------------------------------
Title: March 04, 2024
[content]
AlloyDB for PostgreSQL
Feature
You can now use Key Access Justifications when working with external CMEK keys. This lets you view and manage external key access requests.
Anthos Service Mesh
Announcement
Managed Anthos Service Mesh 1.18 has completed its rollout in the rapid channel. See Managed Anthos Service Mesh release channels for more information.
Anti Money Laundering AI
Announcement
AML AI has improved handling of supplementary risk indicators included in your datasets. This includes:


Release of new engine versions within both v003 and v004, improving usability of party supplementary data. You can now use letters, numbers, and underscores for the party supplementary data ID.
Addition of new data validations for party supplementary data IDs.

Feature
Save time and cost when adopting new EngineVersions:


For new engine versions, including versions in v003 and v004, you can now inherit hyperparameters from an existing engine config instead of re-tuning. This leads to quicker creation, and there are no additional costs for tuning.
All of your existing engine versions can be used as a source for inheriting hyperparameters.
See Configure an Engine to find out more about how this works.

Apigee Advanced API Security
Announcement
On March 4, 2024 we released an updated version of Advanced API Security.
Feature
New conditions for security actions

You can now create security actions based on the following condition types (in addition to the condition types for Detection rules and IP addresses that were already available):


API keys
API products
Access tokens
Developers
Developer apps
User agents


These new conditions are not available with Apigee hybrid at this time.

See Create a security action to learn more.
BigQuery
Libraries
A weekly digest of client library updates from across the Cloud SDK.

Node.jsChanges for @google-cloud/bigquery

7.5.0 (2024-02-21)

Features


Add support for TPC Universes (#1333) (f67a841)
Switch timestamp representation to int64 usec (#1332) (fb10f03)
Update types and generation script (#1336) (496f52c)


Feature
You can now selectively refresh the metadata cache for BigLake tables by using the
BQ.REFRESH_EXTERNAL_METADATA_CACHE system procedure.
This feature is
generally available
(GA).
Cloud SQL for PostgreSQL
Announcement
The new maintenance version listed in the February 7th entry for PostgreSQL extensions, flags, minor versions, extension versions, and plugin versions is [PostgreSQL version].R20240130.00_05.
Dataproc
Changed
Dataproc Serverless for Spark: Extended Spark metrics collected for a batch now include executor:resultSize, executor:shuffleBytesWritten, and executor:shuffleTotalBytesRead. 
Firestore in Datastore mode
Libraries
A weekly digest of client library updates from across the Cloud SDK.

PythonChanges for google-cloud-ndb

2.3.0 (2024-03-01)

Features


Add field information when raising validation errors. (#956) (17caf0b)
Add Python 3.12 (#949) (b5c8477)
Add support for google.cloud.ndb.version (#929) (42b3f01)
Add support for server side NOT_IN filter. (#957) (f0b0724)
Allow queries using server side IN. (#954) (2646cef)
Introduce compatibility with native namespace packages (#933) (ccae387)
Use server side != for queries. (#950) (106772f)


Bug Fixes


Compressed repeated to uncompressed property (#772) (dab9edf)
Repeated structured property containing blob property with legacy_data (#817) (#946) (455f860)


Documentation


init: Note that Firestore in Datastore Mode is supported (#919) (0fa75e7)
Correct read_consistency docs. (#948) (7e8481d)
Fix a mistaken ID description (#943) (5103813)
Show how to use named databases (#932) (182fe4e)


Google Cloud Architecture Center
Changed
Architecting disaster recovery for cloud infrastructure outages: Added information about zonal and regional resilience of Speech-to-Text, Looker, and Cloud Intrusion Detection System.
Google Cloud Deploy
Announcement
Cloud Deploy support for custom targets is now generally available.
Google Cloud Marketplace Partners
Changed
When you create a new private offer, or replace an existing private offer, you select a payment frequency for how your customer is charged. This can be monthly, quarterly, annually, or custom. For more information, visit Payment frequency for private offers.
Google Distributed Cloud Virtual for Bare Metal
Announcement
Release 1.28.200-gke.118

GKE on Bare Metal 1.28.200-gke.118 is now available for download. To upgrade, see Upgrade clusters. GKE on Bare Metal 1.28.200-gke.118 runs on Kubernetes 1.28.

If you use a third-party storage vendor, check the GDCV Ready storage partners document to make sure the storage vendor has already passed the qualification for this release of GKE on Bare Metal. 
Fixed
Fixes:


Fixed an issue where upgrades are blocked because cluster-operator can't
delete stale, failing preflight check resources.

