Google Cloud CLI - Release Notes

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

557.0.0 (2026-02-18)

Google Cloud CLI

Rebuilt Linux bundled Python for thegcloud CLI with setuptools 80.10.2 tofix CVE CVE-2026-24049.
Updategcloud feedback to remove Stack Overflow and IRC as communicationchannels.

App Engine

Updated the Go SDK to version 1.9.77.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.
Updated the Java SDK to version 4.0.2 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v4.0.2.

Cloud Backup DR

Added--cloudsql-edition flag togcloud backup-dr service-config init to support initializing Cloud SQL instances.

Cloud Bigtable

Rebuilt with Go 1.24.11 to fix CVE-2025-61727 and CVE-2025-61729.

Cloud DNS

Enforce version 3 in setIamPolicy managed zone command.

Cloud Interconnect

Deprecate--subzone flag ofgcloud compute interconnects create.

Compute Engine

Added--template flag forgcloud compute instance-groups managed update command in GA.
Promotedgcloud compute instant-snapshot-groups create to beta.
Promotedgcloud compute instant-snapshot-groups delete to beta.
Promotedgcloud compute instant-snapshot-groups describe to beta.
Promotedgcloud compute instant-snapshot-groups list to beta.
Promotedgcloud compute rollouts describe to beta.
Promotedgcloud compute rollouts list to beta.
Promotedgcloud compute rollouts cancel to beta.
Promotedgcloud compute rollouts delete to beta.
Addedmin-cpu-platform field in--instance-selection flag ofgcloud compute instance-groups managed create andgcloud compute instance-groups managed update in beta.
Added--discard-local-ssd flag togcloud compute instances create in alpha.
Updated the network troubleshooting logic withingcloud compute ssh --troubleshoot to handle IAP and IPv6 connectivity scenarios.

Compute Firewall Policies

Promoted--src-network-context flag ofgcloud compute firewall-policies rules create to GA.
Promoted--src-network-context flag ofgcloud compute firewall-policies rules update to GA.
Promoted--dest-network-context flag ofgcloud compute firewall-policies rules create to GA.
Promoted--dest-network-context flag ofgcloud compute firewall-policies rules update to GA.
Promoted--src-network-context flag ofgcloud compute network-firewall-policies rules create to GA.
Promoted--src-network-context flag ofgcloud compute network-firewall-policies rules update to GA.
Promoted--dest-network-context flag ofgcloud compute network-firewall-policies rules create to GA.
Promoted--dest-network-context flag ofgcloud compute network-firewall-policies rules update to GA.
Promoted--priority and--associated-policy-to-be-replaced flags ofgcloud compute network-firewall-policies associations create to beta.
Promotedgcloud compute network-firewall-policies associations updatecommand to beta.

Container Registry

Fixed an issue wheregcloud container images list-tags would crash with astack trace when receiving a non-JSON response from the server (e.g. an HTMLerror page). It now displays a user-friendly error message.

Eventarc

Added--clear-max-retry-attempts togcloud eventarc triggers update to support unsetting a RetryPolicy delivery attempt setting.

Looker

Added--catalog-integration-enabled flag togcloud looker instance create andgcloud looker instance update commands to manage Universal Dataplex Catalog integration with Looker.

Pubsub Emulator

Add support for AI Inference Single Message Transforms (SMTs).
Fix race condition in unit tests.

Workbench

Promotedgcloud workbench executions andgcloud workbench schedules to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

556.0.0 (2026-02-10)

Google Cloud CLI

Fixed--filter parsing errors ingcloud compute list commands when filterexpression contained "region" or "zone" as a substring somewhere in aparenthesized sub-expression.

AI

Added support for--disable-dedicated-endpoint togcloud ai model-garden models deploy.

App Engine

Promotedgcloud app migrate-to-run to beta.
Updated the Java SDK to version 4.0.1 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v4.0.1.

BigQuery

Added aqueryId in theexecution metadata ofRunQueryRpc return value if a job was not created.
Added support forlabels inRunQueryRpc method.
Improved stack trace format for Python UDF error messages.
Fixed a bug where Google Cloud CLI config properties would not be read correctly.
Fixed a bug where a failed Data Transfer config update would display a Success message.

Cloud Backup DR

Added--clear-encryption-key flag togcloud backup-dr backups restore compute to revert the CMEK encryption of disks of a VM to GMEK encryption.
Addedkms-key property to--create-disk flag to support encryption of restored disk with a Customer Managed Encryption Key (CMEK).

Cloud Run

Added warning message for orgless project while deploying cloud-run service with IAP enabled.

Cloud SQL

Promoted--server-certificate-rotation-mode flag to GA ingcloud sql instances create andpatch command.
Updated help text for--server-certificate-rotation-mode flag.

Compute Engine

Unhidedgcloud compute advice capacity command in alpha.
Fix bug with updating standby target size to0 when callinggcloud beta compute instance-groups managed update with flags--stopped-size or--suspended-size.
- Added--resource-manager-tags flag togcloud compute machine-images create in beta.
Added--resource-manager-tags flag togcloud compute machine-images create in v1.
Promotedgcloud compute rollout-plans command group to beta.

Compute Firewall Policy Rules

Promoted new values for--policy-type flag ofgcloud compute network-firewall-policies create to beta.

Developer Connect

Added flag--secure-source-manager-instance-config togcloud developer-connect connections create andgcloud developer-connect connections update.
Non-scm providers for developer-connect account-connectors will not be deprecated.

GKE Hub

Promotedcontainer fleet workload-identity methods to beta.

Kpt

Updated kpt to v1.0.0-beta.60. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.60 for more details.

Kubernetes Engine

Announced General Availability (GA) of support for the Image Streaming andSecondary Boot Disk feature on Ubuntu node images (UBUNTU_CONTAINERD) withinGoogle Kubernetes Engine. This allows clusters using Ubuntu nodes to benefitfrom faster container startups by streaming image data.
Updated the help text for--enable-image-streaming flag(ingcloud container clusters create/update andgcloud container node-pools create/update). The enhanced help text nowdirects users to the public documentation for detailed version requirements andusage instructions for Image Streaming with bothUBUNTU_CONTAINERD andCOS_CONTAINERD node images.
Updated the help text for--secondary-boot-disk flag(ingcloud container node-pools create). The help text now provides links tothe public documentation for detailed version requirements and usageinstructions across different node image types, includingUBUNTU_CONTAINERD.
Added flag option--autopilot-general-profile togcloud container clusters create,create-auto andupdatecommands.Accepted values are:none,no-performance. This flag allows specifying theAutopilot general compute profile for a cluster, available on clusters runningversion 1.32 or later. For more information, seehttps://cloud.google.com/kubernetes-engine/docs/concepts/autopilot-overview#autopilot-compute-platform.

Network Connectivity

Fixgcloud beta network-connectivity transports profiles by adding REGIONas a column onlist, and align on--region flag fordescribe.
Markedadvertised-routes as optional ingcloud beta network-connectivitytransports create.

Vector Search

Addedgcloud beta vector-search which allows for basic CRUDL operations on Vector Search 2.0 resources.
Added support for Data Objects aggregation, query and search.
Addedvector_search/location property to set default region forgcloud beta vector-search commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

555.0.0 (2026-02-03)

Google Cloud CLI

Rebuilt Linux bundled Python for thegcloud CLI with setuptools 80.10.1 to fix CVE GHSA-58pv-8j8x-9vj2.

Cloud Run

To reduce delay between the end of the build phase and the beginning of theservice deployment phase,gcloud run deploy --source commands poll the buildfor completion more frequently. This reduces overall latency for the command.

Cloud SQL

Addedgcloud sql users assign-roles which allows granting new roles andrevoking existing roles to/from Postgres/MySQL users.
Added--database-roles flag togcloud sql users create to allow grantingadditional database roles during user creation for Postgres/MySQL.
Added--destination-project and--destination-network flags togcloud sql instances clone for cross-project clone operations.Both flags must be specified together to perform a cross-project clone.

Cloud Services

Add--group flag togcloud services enable in beta.

Compute Engine

Addedgcloud compute reservations slots list command in beta.
Addedgcloud compute reservations slots describe command in beta.
Addedgcloud compute reservations slots list command in v1.
Addedgcloud compute reservations slots describe command in v1.
Deprecated--user-licenses ingcloud compute disks create andgcloud compute images create.
Deprecated--update-user-licenses and--clear-user-licenses ingcloud compute disks update andgcloud compute images update.
Promote--instance-selection and--instance-selection-machine-types flagsofgcloud compute instances bulk create to GA.
Added--resource-manager-tags flag togcloud compute storage-pools create in beta.
Added--resource-manager-tags flag togcloud compute storage-pools create in v1.

Developer Connect

Deprecate non-scm account-connector OAuth providers.

Kpt

Updated kpt bundled component to v1.0.0-beta.59.2. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.59.2 for more details.

Kubernetes Engine

Added kubelet config optionsshutdownGracefulPeriodSeconds andshutdownGracefulPeriodCriticalPodsSeconds togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update command which allows user customizationon node graceful shutdown.

Network Connectivity

Fixlist anddescribe forgcloud beta network-connectivity transports.
Addedgcloud beta network-connectivity transports update command.
Clarify--region flag forgcloud beta network-connectivity transportsdelete.

Network Management

Added--source-gke-pod and--destination-gke-pod flags togcloud network-management connectivity-tests to allow executingConnectivity Tests to or from GKE Pods.
Updated comments and enum options fornetwork,network-type, andproject arguments ofgcloud network-management connectivity-tests.

Pubsub Emulator

Add support for filtering to the Pub/Sub emulator.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

554.0.0 (2026-01-27)

Breaking Changes

(Google Cloud CLI) Deprecated Python 3.9. The minimum supported Python version is Python 3.10.
(Dataproc Metastore) Deprecated--read-write-regions and--read-only-regions flags ofgcloudmetastore services create. Use single region metastore instead.

BigLake

Promotedgcloud biglake iceberg to beta.

Cloud Dataflow

Added support for various flags--additional-experiments,--additional-pipeline-options,--additional-user-labels,--disable-public-ips,--temp-location,--staging-location,--num-workers,--max-workers,--worker-machine-type,--launcher-machine-type,--dataflow-kms-key,--enable-streaming-engine,--update,--transform-name-mappings togcloud dataflow yaml run command.

Cloud Managed Kafka

Added--view flag togcloud managed-kafka consumer-groups list to allow for full and basic views of consumer groups.

Cloud Resource Manager

Added Dynamic tags support togcloud resource-manager tags bindings delete command. This command can be used to detach a tag from a resource.

Cloud SQL

Updated 'cloud-sql-proxy' packaged component to use 2.21.0 of the Cloud SQL Proxy.
Modifiedgcloud sql connect command to use Cloud SQL Proxy V2 API.
- Added support for--auto-iam-authn,--private-ip,--psc,--auto-ip,--run-connection-test and--debug-logs flags.

Compute Engine

Added400g as an additional option for--bandwidth ofgcloud compute interconnects attachments dedicated create andgcloud compute interconnects attachments dedicated update.
Added--resource-manager-tags flag for alpha togcloud compute storage-pools create to allow users to add Resource Managertags to the storage pool resource during creation.
Added support to update graceful shutdown configuration ingcloud beta compute instances update-from-file command.

Kubernetes Engine

Added support for setting kernel module signature enforcement in node poolsvia system config file using--system-config-from-file flag ingcloud container cluster create andgcloud container node-pools create|update commands.

Network Connectivity

Fix flags forgcloud beta network-connectivity transports create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

553.0.0 (2026-01-21)

AI

Added support for the 'dcgm-fi-dev-gpu-util', 'vllm-gpu-cache-usage-perc',and 'vllm-num-requests-waiting' autoscaling metrics togcloud ai endpoints deploy-model andgcloud ai deployment-resource-poolscreate.

Auth Login

Added a warning message for scopes that will be blocked soon for the defaultclient ID generated bygcloud auth application-default login. Scopes include:
- https://www.googleapis.com/auth/drive
- https://www.googleapis.com/auth/spreadsheets
- https://www.googleapis.com/auth/drive.readonly
- https://www.googleapis.com/auth/analytics.readonly
- https://www.googleapis.com/auth/spreadsheets.readonly
- https://www.googleapis.com/auth/calendar
- https://www.googleapis.com/auth/adwords
- https://www.googleapis.com/auth/calendar.readonly
- https://www.googleapis.com/auth/analytics.edit
- https://www.googleapis.com/auth/drive.metadata.readonly
- https://www.googleapis.com/auth/content
- https://www.googleapis.com/auth/analytics
- https://www.googleapis.com/auth/contacts.readonly
- https://www.googleapis.com/auth/drive.metadata
- https://www.googleapis.com/auth/contacts
- https://www.googleapis.com/auth/youtube
- https://www.googleapis.com/auth/calendar.events.readonly
- https://www.googleapis.com/auth/drive.scripts
- https://www.googleapis.com/auth/docs
- https://www.googleapis.com/auth/drive.photos.readonly
For more information, seehttps://docs.cloud.google.com/docs/authentication/troubleshoot-adc#access_blocked_when_using_scopes.

Cloud Backup DR

Promotedgcloud backup-dr resource-backup-config command group to GA.
[Backup DR] Added--update-labels,--remove-labels, and--clear-labelsflags togcloud backup-dr backups update to support label management.
Made--backup-rule optional ingcloud backup-dr backup-plans create.

Cloud Dataproc

Added--auto-zone-exclude-zones flag togcloud dataproc clusters createto allow excluding specific zones when using auto zone placement.
Added--auto-zone-exclude-zones flag togcloud dataprocworkflow-templates set-managed-cluster to allow managed clusters to beto allow excluding specific zones when using auto zone placement.

Cloud Datastream

Added Spanner as a supported source ingcloud datastream connection-profiles andgcloud datastream streams command groups.
Added flags for Spanner source ingcloud datastream connection-profiles command group.
Added flags for Spanner source ingcloud datastream streams command group.

Cloud NetApp

Addedgcloud netapp volumes establish-peering command to establish peering for cache volumes.

Cloud Resource Manager

Promoted--allowed-values-regex flag ofgcloud resource-managertags keys create/update to GA. This will allow the Tag Values shortNameconfining to the regex getting created during the time of Binding creation.

Cloud Run

Modifiedgcloud run compose up to support caching in source builds.

Cloud Storage

Updatedgcloud storage batch-operations jobs list to return a new column "DRY_RUN" to indicate the mode of the jobs.

Compute Engine

Added--accelerator-topology-mode flag togcloud compute resource-policies create workload-policy andgcloud compute resource-policies create group-placement commands.
Added RESERVATION_BOUND and FLEX_START options to --provisioning-model flag in gcloud compute instances update-from-file command.
Promoted--allow-cidr-routes-overlap flag ofgcloud compute networks subnets update to GA.
Added--allow-cidr-routes-overlap flag togcloud compute networks subnets create to allow creating subnetworks with IP ranges that can overlap with custom routes within the VPC.
Promoted--capacity-tier flag to beta.

Developer Connect

Updatedgcloud developer-connect insights-configs create to support--target-projects flag.
Added generic HTTP Endpoint config connection type togcloud developer-connect connection create|update commands.
Updatedgcloud developer-connect create to support--github-enterprise-config-organization flag.

Kubernetes Engine

Added--subnet togcloud container node-poolscreate command.

Oracle Database

Removed unsupported fields from Autonomous Database Update command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

552.0.0 (2026-01-13)

BigQuery

Added--managed_table_type inbq mk --transfer_config to support destination table type in Data Transfer Service.
Fixed the bug wherebq command would stop responding indefinitely when the Cloud Resource Manager API was not enabled in the project.

Cloud Composer

Updated warning message to reflect Composer 3 as the default version.

Cloud Firestore

Promotedenable-firestore-data-access,enable-mongodb-compatible-data-access andenable-realtime-updates to beta and GA.

Cloud Infrastructure Manager

Addedgcloud infra-manager automigrationconfig describe,gcloud infra-manager automigrationconfig enable-auto-migration, andgcloud infra-manager automigrationconfig disable-auto-migration commandsto manage Infrastructure Manager AutoMigrationConfig.

Cloud Run

Added--region flag togcloud beta run worker-pools logs command group.
Added--instances flag togcloud beta run worker-pools deploy/update to replace--scaling flag.
Deprecated--scaling flag fromgcloud beta run worker-pools deploy/update.
Addedgcloud run compose up command to alpha and beta.
Added--[no-]iap togcloud beta run multi-region-services.

Cloud Storage

Promoted--activity-data-retention-period-days flag ingcloud storage insights dataset-configs to GA.
Added--dry-run flag togcloud storage batch operations jobs create to support creating dry run jobs.

Cloud Workstations

Promoted--instance-metadata flag ofgcloud workstations configs create andgcloud workstations configs update to GA.

Compute Engine

Add--accelerator-topology-mode support togcloud compute resource-policies create workload-policyandgcloud compute resource-policies create group-placement commands.

Design Center

Added--create-sa flag togcloud design-center spaces applications deploy command in GA. This flagautomates the creation, role binding, and configuration of a new serviceaccount required for the application deployment.--service-account flagcan be used in conjunction with--create-sa to specify the name for thenew service account.
Added--create-sa flag togcloud design-center spaces applications preview command in GA. This flagautomates the creation, role binding, and configuration of a new serviceaccount required for the application preview.--service-account flagcan be used in conjunction with--create-sa to specify the name for thenew service account.

Developer Connect

Updatedgcloud developer-connect insights-configs create to support--target-projects flag.
Added generic HTTP Endpoint config connection type togcloud developer-connect connection create|update commands.

Kubernetes Engine

Added new kubectl version 1.35.0 for the RAPID channel.
Additional kubectl versions:
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.14)
- kubectl.1.32 (1.32.11)
- kubectl.1.33 (1.33.7)
- kubectl.1.34 (1.34.3)
- kubectl.1.35 (1.35.0)

Network Services

Addedgcloud compute networks peerings cancel-request-delete command to alpha and beta. This command is used to cancel a pending request to delete a consensus peering between two networks.

Vmware Engine

Addeddatastores command togcloud vmware to create, delete, update, describe and list datastores.
Addedmount-datastore andunmount-datastore command togcloud vmware private-clouds clusters tomount andunmount datastore on the given cluster.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

551.0.0 (2026-01-06)

Breaking Changes

(Google Cloud CLI) Removed the deprecatedCloud Tools for PowerShell component from "gcloud CLI".
- Starting this release,Cloud Tools for PowerShell is no longer availablein Google Cloud CLI. The component is removed from distribution. Cloud Toolsfor PowerShell has not been installed by default since April 2025 and thischange will likely not affect you.
- We recommend migrating any workflows dependent on these tools to the"gcloud CLI" or the Client Libraries to ensure future compatibility andsupport.
- If you require Cloud Tools for PowerShell, you can install it manually froman archived Google Cloud CLI install version 550.0.0 or older.

AI

Added--min-gpu-driver-version flag togcloud beta ai endpoints deploy-model for specifying the minimum GPU driver version.

App Engine

Updated the Java SDK to new major version 4.0.0 from 3.0.3https://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v4.0.0.
API breaking changes described inhttps://github.com/GoogleCloudPlatform/appengine-java-standard/blob/main/RELEASENOTES.md.

Cloud Backup DR

Promotedgcloud backup-dr resource-backup-config command group to GA.

Cloud Dataplex

Added--enable-catalog-publishing flag togcloud dataplex datascans dataprofile create/update command groups.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.20.3
- Fixed transaction lock timeout error.
- Fixed bug where import job did not properly reserve imported ids.

Cloud Functions

Added flags--network,--subnet,--network-tags, and--direct-vpc-egress togcloud functions deploy inalpha andbetatracks for supporting Direct VPC.

Cloud Memorystore

Add--labels flag togcloud redis clusters create.
Add--update-labels flag togcloud redis clusters update.
Add--remove-labels flag togcloud redis clusters update.
Add--clear-labels flag togcloud redis clusters update.

Cloud Run

Addedgcloud beta run worker-pools logs command group, includingread andtail commands, to support viewing logs for worker pools.
Fixed an issue wheregcloud run services logs andgcloud run jobs logscommand groups, includingread andtail commands, would crash if arequest log had a missing attribute value.

Cloud Spanner

Add autoscaler flags togcloud spanner instance-partitons create andgcloud spanner instance-partitions update commands in beta and GA.
Add total CPU based autoscaling flags togcloud spanner instances create andgcloud spanner instances update commands in beta and GA.
Promotedisable downscaling flag options forgcloud spanner instances create andgcloud spanner instances update commands for GA.

Cloud Storage

gcloud storage cp:
- Skipping copying files which goes outside of destination directory.

Cloud Workstations

Added--disk-type,--disk-size,--disk-reclaim-policy, and--disk-source-snapshot togcloud workstations configs create andgcloud workstations configs update.
Added support for Hyperdisk with--disk-type=hyperdisk-balanced-ha.

Compute Engine

Added--resource-manager-tags flag for alpha togcloud compute snapshots create to allow users to add Resource Managertags to the snapshot resource during creation.
Added--resource-manager-tags flag for alpha togcloud compute disks create to allow users to add Resource Manager tagsto the disk resource during creation.

Compute Firewall Policies

Promoted--src-network-context flag ofgcloud compute firewall-policies rules create to beta.
Promoted--src-network-context flag ofgcloud compute firewall-policies rules update to beta.
Promoted--dest-network-context flag ofgcloud compute firewall-policies rules create to beta.
Promoted--dest-network-context flag ofgcloud compute firewall-policies rules update to beta.
Promoted--src-network-context flag ofgcloud compute network-firewall-policies rules create to beta.
Promoted--src-network-context flag ofgcloud compute network-firewall-policies rules update to beta.
Promoted--dest-network-context flag ofgcloud compute network-firewall-policies rules create to beta.
Promoted--dest-network-context flag ofgcloud compute network-firewall-policies rules update to beta.

Gemini

Promotedgcloud gemini cloud-assist investigations commands to beta.

Kubernetes Engine

Added--node-drain-grace-period-seconds,--node-drain-pdb-timeout-seconds, and--respect-pdb-during-node-pool-deletion togcloud container node-poolscreate andgcloud container node-pools update commands.

Workbench

AddedNVIDIA_H200_141GB andNVIDIA_B200option to--accelerator-type flag ofgcloud workbench instances createandgcloud workbench instances update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

550.0.0 (2025-12-16)

Google Cloud CLI

Updated Linux bundled Python for thegcloud CLI to 3.13.10 with pip v25.3.

App Engine

Updated the Java SDK to version 3.0.3 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v3.0.3.
Upgraded Eclipse Jetty web server to versions 12.0.31 and 12.1.5 that fixes:
- https://github.com/GoogleCloudPlatform/appengine-java-standard/issues/423
- https://github.com/GoogleCloudPlatform/appengine-java-standard/issues/426

Artifact Registry

Made theshow-package-vulnerability flag public forgcloud artifacts versions describe.

BigQuery

Added an error message on how to set a quota project ID when expected by the API.
Updatedbq info command to show OpenSSL version.
Added new--scheduling_policy_max_slots flag that can be used to set a slot usage cap on BigQuery jobs for either all projects under a reservation or a specific one.
Added new--scheduling_policy_concurrency flag that can be used to cap the number of concurrently running BigQuery jobs for either all projects under a reservation or a specific one.
Added new--use_gcloud_config to allow disabling the reading of the activegcloud CLI configuration (enabled by default).
Added more incompatible flag checks for Dataset and Table inbq update.
Improved error messages for unidentifiable resource names.
Added setting--mtls flag value from gcloudcontext_aware.use_client_certificate config property.

Cloud Composer

Added--airflow-version togcloud composer environments update to upgrade Cloud Composer environment to a newer Composer version.

Cloud Dataplex

Added one-time trigger support to dataplex datascans create commands.

Cloud Filestore

Addedgcloud filestore instances resume-replica command for filestoreinstances. Theresume-replica verb resumes a standby replica instance.

Cloud Key Management Service

Addedgcloud kms single-tenant-hsm create (beta, GA) command tocreate a single-tenant Hardware Security Module (HSM) instance, used forCryptoKeys withHSM_SINGLE_TENANT protection level. Requires--locationand--total-approver-count.
Addedgcloud kms single-tenant-hsm describe (beta, GA) command toshow details of a single-tenant HSM instance. Requires the instance ID as apositional argument and--location flag.
Addedgcloud kms single-tenant-hsm list (beta, GA) command tolist single-tenant HSM instances.
Addedgcloud kms single-tenant-hsm proposal create (beta, GA)command to create a proposal for operations on a single-tenant HSMinstance. Requires--location and--operation-type. Supportedoperation types are:register_2fa_keys,disable_sthi,enable_sthi,delete_sthi,add_quorum_member,remove_quorum_member, andrefresh_sthi. The--single-tenant-hsm-instance-proposal-id flag isoptional.
Addedgcloud kms single-tenant-hsm proposal execute (beta, GA)command to execute an approved proposal on a single-tenant HSM instance.Requires proposal ID as a positional argument,--location flag,and--single-tenant-hsm-instance flag.
Addedgcloud kms single-tenant-hsm proposal list (beta, GA)command to list proposals for a single-tenant HSM instance. Requires--location and--single-tenant-hsm-instance.
Addedgcloud kms single-tenant-hsm proposal describe (beta, GA)command to show details of a single-tenant HSM instance proposal. Requiresthe proposal ID as a positional argument,--location flag, and--single-tenant-hsm-instance flag.
Addedgcloud kms single-tenant-hsm proposal delete (beta, GA)command to delete a proposal on a single-tenant HSM instance. Requires theproposal ID as a positional argument,--location flag, and--single-tenant-hsm-instance flag.
Addedgcloud kms single-tenant-hsm proposal approve (beta, GA)command to approve a proposal on a single-tenant HSM instance. Requires theproposal ID as a positional argument,--location flag, and--single-tenant-hsm-instance flag. Approval payloads are provided viaeither--quorum-reply or a combination of--required-challenge-replies and--quorum-challenge-replies.
- --quorum-reply: Takes a list of tuples, where each tuple containsthe file paths for a signed challenge and a public key, in the format('signed_challenge_file', 'public_key_file').
- --required-challenge-replies: Takes a list of tuples, where each tuplecontains the file paths for a required signed challenge and a publickey, in the format('signed_challenge_file', 'public_key_file').
- --quorum-challenge-replies: Takes a list of tuples, where each tuplecontains the file paths for a quorum signed challenge and a publickey, in the format('signed_challenge_file', 'public_key_file').
Addedgcloud kms operations describe (beta, GA) command to showdetails of a KMS operation.
Updatedgcloud kms keys versions describe to allow--attestation-fileflag for key versions with protection levelHSM_SINGLE_TENANT.
Updatedgcloud kms keys versions get-certificate-chain to allowretrieving certificate chains for key versions with protection levelHSM_SINGLE_TENANT.
Updatedgcloud kms import-jobs create (beta, GA) to include--single-tenant-hsm-instance flag, allowing users to associate the importjob with a specific single-tenant HSM instance.

Cloud Run

Promotedgcloud run worker-pools IAM policy management commands (add-iam-policy-binding,get-iam-policy,remove-iam-policy-binding, andset-iam-policy) to beta.

Cloud Spanner

Added--directed-read flag togcloud spanner cli that enables directedreads to provide the flexibility to route read-only transactions and singlereads to a specific replica type or region (replica_location:replica_type).The replica_type is optional and can be either READ_ONLY or READ_WRITE.
Added--proto-descriptor-file flag togcloud spanner cli to provide pathof a file that contains aprotobuf-serialized google.protobuf.FileDescriptorSetmessage to use in this invocation.

Cloud Storage

Promoted--activity-data-retention-period-days flag ingcloud storage insights dataset-configs to GA.

Cloud Workstations

Added--instance-metadata flag togcloud beta workstations configs create andgcloud beta workstations configs update commands.

Compute Engine

Added--ip-collection flag togcloud compute addresses create command.
Added support for Workforce Identity Federation in GA gcloud.
Added--resource-manager-tags flag for alpha togcloud compute images create to allow users to add Resource Manager tagsto the image resource during creation.
Updatedgcloud compute global-vm-extension-policies help text for--rollout-conflict-behavior and--rollout-predefined-plan arguments.

Developer Connect

Updatedgcloud developer-connect insights-configs create to support--target-projects flag.

Eventarc

Added--max-retry-attempts togcloud eventarc triggers create andgcloud eventarc triggers update to support specifying a RetryPolicy.

Kubernetes Engine

Promotedgcloud container fleet rollouts describe|list to beta.
Promotedgcloud container fleet rolloutsequences create|describe|list|update|delete to beta.

Network Connectivity

Addedgcloud network-connectivity transport delete,gcloud network-connectivity transport list, andgcloud network-connectivity transport describe commands.
Addedgcloud network-connectivity transport remote-profiles list andgcloud network-connectivity transport remote-profiles describe commands.
Addedgcloud network-connectivity transport create command.
Fixedgcloud network-connectivity transport remote-profiles list command.

Workbench

Fixed boolean flag--install-gpu-driver ingcloud workbench instances update command always parsing as true.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

549.0.1 (2025-12-10)

Google Cloud CLI

Fixed anAttributeError during macOS install causing gcloud to crash.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

549.0.0 (2025-12-09)

Google Cloud CLI

Rebuilt Linux bundled Python for thegcloud CLI with pip v25.3 which fixed CVE-2025-8869.
Rebuilt Windows bundled Python for thegcloud CLI with setuptools v80.9.0 which fixed CVE-2025-47273.
Updated Python installation experience on macOS to automatically install required dependencies when usinggcloud CLI managed Python environment without prompting.

AI

Added--deployment-tier flag togcloud ai index-endpoints deploy-indexto support storage optimized indexes.
Added--gpu-partition-size flag togcloud ai endpoints deploy-model for multi-instance GPU partitioning.

API Registry

Addedgcloud api-registry mcp servers list command to alpha and beta which lists the MCP servers that are available for consumption in the target project.
Addedgcloud api-registry mcp enable [SERVICE_NAME] command to alpha and beta which enables a given MCP server for use in the target project.
Addedgcloud api-registry mcp disable [SERVICE_NAME] command to alpha and beta which disables a given MCP server in the target project.
Addedgcloud api-registry mcp tools list command to alpha and beta which lists the MCP tools available from the MCP servers in the target project.

AlloyDB

Added support for z3 machine-types ingcloud alloydb instances create andgcloud alloydb instances update.

App Hub

Promotedgcloud apphub boundary commands to the GA release track and unhide them.

Certificate Authority Service

Added--encryption-key flag togcloud privateca pools create andgcloud privateca pools update. The flag accepts the full resource name ofa Cloud KMS key to use for encrypting certificate data at rest.The Cloud KMS key must be located in the same region as the CA pool.

Cloud Alerting

Promotedgcloud monitoring policies andgcloud monitoring policies conditions command groups to beta and GA.

Cloud Backup DR

Updatedgcloud backup-dr backup-plan-associations trigger-backup to return the long-running operation.

Cloud Bigtable

Added support for 'app-profile' in CBT CLI count command.

Cloud Composer

Addedextra-large option togcloud composer environments create/update for newly introduced XL Composer environment size.

Cloud Datastream

Added--rule-sets argument togcloud datastream streams create andgclouddatastream streams update to support configuring customization rules forstreams, particularly BigQuery Partitioning and Clustering.

Cloud Filestore

Addedgcloud beta filestore instances resume-replica command for filestoreinstances. Theresume-replica verb resumes a standby replica instance frompaused state.

Cloud Functions

Madegcloud functions deploy gracefully skip non-existent paths in sourcedirectories containing dangling symbolic links, preventingFileNotFoundErrorcrashes.

Cloud Managed Kafka

Managed Kafka Connectors now default to retrying failures. This can be disabled with --task-retry-disabled.
Promoted full flag to beta and GA.
Added deprecation warning forgcloud managed-kafkaconnect-clusters--additional-subnetwork flag.
- Managed Kafka Connect clusters can now reach any endpoint accessiblefrom the primary subnet without the need to define additional subnets.Please seehttps://cloud.google.com/managed-service-for-apache-kafka/docs/connect-cluster/create-connect-cluster#worker-subnetfor more information.
Thegcloud managed-kafka connect-clusters list command no longerdisplays theNETWORK column which formerly showed the additionalsubnetworks (now deprecated).

Cloud NetApp

Introduced--cache-pre-populate flag togcloud netapp volumes create andgcloud netapp volumes update to pre-populate cache volumes.
Addedsquash-mode andanon-uid options to--export-policy flag ofgcloud netapp volumes create|update commands to configure root squash behavior for NFS export policies.
Added--kms-config flag togcloud netapp backup-vaults create to support cmek encrypted backups.

Cloud Resource Manager

Addedgcloud resource-manager capabilities commands. This command can be used to enable or disable capabilities on a CRM Folder.

Cloud Run

Promotedmount-path parameter for--add-volumes flag togcloud beta run [services/jobs/worker-pools] command groups.

Cloud SQL

Added--entra-id-tenant-id flag and--entra-id-application-id togcloud sql instances create andpatch in alpha and beta.
Added--clear-entra-id-config togcloud sql instances patch alpha and beta.

Cloud Services

Promotedgcloud services mcp enable command to beta to enable the ModelContext Protocol (MCP) endpoint for the specified service(s) on the givenproject, folder, or organization.
Promotedgcloud services mcp disable command to beta to disable the ModelContext Protocol (MCP) endpoint for the specified service(s) on the givenproject, folder, or organization.
Promotedgcloud services mcp list command to beta to enumerate the MCPendpoints offered, showing them as either enabled or available for thegiven project, folder, or organization.

Cloud Workstations

Promoted--startup-script-uri flag ofgcloud workstations configs create andgcloud workstations configs update to GA.
Fixed bugs and typos instartup_script_uri support forgcloud beta workstations configs create andgcloud beta workstations configs update.
Updatedgcloud workstations configs create to now accept--disk-type=hyperdisk-balanced-ha for use withHyperdisks.

Compute Engine

Promotedgcloud compute url-map support for regional backend buckets to beta.
Updatedgcloud compute routers update to display a warning message when--add-advertisement-ranges,--remove-advertisement-ranges, or--set-advertisement-ranges are specified, cautioning that custom routes onBGP sessions override custom routes on the router.
Promoted--candidate-cloud-router-ip-address and--candidate-customer-router-ip-address flags forgcloud compute interconnects attachments dedicated create,gcloud compute interconnects attachments partner create, andgcloud compute interconnects attachments provider create to GA to allowusers to add custom ranges to the interconnect attachment.
Promoted--candidate-cloud-router-ipv6-address and--candidate-customer-router-ipv6-address flags forgcloud compute interconnects attachments dedicated create,gcloud compute interconnects attachments partner create,gcloud compute interconnects attachments provider creategcloud compute interconnects attachments dedicated update,gcloud compute interconnects attachments partner update, andgcloud compute interconnects attachments provider update to GAto allow users to add custom ranges to the interconnect attachment.

Developer Connect

Added gemini-code-assist value to github-config-app.
Added support for regional Secret Manager secrets.

Kubernetes Engine

Updated default kubectl to 1.33.5.
Additional kubectl versions:
- kubectl.1.28 (1.28.15)
- kubectl.1.29 (1.29.15)
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.14)
- kubectl.1.32 (1.32.10)
- kubectl.1.33 (1.33.6)
- kubectl.1.34 (1.34.2)
Added a new commandgcloud beta container clusters complete-control-plane-upgrade for user to complete two-step control plane minor upgrade.
Added a new flag--control-plane-soak-duration togcloud beta container clusters upgrade to trigger two-step control plane minor upgrade.
Added--use-case,--target-input-length,--target-output-length,--target-itl-milliseconds togcloud container ai profiles listcommand.
Addedgcloud container ai profiles use-case list command.
Addeduse-case flag to the benchmarks list.
Addedtarget-itl-milliseconds anduse-case flag to manifest command.
Addedgcloud container ai profiles serving-stacks list command.
Addedgcloud container ai profiles serving-stack-versions list command.
Added arguments--serving-stack and--serving-stack-version to profilecommandsgcloud container ai profiles list,gcloud container ai benchmarkslist andgcloud container ai profiles manifests create.
Added output ofServing Stack andServing Stack Version to profile outputof commandsgcloud container ai profiles listgcloud container ai benchmarkslist.

Looker

Addedclear-periodic-export-config and periodic export group flags togcloud looker instances update command to schedule data export.

Workbench

Promoted--enable-managed-euc flag to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

548.0.0 (2025-11-18)

AlloyDB

Added flag--maintenance-version togcloud alloydb clusters update commandin the GA track to support self-service maintenance.

App Engine

Updated the Java SDK to version 3.0.2 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v3.0.2.
Upgraded Eclipse Webtide Jetty web servers to versions 12.0.30 and 12.1.4.

App Hub

Addedgcloud apphub extended-metadata-schemas command group withdescribe andlist commands to retrieve extended metadata schemas.

Cloud Backup DR

Addedgcloud backup-dr backups fetch-for-resource-type command to GA track.
Addedgcloud backup-dr data-source-references list command to GA track.
Added--labels to trigger backup command.
Added an optional--max-custom-on-demand-retention-days input togcloud backup-dr backup-plans create andgcloud backup-dr backup-plans update.
Added an optional--custom-retention-days input togcloud backup-dr backup-plans-associations trigger-backup.
Addedbackup-retention-inheritance flag togcloud backup-dr backup-vaults create to specify backup retention inheritance mode during backup vault creation.
Added--kms-key flag togcloud backup-dr backup-vaults create for customer-managed encryption key support for backup vault.
Added--clear-encryption-key flag togcloud backup-dr backups restore disk to restore a CMEK-encrypted disk as a GMEK-encrypted disk.

Cloud Dataplex

Promotedgcloud dataplex datascans create data-documentation command to GA.
Promotedgcloud dataplex datascans update data-documentation command to GA.

Cloud Deploy

Added--docker-version flag togcloud deploy releases create.
Added--helm-version flag togcloud deploy releases create.
Added--kpt-version flag togcloud deploy releases create.
Added--kubectl-version flag togcloud deploy releases create.
Added--kustomize-version flag togcloud deploy releases create.

Cloud Run

Addedgcloud run compose up command to alpha and beta.* Added support for--readiness-probe flag in beta forgcloud run services command groups.
Added--no-build flag togcloud run deploy --source command in beta. This allow for faster deployment whne using a self-contained source by skipping the cloud build step.
Updated--container flag parsing to allow for non-container flags to be specified after a--container flag.

Cloud Storage

Promotedgcloud storage intelligence-configs commands to GA.
Promotedgcloud storage insights dataset-configs commands to GA.

Cloud Workstations

Fixed bugs and typos in startup_script_uri support forgcloud beta workstations configs create andgcloud beta workstations configs update.

Compliance Manager

Promotedgcloud compliance-manager to GA.

Compute Engine

Promotedgcloud compute global-vm-extension-policies to beta.

Compute Firewall Policies

Promoted--target-type flag to beta ingcloud compute network-firewall-policies create andgcloud compute network-firewall-policies update.
Promoted--target-forwarding-rules flag to beta ingcloud compute network-firewall-policies create andgcloud compute network-firewall-policies update.

Compute OS Config

Add--skip-unpatchable-vms flag togcloud compute os-config patch-jobs execute.

Developer Connect

Added generic HTTP Endpoint config connection type togcloud developer-connect connection create|update commands.

Kubernetes Engine

Add support for kernel module signature enforcement in node pools using--enable-kernel-module-signature-enforcement flag, which applies togcloud container cluster create|create-auto|update andgcloud container node-pools create|update commands.

Migrate to Virtual Machines

Added--guest-os-features flag togcloud migration vms image-importscreate andgcloud compute migrations image-importscreate commands.

Model Armor

Added the following flags togcloud model-armor floorsettings update command to support Vertex and MCP integrations:
- --add-integrated-services
- --remove-integrated-services
- --clear-integrated-services
- --vertex-ai-enforcement-type
- --enable-vertex-ai-cloud-logging
- --google-mcp-server-enforcement-type
- --enable-google-mcp-server-cloud-logging
- --enable-multi-language-detection

Security Command Center

Addedagent-engine-threat-detection service to theSUPPORTED_SERVICES list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

547.0.0 (2025-11-11)

Breaking Changes

(Cloud Storage) Updatedgcloud storage sign-url to prefer virtual hosted-style URL over path-style URL. This behavior can be overridden by using--path-style-url flag.

Google Cloud CLI

Fixed issue where Google Compute Engine metadata server requests would failwhen refreshing authentication credentials if a proxy was configured and theno_proxy environment variable wasn't set.
Updated Windows bundled Python for thegcloud CLI to 3.13.8.

Cloud Alerting

Promotedgcloud monitoring alerts describe to beta.

Cloud Backup DR

Addedgcloud backup-dr backups fetch-for-resource-type command to GA track.
Addedgcloud backup-dr data-source-references list command to GA track.

Cloud Dataflow

Added support for Java 25 for--flex-template-base-image option ingcloud dataglow flex_template build.

Cloud Interconnect

Promotedcompute interconnects attachments l2-forwarding command2 to beta and GA.
Added--resource-manager-tags flag togcloud compute interconnects createto add Resource Manager Tags to resources at creation.
Added--resource-manager-tags flag togcloud compute interconnects attachments dedicated create,gcloud compute interconnects attachments partner create,gcloud compute interconnects attachments provider create,andgcloud compute interconnects attachments l2-forwarding commandsto add Resource Manager Tags to resources at creation.

Cloud NetApp

Addedgcloud netapp host-groups command group to GA, includingcreate,delete,describe,list, andupdate commands to manage NetApp Host Groups.
Added--type flag togcloud netapp storage-pools create to specify the storage pool type (e.g.,UNIFIED) upon creation.
Added--block-devices flag togcloud netapp volumes create andgcloud netapp volumes update to manage block device configurations for volumes.

Cloud On Demand Scanning

Add support for scanning Minimus (MinimOS) containers.

Cloud SQL

Updated 'cloud-sql-proxy' packaged component to use 2.19.0 of the Cloud SQLProxy.
Added--storage-type flag togcloud sql instances patch.

Cloud Services

Promotedgcloud beta services enable command to beta to enable services for a given project, folder, or organization.
Note: The organization policy constraintconstraints/serviceuser.services may not work correctly if you enable aservice at the folder or organization level using Service Usage withHierarchical Service Activation. To recreate the same behavior in acompatible way, it is recommended to replaceconstraints/serviceuser.services with the Restrict Resource Service Usageorganization policy.
Note: Previously, enabling some services also triggered service accountcreation. This logic is now separate. If you encounter a service account notfound error, please report this to service-usage-feedback@google.com. Youcan usegcloud services enable orgcloud beta services identity createto create the necessary service account.
Note: The command will now return an error if the user attempts toenable a service that is already enabled.
Promotedgcloud beta services disable command to beta to disable servicesfor a given project, folder, or organization.
Note: When disabling a service with Hierarchical Service Activation,existing consumer-controlled resources can block the process. Please deletethese resources and try again. If resources cannot be deleted, report theissue to the respective service team. Alternatively, use the RestrictResource Service Usage organization policy constraint to restrict serviceaccess.
Note: The command will now return an error if the user attempts todisable a service that is not enabled.
Promotedgcloud beta services list command to beta to list Google Cloudservices and APIs that are enabled or available for a given project, folder,or organization.
Note: Some services previously hidden may now appear in the enabledlist with Hierarchical Service Activation. This does not necessarily meanthey were newly enabled. They can be disabled usinggcloud beta servicesdisable if desired.* Promotedgcloud services groups list-members command to beta to list the direct members of a specified service dependency group.
Promotedgcloud services groups list-members command to beta to list the direct members of a specified service dependency group.
Promotedgcloud services groups list-expanded-members command to beta to list all transitive members, including nested dependencies, within a service dependency group.
Promotedgcloud services policies get command to beta to retrieve the consumer policy for the given project, folder, or organization.
Promotedgcloud services policies get-effective command to beta to retrievethe effective consumer policy for the given project, folder, or organization,including policies inherited from ancestors.
Promotedgcloud services policies test-enabled command to beta to test if a service value is enabled for the given project, folder, or organization, including policies inherited from ancestors.
Promotedgcloud services policies update command to beta to update the consumer policy for the given project, folder, or organization using a provided file.
Note: Please refer tohttps://docs.cloud.google.com/service-usage/docs/hierarchical-service-activation/overview for more details on hierarchical service activation.

Cloud Spanner Emulator

Addgcloud emulators spanner notices command to print third party notices.

Cloud Storage

AddedRetain-Until andRetention-Mode options to--put-metadata flag ingcloud storage batch-operations jobs create to set object retention.
Fixedgcloud storage sign-url: The--region flag is no longer required for operations on existing buckets, but is still needed when generating a URL to create a bucket.

Cloud Workstations

Added support for startup script uri inbeta workstations config create andbeta workstations config update command.

Compute Engine

Added--ipv6-access-type flag togcloud beta compute public-advertised-prefixes create.
Added--ipv6-access-type flag togcloud compute public-advertised-prefixes create.
Addedgrpc-with-tls command group togcloud compute health-checks to allow users to create a new health check type.
Added--internal-ipv6-prefix flag togcloud beta compute networks subnets create andgcloud beta compute networks subnets update.
Added--internal-ipv6-prefix flag togcloud compute networks subnets create andgcloud compute networks subnets update.
Support--mode=internal-ipv6-subnetwork-creation ingcloud beta compute public-delegated-prefixes create andgcloud beta compute public-delegated-prefixes delegated-sub-prefixes createcommands.
Support--mode=internal-ipv6-subnetwork-creation ingcloud compute public-delegated-prefixes create andgcloud compute public-delegated-prefixes delegated-sub-prefixes createcommands.

Kubernetes Engine

Added--enable-pod-snapshots and--disable-pod-snapshots flag togcloudbeta container clusters create|update commands to enable or disable GKE PodSnapshot feature.

Looker

Added--egress-enabled,--marketplace-enabled, and--egress-fqdns flagstogcloud looker instances update to manage Controlled Egress settings.

Model Armor

Added the following flags togcloud beta model-armor floorsettings update command to support MCP integrations:
- --google-mcp-server-enforcement-type
- --enable-google-mcp-server-cloud-logging

Service Extensions

Promotedgcloud service-extensions lb-edge-extensions command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

546.0.0 (2025-11-04)

Google Cloud CLI

Updated MacOS Python Virtualenv for thegcloud CLI to 3.13.7.
Updated Linux bundled Python for thegcloud CLI to 3.13.7.

AI

Added--min-scaleup-period,--idle-scaledown-period, and--initial-replica-count flags togcloud beta ai endpoints create to supportscale-to-zero functionality for Vertex Online Inference.

Cloud Bigtable

Promotedgcloud bigtable schema-bundles create|describe|list|update|delete commands to GA.
Promotedgcloud bigtable schema-bundles get-iam-policy to GA.
Promotedgcloud bigtable schema-bundles set-iam-policy to GA.
Promotedgcloud bigtable schema-bundles add-iam-policy-binding to GA.
Promotedgcloud bigtable schema-bundles remove-iam-policy-binding to GA.

Cloud Filestore

Addedaddress-mode option to--network flag ofgcloud filestore instances create command.

Cloud Firestore

Promotedgcloud firestore databases clone command to beta and GA.

Cloud Functions

Added support for pyproject.toml when deploying Python functions.

Cloud Pub/Sub

Added--tags flag togcloud pubsub topics create for creating Cloud Pub/Sub Topics with Cloud Resource Manager Tags attached at create-time.
Added--tags flag togcloud pubsub subscriptions create for creating Cloud Pub/Sub Subscriptions with Cloud Resource Manager Tags attached at create-time.
Added--tags flag togcloud pubsub snapshots create for creating Cloud Pub/Sub Snapshots with Cloud Resource Manager Tags attached at create-time.

Cloud Run

Promotedgcloud run compose up command to beta.

Cloud SQL

Updated 'cloud-sql-proxy' packaged component to use 2.18.3 of the Cloud SQLProxy.
Modifiedgcloud beta sql connect command to use Cloud SQL Proxy V2 API.
Added support for--auto-iam-authn,--private-ip,--psc,--auto-ip,--run-connection-test and--debug-logs flags.
Added--data-api-access flag togcloud sql instances create andpatchin alpha and beta.

Compute Engine

Added--identity flag togcloud beta compute backend-services create.
Promotedgcloud compute zone-vm-extension-policies to beta.
Added--identity and--identity-certificate flags togcloud compute instances create andgcloud compute instance-templates create in alpha.

Compute Firewall Policies

AddedSOURCE column to default output ofgcloud beta compute network-firewall-policies list command.

Identity and Access Management

Addedgcloud iam access-policies create|delete|describe|list|update|search-policy-bindings commands to allow management of access policy resources.
Added--target-resource flag togcloud beta iam policy-bindings create.

Model Armor

Added the following flags togcloud beta model-armor floorsettings update command to support Vertex AI integrations:
- --add-integrated-services
- --remove-integrated-services
- --clear-integrated-services
- --vertex-ai-enforcement-type
- --enable-vertex-ai-cloud-logging
- --enable-multi-language-detection

Network Security

Added--mirroring-deployment-group-project flag for explicit projectspecification ingcloud network-security mirroring-endpoint-groups create command whenproviding--mirroring-deployment-group. In addition, the command will nowcorrectly fall back to--project and thecore/project property from theglobal configuration before inferring from the endpoint group's project.
Added--intercept-deployment-group-project flag for explicit projectspecification ingcloud network-security intercept-endpoint-groups create command whenproviding--intercept-deployment-group. In addition, the command will nowcorrectly fall back to--project and thecore/project property from theglobal configuration before inferring from the endpoint group's project.

Service Extensions

Promotedrequest_body_send_mode andresponse_body_send_mode to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

545.0.0 (2025-10-28)

Google Cloud CLI

Added warning message to indicate Python 3.9 support will be deprecated on January 27th, 2026.

App Engine

Updated the Java SDK to version 3.0.1 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v3.0.1.
Updated Eclipse Jetty Web Server to versions 12.0.29 and 12.1.3.
Enabled java25 preview runtime deployment.

BigQuery

Improved exception chaining in BigQuery client.
Added logging for the actual unexpected credentials type when using Google Auth.
Added display for authorized stored procedures with user-specified roles in ACLs forbq show.
Added support for--timestamp_target_precision flag forbq load,bq mk (--table) andbq mkdef commands. Use this flag to specifytimestamp subsecond precisions that will be supported by the destinationtable. The feature is in preview.
Fixed reference type error inbq set-iam-policy --reservation.
Fixed a bug where several HTTP headers are not set properly for API requests inbq rm.

Cloud Bigtable

Added--view flag togcloud bigtable materialized-views get andgcloud bigtable materialized-views list to specify which details of amaterialized view to retrieve.list command only supports schema view.

Cloud Composer

Added--disable-private-environment togcloud composer environments create to explicitly allow the creation of public environments.

Cloud Dataplex

Added--data-classification flag togcloud dataplex aspect_types create.

Cloud IAM

Forgcloud iam workforce-pools providers scim-tenants create command,--claim-mapping flag is now required.
Eliminate need for--project_id to match service account project in service account key operations.

Cloud Run

Added logic to use high-CPU, high-bandwidth machines for source-deploy buildsof GPU-enabled Cloud Run services.
When deploying source code withgcloud run deploy, the configurationwill now be validated before starting to build the code.

Compute Engine

Promoted regionalbackend-buckets ingcloud compute to beta.
Added--local-ssd flag togcloud compute advice calendar-mode to allow specifying local SSD properties when requesting advice for future reservations.
AddedFIPS_202205 profile and min TLS version1.3 to--profile and--min-tls-version flags for compute SSL policies in Google Cloud CLI.

Config Connector

Updated Google Cloud Config Connector to version 1.137.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Removed the deprecatednetwork_attachment option from the examples in the help text forgcloud eventarc pipelines create.

Kubernetes Engine

Added--add-maintenance-exclusion-until-end-of-support ingcloud container clusters update command to allow maintenance exclusion endtime to track cluster version's end of support.
Added--accelerator-network-profile flag togcloud beta container node-pools create for Public Preview. This flag allowsspecifying an accelerator network profile when creating node pools.

Network Services

Added support for endpoint urls in--consumer-accept-list and--consumer-reject-list ingcloud beta compute service-attachments update command.

Workbench

Added--data-disk-resource-policies flags togcloud workbench instances create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

544.0.0 (2025-10-21)

AlloyDB

Added support for c4 machine-types ingcloud alloydb instances create andgcloud alloydb instances update.
Added support forPOSTGRES_18 as a version ingcloud alloydb clusters create for alpha & beta track.
Added support forPOSTGRES_18 as a version ingcloud alloydb clusters migrate-cloud-sql for alpha & beta track.

Artifact Registry

Addedgcloud artifacts versions export to export artifacts by versions.
Addedgcloud artifacts tags export to export artifacts by tags.

Cloud Interconnect

Added--resource-manager-tags flag togcloud compute interconnects createto add Resource Manager Tags to resources at creation.
Added--resource-manager-tags flag togcloud beta compute interconnects attachments dedicated create,gcloud beta compute interconnects attachments partner create,andgcloud beta compute interconnects attachments provider create commandsto add Resource Manager Tags to resources at creation.

Cloud Run

Added a prompt togcloud run jobs deploy,gcloud run jobs createandgcloud run jobs update to retry deploying a GPU job with--no-gpu-zonal-redundancy flag. This confirmation prompt only shows up whenthe original deployment enables GPU but does not specify GPU zonal redundancy,and has access to GPU with zonal redundancy disabled.

Cloud SQL

Added Customer-managed Active directory CLI flags--active-directory-mode,--active-directory-dns-servers,--active-directory-organizational-unit,--active-directory-secret-manager-key,--clear-active-directory-dns-servers and--clear-active-directory forgcloud sql instances create,gcloud sql instances patch andgcloud sql backups restore to GA.
Promoted read pool auto scale flags--auto-scale-enabled,--auto-scale-min-node-count,--auto-scale-max-node-count,--auto-scale-target-metrics,--auto-scale-disable-scale-in,--auto-scale-in-cooldown-seconds,--auto-scale-out-cooldown-seconds toGA track.

Cloud Scheduler

Addedgcloud scheduler cmek-config andgcloud scheduler operations command groups to GA.

Cloud TPU

Removegcloud compute tpus execution_groups commands for 2VM.
Removegcloud compute tpus commands for Node Architecture.

Compute Engine

Added--on-repair-allow-changing-zone flag togcloud compute instance-groups managed create andgcloud compute instance-groups managed update in beta.
Promoted Future Reservations commands to v1.
Promoted--full-view flaggcloud compute reservations sub-blocks describe that allow users to see the availability of slices of TPU Hypercomputer reservations within sub-blocks, to beta and v1.
Promoted--igmp-query flag in--network-interface component ofgcloud compute instances create command to GA.
Promoted--igmp-query flag ingcloud compute instances network-interfaces update to GA.
Promoted enums FIPS_202205 profile and min TLS version 1.3 to GA for SSL Policies.

Database Migration

Added--dump-path and--dump-flags flag togcloud database-migration migration-jobs create command to allow users tosupply dump flags for the migration job.
Added--dump-path and--dump-flags flag togcloud database-migration migration-jobs update command to allow users tosupply dump flags for the migration job.

Identity and Access Management

Added--scim-usage flag togcloud iam workforce-pools providerscreate-oidc|update-oidc|create-saml|update-saml commands to supportcreating and updating providers which use SCIM-managed groups forauthorization checks.

Kubernetes Engine

Added support for writable cgroups in node pools using--containerd-config-from-file flag.
Added--enable-secret-sync,--enable-secret-sync-rotation andsecret-sync-rotation-interval ingcloud container cluster create|updatecommands for public preview.
Added--autopilot-workload-policies flag togcloud container clusterscreate to allow NET_ADMIN capabilities similar to--workload-policies increate-auto andupdate.
Updated default value of--num-nodes flag ingcloud container node-pools create command when--placement-policy isspecified for multi-host TPU machine types. The number of nodes will becalculated by(product of topology)/(# of chips per VM).

Network Security

Added--enable-jumbo-frames flag togcloud network-security firewall-endpoints create to create a firewall endpoint capable of inspecting traffic with jumbo frames.

Oracle Database

Addedgcloud oracle-database group in GA with the following commands:
- gcloud oracle-database autonomous-database-backups list command
- gcloud oracle-database autonomous-databases command group
- gcloud oracle-database autonomous-db-versions list command
- gcloud oracle-database cloud-exadata-infrastructures command group
- gcloud oracle-database cloud-exadata-infrastructures db-servers list
- gcloud oracle-database cloud-vm-clusters command group
- gcloud oracle-database cloud-vm-clusters db-system-shapes list command
- gcloud oracle-database entitlements list command
- gcloud oracle-database gi-versions list command
- gcloud oracle-database db-versions list command
- gcloud oracle-database db-systems command group
- gcloud oracle-database databases command group
- gcloud oracle-database pluggable-databases command group
- gcloud oracle-database database-character-sets list command
- gcloud oracle-database db-system-initial-storage-sizes list command
- gcloud oracle-database exadb-vm-cluster command group
- gcloud oracle-database exascale-storage-vault command group
- gcloud oracle-database minor-version list command

Security Command Center

Updated location argument description with instruction on how to bypass V1 API access errors.

Vmware Engine

Addedannouncements command togcloud vmware to list maintenance announcements related to upgrades.
Addedupgrades command togcloud vmware private-clouds tolist anddescribe schduled upgrades.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

543.0.0 (2025-10-14)

Google Cloud CLI

Updatedgcloud CLI to support Python v3.14.

Cloud Auth

Updatedgcloud auth application-default login to include specified scopesin the Application Default Credentials (ADC) file when using--impersonate-service-account flag orauth/impersonate_service_accountproperty. The scopes will be listed in thescopes field of the generatedADC JSON.

Cloud Build

Updatedgcloud builds submit to allow the use of the fieldremote_config.

Cloud IAM

Added--hard-delete flag togcloud iam workforce-pools providers scim-tenants delete which allows for the immediate and permanent deletion of a SCIM tenant.

Cloud Interconnect

Promotedgcloud compute interconnects cross-site-networks to GA.
Promotedgcloud compute interconnects wire-groups to GA.

Cloud Managed Lustre

Added IP-based Access Control flags--default-squash-mode,--default-squash-uid,--default-squash-gid, and--access-rules togcloud lustre instances create andgcloud lustre instances update.

Cloud Memorystore

Modifiedgcloud memcache instances describe to include thetags field in the output.

Cloud Resource Manager

Updatedgcloud resource-manager tags values create to support Hierarchical Tag Values for GA release.
Updatedgcloud resource-manager tags values list to support Hierarchical Tag Values for GA release.

Cloud Run

Promoted--gpu and--[no-]gpu-zonal-redundancy flags togcloud run jobscommand group.

Cloud TPU

Markgcloud compute tpus execution_groups commands for 2VM as removed.
Markgcloud compute tpus commands for 2VM as removed.

Compute Engine

Promotedcomposite-health-checks ingcloud compute to beta.
Promotedhealth-aggregation-policies ingcloud compute to beta.
Removedgcloud compute instances move. Seehttps://cloud.google.com/compute/docs/instances/moving-instance-across-zones for an alternative method.
Promotedgcloud compute reservations sub-blocks report-subblock-as-faulty command to beta and v1.
Added--no-locality-lb-policy flag ingcloud compute backend-services update.
Promoted Cloud Armorgcloud compute org-security-policies commands(including association and rules subcommands) to GA.

Compute Firewall Policies

Promoted--policy-type flag to GA ingcloud compute network-firewall-policies create.

Container

Added--autoscaled-rollout-policy flag togcloud container node-pools create to specify Autoscaled Rollout policy options for Blue Green upgrades on the node pool.
Added--autoscaled-rollout-policy flag togcloud container node-pools update to specify Autoscaled Rollout policy options for Blue Green upgrades on the node pool.

Developer Connect

Updatedgcloud developer-connect insights-configscreate andupdate to support Artifact Configs for gcr.io image URIs.

Kubernetes Engine

Added flag option--enable-k8s-tokens-via-dns togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update commands.This flag enables authentication to the cluster's control plane by usingKSA tokens, via dns endpoint.
Added flag option--enable-k8s-certs-via-dns togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update commands.This flag enables authentication to the cluster's control plane by usingclient certificates, via DNS endpoint.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

542.0.0 (2025-10-07)

Anthos Multi-Cloud

Added--tags flag togcloud container attached clusters register to attach Tags to the cluster.

Cloud DNS

Fix an issue wheregcloud dns managed-zones create did not correctlysupport the --locations flag with DNSSEC configurations. The command nowproperly handles uppercase enum values for--dnssec-state (ON, OFF,TRANSFER) and KSK/ZSK algorithms.
Added support for ALIAS record set type for GA. ALIAS record sets can becreated/modified using--type flag ingcloud dns record-sets commandgroup.

Cloud Run

Promoted--[no-]deploy-health-check flag to GA forgcloud run deploy andgcloud run services update which disables the deploy-time health check.

Cloud SQL

Added PostgreSQL 18 to supported database versions.
Promoted--mode flag forgcloud sql instances reset-ssl-config to GA.
Promoted--server-ca-mode and--server-ca-pool flags forgcloud sql instances patch to GA.

Cloud Storage

Modifiedgcloud storage diagnose --test-type=DIRECT_CONNECTIVITY toinclude check for VPC network MTU settings.

Cloud TPU

Markgcloud compute tpus commands for 2VM as deprecated and will be removed in an upcoming release.

Compute Engine

Promoted--resource-manager-tags flag ingcloud compute routers create to v1.
Promotedhealth-sources ingcloud compute to beta.
Added--full-view flag for alpha togcloud compute reservations sub-blocks describe to allow users to see the availability of slices of TPU Hypercomputer reservations within sub-blocks.

Compute Firewall Policies

Fixed issue wheregcloud compute firewall-policies associations deletecommand returns 'Invalid value' error for valid association name.

Kubernetes Engine

Added--unset-membership-type flag togcloud container cluster updatecommand to update cluster membership type to unspecified.
Promoted--membership-type flag ingcloud container cluster create|update commands to GA.

Oracle Database

Addedgcloud oracle-database group in GA with the following commands:
- gcloud oracle-database autonomous-database-backups list command
- gcloud oracle-database autonomous-databases commands group
- gcloud oracle-database autonomous-db-versions list command
- gcloud oracle-database cloud-exadata-infrastructures commands group
- gcloud oracle-database cloud-exadata-infrastructures db-servers list
- gcloud oracle-database cloud-vm-clusters commands group
- gcloud oracle-database cloud-vm-clusters db-system-shapes list command
- gcloud oracle-database entitlements list command
- gcloud oracle-database gi-versions list command
- gcloud oracle-database db-versions list command
- gcloud oracle-database db-systems commands group
- gcloud oracle-database databases commands group
- gcloud oracle-database pluggable-databases commands group
- gcloud oracle-database database-character-sets list commands
- gcloud oracle-database db-system-initial-storage-sizes list commands

Transfer

Promoted--replication flag intransfer jobs create to GA.
Promoted--job-type flag intransfer jobs list to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

541.0.0 (2025-09-30)

AI

Added--required-replica-count flag togcloud ai endpoints deploy-model andgcloud ai deployment-resource-pools create.

BigQuery

Added support for reading IAM policies for slots reservationsbq get-iam-policy --reservation.
Added support for setting IAM policies for slots reservationsbq set-iam-policy --reservation.
Removed client-side validation for--target_dataset inbq update --transfer_config.
Added support for creation of reservation assignments for specific types ofbackground jobs using new job type valuesBACKGROUND_CHANGE_DATA_CAPTURE,BACKGROUND_COLUMN_METADATA_INDEX, andBACKGROUND_SEARCH_INDEX_REFRESH.
Added support for limiting the rate of slot usage for a query job using--max_slots flag (preview).

Cloud Bigtable

gcloud bigtable logical-views update command can now be used with either--query flag or--deletion-protection flag, or both.

Cloud Build

Usemtls storage endpoint ifCLOUDSDK_CONTEXT_AWARE_USE_CLIENT_CERTIFICATE is set totrue.

Cloud DNS

Fix an issue wheregcloud dns managed-zones create did not correctlysupport the --locations flag with DNSSEC configurations. The command nowproperly handles uppercase enum values for--dnssec-state (ON, OFF,TRANSFER) and KSK/ZSK algorithms.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.20.2
- Minor bug fixes.

Cloud Identity-Aware Proxy

Updated deprecation warning forgcloud iap oauth-brands andgcloud iap oauth-clients to include a turndown date.

Cloud Managed Kafka

Promoted managed kafka connect surface (connect-cluster, connectors) to GA.

Cloud Run

Removed--mesh flag fromgcloud run alpha worker-pools deploy andgcloud run alpha worker-pools update.

Cloud SQL

Addedgcloud sql instances pre-check-major-version-upgrade, which performsprechecks for a major version upgrade of a Cloud SQL for PostgreSQL instance.

Cloud Spanner

Thespanner-cli component is generally available(GA).
spanner-cli may be installed withgcloud components install spanner-cli.
You can use the Spanner command-line interface to open an interactive session or automate SQL executions from the shell or an input file.

Cloud TPU

Markgcloud compute tpus exeuction-groups commands as deprecated.

Compute Engine

Promoted--phase1-encryption,--phase1-integrity,--phase1-prf,--phase1-dh,--phase2-encryption,--phase2-integrity,--phase2-pfsflags ingcloud compute vpn-tunnels create to v1.
Thegcloud compute instances network-interfaces add command is now generally available (GA).
Thegcloud compute instances network-interfaces delete command is now generally available (GA).
VLAN field support is now available in the GA track forgcloud compute instances create command.
VLAN field support is now available in the GA track forgcloud compute instance-templates create command.
Promoted--scheduling-type flag ingcloud compute reservations update to GA.
Added--view flag togcloud compute networks subnets describe andgcloud compute networks subnets list to allow users to retrieve thesubnetwork utilization.

Kubernetes Engine

Additional kubectl versions:
- kubectl.1.28 (1.28.15)
- kubectl.1.29 (1.29.15)
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.13)
- kubectl.1.32 (1.32.9)
- kubectl.1.33 (1.33.5)
- kubectl.1.34 (1.34.1)
Updatedgcloud alpha|beta container clusters create|update to supportconfiguring auto-provisioning settings without enabling NAP.

Network Security

Promotedgcloud network-security authz-policies to GA.

Privileged Access Manager

Addedgcloud beta pam grants withdraw command to withdraw a PrivilegedAccess Manager grant.
Added support for specifying grant scope via file or resource name ingcloud beta pam grants create.
Addedgcloud beta pam settings command group which helps manage PrivilegedAccess Manager (PAM) settings.

Service Extensions

Promotedgcloud service-extensions authz-extensions to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

540.0.0 (2025-09-23)

Breaking Changes

(Cloud Deploy)gcloud deploy apply now has a more strict YAML parser.The old parser would sometimes silently ignore unknown fields in a YAMLfile. The new parser will reject them with an error message.
(Compute Engine) Add--bandwidth-allocation as a required flag forgcloud compute interconnects wire-groups create.

AlloyDB

Promoted all Managed Connection Pooling related flags ongcloud alloydb instances create,gcloud alloydb instances create-secondary,andgcloud alloydb instances update to the beta and GA track. The flags thatare promoted specifically are:
- --enable-connection-pooling
- --connection-pooling-pool-mode
- --connection-pooling-min-pool-size
- --connection-pooling-max-pool-size
- --connection-pooling-max-client-connections
- --connection-pooling-server-idle-timeout
- --connection-pooling-query-wait-timeout
- --connection-pooling-stats-users
- --connection-pooling-ignore-startup-parameters
- --connection-pooling-server-lifetime
- --connection-pooling-client-connection-idle-timeout
- --connection-pooling-max-prepared-statements

App Engine

Updated the Java SDK to version 3.0.0 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v3.0.0-beta.
Upgraded all Java SDK jars to Java 17 bytecode level.

Artifact Registry

Fixed version annotations field, removed theadditionalProperties.

Cloud Build

Updatedgcloud builds submit to allow remotesource in the build config if--no-source flag is specified.

Cloud Location Finder

Promotedgcloud cloudlocationfinder command group to GA.

Cloud NetApp

Add support for 'cache-parameters' ingcloud netapp volumes create andgcloud netapp volumes update commands.
Add support to 'restore-volume' ingcloud netapp volumes restore-backup-files command for GA.

Cloud Run

Promoted--max flag to GA forgcloud run deploy andgcloud run services update which sets a maximum bound for instance scaling atthe service level.
- Promoted .env support for--env-vars-file flag forgcloud run deploy from beta to GA.
Promotedmount-options key for--add-volume flag withtype=cloud-storageto GA forgcloud run deploy,gcloud run services update,gcloud run jobs deploy,gcloud run jobs create, andgcloud run jobs update to configure flags for GCSFuse in your cloud storagevolumes.

Cloud SQL

Added theclear-disk-encryption flag togcloud sql backups restoreoperation. If restoring a backup to a project or region that is unique tothe one where the source instance is located, then the backup's assigned KMSkeys are no longer accessible. This setting lets you clear any existing CMEKconfiguration.
Addedgcloud sql instances execute-sql to run a SQL query on a Cloud SQLinstance in alpha and beta.

Cloud Storage

Fixedgcloud storage ls to correctly list soft-deleted objects when the URL has a trailing slash.
Promotedgcloud storage diagnose command to GA.

Cloud Workstations

Added support for reservation affinity inbeta workstations config create andbeta workstations config update command.

Compute Engine

The option to deploy a container during VM creation using the container startup agent is deprecated. Use alternative services to run containers on your VMs. Learn more athttps://cloud.google.com/compute/docs/containers/migrate-containers.
Added--ip-collection flag togcloud beta compute addresses create command.
Added--skip-guest-os-shutdown flag togcloud compute instances in GA.
Promoted Percentage-based Request Mirroring in UrlMaps compute API to v1.

Eventarc

Added--organization-subscription and--project-subscriptions ingcloud eventarc google-api-sources.

Identity and Access Management

Added a new--sts-location flag togcloud iam workload pools create-cred-config. This flag enables users to seta locational Security Token Service endpoint, e.g., setting sts-location tous-central1 will point to sts.us-central1.rep.googleapis.com, and therebyregionalize their requests to the Security Token Service API.

Network Security

Added command groupnetwork-security security-profiles url-filtering and promoted it to beta.
Added commandsdescribe,export,import, andlist to command groupnetwork-security security-profiles and promoted them to beta.
Added flag--url-filtering-profile to commandnetwork-security security-profile-groups create in the beta track.
Moved flag--threat-prevention-profile to a mutex with flag--clear-threat-prevention-profile for commandnetwork-security security-profile-groups update in the beta track.
Added mutex with flags--url-filtering-profile and--clear-url-filtering-profile to commandnetwork-security security-profile-groups update in the beta track.

Pubsub Emulator

Fix bug where dead letter queue and retry policy settings are not respectedwhen ordering is enabled on a subscription.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

539.0.0 (2025-09-16)

AI

Updatedgcloud ai commands to ensure correct endpoint resolution in non-default Google Cloud universes.
Added--gpu-partition-size flag togcloud beta ai endpoints deploy-model for multi-instance GPU partitioning.

Apigee

When an Apigee organization name and its Google Cloud project ID are the same,gcloud apigee commands will now automatically use the correct regional endpoint.

App Engine

Updated the Java SDK to version 2.0.39 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.39.

Cloud Backup DR

Promotedgcloud backup-dr service-config command group which includesgcloud backup-dr service-config init to GA.

Cloud Filestore

Addedpsc-endpoint-project option to--network flag ofgcloud filestore instances create command.

Cloud Interconnect

Promoted--subzone flag ofgcloud compute interconnects create to GA.

Cloud Key Management Service

Add support forkey-encapsulation key purpose andml-kem-768,ml-kem-1024, andkem-xwing algorithms.
Add support forder andxwing-raw-bytes format.
Fix bug in get-public-key: when non-pem format is specified, the returned public key should be in raw bytes (not in base-64).
Add support for decapsulate.

Cloud Resource Manager

Updatedgcloud resource-manager tags values create to support Hierarchical Tag Values for beta release.
Updatedgcloud resource-manager tags values list to support Hierarchical Tag Values for beta release.

Cloud SQL

Promotedpatch --[clear-]psc-auto-connections flags to GA for PSC serviceautomation.
Added--source-instance-deletion-time flag togcloud sql instances clone, andgcloud sql instances get-latest-recovery-time to support clone fromdeleted instances.
Updated 'cloud-sql-proxy' packaged component to use 2.18.2 of the Cloud SQLProxy.

Cloud TPU

Promoted the--boot-disk flag with thekms-key option to GA forgcloud compute tpus tpu-vm create andgcloud compute tpus queued-resources create.

Compute Engine

Promoted--provisioning-model=flex-start to GA forgcloud compute instancescreate andgcloud compute instance-templates create commands.
Promoted--request-valid-for-duration to GA forgcloud compute instancescreate command.
AddedSNP_SVSM_CAPABLE to the list ofguestOsFeatures.
Removed extension specific<extension>-version and<extension>-configflags and added generic '--config' and--version flags forgcloud computezone-vm-extension-policies create|update commands.

Kubernetes Engine

RemovedThe Kubelet readonly port (10255) is now deprecated warning ongcloud CLI cluster creation unless either theenable-insecure-kubelet-readonly-port orautoprovisioning-enable-insecure-kubelet-readonly-port flags are set.
Deprecate flag option--tier ingcloud container clusters create,gcloud container clusters create-autoandgcloud container clustes update commands.Deprecated as GKE Enterprise features are now available without an Enterprisetier. Seehttps://cloud.google.com/kubernetes-engine/docs/release-notes#September_02_2025for the announcement of this change.
AddedswapConfig option withenabled,encryptionConfig,bootDiskProfile,ephemeralLocalSsdProfile, anddedicatedLocalSsdProfile fields togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update commands to configure swap space on nodes.

Network Security

Updated import and export schemas forgcloud beta network-security security-profile-groups.
Updated import and export schemas forgcloud beta network-security security-profiles.

Pubsub Emulator

Fix bug that caused non-utf8 data to be incorrectly decoded before being sent to a subscription's push endpoint.

Recommender

Updategcloud recommender list insights recursive search feature to beta release target.
Updategcloud recommender list recommendations recursive search feature to beta release target.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

538.0.0 (2025-09-09)

AI

Updatedgcloud ai commands to ensure correct endpoint resolution in non-default Google Cloud universes.

App Auth

Fixed an issue wheregcloud auth login would potentially fail with externalaccounts with X.509 federation due to missing client certificates duringtoken introspection.Thegcloud CLI will now correctly include client certificates when providedby the credential.

BigQuery

Added support for Python user-defined functions inbq show --routine.
Added support for users to create dataset withbq mk --source.
Fixed the bug where users authenticating with Google Auth using a user-managed service account were unable to query external tables on Google Drive.
Added support for managing migration workflows with--migration_workflow inbq mk,bq show,bq rm,bq ls.
Removedreservation_max_slots from--alpha flag, and customers can now use the reservation max slots feature without specifying--alpha=reservation_max_slots.

Cloud Run

Promotedgcloud run deploy multi-region support to GA.
Promotedgcloud run multi-region-services to GA.

Cloud Storage

gcloud storage rsync:
- Fixed issue where--delete-unmatched-destination-objects was deletingdestination files even when skipped with (--no-clobber or--skip-unsupported or--skip-if-dest-has-newer-mtime) flags.Now such objects will be retained.The updated behaviour is also gsutil behaviour.This issue can be tracked athttps://issuetracker.google.com/406939800.
- The fix is done through a config propertystorage/use_gsutil_rsync_delete_unmatched_destination_objects_behavior,which now defaults toTrue. Set it toFalse to restore the previousbehavior if needed.

Compute Engine

Promoted--show-nat-ips flag forgcloud compute service-attachments describe to GA.

Dataproc Metastore

Fixed issue wheregcloud metastore services query-metadata would attempt toread the incorrect results path.

Kubernetes Engine

Updated--max-nodes-per-pool flag upper bound to be 2048.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

537.0.0 (2025-09-03)

AI

Added--min-scaleup-period,--idle-scaledown-period, and--initial-replica-count flags togcloud beta ai endpoints create forscale-to-zero feature. Only configurable when--min-replica-count is set to 0.

AlloyDB

Added support forPOSTGRES_17 as a version inalloydb clusters create for GA track.
Added support forPOSTGRES_17 as a version inalloydb clusters migrate-cloud-sql for GA track.
Added support forPOSTGRES_17 as a target version usingalloydb clusters upgrade for GA track.

Cloud Backup DR

Promotedgcloud backup-dr backup-plan-revisions list andgcloud backup-dr backup-plan-revisions describe to GA.
Addedgcloud backup-dr backup-plan-associations fetch-for-resource-type command group to GA track.

Cloud Dataproc

Added--identity-config-file,--add-user-mappings, and--remove-user-mappings flags togcloud dataproc clusters update to allow updating the user to service account mapping.

Cloud Firestore

Added--unique flag togcloud firestore indexes composite create command for supporting unique index creation.

Cloud Functions

Modifiedgcloud beta functions list to list upgrade state.

Cloud Infrastructure Manager

Addedgcloud infra-manager resource-changes list andgcloud infra-managerresource-changes describe commands to list and describe resource changeswithin an Infrastructure Manager deployment preview.
Addedgcloud infra-manager resource-drifts list andgcloud infra-managerresource-drifts describe commands to list and describe resource driftswithin an Infrastructure Manager deployment revision.

Cloud Interconnect

Promotedgcloud compute interconnects application-awareness get-config to GA.
Promotedgcloud compute interconnects application-awareness update to GA.
Promotedgcloud compute interconnects application-awareness delete to GA.
Promotedgcloud compute interconnects application-awareness configure-bandwidth-percentage-policy to GA.
Promotedgcloud compute interconnects application-awareness configure-shaper-average-percentage to GA.
Promotedgcloud compute interconnects application-awareness configure-strict-priority-policy to GA.

Cloud Managed Kafka

Changed--connect_cluster flag to--connect-cluster forconnector commands in alpha.

Cloud Run

Added--[no-]gpu-zonal-redundancy,--gpu and--gpu-type flags togcloud beta run worker-pools command group.

Cloud SQL

Added--[no-]final-backup flag and--final-backup-retention-days togcloud sql instances create,gcloud sql instances patchandgcloud sql backups restore to support setting final backup config inCloud SQL instance setting.
Added--enforce-new-sql-network-architecture flag togcloud sql instances create,gcloud sql instances patch to explicitlycreate or update instances in the new network architecture.
Promoted--[no-]enable-connection-pooling and--[clear-]connection-pool-flags flags to GA for Managed Connection PoolingGA launch.

Compute Engine

Added--resolve-subnet-mask flag for alpha and beta togcloud compute networks subnets create to allow users to enable resolvesubnet mask feature on the subnetwork resource during creation.
Added--sap-extension-version and--sap-extension-config flags togcloudcompute zone-vm-extension-policies create|update commands.

Kubernetes Engine

Promoted the Secret Manager CSI driver flags (--enable-secret-manager-rotation and--secret-manager-rotation-interval)to enable rotation feature in secret manager add on to GA.
Updated default kubectl from 1.32.4 to 1.33.4.
Additional kubectl versions:
- kubectl.1.28 (1.28.15)
- kubectl.1.29 (1.29.14)
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.12)
- kubectl.1.32 (1.32.8)
- kubectl.1.33 (1.33.4)

Secure Source Manager

Added--psc-allowed-projects argument togcloud source-manager instances create command.

Vmware Engine

Addedgcloud vmware private-clouds delete-now which permanently deletes a Google Cloud VMware Engine private cloud currently in soft-deleted state.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

536.0.1 (2025-08-27)

Kubernetes Engine

Fixedgcloud container ai profiles commands:benchmarks list,manifests create, andmodel-server-versions list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

536.0.0 (2025-08-26)

App Engine

Updated Cloud CLI Python component to new runtimes for php 8.5 and python 3.14.

Artifact Registry

Updatedgcloud artifacts files list to display file hashes as hex strings.

Cloud Backup DR

Promotedgcloud backup-dr backup-plans update to GA.
Promotedgcloud backup-dr backups restore disk to GA.
Promotedgcloud backup-dr backup-plan-associations update to GA.

Cloud Bigtable

cbt sql has a new (simpler) output table format.

Cloud Managed Kafka

Changed the "subject" command group to "subjects".
Changed--schema-registry flag to--registry for subjects command group.

Cloud NetApp

Added--throughput-mibps flag togcloud netapp volumes create andgcloud netapp volume update commands.
Added--qos-type flag togcloud netapp storagepools create andgcloud netapp storagepools update commands.

Cloud SQL

Updated 'cloud-sql-proxy' packaged component to use 2.18.1 of the Cloud SQL Proxy.

Compute Engine

Added--resource-manager-tags flag togcloud compute backend-services create to allow users to add resource tagsto the backend bucket during creation.
Added--resource-manager-tags flag togcloud compute backend-buckets create to allow users to add resource tagsto the backend bucket during creation.

GKE Hub

Promoteddisable anddescribe ongcloud container fleet|hub config-management command group to GA.

Kubernetes Engine

Added--membership-type flag togcloud beta container clusterscreate|update commands to pass fleet membership type.
Promoted gcloud container ai profiles to GA.

Network Services

Added--update-strategy flag ingcloud compute networks peerings create andgcloud compute networks peerings update commands.
Added a new commandgcloud compute networks peerings request-delete.

Secure Source Manager

Promotedgcloud source-manager to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

535.0.0 (2025-08-19)

AI

Fixed flipped error messages for--min-replica-count and--max-replica-count when used with--shared-resources.

Artifact Registry

Added flag--parallelism togcloud artifacts files download to allowmultipart parallel file download.
Added flag--parallelism togcloud artifacts generic download to allowmultipart parallel file download.
Added flag--parallelism togcloud artifacts attachments download to allowmultipart parallel file download.

Backup For GKE

Added--selected-namespace-labels flag togcloud beta containerbackup-restore backup-plans create to support namespace label scoped backupplans.
Added--selected-namespace-labels flag togcloud beta containerbackup-restore backup-plans update to support namespace label scoped backupplans.

Cloud Bigtable

cbt CLI now supportssql.
cbt CLI now supportssamplerowkeys.
cbt CLI now supportscheckandmutate.
cbt CLI now supportsreadmodifywrite.

Cloud Dataflow

Fixed an issue where the environment variableFLEX_TEMPLATE_PYTHON_EXTRA_PACKAGES does not install multiple Pythondependencies in Flex Templates.

Cloud Firestore

Promoted Cloud Firestore user-credsgcloud CLI changes to GA.
Promoted Cloud Firestore connection-stringgcloud CLI changes to GA.

Cloud Functions

Launchedgcloud beta functions upgrade <function> command. This commandallows users to upgrade a 1st Gen Cloud Function from Cloud Functions API(cloudfunctions.googleapis.com) to a native Cloud Run function managed by CloudRun API(run.googleapis.com).

Cloud NetApp

Added--qos-type flag togcloud beta netapp storagepools create andgcloud beta netapp storagepools update commands.
Modified--share-name flag ofgcloud netapp volumes create command to be optional.
Added--cache-parameters flag togcloud alpha|beta netapp volumes create|update commands.
Add support forreplication-schedule,hybrid-replication-type, andlarge-volume-constituent-count fields in--hybrid-replication-parametersflag ofgcloud netapp volumes create andgcloud netapp volumes updatecommands.

Cloud Run

Deprecated the flag--allow-unencrypted-build. The customer-managedencryption keys (CMEK) compliance is now available for the build process.
Added logic to use high-CPU machines for builds of Cloud Run services optingin to use GPUs when using source-deploy. This feature is in Public Preview.

Cloud SQL

Addedclear-network flag togcloud sql backups restore to clear the network when restoring a backup to a different project or region where the original network configuration isn't available.

Compute Engine

Support--request-valid-for-duration in alpha forgcloud compute instances create command.
Deprecated--router flag ofgcloud compute vpn-tunnels create with ClassicVPN. Use static routing instead.
Deprecated--router flag ofgcloud compute vpn-tunnels update with ClassicVPN. Use static routing instead.
Added--ops-agent-version and--ops-agent-config flags togcloudcompute zone-vm-extension-policies create|update commands.

Database Migration

Added--type flag togcloud database-migration objects lookupcommand to describe the type of the object. The default type is DATABASE.
Added--schema flag togcloud database-migration objects lookupcommand to describe the schema of the object.
Added--table flag togcloud database-migration objects lookupcommand to describe the table of the object.

GKE Hub

Addeddescribe togcloud beta container fleet|hub config-managementcommand group.

Kubernetes Engine

Added--enable-default-compute-class flag togcloud containerclusters create|update commands to enable the default compute class.

Parametermanager

Added KMS key resource spec to support updating and clearing KMS key resource.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

534.0.0 (2025-08-12)

Breaking Changes

(Cloud Machine Learning Engine) Removedgcloud ml-engine command group. Usegcloud ai-platform instead.
(Compute Engine) Modified--activation-status flag ofgcloud compute preview-features update command to change the allowed valuefromdisabled tounspecified.

Appctl

Remove the deprecatedappctl component.

Cloud Dataflow

Added support for distroless variants for--flex-template-base-image optioningcloud dataglow flex_template build.

Cloud Datastream

AddedProjectId field toSourceHierarchyDatasets message in--bigquery-destination-config flag ingcloud datastream streams createcommand to support BigQuery destination in a different project.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.20.1
- Minor bug fix.

Cloud Managed Kafka

Releasedallow-broker-downscale-on-cluster-upscale flag to GA.

Cloud NetApp

Addedthroughput-mibps flag togcloud beta netapp volumes create andgcloud beta netapp volumes update commands.

Compute Engine

Added--target-size-policy-mode flag togcloud beta compute instance-groups managed create.
Added--skip-guest-os-shutdown flag togcloud compute instances in beta.
Added--view flag for beta togcloud compute networks subnets describe andgcloud compute networks subnets list to allow users to retrieve thesubnetwork utilization.

GKE Hub

Promotedgcloud container fleet packages to GA.
Added--uninstall as well as--memberships and--all-memberships flagstogcloud beta container fleet config-management disable to uninstall orunmanage Config Sync on membership clusters.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

533.0.0 (2025-08-05)

AI

Updatedgcloud ai model-garden models deploy command to allow deploy a model from custom weights.
Addedasia-south2 option to--region flag ofgcloud ai custom-jobs.

BigQuery

Fixed a bug where incorrect query parameters are set when--replace_data flag is specified.

Cloud Backup DR

Added--access-restriction flag togcloud backup-dr backup-vaults update to update backup-vault's access restriction.
Added--force-update-access-restriction flag togcloud backup-dr backup-vaults update to force update backup-vault's access restriction even if there are non-compliant data sources.
Added--expire-time flag togcloud backup-dr backups update to updatebackup's expire time. When updating a backup, at least one of these must bespecified:--expire-time or--enforced-retention-end-time.

Cloud Infrastructure Manager

Added--tf-version-constraint flag togcloud infra-manager previews create to specify the Terraform version.

Cloud Managed Kafka

Released--mtls-ca-pools and--ssl-principal-mapping-rules flags to GA.

Cloud Run

Promoted--scaling flag to GA forgcloud run deploy andgcloud run services update.

Compute Engine

Add support for 'FUTURE' disruption schedule option ingcloud CLI for report-host-as-faulty command.
Support--provisioning-model forgcloud compute instance-templates create-with-container command.

Kubernetes Engine

Added kubelet config optionsevictionSoft,evictionSoftGracePeriod,evictionMinimumReclaim, andevictionMaxPodGracePeriodSeconds togcloud container clusters create,gcloud container node-pools create,andgcloud container node-pools update command which defines theeviction behaviors.
Added flag option--HighScaleCheckpointing toadd support for enabling the HighScaleCheckpointing CSI Driver.

Network Security

Promotedgcloud network-security org-address-groups --purpose field to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

532.0.0 (2025-07-29)

AI

Updatedgcloud ai model-garden models deploy command to allow deploy a model from custom weights.

BigQuery

Fixed a bug where the command would crash for a query in dry run if theresulting job doesn't include statistics about number of bytes processed.

Cloud Backup DR

Addedbackup-retention-inheritance flag togcloud backup-dr backup-vaults create to specify backup retention inheritance mode during backup vault creation.
Addedgcloud backup-dr data-source-references command group to GA track.

Cloud IAM

Addedgcloud iam workforce-pools providers scim-tenants create which createsa new SCIM tenant associated with a specific workforce identity pool provider.
Addedgcloud iam workforce-pools providers scim-tenants tokens create whichcreates a new SCIM token associated with a specific workforce identity poolprovider tenant.
Addedgcloud iam workforce-pools providers scim-tenants delete whichdeletes an existing SCIM tenant associated with a specific workforce identitypool provider.
Addedgcloud iam workforce-pools providers scim-tenants tokens deletewhich deletes a SCIM token associated with a specific workforce identity poolprovider SCIM tenant.
Addedgcloud iam workforce-pools providers scim-tenants describe whichdescribes an existing SCIM tenant associated with a specific workforceidentity pool provider.
Addedgcloud iam workforce-pools providers scim-tenants tokens describewhich describes a SCIM token associated with a specific workforceidentity pool provider SCIM tenant.
Addedgcloud iam workforce-pools providers scim-tenants list whichlists all SCIM tenants associated with a specific workforce identity poolprovider.
Addedgcloud iam workforce-pools providers scim-tenants tokens listwhich lists all SCIM tokens associated with a specific workforce identity poolprovider SCIM tenant.
Addedgcloud iam workforce-pools providers scim-tenants undelete whichrestores a previously-deleted workforce identity pool provider SCIM tenant toan active state.
Addedgcloud iam workforce-pools providers scim-tenants tokens undeletewhich restores a previously-deleted workforce identity pool provider SCIMtoken to an active state.
Addedgcloud iam workforce-pools providers scim-tenants update whichupdates an existing SCIM tenant associated with a specific workforce identitypool provider.
Addedgcloud iam workforce-pools providers scim-tenants tokens updatewhich updates an existing SCIM token associated with a specific workforceidentity pool provider.

Cloud SQL

Promoted--instance-type and--node-count flags ofgcloud sql instances create andgcloud sql instances patch to GA.
Updated 'cloud-sql-proxy' packaged component to use 2.18.0 of the Cloud SQL Proxy.
- Made--skip-failed-instance-config flag available.
Added--psc-network-attachment-uri and--clear-psc-network-attachment-uri flags togcloud sql instances patchto support Private Service Connect OutBound Connectivity for Cloud SQL.

Compute Engine

Fixed misleading outputs when reserving and releasing external IPv6 addressesusinggcloud compute addresses create andgcloud compute addresses delete.

Container

Updatedgcloud container clusters list command to display STACK_TYPE by default.

Eventarc

Removing one Message Bus and Google Api Source per-project limitation.
Promotedgcloud eventarc message-buses,gcloud eventarc enrollments,gcloud eventarc google-api-sources andgcloud eventarc pipelines to GA.

Identity and Access Management

Added flags togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers create-saml commands to supportcreating providers with extended oauth attributes configuration (e.g.--extended-attributes-issuer-uri,--extended-attributes-client-id,--extended-attributes-client-secret-value,--extended-attributes-type,--extended-attributes-filter).
Added flags togcloud iam workforce-pools providers update-oidc andgcloud iam workforce-pools providers update-saml commands to supportupdating providers with extended oauth attributes configuration (e.g.--extended-attributes-issuer-uri,--extended-attributes-client-id,--extended-attributes-client-secret-value,--extended-attributes-type,--extended-attributes-filter,--clear-extended-attributes-config).

Kubernetes Engine

Removed kubectl version 1.27.
Added additional kubectl versions:
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.14)
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.11)
- kubectl.1.32 (1.32.7)
- kubectl.1.33 (1.33.3).

Secret Manager

Added flag--tags for secrets to attach tags to the secrets while creating.

Security Command Center

Added functionality to export Security Command Center findings to bigquery.

Service Extensions

Updated import and export schemas forgcloud beta service-extensions authz-extensions.

Workbench

Added--enable-managed-euc flag togcloud beta workbench instances create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

531.0.0 (2025-07-22)

Google Cloud CLI

Updated windows bundled Python for thegcloud CLI to 3.12.10.

AlloyDB

Add two new Managed Connection Pooling related flags for users to configure ongcloud alloydb instances create andgcloud alloydb instances update. The newflags are:
- --connection-pooling-server-lifetime
- --connection-pooling-client-connection-idle-timeout

BigQuery

Added new flag--null_markers for external tables to define the stringsthat represent NULL values in CSV files.
Added support for--source_column_match flag forbq mk --table --external_table_definition andbq mkdef commands.
Added support for--reservation_group and--reservation_group_name flags for reservation group feature.

Cloud Dataflow

Fixed an issue where the environment variableFLEX_TEMPLATE_PYTHON_EXTRA_PACKAGES does not install Python dependenciesin Flex Templates.
Added--template-file-gcs-location flag togcloud dataflow yaml runto support user-defined YAML templates.
Added--network and--subnetwork flags togcloud dataflow yaml runto support specifying network options for Dataflow workers.

Cloud Datastream

Added--postgresql-server-certificate-hostname flag togcloud datastreamconnection-profiles create command to validate the hostname in the servercertificate for SSL connections to PostgreSQL sources.
Added--oracle-ca-certificate flag togcloud datastreamconnection-profiles create command to create connection with SSL serveronly verification for Oracle sources.
Added--oracle-server-certificate-distinguished-name flag togclouddatastream connection-profiles create command to validate the servercertificate for SSL connections to Oracle sources.
Added--postgresql-server-certificate-hostname,--oracle-ca-certificateand--oracle-server-certificate-distinguished-name flags togcloud datastream connection-profiles update command to support updatingthe SSL config for PostgreSQL and Oracle sources.

Cloud Interconnect

Promotedgcloud compute interconnects application-awareness get-config to beta.
Promotedgcloud compute interconnects application-awareness update to beta.
Promotedgcloud compute interconnects application-awareness delete to beta.
Promotedgcloud compute interconnects application-awareness configure-bandwidth-percentage-policy to beta.
Promotedgcloud compute interconnects application-awareness configure-shaper-average-percentage to beta.
Promotedgcloud compute interconnects application-awareness configure-strict-priority-policy to beta.

Cloud Run

Added--startup-probe flag togcloud run jobs command group to allowconfiguring startup probe for a Cloud Run Job.

Cloud Storage

Promoted--ip-filter-file flag ofgcloud storage buckets create andgcloud storage buckets update to GA.
Promoted--clear-ip-filter flag ofgcloud storage buckets update to GA.

Compute Engine

Addedgcloud compute org-security-policies rules add-preconfig-waf-exclusion|remove-preconfig-waf-exclusion in alpha and beta.
Added and promoted flags related to tls-settings to GA:
- --tls-settings ofgcloud compute backend-service create.
- --tls-settings ofgcloud compute backend-service update.
- --no-tls-settings ofgcloud compute backend-service update.
Addedgcloud compute reservations sub-blocks performMaintenance command in beta and v1.
Added new new plane60-month to commitment alpha.
Added--resolve-subnet-mask flag for alpha and beta togcloud compute networks subnets create to allow users to enable resolvesubnet mask feature on the subnetwork resource during creation.
Added--full-view flag for v1 togcloud compute reservations blocks describe to allow users to see the full reservation block view.

