Google Cloud CLI - Release Notes

Stay organized with collections Save and categorize content based on your preferences.

Copyright 2014-2022 Google Inc. All rights reserved.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

411.0.0 (2022-12-06)

Breaking Changes

  • (Compute Engine) Added rhel-9 and rhel-9-byol options to --os flag for:
    • gcloud compute images import in GA,
    • gcloud compute instances import in GA
    • gcloud compute machine-images import in GA

Google Cloud CLI

  • Added gcloud topic command group to alpha and beta.

App Engine

  • Add --service-account flag of gcloud app create to GA, which allows to create an app with a user-managed service account.
  • Add --service-account flag of gcloud app update to GA, which allows to update the app with a user-managed service account.

App Engine Flexible Environment

  • Add --service-account flag of gcloud app create to GA, which allows to create an app with a user-managed service account.
  • Add --service-account flag of gcloud app update to GA, which allows to update the app with a user-managed service account.

BigQuery

  • Expose enable_resumable_uploads flag in public bq.
  • Formatting fix for bigquery_client.py.
  • Changed "locking" Owned Test Accounts to "getting" to avoid overloading AccountProviderService.
  • Extended api logging to include URIs of requests.
  • Extends encodings supported during file upload.
  • Messages and fails early when the user tries to upload with an invalid schema.
  • Adds support for GOOGLE_CLOUD_QUOTA_PROJECT environment variable.
  • Adds configuration for external accounts using token_uri.
  • Dataset name validation and feedback.

Cloud Bigtable

  • Promoted gcloud bigtable instances tables create to beta and GA.
  • Promoted gcloud bigtable instances tables delete to beta and GA.
  • Promoted gcloud bigtable instances tables update to beta and GA.
  • Added include-stats option to cbt lookup and cbt read commands.
  • Added cbt notices command, which displays licenses covering all direct and indirect dependencies.

Cloud Build

  • Bugfix to enforce limits to be applied after filters.
  • Added --enterprise-config flag to builds triggers create github to support creating GitHub Enterprise trigger.

Cloud Composer

  • Added --enable-scheduled-snapshot-creation to gcloud beta composer environments create/update to enable snapshots of the environment creation according to a schedule. Can be specified for Composer 2.0.32 or greater.
  • Added --snapshot-creation-schedule to gcloud beta composer environments create/update to specify cron expression when snapshots of the environment should be created.
  • Added --snapshot-location to gcloud beta composer environments create/update to specify the Cloud Storage location for storing automatically created snapshots.
  • Added --snapshot-schedule-timezone to gcloud beta composer environments create/update to specify Timezone that sets the context to interpret snapshot_creation_schedule.
  • Added --disable-scheduled-snapshot-creation to gcloud beta composer environments update to disable the automatic snapshots creation.

Cloud Firestore

  • Add apiScope output for Firestore index. ApiScope can be viewed in gcloud firestore indexes composite list and gcloud firestore indexes composite describe.
  • Added databaseId support for Firestore index.

Cloud IDS

  • Added --threat_exceptions flag to exclude certain threat types from being reported.

Cloud Key Management Service

  • Modified gcloud kms import-jobs create to accept new SHA256 import methods rsa-oaep-3072-sha256, rsa-oaep-3072-sha256-aes-256, rsa-oaep-4096-sha256, and rsa-oaep-4096-sha256-aes-256.

Cloud Pub/Sub

  • Promoted --enable-exactly-once-delivery flag of gcloud pubsub subscriptions create to GA.
  • Promoted --enable-exactly-once-delivery flag of gcloud pubsub subscriptions update to GA.

Cloud Run

  • Promoted --execution-environment of gcloud run from beta to GA.
  • Fixed issue where gcloud beta run jobs execute with --wait flag, and other jobs commands to wait for an execution to complete, failed to wait more than 30 minutes.
  • Fixed issue where gcloud beta run integrations delete failed when the associated Cloud Run service is deleted.

Cloud SQL

  • Promoted --timeout flag for gcloud sql instances create to GA.
  • Added --restore-database-name flag to gcloud sql instance clone --point-in-time to support single database PITR restore for SQL Server.

Cloud Services

  • Updated gcloud services list to retry 429 errors.
  • Set the default page size for gcloud services list to 200.
  • Promoted gcloud services api-keys lookup to beta.

Cloud Spanner

  • Added --skip-init flag to gcloud spanner samples run.

Cloud Storage

  • Promoted gcloud storage buckets update retention flags to GA.
    • --default-event-based-hold
    • --retention-period
    • --clear-retention-period
    • --lock-retention-period
  • Promoted gcloud storage buckets update --uniform-bucket-level-access to GA.
  • Rebuilt gcloud-crc32c 1.0.0 on latest version of golang.
  • Updated gsutil component to 5.17.

Compute Engine

  • Added --merge-source-commitment to gcloud compute commitments create for beta and GA.
  • Fixed issue where gcloud compute instance-groups unmanaged list-instances would fail to fall back to the compute/zone property when --zone was missing.
  • Added customRequestHeaders and customResponseHeaders to modifiable fields list in gcloud compute backend-services edit.

Dataproc Metastore

  • Added support for querying and mutating Dataproc Metastore metadata. The following commands have been added to the alpha and beta release tracks:
    • metastore services queryMetadata
    • metastore services alterLocation
    • metastore services moveTableToDatabase

Distributed Cloud Edge

  • Added warning to long running operation metadata of gcloud edge-cloud container cluster create/update when the cluster has a maintenance window configuration that overlaps with other clusters' in the same project.

Firebase Test Lab

  • Added --type=robo flag to gcloud firebase test ios run to support running iOS Robo tests.

GKE Hub

  • Fixed bug in gcloud container fleet and gcloud container hub command groups where a membership with ambiguous location was not given default value global.

Kubernetes Engine

  • Promoted --cluster-dns-scope=cluster flag of gcloud container clusters create and gcloud container clusters update to GA.
  • Promoted --binauthz-evaluation-mode=MONITORING, binauthz-evaluation-mode=MONITORING_AND_PROJECT_SINGLETON_POLICY_ENFORCE, and --binauthz-policy flags of gcloud container clusters create, gcloud container clusters create-auto, and gcloud container clusters update to beta.
  • Corrected outdated description help text of gcloud container node-pools delete.
  • Promoted --placement-type flag for gcloud container clusters create command to GA.
  • Promoted --placement-type flag for gcloud container node-pools create command to GA.
  • Added --async flag to gcloud container node-pools create/update to allow the in-progress operation to be returned, instead of the node pool.
  • Additionally, default formatting for gcloud container node-pools create/update/delete --async has been added to provide a more human-readable format of the operation; potentially impacting parsing of output. It is recommended to use --format when parsing gcloud CLI output.
  • Updates default kubectl from 1.22.14 to 1.23.14.
  • Additional kubectl versions:

    • kubectl.1.20 (1.20.15)
    • kubectl.1.21 (1.21.14)
    • kubectl.1.22 (1.22.15)
    • kubectl.1.23 (1.23.14)
    • kubectl.1.24 (1.24.8)
    • kubectl.1.25 (1.25.4)
  • Added --windows-os-version flag to gcloud container node-pools create/update to allow create Windows node pools using Windows Server LTSC 2022 Containerd node image.

Media CDN

  • Added gcloud edge-cache command group to enable configuration of Media CDN.

Network Connectivity

  • Promoted gcloud network-connectivity internal-ranges command group to GA.

Network Security

  • Promoting networksecurity firewall API to v1beta1.
  • Promoted commands under gcloud network-security org-address-groups and gcloud network-security address-groups to beta.

Recommender

  • Added billing account scope support for gcloud recommender recommender-config describe.
  • Added billing account scope support for gcloud recommender recommender-config update.
  • Added billing account scope support for gcloud recommender insight-type-config describe.
  • Added billing account scope support for gcloud recommender insight-type-config update.

Terraform

  • Added support for environment variables GOOGLE_PROJECT, GOOGLE_CLOUD_PROJECT, GCLOUD_PROJECT in gcloud beta terraform vet.
  • Fixed an issue where gcloud beta terraform vet would fail while trying to format and output pre-formatted error strings.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

410.0.0 (2022-11-15)

Google Cloud CLI

  • Added gcloud topic endpoint-override for details on overriding the default api URL.

AI

  • Added asia-southeast2, europe-central2, and us-south1 options to --region flag of gcloud ai custom-jobs and gcloud ai hp-tuning-jobs.

AlloyDB

  • Introduced the following commands: gcloud beta alloydb clusters create-secondary, gcloud beta alloydb instances create-secondary, gcloud beta alloydb clusters promote.

App Engine

Artifact Registry

  • Update maven and gradle plugin versions to 2.2.0.

Assured Workloads

  • Added SOVEREIGN_CONTROLS_BY_T_SYSTEMS as an option for --partner flag of gcloud assured workloads create command (available for both beta and GA).

Cloud Asset Inventory

  • Promoted gcloud asset query command to GA.

Cloud Bigtable

  • Added stats option to --view flag for bigtable instances tables describe.

Cloud Composer

  • Added --enable-triggerer to gcloud beta composer environments create/update to allow usage of deferrable operators in dags.
  • Added --triggerer-cpu to gcloud beta composer environments create/update to specify CPU allocated to Airflow triggerer.
  • Added --triggerer-memory to gcloud beta composer environments create/update to specify memory allocated to Airflow triggerer.
  • Added --disable-triggerer to gcloud beta composer environments update to disable Airflow triggerer.

Cloud Dataproc

  • Added --async flag to gcloud dataproc jobs kill.

Cloud Datastream

  • Added the max_concurrent_cdc_tasks support to --mysql-source-config and --oracle-source-config flags in gcloud datastream streams.
  • Fixed issue where stream create using a mysql-source-config or oracle-source-config with column level filtering fails to create.

Cloud Functions

  • Fixed issue where gcloud functions list would crash when a 2nd Gen-only region was specified using --regions.
  • Updated gcloud function describe to look up both 1st Gen and 2nd Gen environments for the function. When --gen2 flag is specified, only 2nd Gen functions will be looked up.

Cloud Run

  • Promoted gcloud run services logs read and gcloud run revisions logs read to beta, which reads logs from a selected resource.
  • Promoted gcloud run services logs tail and gcloud run revisions logs tail to beta, which tail logs from a selected resource.
  • Added --execute-now and --wait flags to gcloud beta run job update to immediately execute the job after update and wait for completion.
  • Promoted gcloud beta run integrations command group and all sub-commands to beta.

Compute Engine

  • Promoted --list-managed-instances-results flag for gcloud compute instance-groups managed create and gcloud compute instance-groups managed update to GA.
  • Fixed --network-interface to mark the public IP as None when --no-address is specified.

GKE Hub

  • Fixed issue where gcloud container fleet memberships commands did not output memberships with missing cluster.
  • Fixed bug in gcloud container fleet config-management version where memberships were stuck with version "NA".

Identity and Access Management

  • Added support for retrieving the token introspection endpoint through external account credentials.

Kubernetes Engine

  • Added --labels flag to gcloud container node-pools create/update to allow creating and updating node pools with GCP labels.

VPC Access

  • Promoted gcloud compute networks vpc-access connectors update to beta.
    • Enables updating of min-instances, max-instances and machine-type of already existing vpc-access connectors.

Vmware Engine

  • Added commands for managing resources:
    • Locations
    • Operations
    • VMwareEngine networks
    • Network policies
    • Node types
    • Private clouds
    • Clusters
    • HCX activation keys
    • NSX credentials
    • VCenter credentials
    • Subnets

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

409.0.0 (2022-11-08)

Breaking Changes

  • (Compute Engine) Modified stockout errors to show entire error object to user in yaml format instead of just error message.
  • (Compute Engine) Modified quota exceeded errors to show additional information to user instead of just error message.

Google Cloud CLI

  • Modified gcloud config list to accept both a section name and --all flag. The command will display all the set and unset properties when specifying both.

Anthos Multi-Cloud

  • Added --allow-missing flag to the following command groups: gcloud container aws clusters delete, gcloud container aws node-pools delete, gcloud container azure clients delete, gcloud container azure clusters delete, gcloud container azure node-pools delete, to allow the delete request to succeed, even if the cluster, node-pool or client resource does not exist.

Cloud Composer

  • Added --skip-airflow-overrides-setting to gcloud beta composer snapshots load to allow skipping setting Airflow overrides from the snapshot.
  • Added --skip-environment-variables-setting to gcloud beta composer snapshots load to allow skipping setting environment variables from the snapshot.
  • Added --skip-gcs-data-copying to gcloud beta composer snapshots load to allow skipping copying dags, plugins and data folders from the snapshot.

Cloud Datastream

  • Added the max_concurrent_cdc_tasks support to --mysql-source-config and --oracle-source-config flags in gcloud datastream streams.

Cloud Filestore

  • Fixed issue where --kms-key was being ignored in gcloud filestore backups create command.

Cloud Firestore Emulator

  • Promoted gcloud emulators firestore to GA.
  • Release Cloud Firestore emulator v1.15.1
    • feat: allow users to configure websocket port

Cloud Functions

  • Fixed issue where gcloud functions list would crash when a 2nd Gen-only region was specified using --regions.

Cloud Logging

  • Updated gcloud logging read to accept multiple resources to query using a new --resource-names flag.

Cloud SQL

  • Added the following flags to gcloud sql instances create in BETA:
    • --timeout

Compute Engine

  • Added --split-source-commitment to gcloud compute commitments create for beta and GA.
  • Promoted any-single-zone value support for the flag --target-distribution-shape of gcloud compute instance-groups managed create / update to beta.
  • Added keyword network-attachment for --network-interface in gcloud compute instances create.
  • Promoted --max-run-duration flag of gcloud compute instances create to beta.
    • Allows specifying the duration of time after which the instance will terminate.
  • Promoted --termination-time flag of gcloud compute instances create to beta.
    • Allows specifying the timestamp that the instance will terminate.
  • Added 3 additional accepted values to --enforce-on-key for gcloud compute security-policies rules create|update and promoted it to GA.
  • Promoted gcloud compute network-edge-security-services command group to GA.
  • Promoted --region and '--global' flags of gcloud compute security-policies to GA.
  • Promoted --network-ddos-protection flag of gcloud compute security-policies update to GA.

Distributed Cloud Edge

  • Removed unsupported GPU_TYPE field from gcloud edge-cloud container machines list. This field will be restored once the API provides accurate GPU information.

GKE Hub

  • Fixed a bug where gcloud container fleet memberships get-credentials and gcloud container hub memberships get-credentials would not return an error when the membership argument was left empty.

Kubernetes Engine

  • Corrected outdated description help text of gcloud container node-pools delete.
  • Added --private-endpoint-subnetwork and --enable-google-cloud-access flags to gcloud container clusters create and gcloud container clusters create-auto.
  • Added --enable-google-cloud-access and --enable-private-endpoint flags to gcloud container clusters update.
  • Added --enable-private-nodes flag to gcloud container node-pools create and gcloud container node-pools update.

Notebooks

  • Added gcloud notebooks instances diagnose and gcloud notebooks runtimes diagnose commands to GA. These commands provide access to the AI Platform Notebooks new Diagnose API.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

408.0.1 (2022-11-02)

BigQuery

  • Adds various fixes to PSC environments.
  • Adds support for random forest models as part of BQML.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

408.0.0 (2022-11-01)

Breaking Changes

AI

  • Added more available regions to gcloud ai model-monitoring-jobs.
  • Added --version-description flag to gcloud ai models upload to support setting model version description.

BigQuery

  • Add missing open source licenses.
  • Expose Iceberg for public preview.

Cloud Composer

  • Added --connection-type flag to gcloud beta composer environments create and gcloud composer environments create command to allow forcing the use of VPC peerings for internal communication.

Cloud Deploy

  • Added initial-rollout-labels and initial-rollout-annotations flags to gcloud deploy releases create command.

Cloud SQL

  • Promoted --connector_enforcement flag for gcloud sql instances create and gcloud sql instances patch to GA.

Cloud Storage

  • Updated gsutil component to 5.16.

Compute Engine

  • Promoted --discard-local-ssd flag of gcloud compute instances stop to beta.
  • Promoted --force-update-on-repair flag of gcloud compute instance-groups managed <create | update> to beta.
  • Fixed missing ephemeral IP when neither --address nor --no-address keys are provided with --network-interface flag during instance template creation.

GKE Hub

  • Changed membership-related flags in gcloud container fleet and gcloud container hub command groups to resource arguments, adding --location flag and LOCATION column in list commands.

Kubernetes Engine

  • Promoted --enable-managed-prometheus flag of gcloud container clusters create/update to GA.
  • Promoted --disable-managed-prometheus flag of gcloud container clusters update to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

407.0.0 (2022-10-25)

Breaking Changes

  • (Cloud Run) Now gcloud beta run jobs update command removes existing Binary Authorization breakglass justification if --breakglass flag is not set.
  • (Cloud Run) In gcloud run deploy and gcloud run services update, --set-secrets, --remove-secrets, and --update-secrets flags now support mounting multiple versions of the same secret in the same directory.
  • (Cloud Run)
    • If multiple different secrets are requested to be mounted in the same directory, including for secrets already set on the service in the case of --update-secrets, the operation will now fail instead of silently overriding all secret versions with the last one specified.
  • (Compute Engine) Removed --csek-key-file flag of gcloud beta compute instances resume
    • Removing since instance suspend and resume do not support CSEK
    • If your instance with CSEK protection is suspended, please stop the instance then restart it and file a bug.

Assured Workloads

  • Added ASSURED_WORKLOADS_FOR_PARTNERS as an option for --compliance-regime flag of gcloud assured workloads create command.
  • Added --partner flag (optional) for gcloud assured workloads create command to enable creation of partner workload (workload managed by local trusted partners) through gCloud command.

Cloud DNS

  • Promoted gcloud dns managed-zones get-iam-policy and gcloud dns managed-zones set-iam-policy to GA.

Cloud Dataplex

  • Promoted Content command group to GA.
  • Promoted Environment command group to GA.

Cloud Datastream

  • Added postgresql type to --type flag of datastream connection-profiles <create/update>.
  • Added postgresql type to --postgresql-rdbms-file flag of datastream connection-profiles discover.
  • Added --postgresql-source-config flag to gcloud datastream streams <create/update>.
  • Added postgresql type to --type flag of datastream connection-profiles <create/update>.

Cloud Filestore

  • Added --kms-key flag to gcloud beta filestore backups create, which allows an Enterprise or High Scale backup to be created that is encrypted with a CMEK key." => "which creates a backup with an associated customer-managed encryption key (CMEK). Only available for Enterprise or High Scale tier instances.
  • Added --location flag to gcloud beta filestore instances restore, which restores Enterprise instances." => "restore Basic HDD, Basic SSD, and Enterprise tier instances.
  • Added --instance-location flag to gcloud beta filestore backups create, which accepts either a zone or region and allows clients to create Basic HDD, Basic SSD, and Enterprise tier backups.

Cloud SQL

  • Added the following flags to gcloud sql instances create and gcloud sql instances patch in BETA:
    • --connector_enforcement

Cloud Storage

  • Updated gsutil component to 5.15.

Cloud Workstations

  • Promoted gcloud beta workstations commands to beta for Preview.

Compute Engine

  • Promoted --source-machine-image, --source-machine-image-csek-key-file, and --erase-windows-vss-signature flags of compute instances create to GA.
  • Fixed an issue with --create-disk and --disk flags that causes gcloud compute instance-templates create or gcloud compute instance-templates create-with-container to fail when attaching a boot disk.
  • Promoted --region flag for compute target-tcp-proxies to GA.

Compute Firewall Policies

  • Fixed bug in gcloud compute network-firewall-policies rules update that would cause src-secure-tags to not be updated.

GKE Hub

  • Modified gcloud container fleet memberships register to skip Connect agent installation for GKE clusters by default. Use --install-connect-agent flag to get the old behavior.
  • Modified gcloud container fleet memberships unregister to skip Connect agent uninstallation for GKE clusters by default. Use --uninstall-connect-agent flag to get the old behavior.
  • Added --install-connect-agent flag to gcloud container fleet memberships register and gcloud container hub memberships register to install connect agent on GKE clusters.
  • Added --uninstall-connect-agent flag to gcloud container fleet memberships unregister and gcloud container hub memberships unregister to uninstall Connect agent on GKE clusters.

Identity and Access Management

  • Added gcloud iam policies create which creates a deny policy on the given attachment point with the given name.
  • Added gcloud iam policies delete which deletes a deny policy on the given attachment point with the given name.
  • Added gcloud iam policies get which gets a deny policy on the given attachment point with the given name.
  • Added gcloud iam policies list which lists the deny policies on the given attachment point.
  • Added gcloud iam policies update which updates the deny policy on the given attachment point with the given name.
  • Updated External Account URL validation to allow PSC endpoints.

Kubernetes Engine

  • Added --gateway-api flag to gcloud container clusters create and gcloud container clusters update which allows users to turn on the GKE Gateway controller for their cluster and to select the Gateway API release channel they want to use.