Fixed
Fixes:

The following container image security vulnerabilities have been fixed in 1.28.200-gke.118: 


Critical container vulnerabilities:


CVE-2023-25775

High-severity container vulnerabilities:


CVE-2023-5717
CVE-2023-6931
CVE-2023-6932
CVE-2023-35827
CVE-2023-51780
CVE-2023-51781
CVE-2023-51782
CVE-2024-21626

Medium-severity container vulnerabilities:


CVE-2023-6004
CVE-2023-6121
CVE-2023-6918
CVE-2021-44879
CVE-2023-34324
CVE-2023-45863
CVE-2023-46343

Low-severity container vulnerabilities:


CVE-2023-5178
CVE-2023-5197
CVE-2023-6531
CVE-2023-6817
CVE-2023-46813
CVE-2023-46862
CVE-2024-0193
CVE-2024-0641


Issue
Known issues:

For information about the latest known issues, see GKE on Bare Metal known issues in the Troubleshooting section.
Announcement
Release 1.15.10

GKE on Bare Metal 1.15.10 is now available for download. To upgrade, see Upgrade clusters. GKE on Bare Metal 1.15.10 runs on Kubernetes 1.26.

If you use a third-party storage vendor, check the GDCV Ready storage partners document to make sure the storage vendor has already passed the qualification for this release of GKE on Bare Metal.
Feature
GKE on Bare Metal version 1.15.10 and later has been qualified on and supports Red Hat Enterprise Linux (RHEL) version 8.9.
Fixed
Fixes:

The following container image security vulnerabilities have been fixed in 1.15.10: 


High-severity container vulnerabilities:


CVE-2023-29499
CVE-2024-21626

Medium-severity container vulnerabilities:


CVE-2023-6004
CVE-2023-6918
CVE-2023-32611
CVE-2023-32665
CVE-2024-0553


Issue
Known issues:

For information about the latest known issues, see GKE on Bare Metal known issues in the Troubleshooting section.
Google Kubernetes Engine
Feature
NVIDIA H100 (80 GB) GPUs are now available in GKE Autopilot mode in versions 1.28.6-gke.1369000 or later, and 1.29.1-gke.1575000 or later.
Feature
GPU workloads running in Autopilot mode can now be configured using the Accelerator Compute Class. This configuration supports resource reservations, Compute Engine committed use discounts, and a new pricing model in GKE versions 1.28.6-gke.1095000 and later, and 1.29.1-gke.1143000 and later.
Changed
(2024-R06) Version updates

GKE cluster versions have been updated.

New versions available for upgrades and new clusters.

The following Kubernetes versions are now available for new clusters and for
opt-in control plane upgrades and node upgrades for existing clusters. For more
information on versioning and upgrades, see GKE versioning and support
and Upgrades.

No channelNote: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

The following control plane and node versions are now available:

1.25.16-gke.1570000
1.26.14-gke.1044000
1.27.11-gke.1062000
1.28.7-gke.1026000
1.29.2-gke.1060000

The following versions are no longer available:

1.27.10-gke.1207000
1.28.6-gke.1369000
1.29.1-gke.1575000


Stable channelNote: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

Version 1.27.8-gke.1067004 is now the default version in the Stable channel.

Regular channelNote: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

There are no new releases in the Regular release channel.

Rapid channelNote: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

The following versions are now available in the Rapid channel:

1.25.16-gke.1570000
1.26.14-gke.1044000
1.27.11-gke.1062000
1.28.7-gke.1026000
1.29.2-gke.1060000

The following versions are no longer available in the Rapid channel:

1.25.16-gke.1460000
1.26.13-gke.1144000
1.27.10-gke.1207000
1.28.6-gke.1369000
1.29.1-gke.1575000

Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.24 to version 1.25.16-gke.1537000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.25 to version 1.26.14-gke.1006000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.26 to version 1.27.11-gke.1018000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.27 to version 1.27.11-gke.1018000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.29 to version 1.29.1-gke.1589000 with this release.


Changed
(2024-R06) Version updates
Note: Your clusters might not have these versions available. Rollouts are already in progress
  when we publish the release notes, and can take multiple days to complete across all Google Cloud
  zones.