Config Connector

Updated Google Cloud Config Connector to version 1.132.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Container

Added--boot-disk-provisioned-iops flag togcloud container clusters create command to specify the provisioned iops on Hyperdisk Balanced boot disks.
Added--boot-disk-provisioned-throughput flag togcloud container clusters create command to specify the provisioned throughput on Hyperdisk Balanced boot disks.
Added--boot-disk-provisioned-iops flag togcloud container node-pools create command to specify the provisioned iops on Hyperdisk Balanced boot disks.
Added--boot-disk-provisioned-throughput flag togcloud container node-pools create command to specify the provisioned throughput on Hyperdisk Balanced boot disks.
Added--boot-disk-provisioned-iops flag togcloud container node-pools update command to specify the provisioned iops on Hyperdisk Balanced boot disks.
Added--boot-disk-provisioned-throughput flag togcloud container node-pools update command to specify the provisioned throughput on Hyperdisk Balanced boot disks.

Dataproc Diagnose

Added--tarball-gcs-dir flag togcloud dataproc clusters diagnose tospecify the output Cloud Storage directory for the diagnostic tarball.

Migrate to Virtual Machines

Remove--suppress-package-installation-failure flag.

Secure Source Manager

Shortenedgcloud beta source-manager repos create/delete command output to show a status message. The previous output format can be displayed with--format=default.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

530.0.0 (2025-07-15)

Breaking Changes

(Google Cloud CLI) Deprecated Python 3.8. The minimum supported Python version is Python 3.9.

App Engine

Updated the Java SDK to version 2.0.38 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.38.

Cloud Composer

Addedgcloud composer environments restart-web-server to restart web server for a Cloud Composer environment.

Cloud Dataflow

Deprecated JAVA8 fromgcloud dataflow flex-template buildflex-template-base-image option. Set to JAVA8 now redirects to JAVA11 and willbe removed in a future release.
Addedgcloud dataflow jobs archive command to archive a job.

Cloud Firestore

Promoted--tags flag ofgcloud firestore databases create andgcloud firestore databases restore command to beta and GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.20.0
- Add support fornamespace queries.
- Add support forkey queries.
- Fix bug where entity version behavior differed from production.

Cloud Identity-Aware Proxy

Deprecatedgcloud iap oauth-brands andgcloud iap oauth-clients commands.

Cloud Managed Kafka

Added--delete-mode and--delete-config flags togcloud managed-kafka schema-registries subject update, which gives users the capability to delete a subject mode and config.

Cloud NetApp

Add newgcloud CLI commandrestore-backup-files for NetApp Volumes.

Cloud Resource Manager

Updated--purpose-data flag fromgcloud resource-manager tags keyscreate command with a new valueorganization.

Cloud Run

Added--[no-]gpu-zonal-redundancy flag togcloud beta run jobs commandgroup to support setting zonal redundancy for Cloud Run Jobs using GPU.

Compute Engine

Addedgcloud compute org-security-policies rules add-preconfig-waf-exclusion|remove-preconfig-waf-exclusion in alpha and beta.
Added and promoted flags related to tls-settings to GA:
- --tls-settings ofgcloud compute backend-service create.
- --tls-settings ofgcloud compute backend-service update.
- --no-tls-settings ofgcloud compute backend-service update.
Addedgcloud compute reservations sub-blocks performMaintenance command in beta and v1.

Container

Add--enable-auto-ipam and--disable-auto-ipam flag togcloud container clusters create/update to enable/disable automatic IP address management for the cluster.
Add--sole-tenant-min-node-cpus flag togcloud container node-pools create to specify the minimum number of vCPUs that can be used by a sole-tenant node pool.

Database Migration

Addedgcloud database-migrations conversion-workspaces mapping-rules list.
Added support for--database flag in Postgres connection profiles.

Distributed Cloud Edge

Added--enable-google-group-authentication flag togcloud edge-cloud container clusters create command to allow for specifying whether Google Groups authentication is enabled for the cluster.

Kubernetes Engine

Added flag option--addons=LustreCsiDriver toadd support for enabling/disabling the Lustre CSI Driver on GKE Standardclusters.
Added flag option--enable-lustre-csi-driver toadd support for enabling the Lustre CSI Driver on GKE Autopilot clusters.
Added flag option--enable-legacy-lustre-port toallow the Lustre CSI Driver to initialize LNet (the virtual network layerfor the Lustre kernel module) using port 6988.
Added kubelet config optionsmaxParallelImagePulls togcloud container clusters create,gcloud container node-pools create,andgcloud container node-pools update command which defines the maximumnumber of image pulls in parallel.
Added linux config optionstransparentHugepageEnabled andtransparentHugepageDefrag togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update command which controls transparenthugepage behavior on the node.
Added- -enable-confidential-nodes flag togcloud container clusterscreate-auto to allow creation of confidential nodes on GKE Autopilotclusters.

Looker

Added--class-type flag togcloud looker instances create andgcloud looker instances update.
Addeddomains as an option to the--psc-service-attachment flag ofgcloud looker instances update to support multiple domains to a single PSC connection.

Network Connectivity

Canonicalize--allocation-strategy and--first-available-ranges-lookup-size flags togcloud network-connectivity internal-ranges create to make use of dashesinstead of underscores. This puts them in-line with the documentation.

Network Security

Updated import and export schemas forgcloud beta network-security authz-policies.

Network Services

Promote--isolation-config-granularity and--isolation-config-mode to GA.

Recaptcha

Addedintegration-type=policy-based-challenge togcloud recaptcha keys create, and associated optionsdefault-score-threshold andaction-score-thresholds togcloud recaptcha keys create andgcloud recaptcha keys update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

529.0.0 (2025-07-01)

Breaking Changes

(Cloud Datastore Emulator) Removed support for running the Datastore emulator
(Cloud Datastore Emulator) (gcloud beta emulators datastore start) in environment with Java versions
(Cloud Datastore Emulator) prior to 21. Users can upgrade to Java 21 or above to continue using the latest
(Cloud Datastore Emulator) Datastore emulator. Alternatively, users can use previousgcloud CLI
(Cloud Datastore Emulator) versions to continue using the Datastore emulator with
(Cloud Datastore Emulator) Java 11 support.
(Cloud Firestore Emulator) Removed support for running the Firestore emulator
(Cloud Firestore Emulator) (gcloud beta emulators firestore start) in environment with Java versions
(Cloud Firestore Emulator) prior to 21. Users can upgrade to Java 21 or above to continue using the latest
(Cloud Firestore Emulator) Firestore emulator. Alternatively, users can use previousgcloud CLI
(Cloud Firestore Emulator) versions to continue using the previous Firestore emulator with
(Cloud Firestore Emulator) Java 11 support.
(Compute Engine) Demoted--igmp-query flag in--network-interface ofgcloud compute instances bulk create to alpha.
(Eventarc) Removed option for--destinations to setnetwork_attachment whenhttp_endpoint_uri is not set.
(Network Services) Removed--service-directory-namespace,--service-directory-region, and--service-directory-service flags ingcloud network-services service-bindings create.

AI

Added support for therequest-counts-per-minute autoscaling metric togcloud ai endpoints deploy-model andgcloud ai deployment-resource-poolscreate.

AlloyDB

Fix being able to enable managed connection pooling for the first time whencallinggcloud alloydb instances update without having to specify all managedconnection pooling related flags.

Anthos Multi-Cloud

Added--system-component-tolerations flag togcloud container attached clusters register to customize Kubernetes tolerations for system components.
Added--system-component-labels flag togcloud container attached clusters register to customize Kubernetes labels for system components.

App Engine

Fixed open source issuehttps://issuetracker.google.com/issues/329705717 for python appengine SDK.

BigQuery

Added new flag--external_catalog_table_options inbq mk -t andbq update -t to create and update tables with external catalog options.

Cloud Backup DR

Fixedbackup-vault create command to return the created resource.
Modifiedbackups list command to use basic view by default.

Cloud Managed Kafka

Fixed an error where the mode or compatibility being unset would causes the command to fail.
Made the output of the commands more readable.
Add informative text to the "subject describe" command to inform if the mode/compatibility was inherited from the schema registry.

Cloud Memorystore

Promotegcloud redis clusters create CMEK related commands to GA track.
Promotegcloud memorystore instances create CMEK related commands to GA track.

Cloud Run

Promoted--no-default-url flag to GA forgcloud run services command groups.
Promoted .env support for--env-vars-file flag forgcloud run deploy from alpha to beta.
Added .env support for--env-vars-file flag forgcloud run jobs deploy.

Cloud Services

Promotedgcloud services groups list-expanded-members to beta.

Cloud Storage

Updated gsutil component to 5.35.

Compute Engine

Promoted--append-licenses,--remove-licenses and--replace-license flags ofgcloud compute disks update to beta and GA.
Added--enable_emergent_maintenance flag togcloud compute reservations update.
Fixed issue wheregcloud compute vpn-gateways list --regions {region} call aggregated list instead of regional list.
Fixed issue wheregcloud compute vpn-tunnels list --regions {region} call aggregated list instead of regional list.
Promoted--resource-manager-tags flag forgcloud compute networks create to GA.
Promoted--resource-manager-tags flag forgcloud compute networks subnets create to GA.
Promoted--resource-manager-tags flag forgcloudc compute routers create to beta.
Fixed an issue where exceptions ingcloud compute instances bulk createwith--format flag were not logged.

Eventarc

Removed requirement for--destinations to setnetwork_attachment whenhttp_endpoint_uri is set.

Kubernetes Engine

Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.14)
- kubectl.1.30 (1.30.14)
- kubectl.1.31 (1.31.10)
- kubectl.1.32 (1.32.6)
- kubectl.1.33 (1.33.2)
Added--additional-ip-ranges and--remove-additional-ip-ranges flags togcloud container clusters update to allow multiple subnets in a cluster.

Looker

Addedcore-trial-standard,core-trial-enterprise, andcore-trial-embed options to--edition flag ofgcloud looker instances create.

Network Services

Added--update-strategy flag ingcloud compute networks peerings create andgcloud compute networks peerings update commands.
Added a new commandgcloud compute networks peerings request-delete.
Support "export" and "import" surfaces for Service Binding resource.
Support "update" surface for Service Binding resource.

Policy Simulator

Promotedgcloud policy-intelligence simulate to GA.

Security Command Center

Added--organization and--location argument flags togcloud scc posture-deployments list to list scc's posture deployments for organization level.
Addedvm-manager,ec2-vulnerability-assessment,gce-vulnerability-assessment,azure-vulnerability-assessment, andnotebook-security-scanner services to theSUPPORTED_SERVICES list.
Added--organization and--location argument flags togcloud scc posture-templates list to list Cloud Security Command Center posture templates for an organization.

Service Extensions

Promoted the following Service Extensions Plugins command groups to GA:
- gcloud service-extensions wasm-plugins
- gcloud service-extensions wasm-plugin-versions

Workbench

Addedgcloud beta workbench instances command group for pre-GA features.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

528.0.0 (2025-06-24)

AI

Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.

AlloyDB

Added support for z3 machine-types.
Added support for upgrading AlloyDB clusters to PostgreSQL 17 usinggcloud alloydb clusters upgrade in the alpha and beta tracks.

Cloud Managed Kafka

Changed--project flag to be optional in the following commands:
- gcloud managed-kafka schema-registries describe.
- gcloud managed-kafka schema-registries update.
- gcloud managed-kafka schema-registries subject describe.
- gcloud managed-kafka schema-registries subject update.
Changed--schema_registry to--schema-registry for subject commands.

Cloud NetApp

Add newgcloud CLI commandestablish-peering for Cache Volumes.
Restrictedexternal replication related parameters to the alpha and beta release tracks as feature is in private preview.

Cloud Run

Promoted--max flag forgcloud run deploy andgcloud run {services,multi-region-services} update from alpha to beta.
Promotedgcloud run worker-pools andgcloud run worker-pools revisions from alpha to beta.

Cloud Spanner

spanner-cli binary published as a new Cloud SDK component.
spanner-cli may be installed withgcloud components install spanner-cli.
spanner-cli starts an interactive shell for spanner.

Compute Engine

Promoted--append-licenses,--remove-licenses and--replace-license flags ofgcloud compute disks update to beta and GA.
Added--enable_emergent_maintenance flag togcloud compute reservations update.

Metastore

Promoted--tags flag ofgcloud metastore service and federation create.

Migrate to Virtual Machines

Add--adaptation-modifiers flag to support os adaptation modifiers.
Add--rootfs-uuid flag to support multiple operating systems found in adaptation.

Network Security

Added--purpose flag togcloud alpha/beta network-security org-address-groups create/update commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

527.0.0 (2025-06-17)

Breaking Changes

(GKE Hub) Removed Policy Controller API enablement ingcloud beta|alpha container fleet|hub config-management commands. To usePolicy Controller, please refer togcloud container fleet policycontroller.

AlloyDB

Added flag--allocated-ip-range-override to create a Private Services Access instance with a preferred IP range to the following commands in the GA track:
- gcloud alloydb instances create
- gcloud alloydb instances create-secondary

Cloud DNS

Added GA support for creating forwarding zones with IPv6 and an FQDN forwarding target.

Cloud Data Fusion

Promoted--tags flag ofgcloud data-fusion instances create.

Cloud Dataplex

Addedbigquery-publishing-dataset-project field togcloud dataplex datascans create data-discovery andgcloud dataplex datascans update data-discovery commands.

Cloud Workflows

Added environment variable flags togcloud workflows deploy to supportsetting, updating, removing, and clearing user-defined environment variables.

Compute Engine

Promoted--resource-manager-tags flag forgcloud compute firewall-rules create to GA.
Promoted--igmp-query flag in--network-interface ofgcloud compute instances bulk create to beta.
Promoted--igmp-query flag in--network-interface ofgcloud compute instances create to beta.
Promoted--igmp-query flag ingcloud compute instances network-interfaces update to beta.
Promoted--resource-manager-tags flag forgcloud compute routes createto GA.

GKE Hub

Added a--custom-role flag togcloud container fleet scopes add-app-operator-binding in beta.
Updatedgcloud container fleet scopes remove-app-operator-binding andgcloud container fleet scopes list-app-operator-bindings to handle custom roles in beta.

Gemini

Added a new flag--enable-data-sharing when creating or updating a DataSharingWithGoogleSetting.

Kubernetes Engine

Added--patch-update flag togcloud container clusters create/update to allow enabling accelerated upgrades.

Security Command Center

Added--organization and--location argument flags togcloud scc postures list to list all the scc postures at organization level.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

526.0.1 (2025-06-10)

Breaking Changes

(Cloud Storage) Fixed brokengcloud storage ... commands where grpc import was not found.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

526.0.0 (2025-06-10)

Breaking Changes

(Cloud Storage) Updatedgcloud storage batch-operations jobs list to include transformation type in theTRANSFORMATION column.

BigQuery

Fixed a bug that would sometimes cause a crash when running with Python versions older than 3.9.2.
Fixed a bug that would cause a crash when runningbq query with--dry_run=true and--rpc=true.

Certificate Authority Service

Removed the requirement to enter a project ID when using CAS ingcloud CLI. It is now possible to use project number instead of project ID when usinggcloud privateca.

Cloud DNS

Add support for DNS64 policies in GA.

Cloud Filestore

Added--ldap flag togcloud v1 filestore instances create.

Cloud Key Management Service

Added support for the prehash post-quantum asymmetric signing algorithmHASH-SLH-DSA-SHA2-128s-SHA256.

Cloud Resource Manager

Added--allowed-values-regex flag togcloud resource-managertags keys update command to allow the user to update the regex of the allowedvalues under a TagKey.
Added--allowed-values-regex flag togcloud resource-managertags keys create command to allow the Tag Values shortName confining to theregex getting created during the time of Binding creation.

Cloud Run

Promoted--condition flag forgcloud run services {add,remove}-iam-policy-binding from beta to GA.

Cloud Storage

Fixed issue wheregcloud storage cp|mv|rsync failed the command for(Parallel Composite Upload)[https://cloud.google.com/storage/docs/parallel-composite-uploads]if thestorage.buckets.get permissions were missing.

Compute Engine

Promoted--phase1-encryption,--phase1-integrity,--phase1-prf,--phase1-dh,--phase2-encryption,--phase2-integrity,--phase2-pfsflags ingcloud compute vpn-tunnels create to beta.

Container

Added--alpha-cluster-feature-gates flag togcloud container clusters create command to specify the feature gates for alpha clusters.

Database Migration

Added SQLServer as source engine togcloud database-migration conversion-workspaces create.
Added AlloyDB as destination provider togcloud database-migration conversion-workspaces create.
Added--ssl-flags flag togcloud database-migration connection-profiles create sqlserver.

Developer Connect

Addedgcloud developer-connect insights-configs command group. Thisgroup allows users to manage Developer Connect Insights Configs andincludes commands tocreate,delete,describe,list, andupdatethese resources.

Network Connectivity

Addedgcloud beta network-connectivity spokes gateways commands formanaging NCC gateway spokes.
Addedgcloud beta network-connectivity spokes gateways advertised-routescommands for managing routes that attract traffic to NCC gateway spokes.

Network Security

Addedgcloud network-security secure-access-connect commands which allow customers to establish connections to SSE providers.
Updated import and export schemas forgcloud beta network-security authz-policies.

Pubsub Emulator

Add support for topic and subscription Single Message Transforms (SMTs).

Security Command Center

Added--organization and--location argument flags togcloud scc posture-deployments list to list scc's posture deployments for organization level.
Addedvm-manager,ec2-vulnerability-assessment,gce-vulnerability-assessment,azure-vulnerability-assessment, andnotebook-security-scanner services to theSUPPORTED_SERVICES list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

525.0.0 (2025-06-03)

Breaking Changes

(Cloud Managed Kafka) Included SASL port in bootstrap address on cluster describe and list commands.

AlloyDB

Addedgcloud alloydb clusters migrate-cloud-sql command to support migrating data from an existing Cloud SQL instance backup to an AlloyDB cluster in GA track.

Cloud Bigtable Emulator

Rebuilt cbt emulator with golang.org/x/net version 0.39.0 which fixes CVE-2025-22870.

Cloud Dataplex

Promotedgcloud dataplex metadata_jobs commands to GA.

Cloud Dataproc

Addedtier flag togcloud dataproc clusters create allowing user to create premium tier or standard tier clusters.

Cloud Managed Kafka

Added the sslPrincipalMappingRules as a flag for create and update cluster.

Compute Engine

Promoted--load-balancing-scheme flag forgcloud compute backend-buckets create to GA.
Addedgcloud compute reservations sub-blocks list command in beta and v1.
Addedgcloud compute reservations sub-blocks describe command in beta and v1.

Compute Firewall Policies

Promoted--policy-type flag to beta ingcloud compute network-firewall-policies create.

Database Migration

Updatedgcloud database-migration connection-profiles create alloydb to support POSTGRES_17 version option for AlloyDB connection profiles.

GKE Hub

Promoted--custom-role flag ofgcloud container fleet scopes rbacrolebindings to beta and GA.
Promotedgcloud container fleet rbacrolebindingactuation commands to beta and GA.
add in support for performance-monitoring unit for cluster create andnode-pools create.

Network Connectivity

Added IPV6 option to--protocol-version flag ofgcloud network-connectivitypolicy-based-routes.

Service Extensions

Addedgcloud service-extensions lb-edge-extensions command group in beta for managing LbEdgeExtension resources.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

524.0.0 (2025-05-28)

Breaking Changes

(Compute Engine) Modified enum value names for 'rollout-plan' flag ingcloud beta compute preview-features update commands.

AlloyDB

Added support forPOSTGRES_17 as a version inalloydb clusters create for alpha & beta track.
Added support forPOSTGRES_17 as a version inalloydb clusters migrate-cloud-sql for alpha & beta track.

Cloud Build

Updated output format ofgcloud builds get-default-service-account.

Cloud Dataplex

Promotedgcloud dataplex datascans create data-discovery command to GA.
Promotedgcloud dataplex datascans update data-discovery command to GA.

Cloud IAM

Added--detailed-audit-logging flag to theWorkforce Pool Provider configuration.

Cloud Managed Kafka

Promoted existing alpha Schema Registries commands to beta.
Added alpha Schema Registries subject describe command for Managed KafkaSchema Registry subjects. This allows a user to see the details of a subject.

Cloud Observability

Initial surface for Observability API.

Cloud Run

Added support for multi-region source deployment ingcloud beta run deploy.

Cloud Spanner

Added--kms-keys flag togcloud spanner databases update command to support updating Cloud KMS(Key Management Service) keys for Cloud Spanner Customer Managed Encryption(CMEK).

Cloud Workstations

Added--no-persistent-storage flag togcloud workstations config create andgcloud beta workstations config create.

Colab

Removed--post-startup-script flag fromgcloud notebooks instancescreate command.

Compute Engine

Support--provisoining-model forgcloud compute instance-templates create-with-container command.
Added--candidate-cloud-router-ip-address and--candidate-customer-router-ip-address flags forgcloud beta compute interconnects attachments dedicated create,gcloud beta compute interconnects attachments partner create, andgcloud beta compute interconnects attachments provider create to allow usersto add custom ranges to the interconnect attachment.
Added--candidate-cloud-router-ipv6-address and--candidate-customer-router-ipv6-address flags forgcloud beta compute interconnects attachments dedicated create,gcloud beta compute interconnects attachments partner create,gcloud beta compute interconnects attachments provider creategcloud beta compute interconnects attachments dedicated update,gcloud beta compute interconnects attachments partner update, andgcloud beta compute interconnects attachments provider updateto allow users to add custom ranges to the interconnect attachment.
Promoted--workload-policy and--remove-workload-policy flags forgcloud compute instance-groups managed create andgcloud compute instance-groups managed update to GA.
Support deleting regional PDs with--delete-disks ingcloud compute instance delete.
Promoted--zonal-affinity-spillover and--zonal-affinity-spillover-ratio ofgcloud compute backend-services create|update commands to beta.
Promoted--gpu-topology and--workload-policy to GA.

Gemini

Added a new flag--disable-web-grounding when creating or updating a GeminiGcpEnablementSetting.

Network Services

Promotedgcloud network-services operations to beta and GA.

Security Command Center

Added--organization,--location argument flags togcloud scc iac-validation-reports list to list scc's iac validation reports for organization level.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

523.0.1 (2025-05-22)

Cloud Datastore Emulator

Rolled back prior change which removed support for runningthe Datastore emulator (gcloud beta emulators datastore start) in environmentwith Java versions prior to 21. Previously suggested mitigations to address thebreaking change were not successful for all users.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

523.0.0 (2025-05-20)

Breaking Changes

(Cloud Datastore Emulator) Removed support for running the Datastore emulator
(Cloud Datastore Emulator) (gcloud beta emulators datastore start) in environment with Java versions
(Cloud Datastore Emulator) prior to 21. Users can upgrade to Java 21 or above to continue using the latest
(Cloud Datastore Emulator) Datastore emulator. Alternatively, users can use previousgcloud CLI
(Cloud Datastore Emulator) versions to continue using the Datastore emulator with
(Cloud Datastore Emulator) Java 11 support.
(Cloud Firestore Emulator) Removed support for running the Firestore emulator
(Cloud Firestore Emulator) (gcloud beta emulators firestore start) in environment with Java versions
(Cloud Firestore Emulator) prior to 21. Users can upgrade to Java 21 or above to continue using the latest
(Cloud Firestore Emulator) Firestore emulator. Alternatively, users can use previousgcloud CLI
(Cloud Firestore Emulator) versions to continue using the previous Firestore emulator with
(Cloud Firestore Emulator) Java 11 support.

AI

Addedgcloud ai model-garden command group, which supports deploying models in Model Garden.
- Addedgcloud ai model-garden models deploy command to deploy a model from Model Garden.
- Addedgcloud ai model-garden models list command to find models that support deployment.
- Addedgcloud ai model-garden models list-deployment-config command to find supported deployment configurations for each model.
Added--list-model-garden-endpoints-only flag togcloud ai endpoints list command.

AlloyDB

Added support for--activation-policy inalloydb instances update for beta & GA track.

Auth Login

Fixedgcloud CLI login flow using a client-id file in a no-browserenvironment. Runninggcloud auth application-default login --client-id='...'in a no-browser environment will now execute a working--no-browser flow.

BigQuery

Fixed the fallback quota project ID for user accounts when running on Cloud Shell or Google Compute Engine VM.
Added new flag--replace_data tobq query andload commands to use write dispositionWRITE_TRUNCATE_DATA.
Added support for--source_column_match flag forbq load command.When you load CSV files into BigQuery, you can now use this flag to loadcolumns based on header names or column position. This feature is in preview.
Added support for Routine ACLs for the IAM commands.
Added multiple flags forbq mk andbq mkdef command:--time_zone flag tospecify a customized time zone;--date_format,--datetime_format,--time_format and--timestamp_format flags to define how date and timevalues are formatted in source files.
Added support for capacity commitment id inbq mk command.
Fixed bug causing invalid json to be produced when running some scripts usingbq query --format=json orbq query --format=prettyjson.
Improved the performance of retrieving user configs set in Cloud CLI.
Addeddataset_view tobq show command to allow customers to view dataset's metadata, ACL fields or both.
Addedupdate_mode tobq update command to allow customers to update dataset's metadata, ACL fields or both.
Added support for--connection_id flag for creating Spanner external datasets.
Added new flag--external_catalog_dataset_options inbq mk -d andbq update -d to create and update datasets with external catalog options.

Cloud NetApp

Addedhot-tier-size andenable-hot-tier-auto-resize flags togcloud beta netapp storagepools create andgcloud beta netapp storagepools update commands.

Cloud SQL

Increased operation wait timeout forgcloud sql instances switchoverfrom 10 minutes to 1 hour.

Cloud Spanner

Promoted--instance-partition flag ofgcloud spanner operations describe to GA.

Compute Engine

Added--enable-display-device flag togcloud beta compute instance-templates create.
Promoted--ncc-gateway flag to beta.

Container

If thecontainer.googleapis.com API is not enabled when creating a cluster,the user is asked to enable it and then proceed with creation.

Database Migration

Added--global-filter flag todatabase-migration conversion-workspaces update.

Eventarc

Removed requirement for--destinations to setnetwork_attachment whenhttp_endpoint_uri is not set.

Kubernetes Engine

Added flag option--anonymous-authentication-config to block (or enable)anonymous access to all paths other than the health check endpoints /readyz,/healthz and /livez.
Updated the warning message for node pool upgrade operation.
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.14)
- kubectl.1.30 (1.30.13)
- kubectl.1.31 (1.31.9)
- kubectl.1.32 (1.32.5)
- kubectl.1.33 (1.33.1)

Network Connectivity

Added--allocation-strategy and--first-available-ranges-lookup-sizeflags togcloud network-connectivity internal-ranges create to supportrefined allocation options for auto-allocated Internal IP Ranges.
Fixed misleading doc text forgcloud network-connectivity internal-rangescreate.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

522.0.0 (2025-05-13)

Anthos

anthos-cli component updated to address security tool flags:
- CVE-2025-22872 / GO-2025-3595
- CVE-2025-22870 / GO-2025-3503
- CVE-2025-22870

App Engine

Updated the Java SDK to version 2.0.36 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.36.
Upgraded Eclipse Jetty web server to version 12.0.20.
Fixed open source issue https://issuetracker.google.com/issues/329705717 for python appengine SDK.

Certificate Authority Service

Removed the requirement to specify an organization when creating a Certificate Authority. Users can now create CAs without providing an organization.

Cloud Build

Enable REP endpoints forgcloud builds... if a region is passed in.

Cloud Dataplex

Promotedgcloud dataplex glossaries commands to GA.
Promotedgcloud dataplex encryption-config commands to GA.

Cloud Dataproc

Added--user-workload-authentication-type flag togcloud dataproc batches submit commands in GA. This determines whether the batch uses service account or end user credentials.
Added--user-workload-authentication-type flag togcloud beta dataproc sessions create commands in Preview. This determines whether the session uses service account or end user credentials.

Cloud Deploy

Added--override-deploy-policies flag to the following commands whichcan be used to override deploy policies:
- gcloud deploy job-runs terminate
- gcloud deploy releases create|promote
- gcloud deploy rollouts advance|approve|cancel|ignore-job|reject|retry-job
- gcloud deploy targets rollback|redeploy

Cloud Managed Kafka

Completed minor bug fixes for ACL commands.
Promoted ACL commands to GA.
Add Alpha Schema Registries commands for Managed Kafka Schema Registry.

Cloud Spanner

Promoted--instance-partition flag ofgcloud spanner operations cancel to GA.
Promoted--instance-partition flag ofgcloud spanner operations list to GA.
Promotedgcloud spanner instance-partitions update to GA.
Promotedgcloud spanner instance-partitions get to GA.
Promotedgcloud spanner instance-partitions list to GA.

Cloud Workstations

Add support for workstation cluster-level tags fields.

Compute Engine

Promoted flags related to external-managed migration to v1:
- --external-managed-backend-bucket-migration-state ofgcloud compute forwarding-rules update.
- --external-managed-backend-bucket-migration-testing-percentage ofgcloud compute forwarding-rules update.
- --load-balancing-scheme ofgcloud compute forwarding-rules update.
- --external-managed-migration-state ofgcloud compute backend-services update.
- --external-managed-migration-testing-percentage ofgcloud compute backend-services update.
- --load-balancing-scheme ofgcloud compute backend-services update.
Added--resource-manager-tags flag for alpha and beta togcloud compute networks create to allow users to add resource tags to thenetwork resource during creation.
Added--resource-manager-tags flag for alpha and beta togcloud compute firewall-rules create to allow users to add resource tagsto the firewall resource during creation.
Added--resource-manager-tags flag for alpha and beta togcloud compute networks subnets create to allow users to add ResourceManager tags to the subnetwork resource during creation.
Added--resource-manager-tags flag for alpha and beta togcloud compute routes create to allow users to add resource tagsto the route resource during creation.
AddedCLOUD_ARMOR_INTERNAL_SERVICE type ofcompute security-policy.
Support--provisioning-model=flex-start in beta forgcloud compute instance-templates create command.
Added--enable_emergent_maintenance flag togcloud beta compute reservations update andgcloud beta compute future-reservations update.

Identity and Access Management

Make Google Cloud CLI commands to manage X509 provider public andattribute mappings setting for x509 provider optional.

Network Security

Promoted thenetwork-security intercept-deployment-groups commands which manage intercept deployment groups to GA.
Promoted thenetwork-security intercept-endpoint-groups commands which manage intercept endpoint groups to GA.
Promoted thenetwork-security intercept-endpoint-group-associations commands which manage intercept endpoint group associations to GA.
Promoted thenetwork-security intercept-deployments commands which manage intercept deployments to GA.
Promoted thenetwork-security security-profiles custom-intercept commands which manage custom intercept profiles to GA.
Promoted thenetwork-security security-profile-groups create --custom-intercept-profile flag to GA.

Security Command Center

Updatedlocation flag with requirements for using regional endpoints.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

521.0.0 (2025-05-06)

Breaking Changes

(Compute Engine) Deprecated/removed128KB choice from--request-body-inspection-size flag
(Compute Engine) ingcloud compute security-policies create and in `gcloud compute
(Compute Engine) security-policies update`, replaced with other size variants.

Google Cloud CLI

Updated Linux bundled Python for thegcloud CLI to 3.12.9.

AI

Fixed an issue ingcloud beta ai model-garden deploy in accelerator quotachecking, and returned full quota name in error messages.
Addedfull-resource-name flag togcloud beta ai model-garden models list.
Added table to list deploy and predict capability togcloud beta ai model-garden models list.
Renamedlist-supported-hugging-face-models flag tocan-deploy-hugging-face-models forgcloud beta ai model-garden models list.

AlloyDB

Added flag--psc-auto-connections to create or update instance with Private Service Connect enabled with a list of PSC auto connections to the following commands in the GA track:
- gcloud alloydb instances create
- gcloud alloydb instances create-secondary
- gcloud alloydb instances update
Added flag--clear-psc-auto-connections to remove all PSC auto connections from an instance with Private Service Connect enabled to the following commands in the GA track:
- gcloud alloydb instances update
Added the following flags for configuring maintenance deny periods togcloud alloydb clusters create andgcloud alloydb clusters update in the GA track. The commands include:
- --deny-maintenance-period-start-date
- --deny-maintenance-period-end-date
- --deny-maintenance-period-time
- --remove-deny-maintenance-period (update only)

BigQuery

Added support for--job_timeout_ms flag forbq query command with--rpc.
Added error message that--service_account flag is not supported.
Added support for--source_column_match flag forbq load command.When you load CSV files into BigQuery, you can now use this flag to loadcolumns based on header names or column position. This feature is in preview.
Fixed the local discovery document loading for reservations.
Added multiple flags forbq load command:--time_zone flag to specify acustomized time zone;--date_format,--datetime_format,--time_formatand--timestamp_format flags to define how date and time values areformatted in source files;--null_markers flag to define the strings thatrepresent NULL values in CSV files.
Promotedgcloud bq migration-workflows to GA.

Cloud Bigtable

Added deletion-protection support forgcloud bigtable logical-views.

Cloud Datastream

Support MySQL GTID streams.
Added--type=mongodb and associated configuration flags togcloud datastream connection-profiles create andgcloud datastream streams create which supports the creationof Datastream connection profiles to MongoDB compatible clusters.

Cloud Managed Kafka

Completed minor bug fixes for ACL commands.
Promoted ACL commands to GA.

Cloud Managed Lustre

Added help text example commands to documentation forgcloud lustre.

Cloud NetApp

Added alpha support for netapp volume replications.

Cloud SQL

Made--custom-subject-alternative-names and--clear-custom-subject-alternative-names flags available for GA.
Updated 'cloud-sql-proxy' packaged component to use 2.16.0 of the Cloud SQL Proxy.

Cloud Spanner

Promotedgcloud spanner instance-partitions create to GA.
Promotedgcloud spanner instance-partitions delete to GA.

Compute Engine

Added--source-snapshot-region flag togcloud beta compute instances create to create instance.
Promotedgcloud compute advice calendar-mode command to beta.

Distributed Cloud Edge

Added--container-default-runtime-class flag togcloud edge-cloud container clusters create command to allow for specifying a default container runtime class for the cluster.
Added--container-default-runtime-class flag togcloud edge-cloud container clusters update command to allow for specifying a default container runtime class for the cluster.

Kubernetes Engine

Added the kubelet config optionsingleProcessOomKill togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update commands. This option enablessingle-process termination on Out of Memory (OOM) events.
Added a warning to--labels flag documentation forgcloud container node-pools update indicating node recreation upon update.
Updated default kubectl from 1.31.6 to 1.32.4.
Adds kubectl for new rapid channel GKE version (1.33.0).
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.14)
- kubectl.1.30 (1.30.12)
- kubectl.1.31 (1.31.8)
- kubectl.1.32 (1.32.4)
- kubectl.1.33 (1.33.0)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

520.0.0 (2025-04-29)

App Engine

Updated the Java SDK to version 2.0.35 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.35.
Added the new runtime go 1.24 support for devappserver2.

Cloud Bigtable

Rebuilt cbt cli with golang.org/x/net v0.38.0 which fixed CVE-2025-22870.

Cloud Filestore

Modifiedgcloud filestore regions list andgcloud filestore zones list to limit the number of resources only after filtering the resources for being regions/zones respectively.

Cloud IAM

Added the following commands for theManaged Workload Identity feature:
- gcloud iam workload-identity-pools
- iam-policy commands
- --mode,--inline-certificate-issuance-config-file,--inline-trust-config-file flags
- gcloud iam workload-identity-pools namespaces
- describe,create,update,delete,undelete,list commands
- gcloud iam workload-identity-pools managed-identities

Cloud Managed Kafka

Added Alpha ACL commands.

Cloud Run

Added--regions flag ingcloud beta run deploy, andgcloud beta run multi-region-services.

Compute Engine

Added--global-producer-forwarding-rule flag to service attachments.
Fixed crash when runninggcloud compute reset-windows-password on Windowswith Python >= 3.12.
- Attempting to run this command would result in the following error:"ctypes.ArgumentError: argument 5: TypeError: expected LP_c_ubyte instanceinstead of c_byte_Array_276".
- This issue was reported athttps://issuetracker.google.com/issues/398776180.
Added--snapshot-region flag togcloud beta compute resource-policies create to create regional snapshots schedule.
Addedgoto-next as an option for--action flag for the following commands:
- gcloud compute org-security-policies rules create|update.

Database Migration

Added--max-concurrent-full-dump-connections,--max-concurrent-cdc-connections,--max-concurrent-destination-connectionsand--transaction-timeout flags togcloud database-migration migration-jobs update.

Kpt

Updated kpt to v1.0.0-beta.56. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.56 for more details.

Kubernetes Engine

Added--confidential-node-type flag to allow creation of confidential nodesof types: sev, sev_snp_tdx.

Network Connectivity

Added--immutable flag togcloud network-connectivity internal-rangescreate command.

Security Command Center

Added--organization,--project,--folder flags togcloud scc findings list command to list source's findings for organization, project and folder levels.
Added--organization,--project,--folder flags togcloud scc notifications list to list scc's notification configs for organization, project and folder levels.

Workbench

Added--reservation-type,--reservation-key,--reservation-values flags togcloud workbench instances create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

519.0.0 (2025-04-22)

Breaking Changes

(Container) Remove--enable-tpu--enable-tpu-service-networking--tpu-ipv4-cidr fromgcloud container clusters create andgcloud container clusters update.

Cloud Backup DR

Addedgcloud backup-dr backups update to allow updating the enforced retention time for Backup and DR backups.

Cloud DNS

Added alpha and beta support for creating forwarding zones with IPv6 and FQDN forwarding targets.

Cloud Datastream

Addgcloud CLI support for PSC Interface Private Connection.

Cloud Filestore

Fix LDAP parameters ingcloud beta filestore instances create.

Cloud NetApp

Updatedgcloud netapp backup-vaults create.
Added new options 'replication-schedule', 'hybrid-replication-type' and'large-volume-constituent-count' to hybrid-replication-parameters in the createvolume flow.

Cloud Services

Added--service-account flag togcloud services api-keys create.

Cloud Storage

Updated gsutil component to 5.34.

Compute Engine

Addedgcloud compute reservations blocks list command in v1.
Addedgcloud compute reservations blocks describe command in v1.
Addedgcloud compute reservations blocks perform-maintenance command in v1.
Addedgcloud compute reservations perform-maintenance command in v1.
Added--tags flag to the following command:
- gcloud compute url-maps invalidate-cdn-cache.

Kubernetes Engine

Added ability to explicitly disable addons on cluster creation using--addons AddonName=DISABLED or enable using--addons AddonName=ENABLED.

Network Connectivity

Updategcloud network-connectivity service-connection-policies update, made--subnets and PSC config subgroup flags optional.

Security Command Center

Added--organization,--project,--folder flags togcloud scc findings list command to list source's findings for organization, project and folder levels.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

518.0.0 (2025-04-15)

Google Cloud CLI

Added warning message to indicate Python 3.8 support will be deprecated on July 15, 2025.

App Engine

Updated the Java SDK to version 2.0.34 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.34.
Updated Eclipse Jetty web server version to 12.0.19.

Artifact Registry

Implementedgcloud artifacts go auth for the GOAUTH environment variableintroduced in Go 1.24.

Backup For GKE

Added the following commands
- gcloud <alpha|beta> container backup-restore backup-channels create
- gcloud <alpha|beta> container backup-restore backup-channels delete
- gcloud <alpha|beta> container backup-restore backup-channels describe
- gcloud <alpha|beta> container backup-restore backup-channels list
- gcloud <alpha|beta> container backup-restore backup-channels updateto interact with Backup for GKE backup channels.
Added the following commands
- gcloud <alpha|beta> container backup-restore backup-plan-bindings describe
- gcloud <alpha|beta> container backup-restore backup-plan-bindings listto interact with Backup for GKE backup plan bindings.
Added the following commands
- gcloud <alpha|beta> container backup-restore restore-channels create
- gcloud <alpha|beta> container backup-restore restore-channels delete
- gcloud <alpha|beta> container backup-restore restore-channels describe
- gcloud <alpha|beta> container backup-restore restore-channels list
- gcloud <alpha|beta> container backup-restore restore-channels updateto interact with Backup for GKE restore channels.
Added the following commands
- gcloud <alpha|beta> container backup-restore restore-plan-bindings describe
- gcloud <alpha|beta> container backup-restore restore-plan-bindings listto interact with Backup for GKE restore plan bindings.

BigQuery

Improved authentication performance for service accounts.
Added support for--filter flag forbq ls --jobs which supports filtering by job states using thestates:<comma separated states> expression.
Fixed the failingbq query with flags combination--rpc --reservation=none.

Cloud Backup DR

Add deprecation warning fornetwork flag fromgcloud backup-dr management-servers create command.

Cloud Bigtable

Promotedgcloud bigtable materialized-views create|describe|list|update|delete commands to GA.

Cloud Composer

Correct URI values returned with--uri flag bygcloud composer environments list command.
Correct URI values returned with--uri flag bygcloud composer operations list command.

Cloud Dataflow

Fixed issue reading gcs files when executing YAML pipelines viagcloud dataflow yaml run.
Back port--additional-user-labels parameter to Dataflow classic template.

Cloud Filestore

Added--ldap flag togcloud beta filestore instances create.

Cloud Firestore

Added a newMONGODB_COMPATIBLE_API toApiScope field in Firestore index.
Added--multikey and--density flags to Firestore index create.
Promotedgcloud firestore user-creds to beta.
Addedgcloud beta databases connection-string which prints the mongo connection string for the given Firestore database.
Added--edition flag togcloud beta databases create to configure database edition during creation.

Cloud Functions

Fixed service account impersonation when calling a 2nd Gen function (functions call with--impersonate-service-account flag).

Cloud Logging

Added--monitored-resource-type and--monitored-resource-labels togcloud logging write.

Cloud Managed Kafka

Update subnet help text to reflect one subnet per network.

Cloud Resource Manager

Updatedgcloud resource-manager tags bindings list to change the backend call from ListTagBinding, ListEffectiveTagBinding RPC to GetTagBindingCollection, GetEffectiveTagBindingCollection RPCs for ALPHA release.

Cloud Run

Added a prompt togcloud run deploy andgcloud run services updatecommands to retry deploying a GPU service with--no-gpu-zonal-redundancyflag. This confirmation prompt only shows up when the original deploymentenables GPU but does not specify GPU zonal redundancy, and the project doesnot have access to GPU with zonal redundancy enabled but has access to GPUwith zonal redundancy disabled.
Fixed issue wheregcloud run jobs describe would crash if the job hasmultiple containers.

Cloud Spanner

Promotedgcloud spanner databases splits command to GA.

Compute Engine

Promoted flags related to the nat64 feature to GA:
- --nat64-all-v6-subnet-ip-ranges ofgcloud compute routers nats (create|update).
- --nat64-custom-v6-subnet-ip-ranges ofgcloud compute routers nats (create|update).
- --clear-nat64-v6-subnet-ip-ranges ofgcloud compute routers nats update.
- --clear-nat-subnet-ip-ranges ofgcloud compute routers nats update.
Updatedgcloud compute images list to return images from new image projectsfor Accelerator images:rocky-linux-accelerator-cloud andubuntu-os-accelerator-images.
Added--share-setting flag togcloud beta compute reservations update.
Updated import and export schemas for:
- gcloud compute backend-services.
Promoted support for specific instance names (--instances) in create resizerequest to beta.

Container

Added interactive warning togcloud container clusters create|updatecommands whenNONE is specified as--logging or--monitoring params.

Database Migration

Added--skip-validation flag togcloud database-migration private-connections create.
Added--max-concurrent-full-dump-connections,--max-concurrent-cdc-connections,--skip-full-dump,--oracle-cdc-start-position,--sqlserver-cdc-start-position,--max-concurrent-destination-connections and--transaction-timeout flagstogcloud database-migration migration-jobs create.

Developer Connect

Add new account-connector OAuth providers.

Distributed Cloud Edge

Addeduse-google-managed-key andcontrol-plane-kms-key flags togcloudedge-cloud container clusters update command to support updating KMS key usedfor control plane disk encryption.
Addeduse-google-managed-key andlocal-disk-kms-key flags togcloudedge-cloud container clusters node-pools update command to support updating KMSkey used for worker node disk encryption.

Gemini

Addedgcloud gemini code-tools-settings API.
Addedgcloud gemini code-tools-settings setting-bindings API.
Addedgcloud gemini data-sharing-with-google-settings API.
Addedgcloud gemini data-sharing-with-google-settings setting-bindings API.
Addedgcloud gemini gemini-gcp-enablement-settings API.
Addedgcloud gemini gemini-gcp-enablement-settings setting-bindings API.
Addedgcloud gemini logging-settings API.
Addedgcloud gemini logging-settings setting-bindings API.
Addedgcloud gemini release-channel-settings API.
Addedgcloud gemini release-channel-settings setting-bindings API.

Identity and Access Management

Added a new--credential-cert-trust-chain-path flag togcloud iam workload pools create-cred-config. This flag enables using atrust chain file when configuring X.509 certificate-sourced credentials. Thisis required if there are intermediate certificates between the rootcertificate and the leaf certificate.

Kubernetes Engine

Added a new commandgcloud container clusters get-upgrade-infowhich returns upgrade information of the given cluster.
Added a new commandgcloud container node-pools get-upgrade-infowhich returns upgrade information of the given node pool.
Added--enable-secret-manager-rotation and--secret-manager-rotation-interval flag to enable rotation feature in secretmanager add on.
Added--data-cache-count flag togcloud container cluster/node-poolscreate to enable GKE Data Cache.
Added--opportunistic-maintenance flag togcloudcontainer node-pools create for enabling opportunistic maintenance feature.

Network Connectivity

Updategcloud network-connectivity internal-ranges create, promoted--exclude-cidr-ranges flag to GA.

Network Security

Thelocation flag for theserver-tls-policy list command is no longer required, having- (all locations) as a default value.

Security Command Center

Added--project,--folder flags togcloud scc findings list-marks command to list marks of findings for project and folder levels.
Added--project,--folder flags togcloud scc findings update command to update finding for project and folder levels.
Added--project,--folder flags togcloud scc findings update-marks command to update marks of findings for project and folder levels.

Transfer

Add options3-cloudfront-domain to commandgcloud transfer jobs.

Workbench

Added--confidential-compute-type flag togcloud workbench instances create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

517.0.0 (2025-04-01)

AlloyDB

Fix the following flags to actually update an AlloyDB instance on subsequentalloydb instances update calls:
- --connection-pooling-pool-mode
- --connection-pooling-min-pool-size
- --connection-pooling-max-pool-size
- --connection-pooling-max-client-connections
- --connection-pooling-server-idle-timeout
- --connection-pooling-query-wait-timeout
- --connection-pooling-stats-users
- --connection-pooling-ignore-startup-parameters

Cloud Bigtable

Promotedgcloud bigtable logical-views create|describe|list|update|delete commands to GA.

Cloud Dataflow

Added support for--additional-pipeline-options flag togcloud dataflow flex-template run" command to support common runtime pipelineoption assignments.
Fixed potential TypeError when executing YAML pipelines viagcloud dataflow yaml run

Cloud Datastream

Added BlmtConfig to--bigquery-destination-config ingcloud datastream streams create commands to support BigLake Managed Tables (BLMT).

Cloud Deploy

Modifiedgcloud deploy releases create to enablepublic accesspreventionon the Cloud Storage buckets it creates.

Cloud Firestore

Promotedgcloud firestore bulk-delete command to GA.

Cloud Identity-Aware Proxy

Promotedgcloud iap settings --resource-type=cloud-run andgcloud iap web ***-iam-policy --resource-type=cloud-run to beta.

Cloud Memorystore

Promotegcloud redis clusters backup feature related commands to GA track.

Cloud Resource Manager

Addedgcloud resource-manager tags bindings update to update the tags attached to the resource with the help of UpdateTagBindingCollection RPCs for ALPHA release.

Cloud Run

Added--[no-]iap flag to beta service command groups to allow enabling anddisabling IAP.
Promoted--container flag to GA forgcloud run jobs command groups.
Promoted--[no-]gpu-zonal-redundancy flag to GA forgcloud run deploy andandgcloud run services update commands.
Fixed URLs displayed onmulti-region-services replace success.

Cloud SQL

Addedgcloud support for integrating Vertex AI with Cloud SQL for MySQLinstances.

Compute Engine

Promoted--provisoining-model=RESERVATION_BOUND to v1 forgcloud compute instances create,gcloud compute instances bulk create, andgcloud compute instance-templates create commands.
Added--external-ipv6-prefix flag togcloud beta compute networks subnets create andgcloud beta compute networks subnets update.
Added--external-ipv6-prefix flag togcloud compute networks subnets create andgcloud compute networks subnets update.
Added--workload-policy flag togcloud beta compute instance-groups managed create.

Compute Firewall Policy Rules

Promoted--src-network-type flag ofgcloud compute firewall-policies rules to beta.
Promoted--dest-network-type flag ofgcloud compute firewall-policies rules to beta.
Promoted--src-network-type flag ofgcloud compute network-firewall-policies rules to beta.
Promoted--dest-network-type flag ofgcloud compute network-firewall-policies rules to beta.
Promotegcloud compute firewall-policies export-rules to GA.
Promotegcloud compute firewall-policies import-rules to GA.
Promotegcloud compute network-firewall-policies export-rules to GA.
Promotegcloud compute network-firewall-policies import-rules to GA.

Compute OS Config

Promotedgcloud os-config policy-orchestrators to GA.

Developer Connect

Add account-connectors group.

Kubernetes Engine

Added flag option--hpa-profile togcloud container clusters create,gcloud container clusters create-autoandgcloud container clusters update commands. Accepted values are: NONE,PERFORMANCE. This flag allows specifying a Horizontal Pod Autoscaling profilefor a cluster. For more information, seehttps://cloud.google.com/kubernetes-engine/docs/how-to/horizontal-pod-autoscaling#hpa-profile.

Memorystore

Addgcloud memorystore backup feature related commands.

Parametermanager

gcloud parametermanager [beta] is now publicly available.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

516.0.0 (2025-03-25)

Breaking Changes

(Anthos Multi-Cloud) Deprecatedgcloud container aws command group. Seehttps://cloud.google.com/kubernetes-engine/multi-cloud/docs/aws/deprecations/deprecation-announcement for more details.
(Anthos Multi-Cloud) Deprecatedgcloud container azure command group. Seehttps://cloud.google.com/kubernetes-engine/multi-cloud/docs/azure/deprecations/deprecation-announcement for more details.

AlloyDB

Fix--no-enable-connection-pooling to actually disable the managedconnection pooling feature inalloydb instances update.

BigQuery

Promotedgcloud bq migration-workflows to beta.

Cloud Datastream

Update Datastream schema files.
Support secret manager stored passwords.
Add support for PSC Interface Private Connection.

Cloud Interconnect

Promoted theLINK_TYPE_ETHERNET_400G_LR4 value of thecompute interconnects create --link_type flag to GA.

Cloud Resource Manager

Updatedgcloud resource-manager tags bindings list to change the backend call from ListTagBinding, ListEffectiveTagBinding RPC to GetTagBindingCollection, GetEffectiveTagBindingCollection RPCs for ALPHA release.

Cloud Run

Promoted--gpu and--gpu-type flags to GA forgcloud run deploy andgcloud run services update commands.
Added--(no)-gpu-zonal-redundancy flag togcloud beta run deploy andgcloud beta run services update commands to allow setting zonal redundancyfor Cloud Run Services using GPU.
Added--gpu and--gpu-type flags togcloud beta run jobs command groupto allow creating and updating Cloud Run Jobs using GPU.

Cloud Storage

Promotedgcloud storage batch_operations group to GA.

Compute Engine

Added and promoted flags related to tls-settings to beta:
- --tls-settings ofgcloud compute backend-service create.
- --tls-settings ofgcloud compute backend-service update.
- --no-tls-settings ofgcloud compute backend-service update.
Addreport-host-as-faulty command togcloud compute instances.
Promoted--action-on-vm-failed-health-check flag ofcompute instance-groups managed create andcompute instance-groups managed update to beta.
Added workload-policy creation usinggcloud beta compute resource-policies create workload-policy.
Promoted flags related to custom-metrics to v1:
- --custom-metrics ofgcloud compute backend-service create.
- --custom-metrics-file ofgcloud compute backend-service create.
- --custom-metrics ofgcloud compute backend-service update.
- --custom-metrics-file ofgcloud compute backend-service update.
- --clear-custom-metrics ofgcloud compute backend-service update.
- --custom-metrics ofgcloud compute backend-service add-backend.
- --custom-metrics-file ofgcloud compute backend-service add-backend.
- --custom-metrics ofgcloud compute backend-service update-backend.
- --custom-metrics-file ofgcloud compute backend-service update-backend.
- --clear-custom-metrics ofgcloud compute backend-service update-backend.

Database Migration

Added--database,--host and--port flags togcloud database-migration connection-profiles create sqlserver andgcloud database-migration connection-profiles update.
Added--ca-certificate flag togcloud database-migration connection-profiles create sqlserver.
Updatedgcloud database-migration connection-profiles create sqlserver to support connectivity methods for SQL Server connection profiles.

Eventarc

Added--update-labels,--remove-labels,--clear-labels ingcloud eventarc google-channels update.

GKE Hub

Added support for overriding Deployment resource requests and limits togcloud beta container fleet config-management apply through the newdeploymentOverrides field in--config flag file.

Kubernetes Engine

Added--flex-start flag togcloud container node-pools create|updatecommands to indicate the node pool should use Flex Start provisioning model.

Network Connectivity

Fixed the issue that the user needs to set both--include-export-ranges and--exclude-export-ranges when they rungcloud network-connectivity spokes linked-vpc-network update andgcloud network-connectivity spokes linked-producer-vpc-network update commands.

SaaS Runtime

Addedgcloud beta saas-runtime command group.

Security Command Center

Addedcloud-run-threat-detection service to theSUPPORTED_SERVICES list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

515.0.0 (2025-03-18)

AI

Addedgcloud beta ai model-garden command group, which supports deploying models in Model Garden.
- Addedgcloud beta ai model-garden models deploy command to deploy a model from Model Garden.
- Addedgcloud beta ai model-garden models list command to find models that support deployment.
- Addedgcloud beta ai model-garden models list-deployment-config command to find supported deployment configurations for each model.
Added--list-model-garden-endpoints-only flag togcloud beta ai endpoints list command.

AlloyDB

Added support for--machine-type ingcloud alloydb instances create andgcloud alloydb instances update commands.

Artifact Registry

Addedgcloud artifacts attachments describe command.

Certificate Manager

The default value of thelocation flag for the list commands is changed fromglobal to- (all locations) for all Certificate Manager resources that support both global and regional locations.

Cloud IAM

Fixed example commands forgcloud iam roles undelete.
Fixed example commands forgcloud iam roles update.

Cloud Managed Kafka

Add Alpha Connectors and Connect-Clusters commands for Managed Kafka Connect.

Cloud NetApp

Updatedgcloud netapp backup-vaults create.

Cloud Run

Promoted--startup-probe and--liveness-probe flags to GA ingcloud run deploy andgcloud run services update.

Cloud SQL

Added--[no-]retain-backups-on-delete flag togcloud sql instances create andgcloud sql instances patch to supportretaining backups after instance delete for Cloud SQL.
Promoted--server-ca-pool flag ofgcloud sql instances create to GA forcreation of instances using customer-managed CAS server CA.
Added--[no-]enable-connection-pooling flag togcloud sql instances createandgcloud sql instances patch` to supportenabling connection pooling for Cloud SQL instance.
Added--[clear-]connection-pool-flags flag togcloud sql instances createandgcloud sql instances patch` to supportadding or clearing connection pooling pool configuration flags for CloudSQL instance.
Added--storage-provisioned-iops and--storage-provisioned-throughputflags togcloud sql instances create,gcloud sql instances patch andgcloud sql backups restore to support storage performance provisioningwhile creating / patching a Cloud SQL instance or while restoring a backup.

Cloud Spanner

Added support for WITH_STATS and WITH_PLAN_AND_STATS query modes ingcloud spanner databases execute-sql.

Compute Engine

Promotedgcloud compute instances report-host-as-faulty to beta and GA.
Added--gpu-topology support togcloud compute resource-policies create.
Added--ip-port-dynamic-routing support togcloud compute backend-services create/update alpha and beta.
Added--ip-collection flag togcloud beta compute networks subnets create andgcloud beta compute networks subnets update.
Added--ip-collection flag togcloud compute networks subnets create andgcloud compute networks subnets update.
Support--mode=external-ipv6-subnetwork-creation ingcloud beta compute public-delegated-prefixes create andgcloud beta compute public-delegated-prefixes delegated-sub-prefixes createcommands.
Support--mode=external-ipv6-subnetwork-creation ingcloud compute public-delegated-prefixes create andgcloud compute public-delegated-prefixes delegated-sub-prefixes createcommands.
Added support forgcloud connect_to_serial_port to read auto host keys.
AddedCOUNT option to--local-ssd flag ofgcloudcompute reservations create to support specifying thenumber of local-ssd to attach.

Kubernetes Engine

Added--auto-monitoring-scope flag togcloud container clusters create,gcloud container clusters create-auto, andgcloud container clusters update for standard or autopilot clusters.

Network Connectivity

Addedgcloud network-connectivity hubs accept-spoke-update andgcloud network-connectivity hubs reject-spoke-update commands.
Added--exclude-export-ranges flag togcloud network-connectivity spokes linked-vpc-network update andgcloud network-connectivity spokes linked-producer-vpc-network update commands.
Added--producer-instance-location and--allowed-google-producers-resource-hierarchy-level togcloud network-connectvity service-connection-policies update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

514.0.0 (2025-03-11)

Artifact Registry

Added visibility for previously hidden flags--output-iam-policy-dir,--input-iam-policy-dir,--skip-pre-copy, and--use-analyze-iam ingcloud artifacts docker upgrade migrate.
Added--remote-go-repo for Go Modules Remote Repositories.

Cloud Filestore

Add the peer-instance parameter to support the API promote replica API from the active instance.

Cloud Identity-Aware Proxy

Promotecloud-run resource-type support for IAP CLI to beta.

Cloud Managed Kafka

Addedgcloud managed-kafka operations describe andgcloud managed-kafka operations list commands for viewing operations in releases alpha and beta.
Promotedgcloud managed-kafka operations to GA.

Cloud NetApp

Addedcustom-performance-enabled,total-throughput andtotal-iops flags togcloud beta netapp storagepools create andgcloud beta netapp storagepools update commands.

Cloud SQL

Updated 'cloud-sql-proxy' packaged component to use v2.15.1 of the Cloud SQL Proxy.

Cloud Storage

Promotedgcloud storage buckets anywhere-caches group to GA.

Compute Engine

Promotedgcloud compute disk-settings to beta.
Promotedgcloud compute snapshot --region --kms-key to beta.
Promote regional snapshot settings related commands to beta.
Promoted--reservation-sharing-policy flag ofgcloud beta compute reservations create andgcloud beta compute reservations update to GA.
Promotedgcloud compute future-reservations DWS flags to beta.

Parametermanager

[ALPHA] To create a Parameter Version, file can be uploaded using the new flagpayload-data-from-file.

Policy Intelligence

Addedgcloud beta policy-intelligence group which provides beta levelaccess to the policy intelligence commands.

Security Command Center

Addedvm-threat-detection-aws service to theSUPPORTED_SERVICES list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

513.0.0 (2025-03-04)

AlloyDB

Added option for--cpu-count=1 ingcloud alloydb instances create andgcloud alloydb instances update commands.

Batch

Promoted Batch cancel job command from alpha to beta and GA.

BigQuery

Added support for--set_label and--clear_label flags for reservation updates.
Fixed a bug where Google Auth credentials of a user account would sometimes fail to refresh.
Fixed a bug where long-running queries created from a service account would fail after one hour.

Cloud Dataflow

Added the ability to create Beam YAML templates viagcloud flex-template build.
Added support for--update and--transform-name-mappings flags togcloud dataflow jobs run command to support update for streaming classictemplate jobs.

Cloud Datastream

Update Datastream schema files.
Support Salesforce source connection profile.
Support Salesforce source stream.

Cloud Workflows

Added--tags flag togcloud workflows deploy.

Colab

Added support for Post startup script (PSS) and environment variables.

Compute Engine

Promote--host-error-timeout-seconds to GA. This option allows you to specify the timeout duration in seconds for host error detection in the following commands:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
- gcloud compute instances bulk create
- gcloud compute instances set-scheduling
- gcloud compute instances update-from-file
Add defaultCustomErrorResponsePolicy togcloud compute url-maps edit.
Promotedgcloud compute routers add-route-policy to GA.
Promotedgcloud compute routers add-route-policy-term to GA.
Promotedgcloud compute routers download-route-policy to GA.
Promotedgcloud compute routers get-route-policy to GA.
Promotedgcloud compute routers list-bgp-routes to GA.
Promotedgcloud compute routers list-route-policies to GA.
Promotedgcloud compute routers remove-route-policy to GA.
Promotedgcloud compute routers remove-route-policy-term to GA.
Promotedgcloud compute routers update-route-policy-term to GA.
Promotedgcloud compute routers upload-route-policy to GA.
Promoted--import-policies and--export-policies flags ofgcloud compute routers add-bgp-peer andgcloud compute routers update-bgp-peer to GA.
Restricted limit to 1000 results for the following command:
- gcloud compute url-maps invalidate-cdn-cache.
Support--provisioning-model=flex-start in beta forgcloud compute instances create andgcloud compute instance-templates create commands.

Dataproc Metastore

Added--encryption-kms-keys flag togcloud metastore services create betarelease track to support multiregional Dataproc Metastore with Customer-managedencryption keys.

Eventarc

Allowed using project numbers in command arguments.

Kubernetes Engine

Added--[no-]enable-autopilot-compatibility-auditing flag togcloudcontainer clusters update for enabling and disabling Autopilot CompatibilityAuditing feature. Only applicable to clusters with version >= 1.32.
Updated default kubectl from 1.30.9 to 1.31.6.
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.13)
- kubectl.1.30 (1.30.10)
- kubectl.1.31 (1.31.6)
- kubectl.1.32 (1.32.2)

Migrate to Virtual Machines

Add--boot-conversion flag to support BIOS_TO_EFI conversion.

Network Connectivity

Updatedgcloud network-connectivity internal-ranges create to allow specifying the exclude Cidr Ranges option.

Network Security

Added--antivirus flag togcloud network-security security-profiles threat-prevention add-override|update-override|delete-override commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

512.0.0 (2025-02-25)

Breaking Changes

(Cloud Dataflow) Removedgcloud dataflow sql command group. SeeBeam YAML andBeam notebooks for alternatives.
(Harbourbridge) Removed deprecatedharbourbridge component. Usespanner-migration-tool instead.

App Engine

Updated the Java SDK to version 2.0.33 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.33.

Artifact Registry

Allowed using project numbers instead of ids forgcloud artifacts docker upgrade migrate.

Certificate Authority Service

Added--custom-aia-urls flag togcloud privateca roots create andgcloud privateca subordinates create commands.
Added--custom-cdp-urls flag togcloud privateca roots create andgcloud privateca subordinates create commands.

Cloud Bigtable

Added support for Data Boost ingcloud bigtable app-profiles.

Cloud Build

Added support for specifying source manifest JSON file as argument for sourceingcloud builds submit command.
Fixed bug in which source is not displayed in builds list if source is aGit repo, 2nd-gen Cloud Build repo, or Developer Connect GitRepositoryLink.
Fixed bug in whichgcloud builds commands ignore the default region setviabuilds/region config.

Cloud Identity-Aware Proxy

PromoteForwarding-rule resource-type support for IAP CLI to GA.

Cloud Interconnect

Promoted interconnects related commands to beta.
Promoted additional interconnects related commands to beta.

Cloud Key Management Service

Added a new fieldpublic_key_format to specify the format the public keyis going to be exported.
Added support for two post-quantum asymmetric signing algorithmsML-DSA-65 andSLH-DSA-SHA2-128s.

Cloud On Demand Scanning

Monthly release of local-extract with updated package dependencies (2025-02).

Cloud Run

Removedroles/run.builder IAM Role check for default Cloud Build Service Account when users are doinggcloud run deploy --source.

Cloud SQL

Addedtde file type option togcloud sql import andgcloud sql exportcommands to allow importing and exporting Transparent Data Encryption (TDE)certificates in Cloud SQL for SQL Server.
Added--keep-encrypted flag togcloud sql import bak command to allowan imported database to remain encrypted in Cloud SQL for SQL Server.
Added--include-replicas-for-major-version-upgradeflag togcloud sql instances patch command.This flag can be used withdatabase-version flag to specify that replicasneed to be upgraded with the primary.

Network Security

Promotedgcloud network-security security-profile custom-mirroring to GA track.
Promotedgcloud network-security security-profile-groups create --custom-mirroring-profile flag to GA track.
Added--antivirus flag togcloud beta network-security security-profiles threat-prevention add-override|update-override|delete-override commands.

Workbench

Addedgcloud beta workbench schedules create.
Addedgcloud beta workbench schedules pause.
Addedgcloud beta workbench schedules resume.
Addedgcloud beta workbench schedules describe.
Addedgcloud beta workbench schedules update.
Addedgcloud beta workbench schedules delete.
Addedgcloud beta workbench schedules list.
Addedgcloud beta workbench executions command group.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

511.0.0 (2025-02-19)

Breaking Changes

(Google Cloud CLI) Removed explicit use oftrue/false values in--user-output-enabled flag.
(Container) Fixed missing KeyError when parsing the~/.kube/config file. File is now
(Container) recreated from scratch when such a corrupted entry
(Container) is found in it. This is a breaking change as recreating the config may cause
(Container) entries for already authenticated contexts to be lost.

Google Cloud CLI

Fixed issue wheregcloud auth login was broken when mTLS was enabled over the legacy SecureConnect self-signed workflow.

AlloyDB

Added--database-flags to the list of optional flags for create-secondary instance command.

Backup For GKE

Added commandgcloud beta container backup-restore operations list to list Backup for GKE operations.
Added commandgcloud beta container backup-restore operations describe to describe Backup for GKE operations.

BigQuery

Updated--max_staleness and--metadata_cache_mode flag descriptions forbq update to mention their dependency on--external_table_definition flag.
Added support for setting--apilog flag to a directory and not just a file.
Added validation for when--api flag has no protocol prefix.
Updated the default CA certificate.
Fixed bug where windows line endings would print tables incorrectly.

Cloud Build

Added support for specifying source manifest JSON file as argument for sourceingcloud builds submit command.
Fixed bug in which source is not displayed in builds list if source is aGit repo, 2nd-gen Cloud Build repo, or Developer Connect GitRepositoryLink.

Cloud Composer

Added--airflow-database-retention-days togcloud composer environments create/update to specify database retention days.

Cloud DNS

Added GA support for creating health-checked routing policies in publiczones. Use--health-check to indicate that all IP addresses should be healthchecked.

Cloud Functions

Promotedgcloud functions detach to GA.

Cloud IAM

Added--extra-attributes-client-id flag togcloud iam workforce-pools providers create-saml andgcloud iam workforce-pools providers update-saml which allow user to setupclient id for extra attributes oauth2 flow.
Added--extra-attributes-client-secret-value flag togcloud iam workforce-pools providers create-saml andgcloud iam workforce-pools providers update-saml which allow user to setupclient secret for extra attributes oauth2 flow.
Added--extra-attributes-issuer-uri flag togcloud iam workforce-pools providers create-saml andgcloud iam workforce-pools providers update-saml which allow user to setupissuer uri for extra attributes oauth2 flow.
Added--extra-attributes-type flag togcloud iam workforce-pools providers create-saml andgcloud iam workforce-pools providers update-saml which allow user to setupattributes type for extra attributes oauth2 flow.
Added--extra-attributes-filter flag togcloud iam workforce-pools providers create-saml andgcloud iam workforce-pools providers update-saml which allow user to setupfilter for extra attributes oauth2 flow.
Added--clear-extra-attributes-config flag togcloud iam workforce-pools providers update-saml which allow user to clearextra attributes oauth2 config.
Addedazure-ad-groups-id field to--extra-attributes-type flag togcloud iam workforce-pools providers create-saml,gcloud iam workforce-pools providers update-saml,gcloud iam workforce-pools providers create-oidc,gcloud iam workforce-pools providers update-oidc which allow user to setupattributes type for extra attributes oauth2 that fetches azure ad group idproperty.

Cloud Key Management Service

Promotedgcloud kms autokey-config which helps users update and retrievethe Autokey Config.
Promotedgcloud kms key-handles which helps users create and retrievekey-handles.

Cloud Memorystore

Addgcloud memorystore locations list andgcloud memorystore locations describe to list and describe locations for Memorystore for Valkey.

Cloud Pub/Sub

Added flags togcloud pubsub topics create for creating Cloud Pub/Sub Azure Event Hubs Import Topics.
- Added--azure-event-hubs-ingestion-resource-group
- Added--azure-event-hubs-ingestion-namespace
- Added--azure-event-hubs-ingestion-event-hub
- Added--azure-event-hubs-ingestion-client-id
- Added--azure-event-hubs-ingestion-tenant-id
- Added--azure-event-hubs-ingestion-subscription-id
- Added--azure-event-hubs-ingestion-service-account
Added flags togcloud pubsub topics update for updating Cloud Pub/Sub Azure Event Hubs Import Topics.
- Added--azure-event-hubs-ingestion-resource-group
- Added--azure-event-hubs-ingestion-namespace
- Added--azure-event-hubs-ingestion-event-hub
- Added--azure-event-hubs-ingestion-client-id
- Added--azure-event-hubs-ingestion-tenant-id
- Added--azure-event-hubs-ingestion-subscription-id
- Added--azure-event-hubs-ingestion-service-account
Added flags togcloud pubsub topics create for creating Cloud Pub/Sub AWS MSK Import Topics.
- Added--aws-msk-ingestion-cluster-arn
- Added--aws-msk-ingestion-topic
- Added--aws-msk-ingestion-aws-role-arn
- Added--aws-msk-ingestion-service-account
Added flags togcloud pubsub topics update for updating Cloud Pub/Sub AWS MSK Import Topics.
- Added--aws-msk-ingestion-cluster-arn
- Added--aws-msk-ingestion-topic
- Added--aws-msk-ingestion-aws-role-arn
- Added--aws-msk-ingestion-service-account
Added flags togcloud pubsub topics create for creating Cloud Pub/Sub Confluent Cloud Import Topics.
- Added--confluent-cloud-ingestion-bootstrap-server
- Added--confluent-cloud-ingestion-cluster-id
- Added--confluent-cloud-ingestion-topic
- Added--confluent-cloud-ingestion-identity-pool-id
- Added--confluent-cloud-ingestion-service-account
Added flags togcloud pubsub topics update for updating Cloud Pub/Sub Confluent Cloud Import Topics.
- Added--confluent-cloud-ingestion-bootstrap-server
- Added--confluent-cloud-ingestion-cluster-id
- Added--confluent-cloud-ingestion-topic
- Added--confluent-cloud-ingestion-identity-pool-id
- Added--confluent-cloud-ingestion-service-account

Cloud Run

Promoted the following source deploy configuration flags from beta to GA to support the GA release of Cloud Run functions:--build-env-vars,--function,--base-image,--automatic-updates,--build-worker-pool, and--build-service-account.
Added--regions,--add-regions, and--remove-regions support togcloud beta run multi-region-services replace.

Cloud SQL

Added--tags flag togcloud sql instances create to support creating instances with tags.
Added--custom-subject-alternative-names flag to support customer-specified DNS names in SSL certificates for Cloud SQL instances.
Added support for using backup names ingcloud sql backups describe,gcloud sql backups delete andgcloud sql backups list and made--instance flag as optional.
Added--[no-]enable-final-backup flag togcloud sql instances delete to create a final backup and retain it after instance deletion.
Added--final-backup-description flag togcloud sql instances delete to add a description to identify final backup when user opted in to create final backup using--enable-final-backup.
Added--final-backup-expiry-time flag togcloud sql instances delete to specify the exact expiry time of the final backup.
Added--final-backup-retention-days flag togcloud sql instances delete to specify the number of days from now to retain the final backup.
Added new commandgcloud sql instances patch with flags--backup-description,--ttl-days,--expiry_time to update the final backups.
Added support ingcloud sql backups restore to restore to new instance with flags:--assign-ip,--network,--authorized-networks,--enable-google-private-path,--availability-type,--backup,--backup-location,--backup-start-time,--collation,--cpu,--database-version,--enable-bin-log,--enable-point-in-time-recovery,--maintenance-release-channel,--maintenance-window-day,--maintenance-window-hour,--deny-maintenance-period-start-date,--deny-maintenance-period-end-date,--deny-maintenance-period-time,--insights-config-query-insights-enabled,--insights-config-query-string-length,--insights-config-record-application-tags,--insights-config-record-client-address,--insights-config-query-plans-per-minute,--memory,--password-policy-min-length,--region,--zone,--secondary-zone,--require-ssl,--retained-backups-count,--retained-transaction-log-days,--storage-auto-increase,--storage-size,--storage-type,--tier,--t,--edition,--disk-encryption-key,--active-directory-domain,--audit-bucket-path,--audit-retention-interval,--audit-upload-interval,--deletion-protection,--time-zone,--connector-enforcement,--timeout,--enable-private-service-connect,--allowed-psc-projects,--enable-data-cache,--ssl-mode,--enable-google-ml-integration,--enable-dataplex-integration.

Cloud Storage

Addedgcloud storage buckets relocate to GA.

Cloud Workflows

Added theexecution-history-level flag togcloud workflows deploy|execute|run to enable execution history level.

Compute Engine

PromotedADVANCED_PREVIEW option for--network-ddos-protection flag ofgcloud compute security-policies update to GA.
Updated--interconnect-attachments support for single interconnect-attachment ingcloud compute vpn-gateways create.

Compute Firewall Policy Mirroring Rules

Promotedgcloud compute network-firewall-policies mirroring-rules to GA.
Updatedgcloud compute network get-effective-firewalls to include mirroringrules (in GA).
Updatedgcloud compute instances network-interfaces get-effective-firewallsto include mirroring rules (in GA).
Updatedgcloud compute network-firewall-policies get-effective-firewallsto include mirroring rules (in GA).

Developer Connect

Added flag--git-proxy-config-enabled togcloud developer-connect connections create andgcloud developer-connect connections update commands.

GKE Hub

Fixed issue wheregcloud container fleet policycontroller enable didn'tenable the Policy Controller Feature after membership level enablement.
Added a flag--location togcloud (alpha|beta) container fleet memberships list to allow list memberships in a specific location.

Kubernetes Engine

Updated default value of--num-nodes flag ingcloud container node-pools create command when--tpu-topology is specified for multi-host TPU machine types. The number of nodes will be calculated by(product of topology)/(# of chips per VM).

Looker

Promotedgcloud looker backups to GA.
Promotedgcloud looker instances restore to GA.

Model Armor

Fixed an issue infloorsettings update command where new floorsettingswas not being updated.

Network Security

Promoted thenetwork-security mirroring-endpoint-group-associations commands which manage mirroring endpoint group associations to GA.
Promoted thenetwork-security mirroring-endpoint-groups commands which manage mirroring endpoint groups to GA.
Promoted thenetwork-security mirroring-deployments commands which manage mirroring deployments to GA.
Promoted thenetwork-security mirroring-deployment-groups commands which manage mirroring deployment groups to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

510.0.0 (2025-02-11)

Breaking Changes

(Cloud Storage) Enforced a maximum duration of 12 hours for--duration flag ofgcloud storage sign-url command when using a system-managed key. This limit has been always enforced by the backend.

Google Cloud CLI

Updated MacOS Python Virtualenv for thegcloud CLI to 3.12.8.

AlloyDB

Added migrate-cloud-sql command to support migrating data from an existingCloud SQL instance backup to an AlloyDB cluster in beta track.
Addedgcloud alloydb clusters import command to support importing data to an AlloyDB cluster from Google Cloud Storage.

Anthos

anthos-cli component updated to address CVEs flagged by scanning tools:
- golang updated to 1.23.5
- golang.org/x/net to 0.34.0 (CVE-2024-45338)
- golang.org/x/crypto to 0.32.0 (CVE-2024-45337)
- github.com/golang/glog to 1.2.4 (CVE-2024-45339)

Cloud Dataflow

Added--cloud-build-service-account flag togcloud dataflowflex-template build for specifying the Cloud Build service account to buildthe image.

Cloud Deploy

Added IAM policy commands togcloud deploy deploy-policies.

Cloud Monitoring

Added--criteria-filter flag togcloud monitoring snoozes create tosupport snoozing alert policies by resource labels.

Cloud Run

Addedroles/run.builder IAM policy check for default build service account when users are doing source deploy withgcloud beta run deploy --source.
Verified whether build service account provided ingcloud beta run deploy --build-service-account or default build service account is active.

Cloud SQL

Add--custom-subject-alternative-names flag to supportcustomer-specified DNS names in SSL certificates for Cloud SQL instances.

Cloud Services

Added--service-account flag togcloud beta services api-keys create.

Cloud Spanner

Addtarget_database_move_configs togcloud spanner instances move command for beta and GA track.

Cloud Storage

RemovedS3 support is unstable warning fromgcloud storage commands.

Cloud Workstations

Added support updating--pd-disk-size andpd-disk-type in theworkstations config update command.

Compute Engine

Promoted theINTERNAL_IPV6_RANGE output field ingcloud compute networks create andgcloud compute networks list toBeta/GA.
Added--tags flag to the following command:
- gcloud beta compute url-maps invalidate-cdn-cache.

Compute Firewall Policy Mirroring Rules

Updatedgcloud compute network get-effective-firewalls to include mirroringrules (in beta).
Updatedgcloud compute instances network-interfaces get-effective-firewallsto include mirroring rules (in beta).
Updatedgcloud compute network-firewall-policies get-effective-firewallsto include mirroring rules (in beta).

GKE Hub

Addedgcloud container fleet mesh update --config-api to GA which sets up configuration API for service mesh.
Enablegcloud container fleet XXX describe andgcloud container fleet features list to return partial results when a google cloud region is unavailable, instead of returning an error.

Model Armor

Promotedmodel_armor command group to GA.

Workbench

Added--container-repository and--container-tag togcloud workbench instances update command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

509.0.0 (2025-02-04)

Google Cloud CLI

Updated windows bundled Python for thegcloud CLI to 3.12.8.
Updated openssl version in bundled Python to 3.0.15.
Updated Linux bundled Python for thegcloud CLI to 3.12.8.

Cloud Functions

Launchedgcloud beta functions detach <function> command. This commandallows users to detach a Cloud Run function from Cloud Functions API(cloudfunctions.googleapis.com) and make it a native Cloud Run functionmanaged by Cloud Run API(run.googleapis.com).

Cloud NetApp

Addedgcloud netapp volumes quota-rules create.
Addedgcloud netapp volumes quota-rules describe.
Addedgcloud netapp volumes quota-rules list.
Addedgcloud netapp volumes quota-rules update.
Addedgcloud netapp volumes quota-rules delete.
Addedgcloud beta netapp volumes quota-rules create.
Addedgcloud beta netapp volumes quota-rules describe.
Addedgcloud beta netapp volumes quota-rules list.
Addedgcloud beta netapp volumes quota-rules update.
Addedgcloud beta netapp volumes quota-rules delete.

Cloud Run

Promoted--scaling flag from alpha togcloud beta run deploy andgcloud beta run services update.

Cloud SQL

AddedHDB option to--storage-type flag ofgcloud sql instances createandgcloud sql instances patch commands to allow choosing Hyperdisk as astorage type.

Cloud Storage

Added--lifecycle-file flag togcloud storage buckets create.

Cloud Workstations

Added support for--ssh-flags in theworkstations ssh command.

Compute Engine

Enabled error message extraction for more use cases of quota exceeded error.
Added--commitment-name flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--commitment-plan flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--previous-commitment-terms flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Promoted Tls Settings to Beta/GA ingcloud compute backend-services importandgcloud compute backend-services export.
Addedgcloud compute reservations perform-maintenance command in beta.
Addedgcloud compute reservations blocks perform-maintenance command inbeta.
AddedMAX_VMS field togcloud compute sole-tenancy node-types list.
Deprecated--router flag ofgcloud compute vpn-tunnels create with ClassicVPN. Use static routing instead.
Deprecated--router flag ofgcloud compute vpn-tunnels update with ClassicVPN. Use static routing instead.
Fix "compute instances perform-maintenance" to have a error message related toperform maintenance.

Compute Firewall Policy Mirroring Rules

Promoted--target-secure-tags flag ofgcloud compute network-firewall-policies mirroring-rules create to beta.
Promoted--target-secure-tags flag ofgcloud compute network-firewall-policies mirroring-rules update to beta.

Database Migration

Updatedgcloud database-migrate migration-jobs create to allow users theoption of migrating all databases for PSQL to AlloyDB migrations.
Updatedgcloud database-migrate migration-jobs update to allow users theoption of migrating all databases for PSQL to AlloyDB migrations.

Developer Connect

Added flags for Bitbucket Data Center and Bitbucket Cloud connection types togcloud developer-connect connections create|update commands.

Network Services

Added etag field to the following resources: HttpRoute, TcpRoute, TlsRoute, GrpcRoute.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

508.0.0 (2025-01-28)

AlloyDB

Added flag--keep-extra-roles to keep extra database roles when creating or setting database roles for an existing user.

App Engine

Updated the Java SDK to version 2.0.32 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.32.

Backup For GKE

Added commandgcloud beta container backup-restore operations list to list Backup for GKE operations.

Cloud DNS

Add support for DNS64 policies.

Cloud Dataflow

Addedlauncher_machine_type parameter togcloud dataflow flex-template runto support to specify the machine type to use for launching the flex templatejob.

Cloud Datastream

Added--postgresql-ca-certificate flag togcloud datastreamconnection-profiles create commands to create connection with SSL serveronly verification for PostgreSQL source.
Added--postgresql-ca-certificate,--postgresql-client-certificateand--postgresql-client-key flags togcloud datastreamconnection-profiles create commands to create connection with SSL serverand client verification for PostgreSQL source.
Added--postgresql-ca-certificate flags togcloud datastreamconnection-profiles update commands to update SSL server only verificationconfig for PostgreSQL source.
Added--postgresql-ca-certificate,--postgresql-client-certificateand--postgresql-client-key flags and support for PostgreSQL profile togcloud datastream connection-profiles update commands to update SSLconfig for server and client verification for PostgreSQL source.
Fixedgcloud datastream objects list command with SQL Server source.

Cloud Filestore

Added--performance flag togcloud filestore instances create.
Added--performance flag togcloud filestore instances update.
Added--performance flag togcloud beta filestore instances create.
Added--performance flag togcloud beta filestore instances update.

Cloud Key Management Service

Addedgcloud beta kms autokey-config which helps users update and retrievethe Autokey Config.
Addedgcloud beta kms key-handles which helps users create and retrievekey-handles.

Cloud On Demand Scanning

Monthly release of local-extract with updated package dependencies (2025-01).

Cloud Resource Manager

Updatedgcloud resource-manager tags keys create to require the organizationID inpurpose-data=organization=<org-id>.

Cloud Spanner

Addtarget_database_move_configs togcloud spanner instances move command for ALPHA track.

Compute Engine

Addedtls-ja4-fingerprint as valid rate limit key types ingcloud compute security-policies rules.
Promoted IPv6-only stack type support forgcloud compute instances create-with-container andgcloud compute instance-templates create-with-container to GA.

Database Migration

Added sub-entity support togcloud database-migration conversion-workspaces describe-entities command.
Added--ssl-type flag togcloud database-migration connection-profiles create command for PostgreSQL and MySQL.
Added--ssl-type flag togcloud database-migration connection-profiles update command for PostgreSQL and MySQL.

Kubernetes Engine

Updated default kubectl from 1.30.8 to 1.30.9.
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.13)
- kubectl.1.30 (1.30.9)
- kubectl.1.31 (1.31.5)
- kubectl.1.32 (1.32.1)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

507.0.0 (2025-01-22)

Breaking Changes

(Cloud Run) Removedgcloud run integrations command group.

Anthos Multi-Cloud

Added--disable-cloud-monitoring flag togcloud container attached clusters register andgcloud container attached clusters update for disabling cloud monitoring.
Added--enable-cloud-monitoring flag togcloud container attached clusters register andgcloud container attached clusters update for enabling cloud monitoring.

BigQuery

Updated certain authentication error messages to mention runninggcloud auth login --enable-gdrive-access instead ofgcloud auth login when Drive access is required.
Added support for loading the Cloud CLIapi_endpoint_overrides/bigquery config value intoapi if the flag was not set.
Added support for loading the Cloud CLIcore/api_key config value intobigquery_discovery_api_key if the flag was not set.
Added retrieval of the user's active Cloud CLI account name when authenticating using Cloud CLI credentials.
Fixed the bug where users authenticating with Google Auth using a service account were unable to query external tables on Google Drive.
Updated--enable_gdrive flag description to mention its interaction with--use_google_auth.
Handled crash when the server returns out of bounds timestamps.
Bundled a reservation discovery doc to be loaded locally instead of always making a server request to retrieve one.

Cloud Bigtable

Rebuilt cbt cli with golang.org/x/net version 0.33.0 which fixed CVE-2024-45338.

Cloud Bigtable Emulator

Rebuilding cbt emulator with golang.org/x/net version 0.33.0 which fixed CVE-2024-45338.

Cloud NetApp

Addedgcloud netapp storage-pools validate-directory-service.

Cloud Spanner

Updateedition flag help text forgcloud spanner instances update saying downgrade is supported.

Cloud Workstations

Promoted--source-workstation flag ofgcloud workstations create to GA.

Compute Engine

Promoted Tls Early Data UNRESTRICTED enum value to GA ingcloud compute target-https-proxies import andgcloud compute target-https-proxies export.

Database Migration

Added--cloudsql-project-id flag togcloud database-migration connection-profiles create sqlserver command.

Developer Connect

Hid the Bitbucket Data Center and Bitbucket Cloud connection types.

Kubernetes Engine

Added kubelet config optionsallowedUnsafeSysctls togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update command which allows unsafe sysctls to beset on Pods.
Added kubelet config optionscontainerLogMaxSize andcontainerLogMaxFilestogcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update command which controls maximum size ofcontainer logs before rotation and maximum number of log files for a container.
Added kubelet config optionsimageGcLowThresholdPercent andimageGcHighThresholdPercent togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools updatecommand which controls disk usage percentage triggering image garbagecollection.
Added kubelet config optionsimageMinimumGcAge andimageMaximumGcAge togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update command which controls the minimum andmaximum age an image can be unused before it is garbage collected.
Added--max-run-duration flag togcloud container node-pools create andgcloud container node-pools update to limit the runtime of nodes in a node pool.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

506.0.0 (2025-01-14)

Artifact Registry

Updatedgcloud artifacts files describe to display file hashes as hex strings.

Cloud Bigtable

Update golang.org/x/net version for CVE-2024-45338.
Add update value type support.

Cloud Logging

Updatedgcloud logging buckets update to accept--folder,--organization and--billing-account flags in addition to--project.

Cloud NetApp

Addedtiering_policy parameter to --destination-volume-parameters flag ingcloud netapp volumes replications create command.

Cloud Run

Removed--base-image and--clear-base-image flags forgcloud beta run services update command.

Cloud Spanner

Promoteautoscaling flag options forgcloud spanner instances create andgcloud spanner instances update commands for GA.

Cloud Workstations

Adding support for disabling local host replacement in thebeta workstations configs create andbeta workstations configs update commands.
Adding support for specifying source_snapshot when creating or updatingconfigs.

Compute Firewall Policy Rules

Added--src-secure-tags and--target-secure-tags togcloud compute firewall-policies rules create/update commands.

Database Migration

Added--page-size with a default page size of 100, and other list-relatedflags togcloud database-migration conversion-workspaces describe-entities|describe-ddls|describe-issuescommands.
Added--cloudsql-project-id flag togcloud database-migration connection-profiles update command.
Added--databases-filter flag togcloud database-migration migration-jobs createcommand to filter the databases to be migrated.
Added--databases-filter flag togcloud database-migration migration-jobs updatecommand to filter the databases to be migrated.
Added--databases-filter flag togcloud database-migration migration-jobs promotecommand to filter the databases to be promoted.
Added--databases-filter flag togcloud database-migration migration-jobs restartcommand to filter the databases to be restarted.
Addedgcloud database-migration migration-jobs fetch-source-objectscommand to fetch the objects present in the source for a migration job.
Added--restart-failed-objects flag togcloud database-migration migration-jobs restartcommand to restart the failed objects in a migration job.
Addedgcloud database-migration objects listcommand to list the objects being migrated in a migration job.
Addedgcloud database-migration objects lookupcommand to describe a specific object in a migration job.

Network Management

Added--bypass-firewall-checks flag togcloud network-management connectivity-tests to allow executingConnectivity Tests in a mode that skips firewall checking.

Secure Source Manager

Addedgcloud source-manager repos command group to beta.

Workbench

Added--tags flag togcloud workbench instances update command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

505.0.0 (2025-01-07)

AlloyDB

Added flag--enable-connection-pooling to enable/disable Managed Connection Pooling.
Added flag--connection-pooling-pool-mode to configure pooling mode.
Added flag--connection-pooling-min-pool-size to configure min pool size.
Added flag--connection-pooling-max-pool-size to configure max pool size.
Added flag--connection-pooling-max-client-connections to configure max client connections.
Added flag--connection-pooling-server-idle-timeout to configure server connection idle timeouts.
Added flag--connection-pooling-query-wait-timeout to configure query wait timeouts.
Added flag--connection-pooling-stats-users to configure database users with access to stats.
Added flag--connection-pooling-ignore-startup-parameters to configure startup parameters to ignore.

Cloud Build

Rewrote flag descriptions for--worker-disk-size ingcloud builds worker-pools.

Cloud Composer

Fixed--uri flag behavior forgcloud composer environments list command.
Fixed--uri flag behavior forgcloud composer operations list command.

Cloud Filestore

Removed MAX_IOPS column fromgcloud beta filestore instances list andgcloud filestore instances list.

Cloud Identity-Aware Proxy

Modified acceptable argument types forgcloud iap settings to support backend-services.

Cloud Run

Added build with lifecycle binary support when project.toml is notprovided togcloud beta run deploy.
Promoted--base-image and--clear-base-image flags forgcloud beta run services update command.
Added support for customer-managed encryption keys (CMEK)for source-based deployments in the beta track.

Cloud Workstations

Adding support for disabling local host replacement in thebeta workstations configs create andbeta workstations configs update commands.

Compute Engine

Added--require-specific-reservation flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--reservation-name flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--deployment-type flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--scheduling-type flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Support--provisioning-model=reservation-bound in beta forgcloud compute instances create,gcloud compute instances bulk create, andgcloud compute instance-templates create commands.
AddedCA_ENTERPRISE_ANNUAL as an additional option for--cloud-armor-tier ofgcloud compute project-info update.
AddedCAMP_PLUS_ANNUAL as an additional option for--managed-protection-tier ofgcloud compute project-info update.
Promoted Standby Policy flags forgcloud compute instance-groups managed create to v1.
Promoted Standby Policy flags forgcloud compute instance-groups managed update to v1.
Promotedgcloud compute instance-groups managed suspend-instances to v1.
Promotedgcloud compute instance-groups managed resume-instances to v1.
Promotedgcloud compute instance-groups managed stop-instances to v1.
Promotedgcloud compute instance-groups managed start-instances to 1.
Added--project-number flag togcloud beta compute org-security-policies associations create.
Added100g as an additional option for--bandwidth ofgcloud compute interconnects attachments dedicated create andgcloud compute interconnects attachments dedicated update.

Database Migration

Added--role flag togcloud database-migration connection-profiles create.
Fixed an issue wheregcloud database-migration connection-profiles updatewould not update correctly--ca-certificate or--database-service flagsfor oracle connection profiles.

GKE Hub

Fixed a bug ingcloud beta container fleet config-management unmanage when sending empty payload would fail validation. This was introduced in Google Cloud CLI version 498.0.0.
Addedgcloud container fleet policycontroller enable --no-content flag to install managed Policy Controller without any constraint template libraries.

Gcloud Machines List

Changed default output ofgcloud edge-cloud container machines listcommands to include purpose (what type of cluster themachine is being used for).

Identity and Access Management

Addedetag flag forgcloud beta iam policies update command. The command will use theetag in the policy file if theetag flag is not specified.

Kubernetes Engine

Improved error handling of long running operation polling.

Network Management

Addedgcloud network-management vpc-flow-logs-configs command groupwhich manages the VPC Flow Logs configurations.
Added--round-trip flag togcloud network-management connectivity-teststo allow executing Connectivity Tests in round-trip mode that calculatesreturn traces from the destination to the source in addition to traces fromthe source to the destination.

Network Security

Added--description flag tonetwork-security intercept-deployments create andupdate commands.

Workbench

Added--enable-third-party-identity flag togcloud workbench instances create.
AddedNVIDIA_H100_80GB andNVIDIA_H100_MEGA_80GBoption to--accelerator-type flag ofgcloud workbench instances createandgcloud workbench instances update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

504.0.1 (2024-12-19)

Google Cloud CLI

Rebuilt gcloud with certifi 2024.08.30 which fixed CVE-2024-39689.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

504.0.0 (2024-12-17)

AlloyDB

Added export command to support exporting data from an AlloyDB cluster to Google Cloud Storage.

BigQuery

Fixed the bug where quota project ID would default to the resource project ID for an active service account from Cloud CLI used for authentication.
Added--reservation_id=none to thequery command to enforce on-demand job execution.
Added--bigquery_discovery_api_key to allow specifying an API key when making a discovery request.

Cloud Bigtable

Changed the default retention period from 3d to 7d when automated backup is enabled using--enable-automated-backup flag ingcloud bigtable instances tables create andgcloud bigtable instances tables update.
Added--automated-backup-retention-period flag togcloud bigtable instances tables create andgcloud bigtable instances tables update commands which can be used to configure the retention period for automated backup.

Cloud Storage

Updated gsutil component to 5.33.

Compute Engine

Added--request-body-inspection-size forgcloud compute security-policies update, and promoted it to beta.
Promotedgcloud compute network-profiles list anddescribe to v1.
Promoted--network-profile ingcloud compute networks create to v1.

Kubernetes Engine

Added--disable-l4-lb-firewall-reconciliation flag togcloud container clusters create,gcloud container clusters create-auto, andgcloud container clusters update to disable reconciliation for VPC firewallstargeting ingress traffic for L4 Load Balancer Services.
Updated default kubectl from 1.30.6 to 1.30.8.
Added new kubectl version 1.32.0
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15
- kubectl.1.29 (1.29.12)
- kubectl.1.30 (1.30.8)
- kubectl.1.31 (1.31.4)
- kubectl.1.32 (1.32.0)

Migrate to Virtual Machines

Promotedgcloud migration vms machine-image-imports commands to GA.

