compare Source

FEATURES:

  • New Data Source: aws_apprunner_hosted_zone_id (#​36288)
  • New Data Source: aws_medialive_input (#​36307)
  • New Resource: aws_lakeformation_data_cells_filter (#​36264)
  • New Resource: aws_securityhub_configuration_policy (#​35752)
  • New Resource: aws_securityhub_configuration_policy_association (#​35752)
  • New Resource: aws_securitylake_subscriber_notification (#​36323)

ENHANCEMENTS:

  • data-source/aws_ec2_transit_gateway_peering_attachment: Add state attribute (#​36304)
  • data-source/aws_lakeformation_permissions: Add data_cells_filter attribute (#​36264)
  • data-source/aws_ram_resource_share: name is Optional (#​36062)
  • resource/aws_cognito_user_pool: Add pre_token_generation_config configuration block (#​35236)
  • resource/aws_ec2_transit_gateway_peering_attachment: Add state attribute (#​36304)
  • resource/aws_ecs_cluster: Add default value (DEFAULT) for configuration.execute_command_configuration.logging (#​36341)
  • resource/aws_lakeformation_permissions: Add data_cells_filter attribute (#​36264)
  • resource/aws_ram_resource_association: Add plan-time validation of resource_arn and resource_share_arn (#​36062)
  • resource/aws_route53domains_registered_domain: Add billing_contact and billing_privacy arguments (#​36285)
  • resource/aws_securityhub_organization_configuration: Add organization_configuration configuration block to support central configuration (#​35752)
  • resource/aws_securityhub_organization_configuration: Set auto_enable to false, auto_enable_standards to NONE, and organization_configuration.configuration_type to LOCAL on resource Delete (#​35752)

BUG FIXES:

  • data-source/aws_iam_policy_document: Fix Failed to marshal state to json: unsupported attribute "override_json" and Failed to marshal state to json: unsupported attribute "source_json" errors when running terraform show -json or terraform state rm (#​36383)
  • data-source/aws_opensearch_domain : Add auto_tune_options.use_off_peak_window attribute. This fixes a regression introduced in v5.40.0 causing Invalid address to set errors (#​36298)
  • resource/aws_cognito_identity_pool: Fix handling of resources deleted out of band (#​36100)
  • resource/aws_cognito_identity_provider: Fix InvalidParameterException: ActiveEncryptionCertificate is not a valid key for SAML identity provider details errors on resource Update (#​36311)
  • resource/aws_ec2_instance: Remove ForceNew from ipv6_address_count (#​36308)
  • resource/aws_ecs_cluster: Fix panic: interface conversion: interface {} is nil, not map[string]interface {} when configuration, configuration.execute_command_configuration, or configuration.execute_command_configuration.log_configuration are empty (#​36341)
  • resource/aws_ecs_service: Fix panic: interface conversion: interface {} is nil, not map[string]interface {} when service_connect_configuration.service.timeout is empty (#​36309)
  • resource/aws_ecs_service: service_connect_configuration.service.tls.issuer_cert_authority.aws_pca_authority_arn is Required (#​36309)
  • resource/aws_elasticache_replication_group: Fix bugs causing errors like InvalidReplicationGroupState: Cluster not in available state to perform tagging operations. (#​36310)
  • resource/aws_finspace_kx_cluster: Prevent command_line_arguments and initialization_script updates from overwriting one another (#​36361)
  • resource/aws_network_acl_rule: Fix InvalidNetworkAclID.NotFound errors on resource Delete (#​36326)
  • resource/aws_network_acl_rule: Prevent creation of duplicate Terraform resources (#​36326)
  • resource/aws_ram_principal_association: Prevent creation of duplicate Terraform resources (#​36062)
  • resource/aws_ram_principal_association: Remove from state on resource Read if principal is disassociated outside of Terraform (#​36062)
  • resource/aws_ram_resource_association: Prevent creation of duplicate Terraform resources (#​36062)
  • resource/aws_route: Prevent creation of duplicate Terraform resources (#​36326)
  • resource/aws_route_table: Fix couldn't find resource errors on resource Delete (#​36326)
  • resource/aws_vpn_connection: Correct plan-time validation of tunnel1_inside_ipv6_cidr and tunnel2_inside_ipv6_cidr (#​36236)

v5.40.0

Compare Source

FEATURES:

