"HashiCorp has announced the general availability of version 7.0 of the Terraform provider for Google Cloud, introducing new features focused on improving security and validation across infrastructure code. In the announcement, the company said the release "continues to expand on these security-first features" and is intended to help teams safely and predictably manage their Google Cloud resources at scale. The release aligns with Google's broader support for Terraform as part of its Infrastructure Manager documentation, which provides official guidance for deploying resources on Google Cloud."
"Ephemeral resources, supported since Terraform 1.10, allow teams to generate short-lived credentials that never touch persistent state. According to the announcement, the update adds support for new ephemeral types, including google_service_account_access_token, enabling temporary credentials to be used securely during plan or apply operations. Write-only attributes, introduced in Terraform 1.11, extend this concept by allowing secrets such as passwords or API keys to be sent to the API without being recorded."
Version 7.0 of the Terraform provider for Google Cloud is generally available and emphasizes security and validation improvements for infrastructure code. The provider has exceeded 1.4 billion downloads and supports over 800 resources and 300 data sources. The release builds on ephemeral resources and write-only attributes to prevent sensitive data from being stored in Terraform state. New ephemeral types include google_service_account_access_token for temporary credentials during plan or apply. Write-only attributes allow secrets like passwords or API keys to be sent to APIs without being recorded. Stricter schema validation treats API-required attributes as mandatory so validation occurs during planning.
Read at InfoQ
Unable to calculate read time
Collection
[
|
...
]