Network Security

New flag to add description for Intercept Endpoint Group increate andupdate commands.
Addedgcloud network-security security-profiles custom-intercept commands to create Custom Intercept Security Profiles.
Added--custom-intercept-profile flag togcloud network-security security-profile-groups create to associate a Custom Intercept SP to an SPG.

Network Services

Addedgcloud network-services route-views list.
Addedgcloud network-services route-views describe.

Service Extensions

Added per extension metadata field to the DEP extensions.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

503.0.0 (2024-12-10)

Breaking Changes

(Colab) Remove deprecatedgcloud colab beta runtimes assign.Please usegcloud colab beta runtimes create instead.
(Eventarc) Deprecated--labels fromgcloud eventarc triggers update. Use--update-labels,--remove-labels,--clear-labels ingcloud eventarc triggers update instead.
(Eventarc) Deprecated--labels fromgcloud beta eventarc message-buses update. Use--update-labels,--remove-labels,--clear-labels ingcloud beta eventarc message-buses update instead.
(Eventarc) Deprecated--labels fromgcloud beta eventarc google-api-sources update. Use--update-labels,--remove-labels,--clear-labels ingcloud beta eventarc google-api-sources update instead.

AlloyDB

Added export command to support exporting data from an AlloyDB cluster to Google Cloud Storage in alpha and beta tracks.
Promoted--tags flag togcloud alloydb clusters restore andgcloud alloydb clusters create-secondary to bind tags in GA track.

Anthos Multi-Cloud

Fixed issue where the following command groups returnoperation not founderror when attempting to delete missing resource with--allow-missing and--ignore-errors flags:gcloud container aws clusters delete,gcloud container aws node-pools delete,gcloud container azure clusters delete,gcloud container azure node-pools delete,gcloud container attached clusters delete.
Fixed issue where the following command groups returnresource not founderror when attempting to delete missing resource with only--allow-missingflag:gcloud container aws clusters delete,gcloud container aws node-pools delete,gcloud container azure clusters delete,gcloud container azure node-pools delete,gcloud container attached clusters delete.

Artifact Registry

Removed deprecatedartifacts v1alpha1 API
Added--pkg-dev-location flag forgcloud artifacts docker upgrade migrate.

BigQuery

Fixed the behavior of--oauth_access_token to skip loading the active account credentials from Google Cloud CLI when a flag value is specified.
Included Cloud CLI information to theinfo command.
Updated behavior of--force for themk command for datasets and tables to no longer do existence pre-checks.
Aligned tag key parsing with documentation so that the value is split using the last colon.
Broadened tolerance for tag key names to align with documentation, eg.project/department:sales.
Fixed the bug when the commandquery would fail if--project_id mismatched the project in fully qualified--reservation_id.
Added support for IAM condition in Dataset ACL.
Updated logging to a file using--apilog to append to the file instead of overwriting to fix a bug of truncated logs.
Added--job_creation_mode to thequery command.

Cloud Access Context Manager

Added--etag parameter toaccess-context-manager perimeters updatecommand.
Added--etag parameter toaccess-context-manager perimeters dry-run updatecommand.

Cloud Bigtable

Added--row-affinity flag togcloud bigtable app-profiles create andgcloud bigtable app-profiles update.
Addednode-scaling-factor flag for alpha, beta and GA togcloud bigtable clusters create to allow users to enable 2x node scaling onnew clusters.
Added keynode-scaling-factor to--cluster-config flag ofgcloud bigtable instances create for alpha, beta and GA to enable 2x nodescaling on new clusters.

Cloud Composer

Added--network-attachment togcloud composer environments create/update to specify network attachment.
Added--network and--subnetwork togcloud composer environments update to update network and subnetwork.
Added--support-web-server-plugins togcloud composer environments create/update to enable/disable the support for web server plugins.
Added--enable-private-builds-only togcloud composer environments create/update to enable only private connectivity to Google services for Python packages installations.
Added--disable-private-builds-only togcloud composer environments create/update to disable only private connectivity to Google services for Python packages installations.
Added--disable-vpc-connectivity togcloud composer environments update to disable connectivity with a user's VPC network.
Added--enable-private-environment togcloud composer environments update to disable internet connection from any Composer component.
Added--disable-private-environment togcloud composer environments update to enable internet connection from any Composer component.
Added--composer-internal-ipv4-cidr-block togcloud composer environments create to specify the IP range in CIDR notation to use internally by Cloud Composer.
Added--dag-processor-storage togcloud composer environments create/update to specify the storage allocated to Airflow dag processor.
Added--dag-processor-count togcloud composer environments create/update to specify the number of dag processors.
Added--dag-processor-cpu togcloud composer environments create/update to specify the CPU allocated to Airflow dag processor.
Added--dag-processor-memory togcloud composer environments create/update to specify the memory allocated to Airflow dag processor.
Addedgcloud composer environments list-workloads to display Composer workloads list.
Addedgcloud composer environments user-workloads-config-maps create to create a user workloads ConfigMap.
Addedgcloud composer environments user-workloads-config-maps delete to delete a user workloads ConfigMap.
Addedgcloud composer environments user-workloads-config-maps describe to get details about a user workloads ConfigMap.
Addedgcloud composer environments user-workloads-config-maps list to list user workloads ConfigMaps.
Addedgcloud composer environments user-workloads-config-maps update to update a user workloads ConfigMap.
Addedgcloud composer environments user-workloads-secrets create to create a user workloads Secret.
Addedgcloud composer environments user-workloads-secrets delete to delete a user workloads Secret.
Addedgcloud composer environments user-workloads-secrets describe to get details about a user workloads Secret.
Addedgcloud composer environments user-workloads-secrets list to list user user workloads Secrets.
Addedgcloud composer environments user-workloads-secrets update to update a user workloads Secret.

Cloud Identity-Aware Proxy

Promoted invalid scenario checks forgcloud iap settings --project=value --service=value to beta and GA.

Cloud Memorystore

Promotedmemorystore command group to GA.

Cloud Resource Manager

Updatedgcloud resource-manager tags keys create toacceptpurpose-data=organization.

Cloud Run

Added--container and--depends-on flags togcloud beta run jobs create to allow creating multi-container Jobs.
Added--container,--remove-containers, and--depends-on flags togcloud beta run jobs deploy andgcloud beta run jobs update to allowdeploying and updating multi-container Jobs.
Added--container flag togcloud beta run jobs execute to allow executing multi-container Jobs withcontainer overrides.
Added a warning about an incomplete customer-managed encryption key (CMEK)compliance when using source deploys (using--key and--source flagstogether).
Added--allow-unencrypted-build flag to bypass the warning prompt forcustomer-managed encryption key (CMEK) source deployments (using--key and--source flags together).
Renamed flags--service-min-instances and--service-max-instances to--min and--max for a simplified experience. The old names are retained asaliases for compatibility.

Cloud SQL

Added--server-ca-pool flag togcloud beta sql instances create forcreation of instances using customer-managed CAS server CA.
Promoted--server-ca-mode flag ofgcloud sql instances create to GA.
Promotedgcloud sql ssl server-certs to GA.

Cloud Storage

Fixgcloud storage rsync, andgcloud storage cp command to respectcheck_hashes property.
Updated gsutil component to 5.32.

Colab

Addedgcloud beta colab runtimes stop.
Addedgcloud colab runtimes stop.

Compute Engine

Promoted--bgp-best-path-selection-mode and related flags ingcloud compute networks create andupdate to v1.
Promote graceful shutdown related flags to beta:
- --graceful-shutdown and--graceful-shutdown-max-duration of:
  - gcloud compute instances create
  - gcloud compute instances update
  - gcloud compute instances set-scheduling
  - gcloud compute instance-templates create
- --no-graceful-shutdown of:
  - gcloud compute instances delete
  - gcloud compute instances stop.
Added Cloud Armor flags togcloud compute org-security-policies.
Addedgcloud compute backend-services get-effective-security-policies command in beta.
Fix "compute instances export" in beta and v1 leaving the performanceMonitoringUnit field unpopulated.
Added24.10 to allowed list of values for--version ofgcloud beta compute instances ops-agents policies [create|update].
Addedgce_vm_ip_portmap Network Endpoint Group forgcloud compute network-endpoint-groups beta support.
Addedgcloud compute reservations blocks listcommand in beta.
Addedgcloud compute reservations blocks describecommand in beta.

Compute Firewall Policy Rules

Promotedgcloud compute firewall-policies export-rules to beta.
Promotedgcloud compute firewall-policies import-rules to beta.
Promotedgcloud compute network-firewall-policies export-rules to beta.
Promotedgcloud compute network-firewall-policies import-rules to beta.

Developer Connect

Promotedgcloud developer-connect to GA.

Distributed Cloud Edge

Added--zone-storage-kms-key flag togcloud edge-cloud container clusters create command to allow for specifying a KMS key for zone storage encryption.
Introduced a Status field for machines as output during list and describe operations.
Added--zone-storage-kms-key and--use-google-managed-zone-key flag togcloud edge-cloud container clusters update command to allow for updating the zone storage encryption key with either a CMEK or Google managed key.

Eventarc

Added--labels togcloud beta eventarc enrollments create and added--update-labels,--remove-labels,--clear-labels togcloud beta eventarc enrollments update to support labelling Eventarc enrollments.
Added--labels togcloud beta eventarc pipelines create and added--update-labels,--remove-labels,--clear-labels togcloud beta eventarc pipelines update to support labelling Eventarc pipelines.
Added--labels togcloud eventarc channels create to support adding Eventarc channels' labels.
Added--update-labels,--remove-labels,--clear-labels togcloud eventarc channels update to support updating Eventarc channels' labels.
Added--labels togcloud eventarc channel-connections create to support adding Eventarc channel connections' labels.

GKE Hub

Fixed a bug ingcloud beta container fleet config-management unmanage when sending empty payload would fail validation. This was introduced in Google Cloud CLI version 498.0.0.

Kubernetes Engine

Added flags to use Control Plane Authority features on clustercreationhttps://cloud.google.com/kubernetes-engine/docs/concepts/about-control-plane-authority
- --cluster-ca
- --aggregation-ca
- --etcd-api-ca
- --etcd-peer-ca
- --service-account-signing-keys
- --service-account-verification-keys
- --control-plane-disk-encryption-key
- --gkeops-etcd-backup-encryption-key
Promoted--additive-vpc-scope-dns-domain and--disable-additive-vpc-scope flags to GA in cluster creation and update.

Looker

Updated--edition flag ingcloud looker instances create to include nonprod looker instances.
Add--gemini-enabled,--gemini-preview-tester-enabled, and--gemini-prompt-log-enabled to the update command.

Network Security

Addednetwork-security intercept-deployment-groups commands to manage intercept deployment groups.
Addednetwork-security intercept-deployments commands to manage intercept deployments.
Addednetwork-security intercept-endpoint-groups commands to manage intercept endpoint groups.
Addednetwork-security intercept-endpoint-group-associations commands to manage intercept endpoint group associations.

Secure Source Manager

Added--enable-workforce-identity-federation togcloud beta source-manager instances create to support creation of instanceswith Workforce Identity Federation.

Workbench

Fixed a bug withworkbench instances update unintentionally removing accelerators.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

502.0.0 (2024-11-19)

AI

Addedmachine-type togcloud ai index-endpoints mutate-deployed-index.
Added--psc-automation-configs flag togcloud ai index-endpoints deploy-indexto support Private Service Connect automation.

AlloyDB

Added export command to support exporting data from an AlloyDB cluster to Google Cloud Storage in alpha and beta tracks.

Cloud Backup DR

Promotedgcloud backup-dr backup-vaults,gcloud backup-dr backup-plans,gcloud backup-dr backup-plan-associations,gcloud backup-dr backups andgcloud backup-dr data-sources command groups to GA.

Cloud Identity-Aware Proxy

Promotedgcloud iap web enable/disable to beta and GA. Added--region flag support to--resource-type=backend-services.

Cloud SQL

Added--failover-dr-replica-name and--clear-failover-dr-replica-nameflags togcloud sql instances patch command. These flags can be used to setand unset a disaster recovery replica for a Cloud SQL primary instance.
Add--[no-]enable-private-service-connect flag togcloud beta sql instances patch command to support enabling and disablingPrivate Service Connect for Cloud SQL instances.

Compute Engine

Added--require-specific-reservation flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--reservation-name flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--deployment-type flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Added--scheduling-type flag togcloud beta compute reservations create andgcloud beta compute reservations update.
Support--provisioning-model=reservation-bound in beta forgcloud compute instances create,gcloud compute instances bulk create, andgcloud compute instance-templates create commands.
Addedgcloud compute disks convert command.

Eventarc

Added--labels togcloud eventarc triggers create andgcloud eventarc triggers update to support labelling Eventarc triggers.
Added--labels togcloud beta eventarc message-buses create andgcloud beta eventarc message-buses update to support labelling Eventarc message buses.
Added--labels togcloud beta eventarc google-api-sources create andgcloud beta eventarc google-api-sources update to support labelling Eventarc Google API sources.

GKE Hub

Added support for stopping and resuming syncing configs togcloud beta container fleet config-management apply through a new Boolean fieldconfigSync.stopSyncing in the config file specified in flag--config.

Identity and Access Management

Addedgcloud iam oauth-clients commands for OAuth application integration to Workforce Identity Federation management.

Network Connectivity

Added--group flag for hybrid spokes.

Network Management

Added--destination-fqdn flag togcloud network-management connectivity-tests to allow executing Connectivitytests to DNS endpoint of Google Kubernetes Engine cluster control plane.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

501.0.0 (2024-11-12)

Anthos On-Prem

Added--version flag togcloud container vmware admin-clusters update to support admin cluster version upgrade.

Artifact Registry

Added an argument group of two flagsallow-vulnerability-scanning anddisable-vulnerability-scanning togcloud artifacts repositories create, to set the vulnerability scanning config for the repository.
Added an argument group of two flagsallow-vulnerability-scanning anddisable-vulnerability-scanning togcloud artifacts repositories update, to set the vulnerability scanning config for the repository.

Cloud Access Context Manager

Updatedgcloud access-context-manager cloud-bindings create to createbindings with global session settings. Use--session-length and--session-reauth-method to specify these settings.
Updatedgcloud access-context-manager cloud-bindings create --binding-fileto support creating scoped access settings that include session settings.
Updatedgcloud access-context-manager cloud-bindings update to updatebindings with global session settings. Use--session-length and--session-reauth-method to specify these settings.
Updatedgcloud access-context-manager cloud-bindings update --binding-fileto support updating scoped access settings that include session settings.
Updatedgcloud access-context-manager cloud-bindings list to displaysession settings on listed bindings.
Updatedgcloud access-context-manager cloud-bindings describe to displaysession settings on returned bindings.

Cloud Managed Kafka

Promotedgcloud managed-kafka to GA.

Cloud NetApp

Unhiding hybrid replication commands and fields for OnPrem migration GA.

Cloud Run

Promoted volume typein-memory to GA ingcloud run deploy,gcloud run jobs deploy,gcloud run jobs updategcloud run jobs create, andgcloud run services update.
Added--startup-probe and--liveness-probe flags togcloud beta run deployandgcloud beta run services update to allow configuring health check probes fora Cloud Run Service.

Cloud SQL

Promotedgcloud sql instances switchover to the GA track for PostgreSQL.

Cloud Spanner

Added--default-backup-schedule-type flag togcloud spanner instances create andgcloud spanner instances update commands to allow specifying the default backup schedule type while creating or updating instances.

Colab

Promotegcloud beta colab to GA.

Colab Enterprise

Deleted the deprecatedgcloud beta colab_enterprise surface.

Compute Engine

Changed the default value of--image-family flag to debian-12 forgcloud compute instances create,gcloud compute instances bulk create, andgcloud compute instance-templates create commands.
Promoted--instance-selection and other corresponding flags ofgcloud compute instance-groups managed <create | update> to GA.

Compute Firewall Policy Rules

Promotegcloud compute firewall-policies export-rules to beta.
Promotegcloud compute firewall-policies import-rules to beta.
Promotegcloud compute network-firewall-policies export-rules to beta.
Promotegcloud compute network-firewall-policies import-rules to beta.

Compute OS Config

Added--include-locations flag togcloud compute os-config policy-orchestrators create.
Added--include-locations and--clear-locations flags togcloud compute os-config policy-orchestrators update.

Kubernetes Engine

Added--autoprovisioning-cgroup-mode flag to migrate cgroup mode in auto-provisioned node pools.
Added flag option--hpa-profile=performance|none togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update commands.This flag allows specifying a Horizontal Pod Autoscaling profile for a cluster.
Updated default kubectl from 1.30.5 to 1.30.6
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.15)
- kubectl.1.29 (1.29.10)
- kubectl.1.30 (1.30.6)
- kubectl.1.30 (1.31.2)

Network Connectivity

Addedgcloud network-connectivity hubs query-status command to allow querying the status of a hub's Private Service Connect propagation.
Added--include-export-ranges flag to VPC spoke and producer VPC spoke updateCLI to enable/disable exporting IPv6 subnets.

Network Security

Bug fix to changeDEFAULT option for flag--action toDEFAULT_ACTION for Threat Preventionadd-override andupdate-override commands.

Transfer

Fix a bug related to--id-prefix flag intransfer agents install command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

500.0.0 (2024-11-05)

Breaking Changes

(Notebook Executor) Removedgcloud beta notebook-executor command group. Usegcloud beta colab to manage Colab Enterprise executions and schedules instead.

Google Cloud CLI

Updatedgcloud CLI to support Python v3.13.

Audit Manager

Promoted the following commands to GA:
- gcloud audit-manager audit-reports generate
- gcloud audit-manager audit-scopes generate
- gcloud audit-manager enrollments add
- gcloud audit-manager operations describe

Cloud Backup DR

Marked--network flag ofgcloud backup-dr management-servers create as optional.

Cloud Run

Addedmount-options key when using--add-volume withtype=cloud-storage ingcloud beta run deploy,gcloud beta run services update,gcloud beta run jobs deploy,gcloud beta run jobs update,orgcloud beta run jobs create to allow passing configuration flags togcsfuse.

Colab

Addedgcloud beta colab executions command group to replacegcloud beta notebook-executor executions.
Addedgcloud beta colab schedules command group to replacegcloud beta notebook-executor schedules.
Add support forcolab/region property ingcloud beta colab executions andgcloud beta colab schedules.

Compute Engine

Promotedgcloud compute instances list output format with IPv6 addresses to GA.

Compute OS Config

Promotedgcloud os-config policy-orchestrators to beta.

Kubernetes Engine

Added flag option--tier togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update commands.This flag enables clusters to be upgraded to GKE Enterprise.
Update validation for flag--database-encryption-key.

Network Connectivity

Updatedgcloud network-connectivity internal-ranges update to allow editability of description.

Security Command Center

Madefilter a required flag forgcloud scc bulk-mute command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

499.0.0 (2024-10-29)

Breaking Changes

(Colab) Deprecatedgcloud beta colab runtimes assign command.Usegcloud beta colab runtimes create instead.

Access Approval

Added--preferred-request-expiration-days flag togcloud access-approval settings updateto set the default expiration time for approval requests.
Added--prefer-no-broad-approval-requests flag togcloud access-approval settings updateto communicate the preference to Google personnel to request access with as targeted a resource scope as possible.
Added--notification-pubsub-topic flag togcloud access-approval settings updatefor publishing notifications to the specified topic when approval requests are made.
Added--request-scope-max-width-preference flag togcloud access-approval settings updateto configure the broadest scope of access for access requests without a specific method.
Added--require-customer-visible-justification flag togcloud access-approval settings updateto configure if a customer visible justification (i.e. Vector Case) is required for a Googler to create an Access Ticket to send to the customer when attempting to access customer resources.

AlloyDB

Promoted--tags flag ofgcloud alloydb clusters create andgcloud alloydb backups create to GA.

App Engine

Updated the Java SDK to version 2.0.31 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.31.

Artifact Registry

Added--canary-reads flag forgcloud artifacts docker upgrade migrate.

Cloud Dataproc

Added--master-boot-disk-provisioned-iops,--master-boot-disk-provisioned-throughput,--worker-boot-disk-provisioned-iops,--worker-boot-disk-provisioned-throughput to configureIOPS andthroughput forhyperdisk-balanced bootdisk for master and primary workers.

Cloud Memorystore

Adddatabases as supportedredis_config for Redis instance creation.
Addedgcloud redis clusters add-cluster-endpoints which appends more cluster endpoints to a redis cluster.
Addedgcloud redis clusters remove-cluster-endpoints which removes cluster endpoints for a redis cluster.

Cloud Workstations

Added--grant-workstation-admin-role-on-create flag togcloud workstations configs to support workstations port sharing.

Colab

Addedgcloud beta colab runtimes create.

Compute Engine

Promoted flags related to custom-metrics to beta:
- --custom-metrics ofgcloud compute backend-service create.
- --custom-metrics-file ofgcloud compute backend-service create.
- --custom-metrics ofgcloud compute backend-service update.
- --custom-metrics-file ofgcloud compute backend-service update.
- --clear-custom-metrics ofgcloud compute backend-service update.
- --custom-metrics ofgcloud compute backend-service add-backend.
- --custom-metrics-file ofgcloud compute backend-service add-backend.
- --custom-metrics ofgcloud compute backend-service update-backend.
- --custom-metrics-file ofgcloud compute backend-service update-backend.
- --clear-custom-metrics ofgcloud compute backend-service update-backend.
Promotedipv6 flag ofgcloud compute network-endpoint-group update <neg-name> --add-endpoint to GA.
Promotednetwork-attachment flag ofgcloud compute instance create <instance-name> --network-interface to GA.
Promotednetwork-attachment flag ofgcloud compute instance create <instance-name> --network-interface to beta.
Promotednetwork-attachment flag ofgcloud compute instance-templates create <name> --network-interface to GA.
Promotednetwork-attachment flag ofgcloud compute instance-templates create <name> --network-interface to beta.

Eventarc

Addedgcloud beta eventarc message-buses command group for Eventarc Advanced.
Addedgcloud beta eventarc google-api-sources command group for Eventarc Advanced.
Addedgcloud beta eventarc pipelines command group for Eventarc Advanced.
Addedgcloud beta eventarc enrollments command group for Eventarc Advanced.

GKE Hub

Fixed issue where re-registering a GKE cluster withgcloud container fleet memberships register --enable-workload-identity did not enable Workload Identity.
Updatedgcloud container fleet identity-service apply to accept configurations containing a Diagnostic Interface section.

Kubernetes Engine

Added flag option--ParallelstoreCsiDriver toadd support for enabling the Parallelstore CSI Driver.
Added--auto-monitoring-scope flag togcloud beta container clusters create,gcloud beta container clusters create-auto, andgcloud beta container clusters update for standard or autopilot clusters.

Network Connectivity

Added--producer-instance-location and--allowed-google-producers-resource-hierarchy-level togcloud network-connectvity service-connection-policies create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

498.0.0 (2024-10-22)

Breaking Changes

(Cloud Workstations) Fixedgcloud beta workstations configs create and
(Cloud Workstations)gcloud beta workstations configs create flag--boost-config. Before
(Cloud Workstations) when user specified--boost-config=enable-nested-virtualization=false,
(Cloud Workstations)enableNestedVirtualization was set to True. Fix enables user to set
(Cloud Workstations)enableNestedVirtualization to False by specifying
(Cloud Workstations)--boost-config=enable-nested-virtualization=false.
(Compute Engine) Deprecated default guest image family for--confidential-compute-type=TDX fromubuntu-2304-amd64 toubuntu-2204-lts.

AlloyDB

Added--tags flag to
- gcloud alloydb clusters create to support associating Tags while creating Cluster.

Anthos Multi-Cloud

Added--kubelet-config-cpu-manager-policy flag togcloud container aws node-pools create for choosing which CPU manager policyto use in the kubeletConfig.
Added--kubelet-config-cpu-cfs-quota flag togcloud container aws node-pools create for enabling or disabling CPU CFSthrottling.
Added--kubelet-config-cpu-cfs-quota-period flag togcloud container aws node-pools create for setting the period for throttlingwhen CPU CFS throttling is enabled.
Added--kubelet-config-pod-pids-limit flag togcloud container aws node-pools create for setting the maximum number of PIDsin any pod.

Cloud DNS

Fix response policy update command for zonal response policies.

Cloud Dataproc

Addedworker-machine-types flag togcloud dataproc clusters create to support flexible machine types for primary workers.

Cloud Datastore

Promoted changed togcloud datastore indexes create andgcloud datastoreindexes cleanup commands which uses the Firestore Admin API to GA.
promoted--database-id flag forgcloud datastore indexes cleanup to GA.

Cloud Logging

Promoted the following commands to GA:
- gcloud logging scopes create
- gcloud logging scopes list
- gcloud logging scopes delete
- gcloud logging scopes describe
- gcloud logging scopes update

Cloud Run

Source deploy will respect the source bucket set on an existing Cloud Runservice in therun.googleapis.com/source-location or therun.googleapis.com/build-source-location (giving preference to thelatter).
Updated the output ofgcloud run jobs executions tasks describe to includethe exit code of the last task attempt if the task has run.
Fixedgcloud multi-region-services update crashing when called without--add-region or--remove-region.
Fixedgcloud beta multi-region-services update documentation, whereALPHA arguments were erroneously included.

Cloud SQL

Add--replication-lag-max-seconds-for-recreate flag to recreate MySQL read-replica after the replication lag on the instance exceeds the defined threshold.

Cloud Spanner

Added--kms-keys flag to
- gcloud spanner databases create
- gcloud spanner backups create
- gcloud spanner backups copy
- gcloud spanner databases restore to support Cloud Spanner Customer Managed Encryption(CMEK) with multiple KMS keys.

Colab

Addcolab/region property to set default region forgcloud colab commands.

Compute Engine

Promoted--custom-end-time flag ofgcloud compute commitments create andgcloud compute commitments update to GA.
Promoted--load-balancing-scheme flag ofgcloud compute backend-buckets create to beta.
Promoted--propagated-connection-limit flag ofgcloud compute service-attachments create andgcloud compute service-attachments update to GA.
Added--action-on-vm-failed-health-check flag ofgcloud compute instance-groups managed create andgcloud compute instance-groups managed create to Alpha.
Promoted support forgcloud compute instance-groups managed resize-requests describe for regional igm to beta.
Promoted support forgcloud compute instance-groups managed resize-requests list for regional igm to beta.

GKE Hub

Migratedgcloud container fleet mesh update to use v2 MembershipFeature API for mutation.
Migratedgcloud container fleet policycontroller content bundles remove to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content bundles set to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content templates disable to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content templates enable to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content deployment remove to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content deployment set to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content detach to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content enable to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content suspend to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud container fleet policycontroller content update to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud beta container fleet config-management apply to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud beta container fleet config-management unmange to use v2 MembershipFeature API for per membership spec mutation.
Migratedgcloud beta container fleet config-management upgrade to use v2 MembershipFeature API for per membership spec mutation.

Kubernetes Engine

Fixed issue wheregcloud container clusters create with--cluster-dns=clouddns incorrectly shows a confirmation prompt about recreating node pools. Recreating node pools is only necessary when changing from a different DNS provider.
Added--enable-multi-networking flags togcloud container clusters create-auto.

Network Management

Added--destination-redis-instance and--destination-redis-cluster flagstogcloud network-management connectivity-tests to allow executingConnectivity tests to Redis instances and Redis clusters.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

497.0.0 (2024-10-15)

Breaking Changes

(Colab Enterprise) Deprecatedgcloud beta colab-enterprise command group. Usegcloud beta colab instead.

Cloud Dataproc

Addedsecondary-worker-standard-capacity-base andsecondary-worker-standard-capacity-percent-above-base flags togcloud dataproc clusters create to support mixing of spot and standard instances for secondary workers.

Cloud Datastore

Promoted changed togcloud datastore indexes create andgcloud datastoreindexes cleanup commands which uses the Firestore Admin API to beta.
Added--database-id flag togcloud datastore indexes cleanup.

Cloud On Demand Scanning

Added support for scanning for new OS packages (Wolfi, Chainguard, GoogleDistroless, SUSE Linux Enterprise Server, Rocky Linux, Alma Linux).
Added support for scanning new language packages (NPM, Python, Rust,RubyGems, Composer, NuGet).
Changed the default behavior ofgcloud artifacts docker images scan toscan for vulnerabilities in all supported language packages, and added--skip-package-types flag to skip scanning for specific language packagetypes.
Deprecated--additional-package-types flag ofgcloud artifacts dockerimages scan command. Scanning for all package types is now the default.

Cloud SQL

Added PostgreSQL 17 to supported database versions.

Cloud Storage

Promotedgcloud storage folders to GA.
Promotedgcloud storage buckets create --enable-hierarchical-namespace flag to GA.
Updated gsutil component to 5.31.

Colab

Addedgcloud beta colab command group to replacegcloud beta colab-enterprise.

Compute Engine

Promoted--ip-address-selection-policy flag ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promoted IPv6-only support forgcloud compute instances create,gcloud compute instances bulk create,gcloud compute instance-templates create, andgcloud compute networks subnets create to GA.
Promoted support forgcloud compute instance-groups managed resize-requests create for regional igm to beta.
Promoted support forgcloud compute instance-groups managed resize-requests cancel for regional igm to beta.
Promoted support forgcloud compute instance-groups managed resize-requests delete for regional igm to beta.
Addedpath to cookie forSTRONG_COOKIE_AFFINITY andHTTP_COOKIE sessionAffinity type in GA.

Database Migration

Added--database-version-name flag togcloud database-migration connection-profiles create cloudsql.

Network Connectivity

Addedeffective-location argument to routes list CLI to filter hub routeseffective at a specific location.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

496.0.0 (2024-10-08)

Breaking Changes

(Anthos Multi-Cloud) Removed--workload-vulnerability-scanning flag ofgcloud container attached clusters.

Artifact Registry

Added support for download rules that control the downloading behaviors ofpackages in a repository.

BigQuery

Added--request_reason flag to support setting theX-Goog-Request-Reason HTTP request header.
Added--reservation_id flag to allow specifying reservation on a job.
Fixed the validation on--nouse_google_auth when GDU is set as the universe domain.
Updated default--api value to match newer guidelines.
Fixed a bug where specialbilling/quota_project values in--quota_project_id flag are not resolved when using legacy auth.
Added support for creating and updating row access policies. Support for showing and removing row access policies will be added in a future version.
Added validations for schedule options during creating or updating data transfer configurations.
Added--event_driven_schedule to support event driven transfers in Data Transfer Service.
Added messages to alert users when a default connection is created and/or their IAM policy is updated for the default connection.
Updates permissions for directories to be755.

Cloud Bigtable

Added--backup-type flag togcloud bigtable backups create to support hot backups.
Added--hot-to-standard-time flag togcloud bigtable backups create andgcloud bigtable backups update to support hot backups.

Cloud Deploy

Added support for Deploy Policies public preview.

Cloud Firestore

Updatedgcloud beta firestore bulk-delete to require confirmation.

Cloud Pub/Sub

Added flags togcloud pubsub topics create for creating Cloud Pub/Sub Cloud Storage Import Topics.
- Added--cloud-storage-ingestion-bucket
- Added--cloud-storage-ingestion-input-format
- Added--cloud-storage-ingestion-text-delimiter
- Added--cloud-storage-ingestion-match-glob
- Added--cloud-storage-ingestion-minimum-object-create-time
Added flags togcloud pubsub topics update for updating Cloud Pub/Sub Cloud Storage Import Topics.
- Added--cloud-storage-ingestion-bucket
- Added--cloud-storage-ingestion-input-format
- Added--cloud-storage-ingestion-text-delimiter
- Added--cloud-storage-ingestion-match-glob
- Added--cloud-storage-ingestion-minimum-object-create-time

Cloud Resource Manager

AddedDATA_GOVERNANCE choice for--purpose argument ingcloud resource-manager tags keys create command.

Cloud Run

Promotedgcloud run multi-region-services to beta.
Added--regions togcloud beta run deploy to support Multi-Region Services.
Deprecatedgcloud run integrations commands.
Added--[no]invoker-iam-check flag to optionally disable invoker IAM checks. This feature is available by invitation only; more info athttps://cloud.google.com/run/docs/securing/managing-access#invoker_check.

Cloud SQL

Add new enumTLOG to--bak-type, add--export-log-start-time and--export-log-end-time flags togcloud sql export bakto enable the transaction log export feature for SQL Server.

Cloud Workstations

Added support for the maximum usable workstations for a user ingcloud workstations config create andgcloud workstations config updatecommands.

Compute Engine

gcloud compute ssh no longer consumes STDIN while polling for instance key propagation.
Made scope required forgcloud compute backend-services list-usable.
Promoted Percentage-based Request Mirroring in UrlMaps compute API to beta.
Adds support forSTRONG_COOKIE_AFFINITY sessionAffinity type in beta.
Updated behaviour ofgcloud compute instance-groups managed delete: it will throw error if instance.delete operation takes more than 70 minutes instead of 30 minutes previously.
Adds support forSTRONG_COOKIE_AFFINITY sessionAffinity type in GA.

Database Migration

Added--sqlserver-promote-when-ready and--no-sqlserver-promote-when-ready flags togcloud database-migrate migration-jobs create andgcloud database-migrate migration-jobs update. The flags enable or disable promote of ready databases in Database Migration Service migration jobs for homogeneous SQL Server to Cloud SQL for SQL Server migrations.

Distributed Cloud Edge

Added--control-plane-node-storage-schema flag togcloud edge-cloud container clusters create commands to allow specifying the local storage configuration schema.
Added--node-storage-schema flag togcloud edge-cloud container node-pools create commands to allow specifying the local storage configuration schema.

GKE Hub

Addedgcloud container fleet scopes add-app-operator-binding to beta which sets up permissions required for an app operator in a fleet scope.
Addedgcloud container fleet scopes remove-app-operator-binding to beta which unsets permissions of an app operator in a fleet scope.
Addedgcloud container fleet scopes list-app-operator-bindings to beta which lists app operators and their roles in a fleet scope.

Identity Groups

Deprecated POSIX groups fromgcloud beta identity groups.

Kubernetes Engine

Fixed a buggcloud container node-pools update command where it was ignoring--accelerator command.
Updates default kubectl from 1.29.8 to 1.30.5.
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.14)
- kubectl.1.29 (1.29.9)
- kubectl.1.30 (1.30.5)
- kubectl.1.31 (1.31.1)
Added a new commandgcloud beta container clusters get-upgrade-infowhich returns upgrade information of the given cluster.
Added a new commandgcloud beta container node-pools get-upgrade-infowhich returns upgrade information of the given node pool.
Added flag option--enable-ip-access togcloud container clusters create andgcloud container clusters create commands.This flag enables IP address access to the cluster's control plane.
Added flag option--enable-dns-access togcloud container clusters create andgcloud container clusters create commands.This flag enables DNS access to the cluster's control plane.
Added flag option--enable-private-endpoint-enforcement togcloud container clusters create andgcloud container clusters create commands.This flag enforces authorized networks rules over cluster's private endpoint.
Added flag option--dns-endpoint togcloud container clusters get-credentials command. This flag configures kubectlto point DNS endpoint of the cluster's control plane.

Network Services

Promoted the following Service Extensions Plugins command groups to beta:
- gcloud service-extensions wasm-plugins
- gcloud service-extensions wasm-plugin-versions

Notebook Executor

Addedgcloud beta notebook-executor schedules surface and commands.

Security Command Center

Modifiedgcloud scc sources describe to call Security Command Center v2 api instead of v1.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

495.0.0 (2024-10-01)

Breaking Changes

(GKE Hub) Modifiedgcloud container fleet memberships get-credentials to require thepermissiongkehub.gateway.generateCredentials (automatically included inrolesgkehub.gatewayReader,gkehub.gatewayEditor, andgkehub.gatewayAdmin), as well as network access to*connectgateway.googleapis.com.

Google Cloud CLI

Updated propertycore/parse_error_details default to be set toTrue,gcloud CLIwill parse and display errors in a more human readable format, where available.

App Engine

Fixed customer bug (https://issuetracker.google.com/issues/364466911) forthe local dev_appserver.py running go apps on Windows.
Added the new runtime go1.23 support for dev_appserver.py.

Artifact Registry

Addedgcloud artifacts attachments create to support creating an Attachment for an artifact.
Addedgcloud artifacts attachments download to support downloading an Attachment.
Addedgcloud artifacts attachments list to support listing Attachments in a repository.
Addedgcloud artifacts attachments delete to support deleting an Attachment.
Added location flag from artifacts sbom export, artifacts sbom list,artifacts sbom load, artifacts vulnerabilities list, and artifactsvulnerabilities load-vex.
Changed default answer for prompts in enable-upgrade-redirection and disable-upgrade-redirection to Y.

Cloud Access Context Manager

Added--binding-file flag togcloud access-context-manager cloud-bindingsfor setting ScopedAccessSettings in GcpUserAccessBinding.

Cloud Firestore

Updatedgcloud firestore backups list to return the unavailable locations.

Cloud Identity-Aware Proxy

Added--resource-type=cloud-run togcloud iap setting andgcloud iap web iam in ALPHA.

Cloud Pub/Sub

Increased upper bound for--message-retention-duration flag ofgcloud pubsub subscriptions create from 7 days to 31 days.
Increased upper bound for--message-retention-duration flag ofgcloud pubsub subscriptions update from 7 days to 31 days.
Fixed--cloud-storage-max-bytes flag ofgcloud pubsub subscriptions create to accept values down to 1000 bytes.
Fixed--cloud-storage-max-bytes flag ofgcloud pubsub subscriptions update to accept values down to 1000 bytes.

Cloud Run

Promoted--service-min-instances flag ofgcloud run deploy andgcloud run services update to GA.

Cloud SQL

Promotegcloud sql ssl server-ca-certs to GA.

Cloud Spanner

Promotedgcloud spanner backup-schedules to GA.
Added new columns togcloud spanner backups list command.

Database Migration

Added--authorized-network-cidr-ranges,--enable-outbound-public-ip, and--enable-public-ip flags togcloud database-migration connection-profiles create alloydb.

GKE Hub

Migratedgcloud container fleet memberships register from calling v1beta1 gkehub APIs to standard versions (v1, v1beta, v1alpha).
Migratedgcloud container fleet memberships unregister from calling v1beta1 gkehub APIs to standard versions (v1, v1beta, v1alpha).

Kubernetes Engine

Promoted--enable-confidential-storage flag on cluster/node-pool create to GA to enable creating boot disk with confidential mode.

Network Connectivity

Added FOR_MIGRATION usage type support to Internal Range.

Notebook Executor

Addedgcloud beta notebook-executor executions surface and commands.

Policy Simulator

Addedgcloud policy-intelligence simulate command group. Commands in thisgroup simulate changes to organization policies.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

494.0.0 (2024-09-24)

Breaking Changes

(GKE Hub)gcloud beta container fleet memberships get-credentials now requires thepermissiongkehub.gateway.generateCredentials (automatically included inrolesgkehub.gatewayReader,gkehub.gatewayEditor, andgkehub.gatewayAdmin), as well as network access to*connectgateway.googleapis.com.

Google Cloud CLI

Upgradedcryptography package to version 43.0.1.
Upgradedpyopenssl package to version 24.2.1.

AlloyDB

Added--outbound-public-ip flag to enable outbound public IP on an instancefor the following commands in the GA track:
- gcloud alloydb instances create
- gcloud alloydb instances create-secondary
- gcloud alloydb instances update

App Engine

Updated the Java SDK to version 2.0.30 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.30.
Updated the Jetty9 and Jetty12 WebServer to latest Version.
Fixed a customer bug regarding running multiple services in the local devappserver.

Cloud Bigtable Emulator

Rebuilding cbt emulator with go version 1.23.0 which fixed CVE-2023-45288.

Cloud SQL

Updatedgcloud beta sql ssl server-certs list to also return the CAcertificates.
Promoted--time-zone flag ofgcloud sql instances patch command to GA.

Colab Enterprise

Addedgcloud beta colab-enterprise runtimes describe.
Addedgcloud beta colab-enterprise runtimes list.
Addedgcloud beta colab-enterprise runtimes delete.
Addedgcloud beta colab-enterprise runtimes upgrade.
Addedgcloud beta colab-enterprise runtimes start.

Compute Engine

Promote--confidential-compute-type=TDX flag ofgcloud compute instances create to v1.
Addedgce_vm_ip_portmap Network Endpoint Group forgcloud compute network-endpoint-groups GA support.
Fix crash when setting--session-affinity.
AddedTDX_CAPABLE to the list ofguestOsFeatures.

Database Migration

Updatedgcloud database-migration connection-profiles create alloydb to support POSTGRES_16 version option for AlloyDB connection profiles.

Developer Connect

Promotedgcloud developer-connect to beta.

GKE Hub

Added support for fleet-default membership configuration of Config Sync togcloud beta container fleet config-management command group.
- Added--fleet-default-member-config flag togcloud beta container fleet config-management enable to set thefleet-default membership configuration.
- Added--origin flag togcloud beta container fleet config-management apply to sync a membershipto the fleet-default membership configuration.
- Added--fleet-default-member-config flag togcloud beta container fleet config-management disable to clear thefleet-default membership configuration.
- Added column togcloud beta container fleet config-management statusoutput to indicate whether each membership configuration is synced to thefleet-default membership configuration.

Gemini

Addedgcloud gemini code-repository-indexes API.
Addedgcloud gemini code-repository-indexes repository-groups API.

Network Security

For commandsnetwork-security security-profile-groups create andupdate, changed subflags for--threat-prevention-policy from--security-profile-organization and--security-profile-location to the more consistent--threat-prevention-profile-organization and--threat-prevention-profile-location, while keeping the old flags as well for backwards compatibility.
Added support for creating Security Profile Groups linked to Custom Mirroring security profiles usingnetwork-security security-profile-groups create --custom-mirroring-profile=<...>.

Oracle Database

Addedgcloud oracle-database group in GA with the following commands:
- gcloud oracle-database autonomous-database-backups list command
- gcloud oracle-database autonomous-databases commands group
- gcloud oracle-database autonomous-db-versions list command
- gcloud oracle-database cloud-exadata-infrastructures commands group
- gcloud oracle-database cloud-exadata-infrastructures db-servers list
- gcloud oracle-database cloud-vm-clusters commands group
- gcloud oracle-database cloud-vm-clusters db-system-shapes list command
- gcloud oracle-database entitlements list command
- gcloud oracle-database gi-versions list command

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

493.0.0 (2024-09-17)

Breaking Changes

(Anthos Multi-Cloud) Renamed--security-posture flag as--workload-vulnerability-scanning.
(Compute Engine) Removedgcloud compute future-reservations command group from GA.
(Security Command Center) Removedgcloud scc slz-overwatch command group.

Google Cloud CLI

gcloud auth application-default print-access-token now supports context_aware access.

AlloyDB

Added--node-ids flag togcloud alloydb instances restart command to theGA track. This flag allows users to allow users to specify acomma-separated list of read pool node IDs to perform the restart on. Withoutspecifying this flag, every node in the read pool will be restarted.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.9
- Fix missing version data on non-transactional and transactional deletes

Cloud Identity-Aware Proxy

Promoted--resource-type=forwarding-rule from ALPHA to beta.

Cloud Managed Flink

Fixed issue UDF jars are mishandled for SQL jobs in some cases.
SQL jobs will always produce script output to improve spotting errors.

Cloud NetApp

Added--allow-auto-tiering flag togcloud netapp storagepools.
Added--tiering-policy flag togcloud netapp volumes.

Cloud Pub/Sub

Modified--message-retention-duration flag ofgcloud pubsub subscriptions create to enforce lower bound of 10 minutes and upper bound of 7 days.
Modified--message-retention-duration flag ofgcloud pubsub subscriptions update to enforce lower bound of 10 minutes and upper bound of 7 days.

Cloud SQL

Added support for restoring backups across projects.

Cloud Spanner

Added--edition flag togcloud spanner instances create andgcloud spanner instances update commands to allow specifying the Spanner edition while creating or updating instances.

Colab Enterprise

Addedgcloud beta colab-enterprise runtimes.
Addedgcloud beta colab-enterprise runtimes assign.
Updategcloud beta colab-enterprise runtime-templates create to setdefault disk type and size if neither flag is specified, instead of no disk.

Compute Engine

Added--reservation-sharing-policy flag togcloud compute commitments create command to specifythe reservation sharing policy for the commitment.
Promote--turbo-mode ingcloud compute instances create to GA.

Compute Firewall Policy Rules

Promoted--src-network-scope flag ofgcloud compute firewall-policies rules to beta.
Promoted--src-networks flag ofgcloud compute firewall-policies rules to beta.
Promoted--dest-network-scope flag ofgcloud compute firewall-policies rules to beta.
Promoted--src-network-scope flag ofgcloud compute network-firewall-policies rules to beta.
Promoted--src-networks flag ofgcloud compute network-firewall-policies rules to beta.
Promoted--dest-network-scope flag ofgcloud compute network-firewall-policies rules to beta.

GKE Hub

Modifiedgcloud beta container fleet memberships update to call gkehub API version v1beta instead of v1beta1.
Modifiedgcloud beta container fleet memberships create to call gkehub API version v1beta instead of v1beta1.

Migrate to Virtual Machines

Promotedgcloud migration vms image-imports commands to GA.

Network Security

Simplified thenetwork-security mirroring-deployment-groups create command by accepting just thenetworkID for network specification.
Changed subflags for--threat-prevention-policy innetwork-security security-profile-groups create andupdate from--security-profile-organization and--security-profile-location to the more consistent--threat-prevention-profile-organization and--threat-prevention-profile-location, while keeping the old flags as well for backwards compatibility.

Recaptcha

Update reCAPTCHA Express support in CreateKey API.

Security Command Center

Modifiedgcloud scc sources describe to accept parent (organization|folder|project) as positional argument instead of only organization.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

492.0.0 (2024-09-10)

Anthos Multi-Cloud

Added--security-posture flag togcloud container attached clusters toset the mode of the Kubernetes security posture API's off-cluster features.

Artifact Registry

Supported--filter and--sort-by on resource list apis.
Added update commands for annotations on Files, Packages and Package Versions.

Assured Workloads

AddedSOVEREIGN_CONTROLS_BY_SIA_MINSAIT andSOVEREIGN_CONTROLS_BY_PSN as options for--partner flag ofgcloud assured workloads create for both beta and GA.
Added support for the following Compliance Regimes forgcloud assured workloads create:AU_REGIONS_AND_US_SUPPORT,ISR_REGIONS,ISR_REGIONS_AND_SUPPORT,CA_PROTECTED_B,IL5,IL2,JP_REGIONS_AND_SUPPORT,KSA_REGIONS_AND_SUPPORT_WITH_SOVEREIGNTY_CONTROLS, andREGIONAL_CONTROLS.
Thegcloud assured workloads create command will now automatically receive new Compliance Regime and Partner options as they are added to the Assured Workloads API.

Cloud Filestore

Added--deletion-protection and--deletion-protection-reason flags togcloud filestore instances create.
Added--deletion-protection,--no-deletion-protection and--deletion-protection-reason flags togcloud filestore instances update.

Cloud Functions

Changedgcloud functions deploy to deploynew functions viaCloud Functions (2nd gen) by default. 1st genfunctions can still be created by specifying--no-gen2 or by setting thefunctions/gen2 property tooff. This change will be applied in the GArelease track to match beta and alpha.

Cloud NetApp

Added--zone and--replica-zone flag togcloud netapp [volumes|storage-pools] create commands.

Cloud Run

Promotedgcloud run services logs read andgcloud run jobs logs read to GA.

Cloud SQL

Added--server_ca_mode flag togcloud beta sql instances create forcreation of instances using CAS server CA.
Addedsql ssl server_certs group for CAS server cert management androtation with the commandscreate,list,rotate, androllback.

Colab Enterprise

Fixed output ingcloud beta colab-enterprise runtime-templates commandsinvolving LROs to correctly show resource name rather than operation name.

Compute Engine

Promoting--turbo-mode ingcloud compute instances create to beta. It letsinstances run at supported turbo frequency. Only supported on C4 VM familieswith possible value "ALL_CORE_MAX".

Database Migration

Added--username and--password flags togcloud database-migration connection-profiles create sqlserver.
Addedgcloud database-migrate connection-profiles test to validate a Database Migration Service connection profile.

GKE Hub

Removed--description flag ofgcloud beta container fleet memberships create.

Kubernetes Engine

Updates default kubectl from 1.28.12 to 1.29.8.
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.13)
- kubectl.1.29 (1.29.8)
- kubectl.1.30 (1.30.4)
- kubectl.1.31 (1.31.0)
Added--accelerators flag togcloud container node-pools update to enable accelerator config update on nodepools.

Network Management

Addedgcloud beta network-management vpc-flow-logs-configs command groupwhich is manage the VPC Flow Logs configurations.

Network Security

New commands for network-security resources - AuthzPolicy.
Addedsecurity-profiles custom-mirroring commands to manage custom mirroring security profiles and promoted them to beta.

Service Extensions

New commands for service-extensions resources - AuthzExtensions.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

491.0.0 (2024-09-04)

Breaking Changes

(GKE Hub)gcloud container fleet scopes namespaces get-credentials now requires thepermissiongkehub.gateway.generateCredentials (automatically included inrolesgkehub.gatewayReader,gkehub.gatewayEditor, andgkehub.gatewayAdmin), as well as network access to*connectgateway.googleapis.com.
(Kubernetes Engine) Changedgcloud container clusters update to use current cluster DNS config as base for changes rather than default DNS config. In addition, the user will only be prompted about the necessary node pool upgrade when specified cluster DNS provider is different than the current value in the cluster.

Google Cloud CLI

Updated Windows bundled Python for thegcloud CLI to 3.11.9.

Artifact Registry

Fixed issue wheregcloud artifacts docker images describe fails when nometadata flag is specified and API enablement check is denied.

Cloud Dataflow

Allow JAVA21 in--flex-template-base-image option forgcloud dataflow flex-template build.

Cloud Firestore

Promoted--encryption-type and--kms-key-name flag ofgcloud firestore databases restore command to beta and GA.

Cloud Identity-Aware Proxy

Added--resource-type=forwarding-rule togcloud iap setting andgcloud iap web in ALPHA.

Cloud NetApp

Added--hybrid-replication-parameters flag togcloud netapp volumes {create}.

Cloud Workstations

Deprecated--disable-ssh-to-vm flag ingcloud workstationsconfig create command. Use--enable-ssh-to-vm flag instead.

Compute Engine

Fix incorrect padding issues forgcloud add_signed_url_key method.

Kpt

Updated kpt to v1.0.0-beta.50. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.55 for more details.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

490.0.0 (2024-08-27)

App Hub

Addedgcloud apphub locationscommand group. Commands in this group manageapphub locations.

Assured Workloads

AddedSOVEREIGN_CONTROLS_BY_CNTXT andSOVEREIGN_CONTROLS_BY_CNTXT_NO_EKMas options for--partner forgcloud assured workloads create.
Addedpartner-services-billing-account flag forgcloud assured workloadscreate.

BigQuery

Enabled Google Auth by default.

Cloud Bigtable

Added support for more aggregate types to the cbt CLI.

Cloud Run

Added--mesh flag togcloud beta run deploy andgcloud beta run services update. Usegloud beta run deploy --mesh=[MESH] ... to enable Cloud Service Mesh for a Cloud Run Service.
Promoted--add-volume,--remove-volume,--clear-volumes,--add-volume-mount,--remove-volume-mount,and--clear volume mounts flags ofgcloud run deploy,gcloud run services update,gcloud run jobs deploy,gcloud run jobs create, andgcloud run jobs update to GA for NFS and Cloud Storage volumes.

Colab Enterprise

Addedgcloud beta colab-enterprise runtime-templates add-iam-policy-binding.
Addedgcloud beta colab-enterprise runtime-templates get-iam-policy.
Addedgcloud beta colab-enterprise runtime-templates set-iam-policy.
Addedgcloud beta colab-enterprise runtime-templates remove-iam-policy-binding.

Compute Engine

Promoted flags related to external-managed migration to beta:
- '--external-managed-backend-bucket-migration-state' ofgcloud compute forwarding-rules update.
- '--external-managed-backend-bucket-migration-testing-percentage' ofgcloud compute forwarding-rules update.
- '--load-balancing-scheme' ofgcloud compute forwarding-rules update.
- '--external-managed-migration-state' ofgcloud compute backend-services update.
- '--external-managed-migration-testing-percentage' ofgcloud compute backend-services update.
- '--load-balancing-scheme' ofgcloud compute backend-services update.
Promotedgcloud compute future-reservations command group to GA.

Database Migration

Added--sqlserver-diff-backup and--no-sqlserver-diff-backup flags togcloud database-migrate migration-jobs create andgcloud database-migrate migration-jobs update. The flags enable or disable differential backups in Database Migration Service migration jobs for homogeneous SQL Server to Cloud SQL for SQL Server migrations.
Updatedgcloud database-migration connection-profiles create cloudsql to support MySQL_8_4 major version option for Cloud SQL connection profiles.

GKE Hub

Modifiedgcloud beta container fleet memberships register to not populate membership description.
Removed--description flag ofgcloud beta container fleet memberships update.

Kubernetes Engine

Added flag option--[no]-enable-insecure-binding-system-authenticated toallow/block System RBAC bindings groupsystem:authenticated binds to anyrole.
Added flag option--[no]-enable-insecure-binding-system-unauthenticatedto allow/block System RBAC bindings groupsystem:unauthenticated andusersystem:anonymous binds to any role.

Memorystore

Addedmemorystore command group. Commands in this group allow creating andmanaging Memorystore instances.

Notebooks

AddedNVIDIA_H100_80GB andNVIDIA_H100_MEGA_80GBoption to--accelerator-type flag ofgcloud notebooks instances createandgcloud notebooks instances update.

Workbench

Addedworkbench instances restore to restore the workbench instance to an existing backup state.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

489.0.0 (2024-08-20)

Cloud Dataplex

Adjustedgcloud dataplex entries search page-size limit to match the publicAPI documentation.

Cloud Filestore

Added MAX_READ_IOPS column togcloud beta filestore instances list andgcloud filestore instances list.

Cloud Firestore

Promotedvector-config flag ofgcloud firestore indexes composite createcommand to beta and GA.
Added firestore bulk-delete command in alpha and beta to delete data in bulk.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.8
- Properly sets transaction in lookup response.
- Properly setsNO_MORE_RESULTS when there are no more results.
- Persistence now supported via import/export flags:https://cloud.google.com/datastore/docs/emulator#persist_data_in_the_emulator.
- Add support forFindNearest.distanceResultField andFindNearest.distanceThreshold parameters.

Cloud Run

Added--build-env-vars, --function, --base-image, --automatic-updates, --build-worker-pool, --delegate-builds, --build-service-account to improve--source deployments on beta.

Cloud Storage

Fix missing hash validation for CMEK encrypted downloads via rsync.

Colab Enterprise

Addedgcloud beta colab-enterprise to manage colab enterprise resources.
Addedgcloud beta colab-enterprise runtime-templates.
Addedgcloud beta colab-enterprise runtime-templates create.
Addedgcloud beta colab-enterprise runtime-templates delete.
Addedgcloud beta colab-enterprise runtime-templates describe.
Addedgcloud beta colab-enterprise runtime-templates list.

Compute Engine

Promoted flags related to the nat64 feature to alpha:
- nat64-all-v6-subnet-ip-ranges ofgcloud compute routers nats (create|update).
- nat64-custom-v6-subnet-ip-ranges ofgcloud compute routers nats (create|update).
- clear-nat64-v6-subnet-ip-ranges ofgcloud compute routers nats update.
- clear-nat-subnet-ip-ranges ofgcloud compute routers nats update.
Added update command for instance-schedule policy:gcloud compute resource-policies update instance-schedule.
Added--reservation-sharing-policy flag togcloud beta compute reservations create andgcloud beta compute reservations update.

Kubernetes Engine

Added--storage-pools flag on node-pool update.
Promoted--storage-pools flag on cluster / node-pool create to GA.

Looker

Launched Private Services Connect for Looker (Google Cloud core) with General Availability.

Network Security

Addednetwork-security mirroring-endpoint-group-associations commands to manage packet-mirroring endpoint group associations, and promoted them to beta.

Workbench

Added--min-cpu-platform flag togcloud workbench instances create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

488.0.0 (2024-08-13)

BigQuery

Fixed logging when--use_google_auth is used.
Added a retry for server-side errors.
Sortedls response for projects.

Certificate Manager

Added commandgcloud certificate-manager issuance-configs update.

Cloud Filestore

Added--clear-performance flag togcloud beta filestore instances updateandgcloud filestore instances update to support unsetting of performanceconfigurations for filestore instances.

Cloud Firestore

Added support forVECTOR_CONFIG options ingcloud firestore indexescomposite list command.
Added support forVECTOR_CONFIG options ingcloud firestore indexescomposite describe command.

Cloud Memorystore

Added--cross-cluster-replication-role and--primary-cluster flags togcloud redis clusters create for creating secondary clusters.
Addedgcloud redis clusters switchover,gcloud redis clusters detach andgcloud redis clusters detach-secondaries commands for Cross Cluster Replication failover CUJs.

Cloud Run

Added--gpu and--gpu-type togcloud beta run deploy andgcloud beta run services update which allow deploying a service with GPU.

Cloud Workstations

Added--allowed-ports flag support forgcloud workstations configs create.

Compute Engine

Updating--session-affinity to a value other thanSTRONG_COOKIE_AFFINITY clears the value of strongSessionAffinityCookie.
Added support for specifying multiple instances ingcloud compute instances perform-maintenance.
Promoted--bgp-best-path-selection-mode and related flags ingcloud compute networks create andupdate to beta.
gcloud compute instances ops-agents policies create/update no longer supports Centos 7, Centos 8 and Debian 10.

Database Migration

Updatedgcloud database-migration connection-profiles create cloudsql to support MySQL_8_0_37 minor version option for Cloud SQL connection profiles.

GKE Hub

Modifiedgcloud beta container fleet memberships describe to call gkehub API version v1beta instead of v1beta1.
Modifiedgcloud beta container fleet memberships delete to call gkehub API version v1beta instead of v1beta1.
Modifiedgcloud beta container fleet memberships list to call gkehub API version v1beta instead of v1beta1.

Identity and Access Management

Added--credential-cert-path,--credential-key-path, and--credential-cert-config-path flags togcloud iam workload pools create-cred-config. This enables usingX509 certificate-sourced credentials withgcloud auth login --cred-file=/path/to/credential/config.jsonwhen using Workload Identity Federation.

Network Security

Promotedgcloud network-security address-groups --purpose field to GA.
Addednetwork-security mirroring-deployment-groups commands to manage packet-mirroring deployment groups, and promoted them to beta.
Addednetwork-security mirroring-deployments commands to manage packet-mirroring deployments, and promoted them to beta.
Addednetwork-security mirroring-endpoint-groups commands to manage packet-mirroring endpoint groups, and promoted them to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

487.0.0 (2024-08-06)

Breaking Changes

(Cloud Storage) Remove '-' in error message for non-matching GCloud buckets. Currently, when
(Cloud Storage) listing buckets, all buckets that don't match are prefixed with '-', which might
(Cloud Storage) confuse readers of the bucket URLs.
(Compute Engine) Changed behavior of--local-ssd flag so that unknown interfaces trigger an exception rather than defaulting to SCSI.

Google Cloud CLI

Updated linux bundled python for thegcloud CLI to 3.11.9.
Updatedsetuptools package to version 70.3.0.
Updatedopenssl package to version 3.0.14.

Cloud DNS

Added support to allow specifying Network Proxy loadbalancers as health checked targets for Routing Policies.

Cloud Dataproc

Use thecluster-pool name as the identifier of the staging directory path when using a cluster pool. This change applies togcloud dataproc clusters create andgcloud dataproc clusters update commands.

Cloud Filestore

Added--performance flag togcloud filestore instances create andgcloud filestore instances update to support performance configurationof filestore instances.

Cloud Firestore

Promoted--show-deleted flag ofgcloud firestore databases list command to beta and GA.
Promoted--kms-key-name flag ofgcloud firestore databases create command to beta and GA.

Cloud NetApp

Added--large-capacity and--multiple-endpoints flag togcloud netapp volumes {create}.

Cloud On Demand Scanning

Added support for parsing RPM package databases in SQLite format.
Fixed issue wherelocal-extract would return an error when running it in acontainer without the user manually overriding thegid anduid values.

Cloud Run

Modified the api enablement default prompt value to be Y forgcloud run deploy command.

Cloud SQL

Addedgcloud sql instances switchover, which switches over a Cloud SQL instanceto one of its replicas.

Cloud Storage

Fixed a bug in where IAM policies with conditional bindings were notsupported because of version issue ingcloud storage bucketsadd-iam-policy-binding command.
Fixed a bug inobjects update command where it was ignoring--clear-content-type flag.

Compute Engine

Promoted--source-regions flag ofgcloud compute health-checks to GA.
Promoted--availability-domain flag ofgcloud compute instances create to GA.
Added interface support togcloud compute instances create,gcloud compute instances attach-disk andgcloud compute instance-templates create for persistent disks.

Distributed Cloud Edge

Fixed issue ingcloud edge-cloud container clusters create command where it was ignoring--offline-reboot-ttl flag.

GKE Hub

Modified--description flag ofgcloud beta container fleet memberships create to be optional.

Security Command Center

AddedUNDEFINED option to--mute flag ofgcloud scc findings set-mute to reset finding mute state.
Added--mute-state flag togcloud scc findings bulk-mute to facilitateresetting 'static' mute state.
Added--type flag togcloud scc muteconfigs create to support creation ofdynamically evaluated ('dynamic') mute configs.
Added--expiry-time flag togcloud scc muteconfigs create andgcloud scc muteconfigs update to support creation and update of expiry timefor temporary mute configs ('dynamic' only).
Promotedgcloud scc iac-validation-reports describe command to GA.
Promotedgcloud scc iac-validation-reports list command to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

486.0.0 (2024-07-30)

Cloud DNS

Added alpha support for creating health-checked routing policies in publiczones. Use--health-check to indicate that all IP addresses should be healthchecked.

Cloud Filestore

Added--performance flag togcloud beta filestore instances create andgcloud beta filestore instances update to support performance configurationof filestore instances.

Cloud Functions

Added--binary-authorization and--clear-binary-authorization flags for2nd gen function.

Cloud Pub/Sub

Promoted--cloud-storage-max-messages flag ofgcloud pubsub subscriptions create to GA. Added the ability to batchoutputted Cloud Storage files by number of messages in Cloud Pub/Sub. Formore information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#file_batch.
Promoted--cloud-storage-max-messages flag ofgcloud pubsub subscriptions update to GA. Added the ability to batchoutputted Cloud Storage files by number of messages in Cloud Pub/Sub. Formore information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#file_batch.

Cloud SQL

Added--switch-transaction-logs-to-cloud-storage flag togcloud sql instances patch to switch the transaction logs used forPITR from disk to Cloud Storage.Addedshow-transactional-log-storage-state flag togcloud sql instances list to display the transaction logs storage locationfor all the instances under the project.

Cloud Workstations

Adding support for the source workstation flag in thebeta workstations create command.

Compute Engine

Beta support forSTRONG_COOKIE_AFFINITY sessionAffinity type.
Promoted--server-tls-policy and--clear-server-tls-policy forgcloud compute target-https-proxies create andgcloud compute target-https-proxies update to GA.

Compute Firewall Policy Mirroring Rules

Promotedgcloud compute firewall-policies mirroring-rules to beta.
Promotedgcloud compute network-firewall-policies mirroring-rules to beta.

GKE Hub

Promotedgcloud container fleet memberships support-access to GA.

Kubernetes Engine

Updated default kubectl from 1.27.15 to 1.28.12
Additional kubectl versions:
- kubectl.1.27 (1.27.16)
- kubectl.1.28 (1.28.12)
- kubectl.1.29 (1.29.7)
- kubectl.1.30 (1.30.3)

Privileged Access Manager

Promotedgcloud pam commands to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

485.0.0 (2024-07-23)

Breaking Changes

(Security Command Center) Removed rapid-vulnerability-detection service from "Google Cloud CLI" as it is deprecated.

AlloyDB

Added flag--allowed-psc-projects togcloud alloydb instancescreate-secondary. This flag specifies a list of allowed consumer projects on asecondary instance in a cluster with Private Service Connect enabled.
Added--node-ids flag togcloud alloydb instances restart command to thebeta track. This flag allows users to allow users to specify acomma-separated list of read pool node IDs to perform the restart on.Without specifying, this flag every node in the read pool will be restarted.
Added--outbound-public-ip flag togcloud alloydb instances create,gcloud alloydb instances create-secondary andgcloud alloydb instancesupdate commands in the beta track. This flag allows users toallow users to enable public outbound connections within their primaryinstance. To disable public outbound IP you can use--no-outbound-public-ip.

Cloud Build

Promote Cloud Build gen2 commands undergcloud builds ... to beta status.

Cloud Deploy

Addedgcloud deploy deploy-policies command group.

Cloud Functions

Validated iam permission of default build service account for both 1st gen and 2nd gen function ingcloud functions deploy. Warning will be prompted whenroles/cloudbuild.builds.builder is missing.

Cloud Storage

Fixed a bug insign-url command.

Cloud Workstations

Adding support for enabling unauthenticated CORS preflightrequests in thegcloud beta workstations config commands.

Compute Engine

Fix issue with Google Compute Engine list commands that were slow when used with--limit.

Kubernetes Engine

Revert the default value of--max-nodes-per-pool from 2000 to 1000 andupdate the upper bound this value to be 2000.

Network Connectivity

Added updatinginclude-import-ranges flag support for hybrid spokes.

Network Services

Clarify failover-health-threshold usage to remove the notion of an unsupported product.

Vmware Engine

Added--autoscaling-min-cluster-node-count,--autoscaling-max-cluster-node-count,--autoscaling-cool-down-period,--update-autoscaling-policy,--autoscaling-settings-from-file and--remove-autoscaling-policy togcloud vmware private-clouds clusters update command to support autoscaling feature on update cluster.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

484.0.0 (2024-07-16)

Breaking Changes

(GKE Hub)gcloud container fleet memberships get-credentials now requires thepermissiongkehub.gateway.generateCredentials (automatically included inrolesgkehub.gatewayReader,gkehub.gatewayEditor, andgkehub.gatewayAdmin), as well as network access to*connectgateway.googleapis.com.

AlloyDB

Added--node-ids flag togcloud alloydb instances restart command in thealpha and beta tracks. This flag allows users to allow users to specify acomma-separated list of read pool node IDs to perform the restart on. Withoutspecifying this flag, every node in the read pool will be restarted.

App Engine

Removed Google App Engine PHP 5/5 support.
Updated the Java SDK to version 2.0.29 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.29.

Artifact Registry

Fixed error codes forgcloud artifacts docker upgrade migrate.

Batch

Fixed the--filter flag ofgcloud batch list command to matchgcloud topic filters syntax.

BigQuery

Added support for non-ASCII characters in the field mask when updating Connections.
Added support forconfiguration.authentication.profile_id in the field mask when updating Connections.
Fixed a bug wherebq init would be called even when--use_google_auth is specified.

Cloud Build

Add support ingcloud builds worker-pools commands for default region set in config.

Cloud Data Fusion

Added three new optional arguments togcloud beta data-fusion instances create command:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- These arguments allow users to specify the start time, end time, and recurrence of the maintenance window for their Data Fusion instance.
Add four new optional arguments togcloud beta data-fusion instances update command:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- --clear-maintenance-window
- These arguments allow users to update maintenance window for their Data Fusion instance by specifying the start time, end time, and recurrence, or clear the maintenance window using--clear-maintenance-window.

Cloud Run

Allows--revision-suffix to be specified with empty string to clearclient-set revision naming.

Cloud SQL

Added--[no-]enable-dataplex-integration flag togcloud sql instances create andgcloud sql instances patch to supportDataplex Integration for Cloud SQL.
Added support for MySQL 8.4.

Cloud Spanner

Promoted--type=DATABASE_CHANGE_QUORUM option ingcloud spanneroperations list to GA.
Fixed the DATABASE_CHANGE_QUORUM type filter string ingcloud spanner operations list.

Cloud Workstations

Addingdisable_ssl_validation support forworkstations start-tcp-tunnelandworkstations ssh.

Compute Engine

Addedgcloud compute routers add-route-policy-term which adds policy term to a Route Policy in Cloud Router.
Promotedgcloud compute routers add-route-policy-term to beta.
Addedgcloud compute routers update-route-policy-term which updates policy term in a Route Policy in Cloud Router.
Promotedgcloud compute routers update-route-policy-term to beta.
Addedgcloud compute routers remove-route-policy-term which removes policy term from Route Policy in Cloud Router.
Promotedgcloud compute routers remove-route-policy-term to beta.
Fixed a bug ingcloud beta compute ssh where a third-party identity subject bearing an '@' sign wouldn't be URL-escaped in the way the OS Login API expects, causing spurious rejection.
Promoted support of flags to--detection-load-threshold,detection-absolute-qps,detection-relative-to-baseline-qps, andtraffic-granularity-configs ingcloud compute security-policies add-layer7-ddos-defense-threshold-config toGA.

Dataproc Metastore

Promoted--min-scaling-factor,--max-scaling-factor, and--autoscaling-enabled flag ofgcloud metastore services create andgcloud metastore services update to GA.

Distributed Cloud Edge

Added--offline-reboot-ttl flag togcloud edge-cloud container clusters create andgcloud edge-cloud container clusters update commands. This flag specifies the maximum duration a node can reboot offline (without connection to Google) and then rejoin its cluster to resume its designated workloads.

Kubernetes Engine

Added flag option--addons=RayOperator to enable/disable the Ray Operator addonfor GKE Standard clusters.
Added flag--[no]-enable-ray-operator to enable/disable the Ray Operatoraddon for GKE Autopilot clusters.
Added flag--[no]-enable-ray-cluster-logging to enable/disable automaticlog collection for Ray clusters when the Ray Operator addon is enabled.
Added flag--[no]-enable-ray-cluster-monitoring to enable/disable automaticmetrics collection for Ray clusters when the Ray Operator addon is enabled.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

483.0.0 (2024-07-02)

Google Cloud CLI

Enabled faster component update mode by default on Linux. This avoidsmaking a backup copy of the installation directory when running certaingcloud components commands, which should significantly improve the timetaken by these operations (including installation and updates).
Fixed issue wheregcloud components update would leave installation in anunusable state when downloading certain components failed.

AlloyDB

Added the following flags togcloud alloydb instances create andgcloud alloydb instances update in alpha and beta:
- --observability-config-enabled
- --observability-config-preserve-comments
- --observability-config-track-wait-events
- --observability-config-max-query-string-length
- --observability-config-record-application-tags
- --observability-config-query-plans-per-minute
- --observability-config-track-active-queries
Promoted AlloyDB Cross Region Replication commands to beta and GA track.Modified commands include: alloydb clusters switchover.
Added creating cross region and project backups support togcloudalloydb backups create command.
Added ability to create clusters with database_version POSTGRES_16 in beta track.

Batch

Release resource-allowances commands to the alpha track.

Cloud Access Context Manager

Promotedgcloud access-context-manager supported-services to GA.

Cloud Filestore

Enable Filestore promote-replica command in GA track.

Cloud Functions

Added--binary-authorization and--clear-binary-authorization flags for2nd gen function in alpha and beta track.

Cloud NetApp

Updatedpsa-range comments ongcloud netapp storage-pools andgcloud netapp volumes to indicate that thepsa-range key is not used and will be ignored.

Cloud SQL

Adding support forclean andif-exists flags to parallel import and single-threaded-export.

Cloud Workstations

Added--vm-tags flag togcloud workstations config create to add tags tothe workstation's underlying VM.

Compute Engine

Promoted--preference flag ofgcloud compute backend-services add-backend andgcloud compute backend-services update-backend to GA.
Promoted--service-lb-policy flag ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promotegcloud compute instances ops-agents to GA.
AddedIDPF to the list ofguestOsFeatures.
Promoted--max-run-duration flag ofgcloud compute instances create to v1.
- Allows specifying the duration of time after which the instance will terminate.
Promoted--termination-time flag ofgcloud compute instances create to v1.
- Allows specifying the timestamp that the instance will terminate.
Promoted--discard-local-ssds-at-termination-timestamp flag ofgcloud compute instances create to v1.
- Allows specifying the option to whether discard attached local SSDs when automatically stopping this VM

Network Security

Renamed FIREWALL_POLICY column to SOURCE_RESOURCE columningcloud networksecurity address-groups list-references command.
Added--purpose flag togcloud alpha/beta network-security address-groups create/update commands.

Secret Manager

Added flag--location and--regional-kms-key-name for secrets to use the regional secrets.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

482.0.0 (2024-06-25)

App Engine

Removed unused python2 dependencies that have CVEs.

Cloud Bigtable

Addsforce option tocbt setgcpolicy.

Cloud Dataflow

Elevate jinja variables to top-level flag in dataflow yaml run.

Cloud Functions

Added--clear-build-service-account flag forgcloud functions deploy.

Cloud Key Management Service

Added--allowed-access-reasons flag togcloud kms keys create to createa key with a Key Access Justifications policy configured.
Added--allowed-access-reasons flag togcloud kms keys update to updatethe Key Access Justifications policy on a key.
Added--remove-key-access-justifications-policy flag togcloud kms keysupdate to remove the Key Access Justifications policy on a key.

Cloud Services

Promotedgcloud services policies add-enable-rules to beta.
Promotedgcloud services policies remove-enable-rules to beta.
Promotedgcloud services policies get to beta.
Promotedgcloud services policies get-effective to beta.
Promotedgcloud services policies test-enabled to beta.
Promotedgcloud services groups list-ancestor-groups to beta.
Promotedgcloud services groups list-descendant-services to beta.
Promotedgcloud services groups list-members to beta.

Compute Engine

Added--size flag togcloud compute instance-groups managed update for v1.
Promoted--confidential-compute-type flag for the commandgcloud compute instance create to GA.
Promoted--performance-monitoring-unit flag for the commandgcloud compute instance-templates create to GA.
Promoted--performance-monitoring-unit flag for the commandgcloud compute instances bulk create to GA.
Promoted--performance-monitoring-unit flag for the commandgcloud compute instances create to GA.

Kubernetes Engine

Updated default kubectl from 1.27.14 to 1.27.15.
Additional kubectl versions:
- kubectl.1.27 (1.27.15)
- kubectl.1.28 (1.28.11)
- kubectl.1.25 (1.29.6)
- kubectl.1.30 (1.30.2)

Network Connectivity

Addedinclude-import-ranges flag to hybrid spoke creation to supportimporting hub subnets.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

481.0.0 (2024-06-18)

Breaking Changes

(Cloud Dataflow) Deprecatedgcloud dataflow sql command group. The command group will be removed by 2025-01-31. SeeBeam YAML andBeam notebooks for alternatives.

AlloyDB

Added another optionASSIGN_IPV4 to flag--assign-inbound-public-ip toenable public IP for an instance togcloud alloydb instances create andgcloud alloydb instances create-secondary.
Added flag--authorized-external-networks to set a list of authorizedexternal networks on an instance togcloud alloydb instances create andgcloud alloydb instances create-secondary.
Added switchover command.

Artifact Registry

Fixed a bug wheregcloud artifacts files downloadandgcloud artifacts generic download would crash.

BigQuery

Addedundelete command for datasets.
Updatedgoogle-auth to version 2.29.0.
Improved authentication error messaging.

Cloud Domains

Implemented the following commands forgcloud domains registrations google-domains-dns
- get-forwarding-config
- export-dns-record-sets

Cloud Filestore

Added--source-instance flag togcloud filestore instances create andgcloud beta filestore instances create command to specify the instancewill be created as a Standby replica of the source-instance.
Addedpromote-replica verb for filestore instances.promote-replicapromotes a standby replication instance to a regular instance.

Cloud Functions

Promoted--build-service-account flag forgcloud functions deploy to GA.

Cloud Identity-Aware Proxy

Promotedgcloud iap regional command to beta and GA.

Cloud Pub/Sub

Promoted--cloud-storage-use-topic-schema flag ofgcloud pubsub subscriptions create to GA. Added the abilityto set whether to use topic schemas in Cloud Pub/Sub to Cloud Storagesubscriptions. For more information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#use-topic-schema.
Promoted--cloud-storage-use-topic-schema flag ofgcloud pubsub subscriptions update. to GA. Added the abilityto update whether to use topic schemas in Cloud Pub/Sub to Cloud Storagesubscriptions. For more information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#use-topic-schema.

Cloud Spanner

Addedgcloud beta spanner instance-partitions command group.
Added--instance-partition flag togcloud beta spanner operations list,gcloud beta spanner operations describe, andgcloud beta spanner operations cancel.

Cloud Storage

Added commands for creating, listing, describing, and deleting folders in buckets with hierarchical namespace enabled:
- Addedgcloud alpha storage folders create which creates folders.
- Addedgcloud alpha storage folders list which lists folders in buckets.
- Addedgcloud alpha storage folders describe which gets the folder's metadata.
- Addedgcloud alpha storage folders delete which deletes folders.
Updated gsutil component to 5.30.

Compute Engine

Promoted--confidential-compute-type flag for the commandgcloud compute instance create to GA.
Added--size flag togcloud compute instance-groups managed update for v1.

Network Connectivity

Updatedgcloud network-connectivity internal-ranges update to support setting and clearing labels.
Added support forinclude-export-ranges to support include filters for VPCspokes.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

480.0.0 (2024-06-11)

App Engine

Updated the Java SDK to version 2.0.28 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.28.

Artifact Registry

gcloud artifacts docker upgrade migrate now automatically creates repos for pkg.dev-based migration.
- Addedgcloud artifacts files delete command.

Cloud Datastream

Added--type and--sqlserver-* flags togcloud datastreamconnection-profiles create|update andgcloud datastream objects lookupcommands to support SQL server source.
Added--type and--sqlserver-* flags togcloud datastreamstreams create|update commands to support SQL server source.
Added--sqlserver-rdbms-file flag and support for SQL Server profile to--connection-profile-object-file togcloud datastream connection-profilesdiscover commands to support SQL server source.

Cloud Domains

Implemented the following commands forgcloud domains registrations
- renew-domain
- initiate-push-transfer

Cloud Functions

Added support for--execution-id flag when used together with--gen2 flag forgcloud functions logs read.

Cloud Healthcare

Addedbeta flag--enable-history-modifications to thefhir-storescreate andfhir-stores update commands.

Cloud IAM

Updatediam service-accounts keys list to return additionalproperties, namely:
- disable_reason: The reason the Service Account Key as been disabled (if applicable)
- extended_status: Additional metadata about the Service Account Key

Cloud Memorystore

Added--zone-distribution-mode and--zone flags togcloud redis clusters create for creating single zone clusters.

Cloud Pub/Sub

Added--bigquery-service-account-email and--cloud-storage-service-account-email flags togcloud pubsub subscriptions create to setthe service account for writing messages to BigQuery and Cloud Storage,respectively.
Added--bigquery-service-account-email and--cloud-storage-service-account-email flags togcloud pubsub subscriptions create to updatethe service account for writing messages to BigQuery and Cloud Storage,respectively.

Cloud Spanner

Added--proto-descriptors-file togcloud spanner databases create command to allow creating database with proto and enum type columns.
Added--proto-descriptors-file togcloud spanner databases ddl update command to allow updating database with proto and enum type columns.
Added--include-proto-descriptors togcloud spanner databases ddl describe command to allow proto descriptors for a database with proto and enum type columns.
Promotedgcloud spanner databases change-quorum command to GA.

Cloud Storage

Adds support of Cross Bucket Replication Feature inalpha track ofgcloud transfer command group.

Cloud Workstations

Added--allowed-ports flag togcloud beta workstations configs create andgcloud beta workstations configs update commands.
Addedenable-nested-virtualizationpool-size andboot-disk-size to--boost-configs flag inbeta workstations configs create andbeta workstations configs update.

Compute Engine

Added support forversion=24.04 andshort-name=ubuntu in--os-types forgcloud beta compute instances ops-agents policies [create|update].
Promoted Tls Early Data in TargetHttpsProxy compute API to v1.
Addedgce_vm_ip_portmap Network Endpoint Group forgcloud compute network-endpoint-groups beta support.
Added--access-mode flag togcloud compute disks create andgcloud compute disks update.
Added--tls-early-data flag togcloud compute v1 target-https-proxies create/update to Tls Early Data field in Target Https Proxy.

Secret Manager

Added--version-destroy-ttl flag togcloud secrets create to let users enable secret version delayed destruction on a secret.
Added--version-destroy-ttl flag togcloud secrets update to let users enable/update secret version delayed destruction on a secret.
Added--remove-version-destroy-ttl flag togcloud secrets update to let users disable secret version delayed destruction on a secret.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

479.0.0 (2024-06-04)

Breaking Changes

(Cloud Dataflow)gcloud dataflow flex-template build for Dataflow Flex Templates in Pythonwith--env FLEX_TEMPLATE_PYTHON_REQUIREMENTS_FILE=/path/to/requirements.txtdefined will runpip check afterpip install while building the containerimage. This will break the build process if newly installed packages overridepre-installed packages with a version that is known to be incompatible withother pre-installed packages. Seehttps://cloud.google.com/dataflow/docs/guides/templates/configuring-flex-templatesfor alternative methods to build a container image withoutpip check.

Artifact Registry

Updatedgcloud artifacts docker images command to include tags as listinstead of string to enable use of--filter=tags=<SearchTerm>.

Cloud Composer

Addedgcloud composer environments check-upgrade command. It checks that an environment upgrade does not fail because of PyPI module conflicts.
Addedgcloud composer environments list-upgrades command. It lists all possible target versions that an existing environment can be upgraded to.

Cloud Dataproc

Updatedgcloud dataproc session-templates export to filter out additionaloutput only fields.

Cloud NetApp

Added--administrators flag togcloud netapp active-directories create andgcloud netapp active-directories update.

Cloud SQL

Added--preferred-secondary-zone flag togcloud sql instances clone command.

Compute Engine

Updated import and export schemas forgcloud compute forwarding-rules.
Promoted--ip-collection flag ofgcloud compute forwarding-rules create to GA.
Promoted--ip-collection-region flag ofgcloud compute forwarding-rules create to GA.

Compute OS Config

Added--allow-missing flag togcloud compute os-config os-policy-assignments update to allow for creationof a new OS policy assignment resource if it does not exist.

Database Migration

Updatedgcloud database-migration connection-profiles create cloudsql to support POSTGRES_16 version option for Cloud SQL connection profiles.

Distributed Cloud Edge

Added add/remove exclusion window flags forgcloud edge-cloud container clusters update to allow users to add/remove exclusion windows where automatic upgrades will be blocked within.

Service Extensions

Added the metadata field to the DEP extensions.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

478.0.0 (2024-05-29)

Google Cloud CLI

Improved error message for authentication errors.
Improved error message for service account impersonation refresh errors.
Fixed issue where some commands with a--uri flag would produce no output.

App Engine

Enable fetch_instance_after_connect_error for compute start-iap-tunnel in GA.
Allow IAP tunneling for instances with external IP when explicitly enabled via flag.

App Engine Flexible Environment

Enable fetch_instance_after_connect_error for compute start-iap-tunnel in GA.
Allow IAP tunneling for instances with external IP when explicitly enabled via flag.

Artifact Registry

Addedgcloud artifacts files describe command.

Backup For GKE

Added--volume-data-restore-policy-bindings flag togcloud container backup-restore restore-plans create andgcloud container backup-restore restore-plans update to enhancevolume restore flexibility.
Added--volume-data-restore-policy-overrides-file flag togcloud container backup-restore restores create to enhancevolume restore flexibility.
Added--permissive-mode flag togcloud container backup-restore backup-plans create andgcloud container backup-restore backup-plans update to enable bypassingthe new backup-time restorability enforcement.
Added--filter-file flag togcloud container backup-restore restores createto support Backup for GKE fine-grained restore.
Added--restore-order-file flag togcloud <alpha|beta> container backup-restore restore-plans createandgcloud <alpha|beta> container backup-restore restore-plans update tosupport custom ordering while performing restore as part of Backup for GKE.
Added the following enum values for the flag--namespaced-resource-restore-modetogcloud <alpha|beta> container backup-restore restore-plans create andgcloud <alpha|beta> container backup-restore restore-plans update to expandnamespaced resource restore mode options:
- merge-skip-on-conflict
- merge-replace-volume-on-conflict
- merge-replace-on-conflict
Deprecated--substitution-rules-file flag.Use--transformation-rules-file instead.

BigQuery

Added support formap_target_type with external parquet tables.
Added support forcolumn_name_character_map to map special characters incolumn names during load jobs.
Added a printout of unreachable locations when datasets and jobs are listedand a region is down.

Cloud Dataplex

Promotedgcloud dataplex aspect-types command group to GA.
Promotedgcloud dataplex entry-groups command group to GA.
Promotedgcloud dataplex entry-types command group to GA.

Cloud Deploy

Fixed issue where skaffold files generated fromdeploy releases create flags did not include all profiles in the release's Delivery Pipeline.

Cloud Firestore

Promoted Cloud Firestore Backups and Restoregcloud CLI changes to beta.
- Promotedgcloud firestore backups list command to beta.
- Promotedgcloud firestore backups describe command to beta.
- Promotedgcloud firestore backups delete command to beta.
- Promotedgcloud firestore backups schedules create command to beta.
- Promotedgcloud firestore backups schedules update command to beta.
- Promotedgcloud firestore backups schedules describe command to beta.
- Promotedgcloud firestore backups schedules delete command to beta.
- Promotedgcloud firestore backups schedules list command to beta.
- Promotedgcloud firestore databases restore command to beta.
Promoted Cloud Firestore Backups and Restoregcloud CLI changes to GA.
- Promotedgcloud firestore backups list command to GA.
- Promotedgcloud firestore backups describe command to GA.
- Promotedgcloud firestore backups delete command to GA.
- Promotedgcloud firestore backups schedules create command to GA.
- Promotedgcloud firestore backups schedules update command to GA.
- Promotedgcloud firestore backups schedules describe command to GA.
- Promotedgcloud firestore backups schedules delete command to GA.
- Promotedgcloud firestore backups schedules list command to GA.
- Promotedgcloud firestore databases restore command to GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.7
- Fixes unexpected responses from nested queries in Datastore Mode.
- Add Auth Context support for Firestore triggers (2nd gen) in Firestore Emulator

Cloud Functions

Added validation to--runtime-update-policy argument.

Cloud SQL

Added PostgreSQL 16 to database versions.
Fixed issue wheregcloud sql instances export andgcloud sql instancesimport would display only the operationselfLink field instead of the wholeoperation when run asynchronously with--async, regardless of the--formatflag specified.
- This behavior is now consistent with othergcloud sql instances commands.
- To display only theselfLink field, use--format="value(selfLink)".

Cloud Workstations

Adding--env flag togcloud workstations create.

Compute Engine

AddedIPV6_ONLY option to--stack-type flag ofgcloud compute vpn-gateways create command to create an IPv6-only VPN gateway.

Config Connector

Updated Google Cloud Config Connector to version 1.118.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Updatedgcloud database-migrate connection-profiles update to update Database Migration Service connection profile for SQL Server to Cloud SQL-SQL Server migrations.
Updatedgcloud database-migrate migration-jobs update to update Database Migration Service migration job for SQL Server to Cloud SQL-SQL Server migrations.

Dataproc Metastore

Added--deletion-protection flags togcloud metastore services create GArelease track to allow creating a Dataproc Metastore instancewith delete protection.
Added--deletion-protection and--no-deletion-protection flags togcloud metastore services update GA release track to allow updatinga Dataproc Metastore instance with delete protection.

Security Command Center

Added--filter-modules flag ingcloud scc manage services describe ... api to filter response by modules.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

477.0.0 (2024-05-21)

Anthos

To support second device login ingcloud anthos auth command.

Cloud Functions

Fixed issue wheregcloud functions deploy would crash on disconnecting vpc connector when--clear-vpc-connector flag was specified.

Cloud Memorystore

Added--[no-]deletion-protection flag togcloud redis clusters create andgcloud redis clusters updateto allow enabling/disabling deletion protection for Redis Clusters.

Cloud SQL

When creating a replica instance withgcloud sql instances create --edition=enterprise-plus,infer--tier from the primary instance if--tier is not provided for newdatabase types.

Compute Engine

Added support for adding labels to the disk in the following commands:
- gcloud beta compute instances create
- gcloud beta compute instance-templates create
- gcloud beta compute instances create-with-container
- gcloud beta compute instance-templates create-with-container.
Added support for--resource-policies in the following commands:
- gcloud compute instances create-with-container
- gcloud compute instance-templates create-with-container.
Changed allgcloud compute list commands to log a warning instead of raising an exception when receiving an empty response from AggregatedList requests, even if there are partial errors.

Declarative Workflows

Fixed issue where usinggcloud beta resource-config bulk-export with certain--resource-types values (e.g.ComputeVPNTunnel,ComputeURLMap) wouldfail withINVALID_ARGUMENT when looking up the resources in Cloud AssetInventory.

GKE Hub

Support--security-posture=enterprise flag ingcloud container fleet create,gcloud container fleet update in beta and GA track.
Support--security-posture=enterprise flag ingcloud container hub create,gcloud container hub update in beta and GA track.

Kubernetes Engine

Added flags--[no]-enable-insecure-kubelet-readonly-port and--[no]-autoprovisioning-enable-insecure-kubelet-readonly-port`to enable/disable the insecure Kubelet readonly port on clustersand node-pools.
Increased maximum argument to--num-nodes flag ofgcloud container clusters create from 1000 to 2000.
Updated default kubectl from 1.27.13 to 1.27.14.
Additional kubectl versions:
- kubectl.1.27 (1.27.14)
- kubectl.1.28 (1.28.10)
- kubectl.1.25 (1.29.5)
- kubectl.1.30 (1.30.1)

Network Connectivity

Addedgcloud network-connectivity policy-based-routes to beta.
Added IPV6 option to--protocol-version flag ofgcloud network-connectivitypolicy-based-routes.

Network Security

Renamed FIREWALL_POLICY column to SOURCE_RESOURCE column ingcloud betanetworksecurity address-groups list-references command.
Added security policies in the output ofgcloud beta networksecurityaddress-groups list-references command.

Vmware Engine

AddedGOOGLE_CLOUD_NETAPP_VOLUMES option to--peer-network-type flag ofgcloud vmware network-peerings create to allow peering with Google CloudNetApp Volumes projects.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

476.0.0 (2024-05-14)

Google Cloud CLI

Updatedpyopenssl package to version 24.0.0 to enablecryptographyversion 42.0.5.

AlloyDB

Added flag--assign-inbound-public-ip to enable or disable public IP for aninstance togcloud alloydb instances create-secondary.
Added flag--ssl-mode to configure an instance's SSL mode togcloud alloydb instances create-secondary.
Added flag--require-connectors to enforce whether or not all connectionsneed to come from connectors (e.g. AlloyDB Auth Proxy) togcloud alloydb instances create-secondary.

App Engine

Use java21 as the default runtime for app.yaml generated configuration.This change is compatible withgcloud app deploy command, when there isno app.yaml configuration for Java projects (Maven, or Gradle, or simple jar).Instead of using a java17 runtime target, App Engine deploys the applicationusing the java21 runtime with an F2 instance class. To continue using the java17runtime, create an app.yaml file, and specifyruntime: java17.
Updated the Java SDK to version 2.0.27 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.27.

Cloud Bigtable

Rebuilding cbt cli with golang.org/x/net 0.24.0 which fixed CVE-2023-45288.
Added Authorized Views feature.

Cloud Dataplex

Addedgcloud dataplex entries commands which allow manipulating DataplexCatalog Entries.

Cloud Infrastructure Manager

Added--annotations flag forgcloud infra-manager previews create andgcloud infra-manager deployments apply commands.

Cloud Key Management Service

Added a new valueec-sign-ed25519 to the flagdefault-algorithm to support the asymmetric signing algorithmED25529 throughgcloud kms keys create|update andgcloud kms keys versions import.

Cloud Logging

Promotedgcloud logging views get-iam-policy command to GA.
Promotedgcloud logging views set-iam-policy command to GA.
Promotedgcloud logging views add-iam-policy-binding command to GA.
Promotedgcloud logging views remove-iam-policy-binding command to GA.

Cloud NetApp

Added--allow-auto-tiering togcloud beta netapp storagepools to allow storage pool enable auto tiering.
Added--tiering-policy togcloud beta netapp volumes to allow volume enable auto tiering.

Cloud Run

gcloud run jobs deploy --source has been fixed.

Cloud Storage

Updated gsutil component to 5.29.

Compute Engine

Deprecatedgcloud compute instances move. Seehttps://cloud.google.com/compute/docs/instances/moving-instance-across-zones for an alternative method.
Fixed inconsistency in IPv6 flag support forgcloud compute instances create-with-container andgcloud compute instance-templates create-with-container commands. Changes include added support for--internal-ipv6-address and--internal-ipv6-prefix-length flags, as well asstack-type, andipv6-network-tier arguments for--network-interface flag.
Fixed inconsistency in reservation flag support forgcloud compute instances create-with-container andgcloud compute instance-templates create-with-container commands. Changes include added support for--reservation and--reservation-affinity flags.
Addedspecific-then-any-reservation andspecific-then-no-reservation to the flag--reservation-affinity for alpha and beta ingcloud compute instances create andgcloud compute instance-templates create-with-container commands.
Promoted--mode flag ofgcloud compute public-delegated-prefixes create to GA.
Promoted--allocatable-prefix-length flag ofgcloud compute public-delegated-prefixes create to GA.
Promoted--mode flag ofgcloud compute public-delegated-prefixes delegated-sub-prefixes create to GA.
Promoted--allocatable-prefix-length flag ofgcloud compute public-delegated-prefixes delegated-sub-prefixes create to GA.
Addedgcloud compute routers add-route-policy which creates an empty Route Policy in Cloud Router.
Promotedgcloud compute routers add-route-policy to beta.
Addedgcloud compute routers get-route-policy which describe Route Policy from Cloud Router.
Promotedgcloud compute routers get-route-policy to beta.
Addedgcloud compute routers download-route-policy which downloads Cloud Router's Route Policy into a file.
Promotedgcloud compute routers download-route-policy to beta.
Addedgcloud compute routers list-bgp-routes which lists the routes advertised and learned on individual BGP sessions, both pre- and post-policy evaluation.
Promotedgcloud compute routers list-bgp-routes to beta.
Addedgcloud compute routers list-route-policies which lists all Route Policy within Cloud Router.
Promotedgcloud compute routers list-route-policies to beta.
Addedgcloud compute routers remove-route-policy which removes Cloud Router's Route Policy.
Promotedgcloud compute routers remove-route-policy to beta.
Addedgcloud compute routers upload-route-policy which uploads Route Policy from a file and adds it to Cloud Router.
Promotedgcloud compute routers upload-route-policy to beta.
Added--import-policies and--export-policies flags togcloud compute routers add-bgp-peer andgcloud compute routers update-bgp-peer to apply Cloud Router's Route Policies to Cloud Router Bgp Peer.
Promoted--import-policies and--export-policies flags ofgcloud compute routers add-bgp-peer andgcloud compute routers update-bgp-peer to beta.
Added--bgp-identifier-range flag togcloud compute routers create andgcloud compute routers update.
Added--enable-ipv4,--ipv4-nexthop-address, and--peer-ipv4-nexthop-address flags togcloud compute routers add-bgp-peer andgcloud compute routers update-bgp-peer.
Added--ip-version flag togcloud compute routers add-interface andgcloud compute routers update-interface. Additionally,--ip-address flag of these commands will now accept IPv6 addresses.
Promoted--maintenance-interval flag forgcloud compute sole-tenancy node-groups create to GA.
Promotedgcloud compute sole-tenancy node-groups perform-maintenance to GA.
Added--terraform-script-output-file,--exclusion-patterns-file and--export-exclusion-patterns flags togcloud (alpha|beta) compute firewall-rules migrate commands.

