chore(deps): update terraform google to v7.19.0

[amriksd]

This PR contains the following updates:

Package	Type	Update	Change
google (source)	required_provider	minor	7.14.1 → 7.19.0

---

Release Notes

hashicorp/terraform-provider-google (google)

v7.19.0

Compare Source

DEPRECATIONS:

• backupdr: google_backupdr_restore_workload.name is deprecated and will be removed in a future major release. The backup is identified by the parameters (location, backup_vault_id, data_source_id, backup_id). (#​25986)
• publicca: google_public_ca_external_account_key.b64url_mac_key is deprecated and will be removed in a future major release. Use mac_key instead. (#​25964)

FEATURES:

• New Resource: google_network_security_mirroring_endpoint (#​25988)
• New Resource: google_network_security_mirroring_endpoint_group (#​25988)
• New Resource: google_backup_dr_restore_workload (#​26013)

IMPROVEMENTS:

• compute: added network_pass_through_lb_traffic_policy field to google_compute_region_backend_service resource (#​25994)
• compute: added RDMA_FALCON_POLICY and ULL_POLICY values to policy_type field in google_compute_region_network_firewall_policy, google_compute_region_network_firewall_policy_with_rules (#​25985)
• compute: added support for network_interface.network_attachment to google_compute_instance_template (#​25995)
• compute: added support for network_interface.network_attachment to google_compute_region_instance_template (#​25995)
• compute: added support for network_interface.vlan to google_compute_instance_template, enabling dynamic NIC (#​25995)
• compute: added support for network_interface.vlan to google_compute_instance, enabling dynamic NIC. Creating and deleting from an existing instance is not yet supported. (#​25995)
• compute: added support for network_interface.vlan to google_compute_region_instance_template, enabling dynamic NIC (#​25995)
• discoveryengine: added knowledge_graph_config field to google_discovery_engine_search_engine resource (#​25980)
• firestore: added firestore_data_access_mode, mongodb_compatible_data_acess_mode, and realtime_updates_mode fields to the google_firestore_database resource (#​26000)
• firestore: added deletion_policy virtual field to google_firestore_index resource (#​25984)
• monitoring: added write-only variants (auth_token_wo + auth_token_wo_version, password_wo + password_wo_version, service_key_wo + service_key_wo_version) for google_monitoring_notification_channel.sensitive_labels (#​25983)
• networkconnectivity: added support for update operation on google_network_connectivity_gateway_advertised_route resource (#​25945)
• provider: added a configurable poll_interval field to the provider for rare cases where it is being used in latency-sensitive situations. This can be set to a custom duration to change operation polling intervals. The default is unchanged, at 10s. (#​26008)
• publicca: added mac_key to google_public_ca_external_account_key (#​25964)
• run: added readiness_probe field to google_cloud_run_v2_service resource (#​26003)
• vertexai: added support for developer_connect_source to spec.source_code_spec in google_vertex_ai_reasoning_engine (#​26011)

BUG FIXES:

• compute: fixed issue where it wasn't possible to set both ssl_certificates and certificate_map in google_compute_target_ssl_proxy (#​26012)
• container: fixed an issue when toggling default_compute_class_enabled in google_container_cluster with Autopilot enabled (#​25966)
• firebaseailogic: fixed bug in google_firebase_ai_logic_config.generative_language_config.api_key_wo where the value set wouldn't be sent to the API. (#​25983)
• publicca: fixed b64url_mac_key sometimes being empty in google_public_ca_external_account_key (#​25964)

v7.18.0

Compare Source

BREAKING CHANGES:

• alloydb: removed the incorrect top-level field last_successful_backup_consistency_time from google_backup_dr_backup_plan_association. No value has been present in this output-only field. (#​25928)

FEATURES:

• New Resource: google_dataplex_data_asset (#​25922)
• New Resource: google_logging_saved_query (#​25921)

IMPROVEMENTS:

• alloydb: added restore_backupdr_backup_source, restore_backupdr_pitr_source, and backupdr_backup_source to google_alloydb_cluster (#​25928)
• alloydb: added rules_config_info.last_successful_backup_consistency_time to google_backup_dr_backup_plan_association (#​25928)
• compute: updated target_service field to support update-in-place in google_compute_service_attachment resource (#​25924)
• datafusion: added patch_revision field to google_data_fusion_instance resource (#​25923)
• firestore: added skip_wait field to google_firestore_index resource, skipping the wait for index creation (#​25934)
• gkeonprem: added skip_validations field to google_gkeonprem_vmware_cluster resource (#​25917)
• sql: added database_role field and iam_email field to google_sql_user resource to support managing Cloud SQL users with database roles. (#​25926)

BUG FIXES:

• cloudbuild: fixed google_cloudbuild_trigger to allow creation without source configuration for manual triggers (#​25925)
• cloudrunv2: fix permadiff on scaling.scaling_mode in google_cloud_run_v2_worker_pool (#​25927)
• compute: resolved issues where show_nat_ips and nat_ips in google_compute_service_attachment were causing test failures due to an underlying API problem. These fields are now temporarily non-functional and will be ignored. (#​25908)
• container: fixed a bug in google_container_node_pool that prevented creation when blue_green_settings was specified (#​25916)
• container: fixed perma-diff in google_container_cluster when setting resource_limits with disabled node autoprovisioning (#​25929)

v7.17.0

Compare Source

BREAKING CHANGES:

• networkconnectivity: changed services in google_network_connectivity_multicloud_data_transfer_config from TypeList to TypeSet. The order of or value of interpolations referencing the field may change. (#​25767)

FEATURES:

• New Resource: google_dataplex_data_product (#​25844)
• New Resource: google_dialogflow_cx_tool_version (#​25809)
• New Resource: google_firebase_ai_logic_config (#​25846)
• New Resource: google_firebase_ai_logic_prompt_template (#​25862)
• New Resource: google_firebase_ai_logic_prompt_template_lock (#​25877)
• New Resource: google_saas_runtime_unit_operation (#​25760)
• New Resource: google_vmwareengine_datastore (#​25845)
• New Data Source: google_vmwareengine_datastore (#​25845)

IMPROVEMENTS:

• backupdr: added support for restore compute instance and disk (#​25723)
• bigquery: added source_column_match field to csv_options in google_bigquery_table resource (#​25868)
• compute: added FIPS_202205 enum to PROFILE field in SSL_POLICY and REGION_SSL_POLICY resources, and added TLS_1_3 enum to MIN_TLS_VERSION field in SSL_POLICY and REGION_SSL_POLICY resources. (#​25777)
• compute: added attachments field to google_compute_interconnect_attachment_group.logicalStructure.regions.metros.facilities.zones and deprecated attachment field (#​25842)
• compute: added enable_enhanced_ipv4_allocation field to google_compute_public_delegated_prefix resource (#​25732)
• compute: added ip_collection field to google_compute_address resource (#​25732)
• compute: added source_instant_snapshot field to google_compute_snapshot resource (#​25780)
• compute: added support for "IF_L2_FORWARDING" as a value for the availableFeatures field of the google_compute_interconnect resource (#​25751)
• compute: added support for "IF_L2_FORWARDING" as a value for the requestedFeatures field of the google_compute_interconnect resource (#​25751)
• compute: added support for "L2_DEDICATED" as a value for the type field of the google_compute_interconnect_attachment resource. (#​25751)
• compute: added support for igmp_query field in google_compute_instance, google_compute_instance_template, and related instance resources. (#​25752)
• compute: added support for the l2Forwarding field to google_compute_interconnect_attachment (#​25751)
• compute: promoted request_body_inspection_size to GA in google_compute_security_policy resource (ga) (#​25775)
• container: added accelerator_network_config field to node_pool resource (#​25856)
• container: added managed_opentelemetry_config to google_container_cluster resource (#​25861)
• container: added node_drain_config field to google_container_node_pool resources (#​25791)
• container: improved google_container_cluster reconciliation time by caching node pools and instance group managers after a list call instead of getting each one seperately. (#​25784)
• datastream: added backfill_all.spanner_excluded_objects and source_config.spanner_source_config fields to google_datastream_stream (#​25804)
• datastream: added spanner_profile field to google_datastream_connection_profile (#​25804)
• dialogflowcx: added serviceAccountAuthConfig field to google_dialogflow_cx_webhook resource (#​25781)
• oracledatabase: added peerAutonomousDatabases, disasterRecoverySupportedLocations, sourceConfig fields to Autonomous database resource. (#​25859)
• tags: added allowed_values_regex field to google_tags_tag_key resource (#​25869)
• tags: added support for dynamic tag keys in google_tags_tag_binding and google_tags_location_tag_binding resources (#​25874)
• vertex_ai: added deployment_spec.psc_interface_config to google_vertex_ai_reasoning_engine (#​25765)

