Google Cloud CLI - Release Notes

Copyright 2014-2022 Google Inc. All rights reserved.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

386.0.0 (2022-05-17)

Google Cloud CLI

• Added Cloud SQL OAuth scope to gcloud auth login.

Anthos Identity Service

• Promoted gcloud container hub identity-service to GA.
• Promoted gcloud container fleet identity-service to GA.

App Engine

• Promoted --service-account flag of gcloud app deploy to GA.

App Engine Flexible Environment

• Promoted --service-account flag of gcloud app deploy to GA.

Cloud Build

• Add --include-logs-with-status flag to gcloud triggers create.

Cloud Composer

• Improve error message in case of lacking permissions in gcloud composer environments storage * delete commands.

Cloud IAM

• Added gcloud iam workload-identity-pools create-saml and gcloud iam workload-identity-pools update-saml commands to manage SAML workload identity pool providers.

Cloud Memorystore

• Promoted support for maintenance windows in gcloud memcache to GA.
• Promoted the command gcloud memcache reschedule-maintenance to GA.

Cloud Run

• Modified gcloud run services describe to include session affinity configuration.

Cloud SQL

• Changed the prompt generated by --prompt-for-password for gcloud sql users set-password from Instance Password: to New Password:, since set-password command changes a database user's password, not the instance's password.
• Setting max-login-attempts will also set enable-password-verification to true.

Compute Engine

• Promoted --service-bindings flag of gcloud compute backend-services create|update commands to GA.
• Promoted gcloud compute backend-services add-service-bindings and gcloud compute backend-services remove-service-bindings commands to GA.
• Promoted --provisioning-model and --instance-termination-action flags of gcloud compute instances set-scheduling to GA.
• Promoted sole tenancy flags of gcloud compute instances update to GA.
• Added --network-performance-configs flag to gcloud compute instances bulk create.
• Promoted --disable-automate-dns-zone flag of gcloud compute forwarding-rules create to GA.
• Promoted --stack-type flag to GA for gcloud compute networks peeerings <create|update>.
• Added windows-2022 & windows-2022-byol options to --os flag for:
  • gcloud compute images import in GA,
  • gcloud compute instances import in GA
  • gcloud compute machine-images import in GA

Config Connector

• Updated Google Cloud Config Connector to version 1.84.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Database Migration

• Updated gcloud database-migration migration-jobs create command to create a migration job without any connectivity method (if connectivity isn't specified).
• Added gcloud database-migration migration-jobs create --static-ip command to create a migration job with static IP connectivity. This was the default behavior.
• Added gcloud database-migration migration-jobs update --static-ip command to update a migration job with static IP connectivity.

Distributed Cloud Edge

• Added --clear-maintenance-window flag to gcloud edge-cloud container clusters update which removes the maintenance window setting of a cluster.
• Updated gcloud edge-cloud container clusters node-pools list to make specifying a parent cluster optional. When --cluster is not specified, all node pools are listed.

Managed Active Directory

• Promoted gcloud active-directory domains backups and gcloud active-directory domains restore to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

385.0.0 (2022-05-10)

Google Cloud CLI

• Updated bundled Python executable for Windows to Python 3.9.12.

AI

• Added --anomaly-cloud-logging flag to gcloud ai model-monitoring-jobs create|update to allow logging anomaly to Cloud Logging.

Anthos Multi-Cloud

• Added --ssh-ec2-key-pair flag to gcloud container aws clusters update and gcloud container aws node-pools update to update the name of the EC2 key pair to login into control plane or node pool nodes.
• Added --clear-ssh-ec2-key-pair flag to gcloud container aws clusters update and gcloud container aws node-pools update to clear the EC2 key pair to login into control plane or node pool nodes.

Cloud Run

• Fixed issue where some commands were missing from gcloud beta run jobs.

Cloud SQL

• Added --enable-password-policy flag to gcloud sql instances create and gcloud sql instances patch for GA.

Compute Engine

• Promoted --key-revocation-action-type flag to beta for gcloud compute instance-templates create.
• Promoted keyRevocationActionType flag of gcloud compute instances update-from-file to beta.
• Added FIXED_STANDARD to allowed list of values for --default-network-tier flag.

Config Controller

• Updated output of gcloud anthos config controller create to not include the default Config Connector identity upon creation.

Eventarc

• Added gcloud eventarc channels group to interact with third-party sources.
• Added gcloud eventarc channel-connections for event providers to create association with the user channel.
• Added --channel argument to gcloud eventarc triggers create to specify associated channel.

Network Services

• Promoted gcloud network-services service-bindings to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

384.0.1 (2022-05-05)

Cloud Storage

• Updated gsutil component to 5.10. Google Cloud CLI version 384.0.0 included an older gsutil component (version 5.6) in deb, rpm, and snap packages. Version 384.0.1 includes gsutil component version 5.10 in the deb, rpm, and snap packages.

384.0.0 (2022-05-03)

Cloud Datastore Emulator

• Adds --use-firestore-in-datastore-mode flag to gcloud [alpha|beta] emulators datastore start command.

Cloud Resource Manager

• Promoted --condition flag to GA for the following commands:
  • gcloud resources-manager tags keys <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
  • gcloud resources-manager tags values <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
  • gcloud resources-manager tags bindings <create|delete|list>
  • gcloud resources-manager tags holds <create|delete|list>

Cloud Run

• Promoted gcloud beta run jobs command group and all sub-commands to beta.

Cloud Storage

• Updated gsutil component to 5.10.

Compute Engine

• Started showing error messages on use of gcloud compute ssl-certificates create with --domains and --region flags together. Previously --region flag was being ignored.
• Promoted --md5-authentication-key flag of gcloud compute routers add-bgp-peer to beta.
• Promoted --md5-authentication-key and --clear-md5-authentication-key flags of gcloud compute routers update-bgp-peer to beta.
• Updated import and export schemas for gcloud compute backend-services.
• Promoted --key-reservation-action-type flag to beta for gcloud compute instances create.

Config Connector

• Updated Google Cloud Config Connector to version 1.83.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Fix a bug that RBAC policy produced by generate-gateway-rbac command could be removed unexpectedly.
• Promoted the following commands to GA:
  • gcloud container hub mesh update.
  • gcloud container fleet mesh update.

Kubernetes Engine

• Promoted fields gpu-sharing-strategy and max-shared-clients-per-gpu within --accelerator flag to enable GPU sharing support.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

383.0.1 (2022-04-26)

Google Cloud CLI

• Added back --[no-]launch-browser in gcloud auth login and gcloud auth application-default login. --no-browser is the preferred and more secure auth flow in comparison.
• Added back --console-only and --no-launch-browser in gcloud init. Use --no-browser as the replacement.

383.0.0 (2022-04-26)

Breaking Changes

• (Google Cloud CLI) Removed --[no-]launch-browser in gcloud auth login and gcloud auth application-default login. Use --no-browser as the replacement.
• (Google Cloud CLI) Removed --console-only and --no-launch-browser in gcloud init. Use --no-browser as the replacement.
• (Compute Engine) Removed --local-ssd=size=SIZE from gcloud beta compute instances create-with-container due to the parameter being nonfunctional.

AI

• Modified --region flag of gcloud ai endpoints to include new online prediction regions.
• Modified --region flag of gcloud ai models to include new online prediction regions.

Access Approval

• Added gcloud access-approval service-account get which retrieves the service account that is used by Access Approval to access KMS keys for signing approved approval requests.

App Engine

• Enables build environment variables to be set in app.yaml.

Artifact Registry

• Added new command gcloud artifacts files list to list files from a specified project and repository.

Cloud DNS

• Modified gcloud dns managed-zones update to allow detaching all networks from a private zone by setting --networks to an empty string.
• Modified gcloud beta dns managed-zones update to allow detaching all GKE clusters from a private zone by setting --gkeclusters to an empty string.
• Modified gcloud beta dns managed-zones update to allow updating the GKE clusters or networks bound to a private zone independently by setting only --gkeclusters or --networks.

Cloud Datastore Emulator

• Release Cloud Datastore Emulator version 2.2.0
  • Adds a flag to support Cloud Firestore in Datastore mode product mode in the emulator.

Cloud Firestore Emulator

• Released Cloud Firestore emulator v1.14.3.
  • Fixed exports throwing BufferOverflowException.

Cloud IAM

• Service Accounts SignJwt promoted to GA command.

Compute Engine

• Changed the default value of --image-family flag to debian-11 for gcloud compute instances create and gcloud compute instance-templates create commands.

Config Connector

• Updated Google Cloud Config Connector to version 1.82.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Config Controller

• Let gcloud anthos config controller create print the default Config Connector identity, to allow easier subsequent permission grant.
• Added gcloud anthos config controller get-config-connector-identity which prints the default Config Connector identity, to allow easier subsequent permission grant.

Identity and Access Management

• Added --enable-imdsv2 flag to gcloud iam workload-identity-pools create-cred-config command to include AWS token Url to the credential source while generating AWS credentials config file.

Kubernetes Engine

• Added --node-labels, --node-taints and --tags flags to gcloud container node-pools update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

382.0.0 (2022-04-19)

Access Approval

• Added --active_key_version flag to gcloud access-approval settings update to set the crypto key version to use for signing approval requests.

Anthos Multi-Cloud

• Added --proxy-secret-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing a proxy configuration.
• Added --proxy-secret-version-id flag to gcloud container aws node-pools update to update the version ID of the AWS Secrets Manager secret containing a proxy configuration.
• Added --clear-proxy-config flag to gcloud container aws node-pools update to clear the proxy configuration associated with the node pool.

Apigee

• Fixed issue where gcloud beta apigee archives list would only list the first 25 archive deployments, even if more existed in the environment.

Binauthz

• Updated the following beta commands to better support IAM Conditions:
  • gcloud beta attestors get-iam-policy outputs conditions associated with each binding.
  • gcloud beta attestors set-iam-policy accepts policies with conditional bindings.
  • gcloud beta attestors <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.
  • gcloud beta policy get-iam-policy outputs conditions associated with each binding.
  • gcloud beta policy set-iam-policy accepts policies with conditional bindings.
  • gcloud beta policy <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.

Cloud Composer

• Enabled nested Airflow commands for Airflow 1.10.14 and 1.10.15 in gcloud composer environments run.

Cloud Logging

• Added --location, --bucket, and --view flags to gcloud logging logs list to add the ability to limit the results to a view.

Cloud TPU

• Promoted gcloud compute tpus tpu-vm to GA. Commands in this group allow creation and management of Cloud TPU VMs.

Compute Engine

• Added INTERNAL as a choice for --ipv6-access-type flag in compute networks subnets create and compute networks subnets update.
• Promoted unspecified value for --protocol flag of gcloud compute backend-services <create|update> to GA.
• Promoted l3_default value for --ip-protocol flag of gcloud compute forwarding-rules create to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.81.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

381.0.0 (2022-04-12)

App Engine

• Updated the Java SDK to version 1.9.96. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• *Added repository size to gcloud artifacts repositories describe and gcloud artifacts repositories list responses to GA.

Cloud Bigtable

• Added "pretty-print" formatting to cbt lookup and cbt read commands. Column encodings and types can be provided using a YAML file, which is passed to the commands using format-file argument.
• Added "keys-only" filtering to cbt lookup and cbt read commands by providing keys-only=true argument.
• Promoted gcloud bigtable hot-tablets list to beta and GA.

Cloud Dataflow

• Added --image-repository-username-secret-id, --image-repository-password-secret-id and --image-repository-cert-path flags to gcloud dataflow flex-template build command to allow users to provide credentials to pull template images from private registries.

Cloud Dataproc

• Promoted gcloud dataproc clusters gke create to GA.

Cloud Datastream

• Deprecated gcloud beta datastream. Use gcloud datastream instead https://cloud.google.com/sdk/gcloud/reference/datastream.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.14.2
  • Fix: transaction expires after 270s or 60s window
  • Fix: dead transaction reused bug
  • Fix: deadlock for up to 30s. #2452

Cloud Healthcare

• Added --schema-type value analytics_v2 to the following command gcloud beta healthcare fhir-stores export bq.
• Added --resource-type flag to gcloud healthcare fhir-stores export bq and gcloud healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
• Added --since flag to gcloud healthcare fhir-stores export bq and gcloud healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Spanner

• Added --processing-units flag to spanner instances create and spanner instances update to add ability to create granular instances in GA.

Cloud Storage

• Updated gsutil component to 5.9.

Compute Engine

• Added --region flag for updating Regional Target HTTPS Proxies via gcloud compute target-https-proxies import.
• Changed the list format field label of gcloud compute networks subnets list to include updated IPv6 fields.
• Added --provisioning-model and --instance-termination-action flags to gcloud compute instances set-scheduling surface for beta.
• Updated gcloud compute instances set-scheduling documentation to include --no-preemptible flag.

Config Connector

• Updated Google Cloud Config Connector to version 1.80.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Database Migration

• Updated gcloud database-migration connection-profiles list to list all region connection profiles when region not specified.

GKE Hub

• Added Kubernetes resource labels for RBAC policies produced by generate-gateway-rbac command.

Kubernetes Engine

• Added --network-performance-configs flag to gcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
• Promoted maxSurge default to GA for node-pool upgrade settings.
• Require values for both --shielded-secure-boot and --shielded-integrity-monitoring when either one is set.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

380.0.0 (2022-04-05)

Google Cloud CLI

• Updated gcloud auth login --cred-file=external-account-creds.json to authorize bq with the External Account Credentials in the passed credential file.

Cloud Composer

• Added support for 1 and 2 aliases in --airflow-version flag, and airflow-1 and airflow-2 aliases in Airflow part of --image-version flag, in gcloud composer environments create, gcloud beta composer environments update, gcloud beta composer environments check-upgrade.
• Implemented gcloud beta composer environments snapshots command group.

Cloud Spanner

• Promoted --condition flag on Cloud Spanner add-iam-policy-binding and remove-iam-policy-binding commands to GA. This allows setting conditional IAM policies on Cloud Spanner resources (instances, databases, and backups) via gcloud.
• Promoted gcloud spanner backups copy to beta and GA.

Compute Engine

• Promoted --certificate-map of 'compute target-ssl-proxies insert|update` to beta.

Distributed Cloud Edge

• Added gcloud edge-cloud container which allows users to manage their Distributed Cloud Edge clusters.

Kubernetes Engine

• Added --network-performance-configs flag to gcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
• Promoted maxSurge default to GA for node-pool upgrade settings.

Terraform

• Added gcloud terraform vet to beta, which allows enforcing policy compliance as part of an infrastructure CI/CD pipeline.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

379.0.0 (2022-03-29)

Breaking Changes

• (Cloud Services) Replace --deleted flag with --show-deleted flag to gcloud services api-keys list. With --show-deleted, keys soft-deleted within 30 days will be returned.
• (Cloud Services) Change the default output format from tabular to row-based of gcloud services api-keys list.

Google Cloud CLI

• Updated gcloud auth login --cred-file=external-account-creds.json to authorize gsutil with the External Account Credentials in the passed credential file.

AI

• Added more choice options to --region flag of gcloud ai custom-jobs and gcloud ai hp-tunining-jobs, including: southamerica-east1 and us-west4.

Artifact Registry

• Changed com.google.cloud.artifactregistry.gradle-plugin from 2.1.1 to 2.1.5 in gcloud print-settings.
• Promoted gcloud artifacts apt and artifacts yum commands to GA.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.14.1
  • Chore: prepare for aggregate support.
  • Chore: add support of x-goog-request-params http header for routing.
  • Fix: change read-past-max-staleness error code to align with production implementation.
  • Fix: update readtime-in-the-future error message.
  • Fix: support importing exports from Windows on UNIX systems.

Cloud Functions

• Promoted --docker-repository, --kms-key, --clear-docker-repository and --clear-kms-key flag of gcloud functions deploy to GA.
• Promoted --docker-registry flag of gcloud functions deploy to beta.

Cloud On Demand Scanning

• Added ARM support for local-extract on Linux.

Cloud Run

• Promoted gcloud run services proxy to beta. This command allows you to proxy a service or revision to localhost. Requests will be authenticated as the current SDK account, or with a provided token.

Compute Engine

• Fixed an issue with --create-disk and --disk flags that causes gcloud compute instances create to fail when attaching a boot disk.
• Promoted --enable-ula-internal-ipv6 and --internal-ipv6-range flags to GA for gcloud compute networks <create|update>.
• Updated --protocol flag to permit values of TCP or SSL when --enable-logging or --logging-sample-rate flags are set for gcloud compute backend-services create and gcloud compute backend-services update for beta.

Config Connector

• Updated Google Cloud Config Connector to version 1.78.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Database Migration

• Updated gcloud database-migration connection-profiles list --region=us-central1 to return correct structure for connection profiles based on format.
• Updated gcloud database-migration connection-profiles create mysql to return error on invalid hostname.
• Updated gcloud database-migration connection-profiles create postgresql to return error on invalid hostname.

Eventarc

• Added gcloud eventarc providers which allows for the discovery of event providers.

Kubernetes Engine

• Deprecated --autoprovisioning-min-cpu-platform flag from gcloud container clusters create/update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

378.0.0 (2022-03-22)

Breaking Changes

• (Bare Metal Solution) Modified gcloud bms volumes update, gcloud bms instances update, gcloud bms networks update, and gcloud bms nfs-shares update to be synchronous by default. Use --async flag to get the old behavior.

Google Cloud CLI

• Updated --scopes flag in gcloud auth application-default print-access-token to support print down-scoped access token for user accounts.

Anthos Multi-Cloud

• Added --root-volume-type flag to gcloud container aws node-pools update to update the type of the root volume.
• Added --root-volume-size flag to gcloud container aws node-pools update to update the size of the root volume.
• Added --root-volume-iops flag to gcloud container aws node-pools update to update the number of I/O operations per second (IOPS) to provision for the root volume.
• Added --root-volume-kms-key-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the root volume.
• Added --config-encryption-kms-key-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the user data.
• Added --clear-proxy-config flag to gcloud container aws clusters update to clear the proxy configuration associated with the cluster.
• Added --clear-security-group-ids flag to gcloud container aws clusters update to clear the additional security groups associated with the control plane replicas.
• Added --root-volume-type flag to gcloud container aws clusters update to update the type of the root control plane volume.
• Added --root-volume-size flag to gcloud container aws clusters update to update the size of the root control plane volume.
• Added --root-volume-iops flag to gcloud container aws clusters update to update the number of I/O operations per second (IOPS) to provision for the root control plane volume.
• Added --root-volume-kms-key-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the root control plane volume.
• Added --clear-security-group-ids flag to gcloud container aws node-pools update to clear the additional security groups associated with the node pool nodes.

Bare Metal Solution

• Added --async flag to gcloud bms volumes update, gcloud bms instances update, gcloud bms networks update, and gcloud bms nfs-shares update.

Certificate Authority Service

• Enabled --sort-by flag for gcloud privateca templates list.

Cloud Memorystore

• Promoted --maintenance-window-day and --maintenance-window-hour flags of gcloud redis instances create to GA.
• Promoted --maintenance-window-day, --maintenance-window-hour, and --maintenance-window-any flags of gcloud redis instances update to GA.
• Promoted gcloud redis instances reschedule-maintenance to GA.
• Promoted support for maintenance windows in gcloud memcache to beta.
  • Added maintenance window flags to create and update commands.
  • --maintenance-window-day
  • --maintenance-window-start-time
  • --maintenance-window-duration
  • Added the flag --maintenance-window-any to update to remove a previously selected maintenance window.
• Promoted the command gcloud beta memcache reschedule-maintenance.

Cloud On Demand Scanning

• Fixed an issue where extraction would occasionally fail while scanning Maven packages.

Cloud SQL

• Expanded --database-version flag choices to gcloud beta sql instance patch to enable major version upgrade on Cloud SQL instances.

Compute Engine

• Added --load-balancing-scheme flag to gcloud compute url-maps validate for alpha, beta and v1.
• Updated import and export schemas for:
  • gcloud compute forwarding-rules.
  • gcloud compute backend-services.
• Promoted locality_lb_policy flag of gcloud compute backend-services create/update to beta.
• Added --share-setting and --share-with flags to gcloud beta compute sole-tenancy node-groups create|update for beta.
• Added --share-settings flag to gcloud beta compute sole-tenancy node-groups list for beta.
• Added --node-project flag to gcloud beta compute instances create for beta.
• Promoted gcloud compute instances suspend and gcloud compute instances resume to v1.

Config Connector

• Updated Google Cloud Config Connector to version 1.77.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Config Controller

• Added --use-private-endpoint flag to gcloud anthos config controller create to restrict access to the master's private endpoint IP of a config controller instance.

GKE Hub

• Promote gcloud container hub memberships generate-gateway-rbac command from alpha to beta.

Secret Manager

• Added --update-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the addition of new aliases to secret versions.
• Added --remove-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the removal of aliases to secret versions.
• Added --clear-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the clearing of all aliases from a secret.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

377.0.0 (2022-03-15)

Google Cloud CLI

• Promoted --no-browser in gcloud auth login and gcloud auth application-default login to be the default flow if gcloud cannot launch a web browser. You can still use --no-launch-browser flow by explicitly specifying it. Note that --no-launch-browser will be removed in version 383.0.0 on April 26, 2022.

Anthos Multi-Cloud

• Added --security-group-ids flag to gcloud container aws node-pools update to update the IDs of additional security groups to add to node pool nodes.

Artifact Registry

• Fixed issue where gcloud artifacts repositories create requires exessive permission when a kms key is supplied.

Bare Metal Solution

• Promoted gcloud bms instances start to GA.
• Promoted gcloud bms instances update to GA.
• Promoted gcloud bms networks update to GA.
• Promoted gcloud bms nfs-shares describe to GA.
• Promoted gcloud bms nfs-shares list to GA.
• Promoted gcloud bms nfs-shares update to GA.
• Promoted gcloud bms volumes update to GA.
• Added --filter flag to gcloud bms instances list.
• Added --filter flag to gcloud bms volumes list.

Certificate Manager

• Improved output of gcloud beta certificate-manager dns-authorizations create command. The output does not contain details of a created resource anymore.

Cloud Composer

• Added support for composer-1 and composer-2 aliases in Composer part of --image-version flag in gcloud beta composer environments create, gcloud beta composer environments update, gcloud beta composer environments check-upgrade.
• Fixed support for X.Y aliases in --airflow-version flag and airflow-X.Y aliases in Airflow part of --image-version flag in gcloud beta composer environments update and gcloud beta composer environments check-upgrade.