Database Migration

Updatedgcloud database-migration connection-profiles create cloudsql to support MySQL_8_0_36 minor version option for Cloud SQL connection profiles.

Eventarc

Removedgcloud beta eventarc, including warnings and errors. User are expected to usegcloud eventarc instead.

Kpt

Updated kpt to v1.0.0-beta.50. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.50 for more details.

Kubernetes Engine

Updated default kubectl from 1.26.15 to 1.27.13.
Additional kubectl versions:
- kubectl.1.27 (1.27.13)
- kubectl.1.28 (1.28.9)
- kubectl.1.29 (1.29.4)
- kubectl.1.30 (1.30.0)

Network Connectivity

Added--policy-mode and--preset-topology flags togcloud network-connectivity hubs create.
Addedgcloud network-connectivity hubs groups update.

Security Command Center

Deprecatedread-time andcompare-duration flags from thefindings list andfindings group commands.
Promoted management apigcloud scc manage services ... commands to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

475.0.0 (2024-05-07)

Google Cloud CLI

Enabled faster component update mode by default on macOS. This avoidsmaking a backup copy of the installation directory when running certaingcloud components commands, which should significantly improve the timetaken by these operations (including installation and updates).
- If for some reason this change causes problems, please file a bug report.One can temporarily revert to the legacy update mode viagcloud config setexperimental/fast_component_update False or by setting the environmentvariableCLOUDSDK_EXPERIMENTAL_FAST_COMPONENT_UPDATE=False (it may benecessary to first reinstall thegcloud CLI either from scratch or byrunninggcloud components reinstall). Note that the faster update modewill eventually become the default on all platforms at which point thefast_component_update mode property will be removed.
- Since thegcloud CLI no longer makes a full copy of the installationdirectory to allow for this performance improvement,gcloud componentsrestore has been deprecated. However, equivalent functionality can beachieved viagcloud components update --version=<previous version> orgcloud components reinstall, depending on whether one needs to restore anearlier version or reinstall the current version, respectively.

Anthos Multi-Cloud

Updatedgcloud container attached clusters register to fail when using--has-private-issuer with--distribution=eks.

Artifact Registry

Fixed bug wheregcloud artifacts docker upgrade migrate sometimes excluded bucket auth from generated IAM policies.

Cloud Build

Modifiedgcloud builds submit to support submitting a build with a Developer Connect GitRepositoryLink resource.

Cloud Dataflow

Promotedgcloud dataflow yaml run to GA.

Cloud Datastream

Fix bug where append only flag not recognized in BiQueryDestinationConfig.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.6
- Added--import-data and--export-on-exit flags.
- Fixed few bugs regarding transactions, including: read only commits, retriable transactions and contention errors on commits.

Cloud NetApp

Added flex as a--service-level option duringgcloud netapp storage-pools create.

Compute Engine

Promoted dual stack IPv6 support forgcloud compute instances create-with-container andgcloud compute instance-templates create-with-container to GA.

Network Connectivity

Promote Regional API Endpoints to GA.
Added--export-psc and--no-export-psc flags togcloud network-connectivity hubs create andgcloud network-connectivity hubs update.

Network Security

Fixedgcloud network-security tls-inspection-policies import not recognizingminTlsVersion andtlsFeatureProfile.
Fixedgcloud network-security tls-inspection-policies export not recognizingminTlsVersion andtlsFeatureProfile.

Security Command Center

Removed misleading documentation ingcloud scc findings create command that implyfindings can be created at folder and project level. This command only allows findingsto be created under an organization.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

474.0.0 (2024-04-30)

Breaking Changes

(Cloud Run)gcloud run jobs deploy is not working with source builds in this release.Rungcloud builds submit and thengcloud run jobs deploy with the generated image, or use Google Cloud CLI version 472 or earlier.

AI

Added more choice options to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tunining-jobs, including: africa-south1, europe-west12, me-central1, me-central2 and us-east5.

AlloyDB

Updatedgcloud beta alloydb clusters create-secondary to support automatedbackup policy.
Added flags--maintenance-window-day and--maintenance-window-hour to configurepreferred maintenance window for a cluster to commandsgcloud alloydb clusters create andgcloud alloydb clusters update.
Added flag--maintenance-window-any to remove preferred maintenance windowfor a cluster togcloud alloydb clusters update.

Artifact Registry

Addedgcloud artifacts generic upload to support uploading to a Generic Repository.
Addedgcloud artifacts generic download to support downloading to a Generic Repository.

Cloud DNS

Modified--description flag ofgcloud dns managed-zones create to be optional instead of required. If not set, the managed zone's description will be empty.

Cloud Monitoring

Added--service-agent-auth flag togcloud monitoring uptime commands.

Compute Engine

Added--tls-early-data flag togcloud compute alpha/beta target-https-proxies create/update to Tls Early Data field in Target Https Proxy.
Addedgcloud compute project-zonal-metadata for managing project zonalmetadata. Documentation of this feature is available athttps://cloud.google.com/compute/docs/metadata/setting-custom-metadata#set-custom-project-zonal-metadata.
Promoted--stack-type flag ofgcloud compute interconnects attachments partner create to GA. Flag defines the stack type of partner interconnect attachment.
Promoted--stack-type flag ofgcloud compute interconnects attachments partner update to GA. Flag defines the stack type of interconnect attachment.
Addedproducer-port argument when creating PSC NEGs. This is an optional field, and used to specify the port the PSC NEG will consume traffic from the PSC Producer.
Promoted the flag of--partner-metadata and--partner-metadata-from-file to beta in:
- gcloud compute instance-templates create.
- gcloud compute instances create.
- gcloud compute instances update.
Promotedgcloud compute instances add-partner-metadata command to beta.
Promotedgcloud compute instances patch-partner-metadata command to beta.
Promotedgcloud compute instances remove-partner-metadata command to beta.
Promoted the flag of--view to beta in:
- gcloud compute instance-templates list
- gcloud compute instance-templates describe.
- gcloud compute instances list
- gcloud compute instances describe.

Firebase Test Lab

Promoted--resign flag ofgcloud firebase test android run to GA. Thisflag allows clients to specify if Robo should re-sign the app-under-test APK.

Kubernetes Engine

Updated kubectl versions:
- kubectl.1.26 (1.26.15)
- kubectl.1.27 (1.27.13)
- kubectl.1.28 (1.28.9)
- kubectl.1.29 (1.29.4)
- kubectl.1.30 (1.30.0)
Updated help text for--cluster-ipv4-cidr to clarify that this flag is notapplicable in a Shared VPC setup.

Network Services

Promotedgcloud network-services service-lb-policies to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

473.0.0 (2024-04-23)

Breaking Changes

(Cloud Domains) Changed the default setting of DNSSEC to disabled when using the Cloud DNS Zone ingcloud domains registrations configure dns command. It's unsafe to enable it by default.

Google Cloud CLI

Enabled faster component update mode by default on Windows. This avoidsmaking a backup copy of the installation directory when running certaingcloud components commands, which should significantly improve the timetaken by these operations (including installation and updates).
- If for some reason this change causes problems, please file a bug report.One can temporarily revert to the legacy update mode viagcloud config setexperimental/fast_component_update False or by setting the environmentvariableCLOUDSDK_EXPERIMENTAL_FAST_COMPONENT_UPDATE=False (it may benecessary to first reinstall thegcloud CLI either from scratch or byrunninggcloud components reinstall). Note that the faster update modewill eventually become the default on all platforms at which point thefast_component_update mode property will be removed.
- Since thegcloud CLI no longer makes a full copy of the installationdirectory to allow for this performance improvement,gcloud componentsrestore has been deprecated. However, equivalent functionality can beachieved viagcloud components update --version=<previous version> orgcloud components reinstall, depending on whether one needs to restore anearlier version or reinstall the current version, respectively.
Updated Windows PuTTY executables to version 0.81.

Artifact Registry

Added file name togcloud artifacts files download progress message.

Backup For GKE

Added a new commandgcloud container backup-restore backups get-backup-index-download-url.

Cloud Composer

Added--image-version togcloud composer environments update to upgrade composer environment to a newer composer version.

Cloud Domains

Deprecated--unsafe-dns-update flag fromgcloud domains registrations configure dns command.

Cloud IAM

Added--extra-attributes-client-id flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupclient id for extra attributes oauth2 flow.
Added--extra-attributes-client-secret-value flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupclient secret for extra attributes oauth2 flow.
Added--extra-attributes-issuer-uri flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupissuer uri for extra attributes oauth2 flow.
Added--extra-attributes-type flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupattributes type for extra attributes oauth2 flow.
Added--extra-attributes-filter flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupfilter for extra attributes oauth2 flow.
Added--clear-extra-attributes-config flag togcloud iam workforce-pools providers update-oidc which allow user to clearextra attributes oauth2 config.

Cloud NetApp

Added flex service level togcloud beta netapp storage-pools create, and changed throughput rate descriptions to match those ofhttps://cloud.google.com/netapp/volumes/docs/configure-and-use/storage-pools/overview#service_levels.

Cloud Run

Promoted--network,--subnet,--network-tags,--clear-network and--clear-network-tags flags in all commands to GA.

Compute Engine

Fixed a bug where an incorrect error message shown when attempting to specify multiple storage locations ongcloud compute snapshot-settings update command.
Added commands<get|set>-iam-policy and<add|remove>-iam-policy-bindings togcloud compute backend-buckets for GA.

Kubernetes Engine

Promote--containerd-config-from-file flags to GA in container cluster and node-pools creation.

Privileged Access Manager

Addedgcloud beta pam command group which helps manage Privileged AccessManager (PAM) entitlements and grants.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

472.0.0 (2024-04-16)

AI

Promotedgcloud ai persistent-resources to GA.
Addedgcloud ai persistent-resources reboot which allows a user to reboota Persistent Resource.
Promoted--persistent-resource-id flag ofgcloud ai custom-jobs createto GA.

AlloyDB

Added flag--enable-private-service-connect to enable Private Service Connect for a cluster to the following commands in the GA track:
- gcloud alloydb clusters create
- gcloud alloydb clusters restore
Added flag--allowed-psc-projects to set a list of allowed consumer projects on an instance in a cluster with Private Service Connect enabled to the following commands in the GA track:
- gcloud alloydb instances create
- gcloud alloydb instances update

App Engine

Updated dependencies to latest versions.
Removed obsolete python2 support code fragments.
Fixed an issue with local images API emulator in devappserver.

Artifact Registry

Added support for domain-scoped projects togcloud artifacts docker upgrade migrate.

BigQuery

Fixed incorrect help text ofmk andupdate.
Added--null_marker flag for creating external tables.
Fixed a bug when using--use_google_auth on Windows.
Switched to using Google Auth by default for users authenticating with P12 service account keys. To revert to the old behavior, run the command with--nouse_google_auth. Note that the P12 key format has been deprecated and the new JSON key format is recommended. For more information, seehttps://cloud.google.com/sdk/crypto.

Certificate Manager

Added--allowlisted-certificates flag togcloud certificate-manager trust-configs create.
Added--add-allowlisted-certificates,--remove-allowlisted-certificates and--clear-allowlisted-certificates flags togcloud certificate-manager trust-configs update.

Cloud Build

Added--polling-interval argument togcloud builds submit.

Cloud Datastream

Fix list connection profiles to show all connection profile types.
UpdatedBigQueryDestinationConfig with new fields (currently experimental).
Updated schemas.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.5
- Import and export entities now supported in gcloud CLI for Datastore Mode.

Cloud Infrastructure Manager

Added--file flag togcloud infra-manager deployments import-statefileto upload statefile for a deployment.

Cloud NetApp

Fixed bug duringgcloud netapp volumes update --backup-config=enable-scheduled-backups=false that wasn't correctly updating update mask.

Cloud SQL

Published Cloud SQL Auth Proxy v2 binary as newcloud-sql-proxy Cloud SDKcomponent.cloud-sql-proxy contains utilities for connecting securely toyour Cloud SQL instances. It may be installed withgcloud components install cloud-sql-proxy and is recommended overcloud_sql_proxy (v1) which will be removed at a later date. Seehttps://github.com/GoogleCloudPlatform/cloud-sql-proxy/blob/main/migration-guide.mdfor help migrating.

Cloud Spanner

Added flagtarget-config to support moving instance to a different instance config ingcloud CLI and introducedgcloud spanner instances move command. Promoted the same to GA.

Compute Engine

Modifiedlocation flag fromgcloud compute connect-to-serial-port command to use region fromzone flag as location iflocation is unspecified.
Addedtarget-service argument when creating PSC service attachments and treated as a mutually exclusive group with the existing argumentproducer-forwarding-rule.
Promoted--gateway-ip-version flag ofgcloud compute vpn-gateways create to GA.
Promoted--interface to use IPv6 address flag ofgcloud compute external-vpn-gateways create to GA.
Now allgcloud compute commands allow regions down and return the partial results by default when sending an AggregatedList requests. Users can turn off this feature by settingcompute/allow_partial_error property to false.

Database Migration

Added--skip-validation param togcloud database-migration migration-jobs resumeto allow resuming migration jobs without running validations.

Dataproc Metastore

Addedgcloud metastore services migrations command group to manage the migration to a Dataproc Metastore service.
- gcloud metastore services migrations start
- gcloud metastore services migrations complete
- gcloud metastore services migrations cancel
- gcloud metastore services migrations describe
- gcloud metastore services migrations list
- gcloud metastore services migrations delete
Added--min-scaling-factor,--max-scaling-factor, and--autoscaling-enabled flags togcloud metastore services create andgcloud metastore services update alpha and beta release track to allow updating the autoscaling configuration of a Dataproc Metastore instance.
Updated--scaling-factor help text.

Eventarc

Removedgcloud beta eventarc. User are expected to usegcloud eventarc instead.

Workbench

AddedNVIDIA_L4 option to--accelerator-type flag ofworkbench instances.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

471.0.0 (2024-04-02)

AI

Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.

AlloyDB

Added flag--assign-inbound-public-ip to enable or disable public IP for aninstance to the following commands in the GA track:
- gcloud alloydb instances create
- gcloud alloydb instances update
Added flag--authorized-external-networks to set a list of authorizedexternal networks on an instance togcloud alloydb instances update in theGA track.

App Engine

Updated the Java SDK to version 2.0.26 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.26.

BigQuery

Downgraded urllib3 to version1.26.9 be compatible with the request lib.

Certificate Authority Service

Added Subject Key Id field to argumentsgcloud privateca roots create toallow usage of a custom subject key id for root certificate authorities.
Added Subject Key Id field to argumentsgcloud privateca subordinates create toallow usage of a custom subject key id for subordinate certificate authorities.
Added Subject Key Id field to argumentsgcloud privateca certificates create toallow usage of a custom subject key id for certificates.
Added maximum lifetime argument togcloud privateca templates create toallow configuring maximum lifetime restriction using certificate templates.

Certificate Manager

AddedallowlistedCertificates property tocertificate-manager trust-configs import andcertificate-manager trust-configs export.

Cloud Bigtable

Rebuilt cbt cli with google.golang.org/protobuf version 1.33.0 which fixed CVE-2024-24786.

Cloud Bigtable Emulator

Rebuilt cbt cli with google.golang.org/protobuf version 1.33.0 which fixed CVE-2024-24786.

Cloud Composer

Addedgcloud beta composer environments list-workloads to display Composer workloads list.
Addedgcloud beta composer environments user-workloads-config-maps create to create a user workloads ConfigMap.
Addedgcloud beta composer environments user-workloads-config-maps delete to delete a user workloads ConfigMap.
Addedgcloud beta composer environments user-workloads-config-maps describe to get details about a user workloads ConfigMap.
Addedgcloud beta composer environments user-workloads-config-maps list to list user workloads ConfigMaps.
Addedgcloud beta composer environments user-workloads-config-maps update to update a user workloads ConfigMap.
Addedgcloud beta composer environments user-workloads-secrets create to create a user workloads Secret.
Addedgcloud beta composer environments user-workloads-secrets delete to delete a user workloads Secret.
Addedgcloud beta composer environments user-workloads-secrets describe to get details about a user workloads Secret.
Addedgcloud beta composer environments user-workloads-secrets list to list user user workloads Secrets.
Addedgcloud beta composer environments user-workloads-secrets update to update a user workloads Secret.

Cloud Deploy

Updatedgcloud deploy apply to accept the Automation resource YAML configuration with the field names in the API proto.

Cloud Infrastructure Manager

Added--file flag togcloud infra-manager deployments export-statefileto download statefile with a custom file name/path or by default to a filenamedstatefile if only file path is provided.

Cloud Memorystore

Add--node-type flag toredis clusters create to add the ability tocreate clusters with different node types.

Cloud NetApp

Added--backup-config and--source-backup togcloud netapp volumes to allow scheduled backups and create volume from backup workflow.

Cloud Pub/Sub

Promoted--cloud-storage-file-datetime-format flag ofgcloud pubsub subscriptions create to GA. Added the ability to set customCloud Storage filename datetimes in Cloud Pub/Sub to Cloud Storagesubscriptions. For more information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#file_names.
Promoted--cloud-storage-file-datetime-format flag ofgcloud pubsub subscriptions update to GA. Added the ability to updatecustom Cloud Storage filename datetimes in Cloud Pub/Sub to Cloud Storagesubscriptions. For more information, seehttps://cloud.google.com/pubsub/docs/create-cloudstorage-subscription#file_names.

Cloud Run

Updated integration name generation logic to use the integration type followedby 4 digit hash.

Cloud SQL

Support for designating a disaster recovery replica ingcloud sql instancespatch command using--failover-dr-replica-name flag is in beta.

Compute Engine

Addedgcloud compute storage-pools andgcloud compute storage-pools-typescommand groups which can read Compute storage pools and storage pool types.Documentation of the storage pools will be available athttps://cloud.google.com/compute/docs/disks/storage-pools.

Compute OS Config

Addedgcloud compute os-config project-feature-settings commands that allowto view and change the project feature settings.

Database Migration

Addedgcloud database-migrate connection-profiles create sqlserver which creates a Database Migration Service connection profile for SQL Server.
Updatedgcloud database-migrate migration-jobs create to create Database Migration Service migration job for SQL Server to Cloud SQL-SQL Server migrations.
Added--dump-type togcloud database-migrate migration-jobs create to allow creating a migration job with PHYSICAL or LOGICAL dump type.
Added--dump-type togcloud database-migrate migration-jobs update to allow updating a migration job with PHYSICAL or LOGICAL dump type.

GKE Hub

Updatedgcloud container fleet scopes list to return Fleet Scopes permitted to be viewed by the caller.
Addedgcloud container fleet scopes list-memberships SCOPE to return Fleet Memberships bound to SCOPE.

Kubernetes Engine

Added--additive-vpc-scope-dns-domain and--disable-additive-vpc-scope flagstogcloud container clusterscreate,create-auto andupdate.
Added--security-posture=enterprise flag togcloud container clusters create,gcloud container clusters create-auto, andgcloud container clusters update to enable GKE Threat Detection.

Regional Endpoints

Add optionaladdress input flag togcloud beta networkconnectivity regional-endpoints create.

Workbench

Fixed issue withgcloud workbench instances failing whenaccelerator-type flag is set toNVIDIA_A100_80GB.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

470.0.0 (2024-03-26)

Breaking Changes

(App Hub) Fixed issue wheregcloud apphub discovered-services lookup --location=LOCATION --uri=URI was formatting result as list to stdout.
(App Hub) Fixed issue wheregcloud apphub discovered-workloads lookup --location=LOCATION --uri=URI was formatting result as list to stdout.

AlloyDB

Updatedgcloud beta alloydb clusters create-secondary to support continuousbackup configuration.

App Engine

Updated the Pythondevappserver to version 1.9.111.

Artifact Registry

Fixed issue wheregcloud artifacts docker upgrade migrate returned wrong IAM policy bindings.

BigQuery

Addeduse_google_auth to use the Google Auth libraries for authentication.

Cloud Bigtable

Promotedgcloud bigtable authorized-views create to GA.
Promotedgcloud bigtable authorized-views describe to GA.
Promotedgcloud bigtable authorized-views list to GA.
Promotedgcloud bigtable authorized-views update to GA.
Promotedgcloud bigtable authorized-views delete to GA.
Promotedgcloud bigtable authorized-views get-iam-policy to GA.
Promotedgcloud bigtable authorized-views set-iam-policy to GA.
Promotedgcloud bigtable authorized-views add-iam-policy-binding to GA.
Promotedgcloud bigtable authorized-views remove-iam-policy-binding to GA.

Cloud Build

Add--service-account option togcloud builds submit.

Cloud Composer

Added--network-attachment togcloud composer beta environments create to specify network attachment.
Added--support-web-server-plugins togcloud composer beta environments create to enable/disable the support for web server plugins.
Added--enable-private-builds-only togcloud composer beta environments create/update to enable only private connectivity to Google services for Python packages.
Added--disable-private-builds-only togcloud composer beta environments create/update to disable only private connectivity to Google services for Python packages.
Added--disable-vpc-connectivity togcloud composer beta environments create/update to disable connectivity with a user's VPC network.
Added--enable-private-environment togcloud composer beta environments create/update to disable internet connection from any Composer component.
Added--disable-private-environment togcloud composer beta environments create/update to enable internet connection from any Composer component.
Added--composer-internal-ipv4-cidr-block togcloud composer beta environments create/update to specify the IP range in CIDR notation to use internally by Cloud Composer.
Added--clear-maintenance-window togcloud composer beta environments update to clear the maintenance window settings.
Added--dag-processor-storage togcloud composer beta environments create/update to specify the storage allocated to Airflow dag processor.
Added--dag-processor-count togcloud composer beta environments create/update to specify the number of dag processors.
Added--dag-processor-cpu togcloud composer beta environments create/update to specify the CPU allocated to Airflow dag processor.
Added--dag-processor-memory togcloud composer beta environments create/update to specify the memory allocated to Airflow dag processor.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.4
- Fixes minor reserve ids bug in Datastore Mode
- Addreset endpoint for Datastore Mode

Cloud Logging

Addinclude-children flag togcloud logging sinks update command to export logs from descendant resources.
Addintercept-children flag togcloud logging sinks create command to intercept logs from descendant resources.
Addintercept-children flag togcloud logging sinks update command to intercept logs from descendant resources.
Addsink-filter flag togcloud logging sinks list command.

Cloud Memorystore

Addredis_7_2 enum togcloud redis instances create andgcloud redis instances upgrade to support redis version 7.2 instancecreate/upgrade.
Add--redis-config flag toredis clusters create to add the ability to specify Redis config when creating a redis cluster.
Add--update-redis-config flag toredis clusters update to update Redis config for existing clusters.
Add--remove-redis-config flag toredis clusters update to remove Redis config for existing clusters.

Cloud Run

Addedvertex-genai integration type togcloud beta run integrationscommand group.
Addedcloudsql integration type togcloud beta run integrationscommand group.

Cloud SQL

Added--[no-]enable-google-ml-integration flag togcloud sql instances createandgcloud sql instances patch to support Vertex AI Integrationfor Cloud SQL. This is currently only supported in Postgres instances.

Cloud Storage

Promotedmanaged-folders command group to GA.
Promoted--include-managed-folders flag forcp,mv, andrsync to GA.
Promoted--exclude-managed-folders flag forrm to GA.

Cloud Workstations

Added--boost-configs flag tobeta workstations configs create andbeta workstations configs update and--boost flag tobeta workstations start.
Promoted--accelerator-count and--accelerator-type flags ofgcloud workstations configs create andgcloud workstations configs update toGA.

Compute Engine

Promoted--resource-manager-tags flag ofcompute instance-groups managed createto beta. Flag allows creating Managed Instance Group with Resource Manager Tags.
Promoted--image-zone flag ofgcloud compute images list to beta.
Changed OS Login metadata for certificates toenable-oslogin-certificates instead ofrequire-oslogin-certificates.
Promoted--no-address flag in--network-interface ofgcloud compute instances bulk create to GA.
Fixed a bug when parsing the scope of the disk type ifreplica-zonescontains two values in--create-disk flag ofgcloud compute instances create.

Kubernetes Engine

Updated default kubectl from 1.26.14 to 1.26.15.
Additional kubectl versions:
- kubectl.1.26 (1.26.15)
- kubectl.1.27 (1.27.12)
- kubectl.1.28 (1.28.8)
- kubectl.1.29 (1.29.3)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

469.0.0 (2024-03-19)

Google Cloud CLI

Updatedbundled-python for windows to version 3.11.8.
Updatedopenssl package to version 3.0.13.

Anthos Multi-Cloud

Added--ignore-errors flag to the following command groups:gcloud container aws clusters delete,gcloud container aws node-pools delete,gcloud container azure clusters delete,gcloud container azure node-pools delete,to allow the delete request to succeed, even if errors occur while deletingin-cluster resources.

Artifact Registry

Modifiedgcloud docker images list andgcloud artifacts versions describe to display image size.
Fixed issue wheregcloud artifacts versions describe formatted extrametadata incorrectly.

BigQuery

Began internal refactoring that will continue for this minor version number.
Addedcopy_files_only to load commands targeting BigLake tables.
Addeduniverse_domain,use_lep anduse_rep as alternatives to usingapi anduse_regional_endpoints.
Added support forDELTA_LAKE external table types.
Added support to load some configuration that has been set ingcloud config.
Exposed more information to thebq info command.
Exposesconnector_configuration options when creating a connection.

Cloud Bigtable

Added support for types and aggregates to the cbt CLI.
Added support for Standard Isolation and Data Boost ingcloud beta bigtable app-profiles {create,update,list}.

Cloud Dataproc

Updatedgcloud dataproc session-templates export to filter out additionaloutput only fields.

Cloud Pub/Sub

Added flags togcloud pubsub topics create to support creating Cloud Pub/Sub Import Topics.
- Added--kinesis-ingestion-consumer-arn
- Added--kinesis-ingestion-role-arn
- Added--kinesis-ingestion-service-account
- Added--kinesis-ingestion-stream-arn
Added flags togcloud pubsub topics update to support updating Cloud Pub/Sub Import Topics.
- Added--clear-ingestion-data-source-settings
- Added--kinesis-ingestion-consumer-arn
- Added--kinesis-ingestion-role-arn
- Added--kinesis-ingestion-service-account
- Added--kinesis-ingestion-stream-arn

Cloud Run

Support volumes withtype=nfs ingcloud beta run deploy,gcloud beta run services update,gcloud beta run jobs deploy andgcloud beta run jobs update.

Cloud Workstations

Addeddisable-ssh-to-vm flag support forgcloud CLI workstations GA.

Compute Engine

Modifiedlocation flag fromgcloud compute connect-to-serial-port beta command to use region fromzone flag as location iflocation is unspecified.

Database Migration

Updatedgcloud database-migrate migration-jobs create to support the type of data dump for MySQL to Cloud SQL-MySQL migrations.
Updatedgcloud database-migrate migration-jobs update to support the type of data dump for MySQL to Cloud SQL-MySQL migrations.

Kubernetes Engine

Updated default kubectl from 1.26.13 to 1.26.14.
Additional kubectl versions:
- kubectl.1.26 (1.26.14)
- kubectl.1.27 (1.27.11)
- kubectl.1.28 (1.28.7)
- kubectl.1.28 (1.29.2)

Network Security

Promotedgcloud network-security firewall-endpoints to GA track.
Promotedgcloud network-security firewall-endpoint-associations to GA track.
Promotedgcloud network-security security-profiles to GA track.
Promotedgcloud network-security security-profile-groups to GA track.

Recaptcha

Addakamai option to--waf-service flag fromgcloud recaptcha keys create command to support creating Akamai enabled site keys.

Workbench

Addedworkbench instances get-config to describe the valid configurations for workbench instances.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

468.0.0 (2024-03-12)

App Engine

Updated the Java SDK to version 2.0.25 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.25.
Upgraded dev_appserver from Python 2 to Python 3.
- You can't use the latest version ofdev_appserver.py to locally run your applications for runtimes that reached end of support. To continue using an archived version ofdev_appserver.py, seeUse the local development server after runtimes reach the end of support.
- Python 2 is no longer supported and should not be needed in your environment.
- Forsupported runtimes, you must update both thegcloud CLI and theapp-engine-python component. If you managegcloud with an external package manager, seeManaginggcloud CLI components.
- If you managegcloud CLI with an external package manager, seeExternal package managers. You must update bothgcloud CLI and theapp-engine-python component together.
- The latest version ofdev_appserver.py no longer acceptsapi_version inapp.yaml. This conforms to production behavior.

App Hub

Promotedgcloud apphub to GA.

Artifact Registry

Addedgcloud artifacts files download which downloads a file to the local environment.
Allowed--remote-mvn-repo,--remote-docker-repo,--remote-npm-repo, and--remote-python-repo flags to be a custom registry uri (ex: https://registry-1.docker.io) as well as the already-supported registry enum (ex: docker-hub) forartifacts repositories create.
Added--disable-remote-validation flag forartifacts repositories create andartifacts repositories update.
Addedgcloud artifacts docker upgrade migrate.

Cloud Bigtable

Added--enable-automated-backup flag togcloud bigtable instances tables create andgcloud bigtable instances tables update.
Added--disable-automated-backup flag togcloud bigtable instances tables update.

Cloud Build

Unhidedgcloud builds connections create bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds connections update bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds triggers create bitbucket-cloud,gcloud builds triggers update bitbucket-cloud,gcloud builds triggers create bitbucket-data-center,gcloud builds triggers update bitbucket-data-center.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.3
- Includes fix for ancestor queries and namespace scoped queries in Datastore Mode.

Cloud Resource Manager

Added support for--tags flag ingcloud projects create command.
Added support for--tags flag ingcloud resource-manager folders create command.

Cloud Run

Added--no-deploy-health-check togcloud beta run deploy andgcloud beta run services update which allows disabling the deployment health check behavior.

Cloud SQL

Addedgcloud sql instances acquire-ssrs-lease to acquire a lease for SQL Server Reporting Services setupin Cloud SQL for SQL Server.
Addedgcloud sql instances release-ssrs-lease to release a lease for SQL Server Reporting Services setupin Cloud SQL for SQL Server.

Cloud TPU

Added--reserved flag togcloud compute tpus queued-resources create.

Cloud Tasks

Promotinggcloud tasks buffer to GA which enables creation of an HTTP taskwithout specifying the task body. It requires the parent queue to havean HTTP target override.

Compute Engine

Added support for OS Login SSH certificates for first-party users in alphaand beta tracks ofgcloud compute ssh.
Promoted--source-regions flag ofgcloud compute health-checks to beta.
Added--cloud-armor-tier flag togcloud compute project-info update command.

Dataproc Metastore

Promoted--scheduled-backup-configs-from-file,enable-scheduled-backup,scheduled-backup-cron andscheduled-backup-location flag ofgcloud metastore services create andgcloud metastore services update to GA.

Distributed Cloud Edge

Added--node-labels flag togcloud edge-cloud container clusters node-pools create andgcloud edge-cloud container clusters node-pools update commands to allow assigning labels to individual nodes in a node pool.

Kubernetes Engine

Fixed--enable-queued-provisioning GA ingcloud container node-pools create.For more information seehttps://cloud.google.com/kubernetes-engine/docs/how-to/provisioningrequest.

Notebooks

AddedNVIDIA_L4 option to--accelerator-type flag ofgcloud notebooks instances create andgcloud notebooks instances update.

Pubsub Emulator

Add support for topic ingestion settings.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

467.0.0 (2024-03-05)

Google Cloud CLI

Updated linux bundled python for thegcloud CLI to 3.11.8.
Updatedcryptography package to version 42.0.5.
Updatedopenssl package to version 3.0.13.

Backup For GKE

Removed--cluster-resource-restore-scope flag fromgcloud container backup-restore restore-plans create andgcloud container backup-restore restore-plans update.Use--cluster-resource-selected-group-kinds instead.

Cloud Bigtable

Addedgcloud bigtable tables command group identical to existinggcloudbigtable instances tables.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.2
- Fix few bugs affecting client SDKs for DS Mode.

Cloud Functions

Added--build-service-account flag togcloud functions deploy for1st Gen functions to alpha and beta.

Cloud Run

Add--service-min-instances flag togcloud beta run deploy andgcloud beta run services update to update min instances on a service withoutredeploying.
Promote--dry-run flag ofgcloud run services replace to GA.

Cloud TPU

Promotedgcloud compute tpus queued-resources create,gcloud compute tpus queued-resources delete,gcloud compute tpus queued-resources describe,gcloud compute tpus queued-resources list,gcloud compute tpus queued-resources reset to GA.

Cloud Workstations

Fixed flag descriptions for grouped enabled/disabled flags.
Removed default values for grouped enabled/disabled flags.

Compute Engine

Promoted--announce-prefix flag ofgcloud compute public-advertised-prefixes update to GA.
Promoted--withdraw-prefix flag ofgcloud compute public-advertised-prefixes update to GA.
Promoted--pdp-scope flag ofgcloud compute public-advertised-prefixes create to GA.
Promoted--announce-prefix flag ofgcloud compute public-delegated-prefixes update to GA.
Promoted--withdraw-prefix flag ofgcloud compute public-delegated-prefixes update to GA.

Container Registry

Addedgcloud container images list-gcr-usage which lists Container Registry usage within your Google Cloud project, folder, or organization.

Kubernetes Engine

Added--enable-multi-networking flag togcloud container clusters update.
Fixed issue where--respect-pdb flag was not working withgcloud container node-pools rollback.

Network Security

Promoted--[no-]disabled flag togcloud <beta> network-security firewall-endpoint-associations update command to enable/disable a firewall endpoint association without removing it.

Pubsub Emulator

Fixes exactly once delivery and message ordering compatibility with the Java client library.

Service Extensions

Added additional values to the supported events. Updated comments.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

466.0.0 (2024-02-27)

Google Cloud CLI

Updatedgcloud auth application-default login --no-launch-browser to work with Context Aware Access.

Cloud Build

Hidedgcloud builds connections create bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds connections update bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds triggers create bitbucket-cloud,gcloud builds triggers update bitbucket-cloud,gcloud builds triggers create bitbucket-data-center,gcloud builds triggers update bitbucket-data-center.

Cloud Infrastructure Manager

Fixed issue wheregcloud infra-manager previews export directly downloadsfiles when--file flag is not provided.

Compute Engine

Promoteddelete command ofgcloud compute instance-groups managed all-instances-config to GA.
Promotedupdate command ofgcloud compute instance-groups managed all-instances-config to GA.
Promoted--default-action-on-vm-failure flag ofgcloud compute instance-groups managed <create | update> to GA.
Promotedgcloud compute instant-snapshots create to GA.
Promotedgcloud compute instant-snapshots delete to GA.
Promotedgcloud compute instant-snapshots describe to GA.
Promotedgcloud compute instant-snapshots list to GA.
Promotedgcloud compute instant-snapshots add-labels to GA.
Promoted--source-instant-snapshot flag ofgcloud compute disks create to GA.
Promoted--source-instant-snapshot,--source-instant-snapshot-zone,--source-instant-snapshot-region and--source-instant-snapshot-key-file flags ofgcloud compute snapshots create to GA.

Kubernetes Engine

Removed--dataplane-v2-observability-mode flag ofgcloud container clusters create|update|create-auto command. Users are expected to use--enable-dataplane-v2-flow-observability and--disable-dataplane-v2-flow-observability flags now.

Network Security

Added--[no-]disabled flag togcloud <alpha> network-security firewall-endpoint-associations update command to enable/disable a firewall endpoint association without removing it.

Security Command Center

Added--location flag togcloud scc findings,gcloud scc muteconfigs,gcloud scc bqexports andgcloud scc notifications commands to provide data residency for scc resources.

Workbench

Fixedgcloud workbench instances commands failing when all three--shielded-secure-boot,--shielded-integrity-monitoring,--shielded-vtpm flags are not passed.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

465.0.0 (2024-02-21)

AI

Addedupdate-mask togcloud ai indexes upsert-datapoints command fordynamic metadata update.

App Engine

Enable devappserver support for Go 1.22 runtime.

Certificate Manager

Added--type flag togcloud certificate-manager dns-authorizations create.

Cloud Build

Promotedgcloud builds connections create bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds connections update bitbucket-cloud,gcloud builds connections create bitbucket-data-center,gcloud builds triggers create bitbucket-cloud,gcloud builds triggers update bitbucket-cloud,gcloud builds triggers create bitbucket-data-center,gcloud builds triggers update bitbucket-data-center command to beta and GA.

Cloud Composer

Add--enable-cloud-data-lineage-integration and--disable-cloud-data-lineage-integration togcloud composer environments create to explicitly enable or disable the integration on creations.
Add--enable-cloud-data-lineage-integration and--disable-cloud-data-lineage-integration togcloud composer environments update to explicitly enable or disable the integration on updates.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.19.1
- Adds support for Datastore Mode to the Firstore Emulator. Adds--database-mode flag togcloud emulator firestore start command. Notethat this is a preview feature and if you find any bugs, please file themhere:https://github.com/firebase/firebase-tools/issues.

Cloud Functions

Added--v2 flag togcloud functions list to allow using Cloud Functions v2APIs and return both 1st Gen and 2nd Gen functions in the v2 formathttps://cloud.google.com/functions/docs/reference/rest/v2/projects.locations.functions#Function.
Added--v2 flag togcloud functions describe to allow using CloudFunctions v2 APIs and return both 1st Gen and 2nd Gen functions in the v2 formathttps://cloud.google.com/functions/docs/reference/rest/v2/projects.locations.functions#Function.
In an upcoming release,gcloud functions deploy will create 2nd genfunctions by default. A warning has been added for allgcloud functions deploy calls that operate on 1st gen functions. Tocontinue to create 1st gen functions, use the flag--no-gen2.

Cloud Infrastructure Manager

Added--file flag togcloud infra-manager previews export to downloadexport artifacts to a custom file name or by default to files namedpreview if one is not provided.

Cloud NetApp

Added--large-capacity and--multiple-endpoints flag togcloud beta netapp volumes {create}.

Cloud Run

Addedfirestore integration type togcloud alpha/beta run integrationscommand groups.

Cloud TPU

Fixed race condition bug in SSH and SCP commands that may affect large TPUs.

Compute Engine

Promoted--security-profile-group and--[no-]tls-inspect flags forgcloud compute [network-]firewall-policies rules [create|update] to v1.

Database Migration

Added heterogeneous migration job update filter and commit id support viagcloud database-migration migration-jobs update.

Kubernetes Engine

Updated default kubectl from 1.27.9 to 1.26.13.
Additional kubectl versions:
- kubectl.1.26 (1.26.13)
- kubectl.1.27 (1.27.10)
- kubectl.1.28 (1.28.6)
- kubectl.1.28 (1.29.1)
Added--enable-queued-provisioning flag togcloud container node-pools updatefor enabling queued provisioning on existing node pools. For more information seehttps://cloud.google.com/kubernetes-engine/docs/how-to/provisioningrequest.
Made--enable-queued-provisioning GA ingcloud container node-pools create.For more information seehttps://cloud.google.com/kubernetes-engine/docs/how-to/provisioningrequest.
Added--enable-cilium-clusterwide-network-policy flag togcloudcontainer clusters create andgcloud container clusters update.
Promotedgcloud container binauthz policy evaluate to beta.
Updated help text for--services-ipv4-cidr,--create-subnetwork,--cluster-secondary-range-name,--services-secondary-range-name options tohave consistent text noting the requirement of--enable-ip-alias optionforgcloud container create.
Updated help text for--services-ipv4-cidr,--create-subnetwork,--cluster-secondary-range-name,--services-secondary-range-name options toremove the note requiring--enable-ip-alias option forgcloud containercreate-auto. Autopilot clusters always use alias IPs for pods, so--enable-ip-alias option is always set for create-auto and cannot be specifiedby the user.

Security Command Center

Fixed issue that causedgcloud scc muteconfigs update to crash when an--update-mask is provided.
Promoted management apigcloud scc manage ... commands to GA.

Service Extensions

Promotedgcloud service-extensions lb-route-extensions andgcloudservice-extensions lb-traffic-extensions to GA.

Vmware Engine

Added--vmware-engine-network-project flag togcloud vmware network-peerings create to allow peering with VMware Engine network of different project.
Expanded logging servergcloud vmware private-clouds logging-servers capabilities with TLS, RELP, and SSL protocol support.

Workbench

Addedgcloud workbench instances resize-disk to update workbench instances disk size.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

464.0.0 (2024-02-13)

Google Cloud CLI

IntroducedACCOUNT as a positional parameter togcloud auth application-default login. This parameter can be used to specify the account that should be used for creating application default credentials.

Bare Metal Solution

Promotedgcloud bms os-images describe to GA.

Cloud Run

Added--no-default-url togcloud beta run deploy andgcloud beta run services update which allows disabling the default service URL. This may be useful in combination with theinternal andinternal-and-cloud-load-balancing ingress settings where the default http ingress point is not desired.

Cloud TPU

Promoted--spot flag ofgcloud compute tpus tpu-vm create to GA.

Cloud Workstations

Adding global fallback togcloud workstations list,gcloud workstations list-usable,gcloud workstations configs list, andgcloud workstations cluster list commands. This allows the command to be used without any resource flags to list all of the specified resources under a project. It can also be used with a subset of the previously required flags for more granular results e.g.gcloud workstations list --cluster=cluster-1 --region=us-central1 list all workstations in 'us-central1' that use a configuration created under the 'cluster-1' cluster.
Adding--disable-ssh-to-vm flag togcloud workstations configs to disallow SSH access to the workstations root VM.

Compute Engine

Promoted--stack-type flag ofcompute interconnects attachments partner create to beta. Flag defines the stack type of partner interconnect attachment.
Promoted--stack-type flag ofcompute interconnects attachments partner update to beta. Flag defines the stack type of interconnect attachment.

Notebooks

Addedtags flag to notebook instances.
Fixed a bug where vm-image defaults are not populated when no environment flags are specified.

Pubsub Emulator

Add support for push payload unwrapping (no_wrapper).

Secure Source Manager

Addedgcloud source-manager command group which includesgcloud source-manager instances,gcloud source-manager locations,gcloud source-manager operations to beta.

Security Command Center

Fixed issue that causedgcloud scc muteconfigs update to crash when an--update-mask is provided.

Workbench

Fixed boolean flags--shielded-secure-boot,--shielded-vtpm, and--shielded-integrity-monitoring ingcloud workbench instances commands always parsing as true.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

463.0.0 (2024-02-06)

AlloyDB

Added option for--cpu-count=128 ininstances create andinstances update commands.

Cloud Deploy

Added IAM policy commands togcloud deploy custom-target-types.

Cloud Functions

Changedgcloud alpha functions deploy andgcloud beta functions deploy todeploynew functions via Cloud Functions (2nd gen) by default. 1st genfunctions can still be created by specifying--no-gen2 or by setting thefunctions/gen2 property tooff. This change will be applied in the GArelease track in a future release.

Cloud Run

Promoted--container flag ofgcloud run deploy andgcloud run services update to GA to allow deploying multi-container Services.

Cloud SQL

Fixed and added back support for parallel import and export.

Cloud Workflows

gcloud workflows run to avoid backlogging the execution when the

Cloud Workstations

Adding a region column to the tables ingcloud workstations list,gcloud workstations list-usable,gcloud workstations configs list, andgcloud workstations clusters list.

Compute Engine

Added support of flags to--detection-load-threshold,detection-absolute-qps,detection-relative-to-baseline-qps, andtraffic-granularity-configs togcloud compute security-policies add-layer7-ddos-defense-threshold-config inalpha/beta.
Addedgcloud compute instance-groups managed resize-requests which providescapability to create, describe, list, cancel, and delete resize requests ina zonal MIG to beta.
Promoted--existing-reservation flag ofgcloud compute commitments create to GA.

GKE Hub

Promoted Fleet operations commands to beta and GA.
- Promotedgcloud container fleet operations describe to beta and GA.
- Promotedgcloud container fleet operations list to beta and GA.
- Promotedgcloud container fleet operations wait to beta and GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

462.0.1 (2024-01-31)

Cloud SQL

Rolled back gcloud support for parallel import and export as it was breakingdefault behavior for the customers.

Cloud Workflows

Added--disable-concurrency-quota-overflow-buffering flag toconcurrency quota is exhausted.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

462.0.0 (2024-01-30)

Google Cloud CLI

Updated linux bundled python for thegcloud CLI to 3.11.7.
Updatedpip package to version 23.3.2.

Binauthz

Updatedgcloud container binauthz attestations create andsign-and-createto make--attestor optional, allowing creation of attestations on aspecified--note. Note that--validate can only be used with--attestor.

Cloud Asset Inventory

Promoted Cloud assets analysis commandsgcloud asset analyze-org-policies,gcloud asset analyze-org-policy-governed-containers andgcloud asset analyze-org-policy-governed-assets to GA.

Cloud DNS

Added support to allow importing RecordSets with routing policies from YAML.

Cloud Dataflow

Added dataflow yaml commandgcloud beta dataflow yaml run.

Cloud Pub/Sub

Promoted--message-storage-policy-enforce-in-transit flag ofgcloud pubsub topics create andgcloud pubsub topics update to GA. Thisallows users to enable enforcement for in-transit guarantees.

Cloud Run

Reverted regionalized builds for Cloud Run source deploys.
Add--service-account flag to specify deployment service account for Cloud Run integrations deployments.

Cloud SQL

Added support for parallel import and export.

Cloud Speech API

Addedtelephony andtelephony_short options forgcloud ml speech <recognize | recognize-long-running> --model flag.

Cloud TPU

Promoted--queue-count flag ofgcloud compute tpus tpu-vm create to GA.

Cloud Workflows

Added--disable-concurrency-quota-overflow-buffering flag togcloud workflows execute to avoid backlogging the execution when theconcurrency quota is exhausted.

Compute Engine

Promotedgcloud compute networks subnet --reserved-internal-ranges to GA.
Promotedgcloud compute networks subnet --secondary-range_with-reserved-internal-ranges to GA.

Database Migration

Addedgcloud database-migration migration-job demote-destination which allowsdemoting the destination of a migration job.
Addedalloydb-cluster flag togcloud database-migration connection-profiles toallow creating connection profiles that link to existing AlloyDB clusters.

Distributed Cloud Edge

Added--offline-credential flags togcloud edge-cloud containerclusters get-credentials command to retrieve the credential used underdisconnectivity to Google.
Added--release-channel argument togcloud edge-cloud container clusters update to allow updating release channel for local control plane clusters.

Kubernetes Engine

Promoted--enable-fqdn-network-policy flag togcloud container clusters create andgcloud container clusters update.

Security Command Center

Renamedgcloud alpha scc securityposture-operations command group togcloud alpha scc posture-operations.
Also, promoted the above renamed command groupgcloud alpha scc posture-operations to GA asgcloud scc posture-operations.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

461.0.0 (2024-01-23)

Breaking Changes

(Cloud Domains) Removedgcloud domains registrations export/get-transfer-parameters/transfer/list-importable-domains/import commands.
(Cloud Domains) Removed--use-google-domains-dns flag fromgcloud domains registrations register command. Seehttps://cloud.google.com/domains/docs/deprecations/feature-deprecations for more information.

AlloyDB

Added flag--assign-inbound-public-ip to enable or disable public IP for aninstance to the following commands in the alpha and beta track:
- gcloud alloydb instances create
- gcloud alloydb instances update
Added flag--authorized-external-networks to set a list of authorizedexternal networks on an instance togcloud alloydb instances update in thealpha and beta track.

Batch

Promoted Batch submit job config YAML support from alpha to beta and GA.

Binauthz

Updatedgcloud container binauthz attestations list,create, andsign-and-create commands to support image URLs with both a tag and adigest. Attestations with these URLs are supported only in ContinuousValidation with check-based policies for GKE.

Cloud Functions

With the general transition from Container Registry to Artifact Registry, bydefault, deploying a 1st Gen function now requires Artifact Registry to beenabled. Container Registry is still available via--docker-registry flag.For more information, seehttps://cloud.google.com/functions/docs/building#image_registry_options.

Cloud Storage

Updatedgcloud storage sign-url to allow using impersonation specifiedthrough configuration.

Cloud Workstations

Added--local-host-port flag to theworkstations ssh command.

Compute Engine

Promoted--confidential-compute-type=TDX flag ofgcloud compute instances create to beta.
AddedIPV6_ONLY option to--stack-type flag ofgcloud beta compute vpn-gateways create command to create an IPv6-only VPN gateway.
Promoted--location flag ofgcloud compute connect-to-serial-port to GA.
Updated behaviour ofgcloud instances delete: it will throw error ifinstance.delete operation takes more than 70 minutes instead of 30 minutespreviously.

Distributed Cloud Edge

Added IPv6 support for--ip-address flag ofgcloud edge-cloud networking routers add-interface subcommand.

Kubernetes Engine

Restored original maximum argument to--max-nodes-per-pool flag ofgcloudcontainer clusters create from 2000 to 1000, as this unintentionally changedthe default value.

Recaptcha

Addgcloud recaptcha firewall-policies reorder command.

Security Command Center

Promotedgcloud scc postures commands to GA.
Promotedgcloud scc posture-templates commands to GA.
Promotedgcloud scc posture-deployments commands to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

460.0.0 (2024-01-17)

Cloud Bigtable

Rebuilt cbt cli with golang.org/x/crypto version 0.17.0 which fixed CVE-2023-48795.

Cloud Bigtable Emulator

Rebuilt cbt cli with golang.org/x/crypto version 0.17.0 which fixed CVE-2023-48795.

Cloud Billing

Addedownership-scope flag togcloud billing budget CLI to select scope of ownership for a budget.

Cloud Domains

Deprecatedgcloud domains registrations list-importable-domains andgcloud domains registrations get-transfer-parameters commands. Seehttps://cloud.google.com/domains/docs/deprecations/feature-deprecations for more information.

Cloud Functions

Hid--gen2 flag ingcloud functions add-iam-policy-binding,gcloud functions add-invoker-policy-binding,gcloud functions call,gcloud functions delete,gcloud functions describe,gcloud functions get-iam-policy,gcloud functions remove-iam-policy-binding,gcloud functions remove-invoker-policy-binding, andgcloud functions set-iam-policy-binding.The--gen2 flag is unnecessary for these commands and will eventually be removed from them in a future release.

Cloud Healthcare

Addedgcloud healthcare dicom-stores metrics command which allows users to retrievemetrics associated with a DICOM store.

Cloud Monitoring

Promotedgcloud monitoring uptime commands to beta and GA.

Cloud Org Policy

Update the error message that mentions the 'update-mask' flag name incorrectly.

Cloud Run

Reverted regionalized builds for Cloud Run source deploys.

Cloud SQL

Added -i flag to provide the instance forgcloud sql generate-login-token command.

Cloud Workstations

Added--disable-tcp-connections flag togcloud workstations configs` to support disabling plainTCP connections in workstations.

Dataproc Diagnose

Added--tarball-access flag togcloud dataproc clusters diagnose for enablingGoogle support to access the diagnostic tar file, which supports the following values:-
1. GOOGLE_DATAPROC_DIAGNOSE : This value transfers the tar file automatically toGoogle support.
2. GOOGLE_CLOUD_SUPPORT : This flag doesn't transfer the tar file automatically toGoogle support but provides the necessary read access forGoogle support to read or download the tar file.
Added--start-time and--end-time flags togcloud dataproc clusters diagnose to specify a time range, in%Y-%m-%dT%H:%M:%S.%fZ format, for the collection of diagnostic data within this timeframe.
Added--job-ids flag togcloud dataproc clusters diagnose to collect job driver, Spark event, YARN application, and Sparklens output logs, in addition to thedefault log files, for a specified comma-separated list of dataproc job IDs.
Added--yarn-application-ids flag togcloud dataproc clusters diagnose to collect job driver, Spark event, YARN application, and Sparklens output logs in addition to thedefault log files, for a specified comma-separated list of YARN application IDs.

Eventarc

Deprecatedgcloud beta eventarc. Users are expected to usegcloud eventarc instead.

Identity and Access Management

Added--include-deny flag togcloud projects get-ancestors-iam-policyandgcloud resource-manager folders get-ancestors-iam-policy to specifyif it should return deny policies on the hierarchy.

Immersive Stream

Added--mode flag togcloud immersive-stream xr instances create to allow specifying 3D/AR or 3D-only experience modes.
Added--gpu-class flag togcloud immersive-stream xr instances create to allow specifying the type of underlying GPU used by the stream instance.

Network Security

Ingcloud network-security firewall-endpoint-associations create, the ASSOCIATION_ID argument is no longer mandatory, and a UUID will be auto-generated on the server if not specified.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

459.0.0 (2024-01-09)

Google Cloud CLI

Removed the warning about--update-adc deprecation.

AI

Added--notification-channels flag togcloud ai model-monitoring-jobs create|update to allow sending alerts to notification channels.

App Engine

Updated the Java SDK to version 2.0.24 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.24.$ Updated Jetty Web Server to version 12.0.5.

Assured Workloads

Promote assured workloads enable-resource-monitoring to GA.

Binauthz

Updatedgcloud container binauthz attestations create to make--attestoroptional, allowing creation of attestations on a specified--note. Notethat--validate can only be used with--attestor.

Cloud Composer

Fixedgcloud beta composer environments list-upgrades for Composer 2 environments.
Added--enable-logs-in-cloud-logging-only flag togcloud composer environments create to enable writing and reading task logsonly from cloud logging and disable using gcs buckets for logs.
Added--disable-logs-in-cloud-logging-only flag togcloud composer environments create to disable writing and reading task logsonly from cloud logging and disable using gcs buckets for logs.
Added--enable-logs-in-cloud-logging-only flag togcloud composer environments update to enable logs in cloud logging only feature for environments.
Added--disable-logs-in-cloud-logging-only flag togcloud composer environments update to disable logs in cloudlogging only feature for environments.

Cloud Datastore

Promoted--database flag ofgcloud datastore indexes create command to beta.
Promoted--database flag ofgcloud datastore indexes create command to GA.

Cloud Firestore

Promotedfirestore databases delete to beta.
Promotedfirestore databases delete to GA.
Promoted--delete-protection and--no-delete-protection flag ofgcloud firestore databases create andgcloud firestore databases update command to beta.
Promoted--delete-protection and--no-delete-protection flag ofgcloud firestore databases create andgcloud firestore databases update command to GA.

Cloud Functions

Fixed file check issue withgcloud functions deploy for gradle-based Java deployments.
Added--build-service-account flag togcloud beta functions deploy for2nd Gen functions to alpha and beta.

Cloud Memorystore

Allowed using project numbers in command arguments.

Cloud Org Policy

Updatedetag field in the output ofgcloud org-policies list command to show a top-level etag which better reflects the current state of the policy.
Added--etag togcloud org-policies delete to support etag on policy deletion that will ensure the client has an up-to-date value before proceeding.

Cloud Run

add--add-volume,--remove-volume and--clear-volumes flags togcloud beta run deploy,gcloud beta run services update,gcloud beta run jobs deploy,andgcloud beta run jobs update to support managing volumes in your Cloud RunServices and Jobs.
add-add-volume-mount,--remove-volume-mount, and--clear-volume-mount flagstogcloud beta run deploy,gcloud beta run services update,gcloud beta run jobs deploy,andgcloud beta run jobs update to support mounting volumes within containers.

Cloud SQL

Rename the positional argument ofgcloud sql backups restore command from BACKUP_ID to ID.
Allowed using project numbers in command arguments.

Cloud Services

Promotedgcloud services vpc-peerings get-vpc-service-controls to GA.

Cloud Workstations

Added--domain flag togcloud workstations clustersto enable using custom domains.

Compute Engine

Promoted--server-tls-policy and--clear-server-tls-policy forgcloud compute target-https-proxies create andgcloud compute target-https-proxies update to beta.

Compute Firewall Policy Rules

Fixed issue wheregcloud firewall-policies rules updatedidn't allow clearing list fields.
Fixed issue wheregcloud firewall-policies rules updateset disabled and enabledLogging to false if it was not specified by the user.
Fixed issue wheregcloud beta firewall-policies rules update andgcloud beta network-firewall-policies rules update required providing--security-profile-group even if it was not changed.
Fixed issue wheregcloud beta firewall-policies rules update andgcloud beta network-firewall-policies rules update didn't allowclearing securityProfileGroup (--security-profile-group='').

Database Migration

Added MySQL_8_0_35 minor version option when creating Cloud SQL connection profile usinggcloud database-migration connection-profiles create cloudsql command.

Kubernetes Engine

Updated default kubectl from 1.27.8 to 1.27.9.
Additional kubectl versions:
- kubectl.1.24 (1.24.17)
- kubectl.1.25 (1.25.16)
- kubectl.1.26 (1.26.12)
- kubectl.1.27 (1.27.9)
- kubectl.1.28 (1.28.5)
- kubectl.1.28 (1.29.0)
Added--enable-secret-manager flags togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update in alpha and beta.
Deprecated--dataplane-v2-observability-mode flag ofgcloud container clusters create|update|create-auto command. Users are expected to use--enable-dataplane-v2-flow-observability and--disable-dataplane-v2-flow-observability flags now.
Increased maximum argument to--num-nodes flag ofgcloud container clusters create from 1000 to 2000.

Network Services

Updatedgcloud network-services gateways to show a newipVersion field for v1 version.
AddedenvoyHeaders field togcloud network-services <meshes|gateways> <import|export|describe> commands to inject envoy internal debug headers into upstream requests.
AddedidleTimeout field togcloud network-services <http-routes|grpc-routes|tcp-routes|tls-routes> <import|export|describe> to configure idle timeouts for the upstream and downstream connections.
AddedmirrorPercent togcloud network-services http-routes <import|export|describe> to configure fractional mirror percentage.
AddeddirectResponse togcloud network-services http-routes <import|export|describe> which returns a static HTTP response for all requests.
AddedrequestHeaderModifier togcloud network-services http-routes <import|export|describe> to modify request headers to a particular destination.
AddedresponseHeaderModifier togcloud network-services http-routes <import|export|describe> to modify response headers from a particular destination.

Service Directory

Allowed using project numbers in command arguments.

Transcoder

Allowed using project numbers in command arguments.

telco automation

Promotedgcloud telco-automation orchestration-cluster to GA.
Promotedgcloud telco-automation operations to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

458.0.1 (2023-12-20)

Google Cloud CLI

Fixed error'ython'' is not recognized as an internal or external command,operable program or batch file. when updatinggcloud on Windows.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

458.0.0 (2023-12-19)

Breaking Changes

(Compute Engine) Updated behaviour ofgcloud instances stop: it will not throw error if
(Compute Engine) instance gets deleted during polling on the stopping operation.
(GKE Hub) Changed output ofgcloud container fleet memberships list to display the UUID of thememberships instead ofexternal_id. Theexternal_id is still available in thejson-formatted output.

Google Cloud CLI

Updatedcryptography package to version 41.0.7.

App Engine

Updated the Go SDK to version 1.9.76.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.
Promoted commandgcloud app runtimes list --environment=standard to GA. The command displays the runtimes for the App Engine standard environment.

BigQuery

Fixed a bug in 2.0.99 and 2.0.100 that causes any command to fail ifinitialization is required.

Cloud Bigtable

Addsreversed flag tocbt read command to enable reverse scans.
Rebuild with golang 1.21.5.

Cloud Bigtable Emulator

Rebuild with golang 1.21.5.

Cloud Run

Promoted--condition flag forgcloud run services {add,remove}-iam-policy-binding from alpha to beta.
Enabled--cpu-boost by default for run deploy on new services if not otherwise specified.

Cloud Services

Promotedgcloud services vpc-peerings get-vpc-service-controls to beta.

Compute Engine

Promoted--with-extended-notifications flag ofgcloud compute instances simulate-maintenance-event to beta and GA.
Promoted--confidential-compute flag ofgcloud compute disks create to GA.
Promoted--create-disk=confidential-compute forgcloud compute instances create to GA.
Promoted Instance API Perform Maintenance to beta and GA.

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.48 to 1.0.0-beta.49.

Kubernetes Engine

gcloud container clusters create andgcloud container clusters update now allow multiple binauthz policies to be bound to a cluster using--binauthz-policy-bindings.
Updated default kubectl from 1.27.7 to 1.27.8.
Additional kubectl versions:
- kubectl.1.24 (1.24.17)
- kubectl.1.25 (1.25.16)
- kubectl.1.26 (1.26.11)
- kubectl.1.27 (1.27.8)
- kubectl.1.28 (1.28.4)
Addedenterprise option to--workload-vulnerability-scanning flag ofgcloud container clusters create|update|create-auto commands to enable Advanced vulnerability insights mode in the GA track.
Promote--in-transit-encryption flag togcloud container clusters create andgcloud container clusters update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

457.0.0 (2023-12-12)

Breaking Changes

(Network Actions) Removednetwork-actions surface.

Google Cloud CLI

Added deprecation warning togcloud components restore. To revert gcloud to a previous version, please rungcloud components update --version=<previous_version>.

AI

Added--container-deployment-timeout-seconds flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-shared-memory-size-mb flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-startup-probe-exec flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-startup-probe-period-seconds flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-startup-probe-timeout-seconds flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-health-probe-exec flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-health-probe-period-seconds flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-health-probe-timeout-seconds flag togcloud ai models upload andgcloud beta ai models upload.
Added--container-grpc-ports flag togcloud ai models upload andgcloud beta ai models upload.

Anthos Multi-Cloud

Addedgcloud container aws node-pools rollback to rollback failed AWS nodepool update operations. This allows customers to revert the node pool backto its original state.

App Engine

Updated the Java SDK to version 2.0.23 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.23.
Updated Jetty Web Server to version 12.0.4.

BigQuery

Added the ability to update table tags by usingadd_tags,remove_tags andclear_all_tags.

Certificate Manager

Added commandcertificate-manager trust-configs update.

Cloud Composer

Add--disable-cloud-data-lineage-integration togcloud composer environments create (alpha and beta) to explicitly disable the integration.

Cloud Deploy

Addedgcloud deploy custom-target-types command group.

Cloud Functions

Added--runtime-update-policy flag togcloud beta functions deploy for 1st Gen functions to alpha and beta.
Added--runtime-update-policy flag togcloud functions deploy for 1st Gen functions to GA.

Cloud Logging

Allow for using the logging feature with protocolSSL ingcloud compute backend-services create andgcloud compute backend-services update.

Cloud Pub/Sub

Promoted--use-table-schema flag ofgcloud pubsub subscriptions [create|update] to GA. This option allows Pub/Sub to use the schema of the BigQuery table to write the fields of a JSON message to the corresponding columns.

Cloud Services

Promotedgcloud services api-keys undelete to GA.

Compute Engine

Added support forversion=23.10 andshort-name=ubuntu in--os-types forgcloud beta compute instances ops-agents policies [create|update].
Promotedgcloud compute instances set-name command to GA.
Promoted--recaptcha-action-site-keys and--recaptcha-session-site-keys ingcloud compute security-policies rules create|update to GA.
Addedtls-ja3-fingerprint anduser-ip as valid rate limit key types ingcloud compute security-policies rules.

Distributed Cloud Edge

Made flag--ipv4-range optional forgcloud edge-cloud networking subnetscreate.

GKE Hub

Promotedgcloud container fleet clusterupgrade andgcloud container hub clusterupgrade to beta and GA.

Kubernetes Engine

gcloud container clusters create andgcloud container clusters update now allow multiple binauthz policies to be bound to a cluster using--binauthz-policy-bindings.
Added--autoprovisioning-resource-manager-tags flag togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters updatein GA track.
Added--resource-manager-tags flag togcloud container clusters create,gcloud container node-pools create andgcloud container node-pools updatein GA track.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

456.0.0 (2023-12-05)

Breaking Changes

(AlloyDB) Modifiedgcloud alloydb instances update to be asynchronous by default. Use
(AlloyDB)--no-async flag to get the old behavior.

Google Cloud CLI

Updatedgcloud CLI to support Python v3.11 and v3.12.

AlloyDB

Added support for specifying--database-version inclusters create command in GA track.

Anthos

Support new flagserver forgcloud anthos auth login command.
'server' flag obviates the need to download login-config file.

Anthos Multi-Cloud

Added--proxy-secret-name and--proxy-secret-namespace flags togcloud container attached clusters import to configure an HTTP/HTTPSproxy for outbound traffic.
Promoted--max-surge-update and--max-unavailable-update flags to GA(General Availability) forgcloud container aws node-pools create andgcloud container aws node-pools update commands. These flags let youspecify or modify surge update parameters during node pool creation andupdating.

App Engine

Addedgcloud beta app runtimes list --environment=standard which displays the supported runtimes for App Engine Standard.

Artifact Registry

Addeddomain as a config option to use a different domain endpoint forartifacts docker.

BigQuery

Added python 3.12 support.
Added support forkms_key_name to connections.
Added concurrent requests when looking up IAM information.
Added support to show replica table information.
Updated quotes library used.
Fixed bug incp to ensure all regions are being checked.
Ensuredbq ls -p only displays the first page of results by default toalign with other list methods.
Added messaging for DDL statements modifying vector indexes.
Improved error messaging for tag updates.
Added improved error messaging when project lookups are aborted.

Certificate Manager

Added commandcertificate-manager trust-configs create.

Cloud Backup DR

Promotedgcloud backup-dr command group which includesgcloud backup-dr management-servers,gcloud backup-dr locations andgcloud backup-dr operations to GA.

Cloud Datastore

Updatedgcloud datastore operations list to respect a--limit set to >100.

Cloud Domains

Added support for disabling and enabling automatic renewal of domains using the Cloud Domainsgcloud domains registrations configure management method (with thepreferred-renewal-method flag or in the interactive flow).

Cloud Firestore

Updatedgcloud firestore operations list to respect a--limit set to >100.

Cloud Healthcare

Addedgcloud healthcare hl7v2-stores metrics which allows users to retrievemetrics associated with a HL7v2 store.

Cloud NetApp

Removed netapp/region as a property since netapp/location can be either region or zone depending on SO or PO.

Cloud Pub/Sub

Fix missing error message for commands undergcloud pubsub.

Cloud Run

Added the information of whether the job to be deleted has running executionsto the confirm message ofgcloud run jobs delete.
Regionalize builds for Cloud Run source deploys.

Cloud Services

Promotedgcloud services api-keys create to GA.
Promotedgcloud services api-keys delete to GA.
Promotedgcloud services api-keys get-key-string to GA.
Promotedgcloud services api-keys update to GA.

Cloud TPU

Promoted--update-metadata,--clear-metadata,--remove-metadata and--metadata-from-file flags ofgcloud compute tpus tpu-vm update to GA.

Cloud Workstations

Added--enable-audit-agent flag toworkstations configs create andworkstations configs update.

Compute Engine

Promoted--confidential-compute-type flag ofgcloud compute instance create to beta.
Promoted flag--user-ip-request-headers ofgcloud compute security-policies update to GA.
Fixed issue wheregcloud compute ssh andgcloud compute scp commands wouldfail on Windows when PuTTY prompted in certain situations, such as when using--plain or when connecting to an instance with OS Login 2FA enabled.
Fixed crash ingcloud compute diagnose routes when specifying--reverse-traceroute.
Promotedlocation flag forgcloud compute connect-to-serial-port to beta.
Promoted--type flag ofgcloud compute routers nats create to GA.
Promoted--source-nat-active-ranges,--source-nat-active-ranges-region,--source-nat-drain-ranges,--clear-source-nat-drain-ranges and--source-nat-drain-ranges-region flags ofgcloud compute routers nats rule update to GA.
Promoted--source-nat-active-ranges and--source-nat-active-ranges-region flags ofgcloud compute routers nats rule create to GA.
Promoted new allowed value:PRIVATE_NAT for--purpose flag ofgcloud compute networks subnets create to GA.
Promoted new:ALL range option for subnets passed to--nat-custom-subnet-ip-ranges flag ofgcloud compute routers nats (create|update) to GA.

Compute Firewall Rules

Added--export-terraform-script flag togcloud compute firewall-rules migrate to prepare a terraform script for migrated Network Firewall Policy.
Addeddisabled column to default view ofgcloud compute networks get-effective-firewalls andgcloud compute network-firewall-policies get-effective-firewalls.

Database Migration

Updatedgcloud database-migration to show error details on command failure when used with--no-async flag.
Adding support for choosing Alloy DB database version using--database-version flag ingcloud database-migration connection-profiles create alloydb.

GKE Hub

Promotedgcloud container fleet dataplane-v2-encryption {describe, disable, enable} to GA.
Added propertypod-affinity togcloud container fleet policycontroller deployment set andgcloud container fleet policycontroller deployment remove so that users can configure high availability on Policy Controller deployments.
Added--binauthz-evaluation-mode flag togcloud container fleet create,gcloud container fleet update in alpha, beta and GA track.
Added--binauthz-evaluation-mode flag togcloud container hub create,gcloud container hub update in alpha, beta and GA track.
Added--binauthz-policy-bindings flag togcloud container fleet create,gcloud container fleet update in alpha, beta and GA track.
Added--binauthz-policy-bindings flag togcloud container hub create,gcloud container hub update in alpha, beta and GA track.

Kpt

Updated kpt from v1.0.0-beta.47 to v1.0.0-beta.48. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.48 for more details.

Kubernetes Engine

Added--enable-dataplane-v2-flow-observability and--disable-dataplane-v2-flow-observabilityflags for toggling DPv2 Flow Observability feature.

Network Security

Add--billing-project required flag togcloud network-security firewall-endpoints create command to provide Google Cloud project ID for API enablement check, quota, and endpoint uptime billing.
Add--update-billing-project flag togcloud network-security firewall-endpoints update command to update the Google Cloud project used for API enablement check, quota, and endpoint uptime billing.

Recaptcha

Support creating Fastly enabled site keys usingrecaptcha keys create --waf-service=cloudfare.

Regional Endpoints

Unhidregional-endpoints as a subgroup ofgcloud beta networkconnectivity.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

455.0.0 (2023-11-14)

Breaking Changes

(Network Connectivity) Removedgcloud network-connectivity spokes accept andgcloud network-connectivity spokes reject commands. Usegcloud network-connectivity hubs accept-spoke andgcloud network-connectivity hubs reject-spoke commands instead.

Google Cloud CLI

Updated bundled python for thegcloud CLI to 3.11.6.
Updatedcryptography package to version 41.0.5.
Updatedopenssl to version 3.1.4 for cryptography.

AI

Added more choice options to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tuning-jobs, including: asia-northeast2, australia-southeast2, europe-north1, europe-southwest1, europe-west8, and southamerica-west1.

App Engine

Updated the Python App Engine devappserver to support new Memcache APImethods ('peek' and 'peek_multi') to retrieve timestamps of Memcache items.
Updated the Java SDK to version 2.0.22 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.22.

Binauthz

Updatedgcloud container binauthz attestations list to make--attestoroptional, allowing listing from any project.
Modifiedgcloud container binauthz attestations sign-and-create to allow--validate to work with--pae-encode-payload.

Cloud Bigtable

Fixed issue wherecbt createtable would create column families with a MaxVersions(1) GC policy. As per our documentation (https://cloud.google.com/bigtable/docs/garbage-collection#everything-else), tables created by the cbt cli should retain an infinite number of versions by default.

Cloud Data Fusion

Added--patch_revision optional argument to
gcloud beta data-fusion instances create to create a Cloud Data Fusion
instance with the provided patch revision version.
Added--patch_revision optional argument to
gcloud beta data-fusion instances update to perform patch revision
update of the Cloud Data Fusion instance.

Cloud Filestore

Added--tier=REGIONAL flag togcloud filestore instances create to support a regional filestore instance creation.

Cloud Functions

Promoted--concurrency flag ofgcloud functions deploy to GA.
Promoted--cpu flag ofgcloud functions deploy to GA.

Cloud Run

Promotedgcloud run jobs executions cancel to GA. This command allowscancelling a running Cloud Run job execution.

Cloud SQL

Added--show-sql-network-architecture and--upgrade-sql-network-architecture flags togcloud sql instances listandgcloud sql instances patch to support New Network Architecture self upgradefor Cloud SQL.

Cloud Storage

Released object lock feature and per-object retention settings.
Addedstorage/multipart_chunksize andstorage/multipart_threshold foradjusting settings of Boto3 client uploads via S3 or the other XML APIs.

Cloud TPU

Promoted--attach-disk and--detach-disk flags ofgcloud compute tpus tpu-vm update to GA.

Dataproc Metastore

Promoted--data-catalog-sync flag ofgcloud metastore services create andgcloud metastore services update to GA.

GKE Hub

Added--security-posture flag togcloud container fleet create,gcloud container fleet update in alpha, beta and GA track.
Added--security-posture flag togcloud container hub create,gcloud container hub update in alpha, beta and GA track.
Added--workload-vulnerability-scanning flag togcloud container fleet create,gcloud container fleet update in alpha, beta and GA track.
Added--workload-vulnerability-scanning flag togcloud container hub create,gcloud container hub update in alpha, beta and GA track.
Added support forfleet-default-member-config command to Service Mesh in alpha, beta and GA tracks.
Promoted--fleet-default-member-config flag of the following commands to GA:
- gcloud container fleet identity-service enable
- gcloud container hub identity-service enable
- gcloud container fleet identity-service delete
- gcloud container hub identity-service delete
Added--fleet-default-member-config flag to the following commands in alpha, beta, and GA tracks:
- gcloud container fleet identity-service apply
- gcloud container hub identity-service apply
to modify a fleet-level default membership configuration.
Added--origin flag to the following commands in alpha, beta, and GA tracks:
- gcloud container fleet identity-service apply
- gcloud container hub identity-service apply
to apply a fleet-level default membership configuration to a membership.
Added support forfleet-default-member-config command to Service Mesh in alpha, beta and GA tracks.

Kubernetes Engine

Fixed a bug where if--artifact-url was passed togcloud container binauthz attestations list only attestations over the full artifact url would be returned instead of attestations over the artifact digest.

Security Command Center

Promotedgcloud scc custom-modules sha simulate to GA.

Vmware Engine

Added commands for managing new types of resources:
- Addedgcloud vmware dns-bind-permission which manages DNS bind permission resources.
- Addedgcloud vmware private-clouds dns-forwarding which manages DNS forwarding resources.
- Addedgcloud vmware network-policies external-access-rules which manages external access rule resources.
- Addedgcloud vmware private-clouds external-addresses which manages external address resources.
- Addedgcloud vmware private-clouds logging-servers which manages logging server resources.
- Addedgcloud vmware private-clouds management-dns-zone-bindings which manages management DNS zone binding resources.
- Addedgcloud vmware network-peerings which manages network peering resources.
- Addedgcloud vmware network-peering routes which manages network peering route resources.
- Addedgcloud vmware private-clouds clusters nodes which allows cluster node resources.
Added--type,--preferred-zone, and--secondary-zone togcloud vmware private-clouds create command to support stretched private clouds creation.
AddedclusterCoreCount,clusterVirtualCpuCount,clusterStorageGb andclusterMemoryGb fields ingcloud vmware private-clouds clusters describe command output.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

454.0.0 (2023-11-07)

AI

Addeddeployment-group,enable-access-logging,audiences,allowed-issuers togcloud ai index-endpoints mutate-deployed-index.

Anthos Multi-Cloud

Updatedcontainer attached clusters register andcontainer attached clusters import to check for proper deployment of theinstall agent before attempting to register/import.

Artifact Registry

Updatedgcloud artifacts sbom load to have the newly created bucket haveUniform Bucket Level Access set to true.

Binauthz

Fixed issue withgcloud container binauthz attestations sign-and-create where--validate is not supported with--pae-encode-payload.

Certificate Manager

Added--update-mask flag togcloud certificate-manager trust-configs import.

Cloud Bigtable

Rebuilt cbt cli with go version 1.21.3 which fixed CVE-2023-39323.

Cloud Bigtable Emulator

Rebuilding cbt emulator with go version 1.21.3 which fixed CVE-2023-39323.

Cloud Build

Added--clear-subscription-filter togcloud builds triggers update pubsub command.

Cloud Dataproc

Added--min-secondary-worker-fraction flags togcloud dataproc clusters create andgcloud dataproc clusters update.

Cloud Deploy

Addedgcloud deploy automations andgcloud deploy automation-runs command groups.

Cloud IAM

Added--allowed-services flag togcloud iam workforce-pools providers create-oidc, which allows the user to setupdomains that can be accessed by users in a workforce pool.
Added--disable-programmatic-signin flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc, which lets theadministrator disable programmatic sign-in for users in a workforce pool.

Cloud Run

Added--container,--remove-containers, and--depends-on flags togcloud beta run deploy andgcloud beta run services update to allow deploying and updating multi-container Services.

Cloud SQL

Added--cascadable-replica flag togcloud sql instances create to enablecascadable replica creation for SQL Server.
Addedgcloud sql instances switchover in alpha and beta to enable switchoverin Cloud SQL for SQL Server.
Added--failover flag togcloud sql instances promote-replica to enableunmanaged failover in Cloud SQL for SQL Server.

Cloud Storage

Fixed "Completed" progress count incrementing for uploads with errors.
Fixed an issue where--content-md5 flag was showing up forgcloud storage objects update command. MD5 Hash is a read only field so cannot be updated. Removed--content-md5 flag from theupdate command and removed--clear-content-md5 flag fromgcloud storage {cp|mv|rsync|objects update} commands.
Added--autoclass-terminal-storage-class flag togcloud storage buckets {create|update} to set the terminal storage class for Autoclass buckets.
Updated gsutil component to 5.27.
Releases soft delete feature, includingrestore command and various flags across other commands.
Removes un-implementedoperations list flags:--uri and--page-size. These flags didn't do anything and there are no operations public users could have been using them on yet.

Cloud TPU

Promote--update-labels,--clear-labels, and--remove-labels flags ofgcloud compute tpus tpu-vm update to GA.

Compute Engine

Promoted Standby Policy flags forgcloud compute instance-groups managed create in beta.
Promoted Standby Policy flags forgcloud compute instance-groups managed update in beta.
Promotedgcloud compute snapshot-settings to GA. Documentation of this feature is available athttps://cloud.google.com/compute/docs/disks/snapshot-settings.
Updated enum name for--managed-protection-tier flag forgcloud compute project-info update fromCAMP_PLUS_MONTHLY toCAMP_PLUS_PAYGO.
Added--network-user-defined-fields,--network-src-ip-ranges,--network-dest-ip-ranges,--network-ip-protocols,--network-src-ports,--network-dest-ports,--network-src-region-codes, and--network-src-asns togcloud compute security-policies rules create|update.
Addedgcloud compute security-policies add-user-defined-fields andgcloud compute security-policies remove-user-defined-fields commands.
Added--region togcloud compute backend-services update.
Added--security-policy and--security-policy-region togcloud compute instances network-interfaces update.
Addedgcloud compute target-pools update andgcloud compute target-instances update commands.

Distributed Cloud Edge

Addedupgrade command togcloud edge-cloud container clusters to allow manually upgrading local control plane clusters.
Promoted--router togcloud edge-cloud container vpn-connections create to allow users to define Cloud Router to use when creating the VPN connection.

GKE Hub

Promotedgcloud container fleet policycontroller group to GA.

Kubernetes Engine

Fixed issue wheregcloud container clusters create-auto would prefercompute/zone overcompute/region if both configs were set.Now prioritizes usingcompute/region.
Updated default kubectl from 1.27.5 to 1.27.7.
Additional kubectl versions:
- kubectl.1.24 (1.24.17)
- kubectl.1.25 (1.25.15)
- kubectl.1.26 (1.26.10)
- kubectl.1.27 (1.27.7)
- kubectl.1.28 (1.28.3)
Added--labels flag togcloud container clusters create-auto to enable applying labels on Autopilot clusters at creation time.

Looker

Addedgcloud looker regions list which displays all availableregions to deploy a Looker instance.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

453.0.0 (2023-10-31)

Breaking Changes

(Cloud Infrastructure Manager) Removed support forblueprints/location property, in favor ofinfra-manager/location property.

AI

Added--encryption-kms-key-name flag togcloud ai indexes create to support encryption spec.

Artifact Registry

Added--remote-username and--remote-password-secret-version flags forartifacts repositories create andartifacts repositories update.

Cloud Build

RenamedGoogle Cloud Build toCloud Build in the help text ofgcloud builds command group.

Cloud Infrastructure Manager

Addedinfra-manager/location property to set the default Infra Manager region.

Cloud NetApp

Addedgcloud beta netapp backup-vaults backups surface command, and made help text public.

Cloud Run

Added--args,--task-timeout,--tasks and--update-env-vars flagstogcloud run jobs execute to allow executing a Cloud Run job with runtime overrides.
Promoted--add-custom-audiences,--clear-custom-audiences,--remove-custom-audiences and--set-custom-audiences flags ofgcloud run deployandgcloud run services update to GA.

Cloud Storage

Added--autoclass-terminal-storage-class flag togcloud storage buckets {create|update} to set the terminal storage class for Autoclass buckets.
Updated gsutil component to 5.27.
Fixed brokenobjects update clear flags.

Cloud Tasks

Addedgcloud tasks cmek-config to [alpha|beta|GA]which enables creation of CMEK configuration for a givenproject in a particular location.

Cloud Workstations

Added--domain flag togcloud beta workstations clustersto enable using custom domains.

Compute Engine

Promoted--default-action-on-vm-failure flag ofgcloud compute instance-groups managed <create | update> to beta.
Promoted--source-disk-for-recovery-checkpoint and--source-disk-for-recovery-checkpoint-region flags ofgcloud compute snapshots create to GA.

GKE Hub

Addedpolicycontroller group which provides configuration commands forGKE Hub Policy Controller.

Kpt

Updated kpt from v1.0.0-beta.25 to v1.0.0-beta.27. Seehttps://github.com/kptdev/kpt/releases/tag/v1.0.0-beta.27 and previous release notes for more details.

Kubernetes Engine

Fixed issue wheregcloud container clusters create-auto would prefercompute/zone overcompute/region if both configs were set.Now prioritizes usingcompute/region.

Notebooks

Addedgcloud notebooks runtimes migrate command.This command migrates a Google-Managed Notebook to a Workbench Instance.
Addedgcloud notebooks instances migrate command.This commands migrates a User-Managed Notebook to a Workbench Instance.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

452.0.1 (2023-10-25)

Google Cloud CLI

gcloud will prefer using a supported version of Python if one is available on PATH.
- This only affects environments wheregcloud does not already manage a Python interpreter via bundled Python or virtualenv.
- Currently supported versions are 3.8, 3.9, 3.10.

Cloud Storage

Updated gsutil component to 5.27.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

452.0.0 (2023-10-24)

AI

Addeddeployment-group,enable-access-logging,audiences,allowed-issuers togcloud ai index-endpoints deploy-index.
Addedenable-private-service-connect,project-allowlist,encryption-kms-key-name togcloud ai index-endpoints create.

Anthos On-Prem

Renamed--upgrade-control-plane flag ofgcloud container vmware clusters create andgcloud container vmware clusters update to--upgrade-policy. Promoted--upgrade-policy flag to GA.

App Engine

Updated the Java SDK to version 2.0.21 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.21.

Artifact Registry

FixedRegistry URL in the output ofartifacts repositories describe.

Cloud BCE App Connector

Addedgcloud beta beyondcorp app gateways. Commands in this group manages app connector gateways. For more information, seehttps://cloud.google.com/beyondcorp-enterprise/docs/enable-app-connector.

Cloud Bigtable

Added--priority flag togcloud bigtable app-profiles create andgcloud bigtable app-profiles update.

Cloud Composer

Added--cloud-preferred-zone togcloud composer environments createto select preferred zone for sql database creation.
Added--storage-bucket togcloud composer environments create to specify the Cloud Storage bucket to be used by the environment.
Added--storage-bucket togcloud beta composer environments create to specify the Cloud Storage bucket to be used by the environment.

Cloud Dataproc

Added--driver-required-memory-mb and--driver-required-vcores flags togcloud dataproc jobs submit.

Cloud Domains

Deprecatedgcloud domains registrations export/import/transfer commands.
Deprecated--use-google-domains-dns and--contact-privacy=private-contact-data flags fromgcloud domains registrations command group. Seehttps://cloud.google.com/domains/docs/deprecations/feature-deprecations for more information.

Cloud IAM

Promoted optional--recommend flag to beta for the following command:
- gcloud iam service-account delete

Cloud NetApp

Addedgcloud beta netapp backup-vaults surface command, and made help text public.

Cloud Resource Manager

Promoted optional--recommend flag to beta for the following commands:
- gcloud projects remove-iam-policy-binding
- gcloud projects delete

Cloud SQL

Support--ssl-mode flag forgcloud sql instances create andgcloud sql instances patch.

Cloud Spanner

Added the flags--autoscaling-min-nodes,--autoscaling-max-nodes,--autoscaling-min-processing-units,--autoscaling-max-processing-units,--autoscaling-high-priority-cpu-target and--autoscaling-storage-target tosupport creating an autoscaled instance ingcloud spanner instances create, orupdating the autoscaling config of an instance ingcloud spanner instances update.

Cloud Storage

Releasesstorage operations command group for managing long-running operations. However, there is currently no way to create these operations.

Cloud TPU

Promote--add-tags,--clear-tags, and--remove-tags flags ofgcloud compute tpus tpu-vm update to GA.

Cloud Workstations

Addedconfig set workstations/region REGION,config set workstations/cluster CLUSTER_ID,config set workstations/config CONFIG_ID, andconfig set workstations/workstation WORKSTATIONS_ID commands.

Compute Engine

Promoted regional INTERNET_IP_PORT and INTERNET_FQDN_PORT Network EndpointGroups ingcloud compute network-endpoint-groups to GA. Affected commands:
- gcloud compute network-endpoint-groups create
- gcloud compute network-endpoint-groups list-network-endpoints
- gcloud compute network-endpoint-groups update <RESOURCE_NAME> --add-endpoint
- gcloud compute network-endpoint-groups update <RESOURCE_NAME> --remove-endpoint
PromotedENDPOINT_TYPE_MANAGED_PROXY_LB enum option of--endpoint-types flag ingcloud compute routers nats create to GA.
Addedgcloud beta compute project-zonal-metadata for managing project zonalmetadata. Documentation of this feature is available athttps://cloud.google.com/compute/docs/metadata/setting-custom-metadata#set-custom-project-zonal-metadata.
Promotedgcloud compute network-attachments update to GA.

Firebase Test Lab

Increased the maximum number of test shards allowed for Arm virtual devices from 100 to 200 shards when using--num-uniform-shards or--test-targets-for-shard withgcloud firebase test android run.

Kubernetes Engine

Added--machine-type,--disk-type and--disk-size flags togcloud container node-pools updatefor migrating node pool configuration via node pool upgrade strategy.For more information seehttps://cloud.google.com/kubernetes-engine/docs/concepts/node-pool-upgrade-strategies.

Notebooks

Addedgcloud notebooks runtimes migrate command.This command migrates a Google-Managed Notebook to a Workbench Instance.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

451.0.1 (2023-10-19)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

451.0.0 (2023-10-17)

Google Cloud CLI

Bump cryptography to 41.0.4 and pyopenssl to 23.2.0.

App Engine

Enable devappserver support for Python 3.12 runtime.

Assured Workloads

Added--acknowledge-type flag (optional) forgcloud assured workloadsviolations acknowledge to acknowledge violation with type through gcloudcommand.

Cloud Filestore

Added--tier=ZONAL flag togcloud filestore instances create to support a zonal filestore instance creation.

Cloud Run

Added volumes and volume mounts togcloud run jobs describe,gcloud run jobs executions describe, andgcloud run jobs executions tasks describe.

Cloud SQL

Add new enumTLOG to--bak-type and added--stop-at and--stop-at-mark flagtogcloud sql import bak to support transaction log import on Cloud SQL for SQL Server.

Cloud Storage

Updatedgcloud storage sign-url to allow using service account credentialsto create signed URLs. Omit--private-key-file flag to use the activeservice account or account specified with--impersonate-service-accountflag.

Compute Engine

AddedSEV_LIVE_MIGRATABLE_V2 to the list of--guest-os-features forgcloud compute images create.
Promotedgcloud compute backend-services list-usable to GA.
Updatedgcloud compute images import to handle exceptions in case of failure in fetching the cloud build logs.
Updatedgcloud compute images import to check the storage permissions required for cloud build service account.

Kubernetes Engine

Updated default kubectl from 1.26.7 to 1.27.4.
Additional kubectl versions:
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.16)
- kubectl.1.25 (1.25.12)
- kubectl.1.26 (1.26.7)
- kubectl.1.27 (1.27.4)
Deprecate--enable-workload-config-audit,--enable-workload-vulnerability-scanning, andenable-security-posture flags ingcloud container clusters {create, create-auto, update}. The replacements for these are:
- --enable-workload-config-audit ->--security-posture=standard
- --enable-security-posture ->--security-posture=standard
- --enable-workload-vulnerability-scanning ->--workload-vulnerability-scanning=standard
Addedenterprise value to the available modes for--workload-vulnerability-scanning flag in the alpha and beta tracks.
Added--in-transit-encryption flag togcloud container clusters create andgcloud container clusters update.

Service Extensions

New commands for service-extensions resources - LbTrafficExtensions and LbRouteExtensions.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

450.0.0 (2023-10-10)

AI

Promotedgcloud ai indexes upsert-datapoints andgcloud ai indexes remove-datapointsto GA.

App Engine

Updated the Java SDK to version 2.0.20 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.20.

Cloud Bigtable

Rebuilt cbt cli with go version 1.21.1 which fixed CVE-2023-39319.

Cloud Bigtable Emulator

Rebuilding cbt emulator with go version 1.21.1 which fixed CVE-2023-29409.

Cloud Composer

Added--triggerer-count togcloud composer environments create/update to specify number of Airflow triggerers.
Added--triggerer-cpu togcloud composer environments create/update to specify CPU allocated to Airflow triggerer.
Added--triggerer-memory togcloud composer environments create/update to specify memory allocated to Airflow triggerer.

Cloud Firestore

Promoted Cloud Firestore PiTRgcloud CLI changes to beta and GA.
Promoted--enable-pitr and--no-enable-pitr flag ofgcloud firestore databases create command to GA.
Promoted--enable-pitr and--no-enable-pitr flag ofgcloud firestore databases create command to beta.
Promoted--enable-pitr and--no-enable-pitr flag ofgcloud firestore databases update command to GA.
Promoted--enable-pitr and--no-enable-pitr flag ofgcloud firestore databases update command to beta.

Cloud Run

Show container dependencies ingcloud run services describe andgcloud run revisions describe.

Cloud Storage

Added option to read from stdin tols command.

Compute Engine

Promoted--requested-features flag ofgcloud compute interconnects create to GA.
Promotedgcloud compute interconnects macsec get-config to GA.
Promotedgcloud compute interconnects macsec update to GA.
Promotedgcloud compute interconnects macsec add-key to GA.
Promotedgcloud compute interconnects macsec remove-key to GA.
Promotedgcloud compute interconnects macsec update-key to GA.
Promoted the following flags ofgcloud compute instance-groups managed create,gcloud compute instance-groups managed create-instance, andgcloud compute instance-groups managed instance-configs create to GA:
- --stateful-internal-ip,
- --stateful-external-ip.
Promoted the following flags ofgcloud compute instance-groups managed update andgcloud compute instance-groups managed instance-configs update to GA:
- --stateful-internal-ip,
- --remove-stateful-internal-ips,
- --stateful-external-ip,
- --remove-stateful-external-ips.
Promoted--maintenance-interval flag forgcloud compute sole-tenancy node-groups create to beta.
Promotedgcloud compute sole-tenancy node-groups perform-maintenance to beta.
Promoted--delete-at-time and--delete-after-durationflags forgcloud compute reservations create|update` surfaces to beta.

Database Migration

Added the ability to specify an empty password when creating MySQL connectionprofiles usinggcloud database-migration connection-profiles create mysql command.

Dataproc Metastore

Added--endpoint-protocol flag togcloud metastore services updateto specify the Customer-managed KMS key name to use for encrypting theDataproc Metastore service.

Distributed Cloud Edge

Added--lro-timeout flag forgcloud edge-cloud container clusters node-pools create andgcloud edge-cloud container clusters node-pools create to allow specifying a custom duration for thegcloud CLI to wait on LROs.

GKE Hub

Fixed the issue of applying generated RBAC policies for third-party identities using the commandgcloud container fleet memberships generate-gateway-rbac.

Kpt

Updated kpt from v1.0.0-beta.44 to v1.0.0-beta.45. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.45 for more details.

Kubernetes Engine

Modified local ssd count value of--ephemeral-storage-local-ssd,--ephemeral-storage, and--local-nvme-ssd-block flags fromgcloud containercluster create/update to be optional to support third generation machine types,which specify a static count. Pre-Gen3 behavior is unchanged.

Network Services

Updatedgcloud network-services gateways to show a newipVersion field for alpha version.

Workbench

Fixed issues withboot-disk-kms-key anddata-disk-kms-key flags fromgcloud workbench instances create command not working properly.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

449.0.0 (2023-10-03)

Breaking Changes

(Compute Engine) Modifiedgcloud beta compute future-reservations update to replace thepaths query parameter withupdate_mask.

App Engine

Enable devappserver support for Go 1.21 runtime.

Cloud Dataproc

Fixed a bug that caused Instance Flexibility Policy to be disabled if a user only specified--secondary-worker-machine-types indataproc clusters create command for the secondary workers flags.

Cloud Functions

Updatedgcloud functions add-invoker-policy-binding andgcloud functions remove-invoker-policy-binding to support Cloud Functions(1st gen).

Cloud Run

Show mounted volumes ingcloud run services describe andgcloud run revisions describe.
Updated display format for task timeout ingcloud run jobs describe andgcloud run jobs executions describe. Timeouts larger than 1 minute will nowshow the duration in hours, minutes, and seconds.

Cloud Storage

Updated gsutil component to 5.26.
Resolved an issue where metadata flags were disregarded when interacting with the Google Cloud Storage and S3 XML APIs.

Cloud TPU

Promote--internal-ips flag ofgcloud compute tpus tpu-vm update to GA.

Cloud Workstations

Added--service-account-scopes flag toworkstations configs create andworkstations configs update.

Compute Engine

Added--public-delegated-prefix flag togcloud compute public-delegated-prefixes create and promoted the new flag to GA.
Added boot-disk-provisioned-throughput support togcloud compute instances create andgcloud compute instance-templates create.