Security Command Center

  • Updated gcloud scc notifications update to allow for project and folder parents.
  • Updated gcloud scc notifications create to allow for project and folder parents.
  • Updated gcloud scc notifications delete to allow for project and folder parents.
  • Updated gcloud scc notifications list to allow for project and folder parents.
  • Updated gcloud scc notifications describe to allow for project and folder parents.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

406.0.0 (2022-10-17)

Breaking Changes

  • (Cloud Storage) Changed "Additional Properties" formatting for ls -L to print condensed JSON object instead of JSON list with key and value keys before every key and value.
  • (Kubernetes Engine) Remove deprecated --istio-config flag of gcloud beta container clusters create and gcloud beta container clusters update.

Anthos Multi-Cloud

  • Promoted --logging flag to gcloud container aws clusters create and gcloud container azure clusters create to update the logging config.
  • Promoted --logging flag to gcloud container aws clusters update and gcloud container azure clusters update to update the logging config.
  • Added --annotations flag to gcloud container azure node-pools create to set the annotations field when creating Azure node pools.
  • Added --annotations flag to gcloud container azure node-pools update to update the annotations of Azure node pools.
  • Added --clear-annotations flag to gcloud container azure node-pools update to clear the annotations of Azure node pools.

Bare Metal Solution

  • Promoted gcloud bms nfs-shares create to GA.
  • Promoted gcloud bms nfs-shares delete to GA.
  • Promoted gcloud bms volumes restore to GA.
  • Promoted gcloud bms volumes snapshot to GA.
  • Promoted gcloud bms volumes snapshots describe to GA.
  • Promoted gcloud bms volumes snapshots list to GA.
  • Promoted gcloud bms volumes snapshots delete to GA.
  • Promoted --add-allowed-client flag of gcloud bms nfs-shares update to GA.
  • Promoted --remove-allowed-client flag of gcloud bms nfs-shares update to GA.
  • Promoted --clear-allowed-clients flag of gcloud bms nfs-shares update to GA.
  • Promoted gcloud bms instances stop to GA.

BigQuery

  • Fixed issue with --api flag in external clients.
  • Added support for the target_job_concurrency flag and begins deprecating the concurrency flag.
  • Added the max_staleness flag for external tables.
  • Added support for SIMPLE with the object_metadata flag.
  • Added ZSTD as an extract option.

Certificate Manager

  • Added gcloud certificate-manager issuance-configs command group to beta. Commands in this group allow for configuring Private Trust certificate issuance.
  • Added --issuance-config flag for gcloud certificate-manager certificates create command to beta. The flag allows configuring managed certificates issuance with Private Trust.

Cloud Access Context Manager

  • Changed --level flag of gcloud access-context-manager cloud-bindings create and gcloud access-context-manager cloud-bindings update to take a string input instead of a resource:
    • No change is required on any previous configurations as a result of this change.

Cloud Datastream

  • Added BigQuery destination type support.

Cloud Firestore Emulator

  • Promoted gcloud emulators firestore to GA.

Cloud SQL

  • Added the following flags to gcloud sql instances create and gcloud sql instances patch for ALPHA:
    • --connector_enforcement

Cloud TPU

  • Promoted --shielded-secure-boot flag of gcloud compute tpus tpu-vm to GA.

Compute Firewall Policies

  • Updated gcloud compute firewall-policies rules create to include help text for src-threat-intelligence, src-fqdns, src-region-codes , src-address-groups, dest-threat-intelligence, dest-fqdns , dest-region-codes and dest-address-groups.
  • Updated gcloud compute firewall-policies rules update to include help text for src-threat-intelligence, src-fqdns, src-region-codes , src-address-groups, dest-threat-intelligence, dest-fqdns , dest-region-codes and dest-address-groups.
  • Updated gcloud compute network-firewall-policies rules create to include help text for src-threat-intelligence, src-fqdns, src-region-codes , src-address-groups, dest-threat-intelligence, dest-fqdns , dest-region-codes and dest-address-groups.
  • Updated gcloud compute network-firewall-policies rules update to include help text for src-threat-intelligence, src-fqdns, src-region-codes , src-address-groups, dest-threat-intelligence, dest-fqdns , dest-region-codes and dest-address-groups.
  • Promoted --src-address-groups and --dest-address-groups flags to beta in gcloud compute firewall-policies rules create , gcloud compute firewall-policies rules update , gcloud compute network-firewall-policies rules create and gcloud compute network-firewall-policies rules update commands.
  • Promoted --src-fqdns and --dest-fqdns flags to beta in gcloud compute firewall-policies rules create , gcloud compute firewall-policies rules update , gcloud compute network-firewall-policies rules create and gcloud compute network-firewall-policies rules update commands.

Kpt

Kubernetes Engine

  • Promoted the GKE add-on BackupRestore of gcloud container clusters <create|update> to GA. This add-on is disabled by default.
    • Use --addons=BackupRestore to enable the add-on during cluster creation.
    • Use --update-addons=BackupRestore=ENABLED|DISABLED to enable/disable the add-on for existing GKE clusters.

Managed Active Directory

  • Promoted gcloud active-directory domains extend-schema to GA.

Network Security

  • Updated gcloud network-security address-groups list to include the TYPE, CAPACITY and USAGE columns in the output.
  • Updated gcloud network-security org-address-groups list to include the TYPE, CAPACITY and USAGE columns in the output.

Security Command Center

  • Updated gcloud scc notifications update to allow for project and folder parents.
  • Updated gcloud scc notifications create to allow for project and folder parents.
  • Updated gcloud scc notifications delete to allow for project and folder parents.
  • Updated gcloud scc notifications list to allow for project and folder parents.

405.0.1 (2022-10-14)

GKE Hub

  • Updated gke-gcloud-auth-plugin to 0.4.0.

Cloud Bigtable

  • Updated the version of cbt to v1.12.1.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

405.0.0 (2022-10-04)

Google Cloud CLI

  • Fixed issue where revoking impersonated ADC credentials caused a crash.
  • Fixed issue where it was not possible to set a logging configuration when creating a regional backend service in alpha and beta.

Anthos Multi-Cloud

  • Added --tags flag to gcloud container aws clusters update to update the tags assigned to control plane replicas.
  • Added --clear-tags flag to gcloud container aws clusters update to clear the tags assigned to control plane replicas.

App Engine

Artifact Registry

  • Automatically creates missing repos for gcloud beta artifacts settings enable-upgrade-redirection command.

Batch

  • Promoted gcloud batch to GA track.

Cloud Dataplex

  • Updated gcloud dataplex tasks create to support scheduling notebooks.

Cloud Firestore

  • Promoted gcloud firestore fields ttls command group to GA.

Cloud Spanner

  • Promoted gcloud spanner instance-configs [create|update|delete] to GA.

Cloud SQL

  • Promoted --time-zone flag of gcloud sql instances create command to GA.
  • Provided a helpful error message when Cloud SQL Proxy fails to start during gcloud sql connect command.

Cloud Run

  • Added gcloud beta run jobs replace to deploy a job from yaml.

Compute Engine

  • Added ubuntu-2204 and windows-11-x64-byol options to --os flag for:
    • gcloud compute images import in GA,
    • gcloud compute instances import in GA
    • gcloud compute machine-images import in GA
  • Updated gcloud compute instance-templates create not to crash if instantiate-from value is not specified in --configure-disk when using --source-instance flag.
  • Promoted --md5-authentication-key flag of gcloud compute routers add-bgp-peer to GA.
  • Promoted --md5-authentication-key and --clear-md5-authentication-key flags of gcloud compute routers update-bgp-peer to GA.

Firebase Test Lab

  • Delayed displaying information about the number of devices used until after all executions are created.

Identity and Access Management

  • Fixed an issue that would cause the Google Cloud CLI to crash when using invalid External Account Credentials.

Kubernetes Engine

  • Added a prompt when passing --enable-binauthz to gcloud container clusters update that acknowledges the current version of Binary Authorization will be downgraded.
  • Promoted --enable-cost-allocation flag of gcloud container clusters create to GA.
  • Promoted --enable-cost-allocation flag of gcloud container clusters update to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

404.0.0 (2022-09-27)

App Engine

Assured Workloads

  • Promoted gcloud assured workloads violations commands to GA. This command provides the ability to create new Assured Workloads environment resources.

Batch

  • Improved error message formats for gcloud batch jobs submit unparsable json config file, gcloud batch jobs describe job and gcloud batch tasks describe task that does not exist.
  • Added new batch/location property that can be used to set a default location. To set the properties, run gcloud config set batch/location LOCATION.

BigQuery

  • Add support for storage_billing_model flag for datasets.
  • Allow users to log in with pluggable-auth based external account credentials.
  • Add support for configuring the access token lifetime for service account impersonation when using external account credentials.
  • Add session support for load jobs.

Cloud Asset Inventory

  • Added --saved-analysis-query option to gcloud asset analyze-iam-policy, which runs a saved analysis query when specified.
  • Added gcloud asset saved-queries commands, which creates, retrieves, updates and deletes saved queries in a specified project, folder or organization.

Cloud Memorystore

  • Added --maintenance-version flag to gcloud beta redis instances update to allow updating a maintenance version when updating an instance.

Cloud Storage

  • Added storage/key_store_path property for encryption/decryption keys.
  • Updated gsutil component to 5.14.

Compute Engine

  • Promoted --region for gcloud compute ssl-policies to GA.

Eventarc

  • Updated gcloud eventarc triggers list to return the locations of triggers.

Identity and Access Management

  • Fixed bug that occurs when switching external account credentials.

Kubernetes Engine

  • Adds new kubectl v1.25 for GKE rapid channel.
  • Removes old kubectl v1.19.
  • Updates default kubectl from 1.22.12 to 1.22.14.
  • Additional kubectl versions:
    • kubectl.1.20 (1.20.15)
    • kubectl.1.21 (1.21.14)
    • kubectl.1.22 (1.22.14)
    • kubectl.1.23 (1.23.11)
    • kubectl.1.24 (1.24.5)
    • kubectl.1.25 (1.25.1)

Managed Active Directory

  • Added support for gcloud beta active-directory domains migration for enabling existing domain migration.

Policy Troubleshooter

  • Updated gcloud policy-troubleshoot iam beta and GA Command to use V2Alpha1 API.

Stackdriver Monitoring

  • Added --validate-only flag to gcloud monitoring dashboards create to allow validating dashboards without saving.

Terraform

  • Fixed issue where http proxy environment variables were not used in gcloud beta terraform vet.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

403.0.0 (2022-09-20)

Breaking Changes

  • (Assured Workloads) Removed AU_REGIONS_AND_US_SUPPORT as compliance regime options for gcloud assured workloads create command.
  • (Assured Workloads) Removed messages related to 'Versioning' as they should not be used externally.
  • (Assured Workloads) Removed v1beta1 messages from v1 api and vice-versa.
  • (Assured Workloads) Updated violation acknowledge api to POST Request.

Google Cloud CLI

  • Fixed issue where MTLS endpoints were not used when use_client_certificate was true.
  • Fixed issue where gcloud auth application-default set-quota-project would fail if serviceusage.services.use permission was revoked from the active project.
  • Added bundled Python 3 as a default component on x86_64 component-based Linux installs. The bundled Python 3 interpreter will be preferred over the system Python interpreter when invoking the gcloud command-line tool.
    • The bundled Python 3 interpreter should work on supported Linux systems, but a different interpreter can be specified by setting the CLOUDSDK_PYTHON environment variable. See gcloud topic startup and https://cloud.google.com/sdk/docs/install#linux for more information.

AI

  • Added gcloud beta api indexes remove-datapoints and gcloud beta api indexes upsert-datapoints to support Matching Engine steaming update.

AlloyDB

  • Added support to specify automated backup policy in gcloud beta alloydb clusters create.
  • Updated gcloud beta alloydb clusters create to support PITR (point in time recovery) configuration via new --disable-pitr and --pitr-log-retention-window flags.

Artifact Registry

  • Fixed a bug where the plus sign ("+") was not escaped properly, making it impossible to delete artifacts with a plus sign in their version.

Batch

  • Improved error message formats for gcloud batch jobs submit unparsable json config file, gcloud batch jobs describe job and gcloud batch tasks describe task that does not exist.

BigQuery

  • Expose object_metadata for private preview.
  • Improve error message for unparseable parameters.

Binauthz

  • Updated gcloud container binauthz attestations list to also return occurrences in cases where the artifact-url does not begin with https.

Cloud DNS

  • Added Location flag to Cloud DNS Managed Zones, Response Policies GA commands. This flag can be specified to target Cloud DNS Zonal Servers.

Cloud Dataproc

  • Fixed issue where gcloud beta dataproc sessions list would hang when large numbers of sessions are present.

Cloud Deploy

  • Added new --from-run-manifest to gcloud deploy releases create command. When used, a Skaffold file will be generated using the Cloud Run manifest.

Cloud Run

  • Added --encryption-key-shutdown-hours flag to gcloud beta run deploy and gcloud beta run services update to set the number of hours to wait before an automatic shutdown server after CMEK key revocation is detected.
  • Added --clear-encryption-key-shutdown-hours flag to gcloud beta run deploy and gcloud beta run services update to clear the CMEK key shutdown hours setting.

Compute Engine

  • Updated gcloud compute instance-templates create to throw error if --machine-type/--labels flags are used with --source-instance.
  • Promoted --compression-mode flag to gcloud compute backend-services <create | update> to GA.
  • Promoted --compression-mode flag to gcloud compute backend-buckets <create | update> to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

402.0.0 (2022-09-13)

Breaking Changes

  • (Google Cloud CLI) The gcloud command-line tool no longer overrides the scheme specified in the https_proxy environment variable. Previously, the scheme was silently ignored and the gcloud command-line tool would always attempt to connect to the proxy via HTTP, even if the proxy server URL specified HTTPS.
    • Note that the gcloud command-line tool does not currently support connecting to proxies via HTTPS (nor did it previously).
    • If attempting to connect to an HTTP proxy results in warnings or errors, ensure that the https_proxy environment variable looks like http://... as opposed to https://....
    • See https://cloud.google.com/sdk/docs/proxy-settings#proxy_configuration for more information.
  • (Batch) Deprecated positional argument TASK_GROUP of gcloud batch tasks list.
  • (Batch) Use --job as the required flag instead.

Anthos Multi-Cloud

  • Added --annotations flag to gcloud container aws node-pools create to set the annotations field when creating AWS node pools.
  • Added --annotations flag to gcloud container aws node-pools update to update the annotations of AWS node pools.
  • Added --clear-annotations flag to gcloud container aws node-pools update to clear the annotations of AWS node pools.

Batch

  • Updated --config flag to support job configs from Here Doc.

Cloud Dataproc

  • Fixed issue where gcloud dataproc batches list would hang when large numbers of batches are present.

Cloud Deploy

  • Added gcloud deploy targets redeploy command to redeploy a release to a given target.
  • Added gcloud deploy rollouts retry-job, gcloud deploy job-runs list, and gcloud deploy job-runs describe commands for Deployment Verification Public Preview.

Cloud Run

  • Fixed issue where job-level labels are not propagated to its execution.
  • Added last updated message to gcloud beta run jobs describe output.

Cloud Storage

  • Updated gsutil component to 5.13.
  • Promoted gcloud storage to GA.

Compute Engine

  • Added -iam-policyand-iam-policy-bindingstogcloud compute backend-services` for GA.
  • Added gcloud compute security-policies rules add-preconfig-waf-exclusion|remove-preconfig-waf-exclusion in alpha and beta.

Config Connector

GKE Hub

  • Added new argument to the following commands:
    • gcloud container hub mesh update --management automatic.
    • gcloud container fleet mesh update --management automatic.

Identity and Access Management

  • Added support for executable-sourced external account credentials.
  • Added support for configuring the access token lifetime for service account impersonation when using external account credentials.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

401.0.0 (2022-09-07)

Google Cloud CLI

  • Added warning message to indicate support for Python 2 will soon be deprecated.

AlloyDB

  • Added --view flag to gcloud alpha alloydb instances describe to get the view of AlloyDB instance. --view=BASIC will be the same response as describe instance without this flag, and --view=FULL for read pool instance will list the details of each node in the pool.

Anthos Multi-Cloud

  • Added --description flag to gcloud container aws clusters update to update the description of AWS clusters.
  • Added --clear-description flag to gcloud container aws clusters update to clear the description of AWS clusters.
  • Added --annotations flag to gcloud container aws clusters update to update the annotations of AWS clusters.
  • Added --clear-annotations flag to gcloud container aws clusters update to clear the annotations of AWS clusters.
  • Added --description flag to gcloud container azure clusters create to set the description field when creating Azure clusters.
  • Added --annotations flag to gcloud container azure clusters create to set the annotations field when creating Azure clusters.
  • Added --description flag to gcloud container azure clusters update to update the description of Azure clusters.
  • Added --clear-description flag to gcloud container azure clusters update to clear the description of Azure clusters.
  • Added --annotations flag to gcloud container azure clusters update to update the annotations of Azure clusters.
  • Added --clear-annotations flag to gcloud container azure clusters update to clear the annotations of Azure clusters.

Cloud Run

  • Added execution log URI to gcloud beta run jobs executions describe output.

Compute Engine

  • Promoted --snapshot-type flag of gcloud compute snapshots create to GA.
  • Added --json-custom-content-types for gcloud compute security-policies update, and promoted it to beta and GA.
  • Promoted --guest-os-features flag of gcloud compute images import to GA.
  • Promoted gcloud compute firewall-rules migrate to beta.
  • Added --share-setting and --share-with flags to gcloud compute sole-tenancy node-groups create|update for GA.
  • Added --share-settings flag to gcloud compute sole-tenancy node-groups list for GA.
  • Added --node-project flag to gcloud compute instances create for GA.

Network Management

  • Added cloudFunction argument for source in gcloud network-management connectivity-tests. This allows the user to run tests using Cloud Function endpoint types as source.

Stackdriver Logging

  • Promoted the following commands to beta and GA:

    • gcloud logging copy
    • gcloud logging settings get
    • gcloud logging settings update
    • gcloud logging operations cancel
    • gcloud logging operations describe
    • gcloud logging operations list
  • Promoted --bucket-name flag of gcloud logging metrics to beta and GA.

  • Promoted --cmke-kms-key-name flag of gcloud logging buckets to beta and GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

400.0.0 (2022-08-30)

Breaking Changes

  • (Anthos Multi-Cloud) Removed aws/location property of gcloud container aws. Use container_aws/location to set the default Google Cloud location for gcloud container aws.
  • (Anthos Multi-Cloud) Removed azure/location property of gcloud container azure. Use container_azure/location to set the default Google Cloud location for gcloud container azure.

Anthos Multi-Cloud

  • Added --description flag to gcloud container aws clusters create to set the description field when creating AWS clusters.
  • Added --annotations flag to gcloud container aws clusters create to set the annotations field when creating AWS clusters.

App Engine

  • Use java17 as the default runtime for generated configuration. This is a behavior change with the command gcloud app deploy when there is no app.yaml configuration for Java projects (Maven, or Gradle, or simple jar). Instead of using a java11 runtime target, the application will be deployed now on a java17 runtime with a F2 instance class. If you want to stay on a java11 runtime, just create a simple app.yaml file with runtime: java11 in it.

Artifact Registry

  • Fixed issue where gcloud artifacts repositories create requires excessive permission when a kms key is supplied.

BigQuery

  • Add support for specifying vertex_ai_model_id when in the BigQuery ML update model AI.
  • Add support for preserving embedded Ascii Control characters in CSV External tables.
  • Add support for serving_default signature when exporting BigQuery trained Tensorflow models.
  • Add support for reference file schema for AVRO, PARQUET, and ORC formats.
  • Add support for BigSpark routines.
  • Fix bug when api flag is used within a restricted network.
  • Add support metadata_cache_mode and max_staleness for Query Acceleration on BigLake tables.
  • Add support for BigSpark connections.

Cloud Asset Inventory

  • Added gcloud beta asset query.
  • Added --read-time, --start-time, --end-time, --bigquery-dataset, --bigquery-table, and --write-disposition flags to support point-in-time/range queries and export to BigQuery.

Cloud Run

  • Changed the link in gcloud beta run jobs execute output to the UI of the resulted execution instead of its logging UI.
  • Added elapsed time to gcloud beta run jobs executions describe output. This is between execution creation timestamp and execution completion timestamp.

Cloud Spanner

  • Added --database-role flag to gcloud spanner databases to support role-based access control in Cloud Spanner.
  • Added gcloud beta spanner databases roles list to list all roles in Cloud Spanner database.

Config Connector

Kubernetes Engine

  • Added --logging-variant flag to gcloud container clusters create, gcloud container clusters update, gcloud container node-pools create and gcloud container node-pools update that allow users to set the logging variant used in the cluster or in the node pools. Selecting logging variant is available in clusters with version 1.24.2-gke.300+. --logging_variant is used to choose the desired logging agent that is deployed on GKE nodes. Valid options are MAX_THROUGHPUT and DEFAULT. For more details about configuring the logging agent to achieve desired throughput, see http://cloud/stackdriver/docs/solutions/gke/managing-logs#throughput.

Secret Manager

  • Added --update-annotations flag to gcloud secrets update and gcloud secrets beta update to enable the addition of new annotations to secret versions.
  • Added --remove-annotations flag to gcloud secrets update and gcloud secrets beta update to enable the removal of annotations to secret versions.
  • Added --clear-annotations flag to gcloud secrets update and gcloud secrets beta update to enable the clearing of all annotations from a secret.
  • Added --set-annotations flag to gcloud secrets create and gcloud secrets beta create to enable the setting of annotations on new secrets.
  • Added --out-file flag to gcloud secrets versions access and gcloud beta secrets versions access to directly get the output in file.