Cloud DNS

• Add setIampolicy and getIamPolicy Alpha commands.

Cloud Dataproc

• Added support for Clusters without cluster.config to gcloud dataproc jobs submit.

Cloud Domains

• Allow specifying Project numbers in gcloud domains methods.

Cloud IAM

• Service Accounts Undelete promoted to GA command.

Cloud Memorystore

• Promoted --read-replicas-mode and --replica-count flags of gcloud redis instances create to GA.
• Promoted --read-replicas-mode, --replica-count, and --secondary-ip-range flags of gcloud redis instances update to GA.

Cloud Storage

• Updated gsutil component to 5.8.

Config Connector

• Updated Google Cloud Config Connector to version 1.75.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

• Added --disable-pod-cidr-overprovision flag to gcloud beta container clusters/node-pools create to allow disabling overprovisioning of pod IPs during clusters and node-pools create.

Network Connectivity

• Added gcloud network-connectivity locations describe and gcloud network-connectivity locations list. These commands return information about locations that support site-to-site data transfer.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

376.0.0 (2022-03-08)

Certificate Authority Service

• Added --skip-grace-period flag to gcloud privateca roots delete and gcloud privateca subordinates delete to delete a certificate authority without waiting for the 30-day grace period that allows undeletion.

Cloud Build

• Modified gcloud builds submit --pack to pass --network=cloudbuild to pack.

Cloud Identity-Aware Proxy

• Add warning message to gcloud compute start-iap-tunnel telling users about installing NumPy.

Cloud Run

• Added --env-vars-file to gcloud beta run deploy and gcloud run deploy to specify environment variables for Cloud Run deployments.
• Added --env-vars-file to gcloud beta run services update and gcloud run services update to update environment variables for Cloud Run deployments.

Compute Engine

• Added --split-source-commitment flag to gcloud compute commitments create for alpha.

Database Migration

• Some changes in gcloud connection profile create cloudsql:
  • Fixed boolean flags to support --flag for setting it to true and --no-flag for false.

Firebase Test Lab

• Promoted --app flag of gcloud firebase test ios run to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

375.0.0 (2022-03-01)

Breaking Changes

• (Miscellaneous) Updated .gcloudignore pattern matching to ensure that a leading wildcard does not match multiple path parts, for improved consistency with .gitignore.
  • For example, */baz will no longer match foo/bar/baz. Use **/baz for the previous behavior.

App Engine

• Updated the Java SDK to version 1.9.95. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Key Management Service

• Add gcloud kms ekm-connections commands to GA.

Cloud Pub/Sub

• Added --enable-exactly-once-delivery flag to gcloud pubsub subscriptions create to beta to set exactly once delivery preference in Cloud Pub/Sub subscriptions.
• Added --enable-exactly-once-delivery flag to gcloud pubsub subscriptions update to beta to update exactly once delivery preference for Cloud Pub/Sub subscriptions.

Cloud Security Command Center

• Added gcloud scc bqexports command group to support BigQueryExport features.

Cloud Speech API

• Added medical_conversation and medical_dictation options for gcloud ml speech <recognize | recognize-long-running> --model flag.

Compute Engine

• Modified --filter to add support for server-side zone and region filtering to gcloud compute list commands.
  • Filtering will only be applied server-side if an exact match (=) is used in the filter expression (e.g. --filter="zone=us-central1-a"). Otherwise, the existing client-side filtering will be applied.

Identity and Access Management

• Added gcloud beta iam policies create which creates a policy on the given attachment point with the given name.
• Added gcloud beta iam policies delete which deletes a policy on the given attachment point with the given name.
• Added gcloud beta iam policies get which gets a policy on the given attachment point with the given name.
• Added gcloud beta iam policies listwhich lists the policies on the given attachment point.
• Added gcloud beta iam policies update which updates the policy on the given attachment point with the given name.

Kubernetes Engine

• Promoted --enable-identity-service flag to GA for gcloud container cluster create|update.
• Added --enable-confidential-nodes flag to gcloud beta container node-pools create/update to allow creating node-pools with confidential nodes, and updating existing node pools to confidential nodes.

Miscellaneous

• Updated gcloud info to display the source for each property value in parenthesis after the value, to help understand if the property is set by a command-line flag, an environment variable, the properties file, etc.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

374.0.0 (2022-02-23)

Breaking Changes

• (Google Cloud CLI) Updated gcloud auth application-default login to use --no-browser in place of --no-launch-browser when using --client-id-file.

Google Cloud CLI

• Added gcloud config configurations rename which allows for renaming of existing configurations.

Anthos Multi-Cloud

• Added --security-group-ids flag to gcloud container aws clusters update to update the IDs of additional security groups to add to control plane replicas.
• Added --proxy-secret-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing a proxy configuration.
• Added --proxy-secret-version-id flag to gcloud container aws clusters update to update the version ID of the AWS Secrets Manager secret containing a proxy configuration.
• Deprecated aws/location property of gcloud container aws. Use container_aws/location to set the default Google Cloud location for gcloud container aws.
• Deprecated azure/location property of gcloud container azure. Use container_azure/location to set the default Google Cloud location for gcloud container azure.

App Engine

• Fixed bug in devappserver causing "ImportError: cannot import name apiproxy" errors.

BigQuery

• Fix 'collections' error for Python 3.10.
• Add --concurrency flag for reservations. Mark --max_concurrency as deprecated.
• Minor bug fixes and dependency updates.

Cloud DNS

• Added Location flag to Cloud DNS Managed Zones, Response Policies beta commands. This flag can be specified to target Cloud DNS Zonal Servers.

Compute Engine

• Added --compression-mode flag to gcloud beta compute backend-services <create | update>.
• Added --compression-mode flag to gcloud beta compute backend-buckets <create | update>.
• Promoted --resource-manager-tags flag of gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to GA.
• Added project-number as an option for --service-proxy of gcloud beta compute instance-templates create.
• Promoted enum CLIENT_IP_NO_DESTINATION of --session-affinity of gcloud backend-services <create | update> to Beta and GA.
• Modified --load-balancing-scheme flag of gcloud compute backend-services create and gcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in GA.

Compute OS Config

• Added gcloud compute osconfig pause and gcloud compute os-config resume` commands.

Config Connector

• Updated Google Cloud Config Connector to version 1.74.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Eventarc

• Added --event-filters-path-pattern flag to gcloud eventarc triggers create and gcloud eventarc triggers update to allow path pattern matching in Cloud Audit Log resource name filter.

Kubernetes Engine

• Added --autoprovisioning-network-tags flag of gcloud container clusters create, gcloud container clusters create-autoand gcloud container clusters update to beta, GA.

Miscellaneous

• Updated gcloud config get-value to gcloud config get per user feedback. The get-value command will remain as a hidden alias for get.
• Updated gcloud config set to prompt when attempting to set a project, zone, or region to an invalid value. If --quiet is provided, or the command is not run interactively, the warning is still printed and the specified value is set.
• Updated gcloud init to allow selection of an unverified project ID.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

373.0.0 (2022-02-15)

Breaking Changes

• (Cloud Filestore) Undeprecate --locations flag to gcloud filestore.
• (Cloud Pubsub Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
  • For IPv4-only environments, pass a IPv4 address to --host:port.
• (Cloud Pubsublite Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
  • For IPv4-only environments, pass a IPv4 address to --host:port.
• (Transcoder) Removed support for gcloud beta transcoder command group.

Google Cloud CLI

• Added --scopes flag to gcloud auth application-default print-access-token command to print an access token with the given scopes.

AI Platform

• Fixed issue where gcloud ai-platform local train mistakenly overrode it to the default value when the flag --worker-count or --parameter-server-count is specified to be 0.

Anthos Multi-Cloud

• Added --config-encryption-kms-key-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt user data.

Bare Metal Solution

• Removed gcloud bms volumes snapshot and gcloud bms volumes restore from GA.

Cloud Dataplex

• Promoted lakes command group to GA.
• Promoted zones command group to GA.
• Promoted assets command group to GA.
• Promoted tasks command group to GA.

Cloud Datastream

• Fix bug with gcloud datastream connection-profiles create command when specify --private-connection flag.

Cloud Memorystore

• Added --read-replica-mode and --secondary-ip-range to gcloud beta redis instances update.
• Updated gcloud beta redis instances describe to include secondary-ip-range.

Cloud On Demand Scanning

• Added GO option to --additional-package-types flag for gcloud artifacts docker images scan to enable scanning of Go third-party and standard library packages in Go binaries.

Cloud SQL

• Added --maintenance-version flag to gcloud sql instances patch.

Cloud Spanner

• Promoted the database dialect flag to beta and GA in gcloud spanner databases create command.

Cloud Speech API

• Added --min-diarization-speaker-count and --max-diarization-speaker-count to gcloud beta ml speech command, replacing --diarization-speaker-count which used to set both of the new flags to same value.

Compute Engine

• Added --provisioning-model and --instance-termination-action flags for gcloud compute create-with-container command.
• Modified the API calls to use correct (RFC7396) null semantics in Patch for removing stateful IPs that were made by using the following flags of gcloud beta compute instance-groups managed update and gcloud beta compute instance-groups managed instance-configs update:
  • --remove-stateful-internal-ips,
  • --remove-stateful-external-ips.
• Promoted --provisioning-model and --instance-termination-action flags for gcloud compute <instances|instance-templates|instances bulk> create commands.

Config Connector

• Updated Google Cloud Config Connector to version 1.73.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added the following alpha and beta commands to work with Dataproc Metastore service databases and tables:
  • metastore services databases get-iam-policy
  • metastore services databases set-iam-policy
  • metastore services databases add-iam-policy-binding
  • metastore services databases remove-iam-policy-binding
  • metastore services databases tables get-iam-policy
  • metastore services databases tables set-iam-policy
  • metastore services databases tables add-iam-policy-binding
  • metastore services databases tables remove-iam-policy-binding

Identity and Access Management

• Added --include-aws-session-token-url flag to gcloud iam workload-identity-pools create-cred-config command to include AWS token url to the credential source while generating AWS credentials config file.
• Added --include-deny flag to gcloud beta projects get-ancestors-iam-policy and gcloud beta resource-manager folders get-ancestors-iam-policy to specify if it should return deny policies on the hierarchy.

Kubernetes Engine

• Added --spot flag to gcloud container clusters/node-pools create to allow creating spot VM for node pools.
• Adds support for linux/arm version of kubectl.
• Additional kubectl versions:
  • kubectl.1.18 (1.18.20)
  • kubectl.1.19 (1.19.14)
  • kubectl.1.20 (1.20.15)
  • kubectl.1.21 (1.21.9)
  • kubectl.1.22 (1.22.6)
  • kubectl.1.23 (1.23.3)

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

372.0.0 (2022-02-08)

Breaking Changes

• (Kpt) The kpt live apply and kpt live destroy default behavior changed to wait forever
• (Kpt) for reconciliation if no timeouts are specified.
• (Kpt) The kpt live output for events and json printer is changed to omit resource-specific
• (Kpt) health information by default.
• (Kpt) The default image-pull-policy for kpt fn render and kpt fn eval changed
• (Kpt) from AlwaysPull to IfNotPresent.

Cloud SDK

• Deprecated --[no-]launch-browser flags and added --no-browser to gcloud auth login and gcloud auth application-default login commands. Use --no-browser to authorize gcloud on machines which cannot launch a web browser.
• Deprecated --no-launch-browser and --console-only flags and added --no-browser flag to gcloud init. Use --no-browser to initialize gcloud command-line tool on machines which cannot launch a web browser.

Anthos Multi-Cloud

• Added --role-arn flag to gcloud container aws clusters update command to update the IAM role to assume when managing AWS resources.
• Added --role-session-name flag to gcloud container aws clusters update command to update the identifier for the assumed role session.
• Added --instance-type flag to gcloud container aws clusters update command to update the AWS ec2 instance type for the control plane.
• Added --admin-users flag to gcloud container aws clusters update and gcloud container azure clusters update to update the users that can perform operations as a cluster administrator.
• Added --vm-size flag to gcloud container azure clusters update to update the Azure Virtual Machine size for the control plane.

Certificate Manager

• Unified usage of --location flag in gcloud certificate-manager subcommands.

Cloud Composer

• Added --connection-subnetwork flag to gcloud composer environments create command to enable using Private Service Connect for internal communication.

Cloud Identity-Aware Proxy

• Promoted gcloud iap oauth-clients from alpha to beta.
• Promoted gcloud iap oauth-brands from alpha to beta.

Cloud Key Management Service

• Add kms ekm-connections commands to alpha, beta.
• Add support for external-vpc crypto keys.
• Added support for the following "raw" PKCS#1 signing algorithms to gcloud kms keys create|update and gcloud kms keys versions import:
  • rsa-sign-raw-pkcs1-2048
  • rsa-sign-raw-pkcs1-3072
  • rsa-sign-raw-pkcs1-4096

Cloud On Demand Scanning

• Upgrade local-extract to version 1.4.0 to improve the stability and quality of extraction.

Cloud SQL

• Promoted --network flag of gcloud sql instances create to GA.
• Promoted --network flag of gcloud sql instances patch to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.72.1. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added --update-auxiliary-versions-from-file, --add-auxiliary-versions and --clear-auxiliary-versions flags to gcloud metastore services update beta release track to allow updating a Dataproc Metastore with auxiliary versions.

Kpt

• Updated kpt from v1.0.0-beta.9 to v1.0.0-beta.13. Refer to OSS releases page https://github.com/GoogleContainerTools/kpt/releases for detailed release notes.
• Improved the merge handling for pipeline section of the Kptfile.
• Added exec support for running functions in kpt fn render.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

371.0.0 (2022-02-01)

Cloud SDK

• Added support for specifying an OAuth 2.0 access token via the environment variable CLOUDSDK_AUTH_ACCESS_TOKEN.

Anthos Multi-Cloud

• Added --admin-users flag to gcloud container aws clusters create and gcloud container azure clusters create to add users that can perform operations as a cluster administrator.

App Engine

• Updated the Java SDK to version 1.9.94. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Cloud DataPipelines

• Added gcloud beta datapipelines pipeline job list which lists all jobs for a given pipeline in a specific project and region.

Cloud Deploy

• Add --description flag to gcloud deploy targets rollback.
• Modified gcloud deploy targets describe to make --delivery-pipeline an optional flag.
  • When --delivery-pipeline is not specified, displays deployment information of the associated pipeline with the most recent successful rollout.
  • Added --list-all-pipelines to list deployment information of all associated pipelines.

Cloud Speech API

• Added --enable-automatic-punctuation to gcloud ml speech recognize commands.

Compute Engine

• Added --guest-os-features (only UEFI_COMPATIBLE is supported) for:
  • gcloud compute images import in beta;
  • gcloud compute instances import in beta;
  • gcloud compute machine_images import in beta.
• Added a new key type http-cookie to --enforce-on-key in gcloud compute security-policies rules.
• Added --recaptcha-redirect-site-key for gcloud compute security-policies update, and promoted it to beta and GA.
• Added --exceed-redirect-type and --exceed-redirect-target for gcloud compute security-policies rules create|update, and promoted them to beta and GA.
• Added support for version=8 and short-name=rocky in --os-types for gcloud beta compute instances ops-agents policies [create|update].

Config Connector

• Updated Google Cloud Config Connector to version 1.72.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added --auxiliary-versions and --auxiliary-versions-from-file flags to gcloud metastore services create beta release track to allow creating a Dataproc Metastore with auxiliary versions.
• Added --endpoint-protocol flag to gcloud beta metastore services create and gcloud beta metastore services update to specify the protocol to use for the metastore service endpoint.

Kubernetes Engine

• Updates default kubectl from 1.20 to 1.21.
• Adds support for Mac M1 (darwin/arm64) version of kubectl (version 1.21 and greater).
• Additional kubectl versions:
  • kubectl.1.18 (1.18.20)
  • kubectl.1.19 (1.19.14)
  • kubectl.1.20 (1.20.14)
  • kubectl.1.21 (1.21.9)
  • kubectl.1.22 (1.22.5)
  • kubectl.1.23 (1.23.1)

Miscellaneous

• Added configuration property core/console_log_format to support alternative logging formats. Use gcloud config set core/console_log_format detailed to include timestamps in messages logged to the console.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

370.0.0 (2022-01-25)

AI

• Added more choice options to --region flag of gcloud ai custom-jobs and gcloud ai hp-tunining-jobs, including: asia-east2, asia-south1, europe-west3, europe-west6, northamerica-northeast2 and us-west2.

Bare Metal Solution

• Added gcloud bms instances reset which hard resets Bare Metal Solution instances.

BigQuery

• Add support for --clone flag for table clones.
• Add support for --multi_region_auxiliary flag for reservations.
• Fix 'bq show -d' to support authorized routines.
• Minor bug fixes and dependency updates.

Cloud Composer

• Fixed issues in creation of Cloud Composer 2 environments that didn't properly pass on the secondary range names/CIDRs.

Cloud Functions

• Promoted --set-secrets, --update-secrets, --remove-secrets and --clear-secrets flags of gcloud functions deploy to GA.

Compute Engine

• Promoted --enable-ipv6, --ipv6-nexthop-address, and --peer-ipv6-nexthop-address flags of gcloud compute router update-bgp-peer to GA.
• Promoted --enable-ipv6, --ipv6-nexthop-address, and --peer-ipv6-nexthop-address flags of gcloud compute router add-bgp-peer to GA.
• Promoted --stack-type, --candidate-ipv6-subnet, --cloud-router-ipv6-interface-id, and --customer-router-ipv6-interface-id flags of gcloud compute interconnects attachments dedicated create to GA.
• Promoted --stack-type, --candidate-ipv6-subnet, --cloud-router-ipv6-interface-id, and --customer-router-ipv6-interface-id flags of gcloud compute interconnects attachments dedicated update to GA.
• Promoted --enable-uefi-networking flag of gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to GA.
• Added mesh as an option for --service-proxy of gcloud beta compute instance-templates create.

Compute OS Config

• Add --mig-instances-allowed flag to gcloud compute os-config patch-jobs execute.

Config Connector

• Updated Google Cloud Config Connector to version 1.71.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added --database-type flag to metastore services create alpha and beta release tracks to allow specifying the backing store in Dataproc Metastore.

Recommender

• Added annotations support for gcloud beta recommender insight-type-config update and gcloud beta recommender recommender-config update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

369.0.0 (2022-01-19)

AI

• Added --labels flag to gcloud ai custom-jobs create and gcloud ai hp-tuning-jobs create to support setting labels on the resources.

Artifact Registry

• Removed deprecated repository format 'PYPI' from commands gcloud artifacts repositories create and gcloud artifacts print-settings.

Bare Metal Solution

• Updated gcloud bms instances list to return the resource identifier.
• Added gcloud bms operations describe and gcloud bms operations wait which checks the status or waits for completion of long-running operations in Bare Metal Solution.

Certificate Manager

• Promoted gcloud certificate-manager to beta.

Cloud Dataproc

• Added gcloud dataproc batches to submit and manage Dataproc batch jobs.
• Added --master-local-ssd-interface, --worker-local-ssd-interface and --secondary-worker-local-ssd-interface to gcloud dataproc clusters create to allow users to specify interface (SCSI/NVME) while attaching local SSDs.
• Enabled Cloud Storage file location for dataproc workflow-templates instantiate-from-file --file.

Cloud Deploy

• Promoted gcloud deploy to GA.

Cloud Functions

• Promote gcloud functions --gen2 commands to beta.

Cloud IDS

• Updated ids endpoints create to pass in user-defined labels to the Endpoint resource.
• ids endpoints list now returns the correct list of endpoints when --uri is passed in.

Cloud Speech API

• Added --model flag to gcloud ml speech recognize to specify ml model to use for audio recognition.
• Added --output-uri flag to gcloud ml speech recognize-long-running allowing users to specify output transcript file on Google Cloud Storage.

Compute Engine

• Promoted --auto-renew flag of gcloud compute commitments create and gcloud compute commitments update to GA.
• Added FIXED_STANDARD to allowed list of values for --network-tier flag.
• Promoted flags --cache-key-include-http-header and --cache-key-include-named-cookie of gcloud compute backend-services create and gcloud compute backend-services update to GA.
• Promoted flags --cache-key-include-http-header and --cache-key-query-string-whitelist of gcloud compute backend-buckets create and gcloud compute backend-buckets update to GA.
• Promoted --certificate-map of 'compute target-https-proxies insert|update` to beta.
• Added --domain-names for gcloud compute service-attachments create.
• Promoted --troubleshoot flag of gcloud compute ssh to GA.
• Added 21.04 and 21.10 to allowed list of values for --version of gcloud beta compute instances ops-agents policies [create|update].

Config Connector

• Updated Google Cloud Config Connector to version 1.70.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Added --internal-ip flag to gcloud container fleet memberships register for version beta to maintain consistency with gcloud beta container clusters get-credentials.

Recaptcha

• Added --waf-feature, and --waf-service options to recaptcha keys create command, supporting creation of WAF-enabled keys.

Recommender

• Added support for gcloud beta recommender insight-type-config describe.
• Added support for gcloud beta recommender insight-type-config update.

Service Directory

• Added --network flag to gcloud service-directory endpoints create command.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

368.0.0 (2022-01-11)

Breaking Changes

• (Anthos Multi-Cloud) Required --fleet-project flag of gcloud container aws clusters create and gcloud container azure clusters create.
• (Anthos Multi-Cloud) Required --config-encryption-kms-key-arn flag of gcloud container aws clusters create.
• (Firebase Test Lab) Updated minimum version for AndroidJUnitRunner in combination with Android Test Orchestrator from 1.0 to 1.1, deprecating support for the Test Orchestrator from the legacy Android Test Support libraries.

AI

• Updated gcloud ai custom-jobs create to allow worker pools with container-image-uri when python-package-uris is also specified.

Anthos Multi-Cloud

• Replaced auth-provider auth plugin with exec auth plugin when generating kubeconfig in gcloud container aws clusters get-credentials and gcloud container azure clusters get-credentials.

Bare Metal Solution

• Removed gcloud bms snapshot-schedule-policies from GA.
  • Removed gcloud bms volumes snapshots from GA.
  • Removed gcloud bms volumes update from GA.