Distributed Cloud Edge

Addgcloud edge-cloud container get-server-configcommand with--location flag to get server config in target location.

Kubernetes Engine

Added--enable-fleet flag togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update in GA track.
Added--fleet-project flag togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update in GA track.
Added--clear-fleet-project flag togcloud container clusters update in GA track.
Added--resource-manager-tags flag togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools updateto manage tags on the underlying Compute Engine VMs of GKE Nodes which can beused to selectively enforce Cloud Firewall network firewall policies.
Added--autoprovisioning-resource-manager-tags flag togcloud container clusters create,gcloud container clusters create-auto,andgcloud container clusters update to manage tags on the underlyingCompute Engine VMs of GKE Nodes which can be used to selectively enforceCloud Firewall network firewall policies.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

448.0.0 (2023-09-26)

Breaking Changes

(Google Cloud CLI) Deprecated Python 3.5-3.7. The minimum supported Python version is Python 3.8.

Google Cloud CLI

Updated Mac installer to prompt to install Python 3.10.11.

Anthos On-Prem

Promotedgcloud container vmware admin-clusters to GA.
Promotedgcloud container vmware clusters to GA.
Promotedgcloud container vmware node-pools to GA.
Promotedgcloud container vmware operations to GA.
Promotedgcloud container bare-metal admin-clusters to GA.
Promotedgcloud container bare-metal clusters to GA.
Promotedgcloud container bare-metal node-pools to GA.
Promotedgcloud container bare-metal operations to GA.

App Engine

Fixed "https://github.com/GoogleCloudPlatform/java-docs-samples/issues/8659".

Artifact Registry

Improved error reporting forartifacts repositories set-cleanup-policies.
AddedRegistry URL to the output ofartifacts repositories describe.
Added VEX_SCOPE column togcloud artifact vulnerabilities list results.

Cloud Deploy

Fixed an issue where you couldn't create a release withoutclouddeploy.config.get permission.

Cloud Healthcare

Added--parser-version flag togcloud healthcare hl7v2-stores create to enable specifying parser config version.
Updatedgcloud healthcare hl7v2-stores list to includePARSER_VER header.

Cloud NetApp

Added--source-backup flag togcloud beta netapp volumes {create,update} in order to introduce a source backup resource to restore to during disaster recovery.

Cloud Workstations

Added support for the replica zones flag in thebeta workstations config create command.

Distributed Cloud Edge

Added--control-plane-kms-key flags togcloud edge-cloud containerclusters create command to allow specify a KMS key for the control plane data encryption of remote control plane clusters.
Fixed parsing of new cluster creation properties--system-addons-confg,--external-lb-ipv4-address-pools,--control-plane-node-count,--control-plane-machine-filter,--control-plane-shared-deployment-policy,--version,--release-channel,--version, and--release-channel.

Eventarc

Addeddestination-http-endpoint-uri,destination-http-endpoint-forward-dns-requests andnetwork-attachment flags togcloud eventarc triggers create as part of Eventarc integration with Message Streams.

Network Security

New flag to add description for Firewall Endpoint increate andupdate commands.

Vmware Engine

Deprecated--node-type-config flag fromgcloud vmware private-clouds clusters update command.
Added--update-nodes-config and--remove-nodes-config flags ingcloud vmware private-clouds clusters update command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

447.0.0 (2023-09-19)

Breaking Changes

(GKE Hub) Removedgcloud {alpha, beta} fleet namespaces. Usegcloud fleet scopes namespaces instead.
(GKE Hub) Removedgcloud {alpha, beta} fleet namespaces rbacrolebindings. Usegcloud fleet scopes rbacrolebindings instead.
(Network Connectivity) Deprecatedgcloud network-connectivity spokes accept andgcloud network-connectivity spokes reject commands. Usegcloud network-connectivity hubs accept-spoke andgcloud network-connectivity hubs reject-spoke commands instead.

Google Cloud CLI

Improved post-processing times duringgcloud components update andgcloudcomponents install on macOS and Linux.
Fixed write permission check forgcloud auth enterprise-certificate-config create.

Anthos On-Prem

Added--vcenter-resource-pool,--vcenter-datastore,--vcenter-datacenter,--vcenter-cluster,--vcenter-folder,--vcenter-ca-cert-data,--vcenter-storage-policy-name togcloud container vmware clusters create to specify vCenter configurations that are different from its admin cluster.

App Engine

Updated the Java SDK to version 2.0.19 build from the open source project https://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.19.

Binauthz

Added flag--pae-encode-payload in commandgcloud container binauthz attestations sign-and-create to generate DSSE format attestations.
Added flag--dsse-type in commandgcloud container binauthz attestations sign-and-create to allow specifying the DSSE type for the attestations.

Cloud Dataproc

Added--secondary-worker-machine-types flags togcloud dataproc clusters create.

Cloud Datastream

Fixed a bug updating the backfill policy of a stream.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.18.2
- Remove nanosecond precision of event timestamp in the Firestore eventarcintegration(2nd gen).
- Fix a bug to make emulator consistent with production for queries.

Cloud Memorystore

Updatedgcloud memcache instances create command to includeMEMCACHE_1_6_15 as an allowed value for memcached-version flag.
Promoted the commandgcloud memcache instances upgrade to GA.

Cloud NetApp

Fixed a crash when creating NetApp snapshots, backup policies, backup vaults.

Cloud Storage

Added thestorage/parallel_composite_upload_prefix config option, whichallows adjusting the paths of temporary components created during composite uploads.

Cloud TPU

Promotegcloud compute tpus tpu-vm update command and its--descriptionflag to GA.

Compute Engine

Promoted--purpose=global-managed-proxy flag ofgcloud compute networks subnets create to GA.
Added 'STANDARD_WITH_GRAPHQL' enum value togcloud compute security-policiesupdate --json-parsing and promoted it to beta.
Addedspecific-then-any-reservation andspecific-then-no-reservation to the flag--reservation-affinity for alpha and beta in:
- gcloud compute instances create
- gcloud compute instances bulk create
- gcloud compute instances-templates create

Database Migration

AddedPOSTGRES_15 database version option for--database-version flag todatabase-migration connection-profiles create cloudsql.
Added server side SSL support using--ca-certificate flag indatabase-migration connection-profiles create oracle.
Added oracle connection update support viadatabase-migration connection-profiles update oracle.

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.43 to 1.0.0-beta.44.

Kubernetes Engine

Added--enable-backup-restore flag togcloud container clusters create-auto to allow enabling Backup for GKE agent on Autopilot clusters at creation time.

Network Connectivity

Addedgcloud network-connectivity hubs accept-spoke andgcloud network-connectivity hubs reject-spoke commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

446.0.1 (2023-09-14)

Cloud Run

Fixed race condition where tags could go to different Revisions than expected

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

446.0.0 (2023-09-12)

AlloyDB

Added the ability to specify a backup or source cluster using its fullresource path when creating a restored cluster. This enables restoring acrossprojects.

Anthos Multi-Cloud

Added--instance-type flag togcloud container aws node-pools update toupdate the EC2 instance type of node pool nodes.

BigQuery

Added--external_source flag for dataset creation.
- Updatedbq show to display tags on a table.
- Fixed an issue where a command could fail with little to no messaging. Otheruncaught cases will need--debug_mode to get more information.
- Fixed a bug when updatingkms_key_name on a connection.
- Improved logging for discovery doc load and authentication.
- Utilized new python features with breaking changes for python 2.

Certificate Manager

Promotedgcloud certificate-manager trust-configs delete to GA.
Promotedgcloud certificate-manager trust-configs describe to GA.
Promotedgcloud certificate-manager trust-configs export to GA.
Promotedgcloud certificate-manager trust-configs import to GA.
Promotedgcloud certificate-manager trust-configs list to GA.

Cloud Billing

Addedfilter-resource-ancestors flag togcloud billing budget CLI to include folders and organizations filter.

Cloud Composer

Added maintenance window flags for environment update:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- --clear-maintenance-window.

Cloud Dataplex

Added snake case support for dataplex datascans spec file.

Cloud Filestore

Updated--capacity flag description with High Scale tier capacity range.

Cloud Monitoring

Updated the format ofgcloud beta monitoring metrics-scopes list <PROJECT_ID>togcloud beta monitoring metrics-scopes list projects/<PROJECT_ID>.
Updated the format ofgcloud beta monitoring metrics-scopes create <PROJECT_ID>togcloud beta monitoring metrics-scopes create projects/<PROJECT_ID>.
Updated the format ofgcloud beta monitoring metrics-scopes delete <PROJECT_ID>togcloud beta monitoring metrics-scopes delete projects/<PROJECT_ID>.

Cloud NetApp

Add Standard service level togcloud (alpha|beta) netapp storage-pools command group.
Removed explicit check on--volume ingcloud netapp volumes replications stop command.

Compute Engine

Added support for--cloudbuild-service-account flag for:

gcloud compute images import in GA;
gcloud compute instances import in GA;
gcloud compute machine_images import in GA.

Addedalpha andbeta versions of a new API named snapshot settings.Documentation of this feature will be available at https://cloud.google.com/compute/docs/disks/snapshot-settingsfollowing shortly after the release of this version ofgcloud CLI.

Distributed Cloud Edge

Added--version and--release-channel flags togcloud edge-cloud container clusters create command to allow specifying the cluster version and release channel.
Promoted--system-addons-confg,--external-lb-ipv4-address-pools,--control-plane-node-count,--control-plane-machine-filter,--control-plane-shared-deployment-policy,--version, and--release-channel flags from ALPHA to GA.

Network Security

Promotedgcloud network-security server-tls-policies delete to GA.
Promotedgcloud network-security server-tls-policies describe to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

445.0.0 (2023-09-06)

Breaking Changes

(GKE Hub) Removed--security-posture and--workload-vulnerability-scanning flags ofgcloud container fleet andgcloud beta container fleet.
- --security-posture and--workload-vulnerability-scanning flags are not supported yet.
(GKE Hub) Updatedanthos-support andusers flags to be mutually exclusive in adding groups support togcloud container fleet memberships generate-gateway-rbac command.

Google Cloud CLI

Fixed issue where thegcloud CLI would crash on unknown platforms.
Added a warning that--update-adc is now deprecated for 1st-party user credentials and replaced bygcloud auth application-default login.

Anthos Multi-Cloud

Promoted--enable-autorepair and--no-enable-autorepair ofgcloud container aws node-pools create to GA.
Promoted--enable-autorepair and--no-enable-autorepair ofgcloud container aws node-pools update to GA.
Promoted--enable-autorepair and--no-enable-autorepair ofgcloud container azure node-pools create to GA.
Promoted--enable-autorepair and--no-enable-autorepair ofgcloud container azure node-pools update to GA.
Added--admin-groups flag togcloud container aws clusters create for setting groups as admins.
Added--admin-groups flag togcloud container aws clusters update for setting groups as admins.
Added--admin-groups flag togcloud container azure clusters create for setting groups as admins.
Added--admin-groups flag togcloud container azure clusters update for setting groups as admins.
Added--admin-groups flag togcloud container attached clusters create for setting groups as admins.
Added--admin-groups flag togcloud container attached clusters register for setting groups as admins.
Added--admin-groups flag togcloud container attached clusters update for setting groups as admins.
Added--proxy-secret-name and--proxy-secret-namespace flags togcloud container attachedclusters to configure an HTTP/HTTPS proxy for outbound traffic.
Added--binauthz-evaluation-mode flag togcloud container aws clusters create to configure Binary Authorization evaluation mode.
Added--binauthz-evaluation-mode flag togcloud container aws clusters update to configure Binary Authorization evaluation mode.
Added--binauthz-evaluation-mode flag togcloud container attached clusters register to configure Binary Authorization evaluation mode.
Added--binauthz-evaluation-mode flag togcloud container attached clusters update to configure Binary Authorization evaluation mode.
Added--clear-admin-groups and--clear-admin-users flags togcloud container attached clusters update to clear admin users and groups from the cluster.

Cloud Billing

Fixed issue wheregcloud billing budgets create command crashed when run with--filter-labels flag. This issue can be tracked at https://issuetracker.google.com/issues/197773823.

Cloud Build

Modifiedgcloud builds submit to support submitting a build with 2nd-gen repository resource.
Added--dir and--revision flag ingcloud builds submit command.

Cloud Deploy

Added support to fail fast when using an unsupported Skaffold version in thecreate release command.
Added a new commanddeploy get-config which gets the config for the specified region and project.

Cloud Firestore

Added Firestore backups feature support to Alpha.

Cloud NetApp

Added--restricted-actions flag togcloud netapp volumes andgcloud beta netapp volumes during create and update.

Cloud Run

Added--dry_run flag togcloud beta run services replace, which willvalidate the YAML service specification without applying it.
Modified the output format ofgcloud run services describe andgcloud run revisions describe to support multiple containers.

Cloud SQL

Promoted--password-policy-disallow-compromised-credentials flag forgcloud sql instances create andgcloud sql instances patch to GA.

Cloud TPU

Fixed issue wheregcloud compute tpus tpu-vm ssh is unable to login whenproject-levelenable-oslogin:TRUE is configured and instance-levelenable-oslogin is unset.

Compute Engine

Promoted the flag of--instance-template-region to GA ingcloud compute instance-templates create.
Promoted the flag of--region to GA in:
- gcloud compute instance-templates list
- gcloud compute instance-templates delete
- gcloud compute instance-templates describe.

Distributed Cloud Edge

Added--version and--release-channel flags togcloud edge-cloud container clusters create command to allow specifying the cluster version and release channel.

GKE Hub

Updatedgcloud container fleet memberships generate-gateway-rbac to include handling for first-party groups (email) and third-party groups of the formatprincipalSet://iam.googleapis.com/locations/global/workforcePools/example-pool/group/third party group.

Kpt

Updated kpt to v1.0.0-beta.43 release. Refer torelease notes for more details.

Kubernetes Engine

Deprecate--enable-workload-config-audit,--enable-workload-vulnerability-scanning, andenable-security-posture flags ingcloud container clusters {create, create-auto, update}. The replacements for these are:
- --enable-workload-config-audit ->--security-posture=standard
- --enable-security-posture ->--security-posture=standard
- --enable-workload-vulnerability-scanning ->--workload-vulnerability-scanning=standard
Addedenterprise value to the available modes for--workload-vulnerability-scanning flag in the alpha and beta tracks.
Updated default kubectl from 1.27.4 to 1.27.5.
Additional kubectl versions:
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.17)
- kubectl.1.25 (1.25.13)
- kubectl.1.26 (1.26.8)
- kubectl.1.27 (1.27.5)
- kubectl.1.28 (1.28.1)

Network Connectivity

Addedgcloud network-connectivity hubs groups command group.
Addedgcloud network-connectivity service-connection-policies update command.

Notebooks

Added--timeout-minutes to the following commands to allow specifyingcustom timeout for the diagnose operation.
- gcloud notebooks instances diagnose
- gcloud notebooks runtimes diagnose

Policy Troubleshooter

Promotedgcloud policy-intelligence troubleshoot-policy iam to GA.

Workbench

Fixed workbench instances diagnose flags.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

444.0.0 (2023-08-22)

AI

Addedgcloud beta ai persistent-resources command group which supports creating and managing persistent resources for running custom training jobs.

AlloyDB

Added flag--availability-type to specify availability-type for an instanceto the following commands:
- gcloud alloydb instances create
- gcloud alloydb instances update
- gcloud alloydb instances create-secondary
Added the following flags ofgcloud alloydb instances create andgcloud alloydb instances update to alpha, beta and GA:
- --ssl-mode
- --require-connectors
Added flag--allocated-ip-range-name to specify the allocated IP range fora cluster to the following commands:
- gcloud alloydb clusters create
- gcloud alloydb clusters restore
- gcloud alloydb clusters create-secondary

Anthos Multi-Cloud

Added--node-labels flag togcloud container aws node-pools update toupdate the labels assigned to node pool nodes.
Added--clear-node-labels flag togcloud container aws node-pools updateto clear the labels assigned to node pool nodes.

App Engine

Updated the Java SDK to version 2.0.17 build from the open source project https://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.17.

BigQuery

Added--quota_project_id flag to force the quota project of a request.

Cloud Billing

Promotedgcloud billing accounts andgcloud billing projects to GA.

Cloud Dataplex

Promotedresource-read-access-mode flag inassets command group to GA.
Addedexport-results-table flag indatascans create data-profile command.

Cloud Dataproc

Added--min-num-workers flags togcloud dataproc clusters create.
Addedgcloud beta dataproc sessions to create and manage Dataproc interactive sessions.
Addedgcloud beta dataproc session-templates to create and manage Dataproc session templates.

Cloud NetApp

Addedgcloud netapp operations andgcloud netapp locations command group.

Cloud Run

Addedgcloud beta run jobs executions cancel to allow cancelling a runningCloud Run job execution.

Compute Engine

Promoted support for Standby Policy forgcloud compute instance-groups managed create in Alpha.
Promoted support for Standby Policy forgcloud compute instance-groups managed update in Alpha.
Promotedcompute routers get-nat-ip-info to GA.
Promotedgcloud compute future-reservations command group to beta.

Connectors

Addedgcloud connectors command group. Commands in this group provide ways to interact with Integration Connectors resources.

Dataproc Metastore

Promotedgcloud metastore operations cancel to GA.

GKE Hub

Promoted GkeHub tenancy commands to GA.
- Promotedgcloud container fleet methods to GA.
- Promotedgcloud container fleet memberships bindings to GA.
- Promotedgcloud container fleet scopes to GA.
- Promotedgcloud container fleet scopes namespaces to GA.
- Promotedgcloud container fleet scopes rbacrolebindings to GA.

Network Connectivity

Updatedgcloud network-connectivity internal-ranges to supportoverlap-existing-subnet-range enum value for--overlaps flag during create and update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on September 26th, 2023.

443.0.0 (2023-08-15)

AI

Added--notification-channels flag togcloud beta ai model-monitoring-jobs create|update to allow sending alerts to notification channels.

AlloyDB

Added option for--cpu-count=96 ininstances create andinstances update commands.
Added support for specifying--database-version inclusters create command in alpha and beta tracks.

Anthos Multi-Cloud

Promoted--spot-instance-types flag ofgcloud container aws node-pools create to GA.

Anthos On-Prem

Promotedgcloud vmware admin-clusters unenroll to beta.

Artifact Registry

Added--remote-apt-repo and--remote-apt-repo-path togcloud artifacts repositories create to support Apt remote repos.
Added--remote-yum-repo and--remote-yum-repo-path togcloud artifacts repositories create to support Yum remote repos.
Fixed issue wheregcloud artifacts versions delete --delete-tags errors,when the package name has slashes.
Updated to use the project from URI ofgcloud artifacts sbom export for requests.
Include InTotoSlsaProvenanceV1 in the process of computing SLSA build level.

Cloud Bigtable

Promotedgcloud bigtable backups copy to beta and GA.

Cloud Build

Removegcloud builds triggers create gitlab-enterprise command.

Cloud DNS

Added support to allow specifying Global internal Application loadbalancers as health checked targets for Routing Policies.

Cloud Dataflow

Promotedgcloud dataflow jobs update-options from beta to GA.

Cloud Deploy

Enable "Uniform Bucket Level Access" by default for the Cloud Storage buckets created ingcloud deploy releases create.

Cloud Domains

Added information about an agreement between Google and Squarespace, Inc. to Cloud Domainsgcloud domains registrations command group.

Cloud On Demand Scanning

Fixed issue with extracting packages from Go binaries with invaliddependency versions.

Cloud Storage

Fixed--uri flag forbuckets list andobjects list commands.

Compute Engine

Promoted AWS Origin Authentication in BackendService compute API to v1.
Added--managed-protection-tier flag togcloud beta compute project-info update command.

Kubernetes Engine

Added--tpu-topology flag togcloud container node-pools create for creating TPU node pools with a TPU topology. For more information on TPU topologies, see https://cloud.google.com/tpu/docs/types-topologies#tpu_topologies.flag when create a cluster.
Added hugepage related options inside existing--system-config-from-fileflag for users to configure hugepages to clusters/nodepools.

Network Management

Updatedgcloud network-management connectivity-tests list command to printdetails about Google-managed endpoints, networks, and forwarding rules.
Updated help text for theipAddress argument ingcloud network-management connectivity-tests to keep it consistent withthe currently supported scenarios.

Workbench

Fixed issue with metadata flag forgcloud workbench instances create.
Fixed issue with service-account-email flag forgcloud workbench instances create.
Fixed issue with machine_type flag forgcloud workbench instances update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

442.0.0 (2023-08-08)

Artifact Registry

Added an argument group of two flagsallow-sbom-generation anddisable-sbom-generation togcloud artifacts repositories create, to set the SBOM generation config of the repository.
Added an argument group of two flagsallow-sbom-generation anddisable-sbom-generation togcloud artifacts repositories update, to set the SBOM generation config of the repository.
Addedgcloud artifacts sbom export command to export SBOM into Google Cloud Storage.
Addedgcloud artifacts sbom list command to list SBOMs.
Addedgcloud artifacts sbom load command to upload a custom SBOM for an artifact.
Addedgcloud artifacts vulnerabilities load-vex command to upload a vex statement.
Addedgcloud artifacts vulnerabilities list command to list vulnerabilities for an artifact.

Bare Metal Solution

Promotedgcloud bms os-images list to GA.

BigQuery

Fixed a bug in discovery doc load when caching is used.
Fixed a bug that caused a crash in some common actions likebq show.

Cloud Dataflow

Addedgcloud beta dataflow jobs update-options which updates properties ofrunning dataflow jobs.

Cloud Functions

Warned about on deprecation of Container Registry (used by default by CloudFunctions 1st gen for storing build artifacts) and recommended transition toArtifact Registry:https://cloud.google.com/artifact-registry/docs/transition/transition-from-gcr.

Cloud Memorystore

AddedMEMCACHED_VERSION field to the output of the commandgcloud memcache instances list to specify memcached version of the instance.

Cloud Run

Added--network,--subnet,--network-tags,--clear-network and--clear-network-tags flags to the following commands to allow enabling ordisabling Direct VPC egress for a Cloud Run service or job:
- gcloud beta run deploy
- gcloud beta run services update
- gcloud beta run jobs create
- gcloud beta run jobs deploy
- gcloud beta run jobs update
Added--args,--task-timeout,--tasks and--update-env-vars flagstogcloud beta run jobs execute to allow executing a Cloud Run job with runtime overrides.

Cloud SQL

Added--enable-private-service-connect,--allowed-psc-projects and--clear-allowed-psc-projects flags togcloud sql instances createandgcloud sql instances patch to support Private Service Connectfor Cloud SQL.
Addedgcloud sql instances reencrypt, which re-encrypts a Cloud SQL CMEK instancewith the current primary key version.

Cloud Services

Promotedgcloud services api-keys lookup to GA.

Compute Engine

Added support forversion=12 andshort-name=debian in--os-types forgcloud beta compute instances ops-agents policies [create|update].
Promoted--auto-network-tier flag ofgcloud compute routers nats create andgcloud compute routers nats update to GA.
Added--local-ssd-recovery-timeout to specify the timeout to recover LocalSSD to GA for:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
- gcloud compute instances bulk create
- gcloud compute instances set-scheduling
- gcloud compute instances update-from-file
Addedgcloud compute security-policies add/remove-layer7-ddos-defense-threshold-config.
Added--maintenance-interval to specify the frequency of planned maintenance events to beta for:
- gcloud compute instance-templates create
Promoted--resource-policies flag forglcloud compute commitments createto to beta.
Promoted--resource-policies flag forglcloud compute commitments createto to GA.

Database Migration

Modifiedgcloud database-migration connection-profiles --help to specify what the host field value should be when--psc-service-attachment is also specified.
Added--edition togcloud database-migration connection-profiles create cloudsql to allow creating a connection profile with the edition of the given Cloud SQL instance.
Addedskip-validation param togcloud database-migration migration-jobs startandgcloud database-migration migration-jobs restart to allow starting/restartingmigration jobs without running validations.

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.37 to 1.0.0-beta.41.

Kubernetes Engine

flag when create a cluster.
Fixed issue ofgcloud container cluster update --dataplane-v2-observability-mode resettingdataplane-v2-metrics to false.
Updated help-text by adding hyperdisk types to--disk-type choices.

Network Management

AddedforwardingRule argument for destination ingcloud network-management connectivity-tests. This allows the user to runtests using a Forwarding Rule endpoint as a source.

Network Security

Added labels support for Security Profilecreate,add-override,delete-override andupdate-override commands.

Recommender

Added alist command for locations that lists all locations.

Transcoder

Added support for--batch-mode-priority flag when creating a new job.

Transfer

Log info about agent delete delays.
Fix bug for users mounting root with--mount-directories.

Workbench

Addedgcloud workbench instances rollback to rollback workbench instances.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

441.0.0 (2023-08-01)

Artifact Registry

Include InTotoSlsaProvenanceV1 in the provenance output ofgcloud artifacts docker images describe when using--show-provenance flag.
Deprecatedartifacts repositories set-cleanup-policies --overwrite. The overwrite action is now the default behavior.

BigQuery

Fixed bug where local discovery docs were not loaded locally.
Addedfile_set_spec_type flag to support manifest Files in load jobs andexternal tables.

Cloud Bigtable

Updated--transactional-writes behavior ingcloud bigtable app-profile update to no longer silently disable transactional writes, if not specified.--no-transactional-writes must be used to disable transactional writes, as opposed to the previous behavior, which only required omitting--transactional-writes.

Cloud Build

Fixed issue wheregcloud builds triggers update pubsub command returned invalid request when not providing pubsub topic.

Cloud Composer

Fixed an issue where using comments in therequirements.txt file brokeupdating Python packages.

Cloud Dataplex

Promoteddatascans command group to GA.

Cloud Key Management Service

Addedgcloud kms raw-encrypt andgcloud kms raw-decrypt commands tosupport raw symmetric encryption algorithmsAES-128-GCM,AES-256-GCM,AES-128-CBC,AES-256-CBC,AES-128-CTR,and AES-256-CTR.

Cloud NetApp

Removed some extra fields ingcloud {beta, alpha} netapp {storage-pools, volumes, kms-configs} list due to messy output when too many fields.

Cloud Storage

Fixed behavior when preserving both symlinks and POSIX metadata on an OS with limited symlink support.
Fixed an issue clobbering an existing file on download if the file is a broken symlink.
Fixed an issue causing some hidden files to be skipped or transferred multiple times.
Addedname field toobjects andbucketslist anddescribe commands.
Addedbucket field toobjects list anddescribe commands.

Cloud Workstations

Added--enable-nested-virtualization flag togcloud workstations configsto enable nested virtualization on new or existing Cloud WorkstationConfigurations.

Compute Engine

Added newENDPOINT_TYPE_MANAGED_PROXY_LB enum option to--endpoint-types flag ofgcloud compute routers nats create in beta.
Promotedany-single-zone target distribution shape for regional managed instance groups to GA.
Promoted regional INTERNET_IP_PORT and INTERNET_FQDN_PORT Network Endpoint Groups ingcloud compute network-endpoint-groups to beta. Affected commands:
- gcloud compute network-endpoint-groups create - support for Internet NEG types in regional scopes
- gcloud compute network-endpoint-groups list-network-endpoints
- gcloud compute network-endpoint-groups update <RESOURCE_NAME> --add-endpoint
- gcloud compute network-endpoint-groups update <RESOURCE_NAME> --remove-endpoint
Update replica-zones support--create-disk=replica-zones forgcloud compute instance-templates create.
Promoted--purpose=global-managed-proxy flag ofgcloud compute networks subnets create to beta.

Database Migration

Addedgcloud database-migration conversion-workspaces describe-ddls which describes DDLs in a Database Migration Service conversion workspace.
Addedgcloud database-migration conversion-workspaces describe-issues which describes issues in a Database Migration Service conversion workspace.
Addedgcloud database-migration migration-jobs create to allow creating a migration job with a dump parallelization level.
Addedgcloud database-migration migration-jobs update to allow configuring a migration job with a dump parallelization level.
Added--allocated-ip-range togcloud connection-profiles create cloudsql to allow using an allocated subnet range when creating the destination Cloud SQL instance with a private connection.

GKE Hub

Updatedgcloud container fleet memberships generate-gateway-rbac to include handling for third-party principals of the formatprincipal://iam.googleapis.com/locations/global/workforcePools/example-pool/subject/third party user.

Kubernetes Engine

Updated default kubectl from 1.25.11 to 1.26.7.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.16)
- kubectl.1.25 (1.25.12)
- kubectl.1.26 (1.26.7)
- kubectl.1.27 (1.27.4)
Removed prerequisite for using--enable-master-global-access

Network Connectivity

Updatedgcloud network-connectivity internal-ranges update to support setting and clearing overlaps.

Network Security

Added labels support for Security Profile Groupcreate andupdate commands.

Policy Simulator

Addedgcloud beta policy-intelligence simulate orgpolicy which runs aSimulation for OrgPolicy.

Pubsub Emulator

Fixed issue where messages may not be delivered in order when using unarypull.

Workbench

Addedgcloud workbench to manage workbench instances.
Addedgcloud workbench instances add-iam-policy-binding to add iam policy for workbench instances.
Addedgcloud workbench instances delete to delete workbench instances.
Addedgcloud workbench instances describe to describe workbench instances.
Addedgcloud workbench instances get-iam-policy to get the iam policy for workbench instances.
Addedgcloud workbench instances remove-iam-policy-binding to remove the iam policy binding for workbench instances.
Addedgcloud workbench instances set-iam-policy to set the iam policy for workbench instances.
Addedgcloud workbench instances reset to reset workbench instances.
Addedgcloud workbench instances stop to stop workbench instances.
Addedgcloud workbench instances start to start workbench instances.
Addedgcloud workbench instances diagnose to diagnose workbench instances.
Addedgcloud workbench instances upgrade to upgrade workbench instances.
Addedgcloud workbench instances check-instance-upgradability to check upgradability of workbench instances.
Addedgcloud workbench instances create to create workbench instances.
Addedgcloud workbench instances update to update workbench instances.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

440.0.0 (2023-07-25)

Cloud Build

Updated help text for--comment-control flag ingcloud builds triggers bitbucket-server,gcloud builds triggers gitlab andgcloud builds triggers gitlab-enterprise to describe the allowed values.

Cloud Composer

Added--enable-high-resilience togcloud composer environments update to enable high resilience mode for environments.
Added--disable-high-resilience togcloud composer environments update to disable high resilience mode for environments.

Cloud DNS

Added support to allow specifying regional L7 forwarding rules as healthchecked targets for Routing Policies.

Cloud Healthcare

Added support for--stream-configs and--send-for-bulk-import flags to the following commands:
- gcloud healthcare dicom-stores create
- gcloud healthcare dicom-stores update
- gcloud beta healthcare dicom-stores list
- gcloud healthcare dicom-stores list

Cloud NetApp

Added LOCATION to fields to be listed in structured output duringgcloud beta netapp volumes list.

Cloud Pub/Sub

Added a warning when--push-auth-token-audience and--push-auth-service-account flags are ignored due to missing dependentflags ingcloud pubsub subscriptions [create|update|modify-push-config]commands.

Cloud Storage

Modifiedbuckets create so that multiple buckets can be created with a single command.

Compute Engine

Promoted--service-lb-policy flag ofgcloud compute backend-services create andgcloud compute backend-services update to beta.
Promoted--type flag ofgcloud compute routers nats create to beta.
Promoted--source-nat-active-ranges,--source-nat-active-ranges-region,--source-nat-drain-ranges,--clear-source-nat-drain-ranges and--source-nat-drain-ranges-region flags ofgcloud compute routers nats rule update to beta.
Promoted--source-nat-active-ranges and--source-nat-active-ranges-region flags ofgcloud compute routers nats rule create to beta.
Promoted new allowed value:PRIVATE_NAT for--purpose flag ofgcloud compute networks subnets create to beta.
Promoted new:ALL range option for subnets passed to--nat-custom-subnet-ip-ranges flag ofgcloud compute routers nats (create|update).
Promoted--security-profile-group and--[no-]tls-inspect flags forgcloud compute <network->firewall-policies rules <create|update> to beta.
Promotedgcloud compute resource-policies update snapshot-schedule to GA.
Promoted--force-update-on-repair flag ofgcloud compute instance-groups managed <create | update> to GA.
Promoted--confidential-compute flag ofgcloud compute disks create to beta.
Promoted--create-disk=confidential-compute forgcloud compute instances create to beta.

Container Registry

Fixedgcloud container images describe for gcr.io repos in Artifact Registry.

Kubernetes Engine

Updated broken links ingcloud container get-credentials help text.
Added--network-performance-configs=total-egress-bandwidth-tier=[DEFAULT|TIER_1] togcloud container clusters create andgcloud container clusters updateto allow setting default network performance tier for new node-pools. Seegcloud container node-pools create.
Added--enable-multi-networking togcloud container clusters create and added--additional-node-network and--additional-pod-network togcloud container node-pools create to allow creation of multi-networking enabled clusters with additional node and pod networks.
Added--placement-policy flag togcloud container clusters create command.
Added--placement-policy flag togcloud container node-pools create command.
Disabled--enable-insecure-kubelet-readonly-port flag.
Updated help-text by removing--release-channel=NONE option forgcloudcontainer create-auto. This option is not available for create-autosince Autopilot cluster must be subscribed to a release-channel.

Transcoder

Added support for--optimization flag when creating a new job.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

439.0.0 (2023-07-18)

Breaking Changes

(Kubernetes Engine) Renamed--binauthz-policy to--binauthz-policy-bindings ingcloud beta container clusters commands.

App Engine

Updated the Java SDK to version 2.0.16 build from the open source project https://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.16.

Assured Workloads

Added--partner-permissions flag (optional) forgcloud assured workloads create command to enable setting the partner permissions parameter for creation of partner workload (workload managed by local trusted partners) through gcloud command.

BigQuery

Updated bundled discovery docs to revision 20230614.
Fixed bug stoppinghttplib2_debuglevel from being used.
Addedfile_set_spec_type flag to support manifest Files in load jobs andexternal tables.
Addeddestination_kms_key to create / update transfer configs.

Cloud Bigtable

Added--change-stream-retention-period flag togcloud bigtable instances tables create andgcloud bigtable instances tables update.
Added--clear-change-stream-retention-period flag togcloud bigtable instances tables update.
Rebuilt with golang 1.20.6 to address CVEs present in prior versions.

Cloud Bigtable Emulator

Rebuilt with golang 1.20.6 to address multiple CVEs in prior versions of golang.
Added support for reverse scans.

Cloud Build

Promotedgcloud builds triggers update to GA.

Cloud Datastream

Fixed issue where creating an oracle profile with streamLargeObjects field returned an error.

Cloud Functions

Updatedgcloud functions deploy to prompt to allow unauthenticatedinvocations for new 2nd gen functionsbefore deploying. This aligns with thebehavior for new 1st gen functions.

Cloud IAM

Added--web-sso-additional-scopes flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allowsspecification of additional OIDC scopes for web sign-in.

Cloud Memorystore

Added--reserved-ip-range-id flag togcloud memcache instances createto allow specifying named allocations while creating an instance.

Cloud Pub/Sub

Promoted--push-no-wrapper and--push-no-wrapper-write-metadata flagsofgcloud pubsub subscriptions [create|update|modify-push-config] to GA.Adds the ability to set and update payload unwrapping properties for pushsubscriptions. For more information, seethehttps://cloud.google.com/pubsub/docs/payload-unwrapping.

Cloud SQL

Added--[no-]recreate-replicas-on-primary-crash flag togcloud sql instances create andgcloud sql instances patch to enable/disablereplica recreation when a Mysql primary instance operating in reduced durabilitymode crashes.

Cloud Spanner

Added--priority flag togcloud spanner databases execute-sql to allowsetting request priority for the query to convey the relative importance ofworkloads.

Cloud Storage

Fixedgcloud storage buckets update --clear-log-bucket behavior so it now clears the entire logging configuration.
Promotedgcloud storage du command to GA.
Promotedgcloud storage hmac command group to GA.
Promotedgcloud sign-url command to GA.
Standardized resource format fordescribe andlist commands across API providers. Use--raw flag to get the old API-specific format.

Compute Engine

Promoted--custom-learned-route-priority and--set-custom-learned-route-ranges flags ofgcloud compute routers add-bgp-peer to GA.
Promoted--custom-learned-route-priority,--set-custom-learned-route-ranges,--add-custom-learned-route-ranges and--remove-custom-learned-route-ranges flags ofgcloud compute routers update-bgp-peer to GA.
Promoted--http-keep-alive-timeout-sec flag forgcloud compute <target-http-proxies|target-https-proxies> <create|update> to GA.
Promoted--clear-http-keep-alive-timeout-sec flag forgcloud compute <target-http-proxies|target-https-proxies> update to GA.
Added--local-ssd-recovery-timeout to specify the timeout to recover LocalSSD to beta for:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
- gcloud compute instances bulk create
- gcloud compute instances set-scheduling
- gcloud compute instances update-from-file
Added--requested-features flag togcloud compute interconnects create to allow requesting MACSec support for an Interconnect.
Promoted--requested-features flag ofgcloud compute interconnects create to beta.
Promotedgcloud compute interconnects macsec get-config to beta.
Promotedgcloud compute interconnects macsec update to beta.
Promotedgcloud compute interconnects macsec add-key to beta.
Promotedgcloud compute interconnects macsec remove-key to beta.
Addedgcloud compute interconnects macsec update-key to allow updating MACSec pre-shared keys.
Promotedgcloud compute interconnects macsec update-key to beta.
Custom machine type validation in regionalgcloud compute instances bulk create command has been fixed.

GKE Hub

Promotedgcloud container fleet fleetobservability to GA.

Kubernetes Engine

Updated broken links ingcloud container get-credentials help text.
Added--enable-dataplane-v2-metrics and--dataplane-v2-observability-modeflags togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update.

Network Security

Updated import/export schema forgcloud network-security tls-inspection-policies with new fields in beta.
Security Profile Groups and Security Profiles only supportsglobal location.--location flag now takes defaultglobal as location.
Updated Firewall Endpoint Associations resource to accept TLS inspection policy with an optional flag.

Security Command Center

Add deprecation notices togcloud scc assets commands which are being deprecated in favor of Cloud Asset Inventory APIs.

Workbench

Addedgcloud workbench to manage workbench instances.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

438.0.0 (2023-07-11)

Breaking Changes

(AI) Modifiedgcloud ai index-endpoints create to create public endpoint by default. Set--network flag to create private endpoint.

(Cloud IAM) Make--web-sso-response-type and--web-sso-assertion-claims-behaviorflagrequired ingcloud iam workforce-pools providers create-oidc.

(Stackdriver Debugger) Deletedgcloud deploy. Cloud Debugger is deprecated and was shutdown May 31, 2023. For more information, see https://cloud.google.com/debugger/docs/deprecations.

Artifact Registry

Addedartifacts repositories set-cleanup-policies.
Addedartifacts repositories list-cleanup-policies.
Addedartifacts repositories delete-cleanup-policies.

Backup For GKE

Added the following flags togcloud container backup-restore restore-plans create andgcloud container backup-restore restore-plans update to expandcluster resource restore scope options:
- --cluster-resource-scope-all-group-kinds
- --cluster-resource-scope-selected-group-kinds
- --cluster-resource-scope-excluded-group-kinds
- --cluster-resource-scope-no-group-kinds
Deprecated--cluster-resource-restore-scope.Use--cluster-resource-selected-group-kinds instead.
Added the following flags togcloud container backup-restore restore-plans create andgcloud container backup-restore restore-plans update to expandnamespaced resourced restore scope options:
- --no-namespaces
- --excluded-namespaces

Cloud Build

Add E2_MEDIUM machine type.
Promotedgcloud builds connections andgcloud builds repositories to GA.
Promotedgcloud builds triggers create gitlab to GA.

Cloud Datastore Emulator

Released Cloud Datastore emulator v2.3.1
- Fixed bug which caused /reset to never return a response.

Cloud Functions

Added warning and prompting togcloud functions get-iam-policy andgcloud functions remove-iam-policy-binding about needing to bind theroles/run.invoker role for 2nd gen functions.

Cloud Healthcare

Added--stream-configs flag to the following commands:
- gcloud beta healthcare dicom-stores create
- gcloud beta healthcare dicom-stores update

Cloud IAM

Added--client-secret-value flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupclient secret for authorization code flow.
Added--clear-client-secret flag togcloud iam workforce-pools providers update-oidc which allow user to clearclient secret setup for authorization code flow.
Addedcode as value for--web-sso-response-type flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user to setupauthorization code flow.
Addedmerge-user-info-over-id-token-claims as value for--web-sso-assertion-claims-behavior flag togcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc which allow user tomerge the UserInfo Endpoint Claims with ID Token Claims, preferringUserInfo Claim Values for the same Claim Name.

Cloud Pub/Sub

Promoted--cloud-storage-bucket,--cloud-storage-file-prefix,--cloud-storage-file-suffix,--cloud-storage-max-bytes,--cloud-storage-max-duration,--cloud-storage-output-format and--cloud-storage-write-metadata flags ofgcloud pubsub subscriptions create to GA. Adds the ability to set CloudStorage configuration options in Cloud Pub/Sub subscriptions. For moreinformation, see thehttps://cloud.google.com/pubsub/docs/cloudstorage.
Promoted--cloud-storage-bucket,--cloud-storage-file-prefix,--cloud-storage-file-suffix,--cloud-storage-max-bytes,--cloud-storage-max-duration,--cloud-storage-output-format,--cloud-storage-write-metadata, and--clear-cloud-storage-config flagsofgcloud pubsub subscriptions update to GA. Adds the ability to updateCloud Storage configuration options in Cloud Pub/Sub subscriptions. For moreinformation, see thehttps://cloud.google.com/pubsub/docs/cloudstorage.

Cloud SQL

Addedgcloud sql operations cancel to cancel an operation running on aCloud SQL instance.
Addededition andenable-data-cache flags togcloud sql instances create andgcloud sql instances patch to supportEdition and Data Cache.
Addedshow-edition flag togcloud sql instances list andgcloud sql tiers list to display Edition.
Added--password-policy-disallow-compromised-credentials flag togcloud sql instances create andgcloud sql instances patch for ALPHA and BETA.

Cloud Storage

Updated gsutil component to 5.25.
Fix a bug preventing nested directory symlinks from being preserved whenuploading a directory recursively.

Cloud Workstations

Updated--machine-type flag forconfigs command to accept any string.

Compute Engine

Added23.04 to allowed list of values for--version ofgcloud beta compute instances ops-agents policies [create|update].
Promote--instance-kms-key flag ofgcloud compute instance create to GA.
Promoted--preference flag ofgcloud compute backend-services add-backend andgcloud compute backend-services update-backend to beta.
Added--allow-cidr-routes-overlap flag togcloud beta compute networks subnets update command.
AddedSEV_SNP_CAPABLE to the list ofguestOsFeatures.
Added support for clearing fields togcloud beta compute security-policies remove-user-defined-field andgcloud beta compute security-policies rules update.

GKE Hub

Modifiedgcloud container fleet memberships register command to validate that the--manifest-output-file flag is only used with the--install-connect-agent flag.

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.35 to 1.0.0-beta.37.

Kubernetes Engine

Added newkubedns option to--cluster-dns to allow KubeDNS to be explicitly specified as the cluster DNS provider.
AddedGcsFuseCsiDriver option to--addons flag ofgcloud container clusters create to enable the Cloud Storage FUSE Container Storage Interface (CSI) Driver.
AddedGcsFuseCsiDriver option to--update-addons flag ofgcloud container clusters update to enable/disable the Cloud Storage FUSE Container Storage Interface (CSI) Driver.
Updated default kubectl from 1.25.9 to 1.25.11.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.15)
- kubectl.1.25 (1.25.11)
- kubectl.1.26 (1.26.6)
- kubectl.1.27 (1.27.3)

Network Connectivity

Addedgcloud network-connectivity hubs add-iam-policy-binding,gcloud network-connectivity hubs remove-iam-policy-binding,gcloud network-connectivity hubs get-iam-policy, andgcloud network-connectivity hubs set-iam-policy commands.
Addedgcloud network-connectivity hubs list-spokes command which supports listing all spokes associated with a hub.
Addedgcloud network-connectivity hubs route-tables command group which supports listing and describing route tables.
Addedgcloud network-connectivity hubs route-tables routes command group which supports listing and describing routes.
Addedgcloud network-connectivity spokes accept andgcloud network-connectivity spokes reject commands.
Added--global flag togcloud network-connectivity spokes delete,gcloud network-connectivity spokes describe, andgcloud network-connectivity spokes list commands.
Addedgcloud network-connectivity spokes linked-vpc-network command group which supports creating and updating VPC spokes.

Network Security

Addedgcloud network-security firewall-endpoint-associations update to alpha and beta. This command updates the labels and TLS inspection policy of Cloud Firewall Plus associations.

Network Services

Promotedgcloud network-services service-lb-policies to beta.

Recaptcha

Added--skip-billing-check torecaptcha keys migrate. If usage is underthe free quota, the billing check can be safely skipped.

Recommender

Addedlist insight-types to beta for recommender surface.
Addedlist recommenders to beta for recommender surface.
Updatedlist insights to use betalist insight-types command.
Updatedlist recommendations to use betalist recommenders command.

Security Command Center

Updatedgcloud scc findings documentation to fix an invalid finding id used in examples.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

437.0.1 (2023-06-30)

Cloud Storage

Reverted change that brokegcloud storage cp with relative path characters.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

437.0.0 (2023-06-27)

Anthos Multi-Cloud

Modifiedgcloud container aws node-pools list andgcloud container azure node-pools list to fetch server configurations and to give a warning when any of the node pools are running an end-of-life version.

App Engine

Updated the Java SDK to version 2.0.15 build from the open source project https://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.15.
Update dev_appserver handling of api_version in app.yaml for python runtimesfor consistency with prod.
Added bundled services support for thesearch api.

Artifact Registry

Updated the output ofgcloud artifacts docker images describe to include SBOM location information.
Added flag--show-sbom-references togcloud artifacts docker images describe to list SBOM reference occurrences.
Updated the output ofgcloud artifacts docker images describe with flag--show-all-metadata to include SBOM reference occurrences.
AddedGo as an option of--repository-format flag ofgcloud artifacts repositories create to create Go repositories.
Addedgcloud artifacts go upload command to upload Go modules.

Cloud Bigtable

The maximum retention period for a Cloud Bigtable backup has been increased from 30 days to 90 days, giving you more robust data protection and data quality control. For more information on how Bigtable backups work, seehttps://cloud.google.com/bigtable/docs/backups.

Cloud Build

Addedgcloud beta builds connections create gitlab andgcloud beta builds connections update gitlab.

Cloud Filestore

Added--tier=ZONAL flag togcloud beta filestore instances create to support a zonal filestore instance creation.

Cloud NetApp

Removed a print statement that led to messy output duringgcloud beta netapp volumes replications create.

Cloud SQL

Addedgcloud beta sql instances reencrypt, which re-encrypts a Cloud SQL CMEK instance with the current primary key version in beta.

Cloud Storage

Release rsync command

Compute Engine

Gcloud compute will now retry two times if its follow-up Operations.Wait|Getrequests return 503 error.

GKE Hub

Addedgcloud container fleet memberships support-access which allows users to manage Support access.

Network Security

Addedgcloud network-security firewall-endpoints update to alpha and beta. This command updates the labels of Cloud Firewall Plus endpoints.

Recaptcha

Removedgcloud recaptcha firewallpolicies surface and all commands within.Please usegcloud recaptcha firewall-policies instead.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

436.0.0 (2023-06-21)

AlloyDB

Promoted AlloyDB Inject Fault commands to GA track. Modified commands include: alloydb instances inject-fault.

Anthos Multi-Cloud

Modifiedgcloud container aws node-pools describe andgcloud container azure node-pools describe to fetch server configurations and to give a warning when the nodepool is running an end-of-life version.
Modifiedgcloud container aws clusters list andgcloud container azure clusters list to fetch server configurations and to give a warning when any of the clusters are running an end-of-life version.

Batch

Promoted Batch submit job optional prefix feature to beta and GA.

Cloud Deploy

Added new--deploy-parameters togcloud deploy releases create command.When used, deploy parameters will be set for the release.
Addedgcloud deploy rollouts advance,gcloud deploy rollouts cancel,gcloud deploy rollouts ignore-job, andgcloud deploy job-runs terminatecommands for the Deployment Strategies GA launch.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.18.1
- Added a new emulator configuration to start with experimental mode.

Cloud Functions

Fixed issue wheregcloud functions deploy could fail in certain cases ifthe caller was missing permissions to get the project IAM policy.

Cloud IAM

Added flags--folder and--organization togcloud beta services identity create.
- Support folder and organization level service agents creation, in addition to project level service agents.

Cloud NetApp

Added--force parameter togcloud beta netapp volumes replications stop to force stop a replication during a data transfer.

Cloud SQL

Added--preferred-zone flag togcloud sql instances clone --point-in-time to support point in time recovery to a specified zone for PostgreSQL.
Addedgcloud sql instances get-latest-recovery-time command to get the latest recovery time for a PostgreSQL instance.

Cloud Spanner

Promotedspanner databases update command to beta and GA tracks.

Cloud Storage

Fixed issue where certaingcloud storage commands would fail to load whenthePATH environment variable was not set.

Cloud Workstations

Promotingworkstations,workstations configs, andworkstations clusterscommands to GA.

Compute Engine

Promoted--instance-kms-key flag ofgcloud compute instance create to beta.
Promoted--max-count-per-zone flag ofgcloud compute instances bulk create to v1. Flag defines maximum number of instances that can be created per zone for regional bulk insert.
Promoteddisk-consistency-group argument ofgcloud compute resource-policies create to GA.
Promoted--primary-disk,--primary-disk-project,--primary-disk-region,and--primary-disk-zone ofgcloud compute disks create to GA.
Promotedgcloud compute disks start-async-replication to GA.
Promotedgcloud compute disks stop-async-replication to GA.
Promotedgcloud compute disks stop-group-async-replication to GA.
Promotedgcloud compute disks bulk create to GA.
Addeddeny as a choice for--action and--exceed-action ofgcloud compute security-policies rules create|update.

Kubernetes Engine

Added--sole-tenant-node-affinity-file flag togcloud container node-pools createfor creating node pools backed by sole tenant node groups. For more informationsee https://cloud.google.com/kubernetes-engine/docs/how-to/sole-tenancy.
Added--security-posture and--workload-vulnerability-scanning flags togcloud container clusters create,gcloud container clusters create-auto,andgcloud container clusters update for controllingGKE Security Posture features.
Added--workload-policies flag togcloud container clusters create-autoandgcloud container clusters update for enabling NET_ADMIN privilege. Added--remove-workload-policies flag togcloud container clusters update fordisabling NET_ADMIN privilege.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

435.0.1 (2023-06-14)

Cloud Firestore

Removed the--enable-pitr flag fromgcloud firestore databases <create|update> which was causing firestore database creation failures.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

435.0.0 (2023-06-13)

Breaking Changes

(Compute Engine) Modified quota exceeded errors to show future limit and rollout status information to user in addition to original error message.

Anthos Multi-Cloud

Modifiedgcloud container aws clusters describe andgcloud container azure clusters describe to fetch server configurations and to give a warning when the cluster is running an end-of-life version.
Added--root-volume-throughput flag togcloud container aws clusters andgcloud container aws node-pools to support customizable EBS root volume throughput.
Added--main-volume-throughput flag togcloud container aws clusters create to support customizable EBS main volume throughput.
Added--disable-per-node-pool-sg-rules flag togcloud container aws clusters create andgcloud container aws clusters update to disable the default security group rules provisioned for each node pool.
Added--enable-per-node-pool-sg-rules flag togcloud container aws container clusters update to re-enable the default security group rules provisioned for each node pool.

Cloud Bigtable

Add ability to count rows for a prefix.

Cloud Filestore

Added--kms-key flag togcloud filestore backups create, which allows an Enterprise or High Scale backup to be created that is encrypted with a CMEK key." => "which creates a backup with an associated customer-managed encryption key (CMEK). Only available for Enterprise or High Scale tier instances.
Added--instance-location flag togcloud filestore backups create, whichaccepts either a zone or region and allows clients to restore Basic HDD, Basic SSD, and Enterprise tier backups.

Cloud Functions

Promoted--docker-repository,--kms-key,clear-docker-repository, and--clear-kms-key flags ofgcloud functions deploy --gen2 to GA, which bringCMEK support for Cloud Functions 2nd Gen.

Cloud NetApp

Addedgcloud beta netapp group which includesgcloud beta netapp storage-pools,gcloud beta netapp volumes,gcloud beta netapp active-directories,gcloud beta netapp kms-configs,gcloud beta netapp locations,gcloud beta netapp operations,gcloud beta netapp volumes snapshots, andgcloud beta netapp volumes replications.

Cloud Run

Promotedgcloud run services proxy to GA. This command allows you to proxya service or a revision to localhost. Requests will be authenticated as thecurrent SDK account, or with a provided token.

Cloud TPU

Fixed bug so thatgcloud compute tpus tpu-vm ssh respects instancepreference of setting enable-oslogin to false.

Compute Engine

Promotedsource-instant-snapshot flag ofgcloud compute disks create to beta.
Promoted--source-instant-snapshot,--source-instant-snapshot-zone and--source-instant-snapshot-region flags ofgcloud compute snapshots create to beta.
Promotedgcloud compute instant-snapshots create to beta.
Promotedgcloud compute instant-snapshots delete to beta.
Promotedgcloud compute instant-snapshots describe to beta.
Promotedgcloud compute instant-snapshots list to beta.
Promotedgcloud compute instant-snapshots add-labels to beta.
Fixed bug in handling quota exceeded error withgcloud compute commitments create command.
Added force-attach support togcloud compute instances create.
Added--recaptcha-action-site-keys and--recaptcha-session-site-keys togcloud beta compute security-policies rules create|update.
Added--network-user-defined-fields,--network-src-ip-ranges,--network-dest-ip-ranges,--network-ip-protocols,--network-src-ports,--network-dest-ports,--network-src-region-codes, and--network-src-asns togcloud beta compute security-policies rules create|update.
Addedgcloud beta compute security-policies add-user-defined-fields andgcloud beta compute security-policies remove-user-defined-fields commands.
Added--security-policy and--security-policy-region togcloud beta compute instances network-interfaces update.
Addedgcloud beta compute target-pools update andgcloud beta compute target-instances update commands.

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.34 to 1.0.0-beta.35.

Kubernetes Engine

Undeprecated and unhid--logging and--monitoring flags fromgcloud container clusters create-auto.
Added a new commandgcloud container clusters check-autopilot-compatibilitywhich returns a list of autopilot compatibility issues of the given cluster.

Vmware Engine

Added commands for managing resources:
- Private connections:
- Added commands to perform CRUD
- Retrieving exchanged routes
- Subnets:
- Added commands to describe and update a subnet
- Private clouds:
- Added ability to create a time limited PC

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

434.0.0 (2023-06-06)

AlloyDB

Promote Continuous Backups related commands to the GA track, which include changes togcloud alloydb clusters create,gcloud alloydb clusters update andgcloud alloydb clusters restore.

Anthos On-Prem

Modifiedgcloud container vmware admin-clusters list. When specifying--location=-, or when both--location and gcloud configurationcontainer_vmware/location are not specified, return admin clusters in all locations of the specified project.

Cloud Functions

Updatedgcloud functions logs read to read function logs from both 1st genand 2nd gen functions when no function name is provided unless--gen2 or--no-gen2 is set.

Cloud Key Management Service

Promotedgcloud kms inventory which allows viewing and tracking ofkeys across cloud resources.

Cloud Logging

Promoted--custom-writer-identity flag ofgcloud logging sinks create to beta and GA.
Promoted--custom-writer-identity flag ofgcloud logging sinks update to beta and GA.

Compute Engine

Updated the Interconnect attachment Bring Your Own IP (BYOIP) IPv6 fields to be unavailable.
Added--size flag togcloud compute disks update to support size update.
Added hyperdisk-balanced support togcloud compute disks create andgcloud compute instances create.
Added--per-instance-hostnames flag togcloud compute instances bulk create for alpha and beta.
Promoted--http-keep-alive-timeout-sec flag forgcloud compute <target-http-proxies|target-https-proxies> <create|update> and--clear-http-keep-alive-timeout-sec flag forgcloud compute <target-http-proxies|target-https-proxies> update to beta.

Dataproc Metastore

Promoted--endpoint-protocol flag to GA.

Kubernetes Engine

Added--enable-fqdn-network-policy flag togcloud beta container clusters create andgcloud beta container clusters update.

Recommender

Added alist command for insights that lists all available insight types.
Added alist command for recommenders that lists all available recommenders.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

433.0.1 (2023-06-1)

Google Cloud CLI

Disabled self-signed jwt usage for service accounts.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

433.0.0 (2023-05-31)

Breaking Changes

(Cloud Run) Added--[no-]async flags togcloud run jobs delete andgcloud run jobs executions delete with a default value of--no-async.Changed these two commands to wait for delete operation by default.

Google Cloud CLI

Fixed issue where running the install script from within the rootgoogle-cloud-sdk directory would crash with an unactionable error when newversions of certain components were made available prior to installation.

AlloyDB

Promoted AlloyDB Cross Region Replication commands to GA track. Modified commands include: alloydb clusters create-secondary, alloydb clusters promote, alloydb instances create-secondary.

Anthos On-Prem

Modifiedgcloud container bare-metal admin-clusters list. When specifying--location=-, or when both--location and gcloud configurationcontainer_bare_metal/location are not specified, return admin clusters in all locations of the specified project.

Artifact Registry

Updated the output ofgcloud artifacts docker images list with flag--show-occurrences to include SBOM reference occurrences.

Certificate Authority Service

Added--publishing-encoding-format flag togcloud privateca poolscreate andgcloud privateca pools update to allow users to optionallypublish DER encoded CA certificates and CRLs to Google Cloud Storage buckets.

Cloud Build

Added flag to specify substitutions ingcloud builds triggers run.
Modified--branch,--tag,--sha flags to be optional ingcloud builds triggers run command.

Cloud Composer

Added--enable-high-resilience togcloud composer environments create to create environments with high resilience mode.
Addedgcloud composer environments database-failover to manually run a database failover for environments with high resilience enabled.
Addedgcloud composer environments fetch-database-properties to fetch airflow database properties for Composer environments.

Cloud Logging

Addedlogging_service_account_id tosettings describe response.

Cloud SQL

Added--no-recovery,--bak-type and--recovery-only flags togcloud sql import bakand added--bak-type and--differential-base flags togcloud sql export bak to enable the differentialimport/export feature for SQL Server.

Cloud Workstations

Added--accelerator-type and--accelerator-count flags togcloud beta workstations configs create.

Compute Engine

Fixed bug in handling quota exceeded error withgcloud compute commitments create command.
Added--region flag togcloud beta compute security-policies rules commands.
Deprecated--no-client-ttl and--no-max-ttl arguments ofgcloud compute [backend-services|backend-buckets] [create|update].

Kpt

Updated kpt in Google Cloud CLI from 1.0.0-beta.33 to 1.0.0-beta.34.

Kubernetes Engine

Added--enable-best-effort-provision and--min-provision-nodes togcloud container node-pools create to turn on best effort provisioning fornode pool creation.

Network Security

Addednetwork-security firewall-endpoint-associations commands to manage Cloud Firewall Plus endpoint associations, and promoted them to beta.
Promoted commands undergcloud network-security address-groups to GA.
Promoted commands undergcloud network-security org-address-groups to GA.

Security Command Center

Addedgcloud topic datetimes support forgcloud scc command group timestamp and duration flags.

Transfer

Added--docker-network flag togcloud transfer agents install to allowconfiguration of the underlying Docker container's network.

Subscribe to these release notes at https://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

432.0.0 (2023-05-23)

AI

Added--public-endpoint-enabled flag togcloud ai index-endpoints create to support public endpoint.
Modified--network flag ofgcloud ai index-endpoints create to be optional.

Anthos On-Prem

Added--disable-control-plane-v2 flag togcloud container vmware clusters create to explicitly disable the use of control plane v2 feature.
--enable-control-plane-v2 ingcloud container vmware clusters create is by default set for version 1.15+.
Added--ignore-errors flag togcloud container bare-metal admin-clusters unenroll. If set, the unenrollment of a bare metal admin cluster resource will succeed even if errors occur during unenrollment.

Artifact Registry

Changed IAM policy analysis scope to the root of project ingcloud beta artifacts docker upgrade print-iam-policy.

BigQuery

Fixed bug to ensure show works with encrypted S3 managed tables.
- Fixed bug to ensure spark properties can be updated to empty values.
- FixedRANGE<TIMESTAMP> to correctly displayUNBOUNDED boundaries.
- Fixed bug in thebq info command that caused it to always fail.
- Fixed bug where a line of logging was always printed.
- Added connections toget-iam-policy andset-iam-policy.

Cloud Build

Modified (--repo,--repo-type) and--repository to be optional ingcloud builds triggers create manual,gcloud builds triggers create webhook andgcloud builds triggers create pubsub.

Cloud Storage

Updated gsutil component to 5.24.

Compute Engine

Added--http-keep-alive-timeout-sec flag togcloud compute alpha/beta target-http-proxies/target-https-proxies create/update to configure http keep alive timeout sec field in target httpx proxy.
Added--server-tls-policy and--clear-server-tls-policy flags togcloud compute target-https-proxies create/update to attach/detach aserver TLS policy to the target https proxy.
Release pathTemplateMatch and pathTemplateRewrite fields in urlMaps to v1 API.
Updated--consumer-accept-list and--consumer-reject-list ofgcloud compute service-attachments create andgcloud compute service-attachments update to support networks.
Promoted--provisioned-throughput flag ofgcloud compute disks create andgcloud compute disks update to GA.
Promoted--create-disk=provisioned-throughput forgcloud compute instances create andgcloud compute instance-templates create to GA.
Promotedgcloud compute interconnects remote-locations <describe|list> to beta and GA.
Promoted--remote-location flag ofgcloud compute interconnects create to beta and GA.
Promoted--subnet-length flag ofgcloud compute interconnects attachments <dedicated|provider> create to beta and GA.

Container Registry

Changed "gloud container images describe" to check existence of the digest.

Database Migration

Updatedgcloud database-migration connection-profiles create alloydb to support customer-managed encryption key(CMEK).
Updatedgcloud database-migration connection-profiles create cloudsql to support customer-managed encryption key(CMEK).

Kpt

Updated kpt from v1.0.0-beta.31 to v1.0.0-beta.33. See https://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.33 and previous release notes for more details.

Kubernetes Engine

Promoted fieldsgpu-driver-version within--accelerator flag to enableGPU driver auto installation.
Updated default kubectl from 1.24.13 to 1.25.9.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.13)
- kubectl.1.25 (1.25.9)
- kubectl.1.26 (1.26.4)
- kubectl.1.27 (1.27.1)

Network Security

Promotedgcloud network-security security-profile-groups to beta.
Addednetwork-security firewall-endpoints commands to manage Cloud Firewall Plus endpoints, and promoted them to beta.
Promotedgcloud network-security security-profiles threat-prevention to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

431.0.0 (2023-05-16)

Breaking Changes

(Anthos On-Prem) Modified--version flag to be required ingcloud container vmware clusters create.
(Compute Engine) Addedcentos-stream-8 andcentos-stream-9 options to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in GA

Google Cloud CLI

Fixed error when filtering was applied to date or time type keys and their values were None. Now, the resources will be excluded as when values were empty.
Added warning message to indicate support for Python 3.5-3.7 will be deprecated on August 8th, 2023.

Anthos On-Prem

Modifiedgcloud container bare-metal clusters list to return clusters in all locations of the specified project if--location is not specified and configurationcontainer_bare_metal/location is not set.

Artifact Registry

Changed IAM policy translation logic ingcloud beta artifacts docker upgrade print-iam-policy.

Batch

Promoted Batch submit job optional job_id feature to beta and GA.

Cloud Build

Added--repository flag togcloud builds triggers create manual,gcloud builds triggers create webhook andgcloud builds triggers create pubsub which supports creating manual, webhook or Pub/Sub trigger with 2nd-gen repository resource.

Cloud Dataproc

Added--staging-bucket flag togcloud dataproc batches submit ... commands in GA. This sets staging bucket when creating batches.
Added--staging-bucket flag togcloud dataproc session create ... commands in Preview. This sets staging bucket when creating sessions.

Cloud Firestore

Promotedfirestore locations list to GA.

Cloud Run

Promotedgcloud run jobs deploy to GA, which allows creatingor updating a Cloud Run job from a container image or source to build.

Cloud Storage

Added apreserve_symlinks option togcloud storagecp andmv commands;when present, this option will cause file and directory symlinks to berepresented by placeholder files in the cloud, and reconstructed as symlinkswhen downloaded.

Compute Engine

Promotedgcloud compute addresses move to GA.

Compute Firewall Rules

Added--bind-tags-to-instances flag togcloud compute firewall-rules migrate to bind secure tags to VM instances.

Database Migration

Updatedgcloud database-migration migration-jobs create to support customer-managed encryption key(CMEK).

Dataproc Metastore

Promotedgcloud metastore services alter-metadata-resource-location to GA.
Promotedgcloud metastore services alter-table-properties to GA.
Promotedgcloud metastore services move-table-to-database to GA.
Promotedgcloud metastore services query-metadata to GA.

Events

Removedgcloud beta events surface and all commands within. Please usegcloud eventarc instead.

Kubernetes Engine

Deprecated--linux-sysctls flag since--system-config-from-file is now usedto config nodes.

Notebooks

Added--data-disk-type,--data-disk-size,--no-remove-data-disk togcloud notebooks instances create to configure data disk.

Recaptcha

Added--private-key-file,--team-id,--key-id torecaptcha keys create for iOS keys. Providing thesefields allows reCAPTCHA Enterprise to provide more accurate risk scores.
Added--private-key-file,--team-id,--key-id torecaptcha keys update for iOS keys. Providing thesefields allows reCAPTCHA Enterprise to provide more accurate risk scores.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

430.0.0 (2023-05-09)

Breaking Changes

(Distributed Cloud Edge) Changed default behavior ofgcloud edge-cloud container clusters get-credentials to use kubectl exec auth. More info athttps://cloud.google.com/blog/products/containers-kubernetes/kubectl-auth-changes-in-gke. If a user requires use of the deprecated in-tree-auth-plugin, they can revert back to previous behavior by setting an environment flag:USE_GKE_GCLOUD_AUTH_PLUGIN=false.

Google Cloud CLI

Fixed issue wheregcloud auth enterprise-certificate-config create usedcert_issuer instead ofissuer for Windows and MacOS configurations.

AlloyDB

Addedgcloud alloydb users <command> Users API to manage AlloyDB users.

Anthos On-Prem

Modifiedgcloud container vmware clusters list to return clusters in all locations of the specified project if--location is not specified and configurationcontainer_vmware/location is not set.

App Engine

Updated the Python App Engine devappserver to set app.yamlbuild_env_variables when running pip.
Updated the Python App Engine devappserver to fix php55 lost request bug.
Updated the Java SDK to version 2.0.14 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.14.

Bare Metal Solution

Promotedgcloud bms instance rename to GA.
Promotedgcloud bms networks rename to GA.
Promotedgcloud bms nfs-shares rename to GA.
Promotedgcloud bms volumes rename to GA.

Cloud Bigtable

Rebuilt cbt cli with go version 1.20.4 which fixed CVE-2022-41723.
Add ability to count rows for a prefix.

Cloud Bigtable Emulator

Rebuilt cbt emulator with go version 1.20.4 which fixed CVE-2022-41723.

Cloud Build

Added--git-source-revision flag togcloud builds submit.
Added--git-source-dir flag togcloud builds submit.

Cloud Firestore

Promotedfirestore locations list to beta.

Cloud IAM

Added--web-sso-response-type and--web-sso-assertion-claims-behavior flagtogcloud iam workforce-pools providers create-oidc andgcloud iam workforce-pools providers update-oidc to allow user to setupweb sso configuration.

Cloud Logging

Added--custom-learned-route-priority and--set-custom-learned-route-ranges flags ofgcloud compute routers add-bgp-peer in beta to specify the custom learned route configuration.
Added--custom-learned-route-priority,--set-custom-learned-route-ranges,--add-custom-learned-route-ranges and--remove-custom-learned-route-ranges flags ofgcloud compute routers update-bgp-peer in beta to specify the custom learned route configuration.

Cloud Pub/Sub

Thegcloud pubsub pull command now waits for messages by default.
- The--wait flag has been deprecated fromgcloud beta pubsub pull command.
- The--return-immediately flag has been added togcloud beta pubsub pull command to support the old behavior.

Cloud Run

No longer sets theclient.knative.dev/user-image annotation when deployingor updating Cloud Run Services and Jobs.
Fixes issue ingcloud run deploy andgcloud run services update wherechanging--port would fail due to health check errors.

Compute Engine

Update replica-zones support--create-disk=replica-zones forgcloud compute instances create.
Promotedgcloud compute addresses move to beta.
Added--user-ip-request-headers forgcloud compute security-policies update, and promoted it to beta.

Database Migration

Added a set of commands forgcloud database-migration private-connections to perform common (create, list, describe, delete) operations on private connections.
Updatedgcloud database-migration connection-profiles create to support creating Oracle connection profiles.
Updatedgcloud database-migration connection-profiles create to support connectivity in creating Postgresql connection profiles.
Addedgcloud database-migrate conversion-workspaces that supports the following commands for creating and managing conversion workspaces: create, update, delete, list, describe, commit, rollback, seed, import-rules, convert, apply, list background jobs and describe entities.
Updatedgcloud database-migration migration-jobs create to support heterogeneous migration jobs.

Kubernetes Engine

Added--enable-master-global-access flag ofgcloud container clusterscreate-auto.

Looker

Launch Looker (Google Cloud core) for General Availability to the public.

Network Connectivity

Updatedgcloud network-connectivity service-connection-policies create subnet flag field to accept resource arguments.

Network Services

Updated GA schema forgcloud network-services gateways.
This primarily impacts gateway import/export.
It includes SWG-specific changes so gateways of type SWG can be created.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

429.0.0 (2023-05-02)

Breaking Changes

(Compute Engine) Added rocky-9 option to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in GA

Google Cloud CLI

Updated bundled-python cryptography package to 39.0.1 and PyOpenSSL to 23.0.0.

AlloyDB

Added--update-mode flag togcloud alloydb instances updatein alpha and beta tracks.

BigQuery

Addedbq info command to print debug information.
Froze the request library to version '2.27.1' until python2 is removed.
Removed excess line of logging to stderr that was printed on most commands.
Improved error messaging for unsupported regions.
Added support for anencoding when creating a JSON backed external table.
Updated bundledurllib3.

Certificate Authority Service

Added--ignore_dependent_resources flag togcloud privateca roots disable to allow a root CA to be disabled even if it is the last CA in its CA Pool while its CA Pool is being depended on by another cloud resource.
Added--ignore_dependent_resources flag togcloud privateca subordinates disable to allow a subordinate CA to be disabled even if it is the last CA in its CA Pool while its CA Pool is being depended on by another cloud resource.
Added--ignore_dependent_resources flag togcloud privateca roots delete to allow a root CA to be deleted even if its CA Pool is being depended on by another cloud resource.
Added--ignore_dependent_resources flag togcloud privateca subordinates delete to allow a subordinate CA to be deleted even if its CA Pool is being depended on by another cloud resource.
Added--ignore_dependent_resources flag togcloud privateca pools delete to allow a CA Pool to be deleted even if it is being depended on by another cloud resource.

Cloud Bigtable

Rebuilding cbt cli with go version 1.20.3 which fixed CVE-2022-41723.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.17.4
- Added support for eventarc triggers(2nd gen)
- Fix ListDocuments to have page token

Cloud Identity-Aware Proxy

Fixed a low throughput issue that appeared in some download cases forgcloud compute start-iap-tunnel.

Cloud Monitoring

Promotedgcloud monitoring snoozes commands to beta and GA.

Cloud Pub/Sub

Added--event-time flag togcloud pubsub lite-topics publish to allow users to specify an event time when publishing a message.

Cloud Run

Updatedgcloud beta run integrations list to display integrations across allregions by default when--region flag is not specified.

Cloud SQL

Promoted--threads-per-core flag forgcloud sql instances create andgcloud sql instances patch to GA.

Cloud Workstations

Added thebeta workstations list-usable command which lists a user'susable workstations under a given configuration.
Addedgcloud beta workstations get-iam-policy.
Addedgcloud beta workstations set-iam-policy.
Addedgcloud beta workstations configs get-iam-policy.
Addedgcloud beta workstations configs set-iam-policy.

Compute Engine

Added "REGION" column in the output ofgcloud compute ssl-certificates list.
Promoted--gateway-ip-version flag ofgcloud compute vpn-gateways create to beta. Flag defines the IP version of VPN Gateway.
Allowed--interfaces flag to accept IPv6 addresses ofgcloud beta compute external-vpn-gateways create.
Promoted support of regional instance template forgcloud compute instance-groups managed create to beta and GA.
Promoted support of regional instance template forgcloud compute instance-groups managed set-instance-template to beta and GA.
Promoted support of regional instance template forgcloud compute instance-groups managed rolling-action start-update to beta and GA.
Promoted--nat-name flag ofgcloud compute routers get-nat-mapping-info to GA.

Distributed Cloud Edge

Added--lro-timeout forgcloud edge-cloud container clusters create which allows specifying a custom duration for thegcloud CLI to wait on LROs.

Identity and Access Management

Fixed issue withgcloud auth login --login-config=$LOGIN_CONFIG --no-browser not working on Linux machines due to terminal input limit.

Kpt

Updated kpt from v1.0.0-beta.30 to v1.0.0-beta.31. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.31 for more details.

Kubernetes Engine

Added--enable-unstable-kubernetes-apis flag togcloud containers cluster create andgcloud containers cluster update to facilitate enabling beta apis in kube-apiserver.

Network Connectivity

Made network field accept both resource identifier and path.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

428.0.0 (2023-04-25)

Breaking Changes

(Cloud Run) Forgcloud beta run jobs deploy,gcloud run jobs create, andgcloud run jobs update, mark--execute-now and--async flagsmutually exclusive.

Google Cloud CLI

Added--lifetime flag togcloud auth application-default print-access-token to configure serviceaccount impersonation access token lifetime.
Duration flags now support fractional input.

Anthos Multi-Cloud

Promoted--enable-managed-prometheus flag ofgcloud container aws clusters create to GA.
Promoted--enable-managed-prometheus and--disable-managed-prometheus flags ofgcloud container aws clusters update to GA.
Promoted--enable-managed-prometheus flag ofgcloud container azure clusters create to GA.
Promoted--enable-managed-prometheus and--disable-managed-prometheus flags ofgcloud container azure clusters update to GA.
Fixed issue where--max-nodes,--min-nodes, and--max-pods-per-node flags ofgcloud container aws node-pools create andgcloud container azure node-pools create were incorrectly documented as optional.

Anthos On-Prem

Addedgcloud container bare-metal admin-clusters unenroll which removes Cluster API resources so that the cluster is no longer managed by the Anthos On-Prem API.
Added support for annotations in thecontainer bare-metal clusters updatecommand.

Cloud Bigtable

Rebuilding cbt cli with go version 1.20 which fixed cve-2023-24537.

Cloud Bigtable Emulator

Rebuilding cbt emulator with go version 1.20 which fixed cve-2023-24537.

Cloud Run

Addedfirebase-hosting integration type togcloud beta run integrationscommand group.

Cloud Storage

Updated gsutil component to 5.23.

Cloud Tasks

Addedgcloud beta tasks buffer which enables creation of an HTTP taskwithout specifying the task body. It requires the parent queue to havean HTTP target override and is only enabled in the beta track.

Cloud Workstations

Added-labels flag togcloud beta workstations create andgcloud beta workstations cluster create.

Compute Engine

Added--auto-network-tier flag ofgcloud compute routers nats create andgcloud compute routers nats update in beta to select network tier to be used by NAT in auto mode.
Promoted flag--enforce-on-key-configs ofgcloud compute security-policies rules create|update to GA.
Added--certificate-manager-certificates flag togcloud compute target-https-proxies create/update to add a list of ssl certificates created in certificate-manager to the target https proxy.
Added--allow-psc-global-access flag ofgcloud compute forwarding-rules <create|update> to v1.

Compute Firewall Policies

Promoted--src-threat-intelligence and--dest-threat-intelligence flags toGA ingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.
Promoted--src-region-codes and--dest-region-codes flags to GAingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.
Promoted--src-fqdns and--dest-fqdns flags to GA ingcloud compute firewall-policies rules create/update andgcloud compute network-firewall-policies rules create/update commands.
Promoted--src-address-groups and--dest-address-groups flags to GAingcloud compute firewall-policies rules create/update andgcloud compute network-firewall-policies rules create/update commands.

Kubernetes Engine

Added--location flag toclusters,node-pools, andoperationssurfaces as a simpler alternative to--zone or--region.
Updated default kubectl from 1.24.12 to 1.24.13.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.13)
- kubectl.1.25 (1.25.9)
- kubectl.1.26 (1.26.4)

Network Security

Addedgcloud network-security server-tls-policies describe to alpha and beta.
Promotedgcloud network-security gateway-security-policies to GA.
Promotedgcloud network-security gateway-security-policies rules to GA.
Promotedgcloud network-security url-lists to GA.
Promotedgcloud network-security tls-inspection-policies to GA.

Public CA

Promotedgcloud publicca to GA.

Security Command Center

Fixedgcloud scc findings list to provide descriptive error message whenparent argument is omitted.

Transcoder

Added support for--mode flag when creating a new job.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

427.0.0 (2023-04-18)

Breaking Changes

(Google Cloud CLI) Deprecated Python 2. The minimum supported Python version is Python 3.5.
(Cloud Datastore) Removegcloud datastore databases create after version 427.0.0. Please usegcloud firestore database update --type=datastore-mode instead.
(Cloud Firestore) Switchedfirestore database create to use Firestore API.
(Cloud Firestore) Deprecated--region ingcloud firestore database create. Use--location to specify the database location.

Google Cloud CLI

Added--lifetime flag togcloud auth print-access-token to configureservice account impersonation access token lifetime.

App Engine

Updated the Go SDK to version 1.9.75.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.
Updated the Java SDK to version 2.0.13 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.13.
Upgraded Jetty web server to version 9.4.51.v20230217.

Artifact Registry

Promotedgcloud artifacts googet command group to GA.

BigQuery

Removed restrictions to what locations can be used with--location whencombined with--use_regional_endpoints.
ImprovedFormat RANGE<TIMESTAMP> formatting.

Certificate Authority Service

Addedignore_dependent_resources parameter to disable CA, delete CA, and delete CA Pool. These commands would normally fail if the CA Pool would be in a state where it's not able to issue certificates while there's a resource that depends on it. This flag skips the check and may cause unintended and unrecoverable effects on any dependent resource(s) since the CA Pool would no longer be able to issue certificates.

Cloud Firestore

Promotedfirestore databases describe to beta.
Promotedfirestore databases update to beta.
Promotedfirestore databases list to beta.
Promotedfirestore databases describe to GA.
Promotedfirestore databases update to GA.
Promotedfirestore databases list to GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.16.2
- Fixed an issue where some http/1 headers were causing 400 errors.

Cloud On Demand Scanning

Updatedlocal-extract component to 1.5.8 to allow it to run inenvironments withoutglibc.

Cloud Run

Promoted--session-affinity to GA for--platform=managed forgcloud run deploy andgcloud run services update.
Promoted--add-custom-audiences,--clear-custom-audiences,--remove-custom-audiences and--set-custom-audiences to beta for--platform=managed forgcloud run deploy andgcloud run services update.

Cloud SQL

Added PostgreSQL 15 to database versions.

Cloud Spanner

Added database drop protection column togcloud spanner databases listcommand.

Cloud Storage

Promotedgcloud storage insights commands to GA.

Cloud TPU

Addgcloud compute tpus topologies list to list available TPUs by chiptopology.

Cloud Workstations

Adding support for labels in thebeta workstations config create andbeta workstations config update commands.

Compute Engine

Updated the scope flags--zone or--region of the primary disk,--secondary-disk-zone or--secondary-disk-region of the secondary disk to berequired forgcloud compute disks start-async-replication.

Dataproc Metastore

Added support for Dataproc Metastore admin interface. The following commands have been added to alpha/beta release tracks:
- metastore services alter-table-properties

Events

Deprecatedgcloud beta events surface and all commands within. This surfacewill be removed in an upcoming release. Please usegcloud eventarc instead.

GKE Hub

Added--location flag togcloud container fleet memberships register andgcloud beta container fleet memberships register.
If--location is not specified when registering GKE clusters, Membershipregion is selected to match to GKE cluster location by default.
If--location is not specified when registering non-GKE clusters, Membershipregion is selected as "global" by default.

Kpt

Updated kpt from v1.0.0-beta.29 to v1.0.0-beta.30. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.30 for more details.

Kubernetes Engine

Added--addons=GcsFuseCsiDriver togcloud beta container clusterscreate and--update-addons=GcsFuseCsiDriver togcloudbeta container clusters update to enable/disable the Cloud Storage FUSEContainer Storage Interface (CSI) Driver.
Allow--enable-managed-prometheus or--disable-managed-prometheus flagto be passed with--logging and--monitoring flags at the same timeingcloud container clusters update.
Added--additional-pod-ipv4-ranges and--remove-additional-pod-ipv4-rangesflags ofgcloud container clusters update to GA.

Network Connectivity

Renamed 'psc-subnetworks' field to 'subnets' based on review comments.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

426.0.0 (2023-04-11)

Breaking Changes

(Cloud Firestore) Switchedfirestore database create to use Firestore API after version 427.0.0.
(Cloud Firestore) Deprecated--region ingcloud firestore database create. Use--location to specify the database location.--region flag will be remove after version 427.0.0.

Anthos On-Prem

Promotedgcloud container vmware to beta.
Promotedgcloud container bare-metal to beta.

App Engine

Updated the Go SDK to version 1.9.74.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.

Batch

Addedno-external-ip-address flag togcloud batch job submit.

BigQuery

Added warning whenapilog flag is missing that the logging level is being lowered.

Cloud Bigtable

Clarified the functionality of--transactional-writes flag ingcloud bigtable app-profiles update.

Cloud Build

Hide--repository flag ingcloud builds triggers create manual,gcloud builds triggers create webhook andgcloud builds triggers create pubsub.

Cloud Dataflow

AddedJAVA17 togcloud dataflow flex-template command SDK Languageoptions, allowing users to submit Flex Template jobs using Java 17.

Cloud Filestore

Addedgcloud filestore instances revert command in GA to revert a filestoreinstance to specific snapshot.

Cloud Functions

Updatedgcloud functions deploy to no longer require the flag--gen2when updating an existing 2nd gen function. This aligns with the existingbehavior of other commands. You can disable this behavior and only workwith 1st gen functions by either adding--no-gen2 to a commandor by setting thefunctions/gen2 config property tooff.

Cloud Memorystore

Change tocurrent default fromlatest for--maintenance-version flag ingcloud redis instances update to allow updating to the current default maintenance version.

Cloud Org Policy

Added--update-mask flag togcloud org-policies reset command to support partial reset of policies (e.g, reset only dry-run policy spec or live policy spec).

Cloud Run

Promoted--cpu-boost to GA for--platform=managed forgcloud run deploy.

Cloud Workflows

Added thecall-log-level flag togcloud workflows deploy, and add thelog-none value to thecall-log-level flag forgcloud workflows <execute|run>, to specify no call logging even if loggingwas specified at the workflow level.

Compute Engine

Promoted--max-count-per-zone flag ofgcloud compute instances bulk create to beta. Flag defines maximum number of instances that can be created per zone for regional bulk insert.
AddedSEV_LIVE_MIGRATABLE to the list ofguestOsFeatures.
Rearrangedgcloud compute images import source flags by moving--source-file &--source-image to the beginning.

Network Connectivity

Addedgcloud network-connectivity service-connection-policies create andgcloud network-connectivity service-connection-policies delete commands.
Addedgcloud network-connectivity service-connection-policies list andgcloud network-connectivity service-connection-policies describe commands.

Security Command Center

Promotedgcloud scc custom-modules sha to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

425.0.0 (2023-04-04)

Breaking Changes

(Compute Engine) Migrate single requestgcloud compute commands from the compute batch
(Compute Engine) endpoint to region-specific endpoints.

App Engine

RemovedInvalidInstanceIpModeError exception fromgcloud.app.instances.sshbecause SSH is now supported for all Instance Ip Modes.

Artifact Registry

Addedgcloud beta artifacts docker upgrade print-iam-policy.

Certificate Manager

Promotedgcloud certificate-manager trust-configs delete to beta.
Promotedgcloud certificate-manager trust-configs describe to beta.
Promotedgcloud certificate-manager trust-configs export to beta.
Promotedgcloud certificate-manager trust-configs import to beta.
Promotedgcloud certificate-manager trust-configs list to beta.

Cloud Access Context Manager

Added--dry-run-level flag togcloud access-context-manager cloud-bindingsto test cloud-binding before enforcing them.

Cloud Build

Update wait timeout forgcloud builds worker-pools create andgcloud builds worker-pools delete commands to 1h.

Cloud Functions

Updatedgcloud functions add-iam-policy-binding,gcloud functions call,gcloud functions delete,gcloud functions get-iam-policy,gcloudfunctions remove-iam-policy-binding, andgcloud functions set-iam-policyto no longer require the flag--gen2 when operating on a 2nd gen function.This aligns with the existing behavior ofgcloud functions describe. Youcan disable this behavior and only work with 1st gen functions by eitheradding--no-gen2 to a command or by setting thefunctions/gen2 configproperty tooff.

Cloud IAM

Addedgcloud iam workload-identity-pools providers keys commands to manage workload identity pool provider keys.

Cloud Workstations

Adding support for the customer managed encryption key and encryption key service account flags in thebeta workstations config create command.

Compute Engine

Enable "Uniform Bucket Level Access" by default for the temporary Cloud Storage buckets created ingcloud compute images import andgcloud compute images export.
Promoted--source-ip-ranges flag ofgcloud compute forwarding-rules [create|update] to GA.

Database Migration

Added--allocated-ip-range flag togcloud database-migration connection-profiles create cloudsqlto allow selecting an allocated IP range for VPC peering.
Added--alloydb-cluster flag togcloud database-migration connection-profiles createto allow creating a connection profile with an existing AlloyDB cluster.
Added--alloydb-cluster flag togcloud database-migration connection-profiles updateto allow configuring a connection profile with an existing AlloyDB cluster.

Network Security

Promotedgcloud network-security tls-inspection-policies to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

424.0.0 (2023-03-28)

Breaking Changes

(Artifact Registry) Fixed issue where the default table format was used when--show-occurrences flag was passed in, even though that format prevented occurrences from being displayed. Changed to use the default format when the flag is used. Use the same command without--show-occurrences to get the old behavior.

Artifact Registry

Allow usinggcloud beta artifacts images describe with Artifact Registryrepos that use gcr.io domain.
Promotedartifacts settings describeartifacts settings enable-upgrade-redirection, andartifacts settings disable-upgrade-redirection commands to GA.

BigQuery

Fixed issue storing--api flag in the.bigqueryrc file.
Added the option for three-year capacity commitment plans.
Updated wcwidth to version0.2.6.

Certificate Manager

Promotedgcloud certificate-manager issuance-configs to GA.

Cloud Build

Added--default-buckets-behavior flag togcloud builds submit.

Cloud Deploy

Addedgcloud deploy rollouts advance to alpha and beta.
Addedgcloud deploy rollouts cancel to alpha and beta.
Addedgcloud deploy rollouts ignore-job to alpha and beta.
Addedgcloud deploy job-runs terminate to alpha and beta.
Addedstarting-phase-id flag togcloud deploy targets redeploy.
Addedstarting-phase-id flag togcloud deploy targets rollback.
Addedstarting-phase-id flag togcloud deploy releases promote.
Addedinitial-rollout-phase-id flag togcloud deploy releases create.

Cloud Memorystore

Added--maintenance-version flag togcloud redis instances updateto allow updating a maintenance version when updating an instance.

Cloud Run

Promotedgcloud run jobs command group and its sub-commands to GA,except for the following commands:
- gcloud beta run jobs deploy
- gcloud beta run jobs logs
- gcloud beta run jobs executions logs
Promoted--encryption-key-shutdown-hours and--clear-encryption-key-shutdown-hours flags ofgcloud run deployandgcloud run services update to GA for--platform=managed.

Cloud SQL

Addedgcloud sql instances reencrypt, which re-encrypts a Cloud SQL CMEK instance with the current primary key version in alpha.

Cloud TPU

Updategcloud compute tpus tpu-vm create to allow configuration of TPUswith chip topology using--type and--topology flags.

Compute Engine

Promoteddisk-consistency-group argument ofgcloud compute resource-policies create to beta.
Promoted--primary-disk,--primary-disk-project,--primary-disk-region,and--primary-disk-zone ofgcloud compute disks create to beta.
Promotedgcloud compute disks start-async-replication to beta.
Promotedgcloud compute disks stop-async-replication to beta.
Promotedgcloud compute disks stop-group-async-replication to beta.
Promotedgcloud compute disks bulk create to beta.
Fixed documentation for--update-policy-max-surge and--update-policy-replacement-method flags.
Promoted--queue-count flag in--network-interface ofgcloud compute instance-templates create to GA.
Promoted--queue-count flag in--network-interface ofgcloud compute instances bulk create to GA.

Database Migration

Addeddemote-destination request togcloud database-migration migration-jobsto allow demoting the destination of a migration job.

Dataproc Metastore

Promoted thecustom-routes-enabled boolean value to thenetwork-config-from-file flag ofgcloud metastore services create to v1alpha and v1beta.
Fixed issue where commands including an--instance-size flag would fail if the user specified an enum value ofEXTRA_SMALL orEXTRA_LARGE.

Eventarc

Added--event-data-content-type flag togcloud eventarc triggers create andgcloud eventarc triggers update to label the type of payload in MIME format that is expected from the CloudEvent data field.

Kpt

Updated kpt from v1.0.0-beta.27 to v1.0.0-beta.29. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.29 and previous release notes for more details.

Kubernetes Engine

Updates default kubectl from 1.24.11 to 1.24.12.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.12)
- kubectl.1.25 (1.25.8)
- kubectl.1.26 (1.26.3)

Network Security

Promotedgcloud network-security url-lists to beta.
Promotedgcloud network-security gateway-security-policies to beta.
Promotedgcloud network-security gateway-security-policy-rules to beta.

Recaptcha

Added--support-non-google-app-store-distribution torecaptcha keys createthat enables support for non-Google Play Store distributed applications for thekey.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

423.0.0 (2023-03-21)

Google Cloud CLI

Addedgcloud auth enterprise-certificate-config to createenterprise-certificate configurations.
Disabled mTLS during installation.
Fixed crash that occurred when parsing certain repeated dictionary-type flagsif duplicate keys were provided or if invalid choices for another flag werespecified afterwards.
Improved post-processing times duringgcloud components update andgcloudcomponents install on Windows.

App Engine

Updated the Java SDK to version 2.0.12 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.12.
Fixed a DevAppServer issue where in some scenarios, the classio.opencensus.trace.propagation.TextFormat could not be found.
Added--tunnel-through-iap flag togcloud app instances ssh. Using thisflag lets you use an Identity-Aware Proxy (IAP) tunnel when attempting to SSHinto an App Engine flexible environment instance without an external IP address.
Updated the Go SDK to version 1.9.73.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.
Added--tunnel-through-iap flag togcloud app instances scp. Using thisflag lets you use an Identity-Aware Proxy (IAP) tunnel when attempting to SCPto/from an App Engine flexible environment instance without an external IPaddress.

Artifact Registry

Updatedgcloud artifacts docker images describe andgcloud artifacts docker images list to return occurrences when an occurrence filter is used, even if the user does not explicitly say to show occurrences.
Added--immutable-tags flag togcloud artifacts repositories create andgcloud artifacts repositories update.

Bare Metal Solution

Promotedgcloud bms ssh-keys list to GA.
Promotedgcloud bms ssh-keys add to GA.
Promotedgcloud bms ssh-keys remove to GA.

Cloud Build

Added--repository flag togcloud builds triggers create manual,gcloud builds triggers create webhook andgcloud builds triggers create pubsub.

Cloud Dataproc

Added--ttl flag togcloud dataproc batches submit commands in GA.This sets a workload TTL when creating batches.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.16.1
- Fixed: support read_time in ListCollectionIds

Cloud Healthcare

Addedgcloud healthcare fhir-stores metrics which allows users to retrievemetrics associated with a FHIR store.

Cloud Key Management Service

Added--key-management-mode and--crypto-space-path togcloud kms ekm-connections that is used when creating coordinatedexternal keys.
Addedgcloud kms ekm-config commands which enables setting configurationvalues for EKM users.

Compute Engine

Promoted--aws-* flags ofgcloud compute images import to GA.
Promotedgcloud compute sole-tenancy node-groups simulate-maintenance-event to GA.

Database Migration

Added--availability-type flag togcloud database-migration connection-profiles createto allow configuring the availability type on the destination Cloud SQL instance.
Added--secondary-zone flag togcloud database-migration connection-profiles createto allow configuring the secondary zone of the destination Cloud SQL instance whenregional availability type is used.

Kubernetes Engine

Added--enable-fleet flag togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update in alpha, beta track.
Added--fleet-project flag togcloud container clusters create,gcloud container clusters create-auto andgcloud container clusters update in alpha, beta track.
Added--clear-fleet-project flag togcloud container clusters update in alpha, beta track.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

422.0.0 (2023-03-14)

Breaking Changes

(Cloud Pub/Sub) Fixed output format ofgcloud schemas list andgcloud schemas list-revisionsto remove the DEFINITION column if--view is not FULL.

Google Cloud CLI

Addedgcloud auth enterprise-certificate-config to createenterprise-certificate configurations.

Anthos Multi-Cloud

Added--clear-client flag togcloud container azure clusters update toclear the Azure client. This flag is required when updating to use Azureworkload identity federation from Azure client to manage Azure resources.

App Engine

Updated the Python App Engine devappserver to support a new flag--python_virtualenv_path.It is an optional directory that will be used to setup a Python 3 virtual envfor the local devappserver execution environment for Python 3 applications.If the path does not exist it will be created and it will not be cleanup atthe end of the devappserver execution, allowing for caching betweeninvocations. If not defined, a temporary directory will be used and cleaned upat the end of the execution.

Artifact Registry

gcloud beta artifacts settings enable-upgrade-redirection command no longer requires creating missing repos.

Bare Metal Solution

Promotedgcloud bms instances enable-serial-console to GA.
Promotedgcloud bms instances disable-serial-console to GA.

BigQuery

Updated the bundled google auth libraries.
Updated bundled libraries to use charset_normalizer with the request library.

Cloud Datastream

Added themax_concurrent_backfill_tasks support to--mysql-source-config,--oracle-source-config,--postgresql-source-config flags ingcloud datastream streams.