Terraform

  • Added support for the following resources in CAI-based policies:
    • google_cloudfunctions2_function_iam_binding
    • google_cloudfunctions2_function_iam_member
    • google_cloudfunctions2_function_iam_policy
    • google_gke_hub_membership_iam_binding
    • google_gke_hub_membership_iam_member
    • google_gke_hub_membership_iam_policy
  • TF -> CAI resource conversion compiled against google provider version 4.33.0.
  • Fixed asset names for the following resources:
    • google_compute_backend_service_iam
    • google_compute_instance_iam
    • google_compute_region_backend_service_iam
    • google_privateca_certificate_template_iam
  • Added support for organizations/unknown in CAI-based policy match parameters.
  • Enabled support for non-Google Terraform resources in TF-based policies.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

399.0.0 (2022-08-23)

AlloyDB

  • Added --cluster flag to gcloud beta alloydb operations list to enable listing of operations pertaining to a given cluster.
  • Updated gcloud beta alloydb clusters restore to support PITR (point in time recovery) via new --source-cluster and --point-in-time flags.

App Engine

Cloud Asset Inventory

  • Added gcloud asset get-effective-iam-policy command, which retrieves batch effective IAM policies for a specified list of resources within specified accessible scope.

Cloud Dataflow

  • Added GO to gcloud flex-template build command SDK Language options, allowing users to submit Go Flex Template jobs.

Cloud Functions

  • Move Python 3.10 for Cloud Functions to GA.

Cloud Org Policy

  • Added gcloud org-policies {custom constraint} commands that allow users to create, update, list, describe, and delete org policy custom constraints.
  • gcloud org-policies set-custom-constraint
  • gcloud org-policies describe-custom-constraint
  • gcloud org-policies delete-custom-constraint
  • gcloud org-policies list-custom-constraints.

Cloud SQL

  • Set the maximum allowed value for --storage-auto-increase-limit in gcloud beta sql instances create to the max value of int. This removes the hardcoded limit of 10230.

Cloud Spanner

  • Promoted gcloud spanner samples to beta and GA. Commands in this group support creating sample databases and running open source sample applications.
  • Added --instance-type, --expire-behavior flags to spanner instances create and spanner instances update to add ability to create free instances in GA.
  • Added instance_type column for spanner instances list and free_instance_availability column for spanner instance-configs list.

Compute Engine

  • Promoted --architecture flag of gcloud compute disks create to GA.
  • Promoted --update-architecture flags of gcloud compute disks update to GA.
  • Promoted --clear-architecture flags of gcloud compute disks update to GA.
  • Promoted --architecture flag of gcloud compute images create and gcloud compute disks update to GA.

Network Services

  • Promoted gcloud network-services tls-routes to GA.

Notebooks

  • Added notebooks runtimes command group which provides access to AI Platform Notebooks' runtimes.

Transfer

  • Added multipart copy feature to agent setup flags.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

398.0.0 (2022-08-16)

AI

  • Promoted --autoscaling-metric-specs flag of gcloud ai endpoints deploy-model to GA.
  • Added --encryption-kms-key-name flag to gcloud ai endpoints create and gcloud beta ai endpoints create.

Artifact Registry

  • Updated gcloud artifacts docker images describe and gcloud artifacts docker images list to return occurrences of any Grafeas kind.
  • Added gcloud artifacts repositories set-cleanup-policy to set a cleanup policy on a repository.
  • Added gcloud artifacts repositories list-cleanup-policy to list cleanup policies on a repository.
  • Added gcloud artifacts repositories delete-cleanup-policy to delete cleanup policies on a repository.

Cloud DNS

  • Added support for the ALIAS record set type to beta. ALIAS record sets can be created/modified using --type flag in gcloud beta dns record-sets command group.

Cloud Dataproc

  • Fixed issue where gcloud dataproc clusters enable-personal-auth-session-session did not successfully inject credentials.

Cloud Deploy

  • Added support for absolute paths for "--skaffold-file flag of gcloud deploy releases create commmand".

Cloud Memorystore

  • Promoted --customer-managed-key flags of gcloud redis instances create to GA.

Cloud Run

  • Promoted --cpu-boost flag to beta.

Cloud SQL

  • Added --deletion-protection flag to gcloud sql instances create and gcloud sql instances patch in alpha, beta and GA to provide Cloud SQL instances with protection against accidental deletion.

Cloud Spanner

  • Updated default timeout for gcloud spanner databases execute-sql to 10 minutes.

Cloud Storage

  • Updated gsutil component to 5.12.

Compute Engine

  • Deprecated --load-balancing-scheme, --network, --subnet, and --subnet-region arguments of gcloud compute forwarding-rules set-target.
  • Promoted --resource-policies flag for glcloud compute reservations createto beta.
  • Promoted --region and --global flags for gcloud compute url-maps invalidate-cdn-cache and gcloud compute url-maps list-cdn-cache-invalidations to GA.
  • Added region information to gcloud compute health-checks list output.
  • Deprecated --no-serve-while-stale argument of gcloud compute [backend-services|backend-buckets] [create|update].
  • Promoted --architecture flag of gcloud compute instances create and gcloud compute instanceTemplates create to GA.

Eventarc

  • Updated WARNING text for trigger creation from 10 minutes to 2 minutes.

Network Services

  • Promoted gcloud network-services gateways to GA.
    • Promoted gcloud network-services meshes to GA.
    • Promoted gcloud network-services tcp-routes to GA.
    • Promoted gcloud network-services grpc-routes to GA.
    • Promoted gcloud network-services http-routes to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

397.0.0 (2022-08-09)

Breaking Changes

  • (Cloud Datastore) Deprecated gcloud datastore database create. Use gcloud alpha firestore database update --type=datastore-mode instead.
  • (Cloud Firestore) The gcloud firestore database create will be required to administer your database. Please enable the API and ensure you have the required permissions. See https://cloud.google.com/firestore/docs/app-engine-requirement.
  • (Cloud Firestore) gcloud firestore database create will no longer support App Engine regions (us-central, europe-west). See https://cloud.google.com/firestore/docs/locations for available regions.

AI

  • Added --request-response-logging-table and --request-response-logging-rate flags to gcloud ai endpoints create|update to allow config prediction endpoint request-response logging.

Artifact Registry

  • Added gcloud artifacts versions describe command.
  • Added gcloud artifacts settings to describe/modify project settings.

Batch

  • Modified gcloud batch jobs list to use --location as an optional flag.

Cloud DNS

  • Update record-sets create and update methods for health checked routing policies.

Cloud Datastore Emulator

  • Release Cloud Datastore emulator v2.2.2
    • Fixed bug which caused failures when attempting to Export.

Cloud Identity-Aware Proxy

  • Promoted host based flags to GA for surfacesgcloud compute ssh,gcloud compute scp and gcloud compute start-iap-tunnel.

Cloud Run

  • Added Startup Probe and Liveness Probe fields to the output of gcloud run services describe [SERVICE].

Compute Engine

  • Added 'network-firewall-policyand 'network-regional-firewall-policy to TYPE column of 'compute instances network-interfaces get-effective-firewalls` output.

Config Connector

Terraform

  • Added support for the following resources in CAI-based policies:
    • google_artifact_registry_repository_iam_binding
    • google_artifact_registry_repository_iam_member
    • google_artifact_registry_repository_iam_policy
    • google_bigquery_connection_iam_binding
    • google_bigquery_connection_iam_member
    • google_bigquery_connection_iam_policy
    • google_cloud_tasks_queue_iam_binding
    • google_cloud_tasks_queue_iam_member
    • google_cloud_tasks_queue_iam_policy
    • google_cloudiot_registry_iam_binding
    • google_cloudiot_registry_iam_member
    • google_cloudiot_registry_iam_policy
    • google_compute_backend_bucket_iam_binding
    • google_compute_backend_bucket_iam_member
    • google_compute_backend_bucket_iam_policy
    • google_compute_snapshot_iam_binding
    • google_compute_snapshot_iam_member
    • google_compute_snapshot_iam_policy
    • google_dataproc_autoscaling_policy_iam_binding
    • google_dataproc_autoscaling_policy_iam_member
    • google_dataproc_autoscaling_policy_iam_policy
    • google_dataproc_metastore_service_iam_binding
    • google_dataproc_metastore_service_iam_member
    • google_dataproc_metastore_service_iam_policy
  • TF -> CAI resource conversion compiled against google provider version 4.30.0.
  • Resources without a known project, folder, or organization will have their ancestry set to organizations/unknown instead of throwing a 403 error that halts validation.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

396.0.0 (2022-08-02)

AI

  • Added --labels flag to gcloud ai models upload to support setting labels. Use --labels flag to set metadata to organize your models and model versions. Label keys and values can be no longer than 64 characters (Unicode codepoints), can only contain lowercase letters, numeric characters, underscores and dashes. International characters are allowed. See https://goo.gl/xmQnxf for more information and examples of labels.

Cloud Identity-Aware Proxy

  • Promoted gcloud iap tcp dest-groups to GA.

Cloud Logging

  • Promoted --index flag of gcloud logging buckets create to GA.
  • Promoted --clear-indexes flag of gcloud logging buckets update to GA.
  • Promoted --remove-indexes flag of gcloud logging buckets update to GA.
  • Promoted --add-index flag of gcloud logging buckets update to GA.
  • Promoted --update-index flag of gcloud logging buckets update to GA.

Compute Engine

  • Promoted --maintenance-interval flag of gcloud compute commitments create to beta.

Compute OS Config

  • Promoted gcloud compute os-config troubleshoot to GA.
    • Troubleshoot common issues with VM Manager.

Config Connector

Database Migration

  • Fixed issue where creation of a migration job in a project inside a VPC-SC perimeter constantly failed.
  • Fixed issue where creation of a connection profile in a project inside a VPC-SC perimeter constantly failed.

Identity Groups

  • Fixed issue where gcloud identity groups create will fail when specifying --group-type=security.

Identity and Access Management

  • Added --service-account-token-lifetime-seconds flag to gcloud iam <workforce-pools|workload-identity-pools> create-cred-config command to allow configuring the access token lifespan for service account impersonation.

Recommender

  • Added support for gcloud recommender recommender-config describe.
  • Added support for gcloud recommender recommender-config update.
  • Added support for gcloud recommender insight-type-config describe.
  • Added support for gcloud recommender insight-type-config update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

395.0.0 (2022-07-26)

AI

  • Modified gcloud ai models upload to support model version aliases. Use --version-aliases flag to set version aliases so that a model version can be referenced via alias (i.e. projects/{project}/locations/{location}/models/{model_id}@{version_alias} instead of auto-generated version id (i.e. projects/{project}/locations/{location}/models/{model_id}@{version_id}). The format is [a-z][a-zA-Z0-9-]{0,126}[a-z0-9] to distinguish from version_id. The aliases set in the flag will replace the aliases set in the model.

App Engine

Artifact Registry

  • Added gcloud artifacts packages describe command.

Cloud Deploy

  • Added new --from-k8s-manifest to releases create command. When used, a Skaffold file will be generated.

Cloud Domains

  • Implemented the following commands for gcloud domains registrations in alpha and beta.
    • import
    • list-importable-domains

Cloud Functions

  • Updated gcloud functions list to return 2nd gen functions in addition to 1st gen functions.
  • Fixed crash in gcloud beta functions deploy --gen2 failures causing the error message "This stage does not belong to this progress tracker".
  • Promoted --gen2 flag of gcloud functions add-iam-policy-binding to GA.
  • Promoted --gen2 flag of gcloud functions call to GA.
  • Promoted --gen2 flag of gcloud functions delete to GA.
  • Promoted --gen2 flag of gcloud functions deploy to GA.
  • Promoted --gen2 flag of gcloud functions describe to GA.
  • Promoted --gen2 flag of gcloud functions get-iam-policy to GA.
  • Promoted --gen2 flag of gcloud functions remove-iam-policy-binding to GA.
  • Promoted --gen2 flag of gcloud functions set-iam-policy to GA.
  • Promoted --gen2 flag of gcloud functions event-types list to GA.
  • Promoted --gen2 flag of gcloud functions logs read to GA.
  • Promoted --gen2 flag of gcloud functions regions list to GA.
  • Promoted gcloud functions add-invoker-policy-binding to GA.
  • Promoted gcloud functions remove-invoker-policy-binding to GA.

Cloud Healthcare

  • Added --schema-type value analytics_v2 to gcloud healthcare fhir-stores export bq.

Cloud Identity-Aware Proxy

  • Renamed flag --group-name to --dest-group forgcloud iap tcp dest-groups IAM commands.

Cloud Pub/Sub

  • Fixed issue where gcloud pubsub subscriptions create and gcloud pubsub subscriptions update will crash when specifying --min-retry-delay=0 and/or --max-retry-delay=0.
  • Fixed issue where gcloud pubsub subscriptions create will crash when specifying --retention_duration=0.

Cloud Run

  • Added --description flag in gcloud run deploy, and description field in gcloud run services describe [SERVICE].
    • Description is an optional, human-readable string of up to 512 characters.
    • Using the flag is functionally equivalent to adding service annotation "run.googleapis.com/description".

Compute Engine

  • Added --update-user-licenses and --clear-user-licenses flags of gcloud compute images update to alpha and beta.
  • Made global scope the default for gcloud compute security-policies.

Config Controller

  • Added --man-blocks flag to gcloud anthos config controller create to allow specifying multiple master authorized network CIDR blocks for a CC instance.
  • Deprecated --man-block flag of gcloud anthos config controller create. Use --man-blocks to set master authorized network CIDR block.
  • Modified gcloud anthos config controller list to print out only the instance name instead of the fully specified name.
  • Added --full-name flag to gcloud anthos config controller list to allow users printing out the fully specified name in the NAME column when needed.

GKE Hub

  • Promote gcloud container hub memberships generate-gateway-rbac to GA.

Kubernetes Engine

  • Add cgroupMode node system config option to allow switching nodes to cgroupv1 or cgroupv2.
  • Updates default kubectl from 1.22.9 to 1.22.12
  • Additional kubectl versions:
    • kubectl.1.19 (1.19.16)
    • kubectl.1.20 (1.20.15)
    • kubectl.1.21 (1.21.14)
    • kubectl.1.22 (1.22.12)
    • kubectl.1.23 (1.23.9)
    • kubectl.1.24 (1.24.3)

Pubsub Emulator

  • Added support for creating BigQuery subscriptions.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

394.0.0 (2022-07-19)

AI

  • Modified gcloud ai models describe to support model versioning.
  • Added europe-west9 option to --region flag of gcloud ai custom-jobs and gcloud ai hp-tuning-jobs.
    • Provide the model version ID or version alias to retrieve a specific version of the model.
    • If no model version ID or alias is specified, the "default" model version will be used. The "default" version alias is created for the first version of the model, and can be moved to other versions later on. There will be exactly one default version.
  • Added gcloud ai models delete-version which deletes an existing Vertex AI model version.

Anthos Multi-Cloud

  • Added --ssh-public-key flag to gcloud container azure node-pools update to update the SSH public key for the Azure node pool nodes.

Artifact Registry

  • Fixed a bug where the plus sign ("+") was not escaped properly, making it impossible to delete artifacts with a plus sign in their name.

Bare Metal Solution

  • Started using v2.projects.locations.operations instead of v1.operations for the following commands:
    • gcloud bms instances start
    • gcloud bms instances reset
    • gcloud bms instances disable-serial-console
    • gcloud bms instances enable-serial-console
    • gcloud bms instances update
    • gcloud bms networks update
    • gcloud bms nfs-shares update
    • gcloud bms volumes update
    • gcloud bms volumes restore
    • gcloud bms operations describe
    • gcloud bms operations wait
  • Promoted --os-image flag of gcloud bms instances update to GA.
  • Promoted --[no-]enable-hyperthreading flag of gcloud bms instances update to GA.
  • Promoted --add-ip-range-reservation flag of gcloud bms networks update to GA.
  • Promoted --clear-ip-range-reservations flag of gcloud bms networks update to GA.
  • Promoted --remove-ip-range-reservation flag of gcloud bms networks update to GA.
  • Promoted gcloud bms networks list-ip-reservations to GA.

Batch

  • Promoted gcloud batch to alpha and beta which enables the CLI to use Batch APIs.

Cloud Deploy

  • Changed the default bucket name upload path on release create to use the pipeline UUID.
  • Added mutex flags --enable-initial-rollout and --disable-initial-rollout.

Cloud Key Management Service

  • Modified gcloud kms import-jobs create to accept new SHA-2 import methods rsa-oaep-3072-sha256, rsa-oaep-3072-sha256-aes-256, rsa-oaep-4096-sha256, and rsa-oaep-4096-sha256-aes-256 in beta.

Cloud SQL

  • Added support for incremental addition of user password policies.

Cloud Storage

  • Updated gsutil component to 5.11.

Compute Engine

  • Added --layer7-ddos-defense-auto-deploy-load-threshold, --layer7-ddos-defense-auto-deploy-confidence-threshold, --layer7-ddos-defense-auto-deploy-impacted-baseline-threshold, and --layer7-ddos-defense-auto-deploy-expiration-sec to gcloud compute security-policies update to gcloud beta compute security-policies update.
  • Promoted flags --enable-strong-affinity of gcloud compute backend-services create and gcloud compute backend-services update to GA.

Google Cloud CLI

  • Replaced the default login flow when a browser is not detected from --no-browser to --no-launch-browser.

Identity and Access Management

  • Removed etag flag from gcloud beta iam policies update command. The command will always use the etag in the policy file.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

393.0.0 (2022-07-12)

Breaking Changes

  • (AlloyDB) Updated gcloud beta alloydb instances create and gcloud beta alloydb instances update to remove the unused --zone flag.
  • (Cloud Datastore Emulator) Removed support for running the Datastore emulator (gcloud beta emulators datastore start) in environment with Java versions prior to 11. Users can upgrade to Java 11 or above to continue using the latest Datastore emulator. Alternatively, users can use gcloud command-line tool with version before 392.0.0 to continue using the previous Datastore emulator with Java 8 support.
  • (Cloud Firestore Emulator) Removed support for running the Firestore emulator (gcloud beta emulators firestore start) in environment with Java versions prior to 11. Users can upgrade to Java 11 or above to continue using the latest Firestore emulator. Alternatively, users can use gcloud command-line tool with version before 392.0.0 to continue using the previous Firestore emulator with Java 8 support.

AI

  • Added gcloud ai models delete-version which delete an existing Vertex AI model version.
  • Modified gcloud ai models upload to support model versioning. Use --parent-model flag to specify the parent model of the model version to be uploaded. When this flag is specified, a new version of the parent model will be uploaded. Use --model-id flag to specify the model ID for the uploaded model.
  • Fixed an issue for gcloud ai custom-jobs create that the value of the --args and --command flags are not passed when the --worker-pool-spec flag is left unspecified.

AlloyDB

  • Updated gcloud beta alloydb instances create and gcloud beta alloydb instances update to allow --cpu-count of 2.

Artifact Registry

  • Fixed issue where gcloud artifacts packages delete requires the package id unescaped.

Cloud Dataproc

  • Added bootDiskKmsKey key in --pools flag to gcloud dataproc clusters gke create to allow creating Dataproc on GKE cluster with CMEK protected node pool.

Cloud Datastream

  • Added --bigquery-destination-config flag to gcloud datastream streams <create/update>.
  • Added bigquery type to --type flag of datastream connection-profiles <create/update>.

Cloud Deploy

  • Added optional flags --labels and --annotations for users to add labels or annotations to apply to gcloud deploy targets rollback command.

Cloud Firestore Emulator

  • Release Cloud Firestore emulator v1.14.4
    • Fix: Condition Normalization now correctly handles cartesian products and flattening in certain edge cases.

Cloud Functions

  • Promoted --docker-registry flag of gcloud functions deploy to GA.
  • Move PHP 8.1 for Cloud Functions to GA.
  • Added gcloud functions runtimes list which displays the supported runtimes for both 1st & 2nd generation functions.

Cloud Key Management Service

  • Promoted --wrapped-key-file flag of gcloud kms keys versions import to GA.
  • Deprecated --rsa-aes-wrapped-key-file flag of gcloud kms keys versions import. Use --wrapped-key-file instead.

Cloud Memorystore

  • Promoted --persistence-mode, --rdb-snapshot-period and --rdb-snapshot-start-time flags of gcloud redis instances create to GA.
  • Promoted --persistence-mode, --rdb-snapshot-period and --rdb-snapshot-start-time flags of gcloud redis instances update to GA.

Cloud SQL

  • Added flag --password-policy-enable-password-verification to gcloud sql users create and gcloud sql users set-password-policy for MySQL password validation.
  • Added flags --discard-dual-password and --retain-password to gcloud sql users set-password to allow control over MySQL's dual password.

Cloud Speech API

  • Added latest_short and latest_long options for gcloud ml speech <recognize | recognize-long-running> --model flag.

Cloud TPU

  • Updated tpus tpu-vm ssh to return an error when users attempt to ssh into a TPU VM during a maintenance event.