ENHANCEMENTS:

  • data-source/aws_rds_engine_version: Add has_major_target and has_minor_target optional arguments and valid_major_targets and valid_minor_targets attributes (#​36246)
  • resource/aws_batch_job_queue: added parameter compute_environment_order which conflicts with compute_environments but aligns with AWS API. compute_environments has been deprecated. (#​34750)
  • resource/aws_cloudfront_distribution: Remove the upper limit on origin.custom_origin_config.origin_read_timeout (#​36088)
  • resource/aws_db_instance: Add io2 as a valid value for storage_type (#​36252)
  • resource/aws_elasticache_serverless_cache: Add plan-time validation of cache_usage_limits.ecpu_per_second.maximum (#​35927)
  • resource/aws_iot_policy: Add tagging support (#​36102)
  • resource/aws_iot_role_alias: Add tagging support (#​36255)
  • resource/aws_opensearch_domain: Add use_off_peak_window argument to the auto_tune_options configuration block (#​36067)
  • resource/aws_rds_cluster: Add io2 as a valid value for storage_type (#​36252)
  • resource/aws_s3_bucket_object: Adds attribute arn. (#​35710)
  • resource/aws_s3_object: Adds attribute arn. (#​35710)
  • resource/aws_s3_object_copy: Adds attribute arn. (#​35710)
  • resource/aws_wafv2_rule_group: Add evaluation_window_sec argument to the rate_based_statement configuration block (#​36045)
  • resource/aws_wafv2_web_acl: Add evaluation_window_sec argument to the rate_based_statement configuration block (#​36045)

BUG FIXES:

  • data-source/aws_rds_engine_version: Fix bugs that could limit engine version to a default version even when not appropriate (#​36246)
  • resource/aws_db_instance: Correctly sets parameter_group_name when replicate_source_db is in different region. (#​36080)
  • resource/aws_elastic_beanstalk_environment: Fix InvalidParameterValue: Environment named ... is in an invalid state for this operation. Must be Ready errors when tags are updated along with other attributes (#​36074)
  • resource/aws_elasticache_serverless_cache: Change cache_usage_limits.data_storage.maximum and cache_usage_limits.ecpu_per_second.maximum to ForceNew (#​35927)
  • resource/aws_medialive_channel: Fix handling of optional encoder_settings.audio_descriptions arguments (#​36097)
  • resource/aws_rds_global_cluster: Fix bugs and delays that could occur when performing major or minor version upgrades (#​36246)
  • resource/aws_s3_bucket: Tags with empty values no longer remove all tags. (#​35710)
  • resource/aws_s3_bucket_object: Tags with empty values no longer remove all tags. (#​35710)
  • resource/aws_s3_object: Tags with empty values no longer remove all tags. (#​35710)
  • resource/aws_s3_object_copy: Tags with empty values no longer remove all tags. (#​35710)
  • resource/aws_vpclattice_listener_rule: Remove action.forward.target_groups maximum item limit (#​36095)
hashicorp/terraform-provider-azurerm (azurerm)

v3.96.0

Compare Source

ENHANCEMENTS:

  • dependencies: updating to v0.20240314.1083835 of github.com/hashicorp/go-azure-sdk (#​25255)
  • dependencies: updating to v0.25.1 of github.com/tombuildsstuff/giovanni (#​24798)
  • dependencies: updating to v1.33.0 of google.golang.org/protobuf (#​25243)
  • storage: updating the data plane resources to use the transport layer from hashicorp/go-azure-sdk rather than Azure/go-autorest (#​24798)
  • Data Source: azurerm_storage_table_entities - support for AAD authentication (#​24798)
  • Data Source: azurerm_storage_table_entity - support for AAD authentication (#​24798)
  • azurerm_kusto_cluster - support None pattern for the virtual_network_configuration block (#​24733)
  • azurerm_linux_function_app - support for the Node 20 runtime (#​24073)
  • azurerm_linux_function_app_slot - support for the Node 20 runtime (#​24073)
  • azurerm_stack_hci_cluster - support the identity, cloud_id, service_endpoint and resource_provider_object_id properties [GH-25031]
  • azurerm_storage_share_file - support for AAD authentication (#​24798)
  • azurerm_storage_share_directory - support for AAD authentication, deprecate share_name and storage_account_name in favor of storage_share_id (#​24798)
  • azurerm_storage_table_entity - support for AAD authentication, deprecate share_name and storage_account_name in favor of storage_table_id (#​24798)
  • azurerm_storage_table_entity - support for AAD authentication (#​24798)
  • azurerm_windows_function_app - support for the Node 20 runtime (#​24073)
  • azurerm_windows_function_app_slot - support for the Node 20 runtime (#​24073)
  • azurerm_windows_web_app - support for the Node 20 runtime (#​24073)
  • azurerm_windows_web_app_slot - support for the Node 20 runtime (#​24073)

BUG FIXES:

  • azurerm_container_app_custom_domain - fix resource ID parsing bug preventing import (#​25192)
  • azurerm_windows_web_app - fix incorrect warning message when checking name availability (#​25214)
  • azurerm_virtual_machine_run_command - prevent a bug during updates (#​25186)
  • Data Source: azurerm_storage_table_entities - Fix items.x.properties truncating to one entry (#​25211)

v3.95.0

Compare Source

FEATURES:

  • New Resource: azurerm_container_app_custom_domain (#​24421)
  • New Resource: azurerm_data_protection_backup_instance_kubernetes_cluster (#​24940)
  • New Resource: azurerm_static_web_app (#​25117)
  • New resource: azurerm_static_web_app_custom_domain (#​25117)
  • New resource: azurerm_system_center_virtual_machine_manager_availability_set (#​24975)
  • New Resource: azurerm_workloads_sap_three_tier_virtual_instance (#​24384)
  • New Resource: azurerm_workloads_sap_single_node_virtual_instance (#​24331)

ENHANCEMENTS:

  • dependencies: updating to v0.20240229.1102109 of github.com/hashicorp/go-azure-sdk (#​25102)
  • monitor: updating to use the transport layer from hashicorp/go-azure-sdk rather than Azure/go-autorest [GH-#​25102]
  • network: updating to API Version 2023-09-01 (#​25095)
  • azurerm_data_factory_integration_runtime_managed - support for the credential_name property (#​25033)
  • azurerm_linux_function_app - support for the description property in the ip_restriction block (#​24527)
  • azurerm_linux_function_app - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_linux_function_app_slot - support for the description property in the ip_restriction block (#​24527)
  • azurerm_linux_function_app_slot - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_linux_web_app - support for the description property in the ip_restriction block (#​24527)
  • azurerm_linux_web_app - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_linux_web_app_slot - support for the description property in the ip_restriction block (#​24527)
  • azurerm_linux_web_app_slot - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_mysql_flexible_server - setting the storage.size_gb property to a smaller value now forces a new resource to be created (#​25074)
  • azurerm_orbital_contact_profile - changing the channels property no longer creates a new resource (#​25129)
  • azurerm_private_dns_resolver_inbound_endpoint - the private_ip_address property is no longer required when private_ip_allocation_method is Dynamic (#​25035)
  • stream_analytics_output_blob - support for the blob_write_mode property (#​25127)
  • azurerm_windows_function_app - support for the description property in the ip_restriction block (#​24527)
  • azurerm_windows_function_app - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_windows_function_app_slot - support for the description property in the ip_restriction block (#​24527)
  • azurerm_windows_function_app_slot - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_windows_web_app - support for the description property in the ip_restriction block (#​24527)
  • azurerm_windows_web_app - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)
  • azurerm_windows_web_app_slot - support for the description property in the ip_restriction block (#​24527)
  • azurerm_windows_web_app_slot - support for the ip_restriction_default_action and scm_ip_restriction_default_action properties (#​25131)

BUG FIXES:

  • Data Source: azurerm_function_app_host_keys - correctly set event_grid_extension_key by searching for the renamed property in the API response (#​25108)
  • azurerm_app_service_public_certificate - fix issue where certificate information was not being set correctly in the read (#​24943)
  • azurerm_container_registry - prevent recreation of the resource when the georeplication.tags are updated (#​24994)
  • azurerm_firewall_policy_rule_collection_group - fix issue where the client subscription ID was used to construct the firewall_policy_id (#​25145)
  • azurerm_function_app_hybrid_connection - fix issue where SendKeyValue was not populated in the API payload (#​23761)
  • azurerm_orbital_contact_profile - fix creation of the resource when event_hub_uri is not specified (#​25128)
  • azurerm_recovery_services_vault - prevent a panic when immutability is updated (#​25132)
  • azurerm_storage_account - fix issue where the queue encryption key type was set as the table encryption key type (#​25046)
  • azurerm_web_app_hybrid_connection - fix issue where SendKeyValue was not populated in the API payload (#​23761)
  • azurerm_mssql_database - fix incorrect error due to typo when using restore_long_term_retention_backup_id (#​25180)

DEPRECATIONS:

  • Deprecated Resource: azurerm_static_site (#​25117)
  • Deprecated Resource: azurerm_static_site_custom_domain (#​25117)
  • azurerm_kubernetes_fleet_manager - the hub_profile property has been deprecated (#​25010)
hashicorp/terraform-provider-google (google)

v5.21.0

Compare Source

FEATURES:

  • New Data Source: google_apphub_discovered_service (#​17548)
  • New Data Source: google_apphub_discovered_workload (#​17553)
  • New Resource: google_apphub_workload (#​17561)
  • New Resource: google_firebase_app_check_device_check_config (#​17517)
  • New Resource: google_iap_tunnel_dest_group (#​17533)
  • New Resource: google_kms_ekm_connection (#​17512)
  • New Resource: google_apphub_application (#​17499)
  • New Resource: google_apphub_service (#​17562)
  • New Resource: google_apphub_service_project_attachment (#​17536)
  • New Resource: google_cloud_quotas_quota_info (#​17564)
  • New Resource: google_network_security_firewall_endpoint_association (#​17540)

IMPROVEMENTS:

  • cloudrunv2: added support for scaling.min_instance_count in google_cloud_run_v2_service. (#​17501)
  • compute: added metric.single_instance_assignment and metric.filter to google_compute_region_autoscaler (#​17519)
  • container: added queued_provisioning to google_container_node_pool (#​17549)
  • gkeonprem: allowed vcenter_network to be set in google_gkeonprem_vmware_cluster, previously it was output-only (#​17505)
  • workstations: added support for ephemeral_directories in google_workstations_workstation_config (#​17515)

BUG FIXES:

  • compute: allowed sending empty values for SERVERLESS in google_compute_region_network_endpoint_group resource (#​17500)
  • notebooks: fixed an issue where default tags would cause a diff recreating google_notebooks_instance resources (#​17559)
  • storage: fixed an issue where two or more lifecycle rules with different values of no_age field always generates change in google_storage_bucket resource. (#​17513)

v5.20.0

Compare Source

FEATURES:

  • New Resource: google_clouddeploy_custom_target_type_iam_* (#​17445)

IMPROVEMENTS:

  • certificatemanager: added type field to google_certificate_manager_dns_authorization resource (#​17459)
  • compute: added the network_url attribute to the consumer_accept_list-block of the google_compute_service_attachment resource (#​17492)
  • gkehub: added support for policycontroller.policy_controller_hub_config.policy_content.bundles and policycontroller.policy_controller_hub_config.deployment_configs fields to google_gke_hub_feature_membership (#​17483)

BUG FIXES:

  • artifactregistry: fixed permadiff when google_artifact_repository.docker_config field is unset (#​17484)
  • bigquery: corrected plan-time validation on google_bigquery_dataset.dataset_id (#​17449)
  • kms: fixed issue where google_kms_crypto_key_version.attestation.cert_chains properties were incorrectly set to type string (#​17486)
terraform-google-modules/terraform-google-kubernetes-engine (terraform-google-modules/kubernetes-engine/google)

v30.2.0

Compare Source

Features

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Edited by Common Ground Bot

Merge request reports