Cloud Bigtable

• Added cbt import [TABLE_ID] [INPUT_FILE] which allows the contents of a properly formatted .csv file to be written to an existing table.

Cloud Composer

• Added gcloud composer state store for State Store operation of State/Disaster recovery to Alpha.
• Added gcloud composer state load for State Load operation of State recovery to Alpha.

Cloud DNS

• Added DNS Routing Policies support for gcloud dns record-sets.

Cloud Data Fusion

• Added --options optional argument to
  gcloud beta data-fusion instances update for instance to update
  options field, specified as KEY1=VALUE1,KEY2=VALUE2.

Cloud Datastream

• Added gcloud datastream objects command group. Commands in this group manage backfills for Stream object resources. For more information, see https://cloud.google.com/datastream/docs/reference/rest/v1/projects.locations.streams.objects.

Cloud Deploy

• When creating a release with gcloud releases create, can include the date and time of release creation by adding keywords $DATE and $TIME to release name.

Cloud IDS

• Updated ids endpoints create to pass in user-defined labels to the Endpoint resource.

Cloud On Demand Scanning

• Updated local-extract to version 1.3.2 to fix an issue with extraction of invalid zip archives.

Cloud SQL

• Added --insights-config-query-plans-per-minute to
• gcloud sql instances create and gcloud sql instances patch.

Cloud Storage

• Updated gsutil component to 5.6.

Compute Engine

• Promoted compute machine-images command group to GA.
• Promoted gcloud compute backend-services add-service-bindings and gcloud compute backend-services remove-service-bindings commands to beta.
• Promoted --request-headers-to-add for gcloud compute security-policies rules create|update to GA.
• Promoted --enable-dynamic-port-allocation and --max-ports-per-vm flags of gcloud compute routers nats create and gcloud compute routers nats update to GA.
• Promoted --clear-max-ports-per-vm flag of gcloud compute routers nats update to GA.
• Promoted REGIONAL_MANAGED_PROXY option for --purpose flag of gcloud compute networks subnets create to GA.
• Added --zypper-excludes flag to gcloud compute os-config patch-jobs execute to allow specifying patches to be excluded from update.

GKE Hub

• Added gcloud container fleet memberships command group identical to existing gcloud container hub memberships.
• Promoted the following commands to GA:
  • gcloud container hub mesh describe.
  • gcloud container hub mesh disable.
  • gcloud container hub mesh enable.

Kubernetes Engine

• Added --enable-service-externalips flag to gcloud container clusters create | update to allow or deny services to set the ExternalIPs field.
• Added --add-maintenance-exclusion-scope flag to gcloud container clusters update to specify the maintenance exclusion scope as no_upgrades, no_minor_upgrades, or no_minor_or_node_upgrades.
• Demoted many gcloud container clusters warning-level logs to informational.
  • Changed warnings were those that do not indicate issues with your Kubernetes Engine resources, such as upcoming default changes and feature usage notes.
  • Intent was to ensure warnings are genuine indications that something is wrong.
  • Outdated warnings have been removed.
• Added Compact Placement support to the command gcloud container clusters create. A --placement-type flag can be specified to specify a requirement of nodes collocation.
• Added Compact Placement support to the command gcloud container node-pools create. A --placement-type flag can be specified to specify a requirement of nodes collocation.

Miscellaneous

• Updated console handling code to assume non-interactive mode if stdin, stdout, or stderr is not open, rather than exit with an error.

Recommender

• Added support for gcloud beta recommender recommender-config describe.
• Added support for gcloud beta recommender recommender-config update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

367.0.0 (2021-12-14)

Breaking Changes

• (Cloud Datastream) Modified gcloud beta datastream streams create and gcloud beta datastream streams update --force & --validate-only flags to be mutually exclusive.

App Engine

• Updated the Go SDK to version 1.9.72. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/go/release-notes.

Assured Workloads

• Added --enable-sovereign-controls flag to gcloud assured workloads create command.

Bare Metal Solution

• Promoted gcloud bms networks to GA.
• Promoted gcloud bms snapshot-schedule-policies to GA.
• Promoted gcloud bms volumes to GA.

Cloud Bigtable Emulator

• Added ARM64 support for Linux and macOS.

Cloud Composer

• Added --enable-master-authorized-networks and --master-authorized-networks flags to gcloud beta composer environments create command.
• Added --enable-master-authorized-networks and --disable-master-authorized-networks and --master-authorized-networks to gcloud beta composer environments update command.

Cloud Datastream

• Modified gcloud beta datastream stream create and gcloud beta datastream stream update validation flags (--validate-only, --force) to be mutually exclusive.
• Promoted gcloud datastream connection-profiles to GA.
  • RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
  • Renamed --bucket-name flag to bucket.
  • Renamed --private-connection-name flag to --private-connection.
  • Removed --no-connectivity flag.
  • Added --force validation flag.
• Promoted gcloud datastream streams to GA.
  • For create and update --force & --validate-only flags are now mutually exclusive.
  • Renamed --source-name flag to --source.
  • Renamed -destination-name flag to --destination.
• Promoted gcloud datastream private-connections to GA.
  • Renamed --vpc-name flag to --vpc.
• Promoted gcloud datastream routes to GA.
• Promoted gcloud datastream locations to GA.
• Promoted gcloud datastream operations to GA.

Cloud Deploy

• When using gcloud deploy apply, manifest files support apiVersion 'deploy.cloud.google.com/v1'.

Cloud Filestore

• Added gcloud beta filestore instances revert command to revert a filestore instance to specific snapshot.

Cloud Healthcare

• Added --resource-type flag to gcloud beta healthcare fhir-stores export bq and gcloud beta healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
• Added --since flag to gcloud beta healthcare fhir-stores export bq and gcloud beta healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Run

• Promoted --cpu-throttling of gcloud run from beta to GA.

Cloud Security Command Center

• Added gcloud findings bulk-mute command to support mute features.

Compute Engine

• Fixed a bug in gcloud compute start-iap-tunnel that was causing remote connections to be delayed up to 5 seconds. Link to bug: https://issuetracker.google.com/issues/199408959.
• Promoted --subsetting-subset-size flag of gcloud compute backend-services create|update commands to beta.
• Promoted the following --service-proxy flag parameters of gcloud compute instance-templates create to beta:
  • intercept-all-outbound-traffic,
  • exclude-outbound-ip-ranges,
  • exclude-outbound-port-ranges,
  • scope.
• Promoted gcloud compute instances|instance-templates create --network-performance-configs flag to GA.
• Added the following flags to gcloud beta compute instance-groups managed create, gcloud beta compute instance-groups managed create-instance, and gcloud beta compute instance-groups managed instance-configs create:
  • --stateful-internal-ip,
  • --stateful-external-ip.
• Add the following flags to gcloud beta compute instance-groups managed update and gcloud beta compute instance-groups managed instance-configs update:
  • --stateful-internal-ip,
  • --remove-stateful-internal-ips,
  • --stateful-external-ip,
  • --remove-stateful-external-ips.

Kpt

• Updated kpt update to no longer require users to check in changes before invoking kpt pkg update.
• Updated kpt update to accepts empty path with version.
• Updated kpt fn to check presence of function images in local cache only when relevant.
• Fixed the property names casing issue in the Kptfile schema.
• Fixed issue where kpt pkg get returns an error while adding merge comment.

Network Connectivity

• Added gcloud network-connectivity operations describe and gcloud network-connectivity operations list which return information about long-running operations.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

366.0.0 (2021-12-07)

Breaking Changes

• (Cloud Composer) Added requirement to provide one of --web-server-allow-ip, --web-server-allow-all, --web-server-deny-all flags in gcloud composer environments create when creating a private IP Cloud Composer 2 environment.
• (Cloud Datastore) Modified gcloud beta datastream to use Datastream v1 API, which effects the client structured output.
• (Cloud Functions) Modified gcloud functions deploy flag --security-level to default to SECURE_ALWAYS instead of SECURE_OPTIONAL. SECURE_ALWAYS enforces the created function to support HTTPS only, instead of both HTTPS and HTTP.
  • To override this behavior, use --security-level=SECURE_OPTIONAL.

Cloud SDK

• Added support for environment variable completion to the "gcloud command-line tool".

AI

• Added --endpoint-id flag to gcloud ai endpoints create and gcloud beta ai endpoints create.
• Added --deployed-model-id flag to gcloud ai endpoints deploy-model and gcloud beta ai endpoints deploy-model.
• Modified --region flag of gcloud ai endpoints to include new online prediction regions.
• Modified --region flag of gcloud ai models to include new online prediction regions.

App Engine

• Updated the Java SDK to version 1.9.93. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

BigQuery

• Added support for CLOUD_RESOURCE as a connection_type.
• Added --trial_id flag to extract to support exporting an individual trial of an ML model trained with Hyperparameter Tuning.
• Added support for Device Certificate Authentication via Mutual TLS. See gcloud topic client-certificate.
• Added support for creating a linked dataset.
• Minor bug fixes.

Certificate Authority Service

• Added --kms-key-version to gcloud privateca certificates, which allows creating certificates backed by a KMS key version.

Cloud Access Context Manager

• Promoted --scopes flag of gcloud access-context-manager policies to GA.
• Promoted gcloud access-context-manager policies add-iam-policy-binding to GA.
• Promoted gcloud access-context-manager policiesremove iam-policy-binding to GA.
• Promoted gcloud access-context-manager policies set-iam-policy to GA.
• Promoted ggcloud access-context-manager policies get-iam-policy to GA.

Cloud Bigtable

• Added --autoscaling-min-nodes, --autoscaling-max-nodes, and --autoscaling-cpu-target flags to gcloud bigtable clusters create for alpha, beta and GA to let users create autoscaling clusters.
• Added key autoscaling-min-nodes, autoscaling-max-nodes and autoscaling-cpu-target to --cluster-config flag of gcloud bigtable instances create for alpha, beta and GA to let users create autoscaling clusters.
• Added --autoscaling-min-nodes, --autoscaling-max-nodes, --autoscaling-cpu-target and disable-autoscaling flags to gcloud bigtable clusters update for alpha, beta and GA to let users configure autoscaling when updating clusters.

Cloud Composer

• Allowed --web-server-allow-ip, --web-server-deny-all, --web-server-allow-all flags in gcloud composer environments create to be used with Cloud Composer 2.
• Added support for kubernetes Airflow CLI commands to gcloud composer environments run for Cloud Composer environments that use Airflow 2.1.4+.
• Added --connection-subnetwork flag to gcloud beta composer environments create command to enable using Private Service Connect for internal communication.
• Promoted --maintenance-window-start, --maintenance-window-end and --maintenance-window-recurrence flags of gcloud composer environments create to GA.
• Added support for --kms-key flag in gcloud composer environments create command when creating Cloud Composer 2 environments.
• Added --environment-size and composer-network-ipv4-cidr flags in gcloud composer environments create and gcloud composer environments update to be used with Cloud Composer 2.
• Added --scheduler-cpu, --scheduler-memory, --scheduler-storage, --scheduler-count, --worker-cpu, --worker-memory, --worker-storage, --min-workers, --max-workers, --web-server-cpu, --web-server-memory, --web-server-storage flags in gcloud composer environments create and gcloud composer environments update to be used with Cloud Composer 2.

Cloud DNS

• Promoted gcloud dns response-policies command group to GA.

Cloud Data Catalog

• Added gcloud data-catalog entries star and gcloud data-catalog entries unstar which allows users to star and unstar their favorite Data Catalog entries respectively.

Cloud DataPipelines

• Added gcloud beta datapipelines pipeline command with support for create, list, update, describe, delete, run and stop.

Cloud Datastream

• Modified gcloud beta datastream stream create and gcloud beta datastream stream update validation flags (--validate-only, --force) to be mutually exclusive.
• Promoted gcloud datastream connection-profiles to GA.
  • RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
  • Renamed --bucket-name flag to bucket.
  • Renamed --private-connection-name flag to --private-connection.
  • Removed --no-connectivity flag.
  • Added --force validation flag.

Cloud Filestore

• Added --force flag to gcloud filestore instances delete command to allow users to delete Filestore instances with child resources.
• Added gcloud filestore instances snapshots command group, which is used to create and manage Filestore snapshots.
• Added connect-mode param to --network flag of gcloud filestore instances create for GA.
• Added --kms-key flag to gcloud filestore instances create command to specify the customer-managed KMS key name to use for encrypting the filestore instance.

Cloud Functions

• Promoted --min-instances and --clear-min-instances flags of gcloud functions to GA.

Cloud Pub/Sub

• Increased upper bound for --message-retention-duration flag of gcloud pubsub topics create from 7 days to 31 days.
• Increased upper bound for --message-retention-duration flag of gcloud pubsub topics update from 7 days to 31 days.

Cloud SQL

• Added --database-version flag to gcloud sql instance patch enable minor version upgrade for cloud sql instances.
• Modified gcloud sql instances clone to support --point-in-time flag for MySQL too.

Compute Engine

• Added update command to gcloud compute os-config patch-deployments on alpha, beta and GA tracks.
• Promoted gcloud compute snapshots create command to GA.
• Promoted flags --connection-persistence-on-unhealthy-backends, --idle-timeout-sec, and --tracking-mode of gcloud compute backend-services create and gcloud compute backend-services update to GA.
• Promoted --service-bindings flag of gcloud compute backend-services create|update commands to beta.

Compute OS Config

• Added log to remind user how to check operation status for gcloud compute os-config os-policy-assignment create in --async mode.

Config Connector

• Updated Google Cloud Config Connector to version 1.68.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Declarative Workflows

• Promoted gcloud beta resource-config bulk-export to beta with improved support for export to Terraform HCL format (via. --resource-format=terraform).
• Added config export commands for the following command surfaces to alpha, enabling export of the related Google Cloud resources to KRM and Terraform HCL:
  • memcache instances
  • access-context-manager policies
  • access-context-manager perimeters
  • access-context-manager levels
  • secrets
  • secrets versions
  • iam service-accounts
  • iam service-accounts keys
  • transfer jobs
  • dns managed-zones
  • dns policies
  • spanner databases
  • spanner instances
  • artifacts repositories
  • bq jobs
  • bq datasets
  • bq tables
  • pubsub topics
  • pubsub subscriptions
  • source repos
  • kms keys
  • kms keyrings
  • builds triggers
  • dataflow jobs
  • monitoring channels
  • monitoring policies
  • redis instances
  • sql instances
  • sql databases
  • identity groups*
  • storage buckets
  • bigtable app-profiles
  • bigtable instances tables
  • bigtable instances
  • resource-manager liens
  • container node-pools
  • container clusters
  • compute url-maps
  • compute target-grpc-proxies
  • compute instances
  • compute target-instances
  • compute target-ssl-proxies
  • compute target-pools
  • compute disks
  • compute target-http-proxies
  • compute target-https-proxies
  • compute ssl-policies
  • compute addresses
  • compute backend-buckets
  • compute firewall-rules
  • compute target-tcp-proxies
  • compute target-vpn-gateways
  • compute networks subnets
  • compute vpn-tunnels
  • compute vpn-gateways
  • compute forwarding-rules
• Added gcloud beta resource-config terraform generate-import to beta, adding support for generating a shell script to adopt exported Terraform HCL files into Terraform state.
• Added gcloud beta resource-config terraform init-provider to beta, adding support for initializing the Google Cloud Platform Terraform provider from the gcloud command-line tool.

Kubernetes Engine

• Added filter option to notification-config flag on gcloud container clusters create and gcloud container clutsers update commands to specify specific pubsub message types to receive.
• Added --enable-managed-prometheus flag to gcloud beta container clusters create and gcloud beta container clutsers update to deploy Google Cloud Managed Service for Prometheus managed collection to a Kubernetes cluster.
• Added --disable-managed-prometheus flag to gcloud beta container clusters update to tear down Google Cloud Managed Service for Prometheus managed collection on a Kubernetes cluster with managed collection already deployed.
• Added a deprecation warning on --enable-pod-security-policy flag to create and update commands of gcloud beta container clusters.

Network Services

• Promoted gcloud network-services service-bindings to beta.

Transcoder

• Promoted gcloud transcoder command group to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

365.0.1 (2021-11-22)

BigQuery

• Fixed bug in bq command. This issue can be tracked at https://issuetracker.google.com/issues/206863204

365.0.0 (2021-11-16)

Breaking Changes

• (AI) Removed --base-image flag of gcloud beta ai custom-jobs local-run. Use --executor-image-uri flag instead.
• (AI) Removed --work-dir flag of gcloud beta ai custom-jobs local-run. Use --local-package-path flag instead.
• (Anthos Multi-Cloud) Removed --service-load-balancer-subnet-ids flag of gcloud container aws clusters create.

Cloud SDK

• Updated Windows PuTTY executables to version 0.76.

AI

• Promoted gcloud ai custom-jobs local-run to GA.
• Promoted 'local-package-path', 'script', 'requirements', 'extra-packages' and 'extra-dir' fields in --worker-pool-spec flag of gcloud ai custom-jobs create to GA, to support automatically building custom training image from a local package.
• Modified --region flag of gcloud ai endpoints to include new online prediction regions.
• Modified --region flag of gcloud ai models to include new online prediction regions.

Cloud Build

• Deprecated --no-external-ip in gcloud builds worker-pools create. --no-external-ip will be removed in an upcoming release. Please use --no-public-egress so that workers in the worker pool are created without an external IP address.
• Deprecated --no-external-ip in gcloud builds worker-pools update. --no-external-ip will be removed in an upcoming release. Please use --no-public-egress so that workers in the worker pool are created without an external IP address or --public-egress so that workers in the worker pool are created with an external IP address.
• Removed--no-external-ip flag in gcloud beta builds worker-pools create. Please use --no-public-egress so that workers in the worker pool are created without an external IP address.
• Removed --no-external-ip flag in gcloud beta builds worker-pools update. Please use --no-public-egress so that workers in the worker pool are created without an external IP address or --public-egress so that workers in the worker pool are created with an external IP address.

Cloud Deploy

• Added --skaffold-version flag.

Cloud Functions

• Promoted --kms-key, --docker-registry, '--clear-kms-key' and '--clear-docker-registry' flags of gcloud functions deploy to beta.

Cloud Healthcare

• Promoted --write-disposition flag of gcloud healthcare dicom-stores export bq to GA.

Cloud IDS

• Promoted gcloud ids endpoints to GA.
  • Create, delete and inspect Cloud IDS endpoints in your project.

Cloud SQL

• Added PostgreSQL 14 to database versions.

Cloud Storage

• Updated gsutil component to 5.5.

Compute Engine

• Promoted gcloud compute routers nats rules command group to GA.
• Promoted --rules flag of gcloud compute routers nats create and gcloud compute routers nats update to GA.
• Promoted --tcp-time-wait-timeout flag of gcloud compute routers nats create and gcloud compute routers nats update to GA.
• Promoted --clear-tcp-time-wait-timeout flag of gcloud compute routers nats update to GA.
• Added --minimal-action and --most-disruptive-allowed-action flags to gcloud compute instance-groups managed rolling-action start-update.
• Promoted --edge-security-policy flag of gcloud compute backend-services update and gcloud compute backend-buckets update commands to GA.
• Promoted --type flag of gcloud compute security-policies create command to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.66.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added --network-config-from-file and --consumer-subnetworks flag to gcloud beta metastore services create to specify the subnetworks from which the Dataproc Metastore service can be accessed.

Kpt

• Updated kpt from v1.0.0-beta.6 to v1.0.0-beta.7.
  • Added support for ARM-based machines.
  • Added support for selecting resources for function execution.
  • Added support for depends-on annotation for actuation.
  • Added support for apply-time mutations for actuation.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

364.0.0 (2021-11-09)

Cloud SDK

• Updated bundled Python executable for windows to 3.8.10.

AI

• Added --kms-key flag to gcloud beta ai tensorboards create to support configuring customer-managed encryption key spec.
• Promoted gcloud ai tensorboards to GA.
• Modified --worker-pool-spec flag of gcloud beta ai custom-jobs create to support auto training image building for distributed training.
  • If a local-package-path is specified in the first --worker-pool-spec flag, other --worker-pool-spec flags just have to specify the hardware related fields and they will use the same container image built for the first one.
  • Added requirements field to support installing extra public PyPI dependencies when building the image.
  • Added extra-packages field to support installing extra custom dependencies when building the image.
  • Added extra-dirs field to support copies more directories under local-package-path to the training image.

Anthos Multicloud

• Promoted gcloud container aws to GA.
• Promoted gcloud container azure to GA.

App Engine

• Updated the Java SDK to version 1.9.92. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• Updated gcloud artifacts docker images describe, when used with --show-provenance flag, to support returning provenances in the SLSA provenance format. See https://slsa.dev/ for more information.

Cloud DNS

• Added cloud logging support for gcloud dns managed-zones.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.13.1
  • Fix request timestamps in WebSocket messages.

Cloud Key Management Service

• Added support for signing directly on input-file in gcloud kms asymmetric-sign without specifying a digest-algorithm.

Cloud Memorystore

• Added --read-replicas-mode flag to gcloud beta redis instances create to support the multiple read replicas feature.
• Added --replica-count flag to gcloud beta redis instances create and gcloud beta redis instances update to support replica nodes scaling when multiple read replicas are enabled.

Cloud Run

• --[clear|set|update|remove]-secrets flags are now supported for --platform=managed in GA for deployments and service updates.

Cloud Security Command Center

• Added gcloud findings set-mute command and gcloud muteconfigs command group to support mute features.

Compute Engine

• Promoted --enable-dynamic-port-allocation and --max-ports-per-vm flags of gcloud compute routers nats create and gcloud compute routers nats update to beta.
• Promoted --clear-max-ports-per-vm flag of gcloud compute routers nats update to beta.
• Promoted --troubleshoot flag of gcloud compute ssh to beta.
• Added --enable-uefi-networking flag to gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to support UEFI networking when creating instances.
• Updated import and export schemas for:
  • gcloud beta compute forwarding-rules.
  • gcloud beta compute backend-services.

Compute OS Config

• Promoted gcloud compute os-config os-policy-assignment-reports commands to GA.
• compute os-config os-policy-assignment-reports command accepts user's compute/zone property when --location is not set.