Compute Engine

  • Promoted --target-distribution-shape flag of gcloud compute instances bulk create to GA.
  • Promoted --key-revocation-action-type flag to GA for gcloud compute instance-templates create.
  • Promoted explicit scope requirement for gcloud compute security-policies to beta.
  • Promoted --network-ddos-protection flag of gcloud compute security-policies create to beta.
  • Promoted gcloud compute network-edge-security-services to beta.
  • Promoted --key-reservation-action-type flag to GA for gcloud compute instances create.
  • Promoted keyRevocationActionType property of gcloud compute instances update-from-file to GA.

Compute Firewall Policies

  • Promoted --src-region-codes and --dest-region-codes flags to beta in gcloud compute firewall-policies rules create , gcloud compute firewall-policies rules update , gcloud compute network-firewall-policies rules create and gcloud compute network-firewall-policies rules update commands.
  • Promoted --src-threat-intelligence and --dest-threat-intelligence flags to beta in gcloud compute firewall-policies rules create , gcloud compute firewall-policies rules update , gcloud compute network-firewall-policies rules create and gcloud compute network-firewall-policies rules update commands.

Config Connector

Config Controller

  • Added --man-blocks flag to gcloud anthos config controller create to allow specifying multiple master authorized network CIDR blocks for a CC instance.
  • Deprecated --man-block flag of gcloud anthos config controller create. Use --man-blocks to set master authorized network CIDR block.

Kubernetes Engine

  • Added --binauthz-evaluation-mode flag to gcloud container clusters create command.
  • Added --binauthz-evaluation-mode flag to gcloud container clusters create-auto command.
  • Added --binauthz-evaluation-mode flag to gcloud container clusters update command.
  • Added --total-max-nodes and --total-min-nodes to gcloud container cluster/node-pools create/update that allow users to set total size limits for autoscaled nodepools. The limits are available in clusters with version 1.24+.
  • Added --location-policy to gcloud container cluster/node-pools create/update that allow users to set location policy for autoscaled nodepools. The location policy is available in clusters with version 1.24.1-gke.800+.

Transcoder

  • added support for --labels flag when creating a new job/job template.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

392.0.0 (2022-06-28)

Anthos Multi-Cloud

  • Added --iam-instance-profile flag to gcloud container aws clusters update and gcloud container aws node-pools update to update the name or ARN of the IAM instance profile associated with control plane or node pool.
  • Added --ssh-public-key flag to gcloud container azure clusters update to update the SSH public key for the Azure control plane.
  • Added --logging flag to gcloud container aws clusters update and gcloud container azure clusters update to update the logging config.

App Engine

Certificate Authority Service

  • Added --unconstrained-chain-length flag to gcloud privateca subordinates create to allow creation of a subordinate CA with unconstrained chain length.
  • Added --unconstrained-chain-length flag to gcloud privateca roots create to allow creation of a root CA with unconstrained chain length.
  • Added --unconstrained-chain-length flag to gcloud privateca certificates create to allow creation of a CA with unconstrained chain length.

Certificate Manager

  • Promoted gcloud certificate-manager to GA.
  • Allowed using project number in gcloud certificate-manager commands.

Cloud Bigtable

  • Promoted gcloud bigtable instances tables undelete to beta and GA.
  • Added --autoscaling-storage-target flags to gcloud bigtable clusters create for alpha, beta and GA to let users create autoscaling clusters with configurable storage target.
  • Added key autoscaling-storage-target to --cluster-config flag of gcloud bigtable instances create for alpha, beta and GA to let users create autoscaling clusters with configurable storage target.
  • Added --autoscaling-storage-target flag to gcloud bigtable clusters update for alpha, beta and GA to let users configure autoscaling storage target when updating clusters.

Cloud Deploy

  • Added new command gcloud deploy releases abandon to prevent new rollouts on a Cloud Deploy release.
  • Added suspended field to the Delivery Pipeline resource. If this field is set, activity on a pipeline is prevented. The field can be set or unset in the Delivery Pipeline definition, and then applied using gcloud deploy apply.

Cloud TPU

  • Fixed an issue with connection to TPU VMs when the 'compute.disableGuestAttributesAccess' Organization Policy Constraint is enforced.

Compute Engine

  • Added --list-managed-instances-results flag to gcloud beta compute instance-groups managed create and gcloud beta compute instance-groups managed update.
  • Promoted --certificate-map of 'compute target-https-proxies insert|update` to GA.
  • Promoted --certificate-map of 'compute target-ssl-proxies insert|update` to GA.

Dataproc Metastore

  • Promoted --network-config-from-file and --consumer-subnetworks flag to gcloud beta metastore services create to specify the subnetworks from which the Dataproc Metastore service can be accessed to GA.

Eventarc

  • Added gcloud eventarc google-channels command group.
  • Added gcloud eventarc channels update command to configure crypto keys on a channel.
  • Added --crypto-key flag to gcloud eventarc channels create to configure crypto keys on a new channel.

Google Cloud CLI

  • Updated login flow initiated by gcloud auth login --no-launch-browser and gcloud auth application-default login --no-launch-browser to address a security issue.

Kubernetes Engine

  • Promoted --enable-cost-allocation flag of gcloud container clusters create to beta.
  • Promoted --enable-cost-allocation flag of gcloud container clusters update to beta.
  • Renamed --enable-cost-management flag of gcloud container clusters create to --enable-cost-allocation.
  • Renamed --enable-cost-management flag of gcloud container clusters update to --enable-cost-allocation.
  • Added --stack-type and --ipv6-access-type arguments to gcloud container clusters create command to support dual stack GKE clusters.

Terraform

  • Added support for the following resources in CAI-based policies:
    • google_access_context_manager_access_policy
  • TF -> CAI resource conversion compiled against google provider version 4.24.0.
  • Fixed the ancestry used for resources that do not exist within a project. Users may need folders.get access to folders that have resources included in the plan.
  • Simplified converter error messages and added resource address.
  • Added support for ancestries/excludedAncestries match parameters for CAI-based constraints.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

391.0.0 (2022-06-22)

Breaking Changes

  • (Anthos Multi-Cloud) Removed --instance-type flag of gcloud container aws node-pools update to disable updating the EC2 instance type of node pool nodes.

Assured Workloads

  • Added ITAR as compliance regime options for gcloud assured workloads create command.

Cloud Dataflow

  • Added a --force flag to gcloud dataflow jobs cancel which forcibly cancels (leaking VMs) Dataflow jobs that are stuck on normal cancellation.

Cloud Filestore

  • Enable Filestore High-Scale tier for GA.

Cloud Identity-Aware Proxy

  • Promoted flags for host based connetion for command gcloud compute start-iap-tunnel to beta.
  • Promoted gcloud iap oauth-brands surface to GA.
  • Promoted gcloud iap oauth-clients surface to GA.

Cloud SQL

  • Promoted SQL Server Audit to GA.

Compute Engine

  • Updated gcloud compute networks subnets list-usable list format to include PSC and IPv6 fields.

Dataproc Metastore

  • Added support for managing Dataproc Metastore Federation. The following commands have been added to the alpha, beta and GA release tracks:

    • metastore federations create
    • metastore federations delete
    • metastore federations describe
    • metastore federations get
    • metastore federations list
    • metastore federations update
  • Added support for managing IAM policy for Dataproc Metastore Federation. The following commands have been added to the GA release track:

    • metastore federations get-iam-policy
    • metastore federations set-iam-policy
    • metastore federations add-iam-policy-binding
    • metastore federations remove-iam-policy-binding

Identity and Access Management

  • Added --executable-command flag to gcloud iam workload-identity-pools create-cred-config command to allow executable sourced credentials.

Managed Active Directory

  • Adding support for gcloud beta active-directory domains extend-schema for initiating schema extension on domain.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

390.0.0 (2022-06-14)

Access Approval

  • Added gcloud access-approval requests invalidate to invalidate an existing approval.

BigQuery

  • Add support for partitioning_type with --time_partitioning_type flag in Scheduled Queries when a schedule is specified by --schedule in bq query.
  • Added support for showing table clone info in bq show.
  • Added support for both Workload and Workforce identity federation.
  • Added --max_time_travel_hours flag to bq mk.
  • Added --autodetect_schema flag to bq update.
  • Added flag --preserve_ascii_control_characters to bq load to allow ASCII Control chars.
  • Updated the comment on --restore flag in bq cp to reflect that it's deprecated.
  • Added support for dataset tags.
  • Minor bug fixes and dependency updates.
  • Add --federated_app_client_id and --federated_azure flags to mk command.
  • Add --federated_app_client_id flag to update command.
  • Add support for LOAD DATA query.

Cloud Dataproc

  • Added --metric-sources, --metric-overrides and --metric-overrides-file flags to gcloud beta dataproc clusters create to allow clusters to be created with a metric sources specified, override specific set of metrics using a list or a file as an input.
  • Added --metric-sources, --metric-overrides and --metric-overrides-file flag to gcloud beta dataproc workflow-templates set-managed-cluster to allow managed clusters created with a metric sources specified, override specific set of metrics using a list or a file as an input.
  • Modified gcloud dataproc clusters export to remove un-importable fields on Dataproc on GKE clusters.

Cloud Firestore

  • Added gcloud beta firestore fields ttls command group.

Cloud Pub/Sub

  • Fixed issue where gcloud --format=json beta pubsub subscriptions pull --auto-ack and gcloud --format=json alpha pubsub subscriptions pull --auto-ack output was backwards incompatible. This issue can be tracked at https://issuetracker.google.com/issues/222551623.

Cloud Run

  • Added --description flag in gcloud beta run deploy, and description field in gcloud beta run services describe [SERVICE].
    • Description is an optional, human-readable string of up to 512 characters.
    • Using the flag is functionally equivalent to adding service annotation "run.googleapis.com/description".

Compute Engine

  • Promoted network-firewall-policies command group to GA.
  • Promoted gcloud compute instances create --visible_core_count to beta.

Config Connector

Kubernetes Engine

  • Added --enable-confidential-nodes to gcloud container cluster create to enable cluster creation with nodes on Confidential VM. Added --enable-confidential-nodes flag to gcloud container node-pools create/update to allow creating node-pools with confidential nodes, and updating existing node pools to confidential nodes.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

389.0.0 (2022-06-07)

Anthos Multi-Cloud

  • Added --instance-type flag to gcloud container aws node-pools update to update the EC2 instance type of node pool nodes.

Artifact Registry

  • Added new command gcloud artifacts files list to list files in a specific repository.

Cloud Composer

  • Added --enable-master-authorized-networks and --master-authorized-networks flags to gcloud composer environments create command.
  • Added --enable-master-authorized-networks and --disable-master-authorized-networks and --master-authorized-networks to gcloud composer environments update command.
  • Added --enable-ip-masq-agent flag to gcloud composer environments create command to enable IP address masquerading in the GKE cluster.

Cloud DNS

  • Add setIamPolicy and getIamPolicy commands in beta.

Cloud Filestore

  • Add support for Filestore's multi-share instances to gcloud beta filestore instances list. CAPACITY_GB will show the instance's capacity for multi-share instances instead of an empty string. FILE_SHARE_NAME will show "N/A" for multi-share instances instead of an empty string.

Cloud Identity-Aware Proxy

  • Promoted gcloud iap tcp dest-groups command group to beta.

Cloud Run

  • Promoted --session-affinity of gcloud run to beta.

Cloud SQL

  • Add command gcloud sql generate-login-token to generate down-scoped OAuth2 access tokens for IAM database authentication.

Compute Engine

  • Modified --ssl-certificates flag to be optional in gcloud compute target-https-proxies create.
  • Updated the documentation for --mtu flag of compute networks create|update.
  • Updated the validation for --enable-logging and --logging-sample-rate flags of beta compute backend-services create|update.
  • Updated the documentation for --logging-sample-rate flag of compute backend-services create|update.

Config Connector

Database Migration

  • Renamed --sync flag to --no-async flag to gcloud database-migrate migration-jobs create command to wait for the migration job creation operation to be completed before proceeding.
  • Added --no-async flag to gcloud database-migrate migration-jobs update command to wait for the migration job updation operation to be completed before proceeding.
  • Updated gcloud database-migration connection-profiles create cloudsql to support the flag root-password.
  • Added --no-async flag to gcloud database-migrate migration-jobs create command to wait for the connection profile creation operation to be completed before proceeding.

Kpt

  • Updated kpt from v1.0.0-beta.13 to v1.0.0-beta.15. See https://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.15 for more details.
  • The kpt fn commands now includes Kptfile and functionConfig in the function input by default. Previously this behavior was controlled using --enable-meta-resources command-line flag. --enable-meta-resources flag is also deprecated. If this disrupts any of your config workflow, you can use exclude functionality to exclude resources from function inputs. This functionality was added in this release to minimize the disruption.
  • The kpt website is overhauled to reflect the new scope of kpt project. New components package orchestrator, Configuration as Data UI and Config Sync are added to the project.
  • Added package orchestrator (a.k.a. porch) CLI interface under alpha subgroup (kpt alpha rpkg, kpt alpha repo, kpt alpha sync).
  • Added command-line flag --save to kpt fn eval to save evaluated function to package's Kptfile.
  • Added capability to select resources using labelSelector and annotationSelector in kpt fn eval and kpt fn render.
  • Added capability to exclude resources in kpt fn eval and kpt fn render.
  • Added support for variant constructor pattern in kpt pkg init and kpt pkg get.
  • Added capability to execute functions in a kubernetes cluster using porch.

Kubernetes Engine

  • Added podPidLimits kubelet config option which controls per pod pid limits to gcloud container clusters create, gcloud container node-pools create, and gcloud container node-pools update.
  • Updates default kubectl from 1.21 to 1.22.
  • Additional kubectl versions:
    • kubectl.1.19 (1.19.16)
    • kubectl.1.20 (1.20.15)
    • kubectl.1.21 (1.21.13)
    • kubectl.1.22 (1.22.9)
    • kubectl.1.23 (1.23.6)
    • kubectl.1.24 (1.24.0)

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

388.0.0 (2022-06-01)

Google Cloud CLI

  • Added Cloud SQL OAuth scope to Application Default Credential.

AI

  • Fixed issue where unspecified --network and --service-account flags of gcloud ai hp-tuning-jobs create mistakenly overrode the corresponding values set via --config flag.

Apigee

  • Promoted gcloud apigee operations to beta.

Bare Metal Solution

  • Updated gcloud bms instances list to also return the IP addresses of instances that do not use the default network template.

Cloud Bigtable

  • Removed NAME column output from bigtable hot-tablets list.

Cloud Datastore Emulator

  • Release Cloud Datastore Emulator version 2.2.1
    • Fixes --firestore_in_datastore_mode flag parsing.

Cloud Deploy

  • Fixed issue where gcloud deploy targets rollback redeployed to the current release instead of rolling back to the previous release. This occurred in cases where the name of the release to rollback to was not provided.

Cloud Functions

  • Added --gen2 support for --set-secrets, --update-secrets, --remove-secrets and --clear-secrets flags of gcloud functions deploy to beta, alpha.

Cloud On Demand Scanning

  • Fixed issue where scanning for Maven vulnerabilities would occasionally fail.

Compute Engine

  • Promoted network-firewall-policies command group to GA.

Config Connector

Database Migration

  • Added --sync- flag to gcloud database-migrate migration-jobs create command to wait for the migration job creation operation to be completed before proceeding.

Kubernetes Engine

  • Added podPidLimits kubelet config option which controls per pod pid limits to gcloud container clusters create, gcloud container node-pools create, and gcloud container node-pools update.
  • Updated the following GA commands to support IAM Conditions:
    • gcloud beta attestors get-iam-policy outputs conditions associated with each binding.
    • gcloud beta attestors set-iam-policy accepts policies with conditional bindings.
    • gcloud beta attestors <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.
    • gcloud beta policy get-iam-policy outputs conditions associated with each binding.
    • gcloud beta policy set-iam-policy accepts policies with conditional bindings.
    • gcloud beta policy <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.

Terraform

  • Added support for the following resources in CAI-based policies:
    • google_access_context_manager_access_policy_iam_binding
    • google_access_context_manager_access_policy_iam_member
    • google_access_context_manager_access_policy_iam_policy
    • google_endpoints_service_consumers_iam_binding
    • google_endpoints_service_consumers_iam_member
    • google_endpoints_service_consumers_iam_policy
    • google_privateca_certificate_template_iam_binding
    • google_privateca_certificate_template_iam_member
    • google_privateca_certificate_template_iam_policy
  • TF -> CAI resource conversion compiled against google provider version 4.20.0.
  • Added output of logs based on configuration of log level.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

387.0.0 (2022-05-24)

Anthos Multi-Cloud

  • Fixed issue where gcloud container aws clusters get-credentials --private-endpoint and gcloud container azure clusters get-credentials --private-endpoint commands do not work for clusters in a project different from the default project.

Cloud Composer

  • Added --enable-privately-used-public-ips flag to gcloud composer environments create command to enable using privately used public IP address ranges feature in the GKE cluster.

Cloud Dataproc

  • Added --properties-file flag to gcloud beta dataproc jobs submit.

Cloud Deploy

  • Fixed gcloud deploy releases <create|promote> and gcloud deploy targets rollback to support --format flag.

Cloud Functions

  • - Added --trigger-event-filters-path-pattern flag to gcloud beta functions deploy.

Cloud Pub/Sub

  • Added --bigquery-table, --write-metadata, --use-topic-schema, and --drop-unknown-fields flags to gcloud pubsub subscriptions create to set BigQuery configuration options in Cloud Pub/Sub subscriptions.
  • Added --bigquery-table, --write-metadata, --use-topic-schema, --drop-unknown-fields, and --clear-bigquery-config flags to gcloud pubsub subscriptions update to update BigQuery configuration options in Cloud Pub/Sub subscriptions.

Compute Engine

  • Added 22.04 to allowed list of values for --version of gcloud beta compute instances ops-agents policies [create|update].
  • Promoted delete command of gcloud compute instance-groups managed all-instances-config to beta.
  • Promoted update command of gcloud compute instance-groups managed all-instances-config to beta.
  • Promoted --region for gcloud compute ssl-policies to beta.
  • Promoted --region flag for gcloud compute target-tcp-proxies to beta.
  • Added --target-distribution-shape flag to gcloud compute instances bulk create to specify shape of distribution in regional bulk insert for alpha and beta.

Config Connector

Eventarc

  • Added gcloud eventarc audit-logs-provider command group.

Stackdriver Monitoring

  • Promoted gcloud monitoring metrics-scopes command group to beta.

Terraform

  • Added support for the following resources in CAI-based policies:
    • google_access_context_manager_access_policy_iam_binding
    • google_access_context_manager_access_policy_iam_member
    • google_access_context_manager_access_policy_iam_policy
    • google_endpoints_service_consumers_iam_binding
    • google_endpoints_service_consumers_iam_member
    • google_endpoints_service_consumers_iam_policy
    • google_privateca_certificate_template_iam_binding
    • google_privateca_certificate_template_iam_member
    • google_privateca_certificate_template_iam_policy
  • TF -> CAI resource conversion compiled against google provider version 4.20.0.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

386.0.0 (2022-05-17)

Google Cloud CLI

  • Added Cloud SQL OAuth scope to gcloud auth login.

Anthos Identity Service

  • Promoted gcloud container hub identity-service to GA.
  • Promoted gcloud container fleet identity-service to GA.

App Engine

  • Promoted --service-account flag of gcloud app deploy to GA.

App Engine Flexible Environment

  • Promoted --service-account flag of gcloud app deploy to GA.

Cloud Build

  • Add --include-logs-with-status flag to gcloud triggers create.

Cloud Composer

  • Improve error message in case of lacking permissions in gcloud composer environments storage * delete commands.

Cloud IAM

  • Added gcloud iam workload-identity-pools create-saml and gcloud iam workload-identity-pools update-saml commands to manage SAML workload identity pool providers.

Cloud Memorystore

  • Promoted support for maintenance windows in gcloud memcache to GA.
  • Promoted the command gcloud memcache reschedule-maintenance to GA.

Cloud Run

  • Modified gcloud run services describe to include session affinity configuration.

Cloud SQL

  • Changed the prompt generated by --prompt-for-password for gcloud sql users set-password from Instance Password: to New Password:, since set-password command changes a database user's password, not the instance's password.
  • Setting max-login-attempts will also set enable-password-verification to true.

Compute Engine

  • Promoted --service-bindings flag of gcloud compute backend-services create|update commands to GA.
  • Promoted gcloud compute backend-services add-service-bindings and gcloud compute backend-services remove-service-bindings commands to GA.
  • Promoted --provisioning-model and --instance-termination-action flags of gcloud compute instances set-scheduling to GA.
  • Promoted sole tenancy flags of gcloud compute instances update to GA.
  • Added --network-performance-configs flag to gcloud compute instances bulk create.
  • Promoted --disable-automate-dns-zone flag of gcloud compute forwarding-rules create to GA.
  • Promoted --stack-type flag to GA for gcloud compute networks peeerings <create|update>.
  • Added windows-2022 & windows-2022-byol options to --os flag for:
    • gcloud compute images import in GA,
    • gcloud compute instances import in GA
    • gcloud compute machine-images import in GA

Config Connector

Database Migration

  • Updated gcloud database-migration migration-jobs create command to create a migration job without any connectivity method (if connectivity isn't specified).
  • Added gcloud database-migration migration-jobs create --static-ip command to create a migration job with static IP connectivity. This was the default behavior.
  • Added gcloud database-migration migration-jobs update --static-ip command to update a migration job with static IP connectivity.