BUG FIXES:

• bigquery: fixed permadiff with the collation field in google_bigquery_table.schema (#​25762)
• cloudasset: fixed bug in google_cloud_asset_folder_feed where folder_id was always empty (#​25798)
• cloudbuild: fixed permadiff on google_cloudbuild_trigger.pubsub_config.service_account_email (#​25792)
• compute: fix crash when specifying an empty instance_flexibility_policy block on the google_compute_region_instance_group_manager resource (#​25731)
• compute: fixed a permadiff that could occur when using mixed short and long form IPv6 addresses in the source_ranges field of google_compute_firewall (#​25867)
• iambeta: fixed a permadiff that could occur in the jwks_json field for google_iam_workload_identity_pool_provider resource (#​25847)
• netapp: fixed export_policy update bug with squash_mode in netapp volume (#​25776)
• networkconnectivity: fixed a diff on services in google_network_connectivity_multicloud_data_transfer_config reordering elements (#​25767)
• sql: fixed an issue where transient server errors caused false failures for SQL operations that eventually completed successfully (#​25735)
• workbench: made enable-jupyterlab4 metadata key settable for google_workbench_instance (#​25769)

v7.16.0

Compare Source

DEPRECATIONS:

• cloudrunv2: deprecated custom_audience field in the google_cloud_run_v2_worker_pool resource, as this field is not applicable to the WorkerPools resource (#​25688)

FEATURES:

• New Data Source: google_compute_routers (#​25715)
• New Resource: google_backup_dr_restore_workload (#​25723)

IMPROVEMENTS:

• backupdr: added max_custom_on_demand_retention_days field to google_backup_dr_backup_plan resource (#​25704)
• bigquery: added support for merge and update operations for dataPolicies in schema field in google_bigquery_table resource when ignore_schema_changes is defined (#​25721)
• bigtable: added etag field to google_bigtable_schema_bundle resource (#​25687)
• compute: added BPS_400G enum value to bandwidth field in google_compute_interconnect_attachment resource (#​25714)
• container: added registry_hosts field to containerd_config in google_container_cluster and google_container_node_pool resources (#​25705)
• dataplex: added one_time field to google_dataplex_datascan resource (#​25695)
• datastream: added postgresql_profile.ssl_config to google_datastream_connection_profile resource (#​25671)
• networkservices: added EXT_AUTHZ_GRPC enum value to wire_format field in google_network_services_authz_extension resource (#​25706)
• networkservices: added disable_placement_policy field to google_network_services_multicast_domain_activation resource (#​25720)
• networkservices: added metadata, supported_events, request_body_send_mode, and observability_mode fields to google_network_services_lb_route_extension resource (#​25702)
• securitycenterv2: added support for supplying location values other than "GLOBAL" to the google_scc_v2_project_notification_config resource (#​25698)
• storageinsights: added activity_data_retention_period_days field to google_storage_insights_dataset_config resource (#​25703)
• workbench: added support to set post-startup script metadata keys with managed EUC in google_workbench_instance resource (#​25719)

v7.15.0

Compare Source

NOTES:

• lustre: increased delete and update operation timeouts from 20 minutes to 60 minutes for google_lustre_instance resource (#​25662)

BREAKING CHANGES:

• compute: changed cipher_suite fields in the google_compute_vpn_tunnel resource to track order (#​25657)

FEATURES:

• New Resource: google_apigee_security_feedback (#​25589)
• New Resource: google_apphub_boundary (#​25640)
• New Resource: google_biglake_iceberg_catalog_iam_binding (#​25638)
• New Resource: google_biglake_iceberg_catalog_iam_member (#​25638)
• New Resource: google_biglake_iceberg_catalog_iam_policy (#​25638)
• New Resource: google_biglake_iceberg_catalog (#​25528)
• New Resource: google_compute_organization_security_policy_association (#​25643)
• New Resource: google_network_connectivity_destination (#​25663)
• New Resource: google_network_connectivity_multicloud_data_transfer_config (#​25609)
• New Resource: google_network_security_dns_threat_detector (#​25634)

IMPROVEMENTS:

• backupdr: added ignore_read to encryption_config field in google_backup_dr_backup_vault resource (#​25685)
• biglakeiceberg: made google_biglake_iceberg_catalog use the resource project as the quota project when user_project_override is true (#​25638)
• composer: added new enum ENVIRONMENT_SIZE_EXTRA_LARGE to environment_size field to google_composer_environment resource (#​25531)
• compute: added candidate_cloud_router_ip_address, candidate_customer_router_ip_address, candidate_cloud_router_ipv6_address, and candidate_customer_router_ipv6_address fields to google_compute_interconnect_attachment resource (#​25581)
• compute: added prefix_length field to google_compute_addresses data source (#​25654)
• compute: added client_destination_port and instance fields to google_compute_region_network_endpoints resource (#​25621)
• datastream: added support for the rule_sets field in the google_datastream_stream resource, allowing configuration of customization rules, such as BigQuery destinations partitioning and clustering. (#​25529)
• iamworkforcepool: added hard_delete support in google_iam_workforce_pool_provider_scim_tenant resource (#​25656)
• looker: added periodic_export_config field to google_looker_instance resource (#​25610)
• lustre: added access_rules_options field to google_lustre_instance resource to support root squashing and IP-based access control configuration (#​25617)
• managedkafka: replaced disk_size_gb with disk_size_gib in broker_capacity_config within the google_managed_kafka_cluster resource (#​25613)
• networkservices: added state field to google_network_services_multicast_domain resource (#​25532)
• redis: added labels to google_redis_cluster (#​25639)
• sql: marked replication_cluster.psa_write_endpoint field as Computed in google_sql_database_instance resource (#​25573)
• sql: set replication_cluster when update google_sql_database_instance resource if there is a disaster recovery(DR) replica set or there is a PSA write endpoint (#​25573)
• storage: updated datasource google_storage_object_signed_url.signed_url to use virtual style hosted url (#​25568)
• vertexai: added bigtable, zone, encryption_spec, and bigtable_options fields to google_vertex_ai_feature_online_store resource (#​25601)
• vertexai: added psc_automation_configs to resource google_vertex_ai_index_endpoint (#​25570)

BUG FIXES:

• provider: fixed an issue where error type 409 and 412 were not being correctly retried. This commonly shows up in IAM resources, but can appear in other resources as well (#​25596)
• alloydb: fixed an issue where boolean fields were ignored when set to false for google_alloydb_cluster and google_alloydb_instance (#​25561)
• cloudrunv2: fixed a permadiff when default values of the scaling block were explicitly declared on the google_cloud_run_v2_service resource (#​25569)
• compute: fixed a crash in google_compute_disk/google_compute_region_disk when deleting a disk attached to an instance that had any scratch disks attached (#​25641)
• compute: fixed issue where endpoints.interconnects.vlan_tags wouldn't be read correctly from the API in google_compute_wire_group resource (#​25602)
• compute: fixed update logic that causes empty instance being sent for google_compute_network_endpoints (#​25621)
• datacatalog: fixed issue where fields.display_name wouldn't be read correctly from the API in google_data_catalog_tag resource (#​25602)
• discoveryengine: marked cmek_config_id field in google_discovery_engine_cmek_config resource as required (#​25527)
• securitygateway: allowed empty field for service_discovery in google_beyondcorp_security_gateway (#​25653)
• securitygateway: allowed empty fields for user_info, group_info and device_info in google_beyondcorp_security_gateway (#​25653)
• servicedirectory: fixed an issue where google_service_directory_endpoint or google_service_directory_service without metadata specified would have other fields removed (#​25588)
• storage: fixed the behavior in google_storage_bucket resource when force_destroy is set to true. Previously, failing to list anywhere caches would prevent destroying objects on the bucket. Now, both objects and caches are processed independently. (#​25655)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.