Config Connector

• Updated Google Cloud Config Connector to version 1.65.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

• Promoted --cluster-dns, --cluster-dns-domain and --cluster-dns-scope=vpc flags of gcloud container clusters create and gcloud container clusters update to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

363.0.0 (2021-11-02)

Cloud SDK

• gcloud command-line tool supports authentication using workload identity federation via gcloud auth login --cred-file=/path/to/workload/identity/config/file.
• Client certificate authorization is enabled for more services when setting context_aware/use_client_certificate. Run gcloud topic client-certificate to see the list of disallowed services.

AI

• Fixed crashing on beta ai tensorboard-experiments delete.

Cloud SQL

• Added the following flags to gcloud sql user create and created gcloud sql user set-password-policy for GA:
  • --password-policy-allowed-failed-attempts
  • --password-policy-password-expiration-duration
  • --password-policy-enable-failed-attempts-check
  • --clear-password-policy

Compute Engine

• Promoted --zone flag of gcloud compute images describe-from-family to GA.
• Added support for version value 11 for short-name value debian in --os-types for gcloud beta compute instances ops-agents policies [create|update].

Config Connector

• Updated Google Cloud Config Connector to version 1.64.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Eventarc

• Added the following flags to gcloud eventarc triggers create to support creating a trigger with Cloud Run for Anthos service destination:

  • --destination-gke-cluster
  • --destination-gke-service
  • --destination-gke-location
  • --destination-gke-namespace
  • --destination-gke-path

• Added the following flags to gcloud eventarc triggers update to support updating a trigger with Cloud Run for Anthos service destination:

  • --destination-gke-path
  • --destination-gke-namespace
  • --destination-gke-service
  • --clear-destination-gke-path

GKE Hub

• Promoted the following commands to beta and GA:
  • gcloud container hub cloudrun describe.
  • gcloud container hub cloudrun disable.
  • gcloud container hub cloudrun enable.
  • gcloud container hub cloudrun apply.

Kubernetes Engine

• Added --enable-image-streaming flag to gcloud container clusters/node-pools create/update to allow creating clusters/node-pools with image streaming enabled, and enabling image streaming on exisitng clusters/node-pools.

Secret Manager

• Updated --filter flag to be passed to the backend in
  • gcloud secrets list
  • gcloud secrets versions list

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

362.0.0 (2021-10-26)

Breaking Changes

• (Cloud SQL) Backups are disabled by default when creating new database instances. This was enabled by default in the previous release.
• (Cloud SQL) Backup start time will not be randomly selected. This was enabled in the previous release. Use --backup-start-time to specify the start time for backups.

Cloud Build

• gcloud builds submit --tag fails early if a Dockerfile is not found when source is not a directory.

Cloud DNS

• Added support for the SVCB and HTTPS record types.

Cloud Dataflow

• Added --gcs-log-dir flag to gcloud dataflow flex-template build command to allow users the ability to specify path to a Google Cloud Storage directory for their build log.

Cloud On Demand Scanning

• Add ARM64 support for local-extract.

Cloud Run

• Promoted --execution-environment of gcloud run from alpha to beta.

Compute Engine

• Promoted --add-share-with and --remove-share-with flags of glcloud compute reservations update to GA.

Managed Active Directory

• Adding support for gcloud beta active-directory domains backups and gcloud beta active-directory domains restore for domain backup and restore.

Miscellaneous

• Fixed an issue where non-interactive commands could exit with the error 'ValueError: invalid width 0'.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

361.0.0 (2021-10-19)

Breaking Changes

• (Cloud SQL) Enable backups by default when creating new database instances. Use --no-backup to disable backups.
• (Cloud SQL) Backup start time will be randomly select if not specified. Use --backup-start-time to specify the start time for backups.

Cloud SDK

• gcloud command-line tool supports authentication using an access token from a file which can be specified in the global flag --access-token-file or the property auth/access_token_file.

AI

• Added --analysis-instance-schema flag in gcloud beta ai model-monitoring-jobs update.
• Renamed --work-dir flag of gcloud beta ai custom-jobs local-run as --local-package-path. Deprecated --work-dir flag.
• Renamed --base-image flag of gcloud beta ai custom-jobs local-run as --executor-image-uri. Deprecated --base-image flag.

Artifact Registry

• Added --show-provenance flag in gcloud artifacts docker images describe command to show build provenance.
• Removed the auth token placeholder from the output of gcloud artifacts print-settings npm.
• Fixed issue where gcloud artifacts tags list errors when the package name has slashes.

Cloud Code

• Support specifying a service yaml file in gcloud beta code dev.
• Support building with a Buildpack instead of a Dockerfile in gcloud beta code dev.

Cloud Domains

• Promoted gcloud domains registrations to GA. Cloud Domains enables registering new domain names, transferring already registered domains from 3rd-party domains registrars and managing the domains.

Cloud Healthcare

• Promoted gcloud healthcare hl7v2-stores <import|export> command groups to GA.

Cloud Key Management Service

• Added support for the following RSA OAEP+SHA1 algorithms to gcloud kms keys create|update and gcloud kms keys versions import:
  • rsa-decrypt-oaep-2048-sha1
  • rsa-decrypt-oaep-3072-sha1
  • rsa-decrypt-oaep-4096-sha1

Cloud SQL

• Added the following flags to gcloud sql instances create and gcloud sql instances patch for GA:
  • --password-policy-min-length
  • --password-policy-complexity
  • --password-policy-reuse-interval
  • --password-policy-disallow-username-substring
  • --password-policy-password-change-interval
  • --clear-password-policy

Cloud Scheduler

• Updated gcloud scheduler jobs commands to accept a location flag to manually specify a Cloud region.

Cloud Storage

• Updated gsutil component to 5.4.

Cloud Tasks

• Added --location flag for gcloud tasks and gcloud tasks queues in beta & GA to enable users to specify a GCP location when managing queues and tasks.

Compute Engine

• Promoted --network flag of gcloud compute target-instances create to GA.
• Promoted --subsetting-policy of gcloud compute backend-services create and gcloud compute backend-services update to GA.
• Added --description flag to compute service-attachments update.
• Add --add-share-with and --remove-share-with flags to reservations update to make it easier to add and remove items in the share-with list without having to specify existing items.
• Promoted --type flag of gcloud compute commitments create to GA.
• Promoted --share-setting and --share-with flags of glcloud compute reservations create to GA.
• Promoted compute routers nats rules command group to beta.
• Promoted --rules flag of compute routers nats create and compute routers nats update to beta.
• Promoted --tcp-time-wait-timeout flag of compute routers nats create and compute routers nats update to beta.
• Promoted --clear-tcp-time-wait-timeout flag of compute routers nats update to beta.

Compute OS Config

• Allow instance name in gcloud compute os-config vulnerability-reports describe and gcloud compute os-config inventories describe.
• Promoted gcloud compute os-config os-policy-assignments to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.63.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Config Controller

• Promoted gcloud anthos config controller to GA.

Container Registry

• Added support for pulling results with image names that use tags instead of sha256.
• Added warning in a case where a user pulls results with tags instead of sha256.

Kpt

• Updated kpt from v1.0.0-beta.5 to v1.0.0-beta.6.
  • Fixed yaml schema and added json schema for Kptfile.
  • Added support for .krmignore files in subpackages in kpt fn commands.
  • Added support for updating subpackages in kpt pkg update.
  • Added support to show pipeline execution duration in kpt fn render.
  • Fixed issue when parsing bare sequence nodes in yaml.
  • kpt fn render executes pipeline even when there are no input resources.
  • kpt pkg get no longer copies the entire repo if path is specified.

Pubsub Emulator

• Added support for topic retention.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

360.0.0 (2021-10-05)

Artifact Registry

• Updated gcloud beta artifacts print-settings mvn|gradle to add release and snapshot details for maven and gradle surfaces.
• Promoted gcloud artifacts create repository to GA.
• Updated gcloud artifacts print-settings mvn|gradle with release and snapshot policies for maven and gradle to GA.

Bare Metal Solution

• Fixed issue where gcloud bms instances list would not show permissions errors properly.

Cloud Composer

• Added --enable-privately-used-public-ips flag to gcloud beta composer environments command to enable using privately used public IP address ranges feature in the GKE cluster.
• Added --enable-ip-masq-agent flag to gcloud beta composer environments command to enable IP address masquerading in the GKE cluster.
• Added --scheduler-count flag to gcloud composer environments create and gcloud composer environments update commands.

Cloud Data Fusion

• Added --enable_rbac optional argument to
  gcloud beta data-fusion instances update to toggle granular
  role-based access control in enterprise instances with version >= 6.5.0.

Cloud SQL

• Added support for users to select minor versions for MySQL 8.0 instances, when they are available in the API.

Cloud Storage

• Updated gsutil component to 5.3.

Compute Engine

• Added debian-11 and rocky-8 options to --os flag for:
  • gcloud compute images import in GA,
  • gcloud compute instances import in GA
  • gcloud compute machine-images import in beta
• Added --service-directory-registration flag to compute forwarding-rules create NAME --target-service-attachment to support Service Directory integration with PSC ILB.
• Promoted --redundant-interface, --subnetwork and --subnetwork-region flags of gcloud compute routers add-interface to GA.
• Promoted --instance and --instance-zone flags of gcloud compute routers add-bgp-peer to GA.
• Promoted --interface-names of gcloud compute routers remove-interface to GA.
• Promoted --peer-names of gcloud compute routers remove-bgp-peer to GA.
• Promoted --provisioning-model and --instance-termination-action flags for gcloud beta compute <instances|instances bulk|instance-templates> create commands.

Dataproc Metastore

• Promoted --encryption-kms-key flag of gcloud metastore services create to GA.

Kubernetes Engine

• Added --database-encryption-key flag to gcloud container clusters create-auto to allow enabling Database Encryption on Autopilot clusters at creation time.
• Added --boot-disk-kms-key flag to gcloud container clusters create-auto to allow enabling CMEK protected boot disk on Autopilot clusters at creation time.
• Added --spot flag to gcloud beta container clusters/node-pools create to allow creating spot VM for node pools.

Managed Active Directory

• Adding gcloud active-directory peerings for Multi Project Support v1 release. Currently supporting up to 10 domain peerings per domain.

Network Connectivity

• Promoted gcloud network-connectivity hubs command group to GA.
• Promoted gcloud network-connectivity spokes command group to GA. Added gcloud network-connectivity spokes linked-vpn-tunnels, gcloud network-connectivity spokes linked-interconnect-attachments, and gcloud network-connectivity spokes linked-router-appliances command groups. Moved create and update commands to these command groups.

Network Security

• Promoted gcloud network-security client-tls-policies to GA.
• Promoted gcloud network-security authorization-policies to GA.

Network Services

• Promoted gcloud network-services endpoint-policies to GA.

Secret Manager

• Added support in gcloud secrets command group for specifying projects by project number, rather than project id.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

359.0.0 (2021-09-28)

Breaking Changes

• (AI) Removed 'python-image-uri' field from --work-pool-spec flag of gcloud beta ai custom-jobs create. Use 'executor-image-uri' field instead.

Cloud SDK

• Use pyca/cryptography to decode p12 service account keys if available. Otherwise, fall back to using PyOpenSSL.

AI

• Fixed issue where gcloud ai custom-jobs list and gcloud ai hp-tuning-jobs list didn't show results with --uri flag.
• Promoted gcloud ai endpoints raw-predict to beta and GA.

Artifact Registry

• Fixed typos for gcloud beta artifacts repositories create help text.

Bare Metal Solution

• Promoted gcloud bms instances list and gcloud bms instances describe to GA.

Cloud Bigtable

• Added --restrict-to flags to gcloud bigtable app-profiles create and gcloud bigtable app-profiles update, which restricts multi-cluster routing to a specified list of cluster ids.

Cloud Data Fusion

• Added --enable_rbac optional argument to
  gcloud beta data-fusion instances create to enable granular
  role-based access control in enterprise instances with version >= 6.5.0.

Cloud Dataflow

• Corrected --snapshot-ttl lower/upper bound of gcloud dataflow snapshots create command.

Cloud Pub/Sub

• Added --event-time flag to gcloud beta pubsub lite-topics publish to allow users to specify an event time when publishing a message.

Cloud Run

• Promoted --key, --clear-key, --post-key-revocation-action-type and --clear-post-key-revocation-action-type flags of gcloud run deploy and gcloud run services update to GA for --platform=managed.
• Deployments that change only the service metadata will no longer create new revisions. For example, gcloud run services my-service update --ingress=all.

Cloud Scheduler

• Promoted gcloud scheduler locations command group to GA. Commands in this group provide information for locations where Cloud Scheduler is available.

Cloud Storage

• Updated gsutil component to 5.2.

Compute Engine

• Added --network-performance-configs flag to gcloud compute instance-templates create to both alpha and beta.
• Modified --load-balancing-scheme flag of gcloud compute backend-services create and gcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in beta.
• Modified --purpose flag of gcloud compute networks subnets create to accept choice REGIONAL_MANAGED_PROXY in beta.
• Added new --share-setting=local to compute commitments create, compute future-reservations create, and compute reservations create.

Config Connector

• Updated Google Cloud Config Connector to version 1.62.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Identity and Access Management

• Added command gcloud iam workforce-pools create-cred-config to enable Workforce Pools configuration creation.

Kpt

• Updated kpt from v1.0.0-beta.4 to v1.0.0-beta.5.
  • Added support for resolving top level pkg symlink.
  • Added support for preserving the ordering of fields with null values.
  • Improved the parsing logic for GitHub http package URL in kpt pkg get.

Kubernetes Engine

• Hid --disable-autopilot flag from gcloud container clusters update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

358.0.0 (2021-09-21)

Breaking Changes

• (Compute Engine) Deprecated redirect-to-recaptcha choice of --action flag under gcloud compute security-policies rules.

AI

• Added --enable-web-access flag to gcloud ai custom-jobs create and gcloud ai hp-tuning-jobs create to allow enabling interactive shell terminal access.

Apigee

• Promoted gcloud apigee archives command group to beta.

Artifact Registry

• Added --version-policy and --allow-snapshot-overwrites flags to gcloud beta artifacts repositories create to add version policy and snapshot overwrites to maven repositories.

Cloud Composer

• Added gcloud composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.15+.
• Added support of CLI commands for Airflow 2.0 to gcloud composer environments run.

Cloud Dataproc

• Fixed bug in gcloud dataproc clusters enable-personal-auth-session where the command would fail if the flag --access-boundary was provided.

Cloud Filestore

• Added gcloud beta filestore instances snapshots command group, which is used to create and manage Filestore snapshots.
• Added --force flag to gcloud beta filestore instances delete, which forces the deletion of an instance and its child resources, such as snapshots.
• Added --kms-key flag to gcloud beta filestore instances create command to specify the customer-managed KMS key name to use for encrypting the filestore instance.

Cloud Run

• Promoted --binary-authorization and --breakglass flags to GA. These commands may now be used with gcloud run deploy and gcloud run update.

Cloud SQL

• Add --allocated-ip-range-name flag of gcloud sql instances patch in beta.

Cloud Storage

• Updated gsutil component to 4.68.

Compute Engine

• Added --clear-scale-down-control flag to gcloud alpha|beta compute instance-groups managed update-autoscaling.
• Promoted --share-setting and --share-with of 'gcloud compute commitments create` to beta.
• Promoted the following flags of gcloud compute routers add-bgp-peer and gcloud compute routers update-bgp-peer to GA:
  • --bfd-min-receive-interval
  • --bfd-min-transmit-interval
  • --bfd-multiplier
  • --bfd-session-initialization-mode
• Promoted --enable-layer7-ddos-defense and --layer7-ddos-defense-rule-visibility of 'gcloud compute security-policies update` to GA.

Compute OS Config

• Promoted gcloud compute os-config vulnerability-reports describe and gcloud compute os-config vulnerability-reports list to GA.
• Promoted gcloud compute os-config inventories commands describe and list to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.61.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Config Controller

• The create command will automatically update the kubeconfig to point to the newly created config controller cluster.

Kubernetes Engine

• Updates default kubectl from 1.18 to 1.20.
• Additional kubectl versions:
  • kubectl.1.17 (1.17.17)
  • kubectl.1.18 (1.18.20)
  • kubectl.1.19 (1.19.14)
  • kubectl.1.20 (1.20.10)
  • kubectl.1.21 (1.21.4)
  • kubectl.1.22 (1.22.1)
• darwin/386 version of kubectl is no longer supported.
• Deprecated and hid --logging and --monitoring flags from gcloud container clusters create-auto.

Recaptcha

• Added --allowAllPackageNames and --allowAllBundleIds flags to gcloud recaptcha keys <create|update> to create/modify keys without specifying package names.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

357.0.0 (2021-09-14)

AI

• Added --kms-key flag to gcloud beta ai model-monitoring-jobs create to support configuring Customer-managed encryption key spec.
• Fixed issue where gcloud beta ai custom-jobs local-run unexpectedly used python2 with Vertex AI pre-built training images.

AI Platform

• Added --enable-web-access to gcloud ai-platform jobs submit training to allow enabling interactive shell terminal access for a training job.

App Engine Flexible Environment

• Added support for specifying the instance IP mode for each App Engine Flexible version during deployment. This can be done by adding 'instance_ip_mode: INTERNAL|EXTERNAL' in the Network field of the app.yaml file.

Cloud Dataflow

• Added runtime environment parameter temp-location support in gcloud dataflow flex-template run/build. When this parameter is not set, defaults to value of staging-location.
• Updated --additional-experiments parser used by run command gcloud dataflow flex-template run so the option can be specified multiple times and their values are concatenated.

Cloud Dataproc

• Added --action-on-failed-primary-workers enum flag to gcloud dataproc clusters create to allow users to delete the failed primary workers during cluster creation.

Cloud Key Management Service

• Added gcloud kms mac-sign and gcloud kms mac-verify which allow users to perform MAC signing and verification.
• Added --import-only and --destroy-scheduled-duration to gcloud kms keys create to support import-only keys and user-specified variable key destruction.
• Added --version to gcloud kms keys versions import to add key reimport functionality.

Cloud Pub/Sub

• Promoted gcloud pubsub lite-reservations to GA.

Cloud Run

• Promoted gcloud run replace to GA. This command supports deploying from a yaml file.

Cloud SQL

• Promoted --allocated-ip-range-name flag of gcloud sql instances create to beta.

Cloud Services

• Added support for additional services in services identity create.

Cloud Workflows

• Added --call-log-level flag to gcloud workflows <execute|run> to enable automatic call logging.

Compute Engine

• Changed the behavior of gcloud compute target-http-proxy import and gcloud compute target-https-proxy import to wait for the import operation to finish.
• Updated --set-filter-protocols, --add-filter-protocols and --remove-filter-protocols to accept numeric protocols for all packet-mirrorings update commands.
• Added --service-project flag to gcloud beta compute networks subnets list-usable.

Eventarc

• Modified gcloud beta eventarc attributes types list to include Google Cloud Storage CloudEvent types and updated the descriptions for the existing event types.

Kpt

• Added autocomplete image completion support in kpt fn eval.
• Relaxed KRM check for kustomization files.
• Added json output format for kpt live status command.
• Added support for preserving field order/indendation kpt fn eval and kpt fn render.
• Added support for referring SHA in image tags in kpt fn eval and kpt fn render.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

356.0.0 (2021-09-08)

Assured Workloads

• Added CA_REGIONS_AND_SUPPORT as compliance regime options for gcloud assured workloads create command.
• ResourceType CONSUMER_PROJECT is deprecated.
• ResourceType CONSUMER_FOLDER and KEYRING are added.
• display_name is added to ResourceSettings.
• billing_account is now optional in Workload.
• resource_settings is added to CreateWorkloadOperationMetadata.

Cloud API Gateway

• Added --view flag to gcloud api-gateway api-configs describe to allow the use of the existing config view option available via the API.

Cloud Composer

• Added --composer-network-ipv4-cidr to gcloud beta composer create to be used with Cloud Composer 2.
• Added the following flags to gcloud beta composer create and gcloud beta composer update to be used with Cloud Composer 2:
  • --environment-size
  • --min-workers
  • --max-workers
  • --scheduler-cpu
  • --scheduler-memory
  • --scheduler-storage
  • --web-server-cpu
  • --web-server-memory
  • --web-server-storage
  • --worker-cpu
  • --worker-memory
  • --worker-storage

Cloud Run

• Updated gcloud run deploy to include Cloud Run for Anthos enabled clusters on cluster suggestions.
• Promoted --no-cpu-throttling flag of gcloud run to beta.

Compute Engine

• Promoted --source-ip-ranges flag of gcloud compute forwarding-rules create and gcloud compute forwarding-rules update to beta.

Config Connector

• Updated Google Cloud Config Connector to version 1.60.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Running gcloud container hub memberships get-credentials with connectgateway.googleapis.com disabled now prompts the user to enable the API, and throws an error if the user declines to enable the API.

Kubernetes Engine

• Added --addons=GcpFilestoreCsiDriver to gcloud container clusters create and --update-addons=GcpFilestoreCsiDriver to gcloud container clusters update to enable/disable the GCP Filestore Container Storage Interface (CSI) Driver.
• Deprecated --enable-stackdriver-kubernetes, --enable-logging-monitoring-system-only, --monitoring-service, --logging-service, --master-logs, --no-master-logs, and --enable-master-metrics flags from gcloud container clusters create/update.

Network Security

• Promoted gcloud network-security client-tls-policies to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

355.0.0 (2021-08-31)

Anthos Identity Service

• Promoted gcloud container hub identity-service to beta.

Artifact Registry

• Added gcloud beta artifacts settings for enabling/disabling/finalizing redirection.

Cloud Deploy

• Promoted gcloud deploy to beta.

Cloud Pub/Sub

• Promoted --message-retention-duration flag of gcloud pubsub topics create to GA.
• Promoted --message-retention-duration flag of gcloud pubsub topics update to GA.
• Promoted --clear-message-retention-duration flag of gcloud pubsub topics update to GA.

Compute Engine

• Promoted skip-instances-on-validation-error in gcloud compute instance-groups managed delete-instances to GA.
• Promoted --image-family-scope flag to GA for gcloud compute instances create and gcloud compute disks create.

Config Connector

• Updated Google Cloud Config Connector to version 1.59.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Promoted the following commands to beta:
  • gcloud container hub mesh describe.
  • gcloud container hub mesh disable.
  • gcloud container hub mesh enable.