Distributed Cloud Edge

  • Added --clear-maintenance-window flag to gcloud edge-cloud container clusters update which removes the maintenance window setting of a cluster.
  • Updated gcloud edge-cloud container clusters node-pools list to make specifying a parent cluster optional. When --cluster is not specified, all node pools are listed.

Managed Active Directory

  • Promoted gcloud active-directory domains backups and gcloud active-directory domains restore to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

385.0.0 (2022-05-10)

Google Cloud CLI

  • Updated bundled Python executable for Windows to Python 3.9.12.

AI

  • Added --anomaly-cloud-logging flag to gcloud ai model-monitoring-jobs create|update to allow logging anomaly to Cloud Logging.

Anthos Multi-Cloud

  • Added --ssh-ec2-key-pair flag to gcloud container aws clusters update and gcloud container aws node-pools update to update the name of the EC2 key pair to login into control plane or node pool nodes.
  • Added --clear-ssh-ec2-key-pair flag to gcloud container aws clusters update and gcloud container aws node-pools update to clear the EC2 key pair to login into control plane or node pool nodes.

Cloud Run

  • Fixed issue where some commands were missing from gcloud beta run jobs.

Cloud SQL

  • Added --enable-password-policy flag to gcloud sql instances create and gcloud sql instances patch for GA.

Compute Engine

  • Promoted --key-revocation-action-type flag to beta for gcloud compute instance-templates create.
  • Promoted keyRevocationActionType flag of gcloud compute instances update-from-file to beta.
  • Added FIXED_STANDARD to allowed list of values for --default-network-tier flag.

Config Controller

  • Updated output of gcloud anthos config controller create to not include the default Config Connector identity upon creation.

Eventarc

  • Added gcloud eventarc channels group to interact with third-party sources.
  • Added gcloud eventarc channel-connections for event providers to create association with the user channel.
  • Added --channel argument to gcloud eventarc triggers create to specify associated channel.

Network Services

  • Promoted gcloud network-services service-bindings to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

384.0.1 (2022-05-05)

Cloud Storage

  • Updated gsutil component to 5.10. Google Cloud CLI version 384.0.0 included an older gsutil component (version 5.6) in deb, rpm, and snap packages. Version 384.0.1 includes gsutil component version 5.10 in the deb, rpm, and snap packages.

384.0.0 (2022-05-03)

Cloud Datastore Emulator

  • Adds --use-firestore-in-datastore-mode flag to gcloud [alpha|beta] emulators datastore start command.

Cloud Resource Manager

  • Promoted --condition flag to GA for the following commands:
    • gcloud resources-manager tags keys <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
    • gcloud resources-manager tags values <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
    • gcloud resources-manager tags bindings <create|delete|list>
    • gcloud resources-manager tags holds <create|delete|list>

Cloud Run

  • Promoted gcloud beta run jobs command group and all sub-commands to beta.

Cloud Storage

  • Updated gsutil component to 5.10.

Compute Engine

  • Started showing error messages on use of gcloud compute ssl-certificates create with --domains and --region flags together. Previously --region flag was being ignored.
  • Promoted --md5-authentication-key flag of gcloud compute routers add-bgp-peer to beta.
  • Promoted --md5-authentication-key and --clear-md5-authentication-key flags of gcloud compute routers update-bgp-peer to beta.
  • Updated import and export schemas for gcloud compute backend-services.
  • Promoted --key-reservation-action-type flag to beta for gcloud compute instances create.

Config Connector

GKE Hub

  • Fix a bug that RBAC policy produced by generate-gateway-rbac command could be removed unexpectedly.
  • Promoted the following commands to GA:
    • gcloud container hub mesh update.
    • gcloud container fleet mesh update.

Kubernetes Engine

  • Promoted fields gpu-sharing-strategy and max-shared-clients-per-gpu within --accelerator flag to enable GPU sharing support.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

383.0.1 (2022-04-26)

Google Cloud CLI

  • Added back --[no-]launch-browser in gcloud auth login and gcloud auth application-default login. --no-browser is the preferred and more secure auth flow in comparison.
  • Added back --console-only and --no-launch-browser in gcloud init. Use --no-browser as the replacement.

383.0.0 (2022-04-26)

Breaking Changes

  • (Google Cloud CLI) Removed --[no-]launch-browser in gcloud auth login and gcloud auth application-default login. Use --no-browser as the replacement.
  • (Google Cloud CLI) Removed --console-only and --no-launch-browser in gcloud init. Use --no-browser as the replacement.
  • (Compute Engine) Removed --local-ssd=size=SIZE from gcloud beta compute instances create-with-container due to the parameter being nonfunctional.

AI

  • Modified --region flag of gcloud ai endpoints to include new online prediction regions.
  • Modified --region flag of gcloud ai models to include new online prediction regions.

Access Approval

  • Added gcloud access-approval service-account get which retrieves the service account that is used by Access Approval to access KMS keys for signing approved approval requests.

App Engine

  • Enables build environment variables to be set in app.yaml.

Artifact Registry

  • Added new command gcloud artifacts files list to list files from a specified project and repository.

Cloud DNS

  • Modified gcloud dns managed-zones update to allow detaching all networks from a private zone by setting --networks to an empty string.
  • Modified gcloud beta dns managed-zones update to allow detaching all GKE clusters from a private zone by setting --gkeclusters to an empty string.
  • Modified gcloud beta dns managed-zones update to allow updating the GKE clusters or networks bound to a private zone independently by setting only --gkeclusters or --networks.

Cloud Datastore Emulator

  • Release Cloud Datastore Emulator version 2.2.0
    • Adds a flag to support Cloud Firestore in Datastore mode product mode in the emulator.

Cloud Firestore Emulator

  • Released Cloud Firestore emulator v1.14.3.
    • Fixed exports throwing BufferOverflowException.

Cloud IAM

  • Service Accounts SignJwt promoted to GA command.

Compute Engine

  • Changed the default value of --image-family flag to debian-11 for gcloud compute instances create and gcloud compute instance-templates create commands.

Config Connector

Config Controller

  • Let gcloud anthos config controller create print the default Config Connector identity, to allow easier subsequent permission grant.
  • Added gcloud anthos config controller get-config-connector-identity which prints the default Config Connector identity, to allow easier subsequent permission grant.

Identity and Access Management

  • Added --enable-imdsv2 flag to gcloud iam workload-identity-pools create-cred-config command to include AWS token Url to the credential source while generating AWS credentials config file.

Kubernetes Engine

  • Added --node-labels, --node-taints and --tags flags to gcloud container node-pools update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

382.0.0 (2022-04-19)

Access Approval

  • Added --active_key_version flag to gcloud access-approval settings update to set the crypto key version to use for signing approval requests.

Anthos Multi-Cloud

  • Added --proxy-secret-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing a proxy configuration.
  • Added --proxy-secret-version-id flag to gcloud container aws node-pools update to update the version ID of the AWS Secrets Manager secret containing a proxy configuration.
  • Added --clear-proxy-config flag to gcloud container aws node-pools update to clear the proxy configuration associated with the node pool.

Apigee

  • Fixed issue where gcloud beta apigee archives list would only list the first 25 archive deployments, even if more existed in the environment.

Binauthz

  • Updated the following beta commands to better support IAM Conditions:
    • gcloud beta attestors get-iam-policy outputs conditions associated with each binding.
    • gcloud beta attestors set-iam-policy accepts policies with conditional bindings.
    • gcloud beta attestors <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.
    • gcloud beta policy get-iam-policy outputs conditions associated with each binding.
    • gcloud beta policy set-iam-policy accepts policies with conditional bindings.
    • gcloud beta policy <add|remove>-iam-policy-binding accepts conditional bindings via new --condition and --condition-from-file flags.

Cloud Composer

  • Enabled nested Airflow commands for Airflow 1.10.14 and 1.10.15 in gcloud composer environments run.

Cloud Logging

  • Added --location, --bucket, and --view flags to gcloud logging logs list to add the ability to limit the results to a view.

Cloud TPU

  • Promoted gcloud compute tpus tpu-vm to GA. Commands in this group allow creation and management of Cloud TPU VMs.

Compute Engine

  • Added INTERNAL as a choice for --ipv6-access-type flag in compute networks subnets create and compute networks subnets update.
  • Promoted unspecified value for --protocol flag of gcloud compute backend-services <create|update> to GA.
  • Promoted l3_default value for --ip-protocol flag of gcloud compute forwarding-rules create to GA.

Config Connector

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

381.0.0 (2022-04-12)

App Engine

Artifact Registry

  • *Added repository size to gcloud artifacts repositories describe and gcloud artifacts repositories list responses to GA.

Cloud Bigtable

  • Added "pretty-print" formatting to cbt lookup and cbt read commands. Column encodings and types can be provided using a YAML file, which is passed to the commands using format-file argument.
  • Added "keys-only" filtering to cbt lookup and cbt read commands by providing keys-only=true argument.
  • Promoted gcloud bigtable hot-tablets list to beta and GA.

Cloud Dataflow

  • Added --image-repository-username-secret-id, --image-repository-password-secret-id and --image-repository-cert-path flags to gcloud dataflow flex-template build command to allow users to provide credentials to pull template images from private registries.

Cloud Dataproc

  • Promoted gcloud dataproc clusters gke create to GA.

Cloud Datastream

Cloud Firestore Emulator

  • Release Cloud Firestore emulator v1.14.2
    • Fix: transaction expires after 270s or 60s window
    • Fix: dead transaction reused bug
    • Fix: deadlock for up to 30s. #2452

Cloud Healthcare

  • Added --schema-type value analytics_v2 to the following command gcloud beta healthcare fhir-stores export bq.
  • Added --resource-type flag to gcloud healthcare fhir-stores export bq and gcloud healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
  • Added --since flag to gcloud healthcare fhir-stores export bq and gcloud healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Spanner

  • Added --processing-units flag to spanner instances create and spanner instances update to add ability to create granular instances in GA.

Cloud Storage

  • Updated gsutil component to 5.9.

Compute Engine

  • Added --region flag for updating Regional Target HTTPS Proxies via gcloud compute target-https-proxies import.
  • Changed the list format field label of gcloud compute networks subnets list to include updated IPv6 fields.
  • Added --provisioning-model and --instance-termination-action flags to gcloud compute instances set-scheduling surface for beta.
  • Updated gcloud compute instances set-scheduling documentation to include --no-preemptible flag.

Config Connector

Database Migration

  • Updated gcloud database-migration connection-profiles list to list all region connection profiles when region not specified.

GKE Hub

  • Added Kubernetes resource labels for RBAC policies produced by generate-gateway-rbac command.

Kubernetes Engine

  • Added --network-performance-configs flag to gcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
  • Promoted maxSurge default to GA for node-pool upgrade settings.
  • Require values for both --shielded-secure-boot and --shielded-integrity-monitoring when either one is set.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

380.0.0 (2022-04-05)

Google Cloud CLI

  • Updated gcloud auth login --cred-file=external-account-creds.json to authorize bq with the External Account Credentials in the passed credential file.

Cloud Composer

  • Added support for 1 and 2 aliases in --airflow-version flag, and airflow-1 and airflow-2 aliases in Airflow part of --image-version flag, in gcloud composer environments create, gcloud beta composer environments update, gcloud beta composer environments check-upgrade.
  • Implemented gcloud beta composer environments snapshots command group.

Cloud Spanner

  • Promoted --condition flag on Cloud Spanner add-iam-policy-binding and remove-iam-policy-binding commands to GA. This allows setting conditional IAM policies on Cloud Spanner resources (instances, databases, and backups) via gcloud.
  • Promoted gcloud spanner backups copy to beta and GA.

Compute Engine

  • Promoted --certificate-map of 'compute target-ssl-proxies insert|update` to beta.

Distributed Cloud Edge

  • Added gcloud edge-cloud container which allows users to manage their Distributed Cloud Edge clusters.

Kubernetes Engine

  • Added --network-performance-configs flag to gcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
  • Promoted maxSurge default to GA for node-pool upgrade settings.

Terraform

  • Added gcloud terraform vet to beta, which allows enforcing policy compliance as part of an infrastructure CI/CD pipeline.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

379.0.0 (2022-03-29)

Breaking Changes

  • (Cloud Services) Replace --deleted flag with --show-deleted flag to gcloud services api-keys list. With --show-deleted, keys soft-deleted within 30 days will be returned.
  • (Cloud Services) Change the default output format from tabular to row-based of gcloud services api-keys list.

Google Cloud CLI

  • Updated gcloud auth login --cred-file=external-account-creds.json to authorize gsutil with the External Account Credentials in the passed credential file.

AI

  • Added more choice options to --region flag of gcloud ai custom-jobs and gcloud ai hp-tunining-jobs, including: southamerica-east1 and us-west4.

Artifact Registry

  • Changed com.google.cloud.artifactregistry.gradle-plugin from 2.1.1 to 2.1.5 in gcloud print-settings.
  • Promoted gcloud artifacts apt and artifacts yum commands to GA.

Cloud Firestore Emulator

  • Release Cloud Firestore emulator v1.14.1
    • Chore: prepare for aggregate support.
    • Chore: add support of x-goog-request-params http header for routing.
    • Fix: change read-past-max-staleness error code to align with production implementation.
    • Fix: update readtime-in-the-future error message.
    • Fix: support importing exports from Windows on UNIX systems.

Cloud Functions

  • Promoted --docker-repository, --kms-key, --clear-docker-repository and --clear-kms-key flag of gcloud functions deploy to GA.
  • Promoted --docker-registry flag of gcloud functions deploy to beta.

Cloud On Demand Scanning

  • Added ARM support for local-extract on Linux.

Cloud Run

  • Promoted gcloud run services proxy to beta. This command allows you to proxy a service or revision to localhost. Requests will be authenticated as the current SDK account, or with a provided token.

Compute Engine

  • Fixed an issue with --create-disk and --disk flags that causes gcloud compute instances create to fail when attaching a boot disk.
  • Promoted --enable-ula-internal-ipv6 and --internal-ipv6-range flags to GA for gcloud compute networks <create|update>.
  • Updated --protocol flag to permit values of TCP or SSL when --enable-logging or --logging-sample-rate flags are set for gcloud compute backend-services create and gcloud compute backend-services update for beta.

Config Connector

Database Migration

  • Updated gcloud database-migration connection-profiles list --region=us-central1 to return correct structure for connection profiles based on format.
  • Updated gcloud database-migration connection-profiles create mysql to return error on invalid hostname.
  • Updated gcloud database-migration connection-profiles create postgresql to return error on invalid hostname.

Eventarc

  • Added gcloud eventarc providers which allows for the discovery of event providers.

Kubernetes Engine

  • Deprecated --autoprovisioning-min-cpu-platform flag from gcloud container clusters create/update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

378.0.0 (2022-03-22)

Breaking Changes

  • (Bare Metal Solution) Modified gcloud bms volumes update, gcloud bms instances update, gcloud bms networks update, and gcloud bms nfs-shares update to be synchronous by default. Use --async flag to get the old behavior.

Google Cloud CLI

  • Updated --scopes flag in gcloud auth application-default print-access-token to support print down-scoped access token for user accounts.

Anthos Multi-Cloud

  • Added --root-volume-type flag to gcloud container aws node-pools update to update the type of the root volume.
  • Added --root-volume-size flag to gcloud container aws node-pools update to update the size of the root volume.
  • Added --root-volume-iops flag to gcloud container aws node-pools update to update the number of I/O operations per second (IOPS) to provision for the root volume.
  • Added --root-volume-kms-key-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the root volume.
  • Added --config-encryption-kms-key-arn flag to gcloud container aws node-pools update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the user data.
  • Added --clear-proxy-config flag to gcloud container aws clusters update to clear the proxy configuration associated with the cluster.
  • Added --clear-security-group-ids flag to gcloud container aws clusters update to clear the additional security groups associated with the control plane replicas.
  • Added --root-volume-type flag to gcloud container aws clusters update to update the type of the root control plane volume.
  • Added --root-volume-size flag to gcloud container aws clusters update to update the size of the root control plane volume.
  • Added --root-volume-iops flag to gcloud container aws clusters update to update the number of I/O operations per second (IOPS) to provision for the root control plane volume.
  • Added --root-volume-kms-key-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt the root control plane volume.
  • Added --clear-security-group-ids flag to gcloud container aws node-pools update to clear the additional security groups associated with the node pool nodes.

Bare Metal Solution

  • Added --async flag to gcloud bms volumes update, gcloud bms instances update, gcloud bms networks update, and gcloud bms nfs-shares update.

Certificate Authority Service

  • Enabled --sort-by flag for gcloud privateca templates list.

Cloud Memorystore

  • Promoted --maintenance-window-day and --maintenance-window-hour flags of gcloud redis instances create to GA.
  • Promoted --maintenance-window-day, --maintenance-window-hour, and --maintenance-window-any flags of gcloud redis instances update to GA.
  • Promoted gcloud redis instances reschedule-maintenance to GA.
  • Promoted support for maintenance windows in gcloud memcache to beta.
    • Added maintenance window flags to create and update commands.
    • --maintenance-window-day
    • --maintenance-window-start-time
    • --maintenance-window-duration
    • Added the flag --maintenance-window-any to update to remove a previously selected maintenance window.
  • Promoted the command gcloud beta memcache reschedule-maintenance.

Cloud On Demand Scanning

  • Fixed an issue where extraction would occasionally fail while scanning Maven packages.

Cloud SQL

  • Expanded --database-version flag choices to gcloud beta sql instance patch to enable major version upgrade on Cloud SQL instances.

Compute Engine

  • Added --load-balancing-scheme flag to gcloud compute url-maps validate for alpha, beta and v1.
  • Updated import and export schemas for:
    • gcloud compute forwarding-rules.
    • gcloud compute backend-services.
  • Promoted locality_lb_policy flag of gcloud compute backend-services create/update to beta.
  • Added --share-setting and --share-with flags to gcloud beta compute sole-tenancy node-groups create|update for beta.
  • Added --share-settings flag to gcloud beta compute sole-tenancy node-groups list for beta.
  • Added --node-project flag to gcloud beta compute instances create for beta.
  • Promoted gcloud compute instances suspend and gcloud compute instances resume to v1.

Config Connector

Config Controller

  • Added --use-private-endpoint flag to gcloud anthos config controller create to restrict access to the master's private endpoint IP of a config controller instance.

GKE Hub

  • Promote gcloud container hub memberships generate-gateway-rbac command from alpha to beta.

Secret Manager

  • Added --update-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the addition of new aliases to secret versions.
  • Added --remove-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the removal of aliases to secret versions.
  • Added --clear-version-aliases flag to gcloud secrets update and gcloud secrets beta update to enable the clearing of all aliases from a secret.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

377.0.0 (2022-03-15)

Google Cloud CLI

  • Promoted --no-browser in gcloud auth login and gcloud auth application-default login to be the default flow if gcloud cannot launch a web browser. You can still use --no-launch-browser flow by explicitly specifying it. Note that --no-launch-browser will be removed in version 383.0.0 on April 26, 2022.

Anthos Multi-Cloud

  • Added --security-group-ids flag to gcloud container aws node-pools update to update the IDs of additional security groups to add to node pool nodes.

Artifact Registry

  • Fixed issue where gcloud artifacts repositories create requires exessive permission when a kms key is supplied.

Bare Metal Solution

  • Promoted gcloud bms instances start to GA.
  • Promoted gcloud bms instances update to GA.
  • Promoted gcloud bms networks update to GA.
  • Promoted gcloud bms nfs-shares describe to GA.
  • Promoted gcloud bms nfs-shares list to GA.
  • Promoted gcloud bms nfs-shares update to GA.
  • Promoted gcloud bms volumes update to GA.
  • Added --filter flag to gcloud bms instances list.
  • Added --filter flag to gcloud bms volumes list.

Certificate Manager

  • Improved output of gcloud beta certificate-manager dns-authorizations create command. The output does not contain details of a created resource anymore.

Cloud Composer

  • Added support for composer-1 and composer-2 aliases in Composer part of --image-version flag in gcloud beta composer environments create, gcloud beta composer environments update, gcloud beta composer environments check-upgrade.
  • Fixed support for X.Y aliases in --airflow-version flag and airflow-X.Y aliases in Airflow part of --image-version flag in gcloud beta composer environments update and gcloud beta composer environments check-upgrade.

Cloud DNS

  • Add setIampolicy and getIamPolicy Alpha commands.

Cloud Dataproc

  • Added support for Clusters without cluster.config to gcloud dataproc jobs submit.

Cloud Domains

  • Allow specifying Project numbers in gcloud domains methods.

Cloud IAM

  • Service Accounts Undelete promoted to GA command.

Cloud Memorystore

  • Promoted --read-replicas-mode and --replica-count flags of gcloud redis instances create to GA.
  • Promoted --read-replicas-mode, --replica-count, and --secondary-ip-range flags of gcloud redis instances update to GA.

Cloud Storage

  • Updated gsutil component to 5.8.

Config Connector

Kubernetes Engine

  • Added --disable-pod-cidr-overprovision flag to gcloud beta container clusters/node-pools create to allow disabling overprovisioning of pod IPs during clusters and node-pools create.