Cloud Functions

Preview of the CMEK support for Cloud Functions, 2nd Gen. In particular,promoted--docker-repository,--kms-key,--clear-docker-repository and--clear-kms-key flags ofgcloud functions deploy --gen2 to beta.

Cloud Run

Removed--condition flag fromgcloud run {services,jobs} {add,remove}-iam-policy-binding.

Cloud Workflows

Added--revision-id flag togcloud workflows describe to allow retrievingthe source code of a workflow at a specific revision.

Cloud Workstations

Addedgcloud beta workstations configs update which updates a specified
Addedgcloud beta workstations ssh which SSH's into a specified workstation.workstation configuration.

Compute Engine

Added--plan togcloud compute commitments update to support commitment term upgrade.
Promotedgcloud compute security-policies rules add-preconfig-waf-exclusion|remove-preconfig-waf-exclusion to GA.
Promoted--queue-count flag in--network-interface ofgcloud compute instances create to GA.
Promoted--internal-ipv6-address flag ofgcloud compute instances create to GA.
Promoted--internal-ipv6-prefix-length flag ofgcloud compute instances create to GA.
Added newADVANCED_PREVIEW enum option to--network-ddos-protection flag ofgcloud compute security-policies update in alpha and beta.

GKE Hub

Changedgcloud container fleet memberships unregister command to assumemembership region based on gke cluster region by default.

Network Connectivity

Fixed issue wheresort-by arguments in list spoke command produced typevalidation errors.

Recaptcha

Support creating express enabled site keys usingrecaptcha keys create --waf-feature=express.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

421.0.0 (2023-03-07)

Artifact Registry

Fixed an issue wheregcloud artifacts docker images list does not return nested images.

BigQuery

Extended third-party identity login to support a web-based 3-legged OAuthflow.
Extendedls -p to page through all projects.
Extended--format forload to support more formats.
Removes some unneeded shipped libraries.
Added logging support for all exceptions when--apilog is present.
Added--encoding forload to support csv encodings.
Updated the bundled cachetools library.

Cloud Filestore

Added--instance-location flag togcloud filestore instances snapshots create, whichaccepts either a zone or region and allows clients to create Enterprise and HighScale snapshots.
Added--instance-location flag togcloud filestore instances snapshots delete, whichaccepts either a zone or region and allows clients to delete Enterprise and HighScale snapshots.
Added--instance-location flag togcloud filestore instances snapshots list, whichaccepts either a zone or region and allows clients to list Enterprise and HighScale snapshots.
Added--instance-location flag togcloud filestore instances snapshots update, whichaccepts either a zone or region and allows clients to update Enterprise and HighScale snapshots.
Added--instance-location flag togcloud filestore instances snapshots describe, whichaccepts either a zone or region and allows clients to describe Enterprise and HighScale snapshots.

Cloud Pub/Sub

Fixedgcloud schemas commit to raise an Invalid Argument errorif--type is not equal toprotocol-buffer,protocol_buffer, oravro.

Cloud Services

Added key-string support for undelete command for api_keys in beta.

Cloud Spanner

Promotedgcloud spanner databases roles list to GA.
Promoted--database-role flag ingcloud spanner databases execute-sql to GA.

Cloud Storage

Updated gsutil component to 5.21.

Cloud Workflows

Added--labels flag togcloud workflows <execute|run> to allow addingexecution specific labels.

Cloud Workstations

Fixed issue with the custom container image not being properly set ingcloud beta workstations configs create.

Compute Engine

Added--encryption togcloud compute interconnects attachments dedicated create to addencryption option for dedicated interconnect attachment (VLAN attachment).
Added--encryption togcloud compute interconnects attachments partner create to addencryption option for partner interconnect attachment (VLAN attachment).
Added--ipsec-internal-addresses togcloud compute interconnects attachments dedicated createto add list of addresses that have been reserved for dedicated interconnectattachment (VLAN attachment).
Added--ipsec-internal-addresses togcloud compute interconnects attachments partner createto add list of addresses that have been reserved for partner interconnectattachment (VLAN attachment).
Added--encrypted-interconnect-router togcloud compute routers create to indicatethat the router is dedicated for use with encrypted interconnect attachments (VLANs).
Added--interconnect-attachments togcloud compute vpn-gateways create to addinterconnect attachments (VLAN attachments) associated with the VPN gateway interfaces.
Added9 to allowed list of values for--version ofgcloud beta compute instances ops-agents policies [create|update].
Promoted--locality_lb_policy flag ofgcloud compute backend-services create/update to GA.
Added--max-run-duration and--termination-time flags ingcloud compute instances set-scheduling to beta.
Added--clear-max-run-duration and--clear-termination-time flags ingcloud compute instances set-scheduling to beta.
Promoted--endpoint-types flag ingcloud compute routers nats create to GA.

Dataproc Metastore

Promoted--auxiliary-versions flag ofgcloud metastore services create to GA. Modified flag to no longer be mutually exclusive with--consumer-subnetworks and--network-config-from-file.
Promoted--auxiliary-versions-from-file flag ofgcloud metastore services create to GA. Modified flag to no longer be mutually exclusive with--consumer-subnetworks and--network-config-from-file.
Promoted--instance-size flag ofgcloud metastore services create andgcloud metastore services update to GA.
Added--instance-size flag togcloud metastore services create andgcloud metastore services update to specify a service instance size.
Promoted--scaling-factor flag ofgcloud metastore services create andgcloud metastore services update to GA.
Added--scaling-factor flag togcloud metastore services create andgcloud metastore services update to specify a service scaling factor.
Modified--tier flag ofgcloud metastore services create andgcloud metastore services update to be mutually exclusive with--instance-size and--scaling-factor in all release tracks.

Identity and Access Management

Added support for credential sharing with bq and gsutil when using browser-based sign-in with Workforce identity federation to authenticate with the Google Cloud CLI viagcloud auth login.

Kpt

Updated kpt from v1.0.0-beta.24 to v1.0.0-beta.27. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.27 and previous release notes for more details.

Kubernetes Engine

Prevent overwriting directory permission when KUBECONFIG contains empty entryor a directory. Instead, raise an error.
Updates default kubectl from 1.24.10 to 1.24.11.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.17)
- kubectl.1.24 (1.24.11)
- kubectl.1.25 (1.25.7)
- kubectl.1.26 (1.26.2)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

420.0.0 (2023-02-28)

Breaking Changes

(Cloud Firestore) Switchedfirestore beta database create to use Firestore API.
(Cloud Firestore) Added--type,--location and--database togcloud beta firestore database create.
(Cloud Firestore) Removed--region ingcloud beta firestore database create. Use--location instead.

App Engine

Added support for App Engine go runtime versions 116, 117, 118, 119, 120.

BigQuery

Updated messaging for theuse_legacy_sql flag.
Added stack trace logging for errors when theapilog flag is used.
Removed unnecessary fetches for data transfer commands.

Certificate Authority Service

Added name constraints arguments togcloud privateca roots create to allowconfiguring certificate authorities with name constraints.
Added name constraints arguments togcloud privateca subordinates create toallow configuring certificate authorities with name constraints.
Added name constraints arguments togcloud privateca certificates create toallow configuring certificate authorities with name constraints.

Cloud Composer

Update warning message when running commands that use the default CloudComposer version, which was changed recently from 1 to 2.

Cloud Functions

Fixed issue wheregcloud functions deploy would crash on updating anexisting function with VPC Connector when--egress-settings flag wasspecified.
Added warning and prompting togcloud functions add-iam-policy-binding aboutneeding to bind theroles/run.invoker role for 2nd gen functions.

Cloud Key Management Service

Addedgcloud beta kms inventory which allows viewing and tracking ofkeys across cloud resources.

Cloud Logging

Promotedbuckets create --enable-analytics to GA.
Addedbuckets update --enable-analytics to GA track.
Removed deprecatedbuckets update --enable-loglink from ALPHA track.
Added--async option to thebuckets create andbuckets update commands.
Addedlinks command group implementation.

Compute Engine

Promoted--queue-count flag in--network-interface ofgcloud compute instances create to beta.
Promoted--stack-type flag ofgcloud compute instances bulk create to GA.
Promotedgcloud compute disks update to GA.
Promoted--provisioned-iops flag ofgcloud compute disks update to GA.

GKE Hub

Addedgcloud container fleet scopes|namespaces which allows users to manage Fleet Tenancy.

Identity and Access Management

Workforce identity federation now supports browser-based sign-in when authenticating with the Google Cloud CLI viagcloud auth login. To learn more, seeObtain short-lived tokens for workforce identity federation or theAzure AD orOkta-specificgcloud CLI sign-in instructions.

Pubsub Emulator

Added support for updating schemas.
Fixed the inability to create topics, subscriptions, and schemas when usingthegcloud CLI.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

419.0.0 (2023-02-22)

App Engine

Updated the Java SDK to version 2.0.11 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.11.

Artifact Registry

Fix issue whereartifacts repositories create failed unconditionally.

Cloud Datastream

Added new--full-hierarchy and--hierarchy-depth flags for connection-profiles discover.
Deprecated--recursive and--recursive-depth flags for connection-profiles-discover.

Cloud Functions

Added support for Docker package format{location}-docker.pkg.dev/{project}/{repository} to--docker-repository flagofgcloud functions deploy.
Fixed issue wheregcloud functions deploy fails if the user doesn't havethe permissionserviceusage.services.get.

Cloud Logging

Promote--logging-optional and--logging-optional-fields flags ofgcloud compute backend-services create andgcloud compute backend-services update to GA.

Cloud Run

Promotedgcloud beta run jobs executions logs read to beta, which reads logs from a selected resource.
Promotedgcloud beta run jobs executions logs tail to beta, which tail logs from a selected resource.

Cloud Storage

gcloud storage cp will now silently ignore the Content-MD5 header for parallel composite uploads.
gcloud storage hash has been promoted to GA.

Firebase Test Lab

Promoted--client-details flag ofgcloud firebase test [android|ios] runto GA. This flag can be used to provide additional details to attach to thetest matrix, including amatrixLabel to help you identify and locate yourtest in the Firebase console.

Recaptcha

Support creating Fastly enabled site keys usingrecaptcha keys create --waf-service=fastly.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

418.0.0 (2023-02-14)

Breaking Changes

(Cloud Dataproc) Modified--job-id and--yarn_application_id flags to--job-ids and--yarn-application-ids respectively ingcloud dataproc clusters diagnosecommand. These flags can now accept a comma separated list of job ids and yarnapp ids instead of a single value.

Google Cloud CLI

Defined "quota_project" ingcloud auth application-default set-quota-project command documentation.
Launched the enterprise-certificate-proxy component. See more at$ gcloud topic client-certificate.

AI

Addedgcloud ai models copy which copies a model.

AlloyDB

Added--clear-continuous-backup-encryption-key flag togcloud beta alloydb clusters update to support clearing a custom encryption configuration for Continuous Backups.
Added following flags ofgcloud alloydb instances create andgcloud alloydb instances update to alpha, beta and GA:
- --insights-config-query-string-length
- --insights-config-query-plans-per-minute
- --insights-config-record-application-tags
- --insights-config-record-client-address

Artifact Registry

Adding new commandgcloud artifacts vpcsc-config allow --project=my-proj --location=us-west1.
Adding new commandgcloud artifacts vpcsc-config deny --project=my-proj --location=us-west1.
Adding new commandgcloud artifacts vpcsc-config describe --project=my-proj --location=us-west1.
Adding new commandgcloud artifacts repositories create my-repo --project=my-project --repository-format=maven --location=us-east1 --description="My test repo" --mode=virtual-repository --upstream-policy-file=policy.json.
Adding new commandgcloud artifacts repositories create my-repo --project=my-project --repository-format=python --location=us-east1 --description="My python repo" --mode=remote-repository --remote-repo-config-desc="test python remote repo" --remote-python-repo=PYPI.
Adding new commandgcloud artifacts repositories create my-repo --project=my-project --repository-format=npm --location=us-east1 --description="My npm repo" --mode=remote-repository --remote-repo-config-desc="test npm remote repo" --remote-npm-repo=NPMJS.
Adding new commandgcloud artifacts repositories create my-repo --project=my-project --repository-format=maven --location=us-east1 --description="My test repo" --mode=remote-repository --remote-repo-config-desc="test maven remote repo" --remote-mvn-repo=MAVEN-CENTRAL.
Adding new commandgcloud artifacts repositories create my-repo --project=my-project --repository-format=docker --location=us-east1 --description="no CRM permission" --mode=remote-repository --remote-repo-config-desc="test docker remote repo" --remote-docker-repo=DOCKER-HUB.

BigQuery

Added SPARK reservation assignment.
Added main class option for Spark procedures.
Added support for bi-engine reservation paths.

Cloud DNS

Fixed issue withgcloud dns response-policies being unable to updategkeclusters flag in GA.
Updatedgcloud dns record-sets create andgcloud dns record-sets updateto allow referencing forwarding rules by their full resource path.

Cloud Datastream

Modified Create/Update Stream flags that use a JSON/YAML file to use camelCase field naming instead of snake_case, to match the REST API.Old snake_case configuration files will still be supported.

Cloud Filestore

Added--location flag togcloud filestore instances snapshots create, whichaccepts either a zone or region and allows clients to create Enterprise and HighScale snapshots.
Added--location flag togcloud filestore instances snapshots delete, whichaccepts either a zone or region and allows clients to delete Enterprise and HighScale snapshots.
Added--location flag togcloud filestore instances snapshots list, whichaccepts either a zone or region and allows clients to list Enterprise and HighScale snapshots.
Added--location flag togcloud filestore instances snapshots update, whichaccepts either a zone or region and allows clients to update Enterprise and HighScale snapshots.
Added--location flag togcloud filestore instances snapshots describe, whichaccepts either a zone or region and allows clients to describe Enterprise and HighScale snapshots.

Cloud Firestore

Added--api-scope and--query-scope support for Firestore Index Create.

Cloud Key Management Service

Set--location and--keyring as required flags for commandsset-primary-version,set-rotation-schedule,get-rotation-schedule,set-iam-policy,get-iam-policy.

Cloud Logging

Allow for protocolsTCP,UDP andUNSPECIFIED ingcloud compute backend-services create andgcloud compute backend-services update.
Added--logging-optional and--logging-optional-fields flags ofgcloud compute backend-services create andgcloud compute backend-services update in beta to specify the optional fields to be added to the reported logs.

Cloud Run

Fixed an issue wheregcloud run delete commands report error sometimes eventhough the deletion succeeded.

Cloud Storage

Updated gsutil component to 5.20.
Allgcloud storage commands that accept JSON files now also support YAML.

Compute Engine

Promoted--resource-policies flag forglcloud compute reservations createto to GA.

Distributed Cloud Edge

Introduced the GDCE version for cluster, machine, and node-pool as output during list and describe operations.
Addedgcloud edge-cloud networking which allows users to configure thenetworking configurations on the ToRs to support customer workloads which arerunning in Google Distributed Cloud Edge Clusters.

Stackdriver Debugger

Deprecatedgcloud debug. Cloud Debugger is deprecated and will be shutdown May 31, 2023. For more information, seehttps://cloud.google.com/debugger/docs/deprecations.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

417.0.1 (2023-02-08)

App Engine Flexible Environment

Fixing issue where App Engine Flex users cannot deploy their PHP, Java or Python applications via gcloud 417.0.0.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

417.0.0 (2023-02-07)

Breaking Changes

(Cloud IoT) Added--device-field-mask flag togcloud iot devices listto have override possibility for device fieldMask. In case the API responsedoes not include theblocked field for any of the devices, theBLOCKEDcolumn will disappear from the results table.

Google Cloud CLI

Defined "quota_project" ingcloud auth application-default set-quota-project command documentation.

Anthos Multi-Cloud

Modifiedgcloud container azure clients create to wait for the returnedlong-running operation. Use--async flag to get the old behavior.
Modifiedgcloud container azure clients delete to wait for the returnedlong-running operation. Use--async flag to get the old behavior.

Cloud Composer

Added warning message when running commands that use the default CloudComposer version, which will be changed soon.

Cloud Logging

Updatedgcloud logging buckets list command to include CMEK enabled or disabled setting.

Cloud Run

Promotedgcloud run jobs deploy to beta, which allows creatingor updating a Cloud Run job from a container image or source to build.

Compute Engine

AddedREGION column to default output ofgcloud compute target-https-proxies list.
Promotedgcloud compute network-attachments to GA.

Distributed Cloud Edge

Promoted--vpc-project togcloud edge-cloud container vpn-connections createto create resources in a different GCP project than the GDCE cluster project.

Firebase Test Lab

Promotedgcloud firebase test [android|ios] list-device-capacities to GA.This feature can inform your test decisions by letting you view the inventorylevel of device types in the Test Lab catalog. To access this information, rungcloud firebase test [android|ios] list-device-capacities, orgcloud firebase test [android|ios] models describe [MODEL_ID].

Identity and Access Management

Addedgcloud iam workforce-pools commands for Workforce Identity Federation management.

Notebooks

Deprecate alpha and beta notebooks.

Security Command Center

Updatedgcloud scc custom-modules sha command group to allow custom modules feature.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

416.0.0 (2023-01-31)

Breaking Changes

(Cloud Datalab) Removedgcloud datalab component (Originally removed in release 413.0.0).

AI

Fixed an issue ingcloud ai hp-tuning-jobs that the values of--max-trial-countand--max-parallel-trial-count are not passed in the config.yaml file.

AlloyDB

Updatedgcloud beta alloydb clusters create andgcloud beta alloydb clusters update to support enabling continuous backups via new--enable-continuous-backup and--continuous-backup-recovery-window-days and--continuous-backup-encryption-key flags.

Anthos Identity Service

Added--fleet-default-member-config flag to the following commands:
- gcloud beta container fleet identity-service enable
- gcloud beta container fleet identity-service delete
  These will make it possible to configure and delete fleetdefault membership configurations.

App Engine

Added the--tunnel-through-iap flag togcloud beta app instances scp.Using this flag lets you use an Identity-Aware Proxy (IAP) tunnel whenattempting to SCP to/from an App Engine flexible environment instancewithout an external IP address.

Cloud Run

Promotesgcloud beta run jobs logs read to beta, which reads logs from a selected resource.
Promotesgcloud beta run jobs logs tail to beta, which tail logs from a selected resource.

Cloud SQL

Promotedgcloud sql users describe command to GA.

Cloud Storage

Updated gsutil component to 5.19.
- Fixed an issue causing parallel transfer commands to require elevated permissions.

Compute Engine

Modifiedgcloud compute instance-groups managed update to support relative path for regional health check.
Added--allow-psc-global-access flag ofgcloud compute forwarding-rules <create|update> to beta.
Promotedgcloud compute resource-policies update snapshot-schedule to beta.

Config Controller

Fixed issue where--full-management flag doesn't take effect.

Immersive Stream

Promotedgcloud immersive-stream xr to GA.

Kubernetes Engine

Updates default kubectl from 1.24.9 to 1.24.10.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.16)
- kubectl.1.24 (1.24.10)
- kubectl.1.25 (1.25.6)
- kubectl.1.26 (1.26.1)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

415.0.0 (2023-01-24)

Google Cloud CLI

Global--format flag now respects thecore/default_format property when--format=default. Ifcore/default_format is not set, thendefault formatisyaml.

AI

Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.
Added--enable-dashboard-access flag togcloud ai custom-jobs create andgcloud ai hp-tuning-jobs create to allow the access to the dashboard specified incustom container.

BigQuery

Added support for using theauth/impersonate_service_account property inbq commands.

Cloud Build

Added command groups for managing connections and repositories:gcloud beta builds connections andgcloud beta builds repositories.

Cloud Dataproc

Addedgcloud dataproc node-groups group with commands:describe andresize.
Added--driver-pool-${X} flags togcloud dataproc clusters create.

Cloud Firestore

Added--database flag togcloud firestore operations to add databasesupport for Firestore operations.

Cloud On Demand Scanning

Fixed issue with extracting packages from Go binaries built with newerversions of to the Go toolchain.

Cloud Org Policy

Added--update-mask togcloud org-policies set-policy to specify the fields to be overwritten in the policy.

Cloud Pub/Sub

Addedgcloud pubsub schemas commit to commit a revision for a Pub/Sub schema.
Addedgcloud pubsub schemas rollback to roll back a revision for a Pub/Sub schema.
Addedgcloud pubsub schemas delete-revision to delete a revision for a Pub/Sub schema.
Addedgcloud pubsub schemas list-revisions to list all revisions for a Pub/Sub schema.
Added--first-revision-id and--last-revision-id flags togcloud pubsub topics create to create schema settings for Pub/Sub topics.
Added--clear-schema-settings,--schema,--message-encoding,--first-revision-id and--last-revision-id flags togcloud pubsub topics update to update schema settings for a Pub/Sub topic.

Cloud SQL

Promotedgcloud sql users describe command to beta.

Compute Engine

Added--update-policy-<type|max-unavailable|max-surge|minimal-action|most-disrtuptive-action|replacement-method> flags ofgcloud compute instance-groups managed <create|update> to GA.
Added--update-policy-min-ready flag ofgcloud compute instance-groups managed <create|update> to beta.
Added--enforce-on-key-configs flag togcloud beta compute security-policies rules create andgcloud beta compute security-policies rules update.

Dataproc Metastore

Promotedgcloud metastore services import flag--dump-type to GA.
Promotedgcloud metastore services export flag--dump-type to GA.

Declarative Workflows

Make--storage-path,--resource-types and--resource-types-filemutually exclusive ingcloud beta resource-config bulk-export.

Kpt

Updated kpt from v1.0.0-beta.19 to v1.0.0-beta.24. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.24 and previous release notes for more details.

Recommender

Added support forgcloud recommender recommendations mark-dismissed.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

414.0.0 (2023-01-18)

Anthos Multi-Cloud

Added--azure-tenant-id and--azure-application-id flags togcloud container azure clusters create andgcloud container azure clusters update to set authentication configurationfor management of Azure resources. These flags replace--client flag.

Apigee

Fixed issue wheregcloud apigee apis describe would demand a non-existent--revision argument.

Cloud API Gateway

Fixed issue wheresort-by arguments in list commands produced typevalidation errors.

Cloud Build

Added--peered-network-ip-range flag togcloud builds worker-pools create.

Cloud Firestore

Added database support for Firestore import/export.
Added namespace_ids support for Firestore import/export.
Added databaseId support for Firestore TTL.
Added databaseId support for Firestore SFI.

Cloud Storage

Add IAM and ACL-related flags.
Updated gsutil component to 5.18.

Compute Engine

Promoted--external-ipv6-address flag ofgcloud compute instances network-interfaces update to GA.
Promoted--external-ipv6-prefix-length flag ofgcloud compute instances network-interfaces update to GA.
Added keywordnetwork-attachment for--network-interface ingcloud compute instance-templates create.
Promoted--external-ipv6-address flag ofgcloud compute instances create to GA.
Promoted--external-ipv6-prefix-length flag ofgcloud compute instances create to GA.
Promoted--source-instance-template flag ofgcloud compute reservations create to GA.

Database Migration

Addedgcloud database-migration conversion-workspaces seed which seeds from a connection profile for a database-migration conversion workspace.
Addedgcloud database-migration conversion-workspaces delete which deletes a database-migration conversion workspace.
Addedgcloud database-migration conversion-workspaces convert which converts source entities to draft entities in a database-migration conversion workspace.
Addedgcloud database-migration conversion-workspaces apply which applies a database-migration conversion workspace onto the destination database.
Addedgcloud database-migration conversion-workspaces list-background-jobs which lists the background jobs in a database-migration conversion workspaces.
Addedgcloud database-migration conversion-workspaces describe-entities which describes the database entities in a database-migration conversion workspaces.

Dataproc Metastore

Promotedgcloud metastore services flag--database-type to GA.

Kubernetes Engine

Updates default kubectl from 1.23.15 to 1.24.9.
Additional kubectl versions:
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.17)
- kubectl.1.23 (1.23.15)
- kubectl.1.24 (1.24.9)
- kubectl.1.25 (1.25.5)
- kubectl.1.26 (1.26.0)

Network Management

AddedappEngineVersion andcloudRunRevision arguments for source ingcloud network-management connectivity-tests. This allows the user to runtests using App Engine version and Cloud Run revision endpoint types as source.

Security Command Center

Fixedgcloud scc findings create to require flagevent-time.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

413.0.0 (2023-01-10)

Breaking Changes

(Cloud Storage) Added--fetch-encrypted-object-hashes flag tols andobjects list commands. API requests to the LIST endpoint do not fetch the hashes for encrypted objects by default. If this flag is set, a GET request is sent for each encrypted object in order to fetch hashes. This can significantly increase the cost of the commands.
- Previously, the fallback to GET was implemented for CSEK-encrypted objects as the default behavior. With this flag, both CSEK and CMEK are handled, andgcloud CLI checks if it has the necessary CSEK key before sending a GET request.
(Kubernetes Engine) This change starts using the Client-Go Credential Plugingke-gcloud-auth-plugin as noted inClient-go Credential Plugin changes.

Google Cloud CLI

Fixed a crash during reauth when Enterprise Certificate is used.
Fixed issue where thegcloud CLI would crash when invoked in PowerShell 7.3.This issue was reported at:https://issuetracker.google.com/issues/259295558.
Addedcore/default_format andcore/format properties to config in orderenable setting a default print format. Print format is first determined byglobal flag--format. If--format flag is not defined, then CLI defaultstocore/format value. Ifcore/format is not defined, then CLI defaults tocommand specific output. If command specific output is undefined, then formatis determined bycore/default_format.core/default_format defaults to yamlformat.

AI

Modified--region flag ofgcloud ai model-monitoring-jobs to include newmodel monitoring jobs regions.
Modified--explanation-metadata-file flag ofgcloud ai models upload from required to optional.
Added optionaloutput-image-uri field to--worker-pool-spec flag ofgcloud ai custom-jobs create to name and store the custom image built with autopackaging in the specified Google Container Registry or Artifact Registry.

Anthos Multi-Cloud

Updatedgcloud container aws operations list to show the underlying action(create, update, delete, etc) associated with AWS long-running operations.
Updatedgcloud container azure operations list to show the underlyingaction (create, update, delete, etc) associated with Azure long-runningoperations.
Addedgcloud container azure operations cancel to cancel an ongoingLRO operation on Azure resources.
Addedgcloud container aws operations cancel to cancel an ongoingLRO operation on AWS resources.
Added--tags flag togcloud container aws node-pools update toupdate the tags assigned to AWS node pool resources.
Added--clear-tags flag togcloud container aws node-pools updateto clear the tags assigned to AWS node pool resources.
Added--autoscaling-metrics-granularity flag togcloud container aws node-pools create to set granularity when enablingCloudWatch metrics collection of the autoscaling group of AWS node pools.
Added--autoscaling-metrics flag togcloud container aws node-pools create to enable collection of specificCloudWatch metrics of the autoscaling group of AWS node pools.
Added--autoscaling-metrics-granularity flag togcloud container aws node-pools update to update the granularity ofCloudWatch metrics collection for the autoscaling group of AWS nodepools.
Added--autoscaling-metrics flag togcloud container aws node-pools update to update the collection ofspecific CloudWatch metrics for the autoscaling group of AWS node pools.
Added--clear-autoscaling-metrics flag togcloud container aws node-pools update to clear the CloudWatch metricscollection associated with the autoscaling group of AWS node pools.
Addedgcloud container attached operations list to show the underlyingaction (create, update, delete, etc) associated with Attached clusterslong-running operations.
Addedgcloud container attached operations describe to show detailedstatus of a provided Attached clusters long-running operation.
Addedgcloud container attached operations wait to wait for completion ofa provided Attached clusters long-running operation.

BigQuery

Fixed issue with timestamp normalization in Windows.
Extended the insert flags to include ainsert_id flag that's appended to therow number of the data to be inserted as theinsertId field that's used fordeduping newly inserted rows. This can be used to ensure repeat executionsdon't add unintended data.

Cloud Access Context Manager

Promotedgcloud access-context-manager authorized-orgs to GA.

Cloud Build

Removed--subscription-filter flag ofgcloud builds triggers create manual.

Cloud Composer

Added--enable-cloud-data-lineage-integration togcloud composerenvironments create/update to enable Cloud Data Lineage integration.
Added--disable-cloud-data-lineage-integration togcloud composerenvironments update to disable Cloud Data Lineage integration.
Enableddb check Airflow command executable viagcloudcomposer environments run for environments with Airflow 2.3 or newer.

Cloud Datalab

Removedgcloud datalab component.

Cloud Run

Added--env-vars-file togcloud beta run jobs create to add environmentvariables to the job from a YAML file.
Removed the call to action fromgcloud beta run integrations describe forRedis integrations that are not ready for use.

Cloud SQL

Added--striped and--stripe_count flags togcloud sql import bakand added--striped flag togcloud sql export bak to enable the stripedimport/export feature for SQL Server.
Promoted--restore-database-name flag forgcloud sql instance clone --point-in-timeto support single database PITR restore for SQL Server to beta and GA.
Addedgcloud sql users describe command, which describes a Cloud SQL user in an instance in alpha.

Cloud Services

Promotedgcloud services api-keys list in beta.
- Promotedgcloud services api-keys describe in beta.
- Promotedgcloud services api-keys get-key-string in beta.
- Promotedgcloud services api-keys create in beta.
- Promotedgcloud services api-keys update in beta.

Cloud Storage

Addedgcloud storage buckets create --placement flag.
Promotedgcloud storage objects update retention flags to GA.
- --event-based-hold
- --temporary-hold
Removedgcloud storage buckets update --no-lock-retention-period flag.

Cloud Workstations

Addedgcloud beta workstations clusters create which creates a cluster under a specified region.
Addedgcloud beta workstations configs create which creates a workstation configuration under a specified cluster.
Addedgcloud beta workstations create which creates a workstation under a specified config.
Addedgcloud beta workstations delete which deletes the given workstation.
Addedgcloud beta workstations configs delete which deletes the given config.
Addedgcloud beta workstations clusters delete which deletes the given cluster.
Addedgcloud beta workstations describe which displays all fields for a given workstation.
Addedgcloud beta workstations configs describe which displays all fields for a given config.
Addedgcloud beta workstations clusters describe which displays all fields for a given cluster.
Addedgcloud beta workstations start which starts a specified workstation.
Addedgcloud beta workstations stop which stops a specified workstation.

412.0.0 (2022-12-13)

Breaking Changes

(Compute Engine) Modified concurrent operation quota errors to show additional information to user instead of just error message.

Google Cloud CLI

Added propertycore/parse_error_details. If set,gcloud CLI will parseand display errors in a more human readable format, where available.

AI

Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.
Modified--region flag ofgcloud ai custom-jobs to include new onlinetraining regions.
Modified--region flag ofgcloud ai hp-tuning-jobs to include new onlinetraining regions.

AlloyDB

Introducedgcloud alloydb track.

Anthos Multi-Cloud

Promotedgcloud container attached to GA.

App Engine

Updatedgcloud beta app instances ssh to use an IAP tunnel when attemptingto SSH to an instance without an external IP.

Cloud Build

Modified one ofgcloud builds triggers run --branch,gcloud builds triggers run --tag, andgcloud builds triggers run --sha flag to be required.
Make--region flag visible inbuilds triggers create command group.Set--dockerfile flag as required forbuilds triggers create command group.
Ungroup--build-config flag and--inline-config flag forbuilds triggers create command group.
Promotedgcloud builds triggers to GA.

Cloud Composer

Addedgcloud composer environments snapshots load - to load a snapshot intothe environment.
Addedgcloud composer environments snapshots save - save a snapshot of theenvironment.
Added--enable-scheduled-snapshot-creation togcloud composerenvironments create/update to enable snapshots of the environment creationaccording to a schedule. Can be specified for Composer 2.0.32 or greater.
Added--snapshot-creation-schedule togcloud composer environmentscreate/update to specify cron expression when snapshots of the environmentshould be created.
Added--snapshot-location togcloud composer environmentscreate/update to specify the Cloud Storage location for storingautomatically created snapshots.
Added--snapshot-schedule-timezone togcloud composer environmentscreate/update to specify Timezone that sets the context to interpretsnapshot_creation_schedule.
Added--disable-scheduled-snapshot-creation togcloud composerenvironments update to disable the automatic snapshots creation.

Cloud Datastream

Fixed issue wheregcloud datastream create failed for Postgresql source config.

Cloud Functions

Added--cpu flag togcloud beta functions deploy for 2nd Gen functions to alpha and beta.
Added--concurrency flag togcloud beta functions deploy for 2nd Gen functions to alpha and beta.

Cloud Pub/Sub

Added--event-time and--publish-time flags togcloud pubsub lite-subscriptions create to create Pub/Sub Litesubscriptions from a nominated timestamp.
Added--export-pubsub-topic,--export-dead-letter-topic and--export-desired-state flags togcloud pubsub lite-subscriptions createto create Pub/Sub Lite export subscriptions.
Added--export-pubsub-topic,--export-dead-letter-topic and--export-desired-state flags togcloud pubsub lite-subscriptions updateto update Pub/Sub Lite export subscriptions.

Cloud SQL

Added--enable-google-private-path flag togcloud sql instances createandgcloud sql instances patch commands in Alpha, Beta, and GA.This field specifies whether the instance is accessibleto internal Google Cloud services such as BigQuery.This is applicable only to MySQL and PostgreSQL instances that don'tuse public IP. Currently, SQL Server isn't supported.

Cloud Services

Promotedgcloud services api-keys delete to beta.
Promotedgcloud services api-keys undelete to beta.

Cloud Workstations

Addedgcloud beta workstations configs list which lists workstation configs under a specified cluster.

Config Controller

Added--full-management flag togcloud anthos config controller createto allow creating Config Controller on GKE Autopilot instances.

Database Migration

Updatedgcloud database-migration connection-profiles create to supportcreating AlloyDB connection profiles.

Firebase Test Lab

Added--robo-script flag togcloud firebase test ios run to customize aniOS Robo crawl with a Robo script.

Identity and Access Management

Added--executable-interactive-timeout-millis flag togcloud iam workforce pools create-cred-config. This enables usingexecutable-sourced credentials with user interactivity withgcloud auth login --cred-file=/path/to/interactive/executable/config.jsonwhen using Workforce Identity Federation.

Kubernetes Engine

Added--stack-type and--ipv6-access-type arguments togcloud container clusters create command to support dual stack GKE clusters.
Added--stack-type argument togcloud container clusters update commandto support changing stack type between IPv4 and dual stack GKE clusters.
Added--ephemeral-storage-local-ssd togcloud beta container clusters create,gcloud beta container node-pools create,gcloud container clusters create,gcloud container node-pools create. This flag is used to configure nodes' ephemeral storage to be backed by local SSDs.
Added--local-nvme-ssd-block togcloud beta container clusters create,gcloud beta container node-pools create,gcloud container clusters create,gcloud container node-pools create. This flag is used to initialize nodes in node-pool with raw-block local NVMe SSDs attached.

Notebooks

Added support for Shielded VM configuration togcloud notebooks instances create.
Added support for reservation configuration togcloud notebooks instances create.

Terraform

Added zone and region option forgcloud beta terraform vet.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

411.0.0 (2022-12-06)

Breaking Changes

(Compute Engine) Added rhel-9 and rhel-9-byol options to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in GA

Google Cloud CLI

Addedgcloud topic command group to alpha and beta.

App Engine

Add--service-account flag ofgcloud app create to GA, which allows to create an app with a user-managed service account.
Add--service-account flag ofgcloud app update to GA, which allows to update the app with a user-managed service account.

App Engine Flexible Environment

Add--service-account flag ofgcloud app create to GA, which allows to create an app with a user-managed service account.
Add--service-account flag ofgcloud app update to GA, which allows to update the app with a user-managed service account.

BigQuery

Expose enable_resumable_uploads flag in public bq.
Formatting fix for bigquery_client.py.
Changed "locking" Owned Test Accounts to "getting" to avoid overloading AccountProviderService.
Extended api logging to include URIs of requests.
Extends encodings supported during file upload.
Messages and fails early when the user tries to upload with an invalid schema.
Adds support for GOOGLE_CLOUD_QUOTA_PROJECT environment variable.
Adds configuration for external accounts using token_uri.
Dataset name validation and feedback.

Cloud Bigtable

Promotedgcloud bigtable instances tables create to beta and GA.
Promotedgcloud bigtable instances tables delete to beta and GA.
Promotedgcloud bigtable instances tables update to beta and GA.
Addedinclude-stats option tocbt lookup andcbt read commands.
Addedcbt notices command, which displays licenses covering all direct and indirect dependencies.

Cloud Build

Bugfix to enforce limits to be applied after filters.
Added--enterprise-config flag tobuilds triggers create github to support creating GitHub Enterprise trigger.

Cloud Composer

Added--enable-scheduled-snapshot-creation togcloud beta composerenvironments create/update to enable snapshots of the environment creationaccording to a schedule. Can be specified for Composer 2.0.32 or greater.
Added--snapshot-creation-schedule togcloud beta composer environmentscreate/update to specify cron expression when snapshots of the environmentshould be created.
Added--snapshot-location togcloud beta composer environmentscreate/update to specify the Cloud Storage location for storingautomatically created snapshots.
Added--snapshot-schedule-timezone togcloud beta composer environmentscreate/update to specify Timezone that sets the context to interpretsnapshot_creation_schedule.
Added--disable-scheduled-snapshot-creation togcloud beta composerenvironments update to disable the automatic snapshots creation.

Cloud Firestore

Add apiScope output for Firestore index. ApiScope can be viewed ingcloud firestore indexes composite list andgcloud firestore indexes composite describe.
Added databaseId support for Firestore index.

Cloud IDS

Added--threat_exceptions flag to exclude certain threat types from beingreported.

Cloud Key Management Service

Modifiedgcloud kms import-jobs create to accept new SHA256 import methodsrsa-oaep-3072-sha256,rsa-oaep-3072-sha256-aes-256,rsa-oaep-4096-sha256, andrsa-oaep-4096-sha256-aes-256.

Cloud Pub/Sub

Promoted--enable-exactly-once-delivery flag ofgcloud pubsub subscriptions create to GA.
Promoted--enable-exactly-once-delivery flag ofgcloud pubsub subscriptions update to GA.

Cloud Run

Promoted--execution-environment ofgcloud run from beta to GA.
Fixed issue wheregcloud beta run jobs execute with--wait flag, andother jobs commands to wait for an execution to complete, failed to wait morethan 30 minutes.
Fixed issue wheregcloud beta run integrations delete failed when theassociated Cloud Run service is deleted.

Cloud SQL

Promoted--timeout flag forgcloud sql instances create to GA.
Added--restore-database-name flag togcloud sql instance clone --point-in-time to support single database PITR restore for SQL Server.

Cloud Services

Updatedgcloud services list to retry 429 errors.
Set the default page size forgcloud services list to 200.
Promotedgcloud services api-keys lookup to beta.

Cloud Spanner

Added--skip-init flag togcloud spanner samples run.

Cloud Storage

Promotedgcloud storage buckets update retention flags to GA.
- --default-event-based-hold
- --retention-period
- --clear-retention-period
- --lock-retention-period
Promotedgcloud storage buckets update --uniform-bucket-level-access to GA.
Rebuiltgcloud-crc32c 1.0.0 on latest version of golang.
Updated gsutil component to 5.17.

Compute Engine

Added--merge-source-commitment togcloud compute commitments create for beta and GA.
Fixed issue wheregcloud compute instance-groups unmanaged list-instanceswould fail to fall back to thecompute/zone property when--zone wasmissing.
Added customRequestHeaders and customResponseHeaders to modifiable fields list ingcloud compute backend-services edit.

Dataproc Metastore

Added support for querying and mutating Dataproc Metastore metadata. The following commands have been added to the alpha and beta release tracks:
- metastore services queryMetadata
- metastore services alterLocation
- metastore services moveTableToDatabase

Distributed Cloud Edge

Added warning to long running operation metadata ofgcloud edge-cloud container cluster create/updatewhen the cluster has a maintenance window configuration that overlaps with otherclusters' in the same project.

Firebase Test Lab

Added--type=robo flag togcloud firebase test ios run to support running iOS Robo tests.

GKE Hub

Fixed bug ingcloud container fleet andgcloud container hub command groups where a membership with ambiguous location was not given default valueglobal.

Kubernetes Engine

Promoted--cluster-dns-scope=cluster flag ofgcloud container clusters create andgcloud container clusters update toGA.
Promoted--binauthz-evaluation-mode=MONITORING,binauthz-evaluation-mode=MONITORING_AND_PROJECT_SINGLETON_POLICY_ENFORCE,and--binauthz-policy flags ofgcloud container clusters create,gcloudcontainer clusters create-auto, andgcloud container clusters update tobeta.
Corrected outdated description help text ofgcloud container node-poolsdelete.
Promoted--placement-type flag forgcloud container clusters createcommand to GA.
Promoted--placement-type flag forgcloud container node-pools createcommand to GA.
Added--async flag togcloud container node-pools create/update to allowthe in-progress operation to be returned, instead of the node pool.
Additionally, default formatting forgcloud container node-poolscreate/update/delete --async has been added to provide a morehuman-readable format of the operation; potentially impacting parsing ofoutput. It is recommended to use--format when parsinggcloud CLIoutput.
Updates default kubectl from 1.22.14 to 1.23.14.
Additional kubectl versions:
- kubectl.1.20 (1.20.15)
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.15)
- kubectl.1.23 (1.23.14)
- kubectl.1.24 (1.24.8)
- kubectl.1.25 (1.25.4)
Added--windows-os-version flag togcloud container node-poolscreate/update to allow create Windows node pools using WindowsServer LTSC 2022 Containerd node image.

Media CDN

Addedgcloud edge-cache command group to enable configuration of Media CDN.

Network Connectivity

Promotedgcloud network-connectivity internal-ranges command group to GA.

Network Security

Promoting networksecurity firewall API to v1beta1.
Promoted commands undergcloud network-security org-address-groups andgcloud network-security address-groups to beta.

Recommender

Added billing account scope support forgcloud recommender recommender-config describe.
Added billing account scope support forgcloud recommender recommender-config update.
Added billing account scope support forgcloud recommender insight-type-config describe.
Added billing account scope support forgcloud recommender insight-type-config update.

Terraform

Added support for environment variablesGOOGLE_PROJECT,GOOGLE_CLOUD_PROJECT,GCLOUD_PROJECT ingcloud beta terraform vet.
Fixed an issue wheregcloud beta terraform vet would fail while trying toformat and output pre-formatted error strings.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

410.0.0 (2022-11-15)

Google Cloud CLI

Addedgcloud topic endpoint-override for details on overriding the default api URL.

AI

Added asia-southeast2, europe-central2, and us-south1 options to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tuning-jobs.

AlloyDB

Introduced the following commands:gcloud beta alloydb clusters create-secondary,gcloud beta alloydb instances create-secondary,gcloud beta alloydb clusters promote.

App Engine

Updated the Java SDK to version 2.0.10 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard/releases/tag/v2.0.10.

Artifact Registry

Update maven and gradle plugin versions to 2.2.0.

Assured Workloads

AddedSOVEREIGN_CONTROLS_BY_T_SYSTEMS as an option for--partner flag ofgcloud assured workloads create command (available for both beta and GA).

Cloud Asset Inventory

Promotedgcloud asset query command to GA.

Cloud Bigtable

Addedstats option to--view flag forbigtable instances tables describe.

Cloud Composer

Added--enable-triggerer togcloud beta composer environments create/update to allow usage of deferrable operators in dags.
Added--triggerer-cpu togcloud beta composer environments create/update to specify CPU allocated to Airflow triggerer.
Added--triggerer-memory togcloud beta composer environments create/update to specify memory allocated to Airflow triggerer.
Added--disable-triggerer togcloud beta composer environments update to disable Airflow triggerer.

Cloud Dataproc

Added--async flag togcloud dataproc jobs kill.

Cloud Datastream

Added themax_concurrent_cdc_tasks support to--mysql-source-config and--oracle-source-config flags ingcloud datastream streams.
Fixed issue wherestream create using amysql-source-config ororacle-source-config with column level filtering fails to create.

Cloud Functions

Fixed issue wheregcloud functions list would crash when a 2nd Gen-onlyregion was specified using--regions.
Updatedgcloud function describe to look up both 1st Gen and 2nd Gen environments for the function. When--gen2 flag is specified, only 2nd Gen functions will be looked up.

Cloud Run

Promotedgcloud run services logs read andgcloud run revisions logs readto beta, which reads logs from a selected resource.
Promotedgcloud run services logs tail andgcloud run revisions logs tailto beta, which tail logs from a selected resource.
Added--execute-now and--wait flags togcloud beta run job update toimmediately execute the job after update and wait for completion.
Promotedgcloud beta run integrations command group and all sub-commands to beta.

Compute Engine

Promoted--list-managed-instances-results flag forgcloud compute instance-groups managed create andgcloud compute instance-groups managed update to GA.
Fixed--network-interface to mark the public IP asNone when--no-address is specified.

GKE Hub

Fixed issue wheregcloud container fleet memberships commands did notoutput memberships with missing cluster.
Fixed bug ingcloud container fleet config-management version wherememberships were stuck with version "NA".

Identity and Access Management

Added support for retrieving the token introspection endpoint through external account credentials.

Kubernetes Engine

Added--labels flag togcloud container node-pools create/update to allow creating and updating node pools with GCP labels.

VPC Access

Promotedgcloud compute networks vpc-access connectors update to beta.
- Enables updating ofmin-instances,max-instances andmachine-type ofalready existing vpc-access connectors.

Vmware Engine

Added commands for managing resources:
- Locations
- Operations
- VMwareEngine networks
- Network policies
- Node types
- Private clouds
- Clusters
- HCX activation keys
- NSX credentials
- VCenter credentials
- Subnets

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

409.0.0 (2022-11-08)

Breaking Changes

(Compute Engine) Modified stockout errors to show entire error object to user in yaml format instead of just error message.
(Compute Engine) Modified quota exceeded errors to show additional information to user instead of just error message.

Google Cloud CLI

Modifiedgcloud config list to accept both a section name and--allflag. The command will display all the set and unset properties whenspecifying both.

Anthos Multi-Cloud

Added--allow-missing flag to the following command groups:gcloud container aws clusters delete,gcloud container aws node-pools delete,gcloud container azure clients delete,gcloud container azure clusters delete,gcloud container azure node-pools delete,to allow the delete request to succeed, even if the cluster, node-poolor client resource does not exist.

Cloud Composer

Added--skip-airflow-overrides-setting togcloud beta composer snapshots load to allow skipping setting Airflow overrides from the snapshot.
Added--skip-environment-variables-setting togcloud beta composer snapshots load to allow skipping setting environment variables from the snapshot.
Added--skip-gcs-data-copying togcloud beta composer snapshots load to allow skipping copying dags, plugins and data folders from the snapshot.

Cloud Datastream

Added themax_concurrent_cdc_tasks support to--mysql-source-config and--oracle-source-config flags ingcloud datastream streams.

Cloud Filestore

Fixed issue where--kms-key was being ignored ingcloud filestore backups create command.

Cloud Firestore Emulator

Promotedgcloud emulators firestore to GA.
Release Cloud Firestore emulator v1.15.1
- feat: allow users to configure websocket port

Cloud Functions

Fixed issue wheregcloud functions list would crash when a 2nd Gen-onlyregion was specified using--regions.

Cloud Logging

Updatedgcloud logging read to accept multiple resources to query using anew--resource-names flag.

Cloud SQL

Added the following flags togcloud sql instances create in BETA:
- --timeout

Compute Engine

Added--split-source-commitment togcloud compute commitments create for beta and GA.
Promotedany-single-zone value support for the flag--target-distribution-shape ofgcloud compute instance-groups managedcreate /update to beta.
Added keywordnetwork-attachment for--network-interface ingcloud compute instances create.
Promoted--max-run-duration flag ofgcloud compute instances create to beta.
- Allows specifying the duration of time after which the instance will terminate.
Promoted--termination-time flag ofgcloud compute instances create to beta.
- Allows specifying the timestamp that the instance will terminate.
Added 3 additional accepted values to--enforce-on-key forgcloud compute security-policies rules create|update and promoted it to GA.
Promotedgcloud compute network-edge-security-services command group to GA.
Promoted--region and '--global' flags ofgcloud compute security-policies to GA.
Promoted--network-ddos-protection flag ofgcloud compute security-policies update to GA.

Distributed Cloud Edge

Removed unsupported GPU_TYPE field fromgcloud edge-cloud container machines list. This field will be restored once the API provides accurate GPU information.

GKE Hub

Fixed a bug wheregcloud container fleet memberships get-credentials andgcloud container hub memberships get-credentials would not return an error when the membership argument was left empty.

Kubernetes Engine

Corrected outdated description help text ofgcloud container node-pools delete.
Added--private-endpoint-subnetwork and--enable-google-cloud-access flags togcloud container clusters create andgcloud container clusters create-auto.
Added--enable-google-cloud-access and--enable-private-endpoint flags togcloud container clusters update.
Added--enable-private-nodes flag togcloud container node-pools create andgcloud container node-pools update.

Notebooks

Addedgcloud notebooks instances diagnose andgcloud notebooks runtimes diagnose commands to GA.These commands provide access to the AI Platform Notebooks new Diagnose API.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

408.0.1 (2022-11-02)

BigQuery

Adds various fixes to PSC environments.
Adds support for random forest models as part of BQML.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

408.0.0 (2022-11-01)

Breaking Changes

(Cloud Storage) Lifecycle and CORS settings files now use camel case instead of snake case to match the API documentation. Example:http://cloud/storage/docs/json_api/v1/buckets#lifecycle.

AI

Added more available regions togcloud ai model-monitoring-jobs.
Added--version-description flag togcloud ai models upload to support setting model version description.

BigQuery

Add missing open source licenses.
Expose Iceberg for public preview.

Cloud Composer

Added--connection-type flag togcloud beta composer environments create andgcloud composer environments create command to allow forcing the use of VPC peerings for internal communication.

Cloud Deploy

Addedinitial-rollout-labels andinitial-rollout-annotations flags togcloud deploy releases create command.

Cloud SQL

Promoted--connector_enforcement flag forgcloud sql instances create andgcloud sql instances patch to GA.

Cloud Storage

Updated gsutil component to 5.16.

Compute Engine

Promoted--discard-local-ssd flag ofgcloud compute instances stop to beta.
Promoted--force-update-on-repair flag ofgcloud compute instance-groups managed <create | update> to beta.
Fixed missing ephemeral IP when neither--address nor--no-address keys are provided with--network-interface flag during instance template creation.

GKE Hub

Changed membership-related flags ingcloud container fleet andgcloud container hub command groups to resource arguments, adding--location flag andLOCATION column in list commands.

Kubernetes Engine

Promoted--enable-managed-prometheus flag ofgcloud container clusterscreate/update to GA.
Promoted--disable-managed-prometheus flag ofgcloud container clustersupdate to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

407.0.0 (2022-10-25)

Breaking Changes

(Cloud Run) Nowgcloud beta run jobs update command removes existing BinaryAuthorization breakglass justification if--breakglass flag is not set.
(Cloud Run) Ingcloud run deploy andgcloud run services update,--set-secrets,--remove-secrets, and--update-secrets flags now support mountingmultiple versions of the same secret in the same directory.
(Cloud Run)
- If multiple different secrets are requested to be mounted in the samedirectory, including for secrets already set on the service in the caseof--update-secrets, the operation will now fail instead of silentlyoverriding all secret versions with the last one specified.
(Compute Engine) Removed--csek-key-file flag ofgcloud beta compute instances resume
- Removing since instance suspend and resume do not support CSEK
- If your instance with CSEK protection is suspended, please stop theinstance then restart it and file a bug.

Assured Workloads

Added ASSURED_WORKLOADS_FOR_PARTNERS as an option for--compliance-regime flag ofgcloud assured workloads create command.
Added--partner flag (optional) forgcloud assured workloads create command to enable creation of partner workload (workload managed by local trusted partners) through gcloud command.

Cloud DNS

Promotedgcloud dns managed-zones get-iam-policy andgcloud dns managed-zones set-iam-policy to GA.

Cloud Dataplex

Promoted Content command group to GA.
Promoted Environment command group to GA.

Cloud Datastream

Addedpostgresql type to--type flag ofdatastream connection-profiles <create/update>.
Addedpostgresql type to--postgresql-rdbms-file flag ofdatastream connection-profiles discover.
Added--postgresql-source-config flag togcloud datastream streams <create/update>.
Addedpostgresql type to--type flag ofdatastream connection-profiles <create/update>.

Cloud Filestore

Added--kms-key flag togcloud beta filestore backups create, which allows an Enterprise or High Scale backup to be created that is encrypted with a CMEK key." => "which creates a backup with an associated customer-managed encryption key (CMEK). Only available for Enterprise or High Scale tier instances.
Added--location flag togcloud beta filestore instances restore, whichrestores Enterprise instances." => "restore Basic HDD, Basic SSD, and Enterprise tier instances.
Added--instance-location flag togcloud beta filestore backups create, whichaccepts either a zone or region and allows clients to create Basic HDD, Basic SSD, and Enterprise tier backups.

Cloud SQL

Added the following flags togcloud sql instances create andgcloud sql instances patch in BETA:
- --connector_enforcement

Cloud Storage

Updated gsutil component to 5.15.

Cloud Workstations

Promotedgcloud beta workstations commands to beta forPreview.

Compute Engine

Promoted--source-machine-image,--source-machine-image-csek-key-file, and--erase-windows-vss-signature flags ofcompute instances create to GA.
Fixed an issue with--create-disk and--disk flags that causesgcloud compute instance-templates create orgcloud compute instance-templates create-with-container to fail when attaching a boot disk.
Promoted--region flag forcompute target-tcp-proxies to GA.

Compute Firewall Policies

Fixed bug ingcloud compute network-firewall-policies rules update thatwould causesrc-secure-tags to not be updated.

GKE Hub

Modifiedgcloud container fleet memberships register to skip Connect agentinstallation for GKE clusters by default.Use--install-connect-agent flag to get the old behavior.
Modifiedgcloud container fleet memberships unregister to skip Connect agentuninstallation for GKE clusters by default.Use--uninstall-connect-agent flag to get the old behavior.
Added--install-connect-agent flag togcloud container fleet membershipsregister andgcloud container hub memberships register to install connectagent on GKE clusters.
Added--uninstall-connect-agent flag togcloud container fleet membershipsunregister andgcloud container hub memberships unregister to uninstallConnect agent on GKE clusters.

Identity and Access Management

Addedgcloud iam policies create which creates a deny policy on the givenattachment point with the given name.
Addedgcloud iam policies delete which deletes a deny policy on the givenattachment point with the given name.
Addedgcloud iam policies get which gets a deny policy on the givenattachment point with the given name.
Addedgcloud iam policies list which lists the deny policies on the givenattachment point.
Addedgcloud iam policies update which updates the deny policy on the givenattachment point with the given name.
Updated External Account URL validation to allow PSC endpoints.

Kubernetes Engine

Added--gateway-api flag togcloud container clusters create andgcloud container clusters update which allows users to turn on the GKE Gateway controller for their cluster and to select the Gateway API release channel they want to use.

Security Command Center

Updatedgcloud scc notifications update to allow for project and folderparents.
Updatedgcloud scc notifications create to allow for project and folderparents.
Updatedgcloud scc notifications delete to allow for project and folderparents.
Updatedgcloud scc notifications list to allow for project and folderparents.
Updatedgcloud scc notifications describe to allow for project and folderparents.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

406.0.0 (2022-10-17)

Breaking Changes

(Cloud Storage) Changed "Additional Properties" formatting forls -L to print condensed JSON object instead of JSON list withkey andvalue keys before every key and value.
(Kubernetes Engine) Remove deprecated--istio-config flag ofgcloud beta container clusters create andgcloud beta container clusters update.

Anthos Multi-Cloud

Promoted--logging flag togcloud container aws clusters create andgcloud container azure clusters create to update the logging config.
Promoted--logging flag togcloud container aws clusters update andgcloud container azure clusters update to update the logging config.
Added--annotations flag togcloud container azure node-pools create toset the annotations field when creating Azure node pools.
Added--annotations flag togcloud container azure node-pools update toupdate the annotations of Azure node pools.
Added--clear-annotations flag togcloud container azure node-poolsupdate to clear the annotations of Azure node pools.

Bare Metal Solution

Promotedgcloud bms nfs-shares create to GA.
Promotedgcloud bms nfs-shares delete to GA.
Promotedgcloud bms volumes restore to GA.
Promotedgcloud bms volumes snapshot to GA.
Promotedgcloud bms volumes snapshots describe to GA.
Promotedgcloud bms volumes snapshots list to GA.
Promotedgcloud bms volumes snapshots delete to GA.
Promoted--add-allowed-client flag ofgcloud bms nfs-shares update to GA.
Promoted--remove-allowed-client flag ofgcloud bms nfs-shares update to GA.
Promoted--clear-allowed-clients flag ofgcloud bms nfs-shares update to GA.
Promotedgcloud bms instances stop to GA.

BigQuery

Fixed issue with--api flag in external clients.
Added support for the target_job_concurrency flag and begins deprecating theconcurrency flag.
Added the max_staleness flag for external tables.
Added support for SIMPLE with the object_metadata flag.
Added ZSTD as an extract option.

Certificate Manager

Addedgcloud certificate-manager issuance-configs command group to beta. Commandsin this group allow for configuring Private Trust certificate issuance.
Added--issuance-config flag forgcloud certificate-manager certificates createcommand to beta. The flag allows configuring managed certificates issuancewith Private Trust.

Cloud Access Context Manager

Changed--level flag ofgcloud access-context-manager cloud-bindings createandgcloud access-context-manager cloud-bindings update totake a string input instead of a resource:
- No change is required on any previous configurations as a result of thischange.

Cloud Datastream

Added BigQuery destination type support.

Cloud Firestore Emulator

Promotedgcloud emulators firestore to GA.

Cloud SQL

Added the following flags togcloud sql instances create andgcloud sql instances patch for ALPHA:
- --connector_enforcement

Cloud TPU

Promoted--shielded-secure-boot flag ofgcloud compute tpus tpu-vm to GA.

Compute Firewall Policies

Updatedgcloud compute firewall-policies rules create to include help textforsrc-threat-intelligence,src-fqdns,src-region-codes,src-address-groups,dest-threat-intelligence,dest-fqdns,dest-region-codes anddest-address-groups.
Updatedgcloud compute firewall-policies rules update to include help textforsrc-threat-intelligence,src-fqdns,src-region-codes,src-address-groups,dest-threat-intelligence,dest-fqdns,dest-region-codes anddest-address-groups.
Updatedgcloud compute network-firewall-policies rules create to includehelp text forsrc-threat-intelligence,src-fqdns,src-region-codes,src-address-groups,dest-threat-intelligence,dest-fqdns,dest-region-codes anddest-address-groups.
Updatedgcloud compute network-firewall-policies rules update to includehelp text forsrc-threat-intelligence,src-fqdns,src-region-codes,src-address-groups,dest-threat-intelligence,dest-fqdns,dest-region-codes anddest-address-groups.
Promoted--src-address-groups and--dest-address-groups flags tobeta ingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.
Promoted--src-fqdns and--dest-fqdns flags to betaingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.

Kpt

Updated kpt from v1.0.0-beta.15 to v1.0.0-beta.19.https://github.com/GoogleContainerTools/kpt/releases.

Kubernetes Engine

Promoted the GKE add-onBackupRestore ofgcloud container clusters<create|update> to GA. This add-on is disabled by default.
- Use--addons=BackupRestore to enable the add-on during cluster creation.
- Use--update-addons=BackupRestore=ENABLED|DISABLED to enable/disable theadd-on for existing GKE clusters.

Managed Active Directory

Promotedgcloud active-directory domains extend-schema to GA.

Network Security

Updatedgcloud network-security address-groups list to include theTYPE,CAPACITY andUSAGE columns in the output.
Updatedgcloud network-security org-address-groups list to includetheTYPE,CAPACITY andUSAGE columns in the output.

Security Command Center

Updatedgcloud scc notifications update to allow for project and folderparents.
Updatedgcloud scc notifications create to allow for project and folderparents.
Updatedgcloud scc notifications delete to allow for project and folderparents.
Updatedgcloud scc notifications list to allow for project and folderparents.

405.0.1 (2022-10-14)

GKE Hub

Updatedgke-gcloud-auth-plugin to 0.4.0.

Cloud Bigtable

Updated the version ofcbt to v1.12.1.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

405.0.0 (2022-10-04)

Google Cloud CLI

Fixed issue where revoking impersonated ADC credentials caused a crash.
Fixed issue where it was not possible to set a logging configuration whencreating a regional backend service in alpha and beta.

Anthos Multi-Cloud

Added--tags flag togcloud container aws clusters update toupdate the tags assigned to control plane replicas.
Added--clear-tags flag togcloud container aws clusters updateto clear the tags assigned to control plane replicas.

App Engine

Updated the Java SDK to version 2.0.9 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard.
Fixedhttps://github.com/GoogleCloudPlatform/app-maven-plugin/issues/480.

Artifact Registry

Automatically creates missing repos forgcloud beta artifacts settings enable-upgrade-redirection command.

Batch

Promotedgcloud batch to GA track.

Cloud Dataplex

Updatedgcloud dataplex tasks create to support scheduling notebooks.

Cloud Firestore

Promotedgcloud firestore fields ttls command group to GA.

Cloud Spanner

Promotedgcloud spanner instance-configs [create|update|delete] to GA.

Cloud SQL

Promoted--time-zone flag ofgcloud sql instances create command to GA.
Provided a helpful error message when Cloud SQL Proxy fails to start duringgcloud sql connect command.

Cloud Run

Addedgcloud beta run jobs replace to deploy a job from yaml.

Compute Engine

Added ubuntu-2204 and windows-11-x64-byol options to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in GA
Updatedgcloud compute instance-templates create not to crash ifinstantiate-from value is not specified in--configure-disk when using--source-instance flag.
Promoted--md5-authentication-key flag ofgcloud compute routers add-bgp-peer to GA.
Promoted--md5-authentication-key and--clear-md5-authentication-key flags ofgcloud compute routers update-bgp-peer to GA.

Firebase Test Lab

Delayed displaying information about the number of devices used until afterall executions are created.

Identity and Access Management

Fixed an issue that would cause the Google Cloud CLI to crash when using invalid External Account Credentials.

Kubernetes Engine

Added a prompt when passing--enable-binauthz togcloud containerclusters update that acknowledges the current version of BinaryAuthorization will be downgraded.
Promoted--enable-cost-allocation flag ofgcloud container clusters create to GA.
Promoted--enable-cost-allocation flag ofgcloud container clusters update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

404.0.0 (2022-09-27)

App Engine

Updated the Java SDK to version 2.0.8 build from the open source projecthttps://github.com/GoogleCloudPlatform/appengine-java-standard.
Updatedgcloud app instances ssh to explicitly error when attempting toSSH to an instance without an external IP.

Assured Workloads

Promotedgcloud assured workloads violations commands to GA.This command provides the ability to create new Assured Workloads environment resources.

Batch

Improved error message formats forgcloud batch jobs submit unparsable json config file,gcloud batch jobs describe job andgcloud batch tasks describe task that does not exist.
Added newbatch/location property that can be used to set a default location. To set the properties, rungcloud config set batch/location LOCATION.

BigQuery

Add support for storage_billing_model flag for datasets.
Allow users to log in with pluggable-auth based external accountcredentials.
Add support for configuring the access token lifetime for service accountimpersonation when using external account credentials.
Add session support for load jobs.

Cloud Asset Inventory

Added--saved-analysis-query option togcloud asset analyze-iam-policy, which runs a saved analysis query when specified.
Addedgcloud asset saved-queries commands, which creates, retrieves, updates and deletes saved queries in a specified project, folder or organization.

Cloud Memorystore

Added--maintenance-version flag togcloud beta redis instances updateto allow updating a maintenance version when updating an instance.

Cloud Storage

Addedstorage/key_store_path property for encryption/decryption keys.
Updated gsutil component to 5.14.

Compute Engine

Promoted--region forgcloud compute ssl-policies to GA.

Eventarc

Updatedgcloud eventarc triggers list to return the locations of triggers.

Identity and Access Management

Fixed bug that occurs when switching external account credentials.

Kubernetes Engine

Adds new kubectl v1.25 for GKE rapid channel.
Removes old kubectl v1.19.
Updates default kubectl from 1.22.12 to 1.22.14.
Additional kubectl versions:
- kubectl.1.20 (1.20.15)
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.14)
- kubectl.1.23 (1.23.11)
- kubectl.1.24 (1.24.5)
- kubectl.1.25 (1.25.1)

Managed Active Directory

Added support forgcloud beta active-directory domains migration forenabling existing domain migration.

Policy Troubleshooter

Updatedgcloud policy-troubleshoot iam beta and GA Command to use V2Alpha1 API.

Stackdriver Monitoring

Added--validate-only flag togcloud monitoring dashboards create toallow validating dashboards without saving.

Terraform

Fixed issue where http proxy environment variables were not used ingcloudbeta terraform vet.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

403.0.0 (2022-09-20)

Breaking Changes

(Assured Workloads) Removed AU_REGIONS_AND_US_SUPPORT as compliance regime options forgcloud assured workloads create command.
(Assured Workloads) Removed messages related to 'Versioning' as they should not be used externally.
(Assured Workloads) Removed v1beta1 messages from v1 api and vice-versa.
(Assured Workloads) Updated violation acknowledge api to POST Request.

Google Cloud CLI

Fixed issue where MTLS endpoints were not used whenuse_client_certificatewas true.
Fixed issue wheregcloud auth application-default set-quota-project wouldfail ifserviceusage.services.use permission was revoked from the activeproject.
Added bundled Python 3 as a default component onx86_64 component-basedLinux installs. The bundled Python 3 interpreter will be preferred over thesystem Python interpreter when invoking the gcloud command-line tool.
- The bundled Python 3 interpreter should work on supported Linux systems, buta different interpreter can be specified by setting theCLOUDSDK_PYTHONenvironment variable. Seegcloud topic startup andhttps://cloud.google.com/sdk/docs/install#linux for more information.

AI

Addedgcloud beta api indexes remove-datapoints andgcloud beta api indexes upsert-datapoints to support Matching Engine steaming update.

AlloyDB

Added support to specify automated backup policy ingcloud beta alloydbclusters create.
Updatedgcloud beta alloydb clusters create to support PITR (point in time recovery) configuration via new--disable-pitr and--pitr-log-retention-window flags.

Artifact Registry

Fixed a bug where the plus sign ("+") was not escaped properly, making itimpossible to delete artifacts with a plus sign in their version.

Batch

Improved error message formats forgcloud batch jobs submit unparsable json config file,gcloud batch jobs describe job andgcloud batch tasks describe task that does not exist.

BigQuery

Expose object_metadata for private preview.
Improve error message for unparseable parameters.

Binauthz

Updatedgcloud container binauthz attestations list to also returnoccurrences in cases where the artifact-url does not begin with https.

Cloud DNS

Added Location flag to Cloud DNS Managed Zones, Response Policies GA commands. This flag can be specified to target Cloud DNS Zonal Servers.

Cloud Dataproc

Fixed issue wheregcloud beta dataproc sessions list would hang when largenumbers of sessions are present.

Cloud Deploy

Added new--from-run-manifest togcloud deploy releases create command.When used, a Skaffold file will be generated using the Cloud Run manifest.

Cloud Run

Added--encryption-key-shutdown-hours flag togcloud beta run deploy andgcloud beta run services update to set the number of hours to wait before an automatic shutdown server after CMEK key revocation is detected.
Added--clear-encryption-key-shutdown-hours flag togcloud beta run deploy andgcloud beta run services update to clear the CMEK key shutdown hours setting.

Compute Engine

Updatedgcloud compute instance-templates create to throw error if--machine-type/--labels flags are used with--source-instance.
Promoted--compression-mode flag togcloud compute backend-services <create | update> to GA.
Promoted--compression-mode flag togcloud compute backend-buckets <create | update> to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

402.0.0 (2022-09-13)

Breaking Changes

(Google Cloud CLI) The gcloud command-line tool no longer overrides the scheme specified in thehttps_proxy environment variable. Previously, the scheme was silentlyignored and the gcloud command-line tool would always attempt to connect tothe proxy via HTTP, even if the proxy server URL specified HTTPS.
- Note that the gcloud command-line tool does not currently support connectingto proxies via HTTPS (nor did it previously).
- If attempting to connect to an HTTP proxy results in warnings or errors,ensure that thehttps_proxy environment variable looks likehttp://...as opposed tohttps://....
- Seehttps://cloud.google.com/sdk/docs/proxy-settings#proxy_configurationfor more information.
(Batch) Deprecated positional argumentTASK_GROUP ofgcloud batch tasks list.
(Batch) Use--job as the required flag instead.

Anthos Multi-Cloud

Added--annotations flag togcloud container aws node-pools create toset the annotations field when creating AWS node pools.
Added--annotations flag togcloud container aws node-pools update toupdate the annotations of AWS node pools.
Added--clear-annotations flag togcloud container aws node-pools updateto clear the annotations of AWS node pools.

Batch

Updated--config flag to support job configs from Here Doc.

Cloud Dataproc

Fixed issue wheregcloud dataproc batches list would hang when largenumbers of batches are present.

Cloud Deploy

Addedgcloud deploy targets redeploy command to redeploy a release to a given target.
Addedgcloud deploy rollouts retry-job,gcloud deploy job-runs list, andgcloud deploy job-runs describe commands for Deployment Verification Public Preview.

Cloud Run

Fixed issue where job-level labels are not propagated to its execution.
Addedlast updated message togcloud beta run jobs describe output.

Cloud Storage

Updated gsutil component to 5.13.
Promotedgcloud storage to GA.

Compute Engine

Added-iam-policyand-iam-policy-bindingstogcloud compute backend-services` for GA.
Addedgcloud compute security-policies rules add-preconfig-waf-exclusion|remove-preconfig-waf-exclusion in alpha and beta.

Config Connector

Updated Google Cloud Config Connector to version 1.93.0.See Config Connector Overview for more details https://cloud.google.com/config-connector/docs/overview.

GKE Hub

Added new argument to the following commands:
- gcloud container hub mesh update --management automatic.
- gcloud container fleet mesh update --management automatic.

Identity and Access Management

Added support for executable-sourced external account credentials.
Added support for configuring the access token lifetime for service account impersonation when using external account credentials.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

401.0.0 (2022-09-07)

Google Cloud CLI

Added warning message to indicate support for Python 2 will soon be deprecated.

AlloyDB

Added--view flag togcloud alpha alloydb instances describe to get theview of AlloyDB instance.--view=BASIC will be the same response as describeinstance without this flag, and--view=FULL for read pool instance willlist the details of each node in the pool.

Anthos Multi-Cloud

Added--description flag togcloud container aws clusters update toupdate the description of AWS clusters.
Added--clear-description flag togcloud container aws clusters updateto clear the description of AWS clusters.
Added--annotations flag togcloud container aws clusters update toupdate the annotations of AWS clusters.
Added--clear-annotations flag togcloud container aws clusters updateto clear the annotations of AWS clusters.
Added--description flag togcloud container azure clusters create toset the description field when creating Azure clusters.
Added--annotations flag togcloud container azure clusters create toset the annotations field when creating Azure clusters.
Added--description flag togcloud container azure clusters update toupdate the description of Azure clusters.
Added--clear-description flag togcloud container azure clusters updateto clear the description of Azure clusters.
Added--annotations flag togcloud container azure clusters update toupdate the annotations of Azure clusters.
Added--clear-annotations flag togcloud container azure clusters updateto clear the annotations of Azure clusters.

Cloud Run

Added execution log URI togcloud beta run jobs executions describe output.

Compute Engine

Promoted--snapshot-type flag ofgcloud compute snapshots create to GA.
Added--json-custom-content-types forgcloud compute security-policies update, and promoted it to beta and GA.
Promoted--guest-os-features flag ofgcloud compute images import to GA.
Promotedgcloud compute firewall-rules migrate to beta.
Added--share-setting and--share-with flags togcloud compute sole-tenancy node-groups create|update for GA.
Added--share-settings flag togcloud compute sole-tenancy node-groups list for GA.
Added--node-project flag togcloud compute instances create for GA.

Network Management

AddedcloudFunction argument for source ingcloud network-management connectivity-tests. This allows the user to runtests using Cloud Function endpoint types as source.

Stackdriver Logging

Promoted the following commands to beta and GA:
- gcloud logging copy
- gcloud logging settings get
- gcloud logging settings update
- gcloud logging operations cancel
- gcloud logging operations describe
- gcloud logging operations list
Promoted--bucket-name flag ofgcloud logging metrics to beta and GA.
Promoted--cmke-kms-key-name flag ofgcloud logging buckets to beta and GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

400.0.0 (2022-08-30)

Breaking Changes

(Anthos Multi-Cloud) Removedaws/location property ofgcloud container aws. Usecontainer_aws/location to set the default Google Cloud location forgcloud container aws.
(Anthos Multi-Cloud) Removedazure/location property ofgcloud container azure. Usecontainer_azure/location to set the default Google Cloud location forgcloud container azure.

Anthos Multi-Cloud

Added--description flag togcloud container aws clusters create toset the description field when creating AWS clusters.
Added--annotations flag togcloud container aws clusters create toset the annotations field when creating AWS clusters.

App Engine

Use java17 as the default runtime for generated configuration.This is a behavior change with the commandgcloud app deploy when there isno app.yaml configuration for Java projects (Maven, or Gradle, or simple jar).Instead of using a java11 runtime target, the application will be deployed nowon a java17 runtime with a F2 instance class. If you want to stay on a java11runtime, just create a simple app.yaml file withruntime: java11 in it.

Artifact Registry

Fixed issue wheregcloud artifacts repositories create requires excessive permission when a kms key is supplied.

BigQuery

Add support for specifyingvertex_ai_model_id when in the BigQuery ML update model AI.
Add support for preserving embedded Ascii Control characters in CSV External tables.
Add support for serving_default signature when exporting BigQuery trained Tensorflow models.
Add support for reference file schema for AVRO, PARQUET, and ORC formats.
Add support for BigSpark routines.
Fix bug when api flag is used within a restricted network.
Add supportmetadata_cache_mode andmax_staleness for Query Acceleration on BigLake tables.
Add support for BigSpark connections.

Cloud Asset Inventory

Addedgcloud beta asset query.
Added--read-time,--start-time,--end-time,--bigquery-dataset,--bigquery-table, and--write-disposition flags to support point-in-time/range queries and export to BigQuery.

Cloud Run

Changed the link ingcloud beta run jobs execute output to the UI ofthe resulted execution instead of its logging UI.
Added elapsed time togcloud beta run jobs executions describe output.This is between execution creation timestamp and execution completiontimestamp.

Cloud Spanner

Added--database-role flag togcloud spanner databases to support role-based access control in Cloud Spanner.
Addedgcloud beta spanner databases roles list to list all roles in Cloud Spanner database.

Config Connector

Updated Google Cloud Config Connector to version 1.92.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Added--logging-variant flag togcloud container clusters create,gcloud container clusters update,gcloud container node-pools create andgcloud container node-pools update that allow users to set the logging variant used in the cluster or in the node pools. Selecting logging variant is available in clusters with version 1.24.2-gke.300+.--logging_variant is used to choose the desired logging agent that is deployed on GKE nodes. Valid options areMAX_THROUGHPUT andDEFAULT. For more details about configuring the logging agent to achieve desired throughput, seehttp://cloud/stackdriver/docs/solutions/gke/managing-logs#throughput.

Secret Manager

Added--update-annotations flag togcloud secrets update andgcloud secrets beta update to enable the addition of new annotations to secret versions.
Added--remove-annotations flag togcloud secrets update andgcloud secrets beta update to enable the removal of annotations to secret versions.
Added--clear-annotations flag togcloud secrets update andgcloud secrets beta update to enable the clearing of all annotations from a secret.
Added--set-annotations flag togcloud secrets create andgcloud secrets beta create to enable the setting of annotations on new secrets.
Added--out-file flag togcloud secrets versions access andgcloud beta secrets versions access to directly get the output in file.

Terraform

Added support for the following resources in CAI-based policies:
- google_cloudfunctions2_function_iam_binding
- google_cloudfunctions2_function_iam_member
- google_cloudfunctions2_function_iam_policy
- google_gke_hub_membership_iam_binding
- google_gke_hub_membership_iam_member
- google_gke_hub_membership_iam_policy
TF -> CAI resource conversion compiled against google provider version4.33.0.
Fixed asset names for the following resources:
- google_compute_backend_service_iam
- google_compute_instance_iam
- google_compute_region_backend_service_iam
- google_privateca_certificate_template_iam
Added support fororganizations/unknown in CAI-based policy match parameters.
Enabled support for non-Google Terraform resources in TF-based policies.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

399.0.0 (2022-08-23)

AlloyDB

Added--cluster flag togcloud beta alloydb operations list to enablelisting of operations pertaining to a given cluster.
Updatedgcloud beta alloydb clusters restore to support PITR (point in time recovery) via new--source-cluster and--point-in-time flags.

App Engine

Updated the Java SDK to version 1.9.98.1 to address bughttps://issuetracker.google.com/issues/240455023.

Cloud Asset Inventory

Addedgcloud asset get-effective-iam-policy command, which retrieves batcheffective IAM policies for a specified list of resources within specifiedaccessible scope.

Cloud Dataflow

AddedGO togcloud flex-template build command SDK Language options, allowingusers to submit Go Flex Template jobs.

Cloud Functions

Move Python 3.10 for Cloud Functions to GA.

Cloud Org Policy

Addedgcloud org-policies {custom constraint} commands that allow users tocreate, update, list, describe, and delete org policy custom constraints.
gcloud org-policies set-custom-constraint
gcloud org-policies describe-custom-constraint
gcloud org-policies delete-custom-constraint
gcloud org-policies list-custom-constraints.

Cloud SQL

Set the maximum allowed value for--storage-auto-increase-limit ingcloud beta sql instances create to the max value of int. This removes the hardcoded limit of 10230.

Cloud Spanner

Promotedgcloud spanner samples to beta and GA. Commands in this groupsupport creating sample databases and running open source sampleapplications.
Added--instance-type,--expire-behavior flags tospanner instances create andspanner instances update to add ability tocreate free instances in GA.
Added instance_type column forspanner instances list andfree_instance_availability column forspanner instance-configs list.

Compute Engine

Promoted--architecture flag ofgcloud compute disks create to GA.
Promoted--update-architecture flags ofgcloud compute disks update to GA.
Promoted--clear-architecture flags ofgcloud compute disks update to GA.
Promoted--architecture flag ofgcloud compute images create andgcloud compute disks update to GA.

Network Services

Promotedgcloud network-services tls-routes to GA.

Notebooks

Addednotebooks runtimes command group which provides access to AIPlatform Notebooks' runtimes.

Transfer

Added multipart copy feature to agent setup flags.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

398.0.0 (2022-08-16)

AI

Promoted--autoscaling-metric-specs flag ofgcloud ai endpoints deploy-model to GA.
Added--encryption-kms-key-name flag togcloud ai endpoints create andgcloud beta ai endpoints create.

Artifact Registry

Updatedgcloud artifacts docker images describe andgcloud artifactsdocker images list to return occurrences of any Grafeas kind.
Addedgcloud artifacts repositories set-cleanup-policy to set a cleanup policy on a repository.
Addedgcloud artifacts repositories list-cleanup-policy to list cleanup policies on a repository.
Addedgcloud artifacts repositories delete-cleanup-policy to delete cleanup policies on a repository.

Cloud DNS

Added support for the ALIAS record set type to beta. ALIAS record sets canbe created/modified using--type flag ingcloud beta dns record-setscommand group.

Cloud Dataproc

Fixed issue wheregcloud dataproc clustersenable-personal-auth-session-session did not successfully injectcredentials.

Cloud Deploy

Added support for absolute paths for "--skaffold-file flag ofgcloud deploy releases create command".

Cloud Memorystore

Promoted--customer-managed-key flags ofgcloud redis instances create to GA.

Cloud Run

Promoted--cpu-boost flag to beta.

Cloud SQL

Added--deletion-protection flag togcloud sql instances create andgcloud sql instances patch in alpha, beta and GA to provide Cloud SQL instances with protection against accidental deletion.

Cloud Spanner

Updated default timeout forgcloud spanner databases execute-sql to 10minutes.

Cloud Storage

Updated gsutil component to 5.12.

Compute Engine

Deprecated--load-balancing-scheme,--network,--subnet, and--subnet-region arguments ofgcloud compute forwarding-rulesset-target.
Promoted--resource-policies flag forglcloud compute reservations createto beta.
Promoted--region and--global flags forgcloud compute url-maps invalidate-cdn-cache andgcloud compute url-maps list-cdn-cache-invalidations to GA.
Added region information togcloud compute health-checks list output.
Deprecated--no-serve-while-stale argument ofgcloud compute [backend-services|backend-buckets] [create|update].
Promoted--architecture flag ofgcloud compute instances create andgcloud compute instanceTemplates create to GA.

Eventarc

Updated WARNING text for trigger creation from 10 minutes to 2 minutes.

Network Services

Promotedgcloud network-services gateways to GA.
- Promotedgcloud network-services meshes to GA.
- Promotedgcloud network-services tcp-routes to GA.
- Promotedgcloud network-services grpc-routes to GA.
- Promotedgcloud network-services http-routes to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

397.0.0 (2022-08-09)

Breaking Changes

(Cloud Datastore) Deprecatedgcloud datastore database create. Usegcloud alpha firestoredatabase update --type=datastore-mode instead.
(Cloud Firestore) Thegcloud firestore database create will be required to administer yourdatabase. Please enable the API and ensure you have the requiredpermissions. Seehttps://cloud.google.com/firestore/docs/app-engine-requirement.
(Cloud Firestore)gcloud firestore database create will no longer support App Engine regions(us-central, europe-west). Seehttps://cloud.google.com/firestore/docs/locations for available regions.

AI

Added--request-response-logging-table and--request-response-logging-rate flags togcloud ai endpoints create|update to allow config prediction endpoint request-response logging.

Artifact Registry

Addedgcloud artifacts versions describe command.
Addedgcloud artifacts settings to describe/modify project settings.

Batch

Modifiedgcloud batch jobs list to use--location as an optional flag.

Cloud DNS

Update record-sets create and update methods for health checked routing policies.

Cloud Datastore Emulator

Release Cloud Datastore emulator v2.2.2
- Fixed bug which caused failures when attempting to Export.

Cloud Identity-Aware Proxy

Promoted host based flags to GA for surfacesgcloud compute ssh,gcloud compute scp andgcloud compute start-iap-tunnel.

Cloud Run

AddedStartup Probe andLiveness Probe fields to the output ofgcloud run services describe [SERVICE].

Compute Engine

Added 'network-firewall-policyand 'network-regional-firewall-policy to TYPE column of 'compute instances network-interfaces get-effective-firewalls` output.

Config Connector

Updated Google Cloud Config Connector to version 1.91.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Terraform

Added support for the following resources in CAI-based policies:
- google_artifact_registry_repository_iam_binding
- google_artifact_registry_repository_iam_member
- google_artifact_registry_repository_iam_policy
- google_bigquery_connection_iam_binding
- google_bigquery_connection_iam_member
- google_bigquery_connection_iam_policy
- google_cloud_tasks_queue_iam_binding
- google_cloud_tasks_queue_iam_member
- google_cloud_tasks_queue_iam_policy
- google_cloudiot_registry_iam_binding
- google_cloudiot_registry_iam_member
- google_cloudiot_registry_iam_policy
- google_compute_backend_bucket_iam_binding
- google_compute_backend_bucket_iam_member
- google_compute_backend_bucket_iam_policy
- google_compute_snapshot_iam_binding
- google_compute_snapshot_iam_member
- google_compute_snapshot_iam_policy
- google_dataproc_autoscaling_policy_iam_binding
- google_dataproc_autoscaling_policy_iam_member
- google_dataproc_autoscaling_policy_iam_policy
- google_dataproc_metastore_service_iam_binding
- google_dataproc_metastore_service_iam_member
- google_dataproc_metastore_service_iam_policy
TF -> CAI resource conversion compiled against google provider version4.30.0.
Resources without a known project, folder, or organization will have theirancestry set toorganizations/unknown instead of throwing a 403 error thathalts validation.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

396.0.0 (2022-08-02)

AI

Added--labels flag togcloud ai models upload to support setting labels. Use--labels flag to set metadata to organize your models and model versions. Label keys and values can be no longer than 64 characters (Unicode codepoints), can only contain lowercase letters, numeric characters, underscores and dashes. International characters are allowed. Seehttps://goo.gl/xmQnxf for more information and examples of labels.

Cloud Identity-Aware Proxy

Promotedgcloud iap tcp dest-groups to GA.

Cloud Logging

Promoted--index flag ofgcloud logging buckets create to GA.
Promoted--clear-indexes flag ofgcloud logging buckets update to GA.
Promoted--remove-indexes flag ofgcloud logging buckets update to GA.
Promoted--add-index flag ofgcloud logging buckets update to GA.
Promoted--update-index flag ofgcloud logging buckets update to GA.

Compute Engine

Promoted--maintenance-interval flag ofgcloud compute commitments create to beta.

Compute OS Config

Promotedgcloud compute os-config troubleshoot to GA.
- Troubleshoot common issues with VM Manager.

Config Connector

Updated Google Cloud Config Connector to version 1.90.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Fixed issue where creation of a migration job in a project inside a VPC-SC perimeter constantly failed.
Fixed issue where creation of a connection profile in a project inside a VPC-SC perimeter constantly failed.

Identity Groups

Fixed issue wheregcloud identity groups create will fail when specifying--group-type=security.

Identity and Access Management

Added--service-account-token-lifetime-seconds flag togcloud iam <workforce-pools|workload-identity-pools> create-cred-config command to allow configuring the access token lifespan for service account impersonation.

Recommender

Added support forgcloud recommender recommender-config describe.
Added support forgcloud recommender recommender-config update.
Added support forgcloud recommender insight-type-config describe.
Added support forgcloud recommender insight-type-config update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

395.0.0 (2022-07-26)

AI

Modifiedgcloud ai models upload to support model version aliases. Use--version-aliases flag to set version aliases so that a model version can be referenced via alias (i.e. projects/{project}/locations/{location}/models/{model_id}@{version_alias} instead of auto-generated version id (i.e. projects/{project}/locations/{location}/models/{model_id}@{version_id}). The format is [a-z][a-zA-Z0-9-]{0,126}[a-z0-9] to distinguish from version_id. The aliases set in the flag will replace the aliases set in the model.

App Engine

Updated the Java SDK to version 1.9.98.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Addedgcloud artifacts packages describe command.

Cloud Deploy

Added new--from-k8s-manifest toreleases create command.When used, a Skaffold file will be generated.

Cloud Domains

Implemented the following commands forgcloud domains registrations in alpha and beta.
- import
- list-importable-domains

Cloud Functions

Updatedgcloud functions list to return 2nd gen functions in addition to1st gen functions.
Fixed crash ingcloud beta functions deploy --gen2 failures causing theerror message "This stage does not belong to this progress tracker".
Promoted--gen2 flag ofgcloud functions add-iam-policy-binding to GA.
Promoted--gen2 flag ofgcloud functions call to GA.
Promoted--gen2 flag ofgcloud functions delete to GA.
Promoted--gen2 flag ofgcloud functions deploy to GA.
Promoted--gen2 flag ofgcloud functions describe to GA.
Promoted--gen2 flag ofgcloud functions get-iam-policy to GA.
Promoted--gen2 flag ofgcloud functions remove-iam-policy-binding toGA.
Promoted--gen2 flag ofgcloud functions set-iam-policy to GA.
Promoted--gen2 flag ofgcloud functions event-types list to GA.
Promoted--gen2 flag ofgcloud functions logs read to GA.
Promoted--gen2 flag ofgcloud functions regions list to GA.
Promotedgcloud functions add-invoker-policy-binding to GA.
Promotedgcloud functions remove-invoker-policy-binding to GA.

Cloud Healthcare

Added--schema-type valueanalytics_v2 togcloud healthcare fhir-stores export bq.

Cloud Identity-Aware Proxy

Renamed flag--group-name to--dest-group forgcloud iap tcp dest-groups IAM commands.

Cloud Pub/Sub

Fixed issue wheregcloud pubsub subscriptions create andgcloud pubsub subscriptions update will crash when specifying--min-retry-delay=0 and/or--max-retry-delay=0.
Fixed issue wheregcloud pubsub subscriptions create will crash whenspecifying--retention_duration=0.

Cloud Run

Added--description flag ingcloud run deploy, and description field ingcloud run services describe [SERVICE].
- Description is an optional, human-readable string of up to 512 characters.
- Using the flag is functionally equivalent to adding service annotation "run.googleapis.com/description".

Compute Engine

Added--update-user-licenses and--clear-user-licenses flags ofgcloud compute images update to alpha and beta.
Made global scope the default forgcloud compute security-policies.

Config Controller

Added--man-blocks flag togcloud anthos config controller create to allowspecifying multiple master authorized network CIDR blocks for a CC instance.
Deprecated--man-block flag ofgcloud anthos config controller create.Use--man-blocks to set master authorized network CIDR block.
Modifiedgcloud anthos config controller list to print out only theinstance name instead of the fully specified name.
Added--full-name flag togcloud anthos config controller list to allowusers printing out the fully specified name in the NAME column when needed.

GKE Hub

Promotegcloud container hub memberships generate-gateway-rbac to GA.

Kubernetes Engine

AddcgroupMode node system config option to allow switching nodes to cgroupv1 or cgroupv2.
Updates default kubectl from 1.22.9 to 1.22.12
Additional kubectl versions:
- kubectl.1.19 (1.19.16)
- kubectl.1.20 (1.20.15)
- kubectl.1.21 (1.21.14)
- kubectl.1.22 (1.22.12)
- kubectl.1.23 (1.23.9)
- kubectl.1.24 (1.24.3)

Pubsub Emulator

Added support for creating BigQuery subscriptions.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

394.0.0 (2022-07-19)

AI

Modifiedgcloud ai models describe to support model versioning.
Added europe-west9 option to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tuning-jobs.
- Provide the model version ID or version alias to retrieve a specific version of the model.
- If no model version ID or alias is specified, the "default" model version will be used. The "default" version alias is created for the first version of the model, and can be moved to other versions later on. There will be exactly one default version.
Addedgcloud ai models delete-version which deletes an existing Vertex AI model version.

Anthos Multi-Cloud

Added--ssh-public-key flag togcloud container azure node-pools updateto update the SSH public key for the Azure node pool nodes.

Artifact Registry

Fixed a bug where the plus sign ("+") was not escaped properly, making itimpossible to delete artifacts with a plus sign in their name.

Bare Metal Solution

Started using v2.projects.locations.operations instead of v1.operations forthe following commands:
- gcloud bms instances start
- gcloud bms instances reset
- gcloud bms instances disable-serial-console
- gcloud bms instances enable-serial-console
- gcloud bms instances update
- gcloud bms networks update
- gcloud bms nfs-shares update
- gcloud bms volumes update
- gcloud bms volumes restore
- gcloud bms operations describe
- gcloud bms operations wait
Promoted--os-image flag ofgcloud bms instances update to GA.
Promoted--[no-]enable-hyperthreading flag ofgcloud bms instances updateto GA.
Promoted--add-ip-range-reservation flag ofgcloud bms networks updateto GA.
Promoted--clear-ip-range-reservations flag ofgcloud bms networks updateto GA.
Promoted--remove-ip-range-reservation flag ofgcloud bms networks updateto GA.
Promotedgcloud bms networks list-ip-reservations to GA.

Batch

Promotedgcloud batch to alpha and beta which enables the CLI to use Batch APIs.

Cloud Deploy

Changed the default bucket name upload path on release create to use the pipeline UUID.
Added mutex flags--enable-initial-rollout and--disable-initial-rollout.

Cloud Key Management Service

Modifiedgcloud kms import-jobs create to accept new SHA-2 import methodsrsa-oaep-3072-sha256,rsa-oaep-3072-sha256-aes-256,rsa-oaep-4096-sha256, andrsa-oaep-4096-sha256-aes-256 in beta.

Cloud SQL

Added support for incremental addition of user password policies.

Cloud Storage

Updated gsutil component to 5.11.

Compute Engine

Added--layer7-ddos-defense-auto-deploy-load-threshold,--layer7-ddos-defense-auto-deploy-confidence-threshold,--layer7-ddos-defense-auto-deploy-impacted-baseline-threshold, and--layer7-ddos-defense-auto-deploy-expiration-sec togcloud compute security-policies update togcloud beta compute security-policies update.
Promoted flags--enable-strong-affinity ofgcloud compute backend-services create andgcloud compute backend-services update to GA.

Google Cloud CLI

Replaced the default login flow when a browser is not detected from--no-browser to--no-launch-browser.

Identity and Access Management

Removedetag flag fromgcloud beta iam policies update command. The command will always use theetag in the policy file.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

393.0.0 (2022-07-12)

Breaking Changes

(AlloyDB) Updatedgcloud beta alloydb instances create andgcloud beta alloydb instances update to remove the unused--zone flag.
(Cloud Datastore Emulator) Removed support for running the Datastore emulator (gcloud beta emulators datastore start) in environment with Java versions prior to 11. Users can upgrade to Java 11 or above to continue using the latest Datastore emulator. Alternatively, users can use gcloud command-line tool with version before 392.0.0 to continue using the previous Datastore emulator with Java 8 support.
(Cloud Firestore Emulator) Removed support for running the Firestore emulator (gcloud beta emulators firestore start) in environment with Java versions prior to 11. Users can upgrade to Java 11 or above to continue using the latest Firestore emulator. Alternatively, users can use gcloud command-line tool with version before 392.0.0 to continue using the previous Firestore emulator with Java 8 support.

AI

Addedgcloud ai models delete-version which delete an existing Vertex AI model version.
Modifiedgcloud ai models upload to support model versioning. Use--parent-model flag to specify the parent model of the model version to be uploaded. When this flag is specified, a new version of the parent model will be uploaded. Use--model-id flag to specify the model ID for the uploaded model.
Fixed an issue forgcloud ai custom-jobs create that the value of the--args and--command flags are not passed when the--worker-pool-spec flag is left unspecified.

AlloyDB

Updatedgcloud beta alloydb instances create andgcloud beta alloydb instances update to allow--cpu-count of 2.

Artifact Registry

Fixed issue wheregcloud artifacts packages delete requires the package id unescaped.

Cloud Dataproc

AddedbootDiskKmsKey key in--pools flag togcloud dataproc clustersgke create to allow creating Dataproc on GKE cluster with CMEK protectednode pool.

Cloud Datastream

Added--bigquery-destination-config flag togcloud datastream streams <create/update>.
Addedbigquery type to--type flag ofdatastream connection-profiles <create/update>.

Cloud Deploy

Added optional flags--labels and--annotations for users to add labels or annotations to apply togcloud deploy targets rollback command.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.14.4
- Fix: Condition Normalization now correctly handles cartesian products andflattening in certain edge cases.