Game Servers

• Added --view=(basic|full) arg (default to basic) to game servers clusters get and game servers clusters list commands to optionally turn off/on Agones and Kubernetes version reporting.

Kubernetes Engine

• Added --security-group flag to gcloud container clusters create-auto to allow enabling Google Groups for RBAC on Autopilot clusters at creation time.

• Promoted gpu-partition-size field within --accelerator flag to enable partitioning of A100 GPUs to GA.

Network Security

• Promoted gcloud network-security server-tls-policies to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

354.0.0 (2021-08-24)

Breaking Changes

• (AI) Disable --analysis-instance-schema flag in gcloud beta ai model-monitoring-jobs update.

App Engine

• Updated the Java SDK to version 1.9.91. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• Fixed print-settings command for Python repositories.

Cloud Asset Inventory

• Added --relationship-type flag to gcloud asset get-history to enable getting relationship history.

Cloud Bigtable

• Updated cbt_linux_arm name to cbt_linux_aarch64-x.x.x.tar.

Cloud Build

• Added --require-approval flag to the following commands:
  • gcloud beta builds triggers create cloud-source-repositories
  • gcloud beta builds triggers create github
• Added require-approval flag to gcloud builds triggers create.
• Promoted gcloud builds approve and gcloud builds reject commands to beta.
• Added the flag --suppress-logs to the command gcloud builds submit.

Cloud IAM

• Promoted gcloud iam service-accounts keys disable|enable to beta and GA.

Cloud Run

• Promoted --source flag of gcloud run deploy to GA. This flag supports deploying from source code through integration with Cloud Build.

Cloud Storage

• Updated gsutil component to 4.67.

Compute Engine

• Added --auto-renew flag to gcloud compute commitments create and gcloud compute commitments update for alpha.
• Added the following flags to gcloud beta compute instances update:
  • --clear-node-affinities
  • --node-affinity-file
  • --node-group
  • --node
• Promoted gcloud compute instances send-diagnostic-interrupt to beta and GA.
• Added --host-error-timeout-seconds to specify the timeout in seconds for host error detection to both alpha and beta for:
  • gcloud compute instances create
  • gcloud compute instances create-with-container
  • gcloud compute instance-templates create
  • gcloud compute instances bulk create
  • gcloud compute instances set-scheduling
  • gcloud compute instances update-from-file

Config Connector

• Updated Google Cloud Config Connector to version 1.58.1. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Essential Contacts

• Promoted gcloud essential-contacts to GA.

Managed Active Directory

• Promoted --enable-audit-logs flag in gcloud active-directory domains create and gcloud active-directory domains update to GA.
• Promoted AUDIT_LOGS_ENABLED parameter to gcloud active-directory domains list to GA.
• Updated gcloud active-directory domains list to include value for auditLogsEnabled in output.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

353.0.0 (2021-08-17)

Breaking Changes

• (Compute Engine) Update gcloud compute instance-groups managed create to throw an error when creating a stateful regional managed instance group, if --instance-redistribution-type=NONE is not specified.

AI

• Added more available regions to gcloud ai hp-tuning-jobs.

BigQuery

• Added autoscale_preview as a new api_version for autoscaler.
• Added support for creating an external dataset.
• Minor bug fixes.

Cloud Asset Inventory

• Added --relationship-type flag to the following commands:
  • gcloud asset list
  • gcloud asset feed create
  • gcloud asset feed update
• Promoted --relationship-type flag to GA:
  • gcloud asset export
• Added new content type RELATIONSHIP to:
  • gcloud asset get-history

Cloud Build

• Fixed bug breaking gcloud beta builds triggers commands.

Cloud DNS

• Update output format for gcloud dns record-sets.

Cloud Functions

• Promoted --min-instances and --clear-min-instances flags of gcloud functions to beta.

Cloud Logging

• Updated gcloud logging buckets create, gcloud logging buckets list, and gcloud logging buckets update to support restricted fields.

Cloud Pub/Sub

• Renamed --zone flag as --location. Deprecated zone variants.
• Added gcloud pubsub lite-subscriptions seek which initiates a seek operation for a Pub/Sub Lite subscription.
• Added gcloud pubsub lite-operations command group which allows describing and listing Pub/Sub Lite long-running operations.

Cloud Services

• Promoted gcloud services api-keys describe to GA.

Compute Engine

• Added targetService to the output of gcloud compute service-attachments commands.

Database Migration

• Fixed autocomplete issues in database migration commands.
• Added "REGION" column in the output of gcloud database-migration connection-profiles list and gcloud database-migration migration-jobs list.
• Added separate fields to display both the id and display name.
  • Added "CONNECTION_PROFILE_ID" in the output of gcloud database-migration connection-profiles list.
  • Added "MIGRATION_JOB_ID" and renamed "NAME" to "DISPLAY_NAME" in the output of gcloud database-migration migration-jobs list.
• Some changes in gcloud connection profile list:
  • Fixed the value presented in ENGINE field to always display the DB engine.
  • Added a separate field for (cloud) PROVIDER to be distinguished from ENGINE.

Kubernetes Engine

• Added --enable-gvnic flag of gcloud container clusters create, gcloud container nodepools create and gcloud container nodepools update to alpha, beta, GA.
• Remove --enable-gvnic flag of gcloud container clusters update in alpha, beta.
• Promoted --create-pod-ipv4-range and --pod-ipv4-range flags of gcloud container node-pools create for configuring pod ranges for node pools to GA.
• Added --logging and --monitoring flags to gcloud container clusters create, gcloud container clusters update, and gcloud container clusters create-auto for users to configure the components that should have logging and/or monitoring turned on.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

352.0.0 (2021-08-10)

Access Approval

• Promoted gcloud access-appoval command group to GA.

Apigee

• Add archive deployment status column to archives list and archives describe commands.

Cloud Build

• Added --region flag to gcloud beta builds triggers commands.

Cloud Composer

• Removed Composer image versions with different major version of Airflow from list of suggested image versions of gcloud beta composer environments list-upgrades command.

Cloud On Demand Scanning

• Updated local-extract to version 1.3.1 to fix various bugs.

Compute Engine

• Added two new key types http-header and xff-ip to --enforce-on-key in 'gcloud compute security-policies rules'
• Added --enforce-on-key-name to 'gcloud compute security-policies rules' in order to be able to specify the HTTP header name whose value becomes the rate limiting key forhttp-header` key type.
• Modified gcloud compute ssh to also use IPv6 addresses if IPv4 addresses are unavailable.

Config Connector

• Updated Google Cloud Config Connector to version 1.58.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added --encryption-kms-key flag to gcloud beta metastore services create to specify the Customer-managed KMS key name to use for encrypting the Dataproc Metastore service.

GKE Hub

• Removed the hidden label for --has-private-issuer flag in alpha and beta.
• Promoted gcloud container hub memberships register --enable-workload-identity --has-private-issuer to GA.

Kubernetes Engine

• Promoted --autoscaling-profile flag of gcloud container clusters create and gcloud container clusters update to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

351.0.0 (2021-08-03)

AI

• Promoted the GPU configuration fields in --worker-pool-spec flag of gcloud ai custom-jobs create to GA.

Artifact Registry

• Promoted gcloud artifacts apt to beta.
• Promoted gcloud artifacts yum to beta.
• Promoted gcloud artifacts print-settings apt and gcloud artifacts print-settings yum to beta.
• Changed com.google.cloud.artifactregistry.gradle-plugin from 2.1.0 to 2.1.1 in gcloud print-settings.

Assured Workloads

• Added EU_REGIONS_AND_SUPPORT as compliance regime options for gcloud assured workloads create command.

Cloud Functions

• Promoted --build-worker-pool and --clear-build-worker-pool flag of gcloud functions deploy to GA.

Cloud Healthcare

• Added --send-for-bulk-import flag to the following commands:
  • gcloud beta healthcare dicom-stores create
  • gcloud beta healthcare dicom-stores update

Cloud Storage

• Updated gsutil component to 4.66.

Compute Engine

• Modified --network-interface flag of gcloud compute instances create and gcloud compute instance-templates create command to support IPv6 fields.
• Promoted user_license flag of gcloud compute disks insert to beta.

Config Connector

• Updated Google Cloud Config Connector to version 1.57.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Promoted gcloud container hub memberships get-credentials to GA.

Miscellaneous

• Binary Size input can contain decimal digits, provided the amount is a whole multiple of a Byte.

Policy Analyzer

• Added gcloud policy-intelligence query-activity which queries activities. Supported activity types are service account last authentication and service account key last authentication.

Recaptcha

• Promoted gcloud recaptcha keys to GA.

Secret Manager

• Added --etag flag to the following commands:
  • gcloud secrets delete
  • gcloud secrets update
  • gcloud secrets versions destroy
  • gcloud secrets versions disable
  • gcloud secrets versions enable

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

350.0.0 (2021-07-27)

Cloud SDK

• Fixed issue where the gcloud command-line tool would fail to tab complete flags specified after positional arguments.

Cloud Build

• Added --service-account flag to gcloud beta builds triggers create command.

Cloud Filestore

• Added connect-mode param to --network flag of gcloud filestore instances create for alpha and beta.

Cloud Services

• Promoted gcloud services api-keys list to GA.

Compute Engine

• Modified --source-ranges and --destination-ranges for gcloud compute firewall-rules create and gcloud compute firewall-rules update to accept IPv6 address ranges in addition to IPv4 address ranges.
• Promoted rsa_encrypted_key in gcloud compute disks snapshot to GA.
• Promoted rsa_encrypted_key in gcloud compute disks create and gcloud compute images create to GA.
• Promoted type flag of gcloud compute security-policies create to beta.

Firebase Test Lab

• Added --resign flag to gcloud beta firebase test android run. This flag allows clients to specify if Robo should re-sign the app-under-test APK.

Network Management

• Added gkeMasterCluster and cloudSqlInstance arguments for source and destination in gcloud network-management connectivity-tests. This allows the user to run tests using Google Managed Services (GKE and Cloud SQL) endpoint types as source or destination.

Secret Manager

• Updated --filter flag to be passed to the backend in
  • gcloud beta secrets list
  • gcloud secrets versions list

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

349.0.0 (2021-07-20)

Breaking Changes

• (Kpt) kpt updated to v1.0.0-beta.1. This version has several breaking changes from previous versions. Documentation is available at https://kpt.dev and migration instructions can be found at https://kpt.dev/installation/migration. Old versions are available at https://github.com/GoogleContainerTools/kpt.

AI

• Added --network flag to gcloud beta ai endpoints create.

Certificate Authority Service

• Changed certificate chain output format to remove extra newline between -----END CERTIFICATE----- and -----BEGIN CERTIFICATE-----. This affects certificate outputs of gcloud privateca certificates create, gcloud privateca certificates export and gcloud privateca pools get-ca-certs.

Cloud Asset Inventory

• Promote gcloud asset list CLI to GA.

Cloud Build

• Add --no-public-egress to gcloud builds worker-pools create.
• Add --public-egress and a hidden --no-public-egress flags to gcloud builds worker-pools update.

Cloud Composer

• Added support of --scheduler-count flag for gcloud beta composer environments {create,update} commands.

Cloud DNS

• Added DNS Routing Policies support for gcloud beta dns record-sets.

Cloud Dataflow

• Added Google Artifact Registry support in build command gcloud beta dataflow flex-template build.

Cloud Datastream

• Allow using project numbers in command arguments.
• Update help text files for gcloud beta datastream streams create/update.

Cloud Functions

• Remove incorrect client-side validation for --entrypoint flag of gcloud functions deploy.

Cloud Healthcare

• Added gcloud command-line tool support for healthcare NL
  • gcloud beta healthcare nlp analyze-entities

Cloud Key Management Service

• Added ec-sign-secp256k1-sha256 to the list of supported algorithms.

Cloud Spanner

• Added --processing-units flag to spanner create instance and spanner update instance to add ability to create granular instances in beta.

Cloud TPU

• Added Cloud AI Notebooks support to gcloud compute tpus execution-groups create by adding flag --use-with-notebook.

Compute Engine

• Added --redirect-type and --redirect-target to gcloud compute security-policies rules create|update in alpha and beta.
• Add share_type to output of gcloud compute reservations list.
• Added custom response headers to regional gcloud compute backend-services create requests.
• Promoted user_license flag of gcloud compute images insert to beta.
• Added an example of gcloud compute instances list to display IPv6 related fields.
• Promoted --target-service-attachment flag of gcloud compute forwarding-rules create to GA.
• Promoted --purpose=private-service-connect flag of gcloud compute networks subnets create to GA.
• Promoted gcloud compute service-attachments to GA.
• Added --mesh to gcloud compute instance-templates create in alpha and beta.

Config Connector

• Updated Google Cloud Config Connector to version 1.56.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Promoted backups command group to GA.
• Promoted Service restore command to GA.

GKE Hub

• Promoted the following commands to GA:
  • gcloud container hub features list
  • gcloud container hub ingress describe
  • gcloud container hub ingress disable
  • gcloud container hub ingress enable
  • gcloud container hub ingress update
  • gcloud container hub multi-cluster-services describe
  • gcloud container hub multi-cluster-services disable
  • gcloud container hub multi-cluster-services enable

Kpt

• Updated kpt to v1.0.0-beta.1. Look at the documentation at https://kpt.dev for more details.

Pubsub Emulator

• Added support for subscriptions with both dead letter topics and ordered delivery enabled in the Pub/Sub emulator.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

348.0.0 (2021-07-13)

Cloud SDK

• Added --locked flag to gcloud compute images create.

AI

• Added more available regions to gcloud ai custom-job.

App Engine

• Updated the Java SDK to version 1.9.90. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

BigQuery

• Added --autoscale_budget_slot_hours flag to mk and update to support budget based reservation autoscaling.
• Added flags: --create_session and --session_id to query to support session creation and using existing sessions.
• Added --connection_property flag to query to set connection properties.
• Minor bug fixes.

Cloud Bigtable

• Added support to cbt to drop all rows from a table.
• Added --auth-token flag to use IAM Auth Token for requests.

Cloud Build

• Promoted gcloud builds worker-pools command group to GA.

Cloud Composer

• Added gcloud beta composer environments list-packages command. It lists all PyPI modules installed in an Airflow worker.

Cloud DNS

• Added --gkeclusters to gcloud beta dns response-policies create to support binding GKE clusters to the response policy.
• Added --gkeclusters to gcloud beta dns response-policies update to support updating response policy with GKE clusters.

Cloud Datastream

• Modified output formatting for gcloud beta datastream streams list to include stream creation and update times.
• Added gcloud beta routes create which creates a datastream private connection route.
• Added gcloud beta routes delete which deletes a datastream private connection route.
• Added gcloud beta streams update which updates an existing datastream stream.

Cloud Key Management Service

• Added client-side request and response integrity verification to gcloud kms encrypt, gcloud kms decrypt, gcloud kms asymmetric-sign, and gcloud kms asymmetric-decrypt. For more information about Cloud KMS's integrity verification API, visit https://cloud.google.com/kms/docs/data-integrity-guidelines.
• Added --skip-integrity-verification flag to gcloud kms encrypt, gcloud kms decrypt, gcloud kms asymmetric-sign, and gcloud kms asymmetric-decrypt.

Cloud On Demand Scanning

• Added --additional-package-types=MAVEN flag to scan Maven packages for vulnerabilities.
• Updated local-extract to version 1.2.0 in order to support the scanning of CentOS and RHEL images.

Cloud Scheduler

• Added gcloud scheduler locations command group [ALPHA, BETA]. Commands in this group provide information for locations where Cloud Scheduler is available.

Cloud Storage

• Updated gsutil component to 4.65.

Compute Engine

• Removed IPv6 support from gcloud compute instances create-with-container and gcloud compute instance-templates create-with-container until it's ready.
• Added --description flag on compute instance-groups managed update to add possibility to update descriptions.
• Changed the behavior of gcloud compute url-maps import to wait for the import operation to finish.
• Added KMS args (--boot-disk-kms-project, --boot-disk-kms-location, --boot-disk-kms-keyring, --boot-disk-kms-key, and kms-project, kms-location, kms-keyring, kms-key properties of --create-disk) to gcloud compute instances bulk create to allow specifying a customer-managed encryption key.
• Promoted --request-headers-to-add to beta for gcloud compute security-policies rules create|update.

Config Connector

• Updated Google Cloud Config Connector to version 1.54.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

• Added the following alpha and beta commands to work with Dataproc Metastore service backups:
  • metastore services backups get-iam-policy
  • metastore services backups set-iam-policy
  • metastore services backups add-iam-policy-binding
  • metastore services backups remove-iam-policy-binding

GKE Hub

• Fixed issue where --config-membership of gcloud container hub ingress enable and gcloud container hub ingress update did not properly handle full Membership resource paths.

Kubernetes Engine

• Added --enable-identity-service flag to alpha, beta.
• Mark --enable-gke-oidc flag as deprecated.
• Added --security-group to gcloud container clusters create and gcloud container clusters update. This flag is used to enable the Authenticator Groups Config for group authentication.

Miscellaneous

• Fixed issue where special characters were improperly escaped during command completion when using zsh or fish.
  • The previous behavior can be restored by setting the environment variable _ARGCOMPLETE_SHELL to 'bash'.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

347.0.0 (2021-06-29)

Breaking Changes

• (Assured Workloads) Removed 'consumer-project-id' and 'consumer-project-name' as possible values for resource-settings in gcloud assured workloads delete command in alpha and beta, as they are now deprecated.
• (Cloud SQL) Modified gcloud beta sql users list to include 'IAM_EMAIL' column in the output. It will display full email address for a CloudSQL MySQL IAM database user account.
• (Kpt) Binary for Windows will no longer be provided. If you want to use kpt with windows, the source code is available at github.com/GoogleContainerTools/kpt.

AI

• Promoted gcloud ai hp-tuning-jobs to GA.
• Fixed issue where gcloud beta ai custom-jobs create failed to install dependencies in requirements.txt when packaging from local files.
• Added --feature-attribution-thresholds flag to gcloud beta ai model-monitoring-jobs <create|update> to support configuring feature attribution score thresholds.

App Engine

• Added support for 'egress_setting' field in 'vpc_access_connector' section of app.yaml.

Certificate Authority Service

• Added gcloud privateca pools get-ca-certs to get the root CA certs for all active CAs in the CA pool.

Cloud Asset Inventory

• Added --read-mask flag to gcloud asset search-all-resources to specify which fields to be returned.
• Updated gcloud asset search-all-resources to return the full metadata (versionedResources) of resources when requested with flag --read-mask.

Cloud Datastream

• Added gcloud beta connection-profiles update which updates an existing datastream connection profile.
• Added gcloud beta streams create which creates a datastream stream.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.13.0
  • Add WebSocket endpoint for monitoring rules requests.

Cloud Pub/Sub

• Promoted gcloud pubsub lite-topics publish to GA.
• Promoted gcloud pubsub lite-subscriptions subscribe to GA.
• Promoted gcloud pubsub lite-subscriptions ack-up-to to GA.

Cloud Run

• gcloud beta run deploy now defaults to deploy from source if --image is not provided.

Cloud SQL

• Promoted --active-directory-domain flag of gcloud sql instances create and gcloud sql instances patch to GA.

Cloud Storage

• Updated gsutil component to 4.64.

Compute Engine

• Changed the behavior of gcloud compute backend-services import to wait for the import operation to finish.
• Promote share-setting and share-with for glcloud compute reservations create to beta.
• Fixed gcloud compute forwarding-rules import to remove top-level properties of an existing forwarding rule when they are not specified in the YAML file.
• Changed the list format of gcloud compute networks subnets list to include IPv6 related fields.
• Changed --custom-cpu type from int to string to allow E2 shared-core instances to be specified as a custom value.

GKE Hub

• Promoted the following commands to beta:
  • gcloud container hub config-management apply
  • gcloud container hub config-management disable
  • gcloud container hub config-management enable
  • gcloud container hub config-management status
  • gcloud container hub config-management unmanage
  • gcloud container hub config-management upgrade
  • gcloud container hub config-management version
  • gcloud container hub features list
  • gcloud container hub ingress describe
  • gcloud container hub ingress disable
  • gcloud container hub ingress enable
  • gcloud container hub ingress update
  • gcloud container hub multi-cluster-services describe
  • gcloud container hub multi-cluster-services disable
  • gcloud container hub multi-cluster-services enable

Identity Groups

• Promoted --posix-group flag of gcloud identity groups create to beta.
• Promoted --add-posix-group, --remove-posix-groups, and --clear-posix-groups flags of gcloud identity groups update to beta.

Kpt

• Removed Windows binary.

Kubernetes Engine

• Promoted --enable-l4-ilb-subsetting flag of gcloud container clusters create and gcloud container clusters update to GA.
• Promoted --enable-service-externalips flag to beta.

Managed Active Directory

• Promoted gcloud active-directory domains update-ldaps-settings to beta and GA.
• Promoted gcloud active-directory domains describe-ldaps-settings to beta and GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

346.0.0 (2021-06-22)

Breaking Changes

• (Cloud SDK) Removed the deprecated flag --add-quota-project in gcloud auth application-default login. --add-quota-project is the default.
• (Certificate Authority Service) Renamed --location flag on gcloud privateca certificates create as --template-location, and updated it to default to the same location as the issuing CA Pool.
• (Certificate Authority Service) Added an explicit check to gcloud privateca certificates create to verify that any certificate templates are in the same location as the issuing CA Pool.

AI

• Added gcloud beta ai custom-jobs local-run which creates a custom training container image from your code and runs it locally.
• Supported training with local files in gcloud beta custom-job create command.

Access Approval

• Promoted gcloud access-appoval command group to beta.

Cloud Asset Inventory

• Updated gcloud asset search-all-iam-policies with new searchable fields (memberTypes, roles, project, folders, and organizations), new request fields (assetTypes and orderBy), and new response fields (assetType, folders, and organization).

Cloud Build

• Updated gcloud builds triggers create ... with require-approval flag.

Cloud Composer

• Added gcloud beta composer environments check-upgrade command. It checks that an environment upgrade does not fail because of PyPI module conflicts.

Cloud DNS

• Added --gkeclusters to gcloud beta dns managed-zones create to support binding GKE clusters to the zone.

Cloud Datastream

• Added gcloud beta operations cancel which cancels a datastream operation.
• Added gcloud beta private-connections create which creates a datastream private connection.