Network Connectivity

  • Added gcloud network-connectivity locations describe and gcloud network-connectivity locations list. These commands return information about locations that support site-to-site data transfer.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

376.0.0 (2022-03-08)

Certificate Authority Service

  • Added --skip-grace-period flag to gcloud privateca roots delete and gcloud privateca subordinates delete to delete a certificate authority without waiting for the 30-day grace period that allows undeletion.

Cloud Build

  • Modified gcloud builds submit --pack to pass --network=cloudbuild to pack.

Cloud Identity-Aware Proxy

  • Add warning message to gcloud compute start-iap-tunnel telling users about installing NumPy.

Cloud Run

  • Added --env-vars-file to gcloud beta run deploy and gcloud run deploy to specify environment variables for Cloud Run deployments.
  • Added --env-vars-file to gcloud beta run services update and gcloud run services update to update environment variables for Cloud Run deployments.

Compute Engine

  • Added --split-source-commitment flag to gcloud compute commitments create for alpha.

Database Migration

  • Some changes in gcloud connection profile create cloudsql:
    • Fixed boolean flags to support --flag for setting it to true and --no-flag for false.

Firebase Test Lab

  • Promoted --app flag of gcloud firebase test ios run to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

375.0.0 (2022-03-01)

Breaking Changes

  • (Miscellaneous) Updated .gcloudignore pattern matching to ensure that a leading wildcard does not match multiple path parts, for improved consistency with .gitignore.
    • For example, */baz will no longer match foo/bar/baz. Use **/baz for the previous behavior.

App Engine

Cloud Key Management Service

  • Add gcloud kms ekm-connections commands to GA.

Cloud Pub/Sub

  • Added --enable-exactly-once-delivery flag to gcloud pubsub subscriptions create to beta to set exactly once delivery preference in Cloud Pub/Sub subscriptions.
  • Added --enable-exactly-once-delivery flag to gcloud pubsub subscriptions update to beta to update exactly once delivery preference for Cloud Pub/Sub subscriptions.

Cloud Security Command Center

  • Added gcloud scc bqexports command group to support BigQueryExport features.

Cloud Speech API

  • Added medical_conversation and medical_dictation options for gcloud ml speech <recognize | recognize-long-running> --model flag.

Compute Engine

  • Modified --filter to add support for server-side zone and region filtering to gcloud compute list commands.
    • Filtering will only be applied server-side if an exact match (=) is used in the filter expression (e.g. --filter="zone=us-central1-a"). Otherwise, the existing client-side filtering will be applied.

Identity and Access Management

  • Added gcloud beta iam policies create which creates a policy on the given attachment point with the given name.
  • Added gcloud beta iam policies delete which deletes a policy on the given attachment point with the given name.
  • Added gcloud beta iam policies get which gets a policy on the given attachment point with the given name.
  • Added gcloud beta iam policies listwhich lists the policies on the given attachment point.
  • Added gcloud beta iam policies update which updates the policy on the given attachment point with the given name.

Kubernetes Engine

  • Promoted --enable-identity-service flag to GA for gcloud container cluster create|update.
  • Added --enable-confidential-nodes flag to gcloud beta container node-pools create/update to allow creating node-pools with confidential nodes, and updating existing node pools to confidential nodes.

Miscellaneous

  • Updated gcloud info to display the source for each property value in parenthesis after the value, to help understand if the property is set by a command-line flag, an environment variable, the properties file, etc.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

374.0.0 (2022-02-23)

Breaking Changes

  • (Google Cloud CLI) Updated gcloud auth application-default login to use --no-browser in place of --no-launch-browser when using --client-id-file.

Google Cloud CLI

  • Added gcloud config configurations rename which allows for renaming of existing configurations.

Anthos Multi-Cloud

  • Added --security-group-ids flag to gcloud container aws clusters update to update the IDs of additional security groups to add to control plane replicas.
  • Added --proxy-secret-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing a proxy configuration.
  • Added --proxy-secret-version-id flag to gcloud container aws clusters update to update the version ID of the AWS Secrets Manager secret containing a proxy configuration.
  • Deprecated aws/location property of gcloud container aws. Use container_aws/location to set the default Google Cloud location for gcloud container aws.
  • Deprecated azure/location property of gcloud container azure. Use container_azure/location to set the default Google Cloud location for gcloud container azure.

App Engine

  • Fixed bug in devappserver causing "ImportError: cannot import name apiproxy" errors.

BigQuery

  • Fix 'collections' error for Python 3.10.
  • Add --concurrency flag for reservations. Mark --max_concurrency as deprecated.
  • Minor bug fixes and dependency updates.

Cloud DNS

  • Added Location flag to Cloud DNS Managed Zones, Response Policies beta commands. This flag can be specified to target Cloud DNS Zonal Servers.

Compute Engine

  • Added --compression-mode flag to gcloud beta compute backend-services <create | update>.
  • Added --compression-mode flag to gcloud beta compute backend-buckets <create | update>.
  • Promoted --resource-manager-tags flag of gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to GA.
  • Added project-number as an option for --service-proxy of gcloud beta compute instance-templates create.
  • Promoted enum CLIENT_IP_NO_DESTINATION of --session-affinity of gcloud backend-services <create | update> to Beta and GA.
  • Modified --load-balancing-scheme flag of gcloud compute backend-services create and gcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in GA.

Compute OS Config

  • Added gcloud compute osconfig pause and gcloud compute os-config resume` commands.

Config Connector

Eventarc

  • Added --event-filters-path-pattern flag to gcloud eventarc triggers create and gcloud eventarc triggers update to allow path pattern matching in Cloud Audit Log resource name filter.

Kubernetes Engine

  • Added --autoprovisioning-network-tags flag of gcloud container clusters create, gcloud container clusters create-autoand gcloud container clusters update to beta, GA.

Miscellaneous

  • Updated gcloud config get-value to gcloud config get per user feedback. The get-value command will remain as a hidden alias for get.
  • Updated gcloud config set to prompt when attempting to set a project, zone, or region to an invalid value. If --quiet is provided, or the command is not run interactively, the warning is still printed and the specified value is set.
  • Updated gcloud init to allow selection of an unverified project ID.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

373.0.0 (2022-02-15)

Breaking Changes

  • (Cloud Filestore) Undeprecate --locations flag to gcloud filestore.
  • (Cloud Pubsub Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
    • For IPv4-only environments, pass a IPv4 address to --host:port.
  • (Cloud Pubsublite Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
    • For IPv4-only environments, pass a IPv4 address to --host:port.
  • (Transcoder) Removed support for gcloud beta transcoder command group.

Google Cloud CLI

  • Added --scopes flag to gcloud auth application-default print-access-token command to print an access token with the given scopes.

AI Platform

  • Fixed issue where gcloud ai-platform local train mistakenly overrode it to the default value when the flag --worker-count or --parameter-server-count is specified to be 0.

Anthos Multi-Cloud

  • Added --config-encryption-kms-key-arn flag to gcloud container aws clusters update to update the Amazon Resource Name (ARN) of the AWS KMS key to encrypt user data.

Bare Metal Solution

  • Removed gcloud bms volumes snapshot and gcloud bms volumes restore from GA.

Cloud Dataplex

  • Promoted lakes command group to GA.
  • Promoted zones command group to GA.
  • Promoted assets command group to GA.
  • Promoted tasks command group to GA.

Cloud Datastream

  • Fix bug with gcloud datastream connection-profiles create command when specify --private-connection flag.

Cloud Memorystore

  • Added --read-replica-mode and --secondary-ip-range to gcloud beta redis instances update.
  • Updated gcloud beta redis instances describe to include secondary-ip-range.

Cloud On Demand Scanning

  • Added GO option to --additional-package-types flag for gcloud artifacts docker images scan to enable scanning of Go third-party and standard library packages in Go binaries.

Cloud SQL

  • Added --maintenance-version flag to gcloud sql instances patch.

Cloud Spanner

  • Promoted the database dialect flag to beta and GA in gcloud spanner databases create command.

Cloud Speech API

  • Added --min-diarization-speaker-count and --max-diarization-speaker-count to gcloud beta ml speech command, replacing --diarization-speaker-count which used to set both of the new flags to same value.

Compute Engine

  • Added --provisioning-model and --instance-termination-action flags for gcloud compute create-with-container command.
  • Modified the API calls to use correct (RFC7396) null semantics in Patch for removing stateful IPs that were made by using the following flags of gcloud beta compute instance-groups managed update and gcloud beta compute instance-groups managed instance-configs update:
    • --remove-stateful-internal-ips,
    • --remove-stateful-external-ips.
  • Promoted --provisioning-model and --instance-termination-action flags for gcloud compute <instances|instance-templates|instances bulk> create commands.

Config Connector

Dataproc Metastore

  • Added the following alpha and beta commands to work with Dataproc Metastore service databases and tables:
    • metastore services databases get-iam-policy
    • metastore services databases set-iam-policy
    • metastore services databases add-iam-policy-binding
    • metastore services databases remove-iam-policy-binding
    • metastore services databases tables get-iam-policy
    • metastore services databases tables set-iam-policy
    • metastore services databases tables add-iam-policy-binding
    • metastore services databases tables remove-iam-policy-binding

Identity and Access Management

  • Added --include-aws-session-token-url flag to gcloud iam workload-identity-pools create-cred-config command to include AWS token url to the credential source while generating AWS credentials config file.
  • Added --include-deny flag to gcloud beta projects get-ancestors-iam-policy and gcloud beta resource-manager folders get-ancestors-iam-policy to specify if it should return deny policies on the hierarchy.

Kubernetes Engine

  • Added --spot flag to gcloud container clusters/node-pools create to allow creating spot VM for node pools.
  • Adds support for linux/arm version of kubectl.
  • Additional kubectl versions:
    • kubectl.1.18 (1.18.20)
    • kubectl.1.19 (1.19.14)
    • kubectl.1.20 (1.20.15)
    • kubectl.1.21 (1.21.9)
    • kubectl.1.22 (1.22.6)
    • kubectl.1.23 (1.23.3)

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

372.0.0 (2022-02-08)

Breaking Changes

  • (Kpt) The kpt live apply and kpt live destroy default behavior changed to wait forever
  • (Kpt) for reconciliation if no timeouts are specified.
  • (Kpt) The kpt live output for events and json printer is changed to omit resource-specific
  • (Kpt) health information by default.
  • (Kpt) The default image-pull-policy for kpt fn render and kpt fn eval changed
  • (Kpt) from AlwaysPull to IfNotPresent.

Cloud SDK

  • Deprecated --[no-]launch-browser flags and added --no-browser to gcloud auth login and gcloud auth application-default login commands. Use --no-browser to authorize gcloud on machines which cannot launch a web browser.
  • Deprecated --no-launch-browser and --console-only flags and added --no-browser flag to gcloud init. Use --no-browser to initialize gcloud command-line tool on machines which cannot launch a web browser.

Anthos Multi-Cloud

  • Added --role-arn flag to gcloud container aws clusters update command to update the IAM role to assume when managing AWS resources.
  • Added --role-session-name flag to gcloud container aws clusters update command to update the identifier for the assumed role session.
  • Added --instance-type flag to gcloud container aws clusters update command to update the AWS ec2 instance type for the control plane.
  • Added --admin-users flag to gcloud container aws clusters update and gcloud container azure clusters update to update the users that can perform operations as a cluster administrator.
  • Added --vm-size flag to gcloud container azure clusters update to update the Azure Virtual Machine size for the control plane.

Certificate Manager

  • Unified usage of --location flag in gcloud certificate-manager subcommands.

Cloud Composer

  • Added --connection-subnetwork flag to gcloud composer environments create command to enable using Private Service Connect for internal communication.

Cloud Identity-Aware Proxy

  • Promoted gcloud iap oauth-clients from alpha to beta.
  • Promoted gcloud iap oauth-brands from alpha to beta.

Cloud Key Management Service

  • Add kms ekm-connections commands to alpha, beta.
  • Add support for external-vpc crypto keys.
  • Added support for the following "raw" PKCS#1 signing algorithms to gcloud kms keys create|update and gcloud kms keys versions import:
    • rsa-sign-raw-pkcs1-2048
    • rsa-sign-raw-pkcs1-3072
    • rsa-sign-raw-pkcs1-4096

Cloud On Demand Scanning

  • Upgrade local-extract to version 1.4.0 to improve the stability and quality of extraction.

Cloud SQL

  • Promoted --network flag of gcloud sql instances create to GA.
  • Promoted --network flag of gcloud sql instances patch to GA.

Config Connector

Dataproc Metastore

  • Added --update-auxiliary-versions-from-file, --add-auxiliary-versions and --clear-auxiliary-versions flags to gcloud metastore services update beta release track to allow updating a Dataproc Metastore with auxiliary versions.

Kpt

  • Updated kpt from v1.0.0-beta.9 to v1.0.0-beta.13. Refer to OSS releases page https://github.com/GoogleContainerTools/kpt/releases for detailed release notes.
  • Improved the merge handling for pipeline section of the Kptfile.
  • Added exec support for running functions in kpt fn render.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

371.0.0 (2022-02-01)

Cloud SDK

  • Added support for specifying an OAuth 2.0 access token via the environment variable CLOUDSDK_AUTH_ACCESS_TOKEN.

Anthos Multi-Cloud

  • Added --admin-users flag to gcloud container aws clusters create and gcloud container azure clusters create to add users that can perform operations as a cluster administrator.

App Engine

Cloud DataPipelines

  • Added gcloud beta datapipelines pipeline job list which lists all jobs for a given pipeline in a specific project and region.

Cloud Deploy

  • Add --description flag to gcloud deploy targets rollback.
  • Modified gcloud deploy targets describe to make --delivery-pipeline an optional flag.
    • When --delivery-pipeline is not specified, displays deployment information of the associated pipeline with the most recent successful rollout.
    • Added --list-all-pipelines to list deployment information of all associated pipelines.

Cloud Speech API

  • Added --enable-automatic-punctuation to gcloud ml speech recognize commands.

Compute Engine

  • Added --guest-os-features (only UEFI_COMPATIBLE is supported) for:
    • gcloud compute images import in beta;
    • gcloud compute instances import in beta;
    • gcloud compute machine_images import in beta.
  • Added a new key type http-cookie to --enforce-on-key in gcloud compute security-policies rules.
  • Added --recaptcha-redirect-site-key for gcloud compute security-policies update, and promoted it to beta and GA.
  • Added --exceed-redirect-type and --exceed-redirect-target for gcloud compute security-policies rules create|update, and promoted them to beta and GA.
  • Added support for version=8 and short-name=rocky in --os-types for gcloud beta compute instances ops-agents policies [create|update].

Config Connector

Dataproc Metastore

  • Added --auxiliary-versions and --auxiliary-versions-from-file flags to gcloud metastore services create beta release track to allow creating a Dataproc Metastore with auxiliary versions.
  • Added --endpoint-protocol flag to gcloud beta metastore services create and gcloud beta metastore services update to specify the protocol to use for the metastore service endpoint.

Kubernetes Engine

  • Updates default kubectl from 1.20 to 1.21.
  • Adds support for Mac M1 (darwin/arm64) version of kubectl (version 1.21 and greater).
  • Additional kubectl versions:
    • kubectl.1.18 (1.18.20)
    • kubectl.1.19 (1.19.14)
    • kubectl.1.20 (1.20.14)
    • kubectl.1.21 (1.21.9)
    • kubectl.1.22 (1.22.5)
    • kubectl.1.23 (1.23.1)

Miscellaneous

  • Added configuration property core/console_log_format to support alternative logging formats. Use gcloud config set core/console_log_format detailed to include timestamps in messages logged to the console.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

370.0.0 (2022-01-25)

AI

  • Added more choice options to --region flag of gcloud ai custom-jobs and gcloud ai hp-tunining-jobs, including: asia-east2, asia-south1, europe-west3, europe-west6, northamerica-northeast2 and us-west2.

Bare Metal Solution

  • Added gcloud bms instances reset which hard resets Bare Metal Solution instances.

BigQuery

  • Add support for --clone flag for table clones.
  • Add support for --multi_region_auxiliary flag for reservations.
  • Fix 'bq show -d' to support authorized routines.
  • Minor bug fixes and dependency updates.

Cloud Composer

  • Fixed issues in creation of Cloud Composer 2 environments that didn't properly pass on the secondary range names/CIDRs.

Cloud Functions

  • Promoted --set-secrets, --update-secrets, --remove-secrets and --clear-secrets flags of gcloud functions deploy to GA.

Compute Engine

  • Promoted --enable-ipv6, --ipv6-nexthop-address, and --peer-ipv6-nexthop-address flags of gcloud compute router update-bgp-peer to GA.
  • Promoted --enable-ipv6, --ipv6-nexthop-address, and --peer-ipv6-nexthop-address flags of gcloud compute router add-bgp-peer to GA.
  • Promoted --stack-type, --candidate-ipv6-subnet, --cloud-router-ipv6-interface-id, and --customer-router-ipv6-interface-id flags of gcloud compute interconnects attachments dedicated create to GA.
  • Promoted --stack-type, --candidate-ipv6-subnet, --cloud-router-ipv6-interface-id, and --customer-router-ipv6-interface-id flags of gcloud compute interconnects attachments dedicated update to GA.
  • Promoted --enable-uefi-networking flag of gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to GA.
  • Added mesh as an option for --service-proxy of gcloud beta compute instance-templates create.

Compute OS Config

  • Add --mig-instances-allowed flag to gcloud compute os-config patch-jobs execute.

Config Connector

Dataproc Metastore

  • Added --database-type flag to metastore services create alpha and beta release tracks to allow specifying the backing store in Dataproc Metastore.

Recommender

  • Added annotations support for gcloud beta recommender insight-type-config update and gcloud beta recommender recommender-config update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

369.0.0 (2022-01-19)

AI

  • Added --labels flag to gcloud ai custom-jobs create and gcloud ai hp-tuning-jobs create to support setting labels on the resources.

Artifact Registry

  • Removed deprecated repository format 'PYPI' from commands gcloud artifacts repositories create and gcloud artifacts print-settings.

Bare Metal Solution

  • Updated gcloud bms instances list to return the resource identifier.
  • Added gcloud bms operations describe and gcloud bms operations wait which checks the status or waits for completion of long-running operations in Bare Metal Solution.

Certificate Manager

  • Promoted gcloud certificate-manager to beta.

Cloud Dataproc

  • Added gcloud dataproc batches to submit and manage Dataproc batch jobs.
  • Added --master-local-ssd-interface, --worker-local-ssd-interface and --secondary-worker-local-ssd-interface to gcloud dataproc clusters create to allow users to specify interface (SCSI/NVME) while attaching local SSDs.
  • Enabled Cloud Storage file location for dataproc workflow-templates instantiate-from-file --file.

Cloud Deploy

  • Promoted gcloud deploy to GA.

Cloud Functions

  • Promote gcloud functions --gen2 commands to beta.

Cloud IDS

  • Updated ids endpoints create to pass in user-defined labels to the Endpoint resource.
  • ids endpoints list now returns the correct list of endpoints when --uri is passed in.

Cloud Speech API

  • Added --model flag to gcloud ml speech recognize to specify ml model to use for audio recognition.
  • Added --output-uri flag to gcloud ml speech recognize-long-running allowing users to specify output transcript file on Google Cloud Storage.

Compute Engine

  • Promoted --auto-renew flag of gcloud compute commitments create and gcloud compute commitments update to GA.
  • Added FIXED_STANDARD to allowed list of values for --network-tier flag.
  • Promoted flags --cache-key-include-http-header and --cache-key-include-named-cookie of gcloud compute backend-services create and gcloud compute backend-services update to GA.
  • Promoted flags --cache-key-include-http-header and --cache-key-query-string-whitelist of gcloud compute backend-buckets create and gcloud compute backend-buckets update to GA.
  • Promoted --certificate-map of 'compute target-https-proxies insert|update` to beta.
  • Added --domain-names for gcloud compute service-attachments create.
  • Promoted --troubleshoot flag of gcloud compute ssh to GA.
  • Added 21.04 and 21.10 to allowed list of values for --version of gcloud beta compute instances ops-agents policies [create|update].

Config Connector

GKE Hub

  • Added --internal-ip flag to gcloud container fleet memberships register for version beta to maintain consistency with gcloud beta container clusters get-credentials.

Recaptcha

  • Added --waf-feature, and --waf-service options to recaptcha keys create command, supporting creation of WAF-enabled keys.

Recommender

  • Added support for gcloud beta recommender insight-type-config describe.
  • Added support for gcloud beta recommender insight-type-config update.

Service Directory

  • Added --network flag to gcloud service-directory endpoints create command.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

368.0.0 (2022-01-11)

Breaking Changes

  • (Anthos Multi-Cloud) Required --fleet-project flag of gcloud container aws clusters create and gcloud container azure clusters create.
  • (Anthos Multi-Cloud) Required --config-encryption-kms-key-arn flag of gcloud container aws clusters create.
  • (Firebase Test Lab) Updated minimum version for AndroidJUnitRunner in combination with Android Test Orchestrator from 1.0 to 1.1, deprecating support for the Test Orchestrator from the legacy Android Test Support libraries.

AI

  • Updated gcloud ai custom-jobs create to allow worker pools with container-image-uri when python-package-uris is also specified.