Cloud Functions

Promoted--docker-registry flag ofgcloud functions deploy to GA.
Move PHP 8.1 for Cloud Functions to GA.
Addedgcloud functions runtimes list which displays the supported runtimesfor both 1st & 2nd generation functions.

Cloud Key Management Service

Promoted--wrapped-key-file flag ofgcloud kms keys versions import to GA.
Deprecated--rsa-aes-wrapped-key-file flag ofgcloud kms keys versions import.Use--wrapped-key-file instead.

Cloud Memorystore

Promoted--persistence-mode,--rdb-snapshot-period and--rdb-snapshot-start-time flags ofgcloud redis instances create to GA.
Promoted--persistence-mode,--rdb-snapshot-period and--rdb-snapshot-start-time flags ofgcloud redis instances update to GA.

Cloud SQL

Added flag--password-policy-enable-password-verification togcloud sql users create andgcloud sql users set-password-policy for MySQL password validation.
Added flags--discard-dual-password and--retain-password togcloud sql users set-password to allow control over MySQL's dual password.

Cloud Speech API

Addedlatest_short andlatest_long options forgcloud ml speech <recognize | recognize-long-running> --model flag.

Cloud TPU

Updatedtpus tpu-vm ssh to return an error when users attemptto ssh into a TPU VM during a maintenance event.

Compute Engine

Promoted--target-distribution-shape flag ofgcloud compute instances bulk create to GA.
Promoted--key-revocation-action-type flag to GA forgcloud compute instance-templates create.
Promoted explicit scope requirement forgcloud compute security-policies to beta.
Promoted--network-ddos-protection flag ofgcloud compute security-policies create to beta.
Promotedgcloud compute network-edge-security-services to beta.
Promoted--key-reservation-action-type flag to GA forgcloud compute instances create.
PromotedkeyRevocationActionType property ofgcloud compute instances update-from-file to GA.

Compute Firewall Policies

Promoted--src-region-codes and--dest-region-codes flags to betaingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.
Promoted--src-threat-intelligence and--dest-threat-intelligence flags tobeta ingcloud compute firewall-policies rules create,gcloud compute firewall-policies rules update,gcloud compute network-firewall-policies rules createandgcloud compute network-firewall-policies rules update commands.

Config Connector

Updated Google Cloud Config Connector to version 1.89.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Config Controller

Added--man-blocks flag togcloud anthos config controller create to allowspecifying multiple master authorized network CIDR blocks for a CC instance.
Deprecated--man-block flag ofgcloud anthos config controller create.Use--man-blocks to set master authorized network CIDR block.

Kubernetes Engine

Added--binauthz-evaluation-mode flag togcloud container clusters create command.
Added--binauthz-evaluation-mode flag togcloud container clusters create-auto command.
Added--binauthz-evaluation-mode flag togcloud container clusters update command.
Added--total-max-nodes and--total-min-nodes togcloud container cluster/node-pools create/update that allow users to set total size limits for autoscaled nodepools. The limits are available in clusters with version 1.24+.
Added--location-policy togcloud container cluster/node-pools create/update that allow users to set location policy for autoscaled nodepools. The location policy is available in clusters with version 1.24.1-gke.800+.

Transcoder

added support for--labels flag when creating a new job/job template.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

392.0.0 (2022-06-28)

Anthos Multi-Cloud

Added--iam-instance-profile flag togcloud container aws clustersupdate andgcloud container aws node-pools update to update the name orARN of the IAM instance profile associated with control plane or node pool.
Added--ssh-public-key flag togcloud container azure clusters update toupdate the SSH public key for the Azure control plane.
Added--logging flag togcloud container aws clusters update andgcloud container azure clusters update to update the logging config.

App Engine

Updated the Java SDK to version 1.9.97.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Certificate Authority Service

Added--unconstrained-chain-length flag togcloud privateca subordinates createto allow creation of a subordinate CA with unconstrained chain length.
Added--unconstrained-chain-length flag togcloud privateca roots createto allow creation of a root CA with unconstrained chain length.
Added--unconstrained-chain-length flag togcloud privateca certificates createto allow creation of a CA with unconstrained chain length.

Certificate Manager

Promotedgcloud certificate-manager to GA.
Allowed using project number ingcloud certificate-manager commands.

Cloud Bigtable

Promotedgcloud bigtable instances tables undelete to beta and GA.
Added--autoscaling-storage-target flags togcloud bigtable clusters create for alpha, beta and GA to let users createautoscaling clusters with configurable storage target.
Added keyautoscaling-storage-target to--cluster-config flag ofgcloud bigtable instances create for alpha, beta and GA to let users createautoscaling clusters with configurable storage target.
Added--autoscaling-storage-target flag togcloud bigtable clusters update for alpha, beta and GA to let users configureautoscaling storage target when updating clusters.

Cloud Deploy

Added new commandgcloud deploy releases abandon to prevent new rollouts on a Cloud Deploy release.
Addedsuspended field to the Delivery Pipeline resource. If this field is set, activity on a pipeline is prevented. The field can be set or unset in the Delivery Pipeline definition, and then applied usinggcloud deploy apply.

Cloud TPU

Fixed an issue with connection to TPU VMs when the'compute.disableGuestAttributesAccess' Organization Policy Constraint isenforced.

Compute Engine

Added--list-managed-instances-results flag togcloud beta compute instance-groups managed create andgcloud beta compute instance-groups managed update.
Promoted--certificate-map of 'compute target-https-proxies insert|update` to GA.
Promoted--certificate-map of 'compute target-ssl-proxies insert|update` to GA.

Dataproc Metastore

Promoted--network-config-from-file and--consumer-subnetworks flag togcloud beta metastore services create to specify the subnetworks from whichthe Dataproc Metastore service can be accessed to GA.

Eventarc

Addedgcloud eventarc google-channels command group.
Addedgcloud eventarc channels update command to configure crypto keys ona channel.
Added--crypto-key flag togcloud eventarc channels create to configurecrypto keys on a new channel.

Google Cloud CLI

Updated login flow initiated bygcloud auth login --no-launch-browser andgcloud auth application-default login --no-launch-browser to address asecurity issue.

Kubernetes Engine

Promoted--enable-cost-allocation flag ofgcloud container clusters create to beta.
Promoted--enable-cost-allocation flag ofgcloud container clusters update to beta.
Renamed--enable-cost-management flag ofgcloud container clusters create to--enable-cost-allocation.
Renamed--enable-cost-management flag ofgcloud container clusters update to--enable-cost-allocation.
Added--stack-type and--ipv6-access-type arguments togcloud container clusters create command to support dual stack GKE clusters.

Terraform

Added support for the following resources in CAI-based policies:
- google_access_context_manager_access_policy
TF -> CAI resource conversion compiled againstgoogle provider version 4.24.0.
Fixed the ancestry used for resources that do not exist within a project.Users may needfolders.get access to folders that have resources includedin the plan.
Simplified converter error messages and added resource address.
Added support forancestries/excludedAncestries match parameters forCAI-based constraints.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

391.0.0 (2022-06-22)

Breaking Changes

(Anthos Multi-Cloud) Removed--instance-type flag ofgcloud container aws node-poolsupdate to disable updating the EC2 instance type of node pool nodes.

Assured Workloads

Added ITAR as compliance regime options forgcloud assured workloads create command.

Cloud Dataflow

Added a--force flag togcloud dataflow jobs cancel which forcibly cancels (leaking VMs) Dataflow jobs that are stuck on normal cancellation.

Cloud Filestore

Enable Filestore High-Scale tier for GA.

Cloud Identity-Aware Proxy

Promoted flags for host based connetion for commandgcloud compute start-iap-tunnel to beta.
Promotedgcloud iap oauth-brands surface to GA.
Promotedgcloud iap oauth-clients surface to GA.

Cloud SQL

Promoted SQL Server Audit to GA.

Compute Engine

Updatedgcloud compute networks subnets list-usable list format to include PSC and IPv6 fields.

Dataproc Metastore

Added support for managing Dataproc Metastore Federation. The following commands have been added to the alpha, beta and GA release tracks:
- metastore federations create
- metastore federations delete
- metastore federations describe
- metastore federations get
- metastore federations list
- metastore federations update
Added support for managing IAM policy for Dataproc Metastore Federation. The following commands have been added to the GA release track:
- metastore federations get-iam-policy
- metastore federations set-iam-policy
- metastore federations add-iam-policy-binding
- metastore federations remove-iam-policy-binding

Identity and Access Management

Added--executable-command flag togcloud iam workload-identity-pools create-cred-config command to allow executable sourced credentials.

Managed Active Directory

Adding support forgcloud beta active-directory domains extend-schema forinitiating schema extension on domain.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

390.0.0 (2022-06-14)

Access Approval

Addedgcloud access-approval requests invalidate to invalidate an existingapproval.

BigQuery

Add support forpartitioning_type with--time_partitioning_type flag in Scheduled Queries when a schedule is specified by--schedule inbq query.
Added support for showing table clone info inbq show.
Added support for both Workload and Workforce identity federation.
Added--max_time_travel_hours flag tobq mk.
Added--autodetect_schema flag tobq update.
Added flag--preserve_ascii_control_characters tobq load to allow ASCII Control chars.
Updated the comment on--restore flag inbq cp to reflect that it's deprecated.
Added support for dataset tags.
Minor bug fixes and dependency updates.
Add--federated_app_client_id and--federated_azure flags tomk command.
Add--federated_app_client_id flag toupdate command.
Add support forLOAD DATA query.

Cloud Dataproc

Added--metric-sources, --metric-overrides and --metric-overrides-fileflags togcloud beta dataproc clusters create to allow clusters to becreated with a metric sources specified, override specific set of metricsusing a list or a file as an input.
Added--metric-sources, --metric-overrides and --metric-overrides-fileflag togcloud beta dataproc workflow-templates set-managed-clusterto allow managed clusters created with a metric sources specified, overridespecific set of metrics using a list or a file as an input.
Modifiedgcloud dataproc clusters export to remove un-importable fieldson Dataproc on GKE clusters.

Cloud Firestore

Addedgcloud beta firestore fields ttls command group.

Cloud Pub/Sub

Fixed issue wheregcloud --format=json beta pubsub subscriptions pull--auto-ack andgcloud --format=json alpha pubsub subscriptions pull--auto-ack output was backwards incompatible. This issue can be tracked athttps://issuetracker.google.com/issues/222551623.

Cloud Run

Added--description flag ingcloud beta run deploy, and description field ingcloud beta run services describe [SERVICE].
- Description is an optional, human-readable string of up to 512 characters.
- Using the flag is functionally equivalent to adding service annotation "run.googleapis.com/description".

Compute Engine

Promotednetwork-firewall-policies command group to GA.
Promotedgcloud compute instances create --visible_core_count to beta.

Config Connector

Updated Google Cloud Config Connector to version 1.88.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Added--enable-confidential-nodes togcloud container cluster create to enable cluster creation with nodes on Confidential VM. Added--enable-confidential-nodes flag togcloud container node-pools create/update to allow creating node-pools with confidential nodes, and updating existing node pools to confidential nodes.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

389.0.0 (2022-06-07)

Anthos Multi-Cloud

Added--instance-type flag togcloud container aws node-pools update toupdate the EC2 instance type of node pool nodes.

Artifact Registry

Added new commandgcloud artifacts files list to list files in a specific repository.

Cloud Composer

Added--enable-master-authorized-networks and--master-authorized-networks flags togcloud composer environments create command.
Added--enable-master-authorized-networks and--disable-master-authorized-networks and--master-authorized-networks togcloud composer environments update command.
Added--enable-ip-masq-agent flag togcloud composer environments create command to enable IP address masquerading in the GKE cluster.

Cloud DNS

Add setIamPolicy and getIamPolicy commands in beta.

Cloud Filestore

Add support for Filestore's multi-share instances togcloud beta filestore instances list.CAPACITY_GB will show the instance's capacity for multi-share instances instead of an empty string.FILE_SHARE_NAME will show "N/A" for multi-share instances instead of an empty string.

Cloud Identity-Aware Proxy

Promotedgcloud iap tcp dest-groups command group to beta.

Cloud Run

Promoted--session-affinity ofgcloud run to beta.

Cloud SQL

Add commandgcloud sql generate-login-token to generate down-scoped OAuth2 access tokens for IAM database authentication.

Compute Engine

Modified--ssl-certificates flag to be optional ingcloud compute target-https-proxies create.
Updated the documentation for--mtu flag ofcompute networks create|update.
Updated the validation for--enable-logging and--logging-sample-rate flags ofbeta compute backend-services create|update.
Updated the documentation for--logging-sample-rate flag ofcompute backend-services create|update.

Config Connector

Updated Google Cloud Config Connector to version 1.87.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Renamed--sync flag to--no-async flag togcloud database-migrate migration-jobs create command to wait for the migration job creation operation to be completed before proceeding.
Added--no-async flag togcloud database-migrate migration-jobs update command to wait for the migration job updation operation to be completed before proceeding.
Updatedgcloud database-migration connection-profiles create cloudsql to support the flag root-password.
Added--no-async flag togcloud database-migrate migration-jobs create command to wait for the connection profile creation operation to be completed before proceeding.

Kpt

Updated kpt from v1.0.0-beta.13 to v1.0.0-beta.15. Seehttps://github.com/GoogleContainerTools/kpt/releases/tag/v1.0.0-beta.15 for more details.
The kpt fn commands now includes Kptfile and functionConfig in the function input by default. Previously this behavior was controlled using--enable-meta-resources command-line flag. --enable-meta-resources flag is also deprecated. If this disrupts any of your config workflow, you can use exclude functionality to exclude resources from function inputs. This functionality was added in this release to minimize the disruption.
The kpt website is overhauled to reflect the new scope of kpt project. New components package orchestrator, Configuration as Data UI and Config Sync are added to the project.
Added package orchestrator (a.k.a.porch) CLI interface under alpha subgroup (kpt alpha rpkg,kpt alpha repo,kpt alpha sync).
Added command-line flag--save tokpt fn eval to save evaluated function to package's Kptfile.
Added capability to select resources usinglabelSelector andannotationSelector inkpt fn eval andkpt fn render.
Added capability to exclude resources inkpt fn eval andkpt fn render.
Added support for variant constructor pattern inkpt pkg init andkpt pkg get.
Added capability to execute functions in a kubernetes cluster using porch.

Kubernetes Engine

AddedpodPidLimits kubelet config option which controls per pod pid limits togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update.
Updates default kubectl from 1.21 to 1.22.
Additional kubectl versions:
- kubectl.1.19 (1.19.16)
- kubectl.1.20 (1.20.15)
- kubectl.1.21 (1.21.13)
- kubectl.1.22 (1.22.9)
- kubectl.1.23 (1.23.6)
- kubectl.1.24 (1.24.0)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

388.0.0 (2022-06-01)

Google Cloud CLI

Added Cloud SQL OAuth scope to Application Default Credential.

AI

Fixed issue where unspecified--network and--service-account flags ofgcloud ai hp-tuning-jobs create mistakenly overrode the corresponding values set via--config flag.

Apigee

Promotedgcloud apigee operations to beta.

Bare Metal Solution

Updatedgcloud bms instances list to also return the IP addresses ofinstances that do not use the default network template.

Cloud Bigtable

RemovedNAME column output frombigtable hot-tablets list.

Cloud Datastore Emulator

Release Cloud Datastore Emulator version 2.2.1
- Fixes--firestore_in_datastore_mode flag parsing.

Cloud Deploy

Fixed issue wheregcloud deploy targets rollback redeployed to the current release instead ofrolling back to the previous release. This occurred in cases where the name of the releaseto rollback to was not provided.

Cloud Functions

Added--gen2 support for--set-secrets,--update-secrets,--remove-secrets and--clear-secrets flags ofgcloud functions deployto beta, alpha.

Cloud On Demand Scanning

Fixed issue where scanning for Maven vulnerabilities would occasionallyfail.

Compute Engine

Promotednetwork-firewall-policies command group to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.86.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Added--sync- flag togcloud database-migrate migration-jobs create command to wait for the migration job creation operation to be completed before proceeding.

Kubernetes Engine

AddedpodPidLimits kubelet config option which controls per pod pid limits togcloud container clusters create,gcloud container node-pools create, andgcloud container node-pools update.
Updated the following GA commands to support IAM Conditions:
- gcloud beta attestors get-iam-policy outputs conditions associated with each binding.
- gcloud beta attestors set-iam-policy accepts policies with conditional bindings.
- gcloud beta attestors <add|remove>-iam-policy-binding accepts conditional bindings via new--condition and--condition-from-file flags.
- gcloud beta policy get-iam-policy outputs conditions associated with each binding.
- gcloud beta policy set-iam-policy accepts policies with conditional bindings.
- gcloud beta policy <add|remove>-iam-policy-binding accepts conditional bindings via new--condition and--condition-from-file flags.

Terraform

Added support for the following resources in CAI-based policies:
- google_access_context_manager_access_policy_iam_binding
- google_access_context_manager_access_policy_iam_member
- google_access_context_manager_access_policy_iam_policy
- google_endpoints_service_consumers_iam_binding
- google_endpoints_service_consumers_iam_member
- google_endpoints_service_consumers_iam_policy
- google_privateca_certificate_template_iam_binding
- google_privateca_certificate_template_iam_member
- google_privateca_certificate_template_iam_policy
TF -> CAI resource conversion compiled againstgoogle provider version 4.20.0.
Added output of logs based on configuration of log level.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

387.0.0 (2022-05-24)

Anthos Multi-Cloud

Fixed issue wheregcloud container aws clusters get-credentials--private-endpoint andgcloud container azure clusters get-credentials--private-endpoint commands do not work for clusters in a project differentfrom the default project.

Cloud Composer

Added--enable-privately-used-public-ips flag togcloud composer environments create command to enable using privately used public IP address ranges feature in the GKE cluster.

Cloud Dataproc

Added--properties-file flag togcloud beta dataproc jobs submit.

Cloud Deploy

Fixedgcloud deploy releases <create|promote> andgcloud deploy targets rollback to support--format flag.

Cloud Functions

- Added--trigger-event-filters-path-pattern flag togcloud beta functionsdeploy.

Cloud Pub/Sub

Added--bigquery-table,--write-metadata,--use-topic-schema, and--drop-unknown-fields flags togcloud pubsub subscriptions create to setBigQuery configuration options in Cloud Pub/Sub subscriptions.
Added--bigquery-table,--write-metadata,--use-topic-schema,--drop-unknown-fields, and--clear-bigquery-config flags togcloud pubsub subscriptions update to update BigQuery configurationoptions in Cloud Pub/Sub subscriptions.

Compute Engine

Added22.04 to allowed list of values for--version ofgcloud beta compute instances ops-agents policies [create|update].
Promoteddelete command ofgcloud compute instance-groups managed all-instances-config to beta.
Promotedupdate command ofgcloud compute instance-groups managed all-instances-config to beta.
Promoted--region forgcloud compute ssl-policies to beta.
Promoted--region flag forgcloud compute target-tcp-proxies to beta.
Added--target-distribution-shape flag togcloud compute instances bulk create to specify shape of distribution in regional bulk insert for alpha and beta.

Config Connector

Updated Google Cloud Config Connector to version 1.85.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Addedgcloud eventarc audit-logs-provider command group.

Stackdriver Monitoring

Promotedgcloud monitoring metrics-scopes command group to beta.

Terraform

Added support for the following resources in CAI-based policies:
- google_access_context_manager_access_policy_iam_binding
- google_access_context_manager_access_policy_iam_member
- google_access_context_manager_access_policy_iam_policy
- google_endpoints_service_consumers_iam_binding
- google_endpoints_service_consumers_iam_member
- google_endpoints_service_consumers_iam_policy
- google_privateca_certificate_template_iam_binding
- google_privateca_certificate_template_iam_member
- google_privateca_certificate_template_iam_policy
TF -> CAI resource conversion compiled againstgoogle provider version 4.20.0.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

386.0.0 (2022-05-17)

Google Cloud CLI

Added Cloud SQL OAuth scope togcloud auth login.

Anthos Identity Service

Promotedgcloud container hub identity-service to GA.
Promotedgcloud container fleet identity-service to GA.

App Engine

Promoted--service-account flag ofgcloud app deploy to GA.

App Engine Flexible Environment

Promoted--service-account flag ofgcloud app deploy to GA.

Cloud Build

Add--include-logs-with-status flag togcloud triggers create.

Cloud Composer

Improve error message in case of lacking permissions ingcloud composer environments storage * delete commands.

Cloud IAM

Addedgcloud iam workload-identity-pools create-saml andgcloud iam workload-identity-pools update-saml commands to manage SAMLworkload identity pool providers.

Cloud Memorystore

Promoted support for maintenance windows ingcloud memcache to GA.
Promoted the commandgcloud memcache reschedule-maintenance to GA.

Cloud Run

Modifiedgcloud run services describe to include session affinity configuration.

Cloud SQL

Changed the prompt generated by--prompt-for-password forgcloud sql users set-password fromInstance Password: toNew Password:, sinceset-password command changes a database user's password, not the instance's password.
Setting max-login-attempts will also set enable-password-verification to true.

Compute Engine

Promoted--service-bindings flag ofgcloud compute backend-services create|update commands to GA.
Promotedgcloud compute backend-services add-service-bindings andgcloud compute backend-services remove-service-bindings commands to GA.
Promoted--provisioning-model and--instance-termination-action flags ofgcloud compute instances set-scheduling to GA.
Promoted sole tenancy flags ofgcloud compute instances update to GA.
Added--network-performance-configs flag togcloud compute instances bulk create.
Promoted--disable-automate-dns-zone flag ofgcloud compute forwarding-rules create to GA.
Promoted--stack-type flag to GA forgcloud compute networks peeerings <create|update>.
Added windows-2022 & windows-2022-byol options to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in GA

Config Connector

Updated Google Cloud Config Connector to version 1.84.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Updatedgcloud database-migration migration-jobs create command to create a migration job without any connectivity method (if connectivity isn't specified).
Addedgcloud database-migration migration-jobs create --static-ip command to create a migration job with static IP connectivity. This was the default behavior.
Addedgcloud database-migration migration-jobs update --static-ip command to update a migration job with static IP connectivity.

Distributed Cloud Edge

Added--clear-maintenance-window flag togcloud edge-cloud container clusters update which removes the maintenancewindow setting of a cluster.
Updatedgcloud edge-cloud container clusters node-pools list to makespecifying a parent cluster optional. When--cluster is not specified,all node pools are listed.

Managed Active Directory

Promotedgcloud active-directory domains backups andgcloud active-directory domains restore to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

385.0.0 (2022-05-10)

Google Cloud CLI

Updated bundled Python executable for Windows to Python 3.9.12.

AI

Added--anomaly-cloud-logging flag togcloud ai model-monitoring-jobs create|update to allow logging anomaly to Cloud Logging.

Anthos Multi-Cloud

Added--ssh-ec2-key-pair flag togcloud container aws clusters updateandgcloud container aws node-pools update to update the name of the EC2key pair to login into control plane or node pool nodes.
Added--clear-ssh-ec2-key-pair flag togcloud container aws clustersupdate andgcloud container aws node-pools update to clear the EC2 keypair to login into control plane or node pool nodes.

Cloud Run

Fixed issue where some commands were missing fromgcloud beta run jobs.

Cloud SQL

Added--enable-password-policy flag togcloud sql instances create andgcloud sql instances patch for GA.

Compute Engine

Promoted--key-revocation-action-type flag to beta forgcloud compute instance-templates create.
PromotedkeyRevocationActionType flag ofgcloud compute instances update-from-file to beta.
AddedFIXED_STANDARD to allowed list of values for--default-network-tier flag.

Config Controller

Updated output ofgcloud anthos config controller create to not includethe default Config Connector identity upon creation.

Eventarc

Addedgcloud eventarc channels group to interact with third-party sources.
Addedgcloud eventarc channel-connections for event providers to create association with the user channel.
Added--channel argument togcloud eventarc triggers create to specify associated channel.

Network Services

Promotedgcloud network-services service-bindings to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

384.0.1 (2022-05-05)

Cloud Storage

Updated gsutil component to 5.10. Google Cloud CLI version 384.0.0 included an older gsutil component (version 5.6) in deb, rpm,and snap packages. Version 384.0.1 includes gsutil component version 5.10 in the deb, rpm, and snap packages.

384.0.0 (2022-05-03)

Cloud Datastore Emulator

Adds--use-firestore-in-datastore-mode flag togcloud [alpha|beta] emulators datastore start command.

Cloud Resource Manager

Promoted--condition flag to GA for the following commands:
- gcloud resources-manager tags keys <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
- gcloud resources-manager tags values <add_iam_policy_binding|create|delete|describe|get_iam_policy|list|remove_iam_policy_binding|set_iam_policy|update>
- gcloud resources-manager tags bindings <create|delete|list>
- gcloud resources-manager tags holds <create|delete|list>

Cloud Run

Promotedgcloud beta run jobs command group and all sub-commands to beta.

Cloud Storage

Updated gsutil component to 5.10.

Compute Engine

Started showing error messages on use ofgcloud compute ssl-certificates create with--domains and--region flags together. Previously--region flag was being ignored.
Promoted--md5-authentication-key flag ofgcloud compute routers add-bgp-peer to beta.
Promoted--md5-authentication-key and--clear-md5-authentication-key flags ofgcloud compute routers update-bgp-peer to beta.
Updated import and export schemas forgcloud compute backend-services.
Promoted--key-reservation-action-type flag to beta forgcloud compute instances create.

Config Connector

Updated Google Cloud Config Connector to version 1.83.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Fix a bug that RBAC policy produced bygenerate-gateway-rbac command could be removed unexpectedly.
Promoted the following commands to GA:
- gcloud container hub mesh update.
- gcloud container fleet mesh update.

Kubernetes Engine

Promoted fieldsgpu-sharing-strategy andmax-shared-clients-per-gpuwithin--accelerator flag to enable GPU sharing support.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

383.0.1 (2022-04-26)

Google Cloud CLI

Added back--[no-]launch-browser ingcloud auth login andgcloud authapplication-default login.--no-browser is the preferred and more secureauth flow in comparison.
Added back--console-only and--no-launch-browser ingcloud init.Use--no-browser as the replacement.

383.0.0 (2022-04-26)

Breaking Changes

(Google Cloud CLI) Removed--[no-]launch-browser ingcloud auth login andgcloud authapplication-default login. Use--no-browser as the replacement.
(Google Cloud CLI) Removed--console-only and--no-launch-browser ingcloud init.Use--no-browser as the replacement.
(Compute Engine) Removed--local-ssd=size=SIZE fromgcloud beta compute instances create-with-container due to the parameter being nonfunctional.

AI

Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.

Access Approval

Addedgcloud access-approval service-account get which retrieves theservice account that is used by Access Approval to access KMS keys for signingapproved approval requests.

App Engine

Enables build environment variables to be set in app.yaml.

Artifact Registry

Added new commandgcloud artifacts files list to list files from a specified project and repository.

Cloud DNS

Modifiedgcloud dns managed-zones update to allow detaching all networksfrom a private zone by setting--networks to an empty string.
Modifiedgcloud beta dns managed-zones update to allow detaching all GKEclusters from a private zone by setting--gkeclusters to an empty string.
Modifiedgcloud beta dns managed-zones update to allow updating the GKEclusters or networks bound to a private zone independently by setting only--gkeclusters or--networks.

Cloud Datastore Emulator

Release Cloud Datastore Emulator version 2.2.0
- Adds a flag to supportCloud Firestore in Datastore mode product mode in the emulator.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.14.3.
- Fixed exports throwing BufferOverflowException.

Cloud IAM

Service Accounts SignJwt promoted to GA command.

Compute Engine

Changed the default value of--image-family flag to debian-11 forgcloud compute instances create andgcloud compute instance-templates create commands.

Config Connector

Updated Google Cloud Config Connector to version 1.82.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Config Controller

Letgcloud anthos config controller create print the default ConfigConnector identity, to allow easier subsequent permission grant.
Addedgcloud anthos config controller get-config-connector-identity whichprints the default Config Connector identity, to allow easier subsequentpermission grant.

Identity and Access Management

Added--enable-imdsv2 flag togcloud iam workload-identity-pools create-cred-config command to include AWS token Url to the credential source while generating AWS credentials config file.

Kubernetes Engine

Added--node-labels,--node-taints and--tags flags togcloud container node-pools update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

382.0.0 (2022-04-19)

Access Approval

Added--active_key_version flag togcloud access-approval settings updateto set the crypto key version to use for signing approval requests.

Anthos Multi-Cloud

Added--proxy-secret-arn flag togcloud container aws node-poolsupdate to update the Amazon Resource Name (ARN) of the AWS Secrets Managersecret containing a proxy configuration.
Added--proxy-secret-version-id flag togcloud container aws node-poolsupdate to update the version ID of the AWS Secrets Manager secretcontaining a proxy configuration.
Added--clear-proxy-config flag togcloud container aws node-poolsupdate to clear the proxy configuration associated with the node pool.

Apigee

Fixed issue wheregcloud beta apigee archives list would only list thefirst 25 archive deployments, even if more existed in the environment.

Binauthz

Updated the following beta commands to better support IAM Conditions:
- gcloud beta attestors get-iam-policy outputs conditions associated with each binding.
- gcloud beta attestors set-iam-policy accepts policies with conditional bindings.
- gcloud beta attestors <add|remove>-iam-policy-binding accepts conditional bindings via new--condition and--condition-from-file flags.
- gcloud beta policy get-iam-policy outputs conditions associated with each binding.
- gcloud beta policy set-iam-policy accepts policies with conditional bindings.
- gcloud beta policy <add|remove>-iam-policy-binding accepts conditional bindings via new--condition and--condition-from-file flags.

Cloud Composer

Enabled nested Airflow commands for Airflow 1.10.14 and 1.10.15 ingcloud composer environments run.

Cloud Logging

Added--location,--bucket, and--view flags togcloud logging logs listto add the ability to limit the results to a view.

Cloud TPU

Promotedgcloud compute tpus tpu-vm to GA. Commands in this groupallow creation and management of Cloud TPU VMs.

Compute Engine

AddedINTERNAL as a choice for--ipv6-access-type flag incompute networks subnets create andcompute networks subnets update.
Promotedunspecified value for--protocol flag ofgcloud compute backend-services <create|update> to GA.
Promotedl3_default value for--ip-protocol flag ofgcloud compute forwarding-rules create to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.81.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

381.0.0 (2022-04-12)

App Engine

Updated the Java SDK to version 1.9.96.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

*Added repository size togcloud artifacts repositories describe andgcloud artifacts repositories list responses to GA.

Cloud Bigtable

Added "pretty-print" formatting tocbt lookup andcbt read commands.Column encodings and types can be provided using a YAML file, which ispassed to the commands usingformat-file argument.
Added "keys-only" filtering tocbt lookup andcbt read commands byprovidingkeys-only=true argument.
Promotedgcloud bigtable hot-tablets list to beta and GA.

Cloud Dataflow

Added--image-repository-username-secret-id,--image-repository-password-secret-id and--image-repository-cert-pathflags togcloud dataflow flex-template build command to allow users to providecredentials to pull template images from private registries.

Cloud Dataproc

Promotedgcloud dataproc clusters gke create to GA.

Cloud Datastream

Deprecatedgcloud beta datastream. Usegcloud datastream insteadhttps://cloud.google.com/sdk/gcloud/reference/datastream.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.14.2
- Fix: transaction expires after 270s or 60s window
- Fix: dead transaction reused bug
- Fix: deadlock for up to 30s.#2452

Cloud Healthcare

Added--schema-type valueanalytics_v2 to the following commandgcloud beta healthcare fhir-stores export bq.
Added--resource-type flag togcloud healthcare fhir-stores export bq andgcloud healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
Added--since flag togcloud healthcare fhir-stores export bq andgcloud healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Spanner

Added--processing-units flag tospanner instances create andspannerinstances update to add ability to create granular instances in GA.

Cloud Storage

Updated gsutil component to 5.9.

Compute Engine

Added--region flag for updating Regional Target HTTPS Proxies viagcloud compute target-https-proxies import.
Changed the list format field label ofgcloud compute networks subnets list to include updated IPv6 fields.
Added--provisioning-model and--instance-termination-action flags togcloud compute instances set-scheduling surface for beta.
Updatedgcloud compute instances set-scheduling documentation to include--no-preemptible flag.

Config Connector

Updated Google Cloud Config Connector to version 1.80.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Updatedgcloud database-migration connection-profiles list to list all region connection profiles when region not specified.

GKE Hub

Added Kubernetes resource labels for RBAC policies produced bygenerate-gateway-rbac command.

Kubernetes Engine

Added--network-performance-configs flag togcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
Promoted maxSurge default to GA for node-pool upgrade settings.
Require values for both--shielded-secure-boot and--shielded-integrity-monitoring when either one is set.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

380.0.0 (2022-04-05)

Google Cloud CLI

Updatedgcloud auth login --cred-file=external-account-creds.json to authorize bq with the External Account Credentials in the passed credential file.

Cloud Composer

Added support for1 and2 aliases in--airflow-version flag, andairflow-1 andairflow-2 aliases in Airflow part of--image-version flag, ingcloud composer environments create,gcloud beta composer environments update,gcloud beta composer environments check-upgrade.
Implementedgcloud beta composer environments snapshots command group.

Cloud Spanner

Promoted--condition flag on Cloud Spanneradd-iam-policy-binding andremove-iam-policy-binding commands to GA. This allows setting conditionalIAM policies on Cloud Spanner resources (instances, databases, and backups)viagcloud.
Promotedgcloud spanner backups copy to beta and GA.

Compute Engine

Promoted--certificate-map of 'compute target-ssl-proxies insert|update` to beta.

Distributed Cloud Edge

Addedgcloud edge-cloud container which allows users to manage their Distributed Cloud Edge clusters.

Kubernetes Engine

Added--network-performance-configs flag togcloud container node-pools create/update to allow node pools to enable higher performance bandwidth for VM to VM traffic.
Promoted maxSurge default to GA for node-pool upgrade settings.

Terraform

Addedgcloud terraform vet to beta, which allows enforcing policy complianceas part of an infrastructure CI/CD pipeline.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

379.0.0 (2022-03-29)

Breaking Changes

(Cloud Services) Replace--deleted flag with--show-deleted flag togcloud services api-keys list. With--show-deleted, keys soft-deleted within 30 days will be returned.
(Cloud Services) Change the default output format from tabular to row-based ofgcloud services api-keys list.

Google Cloud CLI

Updatedgcloud auth login --cred-file=external-account-creds.json to authorize gsutil with the External Account Credentials in the passed credential file.

AI

Added more choice options to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tunining-jobs, including: southamerica-east1 and us-west4.

Artifact Registry

Changed com.google.cloud.artifactregistry.gradle-plugin from 2.1.1 to 2.1.5 ingcloud print-settings.
Promotedgcloud artifacts apt andartifacts yum commands to GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.14.1
- Chore: prepare for aggregate support.
- Chore: add support of x-goog-request-params http header for routing.
- Fix: change read-past-max-staleness error code to align with production implementation.
- Fix: update readtime-in-the-future error message.
- Fix: support importing exports from Windows on UNIX systems.

Cloud Functions

Promoted--docker-repository,--kms-key,--clear-docker-repository and--clear-kms-key flag ofgcloud functions deploy to GA.
Promoted--docker-registry flag ofgcloud functions deploy to beta.

Cloud On Demand Scanning

Added ARM support forlocal-extract on Linux.

Cloud Run

Promotedgcloud run services proxy to beta. This command allows you to proxya service or revision to localhost. Requests will be authenticated as thecurrent SDK account, or with a provided token.

Compute Engine

Fixed an issue with--create-disk and--disk flags that causesgcloud compute instances create to fail when attaching a boot disk.
Promoted--enable-ula-internal-ipv6 and--internal-ipv6-range flags to GA forgcloud compute networks <create|update>.
Updated--protocol flag to permit values ofTCP orSSL when--enable-logging or--logging-sample-rate flags are set forgcloud compute backend-services create andgcloud compute backend-services update for beta.

Config Connector

Updated Google Cloud Config Connector to version 1.78.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Updatedgcloud database-migration connection-profiles list --region=us-central1 to return correct structure for connection profiles based on format.
Updatedgcloud database-migration connection-profiles create mysql to return error on invalid hostname.
Updatedgcloud database-migration connection-profiles create postgresql to return error on invalid hostname.

Eventarc

Addedgcloud eventarc providers which allows for the discovery of event providers.

Kubernetes Engine

Deprecated--autoprovisioning-min-cpu-platform flag fromgcloud container clusters create/update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

378.0.0 (2022-03-22)

Breaking Changes

(Bare Metal Solution) Modifiedgcloud bms volumes update,gcloud bms instances update,gcloud bms networks update, andgcloud bms nfs-shares updateto be synchronous by default. Use--async flag to get the old behavior.

Google Cloud CLI

Updated--scopes flag ingcloud auth application-default print-access-token to support print down-scoped access token for user accounts.

Anthos Multi-Cloud

Added--root-volume-type flag togcloud container aws node-pools updateto update the type of the root volume.
Added--root-volume-size flag togcloud container aws node-pools updateto update the size of the root volume.
Added--root-volume-iops flag togcloud container aws node-pools updateto update the number of I/O operations per second (IOPS) to provision forthe root volume.
Added--root-volume-kms-key-arn flag togcloud container aws node-poolsupdate to update the Amazon Resource Name (ARN) of the AWS KMS key toencrypt the root volume.
Added--config-encryption-kms-key-arn flag togcloud container awsnode-pools update to update the Amazon Resource Name (ARN) of the AWS KMSkey to encrypt the user data.
Added--clear-proxy-config flag togcloud container aws clusters updateto clear the proxy configuration associated with the cluster.
Added--clear-security-group-ids flag togcloud container aws clustersupdate to clear the additional security groups associated with the controlplane replicas.
Added--root-volume-type flag togcloud container aws clusters update toupdate the type of the root control plane volume.
Added--root-volume-size flag togcloud container aws clusters update toupdate the size of the root control plane volume.
Added--root-volume-iops flag togcloud container aws clusters update toupdate the number of I/O operations per second (IOPS) to provision for theroot control plane volume.
Added--root-volume-kms-key-arn flag togcloud container aws clustersupdate to update the Amazon Resource Name (ARN) of the AWS KMS key toencrypt the root control plane volume.
Added--clear-security-group-ids flag togcloud container aws node-poolsupdate to clear the additional security groups associated with the nodepool nodes.

Bare Metal Solution

Added--async flag togcloud bms volumes update,gcloud bms instances update,gcloud bms networks update,andgcloud bms nfs-shares update.

Certificate Authority Service

Enabled--sort-by flag forgcloud privateca templates list.

Cloud Memorystore

Promoted--maintenance-window-day and--maintenance-window-hour flags ofgcloud redisinstances create to GA.
Promoted--maintenance-window-day,--maintenance-window-hour, and--maintenance-window-anyflags ofgcloud redis instances update to GA.
Promotedgcloud redis instances reschedule-maintenance to GA.
Promoted support for maintenance windows ingcloud memcache to beta.
- Added maintenance window flags tocreate andupdate commands.
- --maintenance-window-day
- --maintenance-window-start-time
- --maintenance-window-duration
- Added the flag--maintenance-window-any toupdate to remove apreviously selected maintenance window.
Promoted the commandgcloud beta memcache reschedule-maintenance.

Cloud On Demand Scanning

Fixed an issue where extraction would occasionally fail while scanning Mavenpackages.

Cloud SQL

Expanded--database-version flag choices togcloud beta sql instance patch to enable major version upgrade on Cloud SQL instances.

Compute Engine

Added--load-balancing-scheme flag togcloud compute url-maps validate for alpha, beta and v1.
Updated import and export schemas for:
- gcloud compute forwarding-rules.
- gcloud compute backend-services.
Promotedlocality_lb_policy flag ofgcloud compute backend-services create/update to beta.
Added--share-setting and--share-with flags togcloud beta compute sole-tenancy node-groups create|update for beta.
Added--share-settings flag togcloud beta compute sole-tenancy node-groups list for beta.
Added--node-project flag togcloud beta compute instances create for beta.
Promotedgcloud compute instances suspend andgcloud compute instances resume to v1.

Config Connector

Updated Google Cloud Config Connector to version 1.77.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Config Controller

Added--use-private-endpoint flag togcloud anthos config controller createto restrict access to the master's private endpoint IP of a config controllerinstance.

GKE Hub

Promotegcloud container hub memberships generate-gateway-rbac command from alpha to beta.

Secret Manager

Added--update-version-aliases flag togcloud secrets update andgcloud secrets beta update to enable the addition of new aliases to secret versions.
Added--remove-version-aliases flag togcloud secrets update andgcloud secrets beta update to enable the removal of aliases to secret versions.
Added--clear-version-aliases flag togcloud secrets update andgcloud secrets beta update to enable the clearing of all aliases from a secret.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

377.0.0 (2022-03-15)

Google Cloud CLI

Promoted--no-browser ingcloud auth login andgcloud authapplication-default login to be the default flow if gcloud cannotlaunch a web browser. You can still use--no-launch-browser flowby explicitly specifying it. Note that--no-launch-browser will beremoved in version 383.0.0 on April 26, 2022.

Anthos Multi-Cloud

Added--security-group-ids flag togcloud container aws node-pools updateto update the IDs of additional security groups to add to node pool nodes.

Artifact Registry

Fixed issue wheregcloud artifacts repositories create requires exessive permission when a kms key is supplied.

Bare Metal Solution

Promotedgcloud bms instances start to GA.
Promotedgcloud bms instances update to GA.
Promotedgcloud bms networks update to GA.
Promotedgcloud bms nfs-shares describe to GA.
Promotedgcloud bms nfs-shares list to GA.
Promotedgcloud bms nfs-shares update to GA.
Promotedgcloud bms volumes update to GA.
Added--filter flag togcloud bms instances list.
Added--filter flag togcloud bms volumes list.

Certificate Manager

Improved output ofgcloud beta certificate-manager dns-authorizations create command. The output does not contain details of a created resource anymore.

Cloud Composer

Added support forcomposer-1 andcomposer-2 aliases in Composer part of--image-version flag ingcloud beta composer environments create,gcloud beta composer environments update,gcloud beta composer environments check-upgrade.
Fixed support forX.Y aliases in--airflow-version flag andairflow-X.Y aliases in Airflow part of--image-version flag ingcloud beta composer environments update andgcloud beta composer environments check-upgrade.

Cloud DNS

Add setIampolicy and getIamPolicy Alpha commands.

Cloud Dataproc

Added support for Clusters withoutcluster.config togcloud dataproc jobssubmit.

Cloud Domains

Allow specifying Project numbers ingcloud domains methods.

Cloud IAM

Service Accounts Undelete promoted to GA command.

Cloud Memorystore

Promoted--read-replicas-mode and--replica-count flags ofgcloud redisinstances create to GA.
Promoted--read-replicas-mode,--replica-count, and--secondary-ip-rangeflags ofgcloud redis instances update to GA.

Cloud Storage

Updated gsutil component to 5.8.

Config Connector

Updated Google Cloud Config Connector to version 1.75.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Added--disable-pod-cidr-overprovision flag togcloud beta containerclusters/node-pools create to allow disabling overprovisioning of pod IPsduring clusters and node-pools create.

Network Connectivity

Addedgcloud network-connectivity locations describe andgcloudnetwork-connectivity locations list. These commands return informationabout locations that support site-to-site data transfer.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

376.0.0 (2022-03-08)

Certificate Authority Service

Added--skip-grace-period flag togcloud privateca roots delete andgcloud privateca subordinates delete to delete a certificate authority without waiting for the 30-day grace period that allows undeletion.

Cloud Build

Modifiedgcloud builds submit --pack to pass--network=cloudbuild to pack.

Cloud Identity-Aware Proxy

Add warning message togcloud compute start-iap-tunnel telling users about installing NumPy.

Cloud Run

Added--env-vars-file togcloud beta run deploy andgcloud run deploy tospecify environment variables for Cloud Run deployments.
Added--env-vars-file togcloud beta run services update andgcloud run services update to update environment variables for Cloud Rundeployments.

Compute Engine

Added--split-source-commitment flag togcloud compute commitments create for alpha.

Database Migration

Some changes ingcloud connection profile create cloudsql:
- Fixed boolean flags to support--flag for setting it to true and--no-flag for false.

Firebase Test Lab

Promoted--app flag ofgcloud firebase test ios run to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

375.0.0 (2022-03-01)

Breaking Changes

(Miscellaneous) Updated.gcloudignore pattern matching to ensure that a leading wildcarddoes not match multiple path parts, for improved consistency with.gitignore.
- For example,*/baz will no longer matchfoo/bar/baz. Use**/bazfor the previous behavior.

App Engine

Updated the Java SDK to version 1.9.95.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Key Management Service

Addgcloud kms ekm-connections commands to GA.

Cloud Pub/Sub

Added--enable-exactly-once-delivery flag togcloud pubsub subscriptions create to beta to set exactly once delivery preference in Cloud Pub/Sub subscriptions.
Added--enable-exactly-once-delivery flag togcloud pubsub subscriptions update to beta to update exactly once delivery preference for Cloud Pub/Sub subscriptions.

Cloud Security Command Center

Addedgcloud scc bqexports command group to support BigQueryExport features.

Cloud Speech API

Addedmedical_conversation andmedical_dictation options forgcloud ml speech <recognize | recognize-long-running> --model flag.

Compute Engine

Modified--filter to add support for server-side zone and region filtering togcloud compute list commands.
- Filtering will only be applied server-side if an exact match (=) is used in the filter expression (e.g.--filter="zone=us-central1-a"). Otherwise, the existing client-side filtering will be applied.

Identity and Access Management

Addedgcloud beta iam policies create which creates a policy on the givenattachment point with the given name.
Addedgcloud beta iam policies delete which deletes a policy on the givenattachment point with the given name.
Addedgcloud beta iam policies get which gets a policy on the givenattachment point with the given name.
Addedgcloud beta iam policies listwhich lists the policies on the givenattachment point.
Addedgcloud beta iam policies update which updates the policy on the givenattachment point with the given name.

Kubernetes Engine

Promoted--enable-identity-service flag to GA forgcloud container cluster create|update.
Added--enable-confidential-nodes flag togcloud beta container node-pools create/update to allow creating node-pools with confidential nodes, and updating existing node pools to confidential nodes.

Miscellaneous

Updatedgcloud info to display the source for each property value inparenthesis after the value, to help understand if the property is set bya command-line flag, an environment variable, the properties file, etc.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

374.0.0 (2022-02-23)

Breaking Changes

(Google Cloud CLI) Updatedgcloud auth application-default login to use--no-browser inplace of--no-launch-browser when using--client-id-file.

Google Cloud CLI

Addedgcloud config configurations rename which allows forrenaming of existing configurations.

Anthos Multi-Cloud

Added--security-group-ids flag togcloud container aws clusters updateto update the IDs of additional security groups to add to controlplane replicas.
Added--proxy-secret-arn flag togcloud container aws clusters updateto update the Amazon Resource Name (ARN) of the AWS Secrets Manager secretcontaining a proxy configuration.
Added--proxy-secret-version-id flag togcloud container aws clustersupdate to update the version ID of the AWS Secrets Manager secretcontaining a proxy configuration.
Deprecatedaws/location property ofgcloud container aws. Usecontainer_aws/location to set the default Google Cloud location forgcloud container aws.
Deprecatedazure/location property ofgcloud container azure. Usecontainer_azure/location to set the default Google Cloud location forgcloud container azure.

App Engine

Fixed bug in devappserver causing "ImportError: cannot import name apiproxy"errors.

BigQuery

Fix 'collections' error for Python 3.10.
Add--concurrency flag for reservations. Mark--max_concurrency as deprecated.
Minor bug fixes and dependency updates.

Cloud DNS

Added Location flag to Cloud DNS Managed Zones, Response Policies beta commands. This flag can be specified to target Cloud DNS Zonal Servers.

Compute Engine

Added--compression-mode flag togcloud beta compute backend-services <create | update>.
Added--compression-mode flag togcloud beta compute backend-buckets <create | update>.
Promoted--resource-manager-tags flag ofgcloud compute instances create,gcloud compute instance-templates createandgcloud compute instances bulk create to GA.
Addedproject-number as an option for--service-proxy ofgcloud beta compute instance-templates create.
Promoted enumCLIENT_IP_NO_DESTINATION of--session-affinity ofgcloud backend-services <create | update> to Beta and GA.
Modified--load-balancing-scheme flag ofgcloud compute backend-services create andgcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in GA.

Compute OS Config

Addedgcloud compute osconfig pause and gcloud compute os-config resume` commands.

Config Connector

Updated Google Cloud Config Connector to version 1.74.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Added--event-filters-path-pattern flag togcloud eventarc triggers create andgcloud eventarc triggers update to allow path pattern matching in Cloud Audit Log resource name filter.

Kubernetes Engine

Added--autoprovisioning-network-tags flag ofgcloud container clusters create,gcloud container clusters create-autoandgcloud container clusters update to beta, GA.

Miscellaneous

Updatedgcloud config get-value togcloud config get per user feedback.Theget-value command will remain as a hidden alias forget.
Updatedgcloud config set to prompt when attempting to set a project,zone, or region to an invalid value. If--quiet is provided, or thecommand is not run interactively, the warning is still printed and thespecified value is set.
Updatedgcloud init to allow selection of an unverified project ID.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

373.0.0 (2022-02-15)

Breaking Changes

(Cloud Filestore) Undeprecate--locations flag togcloud filestore.
(Cloud Pubsub Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
- For IPv4-only environments, pass a IPv4 address to--host:port.
(Cloud Pubsublite Emulator) Changed the default hostname to IPv6 localhost [::1] for all environments.
- For IPv4-only environments, pass a IPv4 address to--host:port.
(Transcoder) Removed support forgcloud beta transcoder command group.

Google Cloud CLI

Added--scopes flag togcloud auth application-default print-access-tokencommand to print an access token with the given scopes.

AI Platform

Fixed issue wheregcloud ai-platform local train mistakenly overrode it to the default value when the flag--worker-count or--parameter-server-count is specified to be 0.

Anthos Multi-Cloud

Added--config-encryption-kms-key-arn flag togcloud container awsclusters update to update the Amazon Resource Name (ARN) of the AWSKMS key to encrypt user data.

Bare Metal Solution

Removedgcloud bms volumes snapshot andgcloud bms volumes restore from GA.

Cloud Dataplex

Promotedlakes command group to GA.
Promotedzones command group to GA.
Promotedassets command group to GA.
Promotedtasks command group to GA.

Cloud Datastream

Fix bug withgcloud datastream connection-profiles create command when specify--private-connection flag.

Cloud Memorystore

Added--read-replica-mode and--secondary-ip-range togcloud beta redis instances update.
Updatedgcloud beta redis instances describe to include secondary-ip-range.

Cloud On Demand Scanning

AddedGO option to--additional-package-types flag forgcloud artifacts docker images scan to enable scanning of Go third-party andstandard library packages in Go binaries.

Cloud SQL

Added--maintenance-version flag togcloud sql instances patch.

Cloud Spanner

Promoted the database dialect flag to beta and GA ingcloud spanner databases create command.

Cloud Speech API

Added--min-diarization-speaker-count and--max-diarization-speaker-counttogcloud beta ml speech command, replacing--diarization-speaker-countwhich used to set both of the new flags to same value.

Compute Engine

Added--provisioning-model and--instance-termination-action flags forgcloud compute create-with-container command.
Modified the API calls to use correct (RFC7396) null semantics in Patch for removing stateful IPs that were made by using the following flags ofgcloud beta compute instance-groups managed update andgcloud beta compute instance-groups managed instance-configs update:
- --remove-stateful-internal-ips,
- --remove-stateful-external-ips.
Promoted--provisioning-model and--instance-termination-action flags forgcloud compute <instances|instance-templates|instances bulk> create commands.

Config Connector

Updated Google Cloud Config Connector to version 1.73.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added the following alpha and beta commands to work with Dataproc Metastore service databases and tables:
- metastore services databases get-iam-policy
- metastore services databases set-iam-policy
- metastore services databases add-iam-policy-binding
- metastore services databases remove-iam-policy-binding
- metastore services databases tables get-iam-policy
- metastore services databases tables set-iam-policy
- metastore services databases tables add-iam-policy-binding
- metastore services databases tables remove-iam-policy-binding

Identity and Access Management

Added--include-aws-session-token-url flag togcloud iam workload-identity-pools create-cred-config command to include AWS token url to the credential source while generating AWS credentials config file.
Added--include-deny flag togcloud beta projects get-ancestors-iam-policyandgcloud beta resource-manager folders get-ancestors-iam-policy to specifyif it should return deny policies on the hierarchy.

Kubernetes Engine

Added--spot flag togcloud container clusters/node-pools create to allow creating spot VM for node pools.
Adds support for linux/arm version of kubectl.
Additional kubectl versions:
- kubectl.1.18 (1.18.20)
- kubectl.1.19 (1.19.14)
- kubectl.1.20 (1.20.15)
- kubectl.1.21 (1.21.9)
- kubectl.1.22 (1.22.6)
- kubectl.1.23 (1.23.3)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

372.0.0 (2022-02-08)

Breaking Changes

(Kpt) Thekpt live apply andkpt live destroy default behavior changed to wait forever
(Kpt) for reconciliation if no timeouts are specified.
(Kpt) Thekpt live output forevents andjson printer is changed to omit resource-specific
(Kpt) health information by default.
(Kpt) The defaultimage-pull-policy forkpt fn render andkpt fn eval changed
(Kpt) fromAlwaysPull toIfNotPresent.

Cloud SDK

Deprecated--[no-]launch-browser flags and added--no-browsertogcloud auth login andgcloud auth application-default logincommands. Use--no-browser to authorize gcloud on machines whichcannot launch a web browser.
Deprecated--no-launch-browser and--console-only flags andadded--no-browser flag togcloud init. Use--no-browser toinitialize gcloud command-line tool on machines which cannot launch a webbrowser.

Anthos Multi-Cloud

Added--role-arn flag togcloud container aws clusters update command toupdate the IAM role to assume when managing AWS resources.
Added--role-session-name flag togcloud container aws clusters updatecommand to update the identifier for the assumed role session.
Added--instance-type flag togcloud container aws clusters updatecommand to update the AWS ec2 instance type for the control plane.
Added--admin-users flag togcloud container aws clusters update andgcloud container azure clusters update to update the users that canperform operations as a cluster administrator.
Added--vm-size flag togcloud container azure clusters update to updatethe Azure Virtual Machine size for the control plane.

Certificate Manager

Unified usage of--location flag ingcloud certificate-manager subcommands.

Cloud Composer

Added--connection-subnetwork flag togcloud composer environments create command to enable using Private Service Connect for internal communication.

Cloud Identity-Aware Proxy

Promotedgcloud iap oauth-clients from alpha to beta.
Promotedgcloud iap oauth-brands from alpha to beta.

Cloud Key Management Service

Addkms ekm-connections commands to alpha, beta.
Add support forexternal-vpc crypto keys.
Added support for the following "raw" PKCS#1 signing algorithms togcloud kms keys create|update andgcloud kms keys versions import:
- rsa-sign-raw-pkcs1-2048
- rsa-sign-raw-pkcs1-3072
- rsa-sign-raw-pkcs1-4096

Cloud On Demand Scanning

Upgradelocal-extract to version 1.4.0 to improve the stability andquality of extraction.

Cloud SQL

Promoted--network flag ofgcloud sql instances create to GA.
Promoted--network flag ofgcloud sql instances patch to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.72.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added--update-auxiliary-versions-from-file,--add-auxiliary-versions and--clear-auxiliary-versions flags togcloud metastore services update betarelease track to allow updating a Dataproc Metastore with auxiliary versions.

Kpt

Updated kpt from v1.0.0-beta.9 to v1.0.0-beta.13. Refer to OSS releases pagehttps://github.com/GoogleContainerTools/kpt/releases for detailed release notes.
Improved the merge handling forpipeline section of the Kptfile.
Addedexec support for running functions inkpt fn render.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

371.0.0 (2022-02-01)

Cloud SDK

Added support for specifying an OAuth 2.0 access token via the environmentvariableCLOUDSDK_AUTH_ACCESS_TOKEN.

Anthos Multi-Cloud

Added--admin-users flag togcloud container aws clusters create andgcloud container azure clusters create to add users that can performoperations as a cluster administrator.

App Engine

Updated the Java SDK to version 1.9.94.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Cloud DataPipelines

Addedgcloud beta datapipelines pipeline job list which lists all jobs for a given pipeline in a specific project and region.

Cloud Deploy

Add--description flag togcloud deploy targets rollback.
Modifiedgcloud deploy targets describe to make--delivery-pipeline an optional flag.
- When--delivery-pipeline is not specified, displays deployment informationof the associated pipeline with the most recent successful rollout.
- Added--list-all-pipelines to list deployment information of all associated pipelines.

Cloud Speech API

Added--enable-automatic-punctuation togcloud ml speech recognize commands.

Compute Engine

Added--guest-os-features (onlyUEFI_COMPATIBLE is supported) for:
- gcloud compute images import in beta;
- gcloud compute instances import in beta;
- gcloud compute machine_images import in beta.
Added a new key typehttp-cookie to--enforce-on-key ingcloud compute security-policies rules.
Added--recaptcha-redirect-site-key forgcloud compute security-policies update, and promoted it to beta and GA.
Added--exceed-redirect-type and--exceed-redirect-target forgcloud compute security-policies rules create|update, and promoted them to beta and GA.
Added support forversion=8 andshort-name=rocky in--os-types forgcloud beta compute instances ops-agents policies [create|update].

Config Connector

Updated Google Cloud Config Connector to version 1.72.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added--auxiliary-versions and--auxiliary-versions-from-file flags togcloud metastore services create beta release track to allow creatinga Dataproc Metastore with auxiliary versions.
Added--endpoint-protocol flag togcloud beta metastore services createandgcloud beta metastore services update to specify the protocol to use forthe metastore service endpoint.

Kubernetes Engine

Updates default kubectl from 1.20 to 1.21.
Adds support for Mac M1 (darwin/arm64) version of kubectl (version 1.21 and greater).
Additional kubectl versions:
- kubectl.1.18 (1.18.20)
- kubectl.1.19 (1.19.14)
- kubectl.1.20 (1.20.14)
- kubectl.1.21 (1.21.9)
- kubectl.1.22 (1.22.5)
- kubectl.1.23 (1.23.1)

Miscellaneous

Added configuration propertycore/console_log_format to support alternativelogging formats. Usegcloud config set core/console_log_format detailed toinclude timestamps in messages logged to the console.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

370.0.0 (2022-01-25)

AI

Added more choice options to--region flag ofgcloud ai custom-jobs andgcloud ai hp-tunining-jobs, including: asia-east2, asia-south1, europe-west3, europe-west6, northamerica-northeast2 and us-west2.

Bare Metal Solution

Addedgcloud bms instances reset which hard resets Bare Metal Solution instances.

BigQuery

Add support for--clone flag for table clones.
Add support for--multi_region_auxiliary flag for reservations.
Fix 'bq show -d' to support authorized routines.
Minor bug fixes and dependency updates.

Cloud Composer

Fixed issues in creation of Cloud Composer 2 environments that didn't properly pass on the secondary range names/CIDRs.

Cloud Functions

Promoted--set-secrets,--update-secrets,--remove-secrets and--clear-secrets flags ofgcloud functions deploy to GA.

Compute Engine

Promoted--enable-ipv6,--ipv6-nexthop-address, and--peer-ipv6-nexthop-address flags ofgcloud compute router update-bgp-peer to GA.
Promoted--enable-ipv6,--ipv6-nexthop-address, and--peer-ipv6-nexthop-address flags ofgcloud compute router add-bgp-peer to GA.
Promoted--stack-type,--candidate-ipv6-subnet,--cloud-router-ipv6-interface-id, and--customer-router-ipv6-interface-id flags ofgcloud compute interconnects attachments dedicated create to GA.
Promoted--stack-type,--candidate-ipv6-subnet,--cloud-router-ipv6-interface-id, and--customer-router-ipv6-interface-id flags ofgcloud compute interconnects attachments dedicated update to GA.
Promoted--enable-uefi-networking flag ofgcloud compute instances create,gcloud compute instance-templates createandgcloud compute instances bulk create to GA.
Addedmesh as an option for--service-proxy ofgcloud beta compute instance-templates create.

Compute OS Config

Add--mig-instances-allowed flag togcloud compute os-config patch-jobs execute.

Config Connector

Updated Google Cloud Config Connector to version 1.71.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added--database-type flag tometastore services create alpha and betarelease tracks to allow specifying the backing store in Dataproc Metastore.

Recommender

Added annotations support forgcloud beta recommender insight-type-config update andgcloud beta recommender recommender-config update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

369.0.0 (2022-01-19)

AI

Added--labels flag togcloud ai custom-jobs create andgcloud ai hp-tuning-jobs create to support setting labels on the resources.

Artifact Registry

Removed deprecated repository format 'PYPI' from commandsgcloud artifacts repositories create andgcloud artifacts print-settings.

Bare Metal Solution

Updatedgcloud bms instances list to return the resource identifier.
Addedgcloud bms operations describe andgcloud bms operations wait which checks the status or waits for completion of long-running operations in Bare Metal Solution.

Certificate Manager

Promotedgcloud certificate-manager to beta.

Cloud Dataproc

Addedgcloud dataproc batches to submit and manage Dataproc batch jobs.
Added--master-local-ssd-interface,--worker-local-ssd-interface and--secondary-worker-local-ssd-interface togcloud dataproc clusterscreate to allow users to specify interface (SCSI/NVME) while attachinglocal SSDs.
Enabled Cloud Storage file location fordataproc workflow-templates instantiate-from-file --file.

Cloud Deploy

Promotedgcloud deploy to GA.

Cloud Functions

Promotegcloud functions --gen2 commands to beta.

Cloud IDS

Updatedids endpoints create to pass in user-defined labels to theEndpoint resource.
ids endpoints list now returns the correct list of endpoints when--uriis passed in.

Cloud Speech API

Added--model flag togcloud ml speech recognize to specify ml model touse for audio recognition.
Added--output-uri flag togcloud ml speech recognize-long-runningallowing users to specify output transcript file on Google Cloud Storage.

Compute Engine

Promoted--auto-renew flag ofgcloud compute commitments create andgcloud compute commitments update to GA.
AddedFIXED_STANDARD to allowed list of values for--network-tier flag.
Promoted flags--cache-key-include-http-header and--cache-key-include-named-cookie ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promoted flags--cache-key-include-http-header and--cache-key-query-string-whitelist ofgcloud compute backend-buckets create andgcloud compute backend-buckets update to GA.
Promoted--certificate-map of 'compute target-https-proxies insert|update` to beta.
Added--domain-names forgcloud compute service-attachments create.
Promoted--troubleshoot flag ofgcloud compute ssh to GA.
Added21.04 and21.10 to allowed list of values for--version ofgcloud beta compute instances ops-agents policies [create|update].

Config Connector

Updated Google Cloud Config Connector to version 1.70.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Added--internal-ip flag togcloud container fleet memberships register for version beta to maintain consistency withgcloud beta container clusters get-credentials.

Recaptcha

Added--waf-feature, and--waf-service options torecaptcha keys create command, supporting creation of WAF-enabled keys.

Recommender

Added support forgcloud beta recommender insight-type-config describe.
Added support forgcloud beta recommender insight-type-config update.

Service Directory

Added--network flag togcloud service-directory endpoints create command.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

368.0.0 (2022-01-11)

Breaking Changes

(Anthos Multi-Cloud) Required--fleet-project flag ofgcloud container aws clusters createandgcloud container azure clusters create.
(Anthos Multi-Cloud) Required--config-encryption-kms-key-arn flag ofgcloud container awsclusters create.
(Firebase Test Lab) Updated minimum version for AndroidJUnitRunner in combination with AndroidTest Orchestrator from 1.0 to 1.1, deprecating support for the TestOrchestrator from the legacy Android Test Support libraries.

AI

Updatedgcloud ai custom-jobs create to allow worker pools withcontainer-image-uri whenpython-package-uris is also specified.

Anthos Multi-Cloud

Replacedauth-provider auth plugin withexec auth plugin when generatingkubeconfig ingcloud container aws clusters get-credentials andgcloudcontainer azure clusters get-credentials.

Bare Metal Solution

Removedgcloud bms snapshot-schedule-policies from GA.
- Removedgcloud bms volumes snapshots from GA.
- Removedgcloud bms volumes update from GA.

Cloud Bigtable

Addedcbt import [TABLE_ID] [INPUT_FILE] which allows the contents of aproperly formatted .csv file to be written to an existing table.

Cloud Composer

Addedgcloud composer state store for State Store operation of State/Disaster recovery to Alpha.
Addedgcloud composer state load for State Load operation of State recovery to Alpha.

Cloud DNS

Added DNS Routing Policies support forgcloud dns record-sets.

Cloud Data Fusion

Added--options optional argument to
gcloud beta data-fusion instances update for instance to update
options field, specified as KEY1=VALUE1,KEY2=VALUE2.

Cloud Datastream

Addedgcloud datastream objects command group. Commands in this group manage backfills for Stream object resources. For more information, seehttps://cloud.google.com/datastream/docs/reference/rest/v1/projects.locations.streams.objects.

Cloud Deploy

When creating a release withgcloud releases create, can include the date and time of release creation by adding keywords $DATE and $TIME to release name.

Cloud IDS

Updatedids endpoints create to pass in user-defined labels to theEndpoint resource.

Cloud On Demand Scanning

Updatedlocal-extract to version 1.3.2 to fix an issue with extraction ofinvalid zip archives.

Cloud SQL

Added--insights-config-query-plans-per-minute to
gcloud sql instances create andgcloud sql instances patch.

Cloud Storage

Updated gsutil component to 5.6.

Compute Engine

Promotedcompute machine-images command group to GA.
Promotedgcloud compute backend-services add-service-bindings andgcloud compute backend-services remove-service-bindings commands to beta.
Promoted--request-headers-to-add forgcloud compute security-policies rules create|update to GA.
Promoted--enable-dynamic-port-allocation and--max-ports-per-vm flags ofgcloud compute routers nats create andgcloud compute routers nats update to GA.
Promoted--clear-max-ports-per-vm flag ofgcloud compute routers nats update to GA.
PromotedREGIONAL_MANAGED_PROXY option for--purpose flag ofgcloud compute networks subnets create to GA.
Added--zypper-excludes flag togcloud compute os-config patch-jobs execute to allow specifying patches to be excluded from update.

GKE Hub

Addedgcloud container fleet memberships command group identical toexistinggcloud container hub memberships.
Promoted the following commands to GA:
- gcloud container hub mesh describe.
- gcloud container hub mesh disable.
- gcloud container hub mesh enable.

Kubernetes Engine

Added--enable-service-externalips flag togcloud container clusters create | update to allow or deny services to set the ExternalIPs field.
Added--add-maintenance-exclusion-scope flag togcloud container clusters update to specify the maintenance exclusion scope as no_upgrades, no_minor_upgrades, or no_minor_or_node_upgrades.
Demoted manygcloud container clusters warning-level logs to informational.
- Changed warnings were those that do not indicate issues with your Kubernetes Engine resources, such as upcoming default changes and feature usage notes.
- Intent was to ensure warnings are genuine indications that something is wrong.
- Outdated warnings have been removed.
Added Compact Placement support to the commandgcloud container clusterscreate. A--placement-type flag can be specified to specify a requirementof nodes collocation.
Added Compact Placement support to the commandgcloud container node-poolscreate. A--placement-type flag can be specified to specify a requirementof nodes collocation.

Miscellaneous

Updated console handling code to assume non-interactive mode if stdin, stdout,or stderr is not open, rather than exit with an error.

Recommender

Added support forgcloud beta recommender recommender-config describe.
Added support forgcloud beta recommender recommender-config update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

367.0.0 (2021-12-14)

Breaking Changes

(Cloud Datastream) Modifiedgcloud beta datastream streams create andgcloud beta datastream streams update--force &--validate-only flags to be mutually exclusive.

App Engine

Updated the Go SDK to version 1.9.72.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.

Assured Workloads

Added--enable-sovereign-controls flag togcloud assured workloadscreate command.

Bare Metal Solution

Promotedgcloud bms networks to GA.
Promotedgcloud bms snapshot-schedule-policies to GA.
Promotedgcloud bms volumes to GA.

Cloud Bigtable Emulator

Added ARM64 support for Linux and macOS.

Cloud Composer

Added--enable-master-authorized-networks and--master-authorized-networks flags togcloud beta composer environments create command.
Added--enable-master-authorized-networks and--disable-master-authorized-networks and--master-authorized-networks togcloud beta composer environments update command.

Cloud Datastream

Modifiedgcloud beta datastream stream create andgcloud beta datastream stream update validation flags (--validate-only,--force) to be mutually exclusive.
Promotedgcloud datastream connection-profiles to GA.
- RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
- Renamed--bucket-name flag to bucket.
- Renamed--private-connection-name flag to--private-connection.
- Removed--no-connectivity flag.
- Added--force validation flag.
Promotedgcloud datastream streams to GA.
- For create and update--force &--validate-only flags are now mutually exclusive.
- Renamed--source-name flag to--source.
- Renamed-destination-name flag to--destination.
Promotedgcloud datastream private-connections to GA.
- Renamed--vpc-name flag to--vpc.
Promotedgcloud datastream routes to GA.
Promotedgcloud datastream locations to GA.
Promotedgcloud datastream operations to GA.

Cloud Deploy

When usinggcloud deploy apply, manifest files support apiVersion 'deploy.cloud.google.com/v1'.

Cloud Filestore

Addedgcloud beta filestore instances revert command to revert a filestoreinstance to specific snapshot.

Cloud Healthcare

Added--resource-type flag togcloud beta healthcare fhir-stores export bq andgcloud beta healthcare fhir-stores export gcs which limits the export to specific types of FHIR resources on export.
Added--since flag togcloud beta healthcare fhir-stores export bq andgcloud beta healthcare fhir-stores export gcs which limits the export to FHIR resources that were updated since the value passed in.

Cloud Run

Promoted--cpu-throttling ofgcloud run from beta to GA.

Cloud Security Command Center

Addedgcloud findings bulk-mute command to support mute features.

Compute Engine

Fixed a bug ingcloud compute start-iap-tunnel that was causing remoteconnections to be delayed up to 5 seconds.Link to bug:https://issuetracker.google.com/issues/199408959.
Promoted--subsetting-subset-size flag ofgcloud compute backend-services create|update commands to beta.
Promoted the following--service-proxy flag parameters ofgcloud compute instance-templates create to beta:
- intercept-all-outbound-traffic,
- exclude-outbound-ip-ranges,
- exclude-outbound-port-ranges,
- scope.
Promotedgcloud compute instances|instance-templates create --network-performance-configs flag to GA.
Added the following flags togcloud beta compute instance-groups managed create,gcloud beta compute instance-groups managed create-instance, andgcloud beta compute instance-groups managed instance-configs create:
- --stateful-internal-ip,
- --stateful-external-ip.
Add the following flags togcloud beta compute instance-groups managed update andgcloud beta compute instance-groups managed instance-configs update:
- --stateful-internal-ip,
- --remove-stateful-internal-ips,
- --stateful-external-ip,
- --remove-stateful-external-ips.

Kpt

Updatedkpt update to no longer require users to check in changes before invoking kpt pkg update.
Updatedkpt update to accepts empty path with version.
Updatedkpt fn to check presence of function images in local cache only when relevant.
Fixed the property names casing issue in the Kptfile schema.
Fixed issue wherekpt pkg get returns an error while adding merge comment.

Network Connectivity

Addedgcloud network-connectivity operations describe andgcloudnetwork-connectivity operations list which return information aboutlong-running operations.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

366.0.0 (2021-12-07)

Breaking Changes

(Cloud Composer) Added requirement to provide one of--web-server-allow-ip,--web-server-allow-all,--web-server-deny-all flags ingcloud composer environments create when creating a private IP Cloud Composer 2 environment.
(Cloud Datastore) Modifiedgcloud beta datastream to use Datastream v1 API, which effects the client structured output.
(Cloud Functions) Modifiedgcloud functions deploy flag--security-level to default toSECURE_ALWAYS instead of SECURE_OPTIONAL.SECURE_ALWAYS enforces thecreated function to support HTTPS only, instead of both HTTPS and HTTP.
- To override this behavior, use--security-level=SECURE_OPTIONAL.

Cloud SDK

Added support for environment variable completion to the "gcloud command-line tool".

AI

Added--endpoint-id flag togcloud ai endpoints create andgcloud beta ai endpoints create.
Added--deployed-model-id flag togcloud ai endpoints deploy-model andgcloud beta ai endpoints deploy-model.
Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.

App Engine

Updated the Java SDK to version 1.9.93.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

BigQuery

Added support for CLOUD_RESOURCE as a connection_type.
Added--trial_id flag to extract to support exporting an individual trial of an ML model trained with Hyperparameter Tuning.
Added support for Device Certificate Authentication via Mutual TLS. Seegcloud topic client-certificate.
Added support for creating a linked dataset.
Minor bug fixes.

Certificate Authority Service

Added--kms-key-version togcloud privateca certificates, which allowscreating certificates backed by a KMS key version.

Cloud Access Context Manager

Promoted--scopes flag ofgcloud access-context-manager policies to GA.
Promotedgcloud access-context-manager policies add-iam-policy-binding toGA.
Promotedgcloud access-context-manager policiesremove iam-policy-binding toGA.
Promotedgcloud access-context-manager policies set-iam-policy to GA.
Promotedgcloud access-context-manager policies get-iam-policy to GA.

Cloud Bigtable

Added--autoscaling-min-nodes,--autoscaling-max-nodes, and--autoscaling-cpu-target flags togcloud bigtable clusters create for alpha,beta and GA to let users create autoscaling clusters.
Added keyautoscaling-min-nodes,autoscaling-max-nodes andautoscaling-cpu-target to--cluster-config flag ofgcloud bigtable instances create for alpha, beta and GA to let users createautoscaling clusters.
Added--autoscaling-min-nodes,--autoscaling-max-nodes,--autoscaling-cpu-target anddisable-autoscaling flags togcloud bigtable clusters update for alpha, beta and GA to let users configureautoscaling when updating clusters.

Cloud Composer

Allowed--web-server-allow-ip,--web-server-deny-all,--web-server-allow-all flags ingcloud composer environments create to be used with Cloud Composer 2.
Added support forkubernetes Airflow CLI commands togcloud composer environments run for Cloud Composer environments that use Airflow 2.1.4+.
Added--connection-subnetwork flag togcloud beta composer environments create command to enable using Private Service Connect for internal communication.
Promoted--maintenance-window-start,--maintenance-window-end and--maintenance-window-recurrence flags ofgcloud composer environments create to GA.
Added support for--kms-key flag ingcloud composer environments create command when creating Cloud Composer 2 environments.
Added--environment-size andcomposer-network-ipv4-cidr flags ingcloud composer environments create andgcloud composer environments update to be used with Cloud Composer 2.
Added--scheduler-cpu,--scheduler-memory,--scheduler-storage,--scheduler-count,--worker-cpu,--worker-memory,--worker-storage,--min-workers,--max-workers,--web-server-cpu,--web-server-memory,--web-server-storage flags ingcloud composer environments create andgcloud composer environments update to be used with Cloud Composer 2.

Cloud DNS

Promotedgcloud dns response-policies command group to GA.

Cloud Data Catalog

Addedgcloud data-catalog entries star andgcloud data-catalog entries unstar which allows users to star and unstar their favorite Data Catalog entries respectively.

Cloud DataPipelines

Addedgcloud beta datapipelines pipeline command with support forcreate,list,update,describe,delete,run andstop.

Cloud Datastream

Modifiedgcloud beta datastream stream create andgcloud beta datastream stream update validation flags (--validate-only,--force) to be mutually exclusive.
Promotedgcloud datastream connection-profiles to GA.
- RDBMS files now use the v1 API field names (e.g. 'schema' instead of 'schema_name', etc..).
- Renamed--bucket-name flag to bucket.
- Renamed--private-connection-name flag to--private-connection.
- Removed--no-connectivity flag.
- Added--force validation flag.

Cloud Filestore

Added--force flag togcloud filestore instances delete commandto allow users to delete Filestore instances with child resources.
Addedgcloud filestore instances snapshots command group, which is used to create and manage Filestore snapshots.
Addedconnect-mode param to--network flag ofgcloud filestore instances create for GA.
Added--kms-key flag togcloud filestore instances create commandto specify the customer-managed KMS key name to use for encrypting thefilestore instance.

Cloud Functions

Promoted--min-instances and--clear-min-instances flags ofgcloud functions to GA.

Cloud Pub/Sub

Increased upper bound for--message-retention-duration flag ofgcloud pubsub topics create from 7 days to 31 days.
Increased upper bound for--message-retention-duration flag ofgcloud pubsub topics update from 7 days to 31 days.

Cloud SQL

Added--database-version flag togcloud sql instance patch enable minor version upgrade for cloud sql instances.
Modifiedgcloud sql instances clone to support--point-in-time flag for MySQL too.

Compute Engine

Added update command togcloud compute os-config patch-deployments on alpha, beta and GA tracks.
Promotedgcloud compute snapshots create command to GA.
Promoted flags--connection-persistence-on-unhealthy-backends,--idle-timeout-sec, and--tracking-mode ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promoted--service-bindings flag ofgcloud compute backend-services create|update commands to beta.

Compute OS Config

Added log to remind user how to check operation status forgcloud compute os-config os-policy-assignment create in--async mode.

Config Connector

Updated Google Cloud Config Connector to version 1.68.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Declarative Workflows

Promotedgcloud beta resource-config bulk-export to beta with improved support for export to Terraform HCL format (via.--resource-format=terraform).
Addedconfig export commands for the following command surfaces to alpha, enabling export of the related Google Cloud resources to KRM and Terraform HCL:
- memcache instances
- access-context-manager policies
- access-context-manager perimeters
- access-context-manager levels
- secrets
- secrets versions
- iam service-accounts
- iam service-accounts keys
- transfer jobs
- dns managed-zones
- dns policies
- spanner databases
- spanner instances
- artifacts repositories
- bq jobs
- bq datasets
- bq tables
- pubsub topics
- pubsub subscriptions
- source repos
- kms keys
- kms keyrings
- builds triggers
- dataflow jobs
- monitoring channels
- monitoring policies
- redis instances
- sql instances
- sql databases
- identity groups*
- storage buckets
- bigtable app-profiles
- bigtable instances tables
- bigtable instances
- resource-manager liens
- container node-pools
- container clusters
- compute url-maps
- compute target-grpc-proxies
- compute instances
- compute target-instances
- compute target-ssl-proxies
- compute target-pools
- compute disks
- compute target-http-proxies
- compute target-https-proxies
- compute ssl-policies
- compute addresses
- compute backend-buckets
- compute firewall-rules
- compute target-tcp-proxies
- compute target-vpn-gateways
- compute networks subnets
- compute vpn-tunnels
- compute vpn-gateways
- compute forwarding-rules
Addedgcloud beta resource-config terraform generate-import to beta, adding support for generating a shell script to adopt exported Terraform HCL files into Terraform state.
Addedgcloud beta resource-config terraform init-provider to beta, adding support for initializing the Google Cloud Platform Terraform provider from the gcloud command-line tool.

Kubernetes Engine

Addedfilter option tonotification-config flag ongcloud containerclusters create andgcloud container clusters update commands to specifyspecific pubsub message types to receive.
Added--enable-managed-prometheus flag togcloud beta container clusters createandgcloud beta container clusters update to deploy Google Cloud ManagedService for Prometheus managed collection to a Kubernetes cluster.
Added--disable-managed-prometheus flag togcloud beta container clusters updateto tear down Google Cloud Managed Service for Prometheus managed collectionon a Kubernetes cluster with managed collection already deployed.
Added a deprecation warning on--enable-pod-security-policy flag tocreate andupdate commands ofgcloud beta container clusters.

Network Services

Promotedgcloud network-services service-bindings to beta.

Transcoder

Promotedgcloud transcoder command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

365.0.1 (2021-11-22)

BigQuery

Fixed bug inbq command.This issue can be tracked athttps://issuetracker.google.com/issues/206863204

365.0.0 (2021-11-16)

Breaking Changes

(AI) Removed--base-image flag ofgcloud beta ai custom-jobs local-run. Use--executor-image-uri flag instead.
(AI) Removed--work-dir flag ofgcloud beta ai custom-jobs local-run. Use--local-package-path flag instead.
(Anthos Multi-Cloud) Removed--service-load-balancer-subnet-ids flag ofgcloud container aws clusters create.

Cloud SDK

Updated Windows PuTTY executables to version 0.76.

AI

Promotedgcloud ai custom-jobs local-run to GA.
Promoted 'local-package-path', 'script', 'requirements', 'extra-packages' and 'extra-dir' fields in--worker-pool-spec flag ofgcloud ai custom-jobs create to GA, to support automatically building custom training image from a local package.
Modified--region flag ofgcloud ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud ai models to include new onlineprediction regions.

Cloud Build

Deprecated--no-external-ip ingcloud builds worker-pools create.--no-external-ip will be removed in an upcoming release.Please use--no-public-egress so that workers in the worker pool are created without an external IP address.
Deprecated--no-external-ip ingcloud builds worker-pools update.--no-external-ip will be removed in an upcoming release.Please use--no-public-egress so that workers in the worker pool are created without an external IP address or--public-egress so that workers in the worker pool are created with an external IP address.
Removed--no-external-ip flag ingcloud beta builds worker-pools create.Please use--no-public-egress so that workers in the worker pool are created without an external IP address.
Removed--no-external-ip flag ingcloud beta builds worker-pools update.Please use--no-public-egress so that workers in the worker pool are created without an external IP address or--public-egress so that workers in the worker pool are created with an external IP address.

Cloud Deploy

Added--skaffold-version flag.

Cloud Functions

Promoted--kms-key,--docker-registry, '--clear-kms-key' and '--clear-docker-registry' flags ofgcloud functions deploy to beta.

Cloud Healthcare

Promoted--write-disposition flag ofgcloud healthcare dicom-stores export bq to GA.

Cloud IDS

Promotedgcloud ids endpoints to GA.
- Create, delete and inspect Cloud IDS endpoints in your project.

Cloud SQL

Added PostgreSQL 14 to database versions.

Cloud Storage

Updated gsutil component to 5.5.

Compute Engine

Promotedgcloud compute routers nats rules command group to GA.
Promoted--rules flag ofgcloud compute routers nats create andgcloud compute routers nats update to GA.
Promoted--tcp-time-wait-timeout flag ofgcloud compute routers nats create andgcloud compute routers nats update to GA.
Promoted--clear-tcp-time-wait-timeout flag ofgcloud compute routers nats update to GA.
Added--minimal-action and--most-disruptive-allowed-action flags togcloud compute instance-groups managed rolling-action start-update.
Promoted--edge-security-policy flag ofgcloud compute backend-services update andgcloud compute backend-buckets update commands to GA.
Promoted--type flag ofgcloud compute security-policies create command to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.66.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added--network-config-from-file and--consumer-subnetworks flag togcloud beta metastore services create to specify the subnetworksfrom which the Dataproc Metastore service can be accessed.

Kpt

Updated kpt from v1.0.0-beta.6 to v1.0.0-beta.7.
- Added support for ARM-based machines.
- Added support for selecting resources for function execution.
- Added support for depends-on annotation for actuation.
- Added support for apply-time mutations for actuation.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

364.0.0 (2021-11-09)

Cloud SDK

Updated bundled Python executable for windows to 3.8.10.

AI

Added--kms-key flag togcloud beta ai tensorboards create to support configuring customer-managed encryption key spec.
Promotedgcloud ai tensorboards to GA.
Modified--worker-pool-spec flag ofgcloud beta ai custom-jobs create to support auto training image building for distributed training.
- If alocal-package-path is specified in the first--worker-pool-spec flag, other--worker-pool-spec flags just have to specify the hardware related fields and they will use the same container image built for the first one.
- Addedrequirements field to support installing extra public PyPI dependencies when building the image.
- Addedextra-packages field to support installing extra custom dependencies when building the image.
- Addedextra-dirs field to support copies more directories underlocal-package-path to the training image.

Anthos Multicloud

Promotedgcloud container aws to GA.
Promotedgcloud container azure to GA.

App Engine

Updated the Java SDK to version 1.9.92.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Updatedgcloud artifacts docker images describe, when used with--show-provenanceflag, to support returning provenances in the SLSA provenance format. Seehttps://slsa.dev/for more information.

Cloud DNS

Added cloud logging support forgcloud dns managed-zones.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.13.1
- Fix request timestamps in WebSocket messages.

Cloud Key Management Service

Added support for signing directly oninput-file ingcloud kms asymmetric-sign without specifying adigest-algorithm.

Cloud Memorystore

Added--read-replicas-mode flag togcloud beta redis instances create to support the multiple read replicas feature.
Added--replica-count flag togcloud beta redis instances create andgcloud beta redis instances update to support replica nodes scaling when multiple read replicas are enabled.

Cloud Run

--[clear|set|update|remove]-secrets flags are now supported for--platform=managed in GA for deployments and service updates.

Cloud Security Command Center

Addedgcloud findings set-mute command andgcloud muteconfigs command group to support mute features.

Compute Engine

Promoted--enable-dynamic-port-allocation and--max-ports-per-vm flags ofgcloud compute routers nats create andgcloud compute routers nats update to beta.
Promoted--clear-max-ports-per-vm flag ofgcloud compute routers nats update to beta.
Promoted--troubleshoot flag ofgcloud compute ssh to beta.
Added--enable-uefi-networking flag togcloud compute instances create,gcloud compute instance-templates createandgcloud compute instances bulk create to support UEFI networking when creating instances.
Updated import and export schemas for:
- gcloud beta compute forwarding-rules.
- gcloud beta compute backend-services.

Compute OS Config

Promotedgcloud compute os-config os-policy-assignment-reports commands to GA.
compute os-config os-policy-assignment-reports command accepts user's compute/zone property when--location is not set.

Config Connector

Updated Google Cloud Config Connector to version 1.65.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Promoted--cluster-dns,--cluster-dns-domain and--cluster-dns-scope=vpcflags ofgcloud container clusters create andgcloud container clusters update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

363.0.0 (2021-11-02)

Cloud SDK

gcloud command-line tool supports authentication using workload identityfederation viagcloud auth login --cred-file=/path/to/workload/identity/config/file.
Client certificate authorization is enabled for more services when settingcontext_aware/use_client_certificate.Rungcloud topic client-certificate to see the list of disallowedservices.

AI

Fixed crashing onbeta ai tensorboard-experiments delete.

Cloud SQL

Added the following flags togcloud sql user create andcreatedgcloud sql user set-password-policy for GA:
- --password-policy-allowed-failed-attempts
- --password-policy-password-expiration-duration
- --password-policy-enable-failed-attempts-check
- --clear-password-policy

Compute Engine

Promoted--zone flag ofgcloud compute images describe-from-family to GA.
Added support forversion value11 forshort-name valuedebian in--os-types forgcloud beta compute instances ops-agents policies [create|update].

Config Connector

Updated Google Cloud Config Connector to version 1.64.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Added the following flags togcloud eventarc triggers create to support creating a trigger with Cloud Run for Anthos service destination:
- --destination-gke-cluster
- --destination-gke-service
- --destination-gke-location
- --destination-gke-namespace
- --destination-gke-path
Added the following flags togcloud eventarc triggers update to support updating a trigger with Cloud Run for Anthos service destination:
- --destination-gke-path
- --destination-gke-namespace
- --destination-gke-service
- --clear-destination-gke-path

GKE Hub

Promoted the following commands to beta and GA:
- gcloud container hub cloudrun describe.
- gcloud container hub cloudrun disable.
- gcloud container hub cloudrun enable.
- gcloud container hub cloudrun apply.

Kubernetes Engine

Added--enable-image-streaming flag togcloud container clusters/node-pools create/update to allow creating clusters/node-pools with image streaming enabled, and enabling image streaming on existing clusters/node-pools.

Secret Manager

Updated--filter flag to be passed to the backend in
- gcloud secrets list
- gcloud secrets versions list

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

362.0.0 (2021-10-26)

Breaking Changes

(Cloud SQL) Backups are disabled by default when creating new database instances. This wasenabled by default in the previous release.
(Cloud SQL) Backup start time will not be randomly selected. This was enabled in theprevious release. Use--backup-start-time to specify the start time forbackups.

Cloud Build

gcloud builds submit --tag fails early if a Dockerfile is not found when source is not a directory.

Cloud DNS

Added support for the SVCB and HTTPS record types.

Cloud Dataflow

Added--gcs-log-dir flag togcloud dataflow flex-template build commandto allow users the ability to specify path to a Google Cloud Storage directoryfor their build log.

Cloud On Demand Scanning

Add ARM64 support forlocal-extract.

Cloud Run

Promoted--execution-environment ofgcloud run from alpha to beta.

Compute Engine

Promoted--add-share-with and--remove-share-with flags ofglcloud compute reservations update to GA.

Managed Active Directory

Adding support forgcloud beta active-directory domains backups andgcloud beta active-directory domains restore for domain backup andrestore.

Miscellaneous

Fixed an issue where non-interactive commands could exit with the error'ValueError: invalid width 0'.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

361.0.0 (2021-10-19)

Breaking Changes

(Cloud SQL) Enable backups by default when creating new database instances. Use--no-backup to disable backups.
(Cloud SQL) Backup start time will be randomly select if not specified. Use--backup-start-time to specify the start time for backups.

Cloud SDK

gcloud command-line tool supports authentication using an access tokenfrom a file which can be specified in the global flag--access-token-fileor the propertyauth/access_token_file.

AI

Added--analysis-instance-schema flag ingcloud beta ai model-monitoring-jobs update.
Renamed--work-dir flag ofgcloud beta ai custom-jobs local-run as--local-package-path. Deprecated--work-dir flag.
Renamed--base-image flag ofgcloud beta ai custom-jobs local-run as--executor-image-uri. Deprecated--base-image flag.

Artifact Registry

Added--show-provenance flag ingcloud artifacts docker images describe command to show build provenance.
Removed the auth token placeholder from the output ofgcloud artifacts print-settings npm.
Fixed issue wheregcloud artifacts tags list errors when the package name has slashes.

Cloud Code

Support specifying a service yaml file ingcloud betacode dev.
Support building with a Buildpack instead of a Dockerfile ingcloud beta codedev.

Cloud Domains

Promotedgcloud domains registrations to GA. Cloud Domains enables registering new domain names, transferring already registered domains from 3rd-party domains registrars and managing the domains.

Cloud Healthcare

Promotedgcloud healthcare hl7v2-stores <import|export> command groups to GA.

Cloud Key Management Service

Added support for the following RSA OAEP+SHA1 algorithms togcloud kms keys create|update andgcloud kms keys versions import:
- rsa-decrypt-oaep-2048-sha1
- rsa-decrypt-oaep-3072-sha1
- rsa-decrypt-oaep-4096-sha1

Cloud SQL

Added the following flags togcloud sql instances create andgcloud sql instances patch for GA:
- --password-policy-min-length
- --password-policy-complexity
- --password-policy-reuse-interval
- --password-policy-disallow-username-substring
- --password-policy-password-change-interval
- --clear-password-policy

Cloud Scheduler

Updatedgcloud scheduler jobs commands to accept a location flag tomanually specify a Cloud region.

Cloud Storage

Updated gsutil component to 5.4.

Cloud Tasks

Added--location flag forgcloud tasks andgcloud tasks queues inbeta & GA to enable users to specify a GCP location when managing queuesand tasks.

Compute Engine

Promoted--network flag ofgcloud compute target-instances create to GA.
Promoted--subsetting-policy ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Added--description flag tocompute service-attachments update.
Add--add-share-with and--remove-share-with flags toreservations update to make it easier to add and remove items in the share-with list without having to specify existing items.
Promoted--type flag ofgcloud compute commitments create to GA.
Promoted--share-setting and--share-with flags ofglcloud compute reservations create to GA.
Promotedcompute routers nats rules command group to beta.
Promoted--rules flag ofcompute routers nats create andcompute routers nats update to beta.
Promoted--tcp-time-wait-timeout flag ofcompute routers nats create andcompute routers nats update to beta.
Promoted--clear-tcp-time-wait-timeout flag ofcompute routers nats update to beta.

Compute OS Config

Allow instance name ingcloud compute os-config vulnerability-reports describe andgcloud compute os-config inventories describe.
Promotedgcloud compute os-config os-policy-assignments to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.63.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Config Controller

Promotedgcloud anthos config controller to GA.

Container Registry

Added support for pulling results with image names that use tags instead ofsha256.
Added warning in a case where a user pulls results with tags instead of sha256.

Kpt

Updated kpt from v1.0.0-beta.5 to v1.0.0-beta.6.
- Fixed yaml schema and added json schema for Kptfile.
- Added support for .krmignore files in subpackages inkpt fn commands.
- Added support for updating subpackages in kpt pkg update.
- Added support to show pipeline execution duration in kpt fn render.
- Fixed issue when parsing bare sequence nodes in yaml.
- kpt fn render executes pipeline even when there are no input resources.
- kpt pkg get no longer copies the entire repo if path is specified.

Pubsub Emulator

Added support for topic retention.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

360.0.0 (2021-10-05)

Artifact Registry

Updatedgcloud beta artifacts print-settings mvn|gradle to add release and snapshot details for maven and gradle surfaces.
Promotedgcloud artifacts create repository to GA.
Updatedgcloud artifacts print-settings mvn|gradle with release and snapshot policies for maven and gradle to GA.

Bare Metal Solution

Fixed issue wheregcloud bms instances list would not show permissions errors properly.

Cloud Composer

Added--enable-privately-used-public-ips flag togcloud beta composer environments command to enable using privately used public IP address ranges feature in the GKE cluster.
Added--enable-ip-masq-agent flag togcloud beta composer environments command to enable IP address masquerading in the GKE cluster.
Added--scheduler-count flag togcloud composer environments create andgcloud composer environments update commands.

Cloud Data Fusion

Added--enable_rbac optional argument to
gcloud beta data-fusion instances update to toggle granular
role-based access control in enterprise instances with version >= 6.5.0.

Cloud SQL

Added support for users to select minor versions for MySQL 8.0 instances, when they are available in the API.

Cloud Storage

Updated gsutil component to 5.3.

Compute Engine

Added debian-11 and rocky-8 options to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in beta
Added--service-directory-registration flag tocompute forwarding-rules create NAME --target-service-attachment to support Service Directory integration with PSC ILB.
Promoted--redundant-interface,--subnetwork and--subnetwork-region flags ofgcloud compute routers add-interface to GA.
Promoted--instance and--instance-zone flags ofgcloud compute routers add-bgp-peer to GA.
Promoted--interface-names ofgcloud compute routers remove-interface to GA.
Promoted--peer-names ofgcloud compute routers remove-bgp-peer to GA.
Promoted--provisioning-model and--instance-termination-action flags forgcloud beta compute <instances|instances bulk|instance-templates> create commands.

Dataproc Metastore

Promoted--encryption-kms-key flag ofgcloud metastore services create to GA.