Cloud Pub/Sub

• Promoted gcloud pubsub schemas to GA.
• Promoted --schema and --encoding flags of gcloud pubsub topics create to GA.

Cloud SQL

• Added SQL Server 2019 options to --database-version flag of gcloud sql instances create and gcloud sql flags list.

Compute Engine

• Added debian-10 option to --os flag for:
  • gcloud compute images import in GA,
  • gcloud compute instances import in GA
  • gcloud compute machine-images import in beta
  • gcloud compute routers update
• Promoted support for stack-type and ipv6-network-tier for gcloud compute instances network-interfaces update to GA.
• Added staged progress tracker to gcloud beta compute networks update --switch-to-custom-subnet-mode when updating a legacy network.

Config Connector

• Updated Google Cloud Config Connector to version 1.53.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kpt

• Updated kpt from v0.39.2 to v0.39.3.

Miscellaneous

• Updated lazy module loader to correctly set module.file to the file name, rather than the file handle, to properly support debugging with Pdb++ (https://issuetracker.google.com/issues/190741410).

VPC Access

• Promoted following flags in gcloud compute networks vpc-access connectors create to GA:
  • --machine-type

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

345.0.0 (2021-06-15)

AI

• Updated --worker-pool-spec flag of gcloud beta ai custom-jobs create to support configuring GPUs.

Certificate Authority Service

• Added gcloud privateca which enables creating and managing private CA pools, certificate authorities, certificates and certificate templates through the v1 API.

Cloud Composer

• Fixed exception on executing gcloud composer environments run env-name delete_dag command without Airflow command arguments.

Cloud Dataflow

• Updated build command to fuse multiple dependencies COPY docker commands into a single COPY command.

Cloud Datastream

• Added gcloud beta connection-profiles discover which performs discovery on a datastream connection profile.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.12.0
  • Support partially clearing data via API.

Cloud Run

• Modified gcloud beta run deploy --source to use Artifact Registry for build artifacts. Users will be prompted prior to automatic creation of an Artifact Registry repository named "cloud-run-source-deploy".
• Promoted --use-http2 flag to GA for Cloud Run (fully managed).

Cloud SQL

• Added support for - as a wildcard in place of an instance name for gcloud sql backups list.

Cloud Storage

• Updated gsutil component to 4.63.

Compute Engine

• Promoted --byol flag of:
  • gcloud compute images import to GA
  • gcloud compute instances import to GA
• Promoted following flags in gcloud compute instances create and gcloud compute instances update-access-config to GA:
  • --ipv6-public-ptr-domain
  • --no-ipv6-public-ptr
• Added --all-instances flag on compute managed update-instances to reflect the instances selection options available in the REST API.
• Add --source-disk-project flag to image creation. It is used to specify source disk project when creating image from disk.
• Promoted support for stack-type and ipv6-access-type for gcloud compute networks subnets create to GA.
• Promoted --enable flag to GA for the following commands:
  • gcloud compute routers add-bgp-peer
  • gcloud compute routers update-bgp-peer
• Promoted --keepalive-interval flag to GA for the following commands:
  • gcloud compute routers create
  • gcloud compute routers update
• Promoted support for stack-type and ipv6-network-tier for gcloud compute instances <create|create-with-container> to GA.
• Promoted support for stack-type and ipv6-network-tier for gcloud compute instance-templates <create|create-with-container> to GA.
• Promoted support for stack-type and ipv6-access-type for gcloud compute networks subnets update to GA.

Kubernetes Engine

• Added --enable-service-externalips flag to gcloud alpha and beta to allow or deny services to set the ExternalIPs field.
• Added --autoprovisioning-image-type flag to gcloud container clusters create and gcloud container clusters update to specify the image type for node autoprovisioning.

Network Services

• Promoted gcloud network-services endpoint-policies to beta.

VPC Access

• Promoted following flags in gcloud compute networks vpc-access connectors create to GA:
  • --min-instances
  • --max-instances
  • --machine-type

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

344.0.0 (2021-06-08)

Breaking Changes

• (AI) Renamed --drift-thresholds flag in gcloud beta ai model-monitoring-jobs create and gcloud beta ai model-monitoring-jobs update to --feature-thresholds.

App Engine

• Updated the Python SDK to version 1.9.93.

Cloud Asset Inventory

• Added new content type org-policy, access-policy, os-inventory to gcloud beta asset list.

Cloud Pub/Sub

• Added gcloud beta pubsub lite-subscriptions subscribe which allows the user to receive messages on a Pub/Sub Lite subscription.

Compute Engine

• Added --json-parsing and --log-level flags to gcloud compute security-policies update.
• Promoted --json-parsing and --log-level flags to GA for gcloud compute security-policies update.

Config Connector

• Updated Google Cloud Config Connector to version 1.51.2. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

• Promoted gcloud container hub memberships get-credentials to GA.

Managed Active Directory

• Adding support for gcloud active-directory peerings for Multi Project Support release.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

343.0.0 (2021-06-02)

Breaking Changes

• (Certificate Authority Service) Updated gcloud beta privateca to only allow managing resources in the 6 supported locations. For more information, see https://cloud.google.com/certificate-authority-service/docs/locations.
• (Cloud Run) If platform is not specified via flags or config, gcloud run commands that require a platform will now default to managed instead of prompting to select a platform.

AI

• Promoted gcloud ai custom-jobs to GA.

Artifact Registry

• Added Python repo creation with gcloud artifacts repositories create.
• Added print-settings command for Python repositories.

BigQuery

• Disable non-fedarated AWS connection type.
• New module credential_loader encapsulate credential and auth related functions for BQCLI. The main entrypoint for these functions is credential_loader.GetCredentialsFromFlags (moved from _GetCredentialsFromFlags). Note the removed underscore in addition to the module path change.
• Minor bug fixes and dependency updates.

Cloud Datastream

• Added gcloud beta connection-profiles which contains create, delete, describe and list for Datastream connection profile objects.
• Added gcloud beta locations fetch-static-ips which returns a list of static IPs used by Datastream for a specific location.
• Fixed issue where gcloud beta connection-profiles list returned partial information in the list formatting.

Cloud Functions

• Update logging message for gcloud functions deploy to print Cloud Build log URL.

Cloud Pub/Sub

• Modified the output of gcloud beta pubsub schemas validate-schema on the successful validation of a schema to text indicating the success rather than the empty response returned by the service.
• Modified the output of gcloud beta pubsub schemas validate-message on the successful validation of a message to text indicating the success rather than the empty response returned by the service.
• Added gcloud beta pubsub lite-subscriptions ack-up-to which allows the user to acknowledge messages on a specified Pub/Sub Lite subscription.

Compute Engine

• Promoted --scopes, --no-scopes,, --service-account and --no-service-account flags to GA for gcloud compute instances import.
• Updated gcloud beta compute service-attachment to fix the default values of --enable-proxy-protocol and --connection-preference.

Config Connector

• Updated Google Cloud Config Connector to version 1.51.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

• Added --threads-per-core flag to gcloud container clusters create and gcloud container node-pools create commands.
• Fixed issue for 0 node clusters relating to misleading output of node versioning in gcloud container clusters list.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

342.0.0 (2021-05-25)

App Engine

• Added support for specifying a service account for each App Engine version during deployment. This can be done by either running gcloud app deploy --service-account=<SERVICE_ACCOUNT> or by specifying 'service_account: ' in app.yaml file. If both are specified, the CLI parameter will override the app.yaml spec.
• Updated the Java SDK to version 1.9.89. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

App Engine Flexible Environment

• Added support for specifying a service account for each App Engine Flexible version during deployment. This can be done by either running gcloud app deploy --service-account=<SERVICE_ACCOUNT> or by specifying 'service_account: ' in app.yaml file. If both are specified, the CLI parameter will override the app.yaml spec.

Certificate Authority Service

• Added support for key generation in certificates create using newer versions (3.4 and above) of the Python cryptography package.

Cloud Build

• Update gcloud beta builds triggers run for repoless triggers.

Cloud Datastream

• Added gcloud beta datastream locations command group - contains describe and list for Datastream locations objects.
• Added gcloud beta datastream routes command group - contains describe and list for Datastream routes objects.
• Deprecated --region flag of gcloud beta datastream. Use --location instead.

Cloud Pub/Sub

• Added --definition-file to gcloud beta pubsub schemas validate-message, gcloud beta pubsub schemas validate-schema, and gcloud beta pubsub schemas create to specify a schema stored in a file.

Compute Engine

• Updated gcloud compute instance-groups managed abandon-instances, delete-instances, recreate-instances, and update-instances to return unresolved instance names for regional groups with status MEMBER_NOT_FOUND.
• Updated gcloud beta compute service-attachment update to allow users to clear the consumer-accept-list and consumer-reject-list.
• Added --threads-per-core flag to specify number of visible threads per physical core to both beta and GA for:
  • gcloud compute instances create
  • gcloud compute instances create-with-container
  • gcloud compute instance-templates create
  • gcloud compute instances bulk create

Config Connector

• Updated Google Cloud Config Connector to version 1.50.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

341.0.0 (2021-05-18)

AI Platform

• Added beta commands for the AI platform tensorboard suite.
• Added gcloud beta ai tensorboards commands to manage a Tensorboard on the unified AI platform.
• Added gcloud beta ai tensorboard-experiments commands to manage a Tensorboard Experiment on the unified AI platform.
• Added gcloud beta ai tensorboard-runs commands to manage a Tensorboard Run on the unified AI platform.
• Added gcloud beta ai tensorboard-time-series commands to manage a Tensorboard Time Series on the unified AI platform.

App Engine

• Added a deprecation warning to gcloud app deploy dos.yaml.

App Engine Flexible Environment

• Added a deprecation warning to gcloud app deploy dos.yaml.

Assured Workloads

• Added option to specify custom project names in --resource-settings by using consumer-project-name or encryption-keys-project-name key in gcloud assured workloads create command.

BigQuery

• Support displaying TVF return table signature.
• Adds enable_queuing_and_priorities reservation flag (only for whitelisted reservations).
• Adds support for reservation assignment priority (only for whitelisted reservations).

Cloud Asset Inventory

• Added gcloud asset analyze-move commands to analyze a GCP Project Migration.

Cloud Pub/Sub

• Added gcloud beta pubsub lite-topics publish which allows the user to publish a message to their specified Pub/Sub Lite topic.

Cloud Storage

• Updated gsutil component to 4.62.

Compute Engine

• Promoteddisk-resource-policykey of flag--create-diskfor allcompute instances` create commands.
• Updated help text for --enable-endpoint-independent-mapping on compute routers nats create and compute routers nats update to reflect the new default.

Kubernetes Engine

• Added --threads-per-core flag to gcloud container clusters create and gcloud container node-pools create commands.
• Promoted --cluster-dns-* flags of gcloud container clusters create and gcloud container clusters update to beta.
• Updates default kubectl from 1.17 to 1.18.
• Additional kubectl versions:
  • kubectl.1.17 (1.17.17)
  • kubectl.1.18 (1.18.19)
  • kubectl.1.19 (1.19.11)
  • kubectl.1.20 (1.20.7)
  • kubectl.1.21 (1.21.1)

Pubsub Emulator

• Fixed issue where subscription retention was not being respected upon subscription creation.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

340.0.0 (2021-05-11)

Cloud Asset Inventory

• Updated gcloud asset search-all-resources to support date-time string in queries on timestamp fields (createTime and updateTime).

Cloud Bigtable

• Promoted the IAM Conditions flags --condition and --condition-from to GA.

Cloud Billing

• Added optional --calendar-period, --start-date, and --end-date flags to gcloud billing budgets [create | update] to support a wider array of options for the budget's timeframe, which was previously always one month.

Cloud Memorystore

• Promoted gcloud beta redis reschedule-maintenance to beta.
• Added --maintenance-window-day flag and --maintenance-window-hour flag to gcloud beta redis instances create to allow specifying a maintenance policy when creating a new instance.
• Added --maintenance-window-day flag, --maintenance-window-hour flag and --maintenance-window-any flag to gcloud beta redis instances update to allow updating a maintenance policy when updating an instance.

Cloud Run

• Modified gcloud beta run deploy --source to suggest a default service name based on the source path when one isn't provided.

Compute Engine

• Promoted gcloud compute service-attachments to beta.
• Added --target-service-attachment flag to gcloud beta compute forwarding-rules create.
• Added --purpose=private-service-connect to gcloud beta compute networks subnets create.

Config Connector

• Updated Google Cloud Config Connector to version 1.49.1. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Database Migration

• Added MYSQL_8_0, POSTGRES_10, POSTGRES_12, and POSTGRES_13 database version options for --database-version flag to database-migration connection-profiles create cloudsql.

Kubernetes Engine

• Promoted --enable-dataplane-v2 to GA.

Notebooks

• Added gcloud notebooks instances rollback to rollback a notebook's boot disk.
• Added gcloud notebooks instances get-health to verify instance health.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

339.0.0 (2021-05-04)

Breaking Changes

• (Certificate Authority Service) Updated default value for --max-chain-length flag of gcloud beta privateca roots create. Now, no max chain length will be added to newly created root CAs unless they are explicitly specified through --max-chain-length, or (indirectly) through a --reusable-config resource argument.

AI

• Added executor-image-uri field to --worker-pool-spec flag of gcloud beta ai custom-jobs create, as an alias of python-image-uri field. python-image-uri will be deprecated soon.
• Accepted empty value for --worker-pool-spec flag, which means to create an empty worker pool.

Assured Workloads

• Added option to specify custom keyring name in --resource-settings by using keyring-id key in gcloud assured workloads create command.

Cloud Composer

• Added links to the documentation pages when the request fails on missing required permissions.

Cloud On Demand Scanning

• Upgrade local-extract to version 1.0.0. This version replaces memory-intensive extraction with disk-based extraction.

Cloud SQL

• The output of gcloud sql backups list --instance="my-instance-1" will now include the instance name.

Compute Engine

• Added --request-coalescing to gcloud compute backend-services create, gcloud compute backend-services update, gcloud compute backend-buckets create and gcloud compute backend-buckets update.
• Added cdnPolicy.requestCoalescing field support to gcloud compute backend-services import.
• Added --minimal-action and --most-disruptive-allowed-action flags to gcloud beta compute instance-groups managed rolling-action start-update.

Config Connector

• Updated Google Cloud Config Connector to version 1.48.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kpt

• Updated kpt from v0.39.0 to v0.39.2.
• Updated import of cli-utils from v0.24.0 to v0.25.0.
• Updated import of kyaml from v0.10.15 to v0.10.17.
• Updated import of cmd/config from v0.9.7 to v0.9.10.

Kubernetes Engine

• Added --disable-autopilot flag of gcloud container clusters update to convert cluster from Autopilot mode to Standard mode.

Network Security

• Modified gcloud network-security client-tls-policies to accept empty serverValidationCa which signals to the client to do un-authenticated TLS.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

338.0.0 (2021-04-27)

Breaking Changes

• (Cloud Run) Deprecated all choice of --vpc-egress flag of gcloud run deploy and gcloud run services update. A new all-traffic choice provides the same functionality with a more specific name. all will continue to be supported, but prefer to use all-traffic.
• (Cloud Run) Modified gcloud beta run deploy to accept either --image or --source, but not both.

Cloud Dataproc

• Added --confidential-compute boolean flag to gcloud dataproc clusters create to allow users to configure Compute Engine Confidential VMs on Dataproc clusters.
• Added --confidential-compute boolean flags to gcloud dataproc workflow-templates set-managed-cluster to allow users to configure Compute Engine Confidential VMs on Dataproc managed clusters.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.11.15
  • Fixes issue with parsing empty headers which caused some valid requests to be rejected.

Cloud Key Management Service

• Promote get-certificate-chain command to GA.

Cloud Memorystore

• Added timeout key to --redis-config flag of redis instances create.
• Added timeout key to --redis-config flag of redis instances update.

Cloud Pub/Sub

• Promoted --starting-offset flag of gcloud pubsub lite-subscriptions create to GA.

Cloud Run

• Added all-traffic choice to --vpc-egress flag of gcloud run deploy and gcloud run services update. all-traffic provides the same functionality as the existing all choice with a more specific name. all is now deprecated but will continue to be supported. Prefer to use all-traffic.
• Promoted --binary-authorization and --breakglass flags of gcloud run deploy and gcloud run services update to beta.

Cloud Services

• Promoted gcloud services vpc-peerings delete to GA.

Cloud Tasks

• Updated gcloud tasks queues update [QUEUE_NAME] --clear-routing-override to remove appEngineRoutingOverride values instead of setting them to empty strings.

Compute Engine

• Promoted --iap-tunnel-disable-connection-check flag of gcloud compute start-iap-tunnel to GA.
• Promoted --cpu-utilization-predictive-autoscaling flag of gcloud compute instance-groups managed set-autoscaling and gcloud compute instance-groups managed update-autoscaling to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.46.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Network Security

• Promoted gcloud network-security authorization-policies to beta.
• Promoted gcloud network-security server-tls-policies to beta.
• Promoted gcloud network-security client-tls-policies to beta.

Secret Manager

• Added --etag flag to the following commands:
  • gcloud beta secrets update
  • gcloud beta secrets delete
  • gcloud beta secrets versions enable
  • gcloud beta secrets versions disable
  • gcloud beta secrets versions destroy

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

337.0.0 (2021-04-20)

Assured Workloads

• Added HIPAA and HITRUST as compliance regime options for gcloud assured workloads create command in GA.

BigQuery

• Added bq truncate command. This command will only be available to selected customers in private preview.
• Added --job to bq delete.

Cloud Access Context Manager

• Changed behavior of perimeters dry-run describe:
  • Not displaying unset fields.
  • +/- signs now are displayed at the very beginning of the line, instead of being displayed right in front of the resource text.
  • Extra space added in front of top-level fields like names/title/type to align text.

Cloud Dataflow

• Promoted gcloud dataflow snapshots to GA.

Cloud Domains

• Fixed issue where multiple address line fields were not supported in commands with interactive prompts:
  • gcloud beta domains registrations register
  • gcloud beta domains registrations configure contacts

Cloud Filestore

• Promoted gcloud filestore backups to GA.
• Added gcloud filestore instances restore to enable restoring a Cloud Filestore instance from a backup.
• Added support for creating Filestore instances from backup using gcloud filestore instances create.
• Promoted --source-backup and --source-backup-region flags to GA to specify backup details; these flags should be used in conjunction with --file-share flag.

Cloud Memorystore

• Added support for Redis 6.x.

Cloud Resource Settings

• Promoted gcloud resource-settings to GA.

Cloud Services

• Promoted gcloud services vpc-peerings delete to beta.

Compute Engine

• Promoted --redundant-interface, --subnetwork and --subnetwork-region flags of gcloud compute routers add-interface to beta.
• Promoted --instance and --instance-zone flags of gcloud compute routers add-bgp-peer to beta.
• Promoted --interface-names of gcloud compute routers remove-interface to beta.
• Promoted --peer-names of gcloud compute routers remove-bgp-peer to beta.

Essential Contacts

• Promoted gcloud essential-contacts to beta.

Service Directory

• Added --network flag to gcloud service-directory endpoints create command in beta.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

336.0.0 (2021-04-13)

Assured Workloads

• Promoted --resource-settings of gcloud assured workloads create to GA.

Cloud Composer

• Added support of Airflow 2.0 CLI nested commands to gcloud composer environments run.
• Updated gcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.15+.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.11.14
  • Fix header parsing causing permission denined errors with Firestore JS SDK v8.3.2.

Cloud Storage

• Updated gsutil component to 4.61.

Compute Engine

• Added --request-coalescing to gcloud beta compute backend-services create, gcloud beta compute backend-services update, gcloud beta compute backend-buckets create and gcloud beta compute backend-buckets update.
• Added cdnPolicy.requestCoalescing field support to gcloud beta compute backend-services import.
• Promoted --target_distribution_shape flag of gcloud compute instance-groups managed create and update to GA. Added --compute-service-account flag to gcloud compute instances import.
• Removed unneeded curl progress output from gcloud compute ssh with `--internal-ip flag.
• Promoted --zone flag to gcloud beta compute images describe-from-family.

Config Connector

• Updated Google Cloud Config Connector to version 1.45.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kpt

• Updated kpt from v0.38.1 to v0.39.0.
• Updated import of cli-utils from v0.23.5 to v0.24.0.
• Updated import of kyaml from v0.10.13 to v0.10.15.
• Updated import of cmd/config from v0.9.5 to v0.9.7.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

335.0.0 (2021-04-06)

Breaking Changes

• (Cloud Bigtable) Deprecated --cluster, --cluster-num-nodes and --cluster-zone flags of
• (Cloud Bigtable) gcloud bigtable instances create. Use --cluster-config instead.
• (Cloud Bigtable) Deprecated --instance-type flag of gcloud bigtable instances create. All
• (Cloud Bigtable) instances are now of type PRODUCTION.

App Engine

• Updated the Java SDK to version 1.9.88. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Access Context Manager

• Promoted ingress-policies and egress-policies flags of gcloud access-context-manager perimeters to GA.
• Support displaying Ingress and EgressPolicies for:
  • gcloud access-context-manager perimeters describe.
  • gcloud access-context-manager perimeters dry-run describe.

Cloud Asset Inventory

• Added --access-time flag to gcloud asset analyze-iam-policy and gcloud asset analyze-iam-policy-longrunning.

Cloud Bigtable

• Added --kms-key, --kms-keyring, --kms-location and --kms-project flags to gcloud bigtable clusters create for alpha, beta and GA for creating CMEK-protected clusters.
• Added key kms-key to --cluster-config flag of gcloud bigtable instances create, for creating CMEK-protected clusters.
• Promoted --cluster-config flag of gcloud bigtable instances create to beta and GA.
• Promoted gcloud bigtable instances tables describe to beta and GA.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.11.13
  • Reset document create time when a document is deleted and re-created in a single transaction.