The following versions are now available in the Rapid channel:

1.25.16-gke.1570000
1.26.14-gke.1044000
1.27.11-gke.1062000
1.28.7-gke.1026000
1.29.2-gke.1060000

The following versions are no longer available in the Rapid channel:

1.25.16-gke.1460000
1.26.13-gke.1144000
1.27.10-gke.1207000
1.28.6-gke.1369000
1.29.1-gke.1575000

Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.24 to version 1.25.16-gke.1537000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.25 to version 1.26.14-gke.1006000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.26 to version 1.27.11-gke.1018000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.27 to version 1.27.11-gke.1018000 with this release.
Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.29 to version 1.29.1-gke.1589000 with this release.

Changed
(2024-R06) Version updates
Note: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

Version 1.27.8-gke.1067004 is now the default version in the Stable channel.

Changed
(2024-R06) Version updates
Note: Your clusters might not have these versions available. Rollouts are already in progress
when we publish the release notes, and can take multiple days to complete across all Google Cloud
zones.

The following control plane and node versions are now available:

1.25.16-gke.1570000
1.26.14-gke.1044000
1.27.11-gke.1062000
1.28.7-gke.1026000
1.29.2-gke.1060000

The following versions are no longer available:

1.27.10-gke.1207000
1.28.6-gke.1369000
1.29.1-gke.1575000


Changed
(2024-R06) Version updates
Note: Your clusters might not have these versions available. Rollouts are already in progress when we publish the release notes, and can take multiple days to complete across all Google Cloud zones.

There are no new releases in the Regular release channel.

Migrate to Virtual Machines
Feature
Preview: Migrate to Virtual Machines lets you import a virtual disk image to a Compute Engine image. If you have virtual disk images with software and configurations that you need, you can save time by importing these virtual disk images to Compute Engine images, and use this image to create virtual machine instances or persistent disks.
Feature
Generally available: You can now use Customer-Managed Encryption Keys (CMEK) in Migrate to Virtual Machines to do the following:


Protect data stored by Migrate to Virtual Machines during the migration process.
Protect data of the migrated VMs created by clone and cut-over operations for all sources - AWS, Azure, and VMware.

Network Intelligence Center
Feature
Network Analyzer now includes an insight that gives a summary of the IP address utilization of all the Private Service Access ranges. This insight is also available in Recommender API. For more information, see PSA IP address utilization summary.
Pub/Sub
Libraries
A weekly digest of client library updates from across the Cloud SDK.

GoChanges for pubsub/apiv1

1.36.2 (2024-02-28)

Bug Fixes


pubsub: Fix out of order issue when exactly once is enabled (#9472) (e89fd6c)


Documentation


pubsub: Small fix in Pub/Sub ingestion comments (a86aa8e)

JavaChanges for google-cloud-pubsub

1.127.0 (2024-02-28)

Features


Add an API method for reordering firewall policies (#1868) (2039f7e)
Add universe domain support for Java (#1904) (1e316d3)
Next release from main branch is 1.126.0 (#1933) (255d8bc)


Dependencies


Update dependency com.google.cloud:google-cloud-bigquery to v2.37.2 (#1918) (b8846f9)
Update dependency com.google.cloud:google-cloud-storage to v2.34.0 (#1917) (4a7d6b9)
Update dependency com.google.protobuf:protobuf-java-util to v3.25.3 (#1919) (4bf13bb)
Update dependency org.graalvm.buildtools:native-maven-plugin to v0.10.1 (#1923) (cd704bd)

PythonChanges for google-cloud-pubsub

2.19.7 (2024-02-24)

Bug Fixes


deps: Require google-api-core>=1.34.1 (#1080) (1a5a134)


Sensitive Data Protection
Changed
A new detection model is available for the LOCATION infoType detector. The new model offers improved detection quality. You can try it out by setting InfoType.version to latest when including the LOCATION infoType in your InspectConfig.

You can still use the old model by setting InfoType.version to stable or leaving it unset when using the LOCATION infoType. In 30 days, the new model will be promoted to stable.
Spanner
Feature
Spanner now supports a new client library interface. The new interface leverages auto-generated admin clients instead of hand-written admin clients for improved efficiency and maintainability. While the older client library interface remains supported, all new Spanner admin features released after March 1, 2024 will be available exclusively through the new client library interface. All code samples in the Spanner documentation are updated to use the new client library interface. The older client interface code samples are archived in GitHub for Java, Node.js, Python, and PHP.
Vertex AI
Feature
Vertex AI Prediction

You can now use A3 machine types to serve predictions.
Workflows
Fixed
An issue that allowed jumps in or out of parallel branches, parallel loops, and for loops is resolved. Only these jumps are allowed:


To steps within the same parallel branch or loop
Between steps belonging to the same for loop

[/content]

PublishedDate: 2024-03-04
Category: Technology
NewsPaper: GCP latest releases