Anthos Multi-Cloud

  • Replaced auth-provider auth plugin with exec auth plugin when generating kubeconfig in gcloud container aws clusters get-credentials and gcloud container azure clusters get-credentials.

Bare Metal Solution

  • Removed gcloud bms snapshot-schedule-policies from GA.
    • Removed gcloud bms volumes snapshots from GA.
    • Removed gcloud bms volumes update from GA.

Cloud Bigtable

  • Added cbt import [TABLE_ID] [INPUT_FILE] which allows the contents of a properly formatted .csv file to be written to an existing table.

Cloud Composer

  • Added gcloud composer state store for State Store operation of State/Disaster recovery to Alpha.
  • Added gcloud composer state load for State Load operation of State recovery to Alpha.

Cloud DNS

  • Added DNS Routing Policies support for gcloud dns record-sets.

Cloud Data Fusion

  • Added --options optional argument to
    gcloud beta data-fusion instances update for instance to update
    options field, specified as KEY1=VALUE1,KEY2=VALUE2.

Cloud Datastream

Cloud Deploy

  • When creating a release with gcloud releases create, can include the date and time of release creation by adding keywords $DATE and $TIME to release name.

Cloud IDS

  • Updated ids endpoints create to pass in user-defined labels to the Endpoint resource.

Cloud On Demand Scanning

  • Updated local-extract to version 1.3.2 to fix an issue with extraction of invalid zip archives.

Cloud SQL

  • Added --insights-config-query-plans-per-minute to
  • gcloud sql instances create and gcloud sql instances patch.

Cloud Storage

  • Updated gsutil component to 5.6.

Compute Engine

  • Promoted compute machine-images command group to GA.
  • Promoted gcloud compute backend-services add-service-bindings and gcloud compute backend-services remove-service-bindings commands to beta.
  • Promoted --request-headers-to-add for gcloud compute security-policies rules create|update to GA.
  • Promoted --enable-dynamic-port-allocation and --max-ports-per-vm flags of gcloud compute routers nats create and gcloud compute routers nats update to GA.
  • Promoted --clear-max-ports-per-vm flag of gcloud compute routers nats update to GA.
  • Promoted REGIONAL_MANAGED_PROXY option for --purpose flag of gcloud compute networks subnets create to GA.
  • Added --zypper-excludes flag to gcloud compute os-config patch-jobs execute to allow specifying patches to be excluded from update.

GKE Hub

  • Added gcloud container fleet memberships command group identical to existing gcloud container hub memberships.
  • Promoted the following commands to GA:
    • gcloud container hub mesh describe.
    • gcloud container hub mesh disable.
    • gcloud container hub mesh enable.

Kubernetes Engine

  • Added --enable-service-externalips flag to gcloud container clusters create | update to allow or deny services to set the ExternalIPs field.
  • Added --add-maintenance-exclusion-scope flag to gcloud container clusters update to specify the maintenance exclusion scope as no_upgrades, no_minor_upgrades, or no_minor_or_node_upgrades.
  • Demoted many gcloud container clusters warning-level logs to informational.
    • Changed warnings were those that do not indicate issues with your Kubernetes Engine resources, such as upcoming default changes and feature usage notes.
    • Intent was to ensure warnings are genuine indications that something is wrong.
    • Outdated warnings have been removed.
  • Added Compact Placement support to the command gcloud container clusters create. A --placement-type flag can be specified to specify a requirement of nodes collocation.
  • Added Compact Placement support to the command gcloud container node-pools create. A --placement-type flag can be specified to specify a requirement of nodes collocation.

Miscellaneous

  • Updated console handling code to assume non-interactive mode if stdin, stdout, or stderr is not open, rather than exit with an error.

Recommender

  • Added support for gcloud beta recommender recommender-config describe.
  • Added support for gcloud beta recommender recommender-config update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

367.0.0 (2021-12-14)

Breaking Changes

  • (Cloud Datastream) Modified gcloud beta datastream streams create and gcloud beta datastream streams update --force & --validate-only flags to be mutually exclusive.

App Engine

Assured Workloads

  • Added --enable-sovereign-controls flag to gcloud assured workloads create command.

Bare Metal Solution

  • Promoted gcloud bms networks to GA.
  • Promoted gcloud bms snapshot-schedule-policies to GA.
  • Promoted gcloud bms volumes to GA.

Cloud Bigtable Emulator

  • Added ARM64 support for Linux and macOS.

Cloud Composer

  • Added --enable-master-authorized-networks and --master-authorized-networks flags to gcloud beta composer environments create command.
  • Added --enable-master-authorized-networks and --disable-master-authorized-networks and --master-authorized-networks to gcloud beta composer environments update command.

Cloud Datastream

  • Modified gcloud beta datastream stream create and gcloud beta datastream stream update validation flags (--validate-only, --force) to be mutually exclusive.
  • Promoted gcloud datastream connection-profiles to GA.
    • RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
    • Renamed --bucket-name flag to bucket.
    • Renamed --private-connection-name flag to --private-connection.
    • Removed --no-connectivity flag.
    • Added --force validation flag.
  • Promoted gcloud datastream streams to GA.
    • For create and update --force & --validate-only flags are now mutually exclusive.
    • Renamed --source-name flag to --source.
    • Renamed -destination-name flag to --destination.
  • Promoted gcloud datastream private-connections to GA.
    • Renamed --vpc-name flag to --vpc.
  • Promoted gcloud datastream routes to GA.
  • Promoted gcloud datastream locations to GA.
  • Promoted gcloud datastream operations to GA.

Cloud Deploy

  • When using gcloud deploy apply, manifest files support apiVersion 'deploy.cloud.google.com/v1'.

Cloud Filestore

  • Added gcloud beta filestore instances revert command to revert a filestore instance to specific snapshot.

Cloud Healthcare

  • Added --resource-type flag to gcloud beta healthcare fhir-stores export bq and gcloud beta healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
  • Added --since flag to gcloud beta healthcare fhir-stores export bq and gcloud beta healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Run

  • Promoted --cpu-throttling of gcloud run from beta to GA.

Cloud Security Command Center

  • Added gcloud findings bulk-mute command to support mute features.

Compute Engine

  • Fixed a bug in gcloud compute start-iap-tunnel that was causing remote connections to be delayed up to 5 seconds. Link to bug: https://issuetracker.google.com/issues/199408959.
  • Promoted --subsetting-subset-size flag of gcloud compute backend-services create|update commands to beta.
  • Promoted the following --service-proxy flag parameters of gcloud compute instance-templates create to beta:
    • intercept-all-outbound-traffic,
    • exclude-outbound-ip-ranges,
    • exclude-outbound-port-ranges,
    • scope.
  • Promoted gcloud compute instances|instance-templates create --network-performance-configs flag to GA.
  • Added the following flags to gcloud beta compute instance-groups managed create, gcloud beta compute instance-groups managed create-instance, and gcloud beta compute instance-groups managed instance-configs create:
    • --stateful-internal-ip,
    • --stateful-external-ip.
  • Add the following flags to gcloud beta compute instance-groups managed update and gcloud beta compute instance-groups managed instance-configs update:
    • --stateful-internal-ip,
    • --remove-stateful-internal-ips,
    • --stateful-external-ip,
    • --remove-stateful-external-ips.

Kpt

  • Updated kpt update to no longer require users to check in changes before invoking kpt pkg update.
  • Updated kpt update to accepts empty path with version.
  • Updated kpt fn to check presence of function images in local cache only when relevant.
  • Fixed the property names casing issue in the Kptfile schema.
  • Fixed issue where kpt pkg get returns an error while adding merge comment.

Network Connectivity

  • Added gcloud network-connectivity operations describe and gcloud network-connectivity operations list which return information about long-running operations.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

366.0.0 (2021-12-07)

Breaking Changes

  • (Cloud Composer) Added requirement to provide one of --web-server-allow-ip, --web-server-allow-all, --web-server-deny-all flags in gcloud composer environments create when creating a private IP Cloud Composer 2 environment.
  • (Cloud Datastore) Modified gcloud beta datastream to use Datastream v1 API, which effects the client structured output.
  • (Cloud Functions) Modified gcloud functions deploy flag --security-level to default to SECURE_ALWAYS instead of SECURE_OPTIONAL. SECURE_ALWAYS enforces the created function to support HTTPS only, instead of both HTTPS and HTTP.
    • To override this behavior, use --security-level=SECURE_OPTIONAL.

Cloud SDK

  • Added support for environment variable completion to the "gcloud command-line tool".

AI

  • Added --endpoint-id flag to gcloud ai endpoints create and gcloud beta ai endpoints create.
  • Added --deployed-model-id flag to gcloud ai endpoints deploy-model and gcloud beta ai endpoints deploy-model.
  • Modified --region flag of gcloud ai endpoints to include new online prediction regions.
  • Modified --region flag of gcloud ai models to include new online prediction regions.

App Engine

BigQuery

  • Added support for CLOUD_RESOURCE as a connection_type.
  • Added --trial_id flag to extract to support exporting an individual trial of an ML model trained with Hyperparameter Tuning.
  • Added support for Device Certificate Authentication via Mutual TLS. See gcloud topic client-certificate.
  • Added support for creating a linked dataset.
  • Minor bug fixes.

Certificate Authority Service

  • Added --kms-key-version to gcloud privateca certificates, which allows creating certificates backed by a KMS key version.

Cloud Access Context Manager

  • Promoted --scopes flag of gcloud access-context-manager policies to GA.
  • Promoted gcloud access-context-manager policies add-iam-policy-binding to GA.
  • Promoted gcloud access-context-manager policiesremove iam-policy-binding to GA.
  • Promoted gcloud access-context-manager policies set-iam-policy to GA.
  • Promoted gcloud access-context-manager policies get-iam-policy to GA.

Cloud Bigtable

  • Added --autoscaling-min-nodes, --autoscaling-max-nodes, and --autoscaling-cpu-target flags to gcloud bigtable clusters create for alpha, beta and GA to let users create autoscaling clusters.
  • Added key autoscaling-min-nodes, autoscaling-max-nodes and autoscaling-cpu-target to --cluster-config flag of gcloud bigtable instances create for alpha, beta and GA to let users create autoscaling clusters.
  • Added --autoscaling-min-nodes, --autoscaling-max-nodes, --autoscaling-cpu-target and disable-autoscaling flags to gcloud bigtable clusters update for alpha, beta and GA to let users configure autoscaling when updating clusters.

Cloud Composer

  • Allowed --web-server-allow-ip, --web-server-deny-all, --web-server-allow-all flags in gcloud composer environments create to be used with Cloud Composer 2.
  • Added support for kubernetes Airflow CLI commands to gcloud composer environments run for Cloud Composer environments that use Airflow 2.1.4+.
  • Added --connection-subnetwork flag to gcloud beta composer environments create command to enable using Private Service Connect for internal communication.
  • Promoted --maintenance-window-start, --maintenance-window-end and --maintenance-window-recurrence flags of gcloud composer environments create to GA.
  • Added support for --kms-key flag in gcloud composer environments create command when creating Cloud Composer 2 environments.
  • Added --environment-size and composer-network-ipv4-cidr flags in gcloud composer environments create and gcloud composer environments update to be used with Cloud Composer 2.
  • Added --scheduler-cpu, --scheduler-memory, --scheduler-storage, --scheduler-count, --worker-cpu, --worker-memory, --worker-storage, --min-workers, --max-workers, --web-server-cpu, --web-server-memory, --web-server-storage flags in gcloud composer environments create and gcloud composer environments update to be used with Cloud Composer 2.

Cloud DNS

  • Promoted gcloud dns response-policies command group to GA.

Cloud Data Catalog

  • Added gcloud data-catalog entries star and gcloud data-catalog entries unstar which allows users to star and unstar their favorite Data Catalog entries respectively.

Cloud DataPipelines

  • Added gcloud beta datapipelines pipeline command with support for create, list, update, describe, delete, run and stop.

Cloud Datastream

  • Modified gcloud beta datastream stream create and gcloud beta datastream stream update validation flags (--validate-only, --force) to be mutually exclusive.
  • Promoted gcloud datastream connection-profiles to GA.
    • RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
    • Renamed --bucket-name flag to bucket.
    • Renamed --private-connection-name flag to --private-connection.
    • Removed --no-connectivity flag.
    • Added --force validation flag.

Cloud Filestore

  • Added --force flag to gcloud filestore instances delete command to allow users to delete Filestore instances with child resources.
  • Added gcloud filestore instances snapshots command group, which is used to create and manage Filestore snapshots.
  • Added connect-mode param to --network flag of gcloud filestore instances create for GA.
  • Added --kms-key flag to gcloud filestore instances create command to specify the customer-managed KMS key name to use for encrypting the filestore instance.

Cloud Functions

  • Promoted --min-instances and --clear-min-instances flags of gcloud functions to GA.

Cloud Pub/Sub

  • Increased upper bound for --message-retention-duration flag of gcloud pubsub topics create from 7 days to 31 days.
  • Increased upper bound for --message-retention-duration flag of gcloud pubsub topics update from 7 days to 31 days.

Cloud SQL

  • Added --database-version flag to gcloud sql instance patch enable minor version upgrade for cloud sql instances.
  • Modified gcloud sql instances clone to support --point-in-time flag for MySQL too.

Compute Engine

  • Added update command to gcloud compute os-config patch-deployments on alpha, beta and GA tracks.
  • Promoted gcloud compute snapshots create command to GA.
  • Promoted flags --connection-persistence-on-unhealthy-backends, --idle-timeout-sec, and --tracking-mode of gcloud compute backend-services create and gcloud compute backend-services update to GA.
  • Promoted --service-bindings flag of gcloud compute backend-services create|update commands to beta.

Compute OS Config

  • Added log to remind user how to check operation status for gcloud compute os-config os-policy-assignment create in --async mode.

Config Connector

Declarative Workflows

  • Promoted gcloud beta resource-config bulk-export to beta with improved support for export to Terraform HCL format (via. --resource-format=terraform).
  • Added config export commands for the following command surfaces to alpha, enabling export of the related Google Cloud resources to KRM and Terraform HCL:
    • memcache instances
    • access-context-manager policies
    • access-context-manager perimeters
    • access-context-manager levels
    • secrets
    • secrets versions
    • iam service-accounts
    • iam service-accounts keys
    • transfer jobs
    • dns managed-zones
    • dns policies
    • spanner databases
    • spanner instances
    • artifacts repositories
    • bq jobs
    • bq datasets
    • bq tables
    • pubsub topics
    • pubsub subscriptions
    • source repos
    • kms keys
    • kms keyrings
    • builds triggers
    • dataflow jobs
    • monitoring channels
    • monitoring policies
    • redis instances
    • sql instances
    • sql databases
    • identity groups*
    • storage buckets
    • bigtable app-profiles
    • bigtable instances tables
    • bigtable instances
    • resource-manager liens
    • container node-pools
    • container clusters
    • compute url-maps
    • compute target-grpc-proxies
    • compute instances
    • compute target-instances
    • compute target-ssl-proxies
    • compute target-pools
    • compute disks
    • compute target-http-proxies
    • compute target-https-proxies
    • compute ssl-policies
    • compute addresses
    • compute backend-buckets
    • compute firewall-rules
    • compute target-tcp-proxies
    • compute target-vpn-gateways
    • compute networks subnets
    • compute vpn-tunnels
    • compute vpn-gateways
    • compute forwarding-rules
  • Added gcloud beta resource-config terraform generate-import to beta, adding support for generating a shell script to adopt exported Terraform HCL files into Terraform state.
  • Added gcloud beta resource-config terraform init-provider to beta, adding support for initializing the Google Cloud Platform Terraform provider from the gcloud command-line tool.

Kubernetes Engine

  • Added filter option to notification-config flag on gcloud container clusters create and gcloud container clusters update commands to specify specific pubsub message types to receive.
  • Added --enable-managed-prometheus flag to gcloud beta container clusters create and gcloud beta container clusters update to deploy Google Cloud Managed Service for Prometheus managed collection to a Kubernetes cluster.
  • Added --disable-managed-prometheus flag to gcloud beta container clusters update to tear down Google Cloud Managed Service for Prometheus managed collection on a Kubernetes cluster with managed collection already deployed.
  • Added a deprecation warning on --enable-pod-security-policy flag to create and update commands of gcloud beta container clusters.

Network Services

  • Promoted gcloud network-services service-bindings to beta.

Transcoder

  • Promoted gcloud transcoder command group to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

365.0.1 (2021-11-22)

BigQuery

365.0.0 (2021-11-16)

Breaking Changes

  • (AI) Removed --base-image flag of gcloud beta ai custom-jobs local-run. Use --executor-image-uri flag instead.
  • (AI) Removed --work-dir flag of gcloud beta ai custom-jobs local-run. Use --local-package-path flag instead.
  • (Anthos Multi-Cloud) Removed --service-load-balancer-subnet-ids flag of gcloud container aws clusters create.

Cloud SDK

  • Updated Windows PuTTY executables to version 0.76.

AI

  • Promoted gcloud ai custom-jobs local-run to GA.
  • Promoted 'local-package-path', 'script', 'requirements', 'extra-packages' and 'extra-dir' fields in --worker-pool-spec flag of gcloud ai custom-jobs create to GA, to support automatically building custom training image from a local package.
  • Modified --region flag of gcloud ai endpoints to include new online prediction regions.
  • Modified --region flag of gcloud ai models to include new online prediction regions.

Cloud Build

  • Deprecated --no-external-ip in gcloud builds worker-pools create. --no-external-ip will be removed in an upcoming release. Please use --no-public-egress so that workers in the worker pool are created without an external IP address.
  • Deprecated --no-external-ip in gcloud builds worker-pools update. --no-external-ip will be removed in an upcoming release. Please use --no-public-egress so that workers in the worker pool are created without an external IP address or --public-egress so that workers in the worker pool are created with an external IP address.
  • Removed--no-external-ip flag in gcloud beta builds worker-pools create. Please use --no-public-egress so that workers in the worker pool are created without an external IP address.
  • Removed --no-external-ip flag in gcloud beta builds worker-pools update. Please use --no-public-egress so that workers in the worker pool are created without an external IP address or --public-egress so that workers in the worker pool are created with an external IP address.

Cloud Deploy

  • Added --skaffold-version flag.

Cloud Functions

  • Promoted --kms-key, --docker-registry, '--clear-kms-key' and '--clear-docker-registry' flags of gcloud functions deploy to beta.

Cloud Healthcare

  • Promoted --write-disposition flag of gcloud healthcare dicom-stores export bq to GA.

Cloud IDS

  • Promoted gcloud ids endpoints to GA.
    • Create, delete and inspect Cloud IDS endpoints in your project.

Cloud SQL

  • Added PostgreSQL 14 to database versions.

Cloud Storage

  • Updated gsutil component to 5.5.

Compute Engine

  • Promoted gcloud compute routers nats rules command group to GA.
  • Promoted --rules flag of gcloud compute routers nats create and gcloud compute routers nats update to GA.
  • Promoted --tcp-time-wait-timeout flag of gcloud compute routers nats create and gcloud compute routers nats update to GA.
  • Promoted --clear-tcp-time-wait-timeout flag of gcloud compute routers nats update to GA.
  • Added --minimal-action and --most-disruptive-allowed-action flags to gcloud compute instance-groups managed rolling-action start-update.
  • Promoted --edge-security-policy flag of gcloud compute backend-services update and gcloud compute backend-buckets update commands to GA.
  • Promoted --type flag of gcloud compute security-policies create command to GA.

Config Connector

Dataproc Metastore

  • Added --network-config-from-file and --consumer-subnetworks flag to gcloud beta metastore services create to specify the subnetworks from which the Dataproc Metastore service can be accessed.

Kpt

  • Updated kpt from v1.0.0-beta.6 to v1.0.0-beta.7.
    • Added support for ARM-based machines.
    • Added support for selecting resources for function execution.
    • Added support for depends-on annotation for actuation.
    • Added support for apply-time mutations for actuation.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

364.0.0 (2021-11-09)

Cloud SDK

  • Updated bundled Python executable for windows to 3.8.10.

AI

  • Added --kms-key flag to gcloud beta ai tensorboards create to support configuring customer-managed encryption key spec.
  • Promoted gcloud ai tensorboards to GA.
  • Modified --worker-pool-spec flag of gcloud beta ai custom-jobs create to support auto training image building for distributed training.
    • If a local-package-path is specified in the first --worker-pool-spec flag, other --worker-pool-spec flags just have to specify the hardware related fields and they will use the same container image built for the first one.
    • Added requirements field to support installing extra public PyPI dependencies when building the image.
    • Added extra-packages field to support installing extra custom dependencies when building the image.
    • Added extra-dirs field to support copies more directories under local-package-path to the training image.

Anthos Multicloud

  • Promoted gcloud container aws to GA.
  • Promoted gcloud container azure to GA.

App Engine

Artifact Registry

  • Updated gcloud artifacts docker images describe, when used with --show-provenance flag, to support returning provenances in the SLSA provenance format. See https://slsa.dev/ for more information.

Cloud DNS

  • Added cloud logging support for gcloud dns managed-zones.

Cloud Firestore Emulator

  • Release Cloud Firestore emulator v1.13.1
    • Fix request timestamps in WebSocket messages.

Cloud Key Management Service

  • Added support for signing directly on input-file in gcloud kms asymmetric-sign without specifying a digest-algorithm.