Compute Engine

• Promoted the following flags in gcloud compute backend-services create, gcloud compute backend-services update, gcloud compute backend-buckets create and gcloud compute backend-buckets update to GA:
  • --[no-]negative-caching
  • --[no-]negative-caching-policy
  • --[no-]serve-while-stale
  • --[no-]bypass-cache-on-request-headers
• Added the following fields to gcloud compute backend-services import and gcloud compute backend-services export:
  • cdnPolicy:
  • negativeCaching
  • negativeCachingPolicy
  • bypassCacheOnRequestHeaders
  • serveWhileStale
• Added support for authorizationPolicy and serverTlsPolicy for gcloud compute target-https-proxies import command.
• Added --iap-tunnel-disable-connection-check flag to gcloud compute start-iap-tunnel to disable the initial connection check in alpha and beta.
• Promoted gcloud compute public-delegated-prefixes to GA.
• Added --network-interface=nic-type flag to gcloud compute instance-templates create for beta and GA.
• Promoted --image-family-scope flag to gcloud beta compute instances create and gcloud beta compute disks create.

Policy Simulator

• Added gcloud iam simulator replay-recent-access which simulates policy changes by replaying policy overlay on recent access.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

334.0.0 (2021-03-30)

Breaking Changes

• (Cloud Build) Modified the positional argument WORKER_POOL to be required for commands in the command group gcloud builds worker-pools (except for gcloud builds worker-pools list).
• (Cloud Run) Deprecated --connectivity flag of gcloud run deploy and gcloud run services update. --connectivity will continue to be supported. --connectivity only applies to --platform=gke and --platform=kubernetes. The new --ingress flag applies to all platforms and provides equivalent functionality. Prefer to use --ingress. Use --ingress=all in place of --connectivity=external. Use --ingress=internal in place of --connectivity=internal.
• (Dataproc Metastore) Deprecated gcloud beta metastore services imports command group. Use gcloud beta metastore services import command group instead.

Cloud SDK

• Cloud SDK supports Apple Silicon. Some native components currently rely on Rosetta 2.

AI

• Modified --region flag of gcloud beta ai endpoints to include new online prediction regions.
• Modified --region flag of gcloud beta ai models to include new online prediction regions.

BigQuery

• Added --max_concurrency flag to mk and update reservation commands.
• Added --parquet_enum_as_string and --parquet_enable_list_inference flags to load and mk --table commands for Parquet format. Run bq load --help or bq mk --help for details.
• Removed old oauth2client_4_0 compatibility shim.

Cloud On Demand Scanning

• Promoted the On-Demand Scanning API commands to GA.
  • gcloud artifacts docker images scan to scan a container image.
  • gcloud artifacts docker images get-operation to retrieve an operation.
  • gcloud artifacts docker images list-vulnerabilities to retrieve scan results.
• Improved error messages for local-extract.

Cloud Run

• Promoted --ingress flag of gcloud run deploy and gcloud run services update to GA.

Cloud SQL

• Promoted Active Directory integration to beta.

Cloud Security Command Center

• Updated the following commands to support project/folder parent types:
  • gcloud scc findings create
  • gcloud scc findings group
  • gcloud scc findings list
  • gcloud scc findings list-marks
  • gcloud scc findings update
  • gcloud scc findings update-marks
  • gcloud scc assets describe
  • gcloud scc assets group
  • gcloud scc assets list
  • gcloud scc assets list-marks
  • gcloud scc assets update-marks
• Assets and findings will now have canonicalName field in their response.

Compute Engine

• Added --service-account, --no-service-account, --scopes and --no-scopes flags to gcloud beta compute instances import.
• Added --service-directory-registration flag to gcloud compute forwarding-rules create --global --target-google-apis-bundle=<bundle> in beta and GA.
• Added --target-google-apis-bundle to gcloud compute forwarding-rules create.
• Added PRIVATE_SERVICE_CONNECT as a global address purpose to gcloud compute addresses create.
• Promoted --post-key-reservation-action-type flag to beta for gcloud compute instances create.
• Promoted --post-key-reservation-action-type flag to beta for gcloud compute instance-templates create.
• Added --resource-policies flag for gcloud compute instance-templates create command in alpha, beta, and GA.
• Added --service-account, --no-service-account, --scopes and --no-scopes flags for gcloud compute machine-images import in beta.
• Fixed failure to pipe into ssh when --internal-ip flag is specified.
• Added gcloud compute target-https-proxies import method which creates or updates a target HTTPS proxy resource in Compute Engine
• Promoted gcloud compute public-advertised-prefixes to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.44.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Database Migration

• Launched Database Migration.

Dataproc Metastore

• Added --dump-type flag to gcloud beta metastore services export gcs to allow specification of the database dump type to export.
• Added --release-channel flag to gcloud beta metastore services create.
• Added the following commands to work with Dataproc Metastore services:
  • gcloud beta metastore services import
  • gcloud beta metastore services restore
  • gcloud beta metastore services backups describe
  • gcloud beta metastore services backups list
  • gcloud beta metastore services backups create
  • gcloud beta metastore services backups delete
• Promoted gcloud metastore to GA.

Secret Manager

• Added --next-rotation-time flag to gcloud beta secrets create, gcloud secrets create gcloud beta secrets update and gcloud secrets update commands to specify the timestamp at which to send SECRET_ROTATE notification.
• Added --rotation-period flag to gcloud beta secrets create, gcloud secrets create gcloud beta secrets update and gcloud secrets update commands to specify a duration between secret rotation notifications.
• Added --remove-next-rotation-time flag to gcloud beta secrets update and gcloud secrets update command to remove scheduled rotation time from a secret if it has one.
• Added --remove-rotation-period flag to gcloud beta secrets update and gcloud secrets update command to remove a set rotation period if it has one.
• Added --remove-rotation-schedule flag to gcloud beta secrets update and gcloud secrets update command to remove the rotation policy from a secret if it has one.
• Promoted --expire-time flag of gcloud secrets create and gcloud secrets update to GA.
• Promoted --ttl flag of gcloud secrets create and gcloud secrets update to GA.
• Promoted --remove-expiration flag of gcloud secrets update to GA.
• Promoted --topics flag of gcloud secrets create to GA.
• Promoted the following flags to GA for gcloud secrets update:
  • --add-topics
  • --remove-topics
  • --clear-topics

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

333.0.0 (2021-03-23)

Cloud SDK

• --impersonate-service-account flag can accept a list of service accounts for impersonation delegation.

Assured Workloads

• Added --resource-settings flag to gcloud assured workloads create command.
• Added US_REGIONAL_ACCESS as compliance regime option for gcloud assured workloads create command.
• Added HIPAA and HITRUST as compliance regime options for gcloud assured workloads create command.

Cloud Build

• Updated gcloud builds submit and gcloud builds log to tell users when they cannot read the default logs bucket because of VPC-SC.

Cloud Dataflow

• Added flex template docker container building support for python in build command gcloud beta dataflow flex-template build.

Cloud Dataproc

• Added gcloud dataproc clusters stop and gcloud dataproc clusters start which stop and start clusters.
• Promoted --dataproc-metastore flag of gcloud dataproc clusters create to GA.
• Promoted --dataproc-metastore flag of gcloud dataproc workflow-templates set-managed-cluster to GA.
• Added --secure-multi-tenancy-user-mapping and --identity-config-file flags to gcloud dataproc clusters create and gcloud dataproc workflow-templates set-managed-cluster.

Cloud Logging

• Promoted gcloud logging views command group to GA.

Cloud On Demand Scanning

• Improved error messages for local-extract.

Cloud Pub/Sub

• Added --starting-offset flag to gcloud pubsub lite-subscriptions create to allow subscriptions to be created at HEAD.

Cloud Storage

• Updated gsutil component to 4.60.

Compute Engine

• Fixed gcloud compute url-maps import for correctly removing top-level properties of an existing Url map, when they are not specified in the YAML file.
• Updated import and export schemas for:
  • gcloud compute forwarding-rules.
  • gcloud compute backend-services.
• Added --compute-service-account flag for gcloud compute instances import in beta.
• Added --compute-service-account flag for gcloud compute machine-images import in beta.
• Promoted --description and --family flags of gcloud compute images update to GA.
• Promoted the following flags in gcloud compute instance-groups managed set-autoscaling to GA:
  • --set-schedule
  • --schedule-cron
  • --schedule-duration-sec
  • --schedule-min-required-replicas
  • --schedule-time-zone
  • --schedule-description For more information see <https://cloud.google.com/compute/docs/autoscaler/scaling-schedules>.
• Promoted the following flags in gcloud compute instance-groups managed update-autoscaling to GA:
  • --min-num-replicas
  • --max-num-replicas
  • --set-schedule
  • --update-schedule
  • --disable-schedule
  • --enable-schedule
  • --remove-schedule
  • --schedule-cron
  • --schedule-duration-sec
  • --schedule-min-required-replicas
  • --schedule-time-zone
  • --schedule-description For more information see <https://cloud.google.com/compute/docs/autoscaler/scaling-schedules>.

Config Connector

• Updated Google Cloud Config Connector to version 1.42.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kpt

• Updated kpt from v0.37.1 to v0.38.1.
• Updated import of cli-utils from v0.21.1 to v0.23.5.
• Updated import of kyaml from v0.9.5 to v0.10.13.
• Updated import of cmd/config from v0.8.5 to v0.9.5.

Miscellaneous

• Reordered contents of help text pages to make "Examples" section more prominent.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

332.0.0 (2021-03-16)

Breaking Changes

• (App Engine) Updated backend when using gcloud app deploy <queue|cron>.yaml. The only noticeable change is that when removing queues from the queues YAML file, previously the queues were marked as "DISABLED" but now they are marked "PAUSED". In terms of functionality, there is no difference between the two.

Cloud SDK

• Added support for environment variable CLOUDSDK_ENCODING to set the IO encoding for gcloud. UTF-8 will be the default IO encoding on Unix.

App Engine

• Updated the Java SDK to version 1.9.87. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• Promoted PyPI repo creation with gcloud artifacts repositories create to beta and GA.
• Promoted gcloud artifacts print-settings pypi to beta and GA.

Cloud Dataflow

• Added default runtime environment parameters support in gcloud dataflow flex-template build.

Cloud Functions

• Promoted --security-level flag of gcloud functions deploy to GA.
• Modified --limit of gcloud functions logs read such that the most recent entries in the given time range up to the limit are returned rather than the earliest.

Cloud Org Policy

• Promoted gcloud org-policies command group to GA.

Cloud Run

• Promoted --tag flag of gcloud run deploy to GA.
• Promoted --tag flag of gcloud run services update to GA.
• Promoted --to-tags, --set-tags, --update-tags, --remove-tags, and --clear-tags flags of gcloud run services update-traffic to GA.

Cloud Spanner

• Promoted CMEK flags to beta and GA in gcloud spanner commands.

Compute Engine

• Added --byol flag for:
  • gcloud compute images import in beta
  • gcloud compute instances import in beta
  • gcloud compute machine-images import in beta
• Promoted gcloud compute instances remove-resource-policies command to GA.
• Added --boot-disk-provisioned-iops to gcloud compute instances create and gcloud compute instance-templates create to allow specifying provisioned IOPS for attached disks.
• Promoted gcloud compute instances create --network-performance-configs flag to beta.
• Promoted gcloud compute instances bulk create to beta and GA.

Dataproc Metastore

• Added --database-dump-type flag to gcloud beta metastore services imports create to set the database dump type.
• Deprecated --database-type flag gcloud beta metastore services imports create. Use --database-dump-type flag to specify the database dump type.
• Added gcloud beta metastore services imports update which updates a metadata import.
• Added --data-catalog-sync flag for gcloud metastore services in beta.

Identity Groups

• Added --group-type flag to gcloud identity groups create to automatically set group labels based on the type of group being created.

Kubernetes Engine

• Promoted --enable-l4-ilb-subsetting of gcloud container clusters create and gcloud container clusters update to beta.
• Added --node-labels, --node-taints, and --tags flags to gcloud beta container node-pools update to update the node labels, node taints and network tags on an existing node pool.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

331.0.0 (2021-03-09)

AI

• Added --autoscaling-metric-specs flag to gcloud beta ai endpoints deploy-model.

App Engine

• Updated gcloud app instances list and gcloud app instances describe to return the auto healer health check (i.e. liveness) for the flexible environment.

Assured Workloads

• Promoted gcloud assured command group to GA. Commands in this group provide the ability to read and modify Assured data controls.
• Promoted gcloud assured workloads command group to GA. Commands in this group provide the ability to manage Assured Workloads environment resources.
• Promoted gcloud assured operations command group to GA. Commands in this group provide the ability to view Assured Workloads operation resources.

Cloud Build

• Fixed issue where gcloud beta builds worker-pools commands fail to wait for long-running operations to finish.

Cloud Dataproc

• Added a confirmation prompt to gcloud datapoc clusters enable-personal-auth-session and gcloud beta datapoc clusters enable-personal-auth-session.

Cloud Healthcare

• Promoted gcloud healthcare consent-stores to GA.

Cloud On Demand Scanning

• Updated the local-extract component to version 0.1.5, to improve error handling in certain cases.

Cloud Resource Manager

• Updated gcloud resource-manager org-policies describe to throw an error for unsupported policy versions.

Cloud Run

• Promoted --min-instances flag of gcloud run deploy and gcloud run services update to GA for --platform=managed.

Cloud Services

• Support service usage check on gcloud services disable command.

Compute Engine

• Promoted --provisioned-iops flag of gcloud compute disks create to GA.
• Promoted gcloud compute public-delegated-prefixes to beta.

Config Connector

• Updated Google Cloud Config Connector to version 1.41.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Identity and Access Management

• Added gcloud iam workload-identity-pools which enables granting on-premises or multi-cloud workloads access to Google Cloud resources, without using a service account key.

Kubernetes Engine

• Added gcloud container clusters create-auto for creating Autopilot clusters to the beta and GA tracks.

Network Management

• Added IPv6 support for Network Load balancers to gcloud compute forwarding-rules command group.

Secret Manager

• Promoted gcloud secrets replication command group to GA.
• Added --replication-policy-file flag to gcloud secrets create command to specify replication policy using a JSON or YAML file.
• Added --kms-key-name flag to gcloud secrets create command to specify a KMS key when creating an automatic secret.

VPC Access

• Promoted VPC connector --subnet flag from beta to GA.
• Modified gcloud compute networks vpc-access connectors create to accept an optional --subnet flag to specify a subnet to house the connector rather than requiring --network and --range flags.
  • If the provided subnet is a shared subnet, use the flag --subnet-project to specify the VPC host project ID.

Workspace Add Ons

• Promoted gcloud workspace-add-ons commands to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

330.0.0 (2021-03-02)

Breaking Changes

• (Cloud Code) Downgraded --env-vars and --env-vars-file to alpha.

Cloud SDK

• Added bundled Python 3 option for macOS installations. See gcloud topics startup and https://cloud.google.com/sdk/docs/install#mac.
• Fixed issue where gcloud emulators ... start commands would leave behind emulator processes when Ctrl+C was pressed.

Cloud Dataproc

• Added --cluster-labels flag to gcloud dataproc jobs submit to allow jobs to be placed on a cluster matching specified cluster labels.

Cloud Healthcare

• Added --filter-config-gcs-uri flag to the following commands:
  • gcloud beta healthcare dicoms-stores export gcs
  • gcloud beta healthcare dicoms-stores export bq

Cloud On Demand Scanning

• Updated some error messages to be more clear.
• Added a prompt to the beginning of gcloud beta artifacts docker images scan to install the local-extract component.

Cloud Pub/Sub

• Promoted --partitions flag in gcloud pubsub lite-topics update to GA.
• Added --view flag to gcloud beta schemas list to allow retrieval of schema definitions.

Cloud Run

• Fixed bug on force-override prompt for gcloud beta run domain-mappings create where it would fail to re-create the domain mapping after deleting the one without the override.

Compute Engine

• Promoted gcloud compute public-advertised-prefixes to beta.
• Added --request-coalescing to gcloud beta compute backend-services create, gcloud beta compute backend-services update, gcloud beta compute backend-buckets create and gcloud beta compute backend-buckets update.
• Promoted support for gce-vm-ip for --network-endpoint-type for gcloud compute network-endpoint-groups create and gcloud compute network-endpoint-groups update to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.39.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

• Added --pod-ipv4-range and --create-pod-ipv4-range flags to gcloud beta container node-pools create to configure pod ranges for the node pools.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

329.0.0 (2021-02-23)

Breaking Changes

• (Container Registry) Fixed issue where gcloud containers images list-tags doesn't show occurrence metadata.

AI

• Added --network and --service-account to gcloud beta ai <custom-jobs|hp-tuning-jobs> create to allow specifying a peering network and user service account.

Cloud Asset Inventory

• Added --relationship-type flag to gcloud beta asset export.

Cloud Code

• Promoted gcloud code dev and gcloud code clean-up to beta.

Cloud Composer

• Added --kms-key flag to gcloud composer environments command to specify the Customer-managed KMS key name to use for encrypting the Composer environment.

Cloud Functions

• Fixed a performance issue in gcloud functions logs read by adding a default value of 1 week ago for --start-time.

Cloud Memorystore

• Added --transit-encryption-mode flag to gcloud redis instances create to allow enabling Redis TLS with server authentication when creating a new instance.
• Modified --region flag to be optional in gcloud memcache. If not specified, use the value in memcache/region property.

Cloud Pub/Sub

• Added gcloud beta pubsub schemas validate-schema to allow validation of PROTOCOL_BUFFER and AVRO schemas.
• Added gcloud beta pubsub schemas validate-message to allow validation of messages against an existing or inline schema.

Compute Engine

• Promoted --provisioned-iops flag of gcloud compute disks create to beta.
• Promoted gcloud compute url-maps validate to GA.
• Promoted labels-related flags for gcloud compute forwarding-rules update to GA.
• Modified --short-name of gcloud compute firewall-policies create to be a required flag.
• Promoted --proxy-bind flag of gcloud compute target-tcp-proxies create to GA.
• Allow --target-tcp-proxy for gcloud compute forwarding-rules create and set-target with specified -load-balancing-scheme=INTERNAL_SELF_MANAGED.
• Added functionality in gcloud beta compute images import to import images from AWS.
• Promoted gcloud compute resource-policies create instance-schedule command to GA.

Identity Groups

• Added --dynamic-user-query flag to gcloud identity update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

328.0.0 (2021-02-16)

Breaking Changes

• (App Engine) Changed error message for Permissions error fetching application to indicate which account might be missing roles/appengine.deployer.
• (Miscellaneous) Added support for colored output using ANSI escape sequences on modern versions of Windows. Use gcloud config set disable_color true to disable this behavior.

App Engine

• Updated the Java SDK to version 1.9.86. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• Modified gcloud artifacts docker images describe to group vulnerability occurrences by effective severity instead of severity.

BigQuery

• Expose json_extension flag in CLI which can be used to load newline-delimited GeoJSON files (in combination with source_format=NEWLINE_DELIMITED_JSON).

Cloud Composer

• Modified --image-version and --airflow-version flags of gcloud beta composer environments update to be mutually exclusive.
• Added the following flags to gcloud composer environments create and gcloud composer environments update to manage machine types for web server and Cloud SQL:
  • --cloud-sql-machine-type
  • --web-server-machine-type

Cloud Logging

• Promoted the gcloud alpha logging tail command to beta.

Cloud Memorystore

• Promoted gcloud memcache to GA.
• Added apply-software-update command to apply latest available software update to Memcached instance and nodes.

Cloud Pub/Sub

• Added gcloud pubsub schemas to beta which allows creating and managing schemas. Schemas can be used to validate messages published to Cloud Pub/Sub topics.
• Added --schema and --message-encoding flags to gcloud beta pubsub topics create. Messages published to the topic with the given message encoding will be validated against the specified schema.
• Added --partitions flag to gcloud beta pubsub lite_topics update to allow increasing partitions in a Pub/Sub Lite topic.

Cloud SQL

• Added --secondary-zone flag to gcloud sql instances <create|patch> that allows users to choose the secondary zone during create|patch of High Availability instances.

Cloud Spanner

• Added --version-time flag to gcloud spanner backups create to allow specifying the timestamp of the data contained in the backup.
• Added version time to the output of gcloud spanner backups list.
• Added version retention period and earliest version time to the output of gcloud spanner databases list.

Cloud Spanner Emulator

• Promoted gcloud emulators spanner to GA.

Cloud Storage

• Updated gsutil component to 4.59.

Cloud TPU

• Promoted gcloud compute tpus execution-groups to GA. Commands in this group allow convenient orchestration of TPU nodes and Compute VMs. This replaces the standalone tool ctpu.

Compute Engine

• Promoted --provisioned-iops flag of gcloud compute disks create to beta.
• Promoted gcloud compute url-maps validate to GA.
• Promoted labels-related flags for gcloud compute forwarding-rules update to GA.

Config Connector

• Updated Google Cloud Config Connector to version 1.38.1. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Container Analysis

• Modified gcloud container images describe to group vulnerability occurrences by effective severity instead of severity.

Identity Groups

• Promoted --dynamic-user-query flag of gcloud identity create to GA.

Kubernetes Engine

• Promoted --notification-config of gcloud container clusters <create|update> to GA. This flag is used to enable notifications on a cluster. Currently Pub/Sub notifications are supported.
• Node System Config is now GA. Added --system-config-from-file flag to gcloud container clusters create, gcloud container node-pools create, and gcloud node-pools update to configure kubelet and Linux configuration settings on nodes.

Pubsub Emulator

• Added schema support to the Pub/Sub emulator, which allows the association of topics with schemas and the validation of published messages against them.

Secret Manager

• Added --topics flag to gcloud beta secrets create command to specify a list of Pub/Sub topics to configure on the secret.
• Added --add-topics flag to gcloud beta secrets update command to specify a list of Pub/Sub topics to add to the secret.
• Added --remove-topics flag to gcloud beta secrets update command to specify a list of Pub/Sub topics to remove from the secret.
• Added --clear-topics flag to gcloud beta secrets update command to remove all Pub/Sub topics from the secret.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

327.0.0 (2021-02-09)

AI

• Added KMS args (--kms-project, --kms-location, --kms-keyring, --kms-key) to gcloud <alpha|beta> ai custom-jobs create and gcloud <alpha|beta> ai hp-tuning-jobs create to allow specifying a customer-managed encryption key.

App Engine

• Updated the Java SDK to version 1.9.85. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

• Fixed a bug that prevented users from creating an encrypted repository with a custom kms key.

Cloud DNS

• Added gcloud beta dns response-policies create to create a new Cloud DNS response policy.
• Added gcloud beta dns response-policies update to update a Cloud DNS response policy.
• Added gcloud beta dns response-policies list to list all Cloud DNS response policies in a given project.
• Added gcloud beta dns response-policies describe to describe details of a Cloud DNS response policy.
• Added gcloud beta dns response-policies delete to delete a Cloud DNS response policy.

Cloud Functions

• Promoted --security-level flag of gcloud functions deploy to beta.
• Added support for google.firebase.remoteconfig.update as an event type. The full set of supported event types can be listed using gcloud functions event-types list.

Cloud Healthcare

• Added --write-disposition flag to the following commands:
  • gcloud healthcare fhir-stores export bq
  • gcloud beta healthcare fhir-stores export bq
  • gcloud beta healthcare dicom-stores export bq
  • gcloud beta healthcare annotation-stores export bq
  • gcloud beta healthcare annotation-stores evaluate bq

Cloud Logging

• Promoted the following commands that support Logs Buckets to GA:
  • gcloud logging buckets
  • gcloud logging read
  • gcloud logging locations describe
  • gcloud logging locations list
  • gcloud logging sinks
  • gcloud logging cmek-settings
• Promoted --location, --bucket, and --view of gcloud logging read to GA.
• Promoted --description and --log-filter of gcloud logging metrics to GA.
• Promoted --use-partitioned-tables of gcloud logging sinks to GA.

Compute Engine

• Added support for short-name=windows for --os-type flag for gcloud beta compute instances ops-agents policies. This is only valid when --agent-rules=type=ops-agent.
• Promoted --cpu-utilization-predictive-method flag of gcloud compute instance-groups managed <set-autoscaling|update-autoscaling> to beta.
• Added support for --asn flag for gcloud compute routers update.
• Promoted gcloud compute security-policies update to beta.
• Added --enable-layer7-ddos-defense flag and --layer7-ddos-defense-rule-visibility flag to gcloud beta compute security-policies update.

Events

• Added --authentication flag to gcloud events init command.
• Added --authentication flag to gcloud events namespaces init command.
• Added workload-identity-gsa support to --authentication flag for gcloud events init command.
• Modifed gcloud events namespaces init command to create namespace if it is missing.

Identity Groups

• Added --labels flag to gcloud identity groups update to allow updating the labels for a group.

Identity Groups Memberships

• Promoted --expiration flag of gcloud identity groups memberships add to GA.
• Promoted --update-roles-param flag of gcloud identity groups memberships modify-membership-roles to GA.

Kubernetes Engine

• Adds new kubectl delegate version 1.19.7 for rapid channel
• Updated default kubectl version from 1.17.14 to 1.17.17
• Additional kubectl delegate versions:
  • kubectl.1.15 (1.15.12)
  • kubectl.1.16 (1.16.15)
  • kubectl.1.17 (1.17.17)
  • kubectl.1.18 (1.18.15)
• Corrected passing URIs and full resource names to work with paths in the form projects/<project>/locations/<location> (in addition to the deprecated form projects/<project>/zones/<location>).

Pubsub Emulator

• Added retry policy feature to the emulator.
• Updated emulator to deliver dead lettered messages to original subscription in case of publishing failure to dead letter topic.
• Added subscription name, project name, and publish time properties to dead lettered messages.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

326.0.0 (2021-02-02)

App Engine

• Updated backend when using gcloud app deploy <queue|cron>.yaml. The only noticeable change is that when removing queues from the queues YAML file, previously the queues were marked as "PAUSED" but now they are marked "DISABLED". In terms of functionality, there is no difference between the two.

Artifact Registry

• Fixed issue where gcloud docker images delete failed if the image is referenced by a tag.

Cloud Asset Inventory

• Added new searchable fields (kmsKey, state, createTime and updateTime) to gcloud asset search-all-resources.

Cloud Composer

• Added gcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.14+.
• Added support of CLI commands for Airflow 2.0 to gcloud beta composer environments run.

Cloud Dataflow

• Added streaming update and flexrs support to flex-template run command gcloud dataflow flex-template run.
• Updated gcloud dataflow sql query command to use Dataflow Flex Templates.
• Added --additional-experiments flag to gcloud beta dataflow jobs run.
• Added --additional-experiments flag to gcloud dataflow jobs run.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.11.12
  • Fix onCreate/onWrite events triggering when deleting nonexistent documents.

Cloud On Demand Scanning

• Launched commands for the On-Demand Scanning API in the Artifact Registry command group.
  • gcloud beta artifacts docker images scan to scan an image.
  • gcloud beta artifacts docker images get-operation to poll an ongoing scan.
  • gcloud beta artifacts docker images list-vulnerabilities to retrieve scan results.
• Introduced a new component called local-extract to aid in the commands for the On-Demand Scanning API.

Compute Engine

• Added --compute-service-account to gcloud beta compute images import.
• Changed --os flag to be optional for gcloud compute images import.
• Added --enable-nested-virtualization flag to enable or disable nested virtualization to both beta and GA for:
  • gcloud compute instances create
  • gcloud compute instances create-with-container
  • gcloud compute instance-templates create
• Fixed issue where policies created or updated via gcloud beta compute instances ops-agents policies [create|update] that included short-name values of 'debian' or 'ubuntu' in --os-types had trouble locating packages due to a missing call to apt-get update.
• Updated Windows PuTTY executables to version 0.74.

Config Connector

• Updated Google Cloud Config Connector to version 1.37.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Eventarc

• Promoted gcloud eventarc triggers to GA. Renamed --matching-criteria flag as --event-filters in GA.
• Promoted gcloud eventarc locations to GA.

GKE Hub

• Promoted gcloud container hub memberships register --enable-workload-identity --public-issuer-url=$URL to GA.

Notebooks

• Promoted gcloud notebooks to GA.

VPC Access

• Added --machine-type to gcloud beta compute networks vpc-access connectors create to support machine type configuration of the managed instance group underlying the connector.
• Added --min-instances and --max-instances to gcloud beta compute networks vpc-access connectors create to allow users to configure the scaling bounds of the underlying managed instance group.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

325.0.0 (2021-01-26)

Breaking Changes

• (Compute Engine) Modified enable-autoupgrade field belonging to flag --agent-rules in gcloud beta compute instances ops-agents policies create and gcloud beta compute instances ops-agents policies update from optional to required.
• (Container Registry) Updated gcloud container images list-tags and gcloud container images describe to use ContainerAnalysis V1 API in beta.
  • Changed occurrence kind PACKAGE_VULNERABILITY to VULNERABILITY, DEPLOYABLE to DEPLOYMENT, BUILD_DETAILS to BUILD and IMAGE_BASIS to IMAGE. To construct filters on kinds, new names should be used. For example, kind="VULNERABILITY.
  • Occurrence kind names are changed in output accordingly.

App Engine

• Updated backend when using gcloud app deploy <queue|cron>.yaml. The only noticeable change is that when removing queues from the queues YAML file, previously the queues were marked as "DISABLED" but now they are marked "PAUSED". In terms of functionality, there is no difference between the two.

Certificate Authority Service

• Added --ignore-active-certificates flag to gcloud beta privateca roots delete and gcloud beta privateca subordinates delete to allow a Certificate Authority to be scheduled for deletion even if the Certificate Authority has un-revoked or un-expired certificates.

Cloud Composer

• Added gcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.14+.

Cloud Storage

• Updated gsutil component to 4.58.

Compute Engine

• Promoted gcloud compute networks get-effective-firewalls command to GA.
• Promoted gcloud compute instances network-interfaces get-effective-firewalls command to GA.
• Promoted gcloud compute instance ops-agents to beta.
• Promoted --compute-service-account flag to GA for gcloud compute images import.

Eventarc

• Added --transport-topic flag to gcloud beta eventarc triggers create, to allow the use of an existing Pub/Sub topic for a trigger's transport intermediary.

Miscellaneous

• Fixed https://issuetracker.google.com/161399034 where --sort-by flag caused the output to duplicate the last value in the list.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

324.0.0 (2021-01-19)

Breaking Changes

• (Cloud Run) Updated gcloud run to require that --platform and --region be passed after all positional arguments. For example: gcloud run services describe SERVICE --platform=managed --region=us-central1. This change first appeared in version 322.0.0.

AI Platform

• Added support for maxNodes to gcloud ai-platform versions update --config.
• Added --bigquery-table-name and sampling-percentage to gcloud ai-platform versions update to update request logging config.

Cloud API Gateway

• Promoted gcloud api-gateway to GA.

Cloud DNS

• Promoted gcloud dns managed-zones to GA.
• Added --service-directory-namespace to gcloud beta dns managed-zones create to support providing a Service Directory namespace that should be associated with the zone.

Cloud Machine Learning Engine

• Added support for maxNodes to gcloud ml-engine versions update --config.
• Added --bigquery-table-name and sampling-percentage to gcloud ml-engine versions update to update request logging config.

Cloud Run

• For Cloud Run (fully managed), changed gcloud run services delete to wait until the service is no longer returned and account for the possibility of a deletion failing before reporting success. To use the previous behavior and exit without waiting for deletion to complete, use --async.

Cloud Speech API

• Promoted --separate-channel-recognition and --audio-channel-count flags of gcloud ml speech recognize and gcloud ml speech recognize-long-running to GA.

Cloud Workflows

• Added gcloud workflows and gcloud workflows executions commands to GA.

Compute Engine

• Added --compute-service-account to gcloud beta compute images import.
• Added the following flags to gcloud beta compute backend-services create, gcloud beta compute backend-services update, gcloud beta compute backend-buckets create and gcloud beta compute backend-buckets update:
  • --[no-]serve-while-stale
  • --[no-]bypass-cache-on-request-headers
• Added the following fields to gcloud beta compute backend-services import and gcloud beta compute backend-services export:
  • cdnPolicy:
  • bypassCacheOnRequestHeaders
  • serveWhileStale
• Promoted --compute-service-account flag to GA for gcloud compute images export.
• Added org-firewall-policies command group.

Config Connector

• Updated Google Cloud Config Connector to version 1.35.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Kpt

• Updated kpt from v0.36.1 to v0.37.1.
• Updated import of cli-utils from v0.21.0 to v0.21.1.
• Updated import of kyaml from v0.9.3 to v0.9.5.
• Updated import of cmd/config from v0.8.4 to v0.8.5.

Secret Manager

• Added --expire-time flag to gcloud beta secrets create and gcloud beta secrets update commands to specify timestamp for the secret to expire.
• Added --ttl flag to gcloud beta secrets create and gcloud beta secrets update commands to specify a duration until the secret should expire.
• Added --remove-expiration flag to gcloud beta secrets update command to remove scheduled expiration from a secret if it has one.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

323.0.0 (2021-01-12)

Cloud Asset Inventory

• Promote gcloud asset list command to beta.

Cloud Dataproc

• Added --shielded-secure-boot, --shielded-vtpm, and --shielded-integrity-monitoring boolean flags to gcloud dataproc clusters create to allow users to configure Compute Engine Shielded VMs on Dataproc clusters.
• Added --shielded-secure-boot, --shielded-vtpm, and --shielded-integrity-monitoring boolean flags to gcloud dataproc workflow-templates set-managed-cluster to allow users to configure Compute Engine Shielded VMs on Dataproc managed clusters.

Cloud Filestore

• Added --description flag to gcloud beta filestore backups create command.

Cloud Run

• Promoted --use-http2 flag to beta for Cloud Run (fully managed).

Config Connector

• Updated Google Cloud Config Connector to version 1.34.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Identity Groups Memberships

• Added gcloud identity groups memberships check-transitive-membership for ALPHA, beta and GA.
• Added gcloud identity groups memberships get-membership-graph for ALPHA, beta and GA.
• Added gcloud identity groups memberships search-transitive-groups for ALPHA, beta and GA.
• Added gcloud identity groups memberships search-transitive-memberships for ALPHA, beta and GA.

Managed Active Directory

• Added --enable-audit-logs flag to gcloud beta active-directory domains create and gcloud beta active-directory domains update.
• Added AUDIT_LOGS_ENABLED parameter to gcloud beta active-directory domains list.
• Added auditLogsEnabled parameter to gcloud beta active-directory domains describe.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

322.0.0 (2021-01-07)

Breaking Changes

• (Miscellaneous) Updated --format=flattened and --format=text to print labels if provided. If a key is specified inside either of these formats but a label is not, the child key will be printed in lower snake case. This is different than done previously when the entire dotted key path was printed. Note that this change does not apply to keys whose values are objects or lists.
• (Miscellaneous) If you would like to use the legacy version of --format=flattened or --format=text, set the following configuration: gcloud config set core/use_legacy_flattened_format true Please note that this option will not be supported indefinitely.

Cloud API Gateway

• Promote support for gRPC scoped api-config configurations via grpc-files flag to beta.

Cloud Composer

• Added --max-pods-per-node option to gcloud beta environment create operation. It allows to limit the number of pods that can be assigned to a single GKE node and reduce the size of IP range assigned to it.
• Added maintenance window flags for environment creation:
  • --maintenance-window-start
  • --maintenance-window-end
  • --maintenance-window-recurrence.
• Added maintenance window flags for environment update:
  • --maintenance-window-start
  • --maintenance-window-end
  • --maintenance-window-recurrence
  • --clear-maintenance-window.
• Added gcloud beta composer environments restart-web-server to restart web server for a Cloud Composer environment.

Cloud Dataflow

• Added --enable-streaming-engine flag to gcloud beta dataflow jobs run.
• Added --enable-streaming-engine flag to gcloud dataflow jobs run.

Cloud Filestore

• Promoted nfs-export-options key of --file-shares flag in gcloud filestore instances to GA.

Cloud Run

• Fixed an issue with using --clear-vpc-connector when deploying new services.

Compute Engine

• Promoted --mtu flag to beta and GA for gcloud compute interconnects attachments <dedicated|partner> <create|update>.
• Changed --os flag to be optional for:
  • gcloud compute images import in beta
  • gcloud compute instances import in beta
  • gcloud compute machine-images import in beta
• Promoted --maintenance-window-start-time flag in gcloud compute sole-tenancy node-groups create command to GA.
• Added --compute-service-account to gcloud compute images export in beta.
• Added --service-directory-registration to gcloud compute forwarding-rules create in beta.
• Promoted --no-address flag to GA for gcloud compute images import.

Config Connector

• Updated Google Cloud Config Connector to version 1.33.0. See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

Eventarc

• Added gcloud beta eventarc locations list which lists locations available for Eventarc.

Miscellaneous

• Updated gcloud to not attempt reauthentication if running in non-interactive mode.

Service Directory

• Promoted gcloud service-directory locations to beta. Added a commands to describe/list locations.
• Promoted gcloud service-directory namespaces to GA. Added commands to create/delete/describe/list/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.
• Promoted gcloud service-directory services to GA. Added commands to create/delete/describe/list/resolve/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.
• Promoted gcloud service-directory endpoints to GA. Added commands to create/delete/describe/list/resolve/update.
• Updated --metadata flag to --annotations flag in GA only.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

321.0.0 (2020-12-15)

Breaking Changes

• (Dataproc Metastore) Renamed gcloud beta metastore services update --kerberos_principal flag as --kerberos-principal.

Cloud SDK

• Added new regions for Artifact Registry: europe-west5, asia-northeast3, us-west3, us-west4, asia-southeast2.

AI

• Added parameters args and command to gcloud beta ai custom-jobs create which provides ability to pass the parameters to containers or python tasks.

Cloud Access Context Manager

• Added ingress-policies and egress-policies optional flags to the following commands:
  • gcloud beta access-context-manager perimeters create.
  • gcloud beta access-context-manager perimeters update.
  • gcloud beta access-context-manager perimeters dry-run create.
  • gcloud beta access-context-manager perimeters dry-run update.
• The ingress-policies and egress-policies flags accept paths to yaml files. The content of the yaml files should contain valid representations of IngressPolicies and EgressPolicies.
• Added support for displaying the contents of Ingress and EgressPolicies for following commands:
  • gcloud beta access-context-manager perimeters describe.
  • gcloud beta access-context-manager perimeters dry-run describe.

Cloud Composer

• Added the following flags to gcloud composer environments create to manage Airflow web server network access control:
  • --web-server-allow-ip
  • --web-server-deny-all
  • --web-server-allow-all
• Added the following flags to gcloud composer environments update to manage Airflow web server network access control:
  • --update-web-server-allow-ip
  • --web-server-deny-all
  • --web-server-allow-all

Cloud Dataproc

• Promoted --dag-timeout flag of gcloud dataproc workflow-templates create to GA.
• Promoted gcloud dataproc workflow-templates set-dag-timeout to GA.
• Promoted gcloud dataproc workflow-templates remove-dag-timeout to GA.
• Added gcloud beta dataproc clusters stop and gcloud beta dataproc clusters start commands to enable stopping and starting Dataproc clusters.

Cloud Firestore Emulator

• Release Cloud Firestore emulator v1.11.11
  • Fix listCollectionId not returning collections with nested docs.
  • Fix listDocuments with showMissing returning 500 errors.

Cloud Run

• Added multitenancy support to gcloud run commands https://cloud.google.com/run/docs/gke/multi-tenancy.
• Promoted --vpc-egress flag of gcloud run deploy and gcloud run services update to GA.
• Promoted --ingress flag of gcloud run deploy and gcloud run services update to beta.

Cloud SQL

• Promoted --type flag of gcloud sql users create to GA to support the creation of Cloud SQL database users for login using IAM database authentication.

Cloud Services

• Promoted gcloud services peered-dns-domains <create|delete|list> to GA.
• Promoted gcloud services vpc-peerings <enable-vpc-service-controls|disable-vpc-service-controls> to GA.

Cloud Storage

• Updated gsutil component to 4.57.

Compute Engine

• Removed centos-6 option from --os flag for gcloud compute images import, gcloud compute instances import, and gcloud compute machine-images import.
• Promoted TrafficDirector proxyBind property to v1 for:
  • gcloud compute target-http-proxies import
  • gcloud compute target-http-proxies export
  • gcloud compute target-https-proxies import
  • gcloud compute target-https-proxies export
• Added no-address flag to:
  • gcloud beta compute images import
  • gcloud beta compute machine-images import
• Promoted --disk and --accelerator flags in gcloud compute sole-tenancy node-templates create command to GA.
• Added --shielded-vtpm, --shielded-secure-boot, and --shielded-integrity-monitoring flags to gcloud compute instances create-with-container command.
• Added --shielded-vtpm, --shielded-secure-boot, and --shielded-integrity-monitoring flags to gcloud compute instance-templates create-with-container command.
• Added --shielded-vtpm, --shielded-secure-boot, --shielded-integrity-monitoring, and --shielded-learn-integrity-policy flags to gcloud compute instances update-container command.
• Promoted the following flags in gcloud compute backend-services create, gcloud compute backend-services update, gcloud compute backend-buckets create and gcloud compute backend-buckets update to GA:
  • --cache-mode
  • --[no-]client-ttl
  • --[no-]default-ttl
  • --[no-]max-ttl
  • --[no-]custom-response-header
• Added the following fields to gcloud compute backend-services import and gcloud compute backend-services export:
  • customResponseHeader
  • cdnPolicy:
  • cacheMode
  • clientTtl
  • defaultTtl
  • maxTtl

Events

• Added URI support to --target-service of gcloud events triggers create.
• Modify --type flag of gcloud events triggers create to be optional for ApiServerSource.

Kubernetes Engine

• Added --addons=GcePersistentDiskCsiDriver to gcloud container clusters create and --update-addons=GcePersistentDiskCsiDriver to gcloud container clusters update to enable/disable the GCP Compute Persistent Disk Container Storage Interface (CSI) Driver.

Miscellaneous

• Informational messages printed during installation are now printed to stderr, rather than stdout.

Pubsub Emulator

• Added dead letter queue feature to the emulator.

Transcoder

• Promoted gcloud transcoder to beta.

VPC Access

• Added a new subnet flag to gcloud compute networks vpc-access connectors create which can be used to specify a subnet to house the connector rather than specifying network and range flags.
  • If the provided subnet is a shared subnet, the flag subnet-project has been added to specify the host project id.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

320.0.0 (2020-12-08)

AI Platform

• Updated the following command groups to display a choice of available regions if a region hasn't been specified:
  • gcloud ai-platform models
  • gcloud ai-platform versions
  • gcloud ai-platform predict
  • gcloud ai-platform explain Learn more about regional endpoints and see a list of available regions here: https://cloud.google.com/ai-platform/prediction/docs/regional-endpoints.

App Engine

• Updated gcloud beta app instances list and gcloud beta app instances describe to return the auto healer health check (i.e. liveness) for the flexible environment.
• Updated the Java SDK to version 1.9.84. Please visit the following release notes for details: https://cloud.google.com/appengine/docs/java/release-notes.

Assured Workloads

• Change --next-rotation-time and --rotation-period flags of gcloud assured workloads create to be optional.
• Add --provisioned-resources-parent flag to gcloud assured workloads create command.

BigQuery

• Added schema to jobs.query dry run reply.
• Supported bq partition command for HOUR/MONTH/YEAR time partitioning types.
• Supported Avro logical types for creating new external tables.
• Added PARQUET as option for export type. This feature is still experimental.

Cloud Asset Inventory

• Added gcloud asset bulk-export command to beta which enables the user to export GCP resource configurations in Kubernetes Resource Model or Terraform formats.

Cloud Billing

• Promoted gcloud billing budgets to GA.
  • Renamed all-updates-rule-* flags as notifications-rule-* flags in GA.

Cloud Build

• Added flag --no-external-ip to gcloud beta builds worker-pools <create|update> commands.

Cloud Composer

• Added --kms-key-name flag to gcloud beta composer environments command to specify the Customer-managed KMS key name to use for encrypting the Composer environment.

Cloud DNS

• Fixed issue where gcloud dns managed-zones update could not remove labels. This issue can be tracked at https://issuetracker.google.com/issues/171509626.

Cloud Dataproc

• Added --max-failures-total flag to gcloud dataproc jobs submit to allow jobs to be restarted in event of a failure during job execution.

Cloud Filestore

• Removed deprecation warning of --location flag from the gcloud filestore command group.
• Added gcloud filestore operations cancel to cancel a Filestore operation.

Cloud Functions

• Fixed issue where gcloud functions deploy would crash with an AttributeError when provided invalid YAML data. This issue can be tracked at https://issuetracker.google.com/issues/173043502.

Cloud Key Management Service

• Added clie