Cloud Memorystore

  • Added --read-replicas-mode flag to gcloud beta redis instances create to support the multiple read replicas feature.
  • Added --replica-count flag to gcloud beta redis instances create and gcloud beta redis instances update to support replica nodes scaling when multiple read replicas are enabled.

Cloud Run

  • --[clear|set|update|remove]-secrets flags are now supported for --platform=managed in GA for deployments and service updates.

Cloud Security Command Center

  • Added gcloud findings set-mute command and gcloud muteconfigs command group to support mute features.

Compute Engine

  • Promoted --enable-dynamic-port-allocation and --max-ports-per-vm flags of gcloud compute routers nats create and gcloud compute routers nats update to beta.
  • Promoted --clear-max-ports-per-vm flag of gcloud compute routers nats update to beta.
  • Promoted --troubleshoot flag of gcloud compute ssh to beta.
  • Added --enable-uefi-networking flag to gcloud compute instances create, gcloud compute instance-templates create and gcloud compute instances bulk create to support UEFI networking when creating instances.
  • Updated import and export schemas for:
    • gcloud beta compute forwarding-rules.
    • gcloud beta compute backend-services.

Compute OS Config

  • Promoted gcloud compute os-config os-policy-assignment-reports commands to GA.
  • compute os-config os-policy-assignment-reports command accepts user's compute/zone property when --location is not set.

Config Connector

Kubernetes Engine

  • Promoted --cluster-dns, --cluster-dns-domain and --cluster-dns-scope=vpc flags of gcloud container clusters create and gcloud container clusters update to GA.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

363.0.0 (2021-11-02)

Cloud SDK

  • gcloud command-line tool supports authentication using workload identity federation via gcloud auth login --cred-file=/path/to/workload/identity/config/file.
  • Client certificate authorization is enabled for more services when setting context_aware/use_client_certificate. Run gcloud topic client-certificate to see the list of disallowed services.

AI

  • Fixed crashing on beta ai tensorboard-experiments delete.

Cloud SQL

  • Added the following flags to gcloud sql user create and created gcloud sql user set-password-policy for GA:
    • --password-policy-allowed-failed-attempts
    • --password-policy-password-expiration-duration
    • --password-policy-enable-failed-attempts-check
    • --clear-password-policy

Compute Engine

  • Promoted --zone flag of gcloud compute images describe-from-family to GA.
  • Added support for version value 11 for short-name value debian in --os-types for gcloud beta compute instances ops-agents policies [create|update].

Config Connector

Eventarc

  • Added the following flags to gcloud eventarc triggers create to support creating a trigger with Cloud Run for Anthos service destination:

    • --destination-gke-cluster
    • --destination-gke-service
    • --destination-gke-location
    • --destination-gke-namespace
    • --destination-gke-path
  • Added the following flags to gcloud eventarc triggers update to support updating a trigger with Cloud Run for Anthos service destination:

    • --destination-gke-path
    • --destination-gke-namespace
    • --destination-gke-service
    • --clear-destination-gke-path

GKE Hub

  • Promoted the following commands to beta and GA:
    • gcloud container hub cloudrun describe.
    • gcloud container hub cloudrun disable.
    • gcloud container hub cloudrun enable.
    • gcloud container hub cloudrun apply.

Kubernetes Engine

  • Added --enable-image-streaming flag to gcloud container clusters/node-pools create/update to allow creating clusters/node-pools with image streaming enabled, and enabling image streaming on existing clusters/node-pools.

Secret Manager

  • Updated --filter flag to be passed to the backend in
    • gcloud secrets list
    • gcloud secrets versions list

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

362.0.0 (2021-10-26)

Breaking Changes

  • (Cloud SQL) Backups are disabled by default when creating new database instances. This was enabled by default in the previous release.
  • (Cloud SQL) Backup start time will not be randomly selected. This was enabled in the previous release. Use --backup-start-time to specify the start time for backups.

Cloud Build

  • gcloud builds submit --tag fails early if a Dockerfile is not found when source is not a directory.

Cloud DNS

  • Added support for the SVCB and HTTPS record types.

Cloud Dataflow

  • Added --gcs-log-dir flag to gcloud dataflow flex-template build command to allow users the ability to specify path to a Google Cloud Storage directory for their build log.

Cloud On Demand Scanning

  • Add ARM64 support for local-extract.

Cloud Run

  • Promoted --execution-environment of gcloud run from alpha to beta.

Compute Engine

  • Promoted --add-share-with and --remove-share-with flags of glcloud compute reservations update to GA.

Managed Active Directory

  • Adding support for gcloud beta active-directory domains backups and gcloud beta active-directory domains restore for domain backup and restore.

Miscellaneous

  • Fixed an issue where non-interactive commands could exit with the error 'ValueError: invalid width 0'.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

361.0.0 (2021-10-19)

Breaking Changes

  • (Cloud SQL) Enable backups by default when creating new database instances. Use --no-backup to disable backups.
  • (Cloud SQL) Backup start time will be randomly select if not specified. Use --backup-start-time to specify the start time for backups.

Cloud SDK

  • gcloud command-line tool supports authentication using an access token from a file which can be specified in the global flag --access-token-file or the property auth/access_token_file.

AI

  • Added --analysis-instance-schema flag in gcloud beta ai model-monitoring-jobs update.
  • Renamed --work-dir flag of gcloud beta ai custom-jobs local-run as --local-package-path. Deprecated --work-dir flag.
  • Renamed --base-image flag of gcloud beta ai custom-jobs local-run as --executor-image-uri. Deprecated --base-image flag.

Artifact Registry

  • Added --show-provenance flag in gcloud artifacts docker images describe command to show build provenance.
  • Removed the auth token placeholder from the output of gcloud artifacts print-settings npm.
  • Fixed issue where gcloud artifacts tags list errors when the package name has slashes.

Cloud Code

  • Support specifying a service yaml file in gcloud beta code dev.
  • Support building with a Buildpack instead of a Dockerfile in gcloud beta code dev.

Cloud Domains

  • Promoted gcloud domains registrations to GA. Cloud Domains enables registering new domain names, transferring already registered domains from 3rd-party domains registrars and managing the domains.

Cloud Healthcare

  • Promoted gcloud healthcare hl7v2-stores <import|export> command groups to GA.

Cloud Key Management Service

  • Added support for the following RSA OAEP+SHA1 algorithms to gcloud kms keys create|update and gcloud kms keys versions import:
    • rsa-decrypt-oaep-2048-sha1
    • rsa-decrypt-oaep-3072-sha1
    • rsa-decrypt-oaep-4096-sha1

Cloud SQL

  • Added the following flags to gcloud sql instances create and gcloud sql instances patch for GA:
    • --password-policy-min-length
    • --password-policy-complexity
    • --password-policy-reuse-interval
    • --password-policy-disallow-username-substring
    • --password-policy-password-change-interval
    • --clear-password-policy

Cloud Scheduler

  • Updated gcloud scheduler jobs commands to accept a location flag to manually specify a Cloud region.

Cloud Storage

  • Updated gsutil component to 5.4.

Cloud Tasks

  • Added --location flag for gcloud tasks and gcloud tasks queues in beta & GA to enable users to specify a GCP location when managing queues and tasks.

Compute Engine

  • Promoted --network flag of gcloud compute target-instances create to GA.
  • Promoted --subsetting-policy of gcloud compute backend-services create and gcloud compute backend-services update to GA.
  • Added --description flag to compute service-attachments update.
  • Add --add-share-with and --remove-share-with flags to reservations update to make it easier to add and remove items in the share-with list without having to specify existing items.
  • Promoted --type flag of gcloud compute commitments create to GA.
  • Promoted --share-setting and --share-with flags of glcloud compute reservations create to GA.
  • Promoted compute routers nats rules command group to beta.
  • Promoted --rules flag of compute routers nats create and compute routers nats update to beta.
  • Promoted --tcp-time-wait-timeout flag of compute routers nats create and compute routers nats update to beta.
  • Promoted --clear-tcp-time-wait-timeout flag of compute routers nats update to beta.

Compute OS Config

  • Allow instance name in gcloud compute os-config vulnerability-reports describe and gcloud compute os-config inventories describe.
  • Promoted gcloud compute os-config os-policy-assignments to GA.

Config Connector

Config Controller

  • Promoted gcloud anthos config controller to GA.

Container Registry

  • Added support for pulling results with image names that use tags instead of sha256.
  • Added warning in a case where a user pulls results with tags instead of sha256.

Kpt

  • Updated kpt from v1.0.0-beta.5 to v1.0.0-beta.6.
    • Fixed yaml schema and added json schema for Kptfile.
    • Added support for .krmignore files in subpackages in kpt fn commands.
    • Added support for updating subpackages in kpt pkg update.
    • Added support to show pipeline execution duration in kpt fn render.
    • Fixed issue when parsing bare sequence nodes in yaml.
    • kpt fn render executes pipeline even when there are no input resources.
    • kpt pkg get no longer copies the entire repo if path is specified.

Pubsub Emulator

  • Added support for topic retention.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

360.0.0 (2021-10-05)

Artifact Registry

  • Updated gcloud beta artifacts print-settings mvn|gradle to add release and snapshot details for maven and gradle surfaces.
  • Promoted gcloud artifacts create repository to GA.
  • Updated gcloud artifacts print-settings mvn|gradle with release and snapshot policies for maven and gradle to GA.

Bare Metal Solution

  • Fixed issue where gcloud bms instances list would not show permissions errors properly.

Cloud Composer

  • Added --enable-privately-used-public-ips flag to gcloud beta composer environments command to enable using privately used public IP address ranges feature in the GKE cluster.
  • Added --enable-ip-masq-agent flag to gcloud beta composer environments command to enable IP address masquerading in the GKE cluster.
  • Added --scheduler-count flag to gcloud composer environments create and gcloud composer environments update commands.

Cloud Data Fusion

  • Added --enable_rbac optional argument to
    gcloud beta data-fusion instances update to toggle granular
    role-based access control in enterprise instances with version >= 6.5.0.

Cloud SQL

  • Added support for users to select minor versions for MySQL 8.0 instances, when they are available in the API.

Cloud Storage

  • Updated gsutil component to 5.3.

Compute Engine

  • Added debian-11 and rocky-8 options to --os flag for:
    • gcloud compute images import in GA,
    • gcloud compute instances import in GA
    • gcloud compute machine-images import in beta
  • Added --service-directory-registration flag to compute forwarding-rules create NAME --target-service-attachment to support Service Directory integration with PSC ILB.
  • Promoted --redundant-interface, --subnetwork and --subnetwork-region flags of gcloud compute routers add-interface to GA.
  • Promoted --instance and --instance-zone flags of gcloud compute routers add-bgp-peer to GA.
  • Promoted --interface-names of gcloud compute routers remove-interface to GA.
  • Promoted --peer-names of gcloud compute routers remove-bgp-peer to GA.
  • Promoted --provisioning-model and --instance-termination-action flags for gcloud beta compute <instances|instances bulk|instance-templates> create commands.

Dataproc Metastore

  • Promoted --encryption-kms-key flag of gcloud metastore services create to GA.

Kubernetes Engine

  • Added --database-encryption-key flag to gcloud container clusters create-auto to allow enabling Database Encryption on Autopilot clusters at creation time.
  • Added --boot-disk-kms-key flag to gcloud container clusters create-auto to allow enabling CMEK protected boot disk on Autopilot clusters at creation time.
  • Added --spot flag to gcloud beta container clusters/node-pools create to allow creating spot VM for node pools.

Managed Active Directory

  • Adding gcloud active-directory peerings for Multi Project Support v1 release. Currently supporting up to 10 domain peerings per domain.

Network Connectivity

  • Promoted gcloud network-connectivity hubs command group to GA.
  • Promoted gcloud network-connectivity spokes command group to GA. Added gcloud network-connectivity spokes linked-vpn-tunnels, gcloud network-connectivity spokes linked-interconnect-attachments, and gcloud network-connectivity spokes linked-router-appliances command groups. Moved create and update commands to these command groups.

Network Security

  • Promoted gcloud network-security client-tls-policies to GA.
  • Promoted gcloud network-security authorization-policies to GA.

Network Services

  • Promoted gcloud network-services endpoint-policies to GA.

Secret Manager

  • Added support in gcloud secrets command group for specifying projects by project number, rather than project id.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

359.0.0 (2021-09-28)

Breaking Changes

  • (AI) Removed 'python-image-uri' field from --work-pool-spec flag of gcloud beta ai custom-jobs create. Use 'executor-image-uri' field instead.

Cloud SDK

  • Use pyca/cryptography to decode p12 service account keys if available. Otherwise, fall back to using PyOpenSSL.

AI

  • Fixed issue where gcloud ai custom-jobs list and gcloud ai hp-tuning-jobs list didn't show results with --uri flag.
  • Promoted gcloud ai endpoints raw-predict to beta and GA.

Artifact Registry

  • Fixed typos for gcloud beta artifacts repositories create help text.

Bare Metal Solution

  • Promoted gcloud bms instances list and gcloud bms instances describe to GA.

Cloud Bigtable

  • Added --restrict-to flags to gcloud bigtable app-profiles create and gcloud bigtable app-profiles update, which restricts multi-cluster routing to a specified list of cluster ids.

Cloud Data Fusion

  • Added --enable_rbac optional argument to
    gcloud beta data-fusion instances create to enable granular
    role-based access control in enterprise instances with version >= 6.5.0.

Cloud Dataflow

  • Corrected --snapshot-ttl lower/upper bound of gcloud dataflow snapshots create command.

Cloud Pub/Sub

  • Added --event-time flag to gcloud beta pubsub lite-topics publish to allow users to specify an event time when publishing a message.

Cloud Run

  • Promoted --key, --clear-key, --post-key-revocation-action-type and --clear-post-key-revocation-action-type flags of gcloud run deploy and gcloud run services update to GA for --platform=managed.
  • Deployments that change only the service metadata will no longer create new revisions. For example, gcloud run services my-service update --ingress=all.

Cloud Scheduler

  • Promoted gcloud scheduler locations command group to GA. Commands in this group provide information for locations where Cloud Scheduler is available.

Cloud Storage

  • Updated gsutil component to 5.2.

Compute Engine

  • Added --network-performance-configs flag to gcloud compute instance-templates create to both alpha and beta.
  • Modified --load-balancing-scheme flag of gcloud compute backend-services create and gcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in beta.
  • Modified --purpose flag of gcloud compute networks subnets create to accept choice REGIONAL_MANAGED_PROXY in beta.
  • Added new --share-setting=local to compute commitments create, compute future-reservations create, and compute reservations create.

Config Connector

Identity and Access Management

  • Added command gcloud iam workforce-pools create-cred-config to enable Workforce Pools configuration creation.

Kpt

  • Updated kpt from v1.0.0-beta.4 to v1.0.0-beta.5.
    • Added support for resolving top level pkg symlink.
    • Added support for preserving the ordering of fields with null values.
    • Improved the parsing logic for GitHub http package URL in kpt pkg get.

Kubernetes Engine

  • Hid --disable-autopilot flag from gcloud container clusters update.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

358.0.0 (2021-09-21)

Breaking Changes

  • (Compute Engine) Deprecated redirect-to-recaptcha choice of --action flag under gcloud compute security-policies rules.

AI

  • Added --enable-web-access flag to gcloud ai custom-jobs create and gcloud ai hp-tuning-jobs create to allow enabling interactive shell terminal access.

Apigee

  • Promoted gcloud apigee archives command group to beta.

Artifact Registry

  • Added --version-policy and --allow-snapshot-overwrites flags to gcloud beta artifacts repositories create to add version policy and snapshot overwrites to maven repositories.

Cloud Composer

  • Added gcloud composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.15+.
  • Added support of CLI commands for Airflow 2.0 to gcloud composer environments run.

Cloud Dataproc

  • Fixed bug in gcloud dataproc clusters enable-personal-auth-session where the command would fail if the flag --access-boundary was provided.

Cloud Filestore

  • Added gcloud beta filestore instances snapshots command group, which is used to create and manage Filestore snapshots.
  • Added --force flag to gcloud beta filestore instances delete, which forces the deletion of an instance and its child resources, such as snapshots.
  • Added --kms-key flag to gcloud beta filestore instances create command to specify the customer-managed KMS key name to use for encrypting the filestore instance.

Cloud Run

  • Promoted --binary-authorization and --breakglass flags to GA. These commands may now be used with gcloud run deploy and gcloud run update.

Cloud SQL

  • Add --allocated-ip-range-name flag of gcloud sql instances patch in beta.

Cloud Storage

  • Updated gsutil component to 4.68.

Compute Engine

  • Added --clear-scale-down-control flag to gcloud alpha|beta compute instance-groups managed update-autoscaling.
  • Promoted --share-setting and --share-with of 'gcloud compute commitments create` to beta.
  • Promoted the following flags of gcloud compute routers add-bgp-peer and gcloud compute routers update-bgp-peer to GA:
    • --bfd-min-receive-interval
    • --bfd-min-transmit-interval
    • --bfd-multiplier
    • --bfd-session-initialization-mode
  • Promoted --enable-layer7-ddos-defense and --layer7-ddos-defense-rule-visibility of 'gcloud compute security-policies update` to GA.

Compute OS Config

  • Promoted gcloud compute os-config vulnerability-reports describe and gcloud compute os-config vulnerability-reports list to GA.
  • Promoted gcloud compute os-config inventories commands describe and list to GA.

Config Connector

Config Controller

  • The create command will automatically update the kubeconfig to point to the newly created config controller cluster.

Kubernetes Engine

  • Updates default kubectl from 1.18 to 1.20.
  • Additional kubectl versions:
    • kubectl.1.17 (1.17.17)
    • kubectl.1.18 (1.18.20)
    • kubectl.1.19 (1.19.14)
    • kubectl.1.20 (1.20.10)
    • kubectl.1.21 (1.21.4)
    • kubectl.1.22 (1.22.1)
  • darwin/386 version of kubectl is no longer supported.
  • Deprecated and hid --logging and --monitoring flags from gcloud container clusters create-auto.

Recaptcha

  • Added --allowAllPackageNames and --allowAllBundleIds flags to gcloud recaptcha keys <create|update> to create/modify keys without specifying package names.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

357.0.0 (2021-09-14)

AI

  • Added --kms-key flag to gcloud beta ai model-monitoring-jobs create to support configuring Customer-managed encryption key spec.
  • Fixed issue where gcloud beta ai custom-jobs local-run unexpectedly used python2 with Vertex AI pre-built training images.

AI Platform

  • Added --enable-web-access to gcloud ai-platform jobs submit training to allow enabling interactive shell terminal access for a training job.

App Engine Flexible Environment

  • Added support for specifying the instance IP mode for each App Engine Flexible version during deployment. This can be done by adding 'instance_ip_mode: INTERNAL|EXTERNAL' in the Network field of the app.yaml file.

Cloud Dataflow

  • Added runtime environment parameter temp-location support in gcloud dataflow flex-template run/build. When this parameter is not set, defaults to value of staging-location.
  • Updated --additional-experiments parser used by run command gcloud dataflow flex-template run so the option can be specified multiple times and their values are concatenated.

Cloud Dataproc

  • Added --action-on-failed-primary-workers enum flag to gcloud dataproc clusters create to allow users to delete the failed primary workers during cluster creation.

Cloud Key Management Service

  • Added gcloud kms mac-sign and gcloud kms mac-verify which allow users to perform MAC signing and verification.
  • Added --import-only and --destroy-scheduled-duration to gcloud kms keys create to support import-only keys and user-specified variable key destruction.
  • Added --version to gcloud kms keys versions import to add key reimport functionality.

Cloud Pub/Sub

  • Promoted gcloud pubsub lite-reservations to GA.

Cloud Run

  • Promoted gcloud run replace to GA. This command supports deploying from a yaml file.

Cloud SQL

  • Promoted --allocated-ip-range-name flag of gcloud sql instances create to beta.

Cloud Services

  • Added support for additional services in services identity create.

Cloud Workflows

  • Added --call-log-level flag to gcloud workflows <execute|run> to enable automatic call logging.

Compute Engine

  • Changed the behavior of gcloud compute target-http-proxy import and gcloud compute target-https-proxy import to wait for the import operation to finish.
  • Updated --set-filter-protocols, --add-filter-protocols and --remove-filter-protocols to accept numeric protocols for all packet-mirrorings update commands.
  • Added --service-project flag to gcloud beta compute networks subnets list-usable.

Eventarc

  • Modified gcloud beta eventarc attributes types list to include Google Cloud Storage CloudEvent types and updated the descriptions for the existing event types.

Kpt

  • Added autocomplete image completion support in kpt fn eval.
  • Relaxed KRM check for kustomization files.
  • Added json output format for kpt live status command.
  • Added support for preserving field order/indendation kpt fn eval and kpt fn render.
  • Added support for referring SHA in image tags in kpt fn eval and kpt fn render.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

356.0.0 (2021-09-08)

Assured Workloads

  • Added CA_REGIONS_AND_SUPPORT as compliance regime options for gcloud assured workloads create command.
  • ResourceType CONSUMER_PROJECT is deprecated.
  • ResourceType CONSUMER_FOLDER and KEYRING are added.
  • display_name is added to ResourceSettings.
  • billing_account is now optional in Workload.
  • resource_settings is added to CreateWorkloadOperationMetadata.