Kubernetes Engine

Added--database-encryption-key flag togcloud container clusters create-auto to allow enabling Database Encryption on Autopilot clusters at creation time.
Added--boot-disk-kms-key flag togcloud container clusters create-auto to allow enabling CMEK protected boot disk on Autopilot clusters at creation time.
Added--spot flag togcloud beta container clusters/node-pools create to allow creating spot VM for node pools.

Managed Active Directory

Addinggcloud active-directory peerings for Multi ProjectSupport v1 release. Currently supporting up to 10 domain peerings per domain.

Network Connectivity

Promotedgcloud network-connectivity hubs command group to GA.
Promotedgcloud network-connectivity spokes command group to GA. Addedgcloud network-connectivity spokes linked-vpn-tunnels,gcloud network-connectivity spokes linked-interconnect-attachments, andgcloud network-connectivity spokes linked-router-appliances command groups. Movedcreate andupdate commands to these command groups.

Network Security

Promotedgcloud network-security client-tls-policies to GA.
Promotedgcloud network-security authorization-policies to GA.

Network Services

Promotedgcloud network-services endpoint-policies to GA.

Secret Manager

Added support ingcloud secrets command group for specifying projects byproject number, rather than project id.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

359.0.0 (2021-09-28)

Breaking Changes

(AI) Removed 'python-image-uri' field from--work-pool-spec flag ofgcloud beta ai custom-jobs create. Use 'executor-image-uri' field instead.

Cloud SDK

Use pyca/cryptography to decode p12 service account keys if available.Otherwise, fall back to using PyOpenSSL.

AI

Fixed issue wheregcloud ai custom-jobs list andgcloud ai hp-tuning-jobs list didn't show results with--uri flag.
Promotedgcloud ai endpoints raw-predict to beta and GA.

Artifact Registry

Fixed typos forgcloud beta artifacts repositories create help text.

Bare Metal Solution

Promotedgcloud bms instances list andgcloud bms instances describe to GA.

Cloud Bigtable

Added--restrict-to flags togcloud bigtable app-profiles create andgcloud bigtable app-profiles update, which restricts multi-cluster routingto a specified list of cluster ids.

Cloud Data Fusion

Added--enable_rbac optional argument to
gcloud beta data-fusion instances create to enable granular
role-based access control in enterprise instances with version >= 6.5.0.

Cloud Dataflow

Corrected--snapshot-ttl lower/upper bound ofgcloud dataflow snapshots create command.

Cloud Pub/Sub

Added--event-time flag togcloud beta pubsub lite-topics publish to allow users to specify an event time when publishing a message.

Cloud Run

Promoted--key,--clear-key,--post-key-revocation-action-typeand--clear-post-key-revocation-action-type flags ofgcloud run deployandgcloud run services update to GA for--platform=managed.
Deployments that change only the service metadata will no longer create newrevisions. For example,gcloud run services my-service update --ingress=all.

Cloud Scheduler

Promotedgcloud scheduler locations command group to GA. Commands in thisgroup provide information for locations where Cloud Scheduler is available.

Cloud Storage

Updated gsutil component to 5.2.

Compute Engine

Added--network-performance-configs flag togcloud compute instance-templates create to both alpha and beta.
Modified--load-balancing-scheme flag ofgcloud compute backend-services create andgcloud compute forwarding-rules create to accept choice 'EXTERNAL_MANAGED' in beta.
Modified--purpose flag ofgcloud compute networks subnets create to accept choiceREGIONAL_MANAGED_PROXY in beta.
Added new--share-setting=local tocompute commitments create,compute future-reservations create, andcompute reservations create.

Config Connector

Updated Google Cloud Config Connector to version 1.62.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Identity and Access Management

Added commandgcloud iam workforce-pools create-cred-config to enable Workforce Pools configuration creation.

Kpt

Updated kpt from v1.0.0-beta.4 to v1.0.0-beta.5.
- Added support for resolving top level pkg symlink.
- Added support for preserving the ordering of fields with null values.
- Improved the parsing logic for GitHub http package URL inkpt pkg get.

Kubernetes Engine

Hid--disable-autopilot flag fromgcloud container clusters update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

358.0.0 (2021-09-21)

Breaking Changes

(Compute Engine) Deprecatedredirect-to-recaptcha choice of--action flag undergcloud compute security-policies rules.

AI

Added--enable-web-access flag togcloud ai custom-jobs create andgcloud ai hp-tuning-jobs create to allow enabling interactive shell terminalaccess.

Apigee

Promotedgcloud apigee archives command group to beta.

Artifact Registry

Added--version-policy and--allow-snapshot-overwrites flags togcloud beta artifacts repositories create to add version policy and snapshot overwrites to maven repositories.

Cloud Composer

Addedgcloud composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.15+.
Added support of CLI commands for Airflow 2.0 togcloud composer environments run.

Cloud Dataproc

Fixed bug ingcloud dataproc clusters enable-personal-auth-session wherethe command would fail if the flag--access-boundary was provided.

Cloud Filestore

Addedgcloud beta filestore instances snapshots command group, which isused to create and manage Filestore snapshots.
Added--force flag togcloud beta filestore instances delete, whichforces the deletion of an instance and its child resources, such assnapshots.
Added--kms-key flag togcloud beta filestore instances create commandto specify the customer-managed KMS key name to use for encrypting thefilestore instance.

Cloud Run

Promoted--binary-authorization and--breakglass flags to GA. Thesecommands may now be used withgcloud run deploy andgcloud run update.

Cloud SQL

Add--allocated-ip-range-name flag ofgcloud sql instances patch in beta.

Cloud Storage

Updated gsutil component to 4.68.

Compute Engine

Added--clear-scale-down-control flag togcloud alpha|beta compute instance-groups managed update-autoscaling.
Promoted--share-setting and--share-with of 'gcloud compute commitments create` to beta.
Promoted the following flags ofgcloud compute routers add-bgp-peer andgcloud compute routers update-bgp-peer to GA:
- --bfd-min-receive-interval
- --bfd-min-transmit-interval
- --bfd-multiplier
- --bfd-session-initialization-mode
Promoted--enable-layer7-ddos-defense and--layer7-ddos-defense-rule-visibility of 'gcloud compute security-policies update` to GA.

Compute OS Config

Promotedgcloud compute os-config vulnerability-reports describe andgcloud compute os-config vulnerability-reports list to GA.
Promotedgcloud compute os-config inventories commandsdescribe andlist to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.61.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Config Controller

The create command will automatically update the kubeconfig to point to thenewly created config controller cluster.

Kubernetes Engine

Updates default kubectl from 1.18 to 1.20.
Additional kubectl versions:
- kubectl.1.17 (1.17.17)
- kubectl.1.18 (1.18.20)
- kubectl.1.19 (1.19.14)
- kubectl.1.20 (1.20.10)
- kubectl.1.21 (1.21.4)
- kubectl.1.22 (1.22.1)
darwin/386 version of kubectl is no longer supported.
Deprecated and hid--logging and--monitoring flags fromgcloud container clusters create-auto.

Recaptcha

Added--allowAllPackageNames and--allowAllBundleIds flags togcloud recaptcha keys <create|update> to create/modify keys without specifying package names.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

357.0.0 (2021-09-14)

AI

Added--kms-key flag togcloud beta ai model-monitoring-jobs create to support configuring Customer-managed encryption key spec.
Fixed issue wheregcloud beta ai custom-jobs local-run unexpectedly used python2 with Vertex AI pre-built training images.

AI Platform

Added--enable-web-access togcloud ai-platform jobs submit training toallow enabling interactive shell terminal access for a training job.

App Engine Flexible Environment

Added support for specifying the instance IP mode for each App Engine Flexible version during deployment. This can be done by adding 'instance_ip_mode: INTERNAL|EXTERNAL' in theNetwork field of theapp.yaml file.

Cloud Dataflow

Added runtime environment parametertemp-location support ingcloud dataflow flex-template run/build.When this parameter is not set, defaults to value ofstaging-location.
Updated--additional-experiments parser used by run commandgcloud dataflow flex-template run so the option can be specified multiple times and their values are concatenated.

Cloud Dataproc

Added--action-on-failed-primary-workers enum flag togcloud dataproc clusters create to allow users to delete the failed primary workers during cluster creation.

Cloud Key Management Service

Addedgcloud kms mac-sign andgcloud kms mac-verify which allow users toperform MAC signing and verification.
Added--import-only and--destroy-scheduled-duration togcloud kms keyscreate to support import-only keys and user-specified variable keydestruction.
Added--version togcloud kms keys versions import to add key reimportfunctionality.

Cloud Pub/Sub

Promotedgcloud pubsub lite-reservations to GA.

Cloud Run

Promotedgcloud run replace to GA. This command supports deploying from a yaml file.

Cloud SQL

Promoted--allocated-ip-range-name flag ofgcloud sql instances createto beta.

Cloud Services

Added support for additional services inservices identity create.

Cloud Workflows

Added--call-log-level flag togcloud workflows <execute|run> to enableautomatic call logging.

Compute Engine

Changed the behavior ofgcloud compute target-http-proxy import andgcloud compute target-https-proxy import to wait for the import operation to finish.
Updated--set-filter-protocols,--add-filter-protocols and--remove-filter-protocols to accept numeric protocols for allpacket-mirrorings update commands.
Added--service-project flag togcloud beta compute networks subnets list-usable.

Eventarc

Modifiedgcloud beta eventarc attributes types list to include Google Cloud Storage CloudEvent types and updated the descriptions for the existing event types.

Kpt

Added autocomplete image completion support inkpt fn eval.
Relaxed KRM check for kustomization files.
Addedjson output format forkpt live status command.
Added support for preserving field order/indendationkpt fn eval andkpt fn render.
Added support for referring SHA in image tags inkpt fn eval andkpt fn render.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

356.0.0 (2021-09-08)

Assured Workloads

Added CA_REGIONS_AND_SUPPORT as compliance regime options forgcloud assured workloads create command.
ResourceType CONSUMER_PROJECT is deprecated.
ResourceType CONSUMER_FOLDER and KEYRING are added.
display_name is added to ResourceSettings.
billing_account is now optional in Workload.
resource_settings is added to CreateWorkloadOperationMetadata.

Cloud API Gateway

Added--view flag togcloud api-gateway api-configs describe to allow the use of theexisting config view option available via the API.

Cloud Composer

Added--composer-network-ipv4-cidr togcloud beta composer create to be used with Cloud Composer 2.
Added the following flags togcloud beta composer create andgcloud beta composer update to be used with Cloud Composer 2:
- --environment-size
- --min-workers
- --max-workers
- --scheduler-cpu
- --scheduler-memory
- --scheduler-storage
- --web-server-cpu
- --web-server-memory
- --web-server-storage
- --worker-cpu
- --worker-memory
- --worker-storage

Cloud Run

Updatedgcloud run deploy to include Cloud Run for Anthos enabled clusterson cluster suggestions.
Promoted--no-cpu-throttling flag ofgcloud run to beta.

Compute Engine

Promoted--source-ip-ranges flag ofgcloud compute forwarding-rules create andgcloud compute forwarding-rules update to beta.

Config Connector

Updated Google Cloud Config Connector to version 1.60.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Runninggcloud container hub memberships get-credentials withconnectgateway.googleapis.com disabled now prompts the user to enablethe API, and throws an error if the user declines to enable the API.

Kubernetes Engine

Added--addons=GcpFilestoreCsiDriver togcloud container clusterscreate and--update-addons=GcpFilestoreCsiDriver togcloudcontainer clusters update to enable/disable the GCP FilestoreContainer Storage Interface (CSI) Driver.
Deprecated--enable-stackdriver-kubernetes,--enable-logging-monitoring-system-only,--monitoring-service,--logging-service,--master-logs,--no-master-logs, and--enable-master-metrics flags fromgcloud container clusters create/update.

Network Security

Promotedgcloud network-security client-tls-policies to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

355.0.0 (2021-08-31)

Anthos Identity Service

Promotedgcloud container hub identity-service to beta.

Artifact Registry

Addedgcloud beta artifacts settings for enabling/disabling/finalizingredirection.

Cloud Deploy

Promotedgcloud deploy to beta.

Cloud Pub/Sub

Promoted--message-retention-duration flag ofgcloud pubsub topics create to GA.
Promoted--message-retention-duration flag ofgcloud pubsub topics update to GA.
Promoted--clear-message-retention-duration flag ofgcloud pubsub topics update to GA.

Compute Engine

Promotedskip-instances-on-validation-error ingcloud computeinstance-groups managed delete-instances to GA.
Promoted--image-family-scope flag to GA forgcloud compute instances create andgcloud compute disks create.

Config Connector

Updated Google Cloud Config Connector to version 1.59.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Promoted the following commands to beta:
- gcloud container hub mesh describe.
- gcloud container hub mesh disable.
- gcloud container hub mesh enable.

Game Servers

Added--view=(basic|full) arg (default to basic) togame servers clusters get andgame servers clusters list commands to optionally turn off/on Agones and Kubernetes version reporting.

Kubernetes Engine

Added--security-group flag togcloud container clusters create-auto toallow enabling Google Groups for RBAC on Autopilot clusters at creationtime.
Promotedgpu-partition-size field within--accelerator flag to enablepartitioning of A100 GPUs to GA.

Network Security

Promotedgcloud network-security server-tls-policies to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

354.0.0 (2021-08-24)

Breaking Changes

(AI) Disable--analysis-instance-schema flag ingcloud beta ai model-monitoring-jobs update.

App Engine

Updated the Java SDK to version 1.9.91.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Fixed print-settings command for Python repositories.

Cloud Asset Inventory

Added--relationship-type flag togcloud asset get-history to enablegetting relationship history.

Cloud Bigtable

Updated cbt_linux_arm name to cbt_linux_aarch64-x.x.x.tar.

Cloud Build

Added--require-approval flag to the following commands:
- gcloud beta builds triggers create cloud-source-repositories
- gcloud beta builds triggers create github
Addedrequire-approval flag togcloud builds triggers create.
Promotedgcloud builds approve andgcloud builds reject commands to beta.
Added the flag--suppress-logs to the commandgcloud builds submit.

Cloud IAM

Promotedgcloud iam service-accounts keys disable|enable to beta and GA.

Cloud Run

Promoted--source flag ofgcloud run deploy to GA. This flag supports deploying from source code through integration with Cloud Build.

Cloud Storage

Updated gsutil component to 4.67.

Compute Engine

Added--auto-renew flag togcloud compute commitments create andgcloud compute commitments update for alpha.
Added the following flags togcloud beta compute instances update:
- --clear-node-affinities
- --node-affinity-file
- --node-group
- --node
Promotedgcloud compute instances send-diagnostic-interrupt to beta and GA.
Added--host-error-timeout-seconds to specify the timeout in seconds for host error detection to both alpha and beta for:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
- gcloud compute instances bulk create
- gcloud compute instances set-scheduling
- gcloud compute instances update-from-file

Config Connector

Updated Google Cloud Config Connector to version 1.58.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Essential Contacts

Promotedgcloud essential-contacts to GA.

Managed Active Directory

Promoted--enable-audit-logs flag ingcloud active-directory domains create andgcloud active-directory domains update to GA.
PromotedAUDIT_LOGS_ENABLED parameter togcloud active-directory domains list to GA.
Updatedgcloud active-directory domains list to include value forauditLogsEnabled in output.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

353.0.0 (2021-08-17)

Breaking Changes

(Compute Engine) Updategcloud compute instance-groups managed create to throw an error when creating a stateful regional managed instance group, if--instance-redistribution-type=NONE is not specified.

AI

Added more available regions togcloud ai hp-tuning-jobs.

BigQuery

Addedautoscale_preview as a new api_version for autoscaler.
Added support for creating an external dataset.
Minor bug fixes.

Cloud Asset Inventory

Added--relationship-type flag to the following commands:
- gcloud asset list
- gcloud asset feed create
- gcloud asset feed update
Promoted--relationship-type flag to GA:
- gcloud asset export
Added new content type RELATIONSHIP to:
- gcloud asset get-history

Cloud Build

Fixed bug breakinggcloud beta builds triggers commands.

Cloud DNS

Update output format forgcloud dns record-sets.

Cloud Functions

Promoted--min-instances and--clear-min-instances flags ofgcloud functions to beta.

Cloud Logging

Updatedgcloud logging buckets create,gcloud logging buckets list, andgcloud logging buckets update to support restricted fields.

Cloud Pub/Sub

Renamed--zone flag as--location. Deprecatedzone variants.
Addedgcloud pubsub lite-subscriptions seek which initiates a seek operation for a Pub/Sub Lite subscription.
Addedgcloud pubsub lite-operations command group which allows describing and listing Pub/Sub Lite long-running operations.

Cloud Services

Promotedgcloud services api-keys describe to GA.

Compute Engine

AddedtargetService to the output ofgcloud compute service-attachments commands.

Database Migration

Fixed autocomplete issues in database migration commands.
Added "REGION" column in the output ofgcloud database-migration connection-profiles list andgcloud database-migration migration-jobs list.
Added separate fields to display both the id and display name.
- Added "CONNECTION_PROFILE_ID" in the output ofgcloud database-migration connection-profiles list.
- Added "MIGRATION_JOB_ID" and renamed "NAME" to "DISPLAY_NAME" in the output ofgcloud database-migration migration-jobs list.
Some changes ingcloud connection profile list:
- Fixed the value presented in ENGINE field to always display the DB engine.
- Added a separate field for (cloud) PROVIDER to be distinguished from ENGINE.

Kubernetes Engine

Added--enable-gvnic flag ofgcloud container clusters create,gcloud container nodepools create andgcloud container nodepools update to alpha, beta, GA.
Remove--enable-gvnic flag ofgcloud container clusters update in alpha, beta.
Promoted--create-pod-ipv4-range and--pod-ipv4-range flags ofgcloud container node-pools create for configuring pod ranges for node pools to GA.
Added--logging and--monitoring flags togcloud container clusters create,gcloud container clusters update, andgcloud container clusters create-auto for users to configure the componentsthat should have logging and/or monitoring turned on.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

352.0.0 (2021-08-10)

Access Approval

Promotedgcloud access-appoval command group to GA.

Apigee

Add archive deployment status column toarchives list andarchives describe commands.

Cloud Build

Added--region flag togcloud beta builds triggers commands.

Cloud Composer

Removed Composer image versions with different major version of Airflow from list of suggested image versions ofgcloud beta composer environments list-upgrades command.

Cloud On Demand Scanning

Updatedlocal-extract to version 1.3.1 to fix various bugs.

Compute Engine

Added two new key typeshttp-header andxff-ip to--enforce-on-key in'gcloud compute security-policies rules'
Added--enforce-on-key-name to 'gcloud compute security-policies rules' inorder to be able to specify the HTTP header name whose value becomes the ratelimiting key forhttp-header` key type.
Modifiedgcloud compute ssh to also use IPv6 addresses if IPv4 addresses areunavailable.

Config Connector

Updated Google Cloud Config Connector to version 1.58.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added--encryption-kms-key flag togcloud beta metastore services createto specify the Customer-managed KMS key name to use for encrypting theDataproc Metastore service.

GKE Hub

Removed the hidden label for--has-private-issuer flag in alpha and beta.
Promotedgcloud container hub memberships register --enable-workload-identity --has-private-issuer to GA.

Kubernetes Engine

Promoted--autoscaling-profile flag ofgcloud container clusters create andgcloud container clusters update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

351.0.0 (2021-08-03)

AI

Promoted the GPU configuration fields in--worker-pool-spec flag ofgcloud ai custom-jobs create to GA.

Artifact Registry

Promotedgcloud artifacts apt to beta.
Promotedgcloud artifacts yum to beta.
Promotedgcloud artifacts print-settings apt andgcloud artifactsprint-settings yum to beta.
Changed com.google.cloud.artifactregistry.gradle-plugin from 2.1.0 to 2.1.1 ingcloud print-settings.

Assured Workloads

Added EU_REGIONS_AND_SUPPORT as compliance regime options forgcloud assured workloads create command.

Cloud Functions

Promoted--build-worker-pool and--clear-build-worker-pool flag ofgcloud functions deploy to GA.

Cloud Healthcare

Added--send-for-bulk-import flag to the following commands:
- gcloud beta healthcare dicom-stores create
- gcloud beta healthcare dicom-stores update

Cloud Storage

Updated gsutil component to 4.66.

Compute Engine

Modified--network-interface flag ofgcloud compute instances create andgcloud compute instance-templates create command to support IPv6 fields.
Promoteduser_license flag ofgcloud compute disks insert to beta.

Config Connector

Updated Google Cloud Config Connector to version 1.57.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Promotedgcloud container hub memberships get-credentials to GA.

Miscellaneous

Binary Size input can contain decimal digits, provided the amountis a whole multiple of a Byte.

Policy Analyzer

Addedgcloud policy-intelligence query-activity which queries activities. Supported activity types are service account last authentication and service account key last authentication.

Recaptcha

Promotedgcloud recaptcha keys to GA.

Secret Manager

Added--etag flag to the following commands:
- gcloud secrets delete
- gcloud secrets update
- gcloud secrets versions destroy
- gcloud secrets versions disable
- gcloud secrets versions enable

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

350.0.0 (2021-07-27)

Cloud SDK

Fixed issue where the gcloud command-line tool would fail to tab completeflags specified after positional arguments.

Cloud Build

Added--service-account flag togcloud beta builds triggers create command.

Cloud Filestore

Addedconnect-mode param to--network flag ofgcloud filestore instances create for alpha and beta.

Cloud Services

Promotedgcloud services api-keys list to GA.

Compute Engine

Modified--source-ranges and--destination-ranges forgcloud computefirewall-rules create andgcloud compute firewall-rules update to acceptIPv6 address ranges in addition to IPv4 address ranges.
Promoted rsa_encrypted_key ingcloud compute disks snapshot to GA.
Promoted rsa_encrypted_key ingcloud compute disks create andgcloud compute images create to GA.
Promotedtype flag ofgcloud compute security-policies create to beta.

Firebase Test Lab

Added--resign flag togcloud beta firebase test android run. This flag allows clients tospecify if Robo should re-sign the app-under-test APK.

Network Management

AddedgkeMasterCluster andcloudSqlInstance arguments for source anddestination ingcloud network-management connectivity-tests. This allowsthe user to run tests using Google Managed Services (GKE and Cloud SQL)endpoint types as source or destination.

Secret Manager

Updated--filter flag to be passed to the backend in
- gcloud beta secrets list
- gcloud secrets versions list

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

349.0.0 (2021-07-20)

Breaking Changes

(Kpt) kpt updated to v1.0.0-beta.1. This version has several breaking changes fromprevious versions. Documentation is available athttps://kpt.dev andmigration instructions can be found athttps://kpt.dev/installation/migration.Old versions are available athttps://github.com/GoogleContainerTools/kpt.

AI

Added--network flag togcloud beta ai endpoints create.

Certificate Authority Service

Changed certificate chain output format to remove extra newline between-----END CERTIFICATE----- and-----BEGIN CERTIFICATE-----. This affectscertificate outputs ofgcloud privateca certificates create,gcloud privateca certificates export andgcloud privateca pools get-ca-certs.

Cloud Asset Inventory

Promotegcloud asset list CLI to GA.

Cloud Build

Add--no-public-egress togcloud builds worker-pools create.
Add--public-egress and a hidden--no-public-egress flags togcloud builds worker-pools update.

Cloud Composer

Added support of--scheduler-count flag forgcloud beta composer environments {create,update} commands.

Cloud DNS

Added DNS Routing Policies support forgcloud beta dns record-sets.

Cloud Dataflow

Added Google Artifact Registry support in build commandgcloud beta dataflow flex-template build.

Cloud Datastream

Allow using project numbers in command arguments.
Update help text files forgcloud beta datastream streams create/update.

Cloud Functions

Remove incorrect client-side validation for--entrypoint flag ofgcloud functions deploy.

Cloud Healthcare

Added gcloud command-line tool support for healthcare NL
- gcloud beta healthcare nlp analyze-entities

Cloud Key Management Service

Addedec-sign-secp256k1-sha256 to the list of supported algorithms.

Cloud Spanner

Added--processing-units flag tospanner create instance andspanner update instance to add ability to create granular instances in beta.

Cloud TPU

Added Cloud AI Notebooks support togcloud compute tpus execution-groups create by adding flag--use-with-notebook.

Compute Engine

Added--redirect-type and--redirect-target togcloud compute security-policies rules create|update in alpha and beta.
Add share_type to output ofgcloud compute reservations list.
Added custom response headers to regionalgcloud compute backend-services create requests.
Promoteduser_license flag ofgcloud compute images insert to beta.
Added an example ofgcloud compute instances list to display IPv6 related fields.
Promoted--target-service-attachment flag ofgcloud compute forwarding-rules create to GA.
Promoted--purpose=private-service-connect flag ofgcloud compute networks subnets create to GA.
Promotedgcloud compute service-attachments to GA.
Added--mesh togcloud compute instance-templates create in alpha and beta.

Config Connector

Updated Google Cloud Config Connector to version 1.56.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Promotedbackups command group to GA.
Promoted Servicerestore command to GA.

GKE Hub

Promoted the following commands to GA:
- gcloud container hub features list
- gcloud container hub ingress describe
- gcloud container hub ingress disable
- gcloud container hub ingress enable
- gcloud container hub ingress update
- gcloud container hub multi-cluster-services describe
- gcloud container hub multi-cluster-services disable
- gcloud container hub multi-cluster-services enable

Kpt

Updated kpt to v1.0.0-beta.1. Look at the documentation athttps://kpt.dev formore details.

Pubsub Emulator

Added support for subscriptions with both dead letter topics and ordereddelivery enabled in the Pub/Sub emulator.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

348.0.0 (2021-07-13)

Cloud SDK

Added--locked flag togcloud compute images create.

AI

Added more available regions togcloud ai custom-job.

App Engine

Updated the Java SDK to version 1.9.90.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

BigQuery

Added--autoscale_budget_slot_hours flag to mk and update to supportbudget based reservation autoscaling.
Added flags:--create_session and--session_id to query to support sessioncreation and using existing sessions.
Added--connection_property flag to query to set connection properties.
Minor bug fixes.

Cloud Bigtable

Added support to cbt to drop all rows from a table.
Added --auth-token flag to use IAM Auth Token for requests.

Cloud Build

Promotedgcloud builds worker-pools command group to GA.

Cloud Composer

Addedgcloud beta composer environments list-packages command. It lists all PyPI modules installed in an Airflow worker.

Cloud DNS

Added--gkeclusters togcloud beta dns response-policies create to support binding GKE clusters to the response policy.
Added--gkeclusters togcloud beta dns response-policies update to support updating response policy with GKE clusters.

Cloud Datastream

Modified output formatting forgcloud beta datastream streams list to include stream creation and update times.
Addedgcloud beta routes create whichcreates a datastream private connection route.
Addedgcloud beta routes delete whichdeletes a datastream private connection route.
Addedgcloud beta streams update whichupdates an existing datastream stream.

Cloud Key Management Service

Added client-side request and response integrity verification togcloud kmsencrypt,gcloud kms decrypt,gcloud kms asymmetric-sign, andgcloud kms asymmetric-decrypt.For more information about Cloud KMS's integrity verification API, visithttps://cloud.google.com/kms/docs/data-integrity-guidelines.
Added--skip-integrity-verification flag togcloud kms encrypt,gcloudkms decrypt,gcloud kms asymmetric-sign, andgcloud kms asymmetric-decrypt.

Cloud On Demand Scanning

Added--additional-package-types=MAVEN flag to scan Maven packages for vulnerabilities.
Updatedlocal-extract to version 1.2.0 in order to support the scanning ofCentOS and RHEL images.

Cloud Scheduler

Addedgcloud scheduler locations command group [ALPHA, BETA].Commands in this group provide information for locations where CloudScheduler is available.

Cloud Storage

Updated gsutil component to 4.65.

Compute Engine

Removed IPv6 support fromgcloud compute instances create-with-container andgcloud compute instance-templates create-with-container until it's ready.
Added--description flag oncompute instance-groups managed update to add possibility to update descriptions.
Changed the behavior ofgcloud compute url-maps import to wait for the import operation to finish.
Added KMS args (--boot-disk-kms-project,--boot-disk-kms-location,--boot-disk-kms-keyring,--boot-disk-kms-key, andkms-project,kms-location,kms-keyring,kms-key properties of--create-disk) togcloud compute instances bulk create to allow specifyinga customer-managed encryption key.
Promoted--request-headers-to-add to beta forgcloud compute security-policies rules create|update.

Config Connector

Updated Google Cloud Config Connector to version 1.54.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Added the following alpha and beta commands to work with Dataproc Metastore service backups:
- metastore services backups get-iam-policy
- metastore services backups set-iam-policy
- metastore services backups add-iam-policy-binding
- metastore services backups remove-iam-policy-binding

GKE Hub

Fixed issue where--config-membership ofgcloud container hub ingress enable andgcloud container hub ingress update did not properly handle full Membershipresource paths.

Kubernetes Engine

Added--enable-identity-service flag to alpha, beta.
Mark--enable-gke-oidc flag as deprecated.
Added--security-group togcloud container clusters create andgcloud container clusters update. This flag is used to enable the Authenticator Groups Config for group authentication.

Miscellaneous

Fixed issue where special characters were improperly escaped during commandcompletion when using zsh or fish.
- The previous behavior can be restored by setting the environment variable_ARGCOMPLETE_SHELL to 'bash'.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

347.0.0 (2021-06-29)

Breaking Changes

(Assured Workloads) Removed 'consumer-project-id' and 'consumer-project-name' as possible valuesfor resource-settings ingcloud assured workloads delete command in alphaand beta, as they are now deprecated.
(Cloud SQL) Modifiedgcloud beta sql users list to include 'IAM_EMAIL' column inthe output. It will display full email address for a CloudSQL MySQLIAM database user account.
(Kpt) Binary for Windows will no longer be provided. If you want to use kpt withwindows, the source code is available at github.com/GoogleContainerTools/kpt.

AI

Promotedgcloud ai hp-tuning-jobs to GA.
Fixed issue wheregcloud beta ai custom-jobs create failed to install dependencies in requirements.txt when packaging from local files.
Added--feature-attribution-thresholds flag togcloud beta ai model-monitoring-jobs <create|update> to support configuring feature attribution score thresholds.

App Engine

Added support for 'egress_setting' field in 'vpc_access_connector' section ofapp.yaml.

Certificate Authority Service

Addedgcloud privateca pools get-ca-certs to get theroot CA certs for all active CAs in the CA pool.

Cloud Asset Inventory

Added--read-mask flag togcloud asset search-all-resources to specifywhich fields to be returned.
Updatedgcloud asset search-all-resources to return the full metadata(versionedResources) of resources when requested with flag--read-mask.

Cloud Datastream

Addedgcloud beta connection-profiles update whichupdates an existing datastream connection profile.
Addedgcloud beta streams create whichcreates a datastream stream.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.13.0
- Add WebSocket endpoint for monitoring rules requests.

Cloud Pub/Sub

Promotedgcloud pubsub lite-topics publish to GA.
Promotedgcloud pubsub lite-subscriptions subscribe to GA.
Promotedgcloud pubsub lite-subscriptions ack-up-to to GA.

Cloud Run

gcloud beta run deploy now defaults to deploy from source if--image isnot provided.

Cloud SQL

Promoted--active-directory-domain flag ofgcloud sql instances createandgcloud sql instances patch to GA.

Cloud Storage

Updated gsutil component to 4.64.

Compute Engine

Changed the behavior ofgcloud compute backend-services import to wait forthe import operation to finish.
Promoteshare-setting andshare-with forglcloud compute reservations create to beta.
Fixedgcloud compute forwarding-rules import to remove top-level propertiesof an existing forwarding rule when they are not specified in the YAML file.
Changed the list format ofgcloud compute networks subnets list to include IPv6 related fields.
Changed--custom-cpu type from int to string to allow E2 shared-coreinstances to be specified as a custom value.

GKE Hub

Promoted the following commands to beta:
- gcloud container hub config-management apply
- gcloud container hub config-management disable
- gcloud container hub config-management enable
- gcloud container hub config-management status
- gcloud container hub config-management unmanage
- gcloud container hub config-management upgrade
- gcloud container hub config-management version
- gcloud container hub features list
- gcloud container hub ingress describe
- gcloud container hub ingress disable
- gcloud container hub ingress enable
- gcloud container hub ingress update
- gcloud container hub multi-cluster-services describe
- gcloud container hub multi-cluster-services disable
- gcloud container hub multi-cluster-services enable

Identity Groups

Promoted--posix-group flag ofgcloud identity groups create to beta.
Promoted--add-posix-group,--remove-posix-groups, and--clear-posix-groups flags ofgcloud identity groups update to beta.

Kpt

Removed Windows binary.

Kubernetes Engine

Promoted--enable-l4-ilb-subsetting flag ofgcloud container clusters create andgcloud container clusters update to GA.
Promoted--enable-service-externalips flag to beta.

Managed Active Directory

Promotedgcloud active-directory domains update-ldaps-settings to beta and GA.
Promotedgcloud active-directory domains describe-ldaps-settings to beta and GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

346.0.0 (2021-06-22)

Breaking Changes

(Cloud SDK) Removed the deprecated flag--add-quota-project ingcloud authapplication-default login.--add-quota-project is the default.
(Certificate Authority Service) Renamed--location flag ongcloud privateca certificates create as--template-location, and updated it to default to the same location asthe issuing CA Pool.
(Certificate Authority Service) Added an explicit check togcloud privateca certificates create to verifythat any certificate templates are in the same location as the issuing CAPool.

AI

Addedgcloud beta ai custom-jobs local-run which creates a custom training container image from your code and runs it locally.
Supported training with local files ingcloud beta custom-job create command.

Access Approval

Promotedgcloud access-appoval command group to beta.

Cloud Asset Inventory

Updatedgcloud asset search-all-iam-policies with new searchable fields(memberTypes,roles,project,folders, andorganizations), newrequest fields (assetTypes andorderBy), and new response fields(assetType,folders, andorganization).

Cloud Build

Updatedgcloud builds triggers create ... withrequire-approval flag.

Cloud Composer

Addedgcloud beta composer environments check-upgrade command. It checks that an environment upgrade does not fail because of PyPI module conflicts.

Cloud DNS

Added--gkeclusters togcloud beta dns managed-zones create to support binding GKE clusters to the zone.

Cloud Datastream

Addedgcloud beta operations cancel whichcancels a datastream operation.
Addedgcloud beta private-connections create whichcreates a datastream private connection.

Cloud Pub/Sub

Promotedgcloud pubsub schemas to GA.
Promoted--schema and--encoding flags ofgcloud pubsub topics create to GA.

Cloud SQL

Added SQL Server 2019 options to--database-version flag ofgcloud sql instances create andgcloud sql flags list.

Compute Engine

Added debian-10 option to--os flag for:
- gcloud compute images import in GA,
- gcloud compute instances import in GA
- gcloud compute machine-images import in beta
- gcloud compute routers update
Promoted support forstack-type andipv6-network-tier forgcloud compute instances network-interfaces update to GA.
Added staged progress tracker togcloud beta compute networks update --switch-to-custom-subnet-mode when updating a legacy network.

Config Connector

Updated Google Cloud Config Connector to version 1.53.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kpt

Updated kpt from v0.39.2 to v0.39.3.

Miscellaneous

Updated lazy module loader to correctly set module.file to the file name,rather than the file handle, to properly support debugging with Pdb++(https://issuetracker.google.com/issues/190741410).

VPC Access

Promoted following flags ingcloud compute networks vpc-access connectors create to GA:
- --machine-type

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

345.0.0 (2021-06-15)

AI

Updated--worker-pool-spec flag ofgcloud beta ai custom-jobs create to support configuring GPUs.

Certificate Authority Service

Addedgcloud privateca which enables creating and managing privateCA pools, certificate authorities, certificates and certificate templatesthrough the v1 API.

Cloud Composer

Fixed exception on executinggcloud composer environments run env-name delete_dag command without Airflow command arguments.

Cloud Dataflow

Updated build command to fuse multiple dependencies COPY docker commands into a single COPY command.

Cloud Datastream

Addedgcloud beta connection-profiles discover whichperforms discovery on a datastream connection profile.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.12.0
- Support partially clearing data via API.

Cloud Run

Modifiedgcloud beta run deploy --source to use Artifact Registry for buildartifacts. Users will be prompted prior to automatic creation of an ArtifactRegistry repository named "cloud-run-source-deploy".
Promoted--use-http2 flag to GA for Cloud Run (fully managed).

Cloud SQL

Added support for- as a wildcard in place of an instance name forgcloud sql backups list.

Cloud Storage

Updated gsutil component to 4.63.

Compute Engine

Promoted--byol flag of:
- gcloud compute images import to GA
- gcloud compute instances import to GA
Promoted following flags ingcloud compute instances create andgcloud compute instances update-access-config to GA:
- --ipv6-public-ptr-domain
- --no-ipv6-public-ptr
Added--all-instances flag oncompute managed update-instances to reflect the instances selection options available in the REST API.
Add--source-disk-project flag to image creation. It is used to specify source disk project when creating image from disk.
Promoted support forstack-type andipv6-access-type forgcloud compute networks subnets create to GA.
Promoted--enable flag to GA for the following commands:
- gcloud compute routers add-bgp-peer
- gcloud compute routers update-bgp-peer
Promoted--keepalive-interval flag to GA for the following commands:
- gcloud compute routers create
- gcloud compute routers update
Promoted support forstack-type andipv6-network-tier forgcloud compute instances <create|create-with-container> to GA.
Promoted support forstack-type andipv6-network-tier forgcloud compute instance-templates <create|create-with-container> to GA.
Promoted support forstack-type andipv6-access-type forgcloud compute networks subnets update to GA.

Kubernetes Engine

Added--enable-service-externalips flag togcloud alpha and beta to allowor deny services to set the ExternalIPs field.
Added--autoprovisioning-image-type flag togcloud container clusters createandgcloud container clusters update to specify the image typefor node autoprovisioning.

Network Services

Promotedgcloud network-services endpoint-policies to beta.

VPC Access

Promoted following flags ingcloud compute networks vpc-access connectors create to GA:
- --min-instances
- --max-instances
- --machine-type

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

344.0.0 (2021-06-08)

Breaking Changes

(AI) Renamed--drift-thresholds flag ingcloud beta ai model-monitoring-jobs create andgcloud beta ai model-monitoring-jobs update to--feature-thresholds.

App Engine

Updated the Python SDK to version 1.9.93.

Cloud Asset Inventory

Added new content typeorg-policy,access-policy,os-inventory togcloud beta asset list.

Cloud Pub/Sub

Addedgcloud beta pubsub lite-subscriptions subscribe which allows the user to receive messages on a Pub/Sub Lite subscription.

Compute Engine

Added--json-parsing and--log-level flags togcloud compute security-policies update.
Promoted--json-parsing and--log-level flags to GA forgcloud compute security-policies update.

Config Connector

Updated Google Cloud Config Connector to version 1.51.2.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

GKE Hub

Promotedgcloud container hub memberships get-credentials to GA.

Managed Active Directory

Adding support forgcloud active-directory peerings for Multi ProjectSupport release.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

343.0.0 (2021-06-02)

Breaking Changes

(Certificate Authority Service) Updatedgcloud beta privateca to only allow managing resources in the 6supported locations. For more information, seehttps://cloud.google.com/certificate-authority-service/docs/locations.
(Cloud Run) If platform is not specified via flags or config,gcloud run commands thatrequire a platform will now default tomanaged instead of prompting toselect a platform.

AI

Promotedgcloud ai custom-jobs to GA.

Artifact Registry

Added Python repo creation withgcloud artifacts repositories create.
Added print-settings command for Python repositories.

BigQuery

Disable non-fedarated AWS connection type.
New module credential_loader encapsulate credential and auth related functions for BQCLI. The main entrypoint for these functions is credential_loader.GetCredentialsFromFlags (moved from _GetCredentialsFromFlags). Note the removed underscore in addition to the module path change.
Minor bug fixes and dependency updates.

Cloud Datastream

Addedgcloud beta connection-profiles which contains create, delete,describe and list for Datastream connection profile objects.
Addedgcloud beta locations fetch-static-ips which returns alist of static IPs used by Datastream for a specific location.
Fixed issue wheregcloud beta connection-profiles listreturned partial information in the list formatting.

Cloud Functions

Update logging message forgcloud functions deploy to print Cloud Build log URL.

Cloud Pub/Sub

Modified the output ofgcloud beta pubsub schemas validate-schema on the successful validation of a schema to text indicating the success rather than the empty response returned by the service.
Modified the output ofgcloud beta pubsub schemas validate-message on the successful validation of a message to text indicating the success rather than the empty response returned by the service.
Addedgcloud beta pubsub lite-subscriptions ack-up-to which allows the user to acknowledge messages on a specified Pub/Sub Lite subscription.

Compute Engine

Promoted--scopes,--no-scopes,,--service-account and--no-service-account flags to GA forgcloud compute instances import.
Updatedgcloud beta compute service-attachment to fix the default values of--enable-proxy-protocol and--connection-preference.

Config Connector

Updated Google Cloud Config Connector to version 1.51.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Added--threads-per-core flag togcloud container clusters create andgcloud container node-pools create commands.
Fixed issue for 0 node clusters relating to misleading output of node versioning ingcloud container clusters list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

342.0.0 (2021-05-25)

App Engine

Added support for specifying a service account for each App Engine version during deployment. This can be done by either runninggcloud app deploy --service-account=<SERVICE_ACCOUNT> or by specifying 'service_account:' inapp.yaml file. If both are specified, the CLI parameter will override the app.yaml spec.
Updated the Java SDK to version 1.9.89.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

App Engine Flexible Environment

Added support for specifying a service account for each App Engine Flexible version during deployment. This can be done by either runninggcloud app deploy --service-account=<SERVICE_ACCOUNT> or by specifying 'service_account:' inapp.yaml file. If both are specified, the CLI parameter will override the app.yaml spec.

Certificate Authority Service

Added support for key generation incertificates create using newer versions(3.4 and above) of the Python cryptography package.

Cloud Build

Updategcloud beta builds triggers run for repoless triggers.

Cloud Datastream

Addedgcloud beta datastream locations command group - containsdescribe and list for Datastream locations objects.
Addedgcloud beta datastream routes command group - containsdescribe and list for Datastream routes objects.
Deprecated--region flag ofgcloud beta datastream.Use--location instead.

Cloud Pub/Sub

Added--definition-file togcloud beta pubsub schemas validate-message,gcloud beta pubsub schemas validate-schema, andgcloud beta pubsub schemas create to specify a schema stored in a file.

Compute Engine

Updatedgcloud compute instance-groups managedabandon-instances,delete-instances,recreate-instances, andupdate-instances to return unresolved instance names for regional groups with status MEMBER_NOT_FOUND.
Updatedgcloud beta compute service-attachment update to allow users to clear the consumer-accept-list and consumer-reject-list.
Added--threads-per-core flag to specify number of visible threads per physical core to both beta and GA for:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
- gcloud compute instances bulk create

Config Connector

Updated Google Cloud Config Connector to version 1.50.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

341.0.0 (2021-05-18)

AI Platform

Added beta commands for the AI Platform TensorBoard suite.
Addedgcloud beta ai tensorboards commands to manage a TensorBoard on the unified AI Platform.
Addedgcloud beta ai tensorboard-experiments commands to manage a TensorBoard Experiment on the unified AI Platform.
Addedgcloud beta ai tensorboard-runs commands to manage a TensorBoard Run on the unified AI Platform.
Addedgcloud beta ai tensorboard-time-series commands to manage a TensorBoard Time Series on the unified AI Platform.

App Engine

Added a deprecation warning togcloud app deploy dos.yaml.

App Engine Flexible Environment

Added a deprecation warning togcloud app deploy dos.yaml.

Assured Workloads

Added option to specify custom project names in--resource-settings by usingconsumer-project-name orencryption-keys-project-name key ingcloud assured workloads create command.

BigQuery

Support displaying TVF return table signature.
Adds enable_queuing_and_priorities reservation flag (only for whitelisted reservations).
Adds support for reservation assignment priority (only for whitelisted reservations).

Cloud Asset Inventory

Addedgcloud asset analyze-move commands to analyze a GCP Project Migration.

Cloud Pub/Sub

Addedgcloud beta pubsub lite-topics publish which allows the user to publish a message to their specified Pub/Sub Lite topic.

Cloud Storage

Updated gsutil component to 4.62.

Compute Engine

Promoteddisk-resource-policykey of flag--create-diskfor allcompute instances` create commands.
Updated help text for--enable-endpoint-independent-mapping oncompute routers nats create andcompute routers nats update to reflect the new default.

Kubernetes Engine

Added--threads-per-core flag togcloud container clusters create andgcloud container node-pools create commands.
Promoted--cluster-dns-* flags ofgcloud container clusters createandgcloud container clusters update to beta.
Updates default kubectl from 1.17 to 1.18.
Additional kubectl versions:
- kubectl.1.17 (1.17.17)
- kubectl.1.18 (1.18.19)
- kubectl.1.19 (1.19.11)
- kubectl.1.20 (1.20.7)
- kubectl.1.21 (1.21.1)

Pubsub Emulator

Fixed issue where subscription retention was not being respected uponsubscription creation.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

340.0.0 (2021-05-11)

Cloud Asset Inventory

Updatedgcloud asset search-all-resources to support date-time string inqueries on timestamp fields (createTime and updateTime).

Cloud Bigtable

Promoted the IAM Conditions flags--condition and--condition-from to GA.

Cloud Billing

Added optional--calendar-period,--start-date, and--end-date flags togcloud billing budgets [create | update] to support a wider array of optionsfor the budget's timeframe, which was previously always one month.

Cloud Memorystore

Promotedgcloud beta redis reschedule-maintenance to beta.
Added--maintenance-window-day flag and--maintenance-window-hour flag togcloud beta redis instances create to allow specifying a maintenance policywhen creating a new instance.
Added--maintenance-window-day flag,--maintenance-window-hour flag and--maintenance-window-any flag togcloud beta redis instances update toallow updating a maintenance policy when updating an instance.

Cloud Run

Modifiedgcloud beta run deploy --source to suggest a default service namebased on the source path when one isn't provided.

Compute Engine

Promotedgcloud compute service-attachments to beta.
Added--target-service-attachment flag togcloud beta compute forwarding-rules create.
Added--purpose=private-service-connect togcloud beta compute networks subnets create.

Config Connector

Updated Google Cloud Config Connector to version 1.49.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

AddedMYSQL_8_0,POSTGRES_10,POSTGRES_12, andPOSTGRES_13 database version options for--database-version flag todatabase-migration connection-profiles create cloudsql.

Kubernetes Engine

Promoted--enable-dataplane-v2 to GA.

Notebooks

Addedgcloud notebooks instances rollback to rollback a notebook's boot disk.
Addedgcloud notebooks instances get-health to verify instance health.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

339.0.0 (2021-05-04)

Breaking Changes

(Certificate Authority Service) Updated default value for--max-chain-length flag ofgcloud beta privateca roots create. Now, no max chain length will be addedto newly created root CAs unless they are explicitly specified through--max-chain-length, or (indirectly) through a--reusable-config resourceargument.

AI

Addedexecutor-image-uri field to--worker-pool-spec flag ofgcloud beta ai custom-jobs create, as an alias ofpython-image-uri field.python-image-uri will be deprecated soon.
Accepted empty value for--worker-pool-spec flag, which means to create an empty worker pool.

Assured Workloads

Added option to specify custom keyring name in--resource-settings by usingkeyring-id key ingcloud assured workloads create command.

Cloud Composer

Added links to the documentation pages when the request fails on missingrequired permissions.

Cloud On Demand Scanning

Upgradelocal-extract to version 1.0.0. This version replacesmemory-intensive extraction with disk-based extraction.

Cloud SQL

The output ofgcloud sql backups list --instance="my-instance-1" will nowinclude the instance name.

Compute Engine

Added--request-coalescing togcloud compute backend-services create,gcloud compute backend-services update,gcloud compute backend-buckets create andgcloud compute backend-buckets update.
AddedcdnPolicy.requestCoalescing field support togcloud compute backend-services import.
Added--minimal-action and--most-disruptive-allowed-action flags togcloud beta compute instance-groups managed rolling-action start-update.

Config Connector

Updated Google Cloud Config Connector to version 1.48.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kpt

Updated kpt from v0.39.0 to v0.39.2.
Updated import of cli-utils from v0.24.0 to v0.25.0.
Updated import of kyaml from v0.10.15 to v0.10.17.
Updated import of cmd/config from v0.9.7 to v0.9.10.

Kubernetes Engine

Added--disable-autopilot flag ofgcloud container clusters update to convert cluster from Autopilot mode to Standard mode.

Network Security

Modifiedgcloud network-security client-tls-policies to accept emptyserverValidationCa which signals to the client to do un-authenticated TLS.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

338.0.0 (2021-04-27)

Breaking Changes

(Cloud Run) Deprecatedall choice of--vpc-egress flag ofgcloud run deploy andgcloud run services update. A newall-traffic choice provides the samefunctionality with a more specific name.all will continue to be supported,but prefer to useall-traffic.
(Cloud Run) Modifiedgcloud beta run deploy to accept either--image or--source,but not both.

Cloud Dataproc

Added--confidential-compute boolean flag togcloud dataproc clusters create to allow users to configure Compute Engine Confidential VMs on Dataproc clusters.
Added--confidential-compute boolean flags togcloud dataprocworkflow-templates set-managed-cluster to allow users to configure Compute Engine Confidential VMs on Dataproc managed clusters.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.15
- Fixes issue with parsing empty headers which caused some valid requests tobe rejected.

Cloud Key Management Service

Promoteget-certificate-chain command to GA.

Cloud Memorystore

Addedtimeout key to--redis-config flag ofredis instances create.
Addedtimeout key to--redis-config flag ofredis instances update.

Cloud Pub/Sub

Promoted--starting-offset flag ofgcloud pubsub lite-subscriptions create to GA.

Cloud Run

Addedall-traffic choice to--vpc-egress flag ofgcloud run deployandgcloud run services update.all-traffic provides the samefunctionality as the existingall choice with a more specific name.all isnow deprecated but will continue to be supported. Prefer to useall-traffic.
Promoted--binary-authorization and--breakglass flags ofgcloud rundeploy andgcloud run services update to beta.

Cloud Services

Promotedgcloud services vpc-peerings delete to GA.

Cloud Tasks

Updatedgcloud tasks queues update [QUEUE_NAME] --clear-routing-override to removeappEngineRoutingOverride values instead of setting them to empty strings.

Compute Engine

Promoted--iap-tunnel-disable-connection-check flag ofgcloud compute start-iap-tunnel to GA.
Promoted--cpu-utilization-predictive-autoscaling flag ofgcloud compute instance-groups managed set-autoscaling andgcloud compute instance-groups managed update-autoscaling to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.46.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Network Security

Promotedgcloud network-security authorization-policies to beta.
Promotedgcloud network-security server-tls-policies to beta.
Promotedgcloud network-security client-tls-policies to beta.

Secret Manager

Added--etag flag to the following commands:
- gcloud beta secrets update
- gcloud beta secrets delete
- gcloud beta secrets versions enable
- gcloud beta secrets versions disable
- gcloud beta secrets versions destroy

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

337.0.0 (2021-04-20)

Assured Workloads

Added HIPAA and HITRUST as compliance regime options forgcloud assured workloads create command in GA.

BigQuery

Addedbq truncate command. This command will only be available to selected customers in private preview.
Added--job tobq delete.

Cloud Access Context Manager

Changed behavior ofperimeters dry-run describe:
- Not displaying unset fields.
- +/- signs now are displayed at the very beginning of the line, instead ofbeing displayed right in front of the resource text.
- Extra space added in front of top-level fields like names/title/typeto align text.

Cloud Dataflow

Promotedgcloud dataflow snapshots to GA.

Cloud Domains

Fixed issue where multiple address line fields were not supported in commands with interactive prompts:
- gcloud beta domains registrations register
- gcloud beta domains registrations configure contacts

Cloud Filestore

Promotedgcloud filestore backups to GA.
Addedgcloud filestore instances restore to enable restoring a CloudFilestore instance from a backup.
Added support for creating Filestore instances from backup usinggcloudfilestore instances create.
Promoted--source-backup and--source-backup-region flags to GA tospecify backup details; these flags should be used in conjunction with--file-share flag.

Cloud Memorystore

Added support for Redis 6.x.

Cloud Resource Settings

Promotedgcloud resource-settings to GA.

Cloud Services

Promotedgcloud services vpc-peerings delete to beta.

Compute Engine

Promoted--redundant-interface,--subnetwork and--subnetwork-region flags ofgcloud compute routers add-interface to beta.
Promoted--instance and--instance-zone flags ofgcloud compute routers add-bgp-peer to beta.
Promoted--interface-names ofgcloud compute routers remove-interface to beta.
Promoted--peer-names ofgcloud compute routers remove-bgp-peer to beta.

Essential Contacts

Promotedgcloud essential-contacts to beta.

Service Directory

Added--network flag togcloud service-directory endpoints create command in beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

336.0.0 (2021-04-13)

Assured Workloads

Promoted--resource-settings ofgcloud assured workloads create to GA.

Cloud Composer

Added support of Airflow 2.0 CLI nested commands togcloud composer environments run.
Updatedgcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.15+.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.14
- Fix header parsing causing permission denined errors with Firestore JS SDK v8.3.2.

Cloud Storage

Updated gsutil component to 4.61.

Compute Engine

Added--request-coalescing togcloud beta compute backend-services create,gcloud beta compute backend-services update,gcloud beta compute backend-buckets create andgcloud beta compute backend-buckets update.
AddedcdnPolicy.requestCoalescing field support togcloud beta compute backend-services import.
Promoted--target_distribution_shape flag ofgcloud compute instance-groups managedcreate andupdate to GA.Added--compute-service-account flag togcloud compute instances import.
Removed unneededcurl progress output fromgcloud compute ssh with`--internal-ip flag.
Promoted--zone flag togcloud beta compute images describe-from-family.

Config Connector

Updated Google Cloud Config Connector to version 1.45.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kpt

Updated kpt from v0.38.1 to v0.39.0.
Updated import of cli-utils from v0.23.5 to v0.24.0.
Updated import of kyaml from v0.10.13 to v0.10.15.
Updated import of cmd/config from v0.9.5 to v0.9.7.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

335.0.0 (2021-04-06)

Breaking Changes

(Cloud Bigtable) Deprecated--cluster,--cluster-num-nodes and--cluster-zone flags of
(Cloud Bigtable)gcloud bigtable instances create. Use--cluster-config instead.
(Cloud Bigtable) Deprecated--instance-type flag ofgcloud bigtable instances create. All
(Cloud Bigtable) instances are now of type PRODUCTION.

App Engine

Updated the Java SDK to version 1.9.88.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Access Context Manager

Promotedingress-policies andegress-policies flags ofgcloud access-context-manager perimeters to GA.
Support displaying Ingress and EgressPolicies for:
- gcloud access-context-manager perimeters describe.
- gcloud access-context-manager perimeters dry-run describe.

Cloud Asset Inventory

Added--access-time flag togcloud asset analyze-iam-policy andgcloud asset analyze-iam-policy-longrunning.

Cloud Bigtable

Added--kms-key,--kms-keyring,--kms-location and--kms-projectflags togcloud bigtable clusters create for alpha, beta and GA for creatingCMEK-protected clusters.
Added keykms-key to--cluster-config flag ofgcloud bigtable instancescreate, for creating CMEK-protected clusters.
Promoted--cluster-config flag ofgcloud bigtable instances create tobeta and GA.
Promotedgcloud bigtable instances tables describe to beta and GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.13
- Reset document create time when a document is deleted and re-created in asingle transaction.

Compute Engine

Promoted the following flags ingcloud compute backend-services create,gcloud compute backend-services update,gcloud compute backend-buckets create andgcloud compute backend-buckets update to GA:
- --[no-]negative-caching
- --[no-]negative-caching-policy
- --[no-]serve-while-stale
- --[no-]bypass-cache-on-request-headers
Added the following fields togcloud compute backend-services import andgcloud compute backend-services export:
- cdnPolicy:
- negativeCaching
- negativeCachingPolicy
- bypassCacheOnRequestHeaders
- serveWhileStale
Added support forauthorizationPolicy andserverTlsPolicy forgcloud compute target-https-proxies import command.
Added--iap-tunnel-disable-connection-check flag togcloud compute start-iap-tunnel to disable the initial connection check inalpha and beta.
Promotedgcloud compute public-delegated-prefixes to GA.
Added--network-interface=nic-type flag togcloud compute instance-templates create for beta and GA.
Promoted--image-family-scope flag togcloud beta compute instancescreate andgcloud beta compute disks create.

Policy Simulator

Addedgcloud iam simulator replay-recent-access which simulates policy changes by replaying policy overlay on recent access.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

334.0.0 (2021-03-30)

Breaking Changes

(Cloud Build) Modified the positional argumentWORKER_POOL to be required for commandsin the command groupgcloud builds worker-pools (except forgcloud buildsworker-pools list).
(Cloud Run) Deprecated--connectivity flag ofgcloud run deploy andgcloud run services update.--connectivity will continue to be supported.--connectivity only applies to--platform=gke and--platform=kubernetes.The new--ingress flag applies to all platforms and provides equivalentfunctionality. Prefer to use--ingress. Use--ingress=all in place of--connectivity=external. Use--ingress=internal in place of--connectivity=internal.
(Dataproc Metastore) Deprecatedgcloud beta metastore services imports command group. Usegcloud beta metastore services import command group instead.

Cloud SDK

Cloud SDK supports Apple Silicon. Some native components currently rely onRosetta 2.

AI

Modified--region flag ofgcloud beta ai endpoints to include new onlineprediction regions.
Modified--region flag ofgcloud beta ai models to include new onlineprediction regions.

BigQuery

Added--max_concurrency flag to mk and update reservation commands.
Added--parquet_enum_as_string and--parquet_enable_list_inference flagsto load andmk --table commands for Parquet format. Runbq load --help orbq mk --help for details.
Removed old oauth2client_4_0 compatibility shim.

Cloud On Demand Scanning

Promoted the On-Demand Scanning API commands to GA.
- gcloud artifacts docker images scan to scan a container image.
- gcloud artifacts docker images get-operation to retrieve an operation.
- gcloud artifacts docker images list-vulnerabilities to retrieve scanresults.
Improved error messages forlocal-extract.

Cloud Run

Promoted--ingress flag ofgcloud run deploy andgcloud run services update to GA.

Cloud SQL

Promoted Active Directory integration to beta.

Cloud Security Command Center

Updated the following commands to support project/folder parent types:
- gcloud scc findings create
- gcloud scc findings group
- gcloud scc findings list
- gcloud scc findings list-marks
- gcloud scc findings update
- gcloud scc findings update-marks
- gcloud scc assets describe
- gcloud scc assets group
- gcloud scc assets list
- gcloud scc assets list-marks
- gcloud scc assets update-marks
Assets and findings will now havecanonicalName field in their response.

Compute Engine

Added--service-account,--no-service-account,--scopes and--no-scopes flags togcloud beta compute instances import.
Added--service-directory-registration flag togcloud computeforwarding-rules create --global --target-google-apis-bundle=<bundle> inbeta and GA.
Added--target-google-apis-bundle togcloud compute forwarding-rulescreate.
AddedPRIVATE_SERVICE_CONNECT as a global address purpose togcloud compute addresses create.
Promoted--post-key-reservation-action-type flag to beta forgcloud computeinstances create.
Promoted--post-key-reservation-action-type flag to beta forgcloud computeinstance-templates create.
Added--resource-policies flag forgcloud compute instance-templates createcommand in alpha, beta, and GA.
Added--service-account,--no-service-account,--scopes and--no-scopes flags forgcloud compute machine-images import in beta.
Fixed failure to pipe into ssh when--internal-ip flag is specified.
Addedgcloud compute target-https-proxies import method which creates orupdates a target HTTPS proxy resource in Compute Engine
Promotedgcloud compute public-advertised-prefixes to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.44.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Database Migration

Launched Database Migration.

Dataproc Metastore

Added--dump-type flag togcloud beta metastore services export gcs toallow specification of the database dump type to export.
Added--release-channel flag togcloud beta metastore services create.
Added the following commands to work with Dataproc Metastore services:
- gcloud beta metastore services import
- gcloud beta metastore services restore
- gcloud beta metastore services backups describe
- gcloud beta metastore services backups list
- gcloud beta metastore services backups create
- gcloud beta metastore services backups delete
Promotedgcloud metastore to GA.

Secret Manager

Added--next-rotation-time flag togcloud beta secrets create,gcloud secrets creategcloud beta secrets update andgcloud secrets update commands to specify the timestamp at which to sendSECRET_ROTATE notification.
Added--rotation-period flag togcloud beta secrets create,gcloud secrets creategcloud beta secrets update andgcloud secrets update commands to specify a duration between secret rotation notifications.
Added--remove-next-rotation-time flag togcloud beta secrets update andgcloud secrets update command toremove scheduled rotation time from a secret if it has one.
Added--remove-rotation-period flag togcloud beta secrets update andgcloud secrets update command toremove a set rotation period if it has one.
Added--remove-rotation-schedule flag togcloud beta secrets update andgcloud secrets update command to remove the rotation policy from a secret if it has one.
Promoted--expire-time flag ofgcloud secrets create andgcloud secrets update to GA.
Promoted--ttl flag ofgcloud secrets create andgcloud secrets update to GA.
Promoted--remove-expiration flag ofgcloud secrets update to GA.
Promoted--topics flag ofgcloud secrets create to GA.
Promoted the following flags to GA forgcloud secrets update:
- --add-topics
- --remove-topics
- --clear-topics

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

333.0.0 (2021-03-23)

Cloud SDK

--impersonate-service-account flag can accept a list of service accountsfor impersonation delegation.

Assured Workloads

Added--resource-settings flag togcloud assured workloads create command.
Added US_REGIONAL_ACCESS as compliance regime option forgcloud assured workloads create command.
Added HIPAA and HITRUST as compliance regime options forgcloud assured workloads create command.

Cloud Build

Updatedgcloud builds submit andgcloud builds log to tell users when theycannot read the default logs bucket because of VPC-SC.

Cloud Dataflow

Added flex template docker container building support for python in build commandgcloud beta dataflow flex-template build.

Cloud Dataproc

Addedgcloud dataproc clusters stop andgcloud dataproc clusters startwhich stop and start clusters.
Promoted--dataproc-metastore flag ofgcloud dataproc clusters create toGA.
Promoted--dataproc-metastore flag ofgcloud dataproc workflow-templatesset-managed-cluster to GA.
Added--secure-multi-tenancy-user-mapping and--identity-config-file flagstogcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster.

Cloud Logging

Promotedgcloud logging views command group to GA.

Cloud On Demand Scanning

Improved error messages forlocal-extract.

Cloud Pub/Sub

Added--starting-offset flag togcloud pubsub lite-subscriptions create to allow subscriptions to be created at HEAD.

Cloud Storage

Updated gsutil component to 4.60.

Compute Engine

Fixedgcloud compute url-maps import for correctly removing top-levelproperties of an existing Url map, when they are not specified in the YAMLfile.
Updated import and export schemas for:
- gcloud compute forwarding-rules.
- gcloud compute backend-services.
Added--compute-service-account flag forgcloud compute instances importin beta.
Added--compute-service-account flag forgcloud compute machine-images import in beta.
Promoted--description and--family flags ofgcloud compute imagesupdate to GA.
Promoted the following flags ingcloud compute instance-groups managedset-autoscaling to GA:
- --set-schedule
- --schedule-cron
- --schedule-duration-sec
- --schedule-min-required-replicas
- --schedule-time-zone
- --schedule-descriptionFor more information see<https://cloud.google.com/compute/docs/autoscaler/scaling-schedules>.
Promoted the following flags ingcloud compute instance-groups managedupdate-autoscaling to GA:
- --min-num-replicas
- --max-num-replicas
- --set-schedule
- --update-schedule
- --disable-schedule
- --enable-schedule
- --remove-schedule
- --schedule-cron
- --schedule-duration-sec
- --schedule-min-required-replicas
- --schedule-time-zone
- --schedule-descriptionFor more information see<https://cloud.google.com/compute/docs/autoscaler/scaling-schedules>.

Config Connector

Updated Google Cloud Config Connector to version 1.42.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kpt

Updated kpt from v0.37.1 to v0.38.1.
Updated import of cli-utils from v0.21.1 to v0.23.5.
Updated import of kyaml from v0.9.5 to v0.10.13.
Updated import of cmd/config from v0.8.5 to v0.9.5.

Miscellaneous

Reordered contents of help text pages to make "Examples" section moreprominent.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

332.0.0 (2021-03-16)

Breaking Changes

(App Engine) Updated backend when usinggcloud app deploy <queue|cron>.yaml. The onlynoticeable change is that when removing queues from the queues YAML file,previously the queues were marked as "DISABLED" but now they are marked"PAUSED". In terms of functionality, there is no difference between the two.

Cloud SDK

Added support for environment variableCLOUDSDK_ENCODING to set the IOencoding forgcloud.UTF-8 will be the default IO encoding on Unix.

App Engine

Updated the Java SDK to version 1.9.87.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Promoted PyPI repo creation withgcloud artifacts repositories create to beta and GA.
Promotedgcloud artifacts print-settings pypi to beta and GA.

Cloud Dataflow

Added default runtime environment parameters support ingcloud dataflow flex-template build.

Cloud Functions

Promoted--security-level flag ofgcloud functions deploy to GA.
Modified--limit ofgcloud functions logs read such that the most recent entries in the given time range up to the limit are returned rather than the earliest.

Cloud Org Policy

Promotedgcloud org-policies command group to GA.

Cloud Run

Promoted--tag flag ofgcloud run deploy to GA.
Promoted--tag flag ofgcloud run services update to GA.
Promoted--to-tags,--set-tags,--update-tags,--remove-tags, and--clear-tags flags ofgcloud run services update-traffic to GA.

Cloud Spanner

Promoted CMEK flags to beta and GA ingcloud spanner commands.

Compute Engine

Added--byol flag for:
- gcloud compute images import in beta
- gcloud compute instances import in beta
- gcloud compute machine-images import in beta
Promotedgcloud compute instances remove-resource-policies command to GA.
Added--boot-disk-provisioned-iops togcloud compute instances create andgcloud compute instance-templates create to allow specifying provisioned IOPS for attached disks.
Promotedgcloud compute instances create --network-performance-configs flag to beta.
Promotedgcloud compute instances bulk create to beta and GA.

Dataproc Metastore

Added--database-dump-type flag togcloud beta metastore services importscreate to set the database dump type.
Deprecated--database-type flaggcloud beta metastore services importscreate. Use--database-dump-type flag to specify the database dump type.
Addedgcloud beta metastore services imports update which updates ametadata import.
Added--data-catalog-sync flag forgcloud metastore services in beta.

Identity Groups

Added--group-type flag togcloud identity groups create to automaticallyset group labels based on the type of group being created.

Kubernetes Engine

Promoted--enable-l4-ilb-subsetting ofgcloud container clusters createandgcloud container clusters update to beta.
Added--node-labels,--node-taints, and--tags flags togcloud beta container node-pools update to update the node labels,node taints and network tags on an existing node pool.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

331.0.0 (2021-03-09)

AI

Added--autoscaling-metric-specs flag togcloud beta ai endpoints deploy-model.

App Engine

Updatedgcloud app instances list andgcloud app instances describeto return the auto healer health check (i.e. liveness) for the flexibleenvironment.

Assured Workloads

Promotedgcloud assured command group to GA. Commands in this groupprovide the ability to read and modify Assured data controls.
Promotedgcloud assured workloads command group to GA. Commands in thisgroup provide the ability to manage Assured Workloads environment resources.
Promotedgcloud assured operations command group to GA. Commands in thisgroup provide the ability to view Assured Workloads operation resources.

Cloud Build

Fixed issue wheregcloud beta builds worker-pools commands fail to waitfor long-running operations to finish.

Cloud Dataproc

Added a confirmation prompt togcloud datapoc clusters enable-personal-auth-sessionandgcloud beta datapoc clusters enable-personal-auth-session.

Cloud Healthcare

Promotedgcloud healthcare consent-stores to GA.

Cloud On Demand Scanning

Updated thelocal-extract component to version 0.1.5, to improve errorhandling in certain cases.

Cloud Resource Manager

Updatedgcloud resource-manager org-policies describe to throw an error for unsupported policy versions.

Cloud Run

Promoted--min-instances flag ofgcloud run deploy andgcloud run services update to GA for--platform=managed.

Cloud Services

Support service usage check ongcloud services disable command.

Compute Engine

Promoted--provisioned-iops flag ofgcloud compute disks create to GA.
Promotedgcloud compute public-delegated-prefixes to beta.

Config Connector

Updated Google Cloud Config Connector to version 1.41.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Identity and Access Management

Addedgcloud iam workload-identity-pools which enables grantingon-premises or multi-cloud workloads access to Google Cloud resources,without using a service account key.

Kubernetes Engine

Addedgcloud container clusters create-auto for creating Autopilot clustersto the beta and GA tracks.

Network Management

Added IPv6 support for Network Load balancers togcloud compute forwarding-rules command group.

Secret Manager

Promotedgcloud secrets replication command group to GA.
Added--replication-policy-file flag togcloud secrets create command tospecify replication policy using a JSON or YAML file.
Added--kms-key-name flag togcloud secrets create command to specify aKMS key when creating an automatic secret.

VPC Access

Promoted VPC connector--subnet flag from beta to GA.
Modifiedgcloud compute networks vpc-access connectors create to accept an optional--subnet flag to specify a subnet to house the connector rather than requiring--network and--range flags.
- If the provided subnet is a shared subnet, use the flag--subnet-project to specify the VPC host project ID.

Workspace Add Ons

Promotedgcloud workspace-add-ons commands to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

330.0.0 (2021-03-02)

Breaking Changes

(Cloud Code) Downgraded--env-vars and--env-vars-file to alpha.

Cloud SDK

Added bundled Python 3 option for macOS installations. Seegcloud topics startup andhttps://cloud.google.com/sdk/docs/install#mac.
Fixed issue wheregcloud emulators ... start commands would leave behindemulator processes when Ctrl+C was pressed.

Cloud Dataproc

Added--cluster-labels flag togcloud dataproc jobs submitto allow jobs to be placed on a cluster matching specified cluster labels.

Cloud Healthcare

Added--filter-config-gcs-uri flag to the following commands:
- gcloud beta healthcare dicoms-stores export gcs
- gcloud beta healthcare dicoms-stores export bq

Cloud On Demand Scanning

Updated some error messages to be more clear.
Added a prompt to the beginning ofgcloud beta artifacts docker imagesscan to install thelocal-extract component.

Cloud Pub/Sub

Promoted--partitions flag ingcloud pubsub lite-topics update to GA.
Added--view flag togcloud beta schemas list to allow retrieval of schema definitions.

Cloud Run

Fixed bug on force-override prompt forgcloud beta run domain-mappings create where it would fail to re-createthe domain mapping after deleting the one without the override.

Compute Engine

Promotedgcloud compute public-advertised-prefixes to beta.
Added--request-coalescing togcloud beta compute backend-services create,gcloud beta compute backend-services update,gcloud beta compute backend-buckets create andgcloud beta compute backend-buckets update.
Promoted support forgce-vm-ip for--network-endpoint-type forgcloud compute network-endpoint-groups create andgcloud compute network-endpoint-groups update to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.39.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kubernetes Engine

Added--pod-ipv4-range and--create-pod-ipv4-range flags togcloud beta container node-pools create to configure pod ranges for thenode pools.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

329.0.0 (2021-02-23)

Breaking Changes

(Container Registry) Fixed issue wheregcloud containers images list-tags doesn't show occurrence metadata.

AI

Added--network and--service-account togcloud beta ai <custom-jobs|hp-tuning-jobs> create to allow specifying a peering network and user service account.

Cloud Asset Inventory

Added--relationship-type flag togcloud beta asset export.

Cloud Code

Promotedgcloud code dev andgcloud code clean-up to beta.

Cloud Composer

Added--kms-key flag togcloud composer environments command to specify the Customer-managed KMS key name to use for encrypting the Composer environment.

Cloud Functions

Fixed a performance issue ingcloud functions logs read by adding a default value of 1 week ago for--start-time.

Cloud Memorystore

Added--transit-encryption-mode flag togcloud redis instances createto allow enabling Redis TLS with server authentication whencreating a new instance.
Modified--region flag to be optional ingcloud memcache. If notspecified, use the value inmemcache/region property.

Cloud Pub/Sub

Addedgcloud beta pubsub schemas validate-schema to allow validation of PROTOCOL_BUFFER and AVRO schemas.
Addedgcloud beta pubsub schemas validate-message to allow validation of messages against an existing or inline schema.

Compute Engine

Promoted--provisioned-iops flag ofgcloud compute disks create to beta.
Promotedgcloud compute url-maps validate to GA.
Promoted labels-related flags forgcloud compute forwarding-rules update to GA.
Modified--short-name ofgcloud compute firewall-policies create to be a required flag.
Promoted--proxy-bind flag ofgcloud compute target-tcp-proxies create to GA.
Allow--target-tcp-proxy forgcloud compute forwarding-rulescreate andset-targetwith specified-load-balancing-scheme=INTERNAL_SELF_MANAGED.
Added functionality ingcloud beta compute images import to import images fromAWS.
Promotedgcloud compute resource-policies create instance-schedule command to GA.

Identity Groups

Added--dynamic-user-query flag togcloud identity update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

328.0.0 (2021-02-16)

Breaking Changes

(App Engine) Changed error message forPermissions error fetching application to indicatewhich account might be missingroles/appengine.deployer.
(Miscellaneous) Added support for colored output using ANSI escape sequences on modernversions of Windows. Usegcloud config set disable_color true to disablethis behavior.

App Engine

Updated the Java SDK to version 1.9.86.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Modifiedgcloud artifacts docker images describe to group vulnerability occurrences by effective severity instead of severity.

BigQuery

Expose json_extension flag in CLI which can be used to load newline-delimitedGeoJSON files (in combination with source_format=NEWLINE_DELIMITED_JSON).

Cloud Composer

Modified--image-version and--airflow-version flags ofgcloud beta composer environments update to be mutually exclusive.
Added the following flags togcloud composer environments create andgcloud composer environments update to manage machine types for web server and Cloud SQL:
- --cloud-sql-machine-type
- --web-server-machine-type

Cloud Logging

Promoted thegcloud alpha logging tail command to beta.

Cloud Memorystore

Promotedgcloud memcache to GA.
Addedapply-software-update command to apply latest available softwareupdate to Memcached instance and nodes.

Cloud Pub/Sub

Addedgcloud pubsub schemas to beta which allows creating and managing schemas. Schemas can be used to validate messages published to Cloud Pub/Sub topics.
Added--schema and--message-encoding flags togcloud beta pubsub topics create. Messages published to the topic with the given message encoding will be validated against the specified schema.
Added--partitions flag togcloud beta pubsub lite_topics update to allow increasing partitions in a Pub/Sub Lite topic.

Cloud SQL

Added--secondary-zone flag togcloud sql instances <create|patch> that allows users to choose the secondary zone during create|patch of High Availability instances.

Cloud Spanner

Added--version-time flag togcloud spanner backups create to allowspecifying the timestamp of the data contained in the backup.
Added version time to the output ofgcloud spanner backups list.
Added version retention period and earliest version time to the output ofgcloud spanner databases list.

Cloud Spanner Emulator

Promotedgcloud emulators spanner to GA.

Cloud Storage

Updated gsutil component to 4.59.

Cloud TPU

Promotedgcloud compute tpus execution-groups to GA. Commands in this groupallow convenient orchestration of TPU nodes and Compute VMs. This replaces thestandalone toolctpu.

Compute Engine

Promoted--provisioned-iops flag ofgcloud compute disks create to beta.
Promotedgcloud compute url-maps validate to GA.
Promoted labels-related flags forgcloud compute forwarding-rules update to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.38.1.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Container Analysis

Modifiedgcloud container images describe to group vulnerability occurrences by effective severity instead of severity.

Identity Groups

Promoted--dynamic-user-query flag ofgcloud identity create to GA.

Kubernetes Engine

Promoted--notification-config ofgcloud container clusters<create|update> to GA. This flag is used to enable notifications on acluster. Currently Pub/Sub notifications are supported.
Node System Config is now GA. Added--system-config-from-file flag togcloud container clusters create,gcloud container node-pools create, andgcloud node-pools update to configure kubelet and Linux configurationsettings on nodes.

Pubsub Emulator

Added schema support to the Pub/Sub emulator, which allows the association oftopics with schemas and the validation of published messages against them.

Secret Manager

Added--topics flag togcloud beta secrets create command to specifya list of Pub/Sub topics to configure on the secret.
Added--add-topics flag togcloud beta secrets update command to specifya list of Pub/Sub topics to add to the secret.
Added--remove-topics flag togcloud beta secrets update command tospecify a list of Pub/Sub topics to remove from the secret.
Added--clear-topics flag togcloud beta secrets update command to removeall Pub/Sub topics from the secret.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

327.0.0 (2021-02-09)

AI

Added KMS args (--kms-project,--kms-location,--kms-keyring,--kms-key) togcloud <alpha|beta> ai custom-jobs create andgcloud<alpha|beta> ai hp-tuning-jobs create to allow specifying a customer-managedencryption key.

App Engine

Updated the Java SDK to version 1.9.85.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Fixed a bug that prevented users from creating an encrypted repository witha custom kms key.

Cloud DNS

Addedgcloud beta dns response-policies create to create a new Cloud DNS response policy.
Addedgcloud beta dns response-policies update to update a Cloud DNS response policy.
Addedgcloud beta dns response-policies list to list all Cloud DNS response policies in a given project.
Addedgcloud beta dns response-policies describe to describe details of a Cloud DNS response policy.
Addedgcloud beta dns response-policies delete to delete a Cloud DNS response policy.

Cloud Functions

Promoted--security-level flag ofgcloud functions deploy to beta.
Added support forgoogle.firebase.remoteconfig.update as an event type. The full set of supported event types can be listed usinggcloud functions event-types list.

Cloud Healthcare

Added--write-disposition flag to the following commands:
- gcloud healthcare fhir-stores export bq
- gcloud beta healthcare fhir-stores export bq
- gcloud beta healthcare dicom-stores export bq
- gcloud beta healthcare annotation-stores export bq
- gcloud beta healthcare annotation-stores evaluate bq

Cloud Logging

Promoted the following commands that support Logs Buckets to GA:
- gcloud logging buckets
- gcloud logging read
- gcloud logging locations describe
- gcloud logging locations list
- gcloud logging sinks
- gcloud logging cmek-settings
Promoted--location,--bucket, and--view ofgcloud logging read to GA.
Promoted--description and--log-filter ofgcloud logging metrics to GA.
Promoted--use-partitioned-tables ofgcloud logging sinks to GA.

Compute Engine

Added support forshort-name=windows for--os-type flag forgcloud beta compute instances ops-agents policies. This is only valid when--agent-rules=type=ops-agent.
Promoted--cpu-utilization-predictive-method flag ofgcloud compute instance-groups managed <set-autoscaling|update-autoscaling> to beta.
Added support for--asn flag forgcloud compute routers update.
Promotedgcloud compute security-policies update to beta.
Added--enable-layer7-ddos-defense flag and--layer7-ddos-defense-rule-visibility flag togcloud beta compute security-policies update.

Events

Added--authentication flag togcloud events init command.
Added--authentication flag togcloud events namespaces init command.
Addedworkload-identity-gsa support to--authentication flag forgcloud events init command.
Modifiedgcloud events namespaces init command to create namespace if it is missing.

Identity Groups

Added--labels flag togcloud identity groups update to allow updating the labels for a group.

Identity Groups Memberships

Promoted--expiration flag ofgcloud identity groups memberships add to GA.
Promoted--update-roles-param flag ofgcloud identity groups memberships modify-membership-roles to GA.

Kubernetes Engine

Adds new kubectl delegate version 1.19.7 for rapid channel
Updated default kubectl version from 1.17.14 to 1.17.17
Additional kubectl delegate versions:
- kubectl.1.15 (1.15.12)
- kubectl.1.16 (1.16.15)
- kubectl.1.17 (1.17.17)
- kubectl.1.18 (1.18.15)
Corrected passing URIs and full resource names to work with paths in theformprojects/<project>/locations/<location> (in addition to thedeprecated formprojects/<project>/zones/<location>).

Pubsub Emulator

Added retry policy feature to the emulator.
Updated emulator to deliver dead lettered messages to original subscription in case of publishing failure to dead letter topic.
Added subscription name, project name, and publish time properties to dead lettered messages.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

326.0.0 (2021-02-02)

App Engine

Updated backend when usinggcloud app deploy <queue|cron>.yaml. The onlynoticeable change is that when removing queues from the queues YAML file,previously the queues were marked as "PAUSED" but now they are marked"DISABLED". In terms of functionality, there is no difference between the two.

Artifact Registry

Fixed issue wheregcloud docker images delete failed if the image is referenced by a tag.

Cloud Asset Inventory

Added new searchable fields (kmsKey,state,createTime andupdateTime) togcloud asset search-all-resources.

Cloud Composer

Addedgcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.14+.
Added support of CLI commands for Airflow 2.0 togcloud beta composer environments run.

Cloud Dataflow

Added streaming update and flexrs support to flex-template run commandgcloud dataflow flex-template run.
Updatedgcloud dataflow sql query command to useDataflow FlexTemplates.
Added--additional-experiments flag togcloud beta dataflow jobs run.
Added--additional-experiments flag togcloud dataflow jobs run.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.12
- Fix onCreate/onWrite events triggering when deleting nonexistent documents.

Cloud On Demand Scanning

Launched commands for the On-Demand Scanning API in the Artifact Registrycommand group.
- gcloud beta artifacts docker images scan to scan an image.
- gcloud beta artifacts docker images get-operation to poll an ongoing scan.
- gcloud beta artifacts docker images list-vulnerabilities to retrieve scan results.
Introduced a new component calledlocal-extract to aid in the commands forthe On-Demand Scanning API.

Compute Engine

Added--compute-service-account togcloud beta compute images import.
Changed--os flag to be optional forgcloud compute images import.
Added--enable-nested-virtualization flag to enable or disable nested virtualization to both beta and GA for:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instance-templates create
Fixed issue where policies created or updated viagcloud beta computeinstances ops-agents policies [create|update] that includedshort-namevalues of 'debian' or 'ubuntu' in--os-types had trouble locating packagesdue to a missing call toapt-get update.
Updated Windows PuTTY executables to version 0.74.

Config Connector

Updated Google Cloud Config Connector to version 1.37.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Promotedgcloud eventarc triggers to GA. Renamed--matching-criteriaflag as--event-filters in GA.
Promotedgcloud eventarc locations to GA.

GKE Hub

Promotedgcloud container hub memberships register --enable-workload-identity --public-issuer-url=$URL to GA.

Notebooks

Promotedgcloud notebooks to GA.

VPC Access

Added--machine-type togcloud beta compute networks vpc-access connectors create to support machine type configuration of the managed instance group underlying the connector.
Added--min-instances and--max-instances togcloud beta compute networks vpc-access connectors create to allow users to configure the scaling bounds of the underlying managed instance group.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

325.0.0 (2021-01-26)

Breaking Changes

(Compute Engine) Modifiedenable-autoupgrade field belonging to flag--agent-rules ingcloud beta compute instances ops-agents policies create andgcloud beta compute instances ops-agents policies update from optional to required.
(Container Registry) Updatedgcloud container images list-tags andgcloud container images describe to use ContainerAnalysis V1 API in beta.
- Changed occurrence kindPACKAGE_VULNERABILITY toVULNERABILITY,DEPLOYABLE toDEPLOYMENT,BUILD_DETAILS toBUILD andIMAGE_BASIStoIMAGE. To construct filters on kinds, new names should be used. Forexample,kind="VULNERABILITY.
- Occurrence kind names are changed in output accordingly.

App Engine

Updated backend when usinggcloud app deploy <queue|cron>.yaml. The onlynoticeable change is that when removing queues from the queues YAML file,previously the queues were marked as "DISABLED" but now they are marked"PAUSED". In terms of functionality, there is no difference between the two.

Certificate Authority Service

Added--ignore-active-certificates flag togcloud beta privateca rootsdelete andgcloud beta privateca subordinates delete to allow a CertificateAuthority to be scheduled for deletion even if the Certificate Authority hasun-revoked or un-expired certificates.

Cloud Composer

Addedgcloud beta composer environments run my-environment upgrade_check to run upgrade check to Airflow 2.0 for Composer environments with Airflow 1.10.14+.

Cloud Storage

Updated gsutil component to 4.58.

Compute Engine

Promotedgcloud compute networks get-effective-firewalls command to GA.
Promotedgcloud compute instances network-interfaces get-effective-firewalls command to GA.
Promotedgcloud compute instance ops-agents to beta.
Promoted--compute-service-account flag to GA forgcloud compute images import.

Eventarc

Added--transport-topic flag togcloud beta eventarc triggers create, to allow the use of an existing Pub/Sub topic for a trigger's transport intermediary.

Miscellaneous

Fixedhttps://issuetracker.google.com/161399034 where--sort-by flagcaused the output to duplicate the last value in the list.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

324.0.0 (2021-01-19)

Breaking Changes

(Cloud Run) Updatedgcloud run to require that--platform and--region be passedafter all positional arguments. For example:gcloud run services describeSERVICE --platform=managed --region=us-central1. This change first appearedin version 322.0.0.

AI Platform

Added support for maxNodes togcloud ai-platform versions update --config.
Added--bigquery-table-name andsampling-percentage togcloud ai-platformversions update to update request logging config.

Cloud API Gateway

Promotedgcloud api-gateway to GA.

Cloud DNS

Promotedgcloud dns managed-zones to GA.
Added--service-directory-namespace togcloud beta dns managed-zones create to support providing a Service Directory namespace that should be associated with the zone.

Cloud Machine Learning Engine

Added support for maxNodes togcloud ml-engine versions update --config.
Added--bigquery-table-name andsampling-percentage togcloud ml-engineversions update to update request logging config.

Cloud Run

For Cloud Run (fully managed), changedgcloud run services delete to waituntil the service is no longer returned and account for the possibility of adeletion failing before reporting success. To use the previous behavior andexit without waiting for deletion to complete, use--async.

Cloud Speech API

Promoted--separate-channel-recognition and--audio-channel-count flags ofgcloud ml speech recognize andgcloud ml speech recognize-long-runningto GA.

Cloud Workflows

Addedgcloud workflows andgcloud workflows executions commands to GA.

Compute Engine

Added--compute-service-account togcloud beta compute images import.
Added the following flags togcloud beta compute backend-services create,gcloud beta compute backend-services update,gcloud beta compute backend-buckets create andgcloud beta compute backend-buckets update:
- --[no-]serve-while-stale
- --[no-]bypass-cache-on-request-headers
Added the following fields togcloud beta compute backend-services import andgcloud beta compute backend-services export:
- cdnPolicy:
- bypassCacheOnRequestHeaders
- serveWhileStale
Promoted--compute-service-account flag to GA forgcloud compute images export.
Addedorg-firewall-policies command group.

Config Connector

Updated Google Cloud Config Connector to version 1.35.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Kpt

Updated kpt from v0.36.1 to v0.37.1.
Updated import of cli-utils from v0.21.0 to v0.21.1.
Updated import of kyaml from v0.9.3 to v0.9.5.
Updated import of cmd/config from v0.8.4 to v0.8.5.

Secret Manager

Added--expire-time flag togcloud beta secrets create andgcloud beta secrets update commands to specify timestamp for the secret toexpire.
Added--ttl flag togcloud beta secrets create andgcloud beta secrets update commands to specify a duration until the secretshould expire.
Added--remove-expiration flag togcloud beta secrets update command toremove scheduled expiration from a secret if it has one.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

323.0.0 (2021-01-12)

Cloud Asset Inventory

Promotegcloud asset list command to beta.

Cloud Dataproc

Added--shielded-secure-boot,--shielded-vtpm, and--shielded-integrity-monitoring boolean flags togcloud dataproc clusters create to allow users to configure Compute Engine Shielded VMs on Dataproc clusters.
Added--shielded-secure-boot,--shielded-vtpm, and--shielded-integrity-monitoring boolean flags togcloud dataprocworkflow-templates set-managed-cluster to allow users to configure Compute Engine Shielded VMs on Dataproc managed clusters.

Cloud Filestore

Added--description flag togcloud beta filestore backups createcommand.

Cloud Run

Promoted--use-http2 flag to beta for Cloud Run (fully managed).

Config Connector

Updated Google Cloud Config Connector to version 1.34.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Identity Groups Memberships

Addedgcloud identity groups memberships check-transitive-membership for ALPHA, beta and GA.
Addedgcloud identity groups memberships get-membership-graph for ALPHA, beta and GA.
Addedgcloud identity groups memberships search-transitive-groups for ALPHA, beta and GA.
Addedgcloud identity groups memberships search-transitive-memberships for ALPHA, beta and GA.

Managed Active Directory

Added--enable-audit-logs flag togcloud beta active-directory domains create andgcloud beta active-directory domains update.
AddedAUDIT_LOGS_ENABLED parameter togcloud beta active-directory domains list.
AddedauditLogsEnabled parameter togcloud beta active-directory domains describe.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

322.0.0 (2021-01-07)

Breaking Changes

(Miscellaneous) Updated--format=flattened and--format=text to print labels if provided.If a key is specified inside either of these formats but a label is not,the child key will be printed in lower snake case. This is differentthan done previously when the entire dotted key path was printed. Note thatthis change does not apply to keys whose values are objects or lists.
(Miscellaneous)If you would like to use the legacy version of--format=flattened or--format=text, set the following configuration:gcloud config set core/use_legacy_flattened_format truePlease note that this option will not be supported indefinitely.

Cloud API Gateway

Promote support for gRPC scopedapi-config configurations viagrpc-files flag to beta.

Cloud Composer

Added--max-pods-per-node option togcloud beta environment createoperation. It allows to limit the number of pods that can be assigned to asingle GKE node and reduce the size of IP range assigned to it.
Added maintenance window flags for environment creation:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence.
Added maintenance window flags for environment update:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- --clear-maintenance-window.
Addedgcloud beta composer environments restart-web-server to restart web server for a Cloud Composer environment.

Cloud Dataflow

Added--enable-streaming-engine flag togcloud beta dataflow jobs run.
Added--enable-streaming-engine flag togcloud dataflow jobs run.

Cloud Filestore

Promotednfs-export-options key of--file-shares flag ingcloud filestore instances to GA.

Cloud Run

Fixed an issue with using--clear-vpc-connector when deploying new services.

Compute Engine

Promoted--mtu flag to beta and GA forgcloud compute interconnectsattachments <dedicated|partner> <create|update>.
Changed--os flag to be optional for:
- gcloud compute images import in beta
- gcloud compute instances import in beta
- gcloud compute machine-images import in beta
Promoted--maintenance-window-start-time flag ingcloud computesole-tenancy node-groups create command to GA.
Added--compute-service-account togcloud compute images export in beta.
Added--service-directory-registration togcloud compute forwarding-rulescreate in beta.
Promoted--no-address flag to GA forgcloud compute images import.

Config Connector

Updated Google Cloud Config Connector to version 1.33.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Eventarc

Addedgcloud beta eventarc locations list which lists locations available for Eventarc.

Miscellaneous

Updatedgcloud to not attempt reauthentication if running innon-interactive mode.

Service Directory

Promotedgcloud service-directory locations to beta. Added a commands todescribe/list locations.
Promotedgcloud service-directory namespaces to GA. Added commands tocreate/delete/describe/list/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.
Promotedgcloud service-directory services to GA. Added commands tocreate/delete/describe/list/resolve/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.
Promotedgcloud service-directory endpoints to GA. Added commands tocreate/delete/describe/list/resolve/update.
Updated--metadata flag to--annotations flag in GA only.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

321.0.0 (2020-12-15)

Breaking Changes

(Dataproc Metastore) Renamedgcloud beta metastore services update --kerberos_principal flag as--kerberos-principal.

Cloud SDK

Added new regions for Artifact Registry: europe-west5, asia-northeast3,us-west3, us-west4, asia-southeast2.

AI

Added parameters args and command togcloud beta ai custom-jobs create which provides ability to pass the parameters to containers or python tasks.

Cloud Access Context Manager

Addedingress-policies andegress-policies optional flags to the followingcommands:
- gcloud beta access-context-manager perimeters create.
- gcloud beta access-context-manager perimeters update.
- gcloud beta access-context-manager perimeters dry-run create.
- gcloud beta access-context-manager perimeters dry-run update.
Theingress-policies andegress-policies flags accept paths to yaml files.The content of the yaml files should contain valid representations ofIngressPolicies and EgressPolicies.
Added support for displaying the contents of Ingress and EgressPolicies forfollowing commands:
- gcloud beta access-context-manager perimeters describe.
- gcloud beta access-context-manager perimeters dry-run describe.

Cloud Composer

Added the following flags togcloud composer environments create to manage Airflow web server network access control:
- --web-server-allow-ip
- --web-server-deny-all
- --web-server-allow-all
Added the following flags togcloud composer environments update to manage Airflow web server network access control:
- --update-web-server-allow-ip
- --web-server-deny-all
- --web-server-allow-all

Cloud Dataproc

Promoted--dag-timeout flag ofgcloud dataproc workflow-templates createto GA.
Promotedgcloud dataproc workflow-templates set-dag-timeout to GA.
Promotedgcloud dataproc workflow-templates remove-dag-timeout to GA.
Addedgcloud beta dataproc clusters stop andgcloud beta dataproc clusters start commands to enable stopping and startingDataproc clusters.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.11
- Fix listCollectionId not returning collections with nested docs.
- Fix listDocuments with showMissing returning 500 errors.

Cloud Run

Added multitenancy support togcloud run commandshttps://cloud.google.com/run/docs/gke/multi-tenancy.
Promoted--vpc-egress flag ofgcloud run deploy andgcloud run services update to GA.
Promoted--ingress flag ofgcloud run deploy andgcloud run services update to beta.

Cloud SQL

Promoted--type flag ofgcloud sql users create to GA to support thecreation of Cloud SQL database users for login using IAM databaseauthentication.

Cloud Services

Promotedgcloud services peered-dns-domains <create|delete|list> to GA.
Promotedgcloud services vpc-peerings <enable-vpc-service-controls|disable-vpc-service-controls> to GA.

Cloud Storage

Updated gsutil component to 4.57.

Compute Engine

Removed centos-6 option from--os flag forgcloud compute images import,gcloud compute instances import, andgcloud compute machine-images import.
Promoted TrafficDirector proxyBind property to v1 for:
- gcloud compute target-http-proxies import
- gcloud compute target-http-proxies export
- gcloud compute target-https-proxies import
- gcloud compute target-https-proxies export
Addedno-address flag to:
- gcloud beta compute images import
- gcloud beta compute machine-images import
Promoted--disk and--accelerator flags ingcloud compute sole-tenancynode-templates create command to GA.
Added--shielded-vtpm,--shielded-secure-boot, and--shielded-integrity-monitoring flags togcloud compute instances create-with-container command.
Added--shielded-vtpm,--shielded-secure-boot, and--shielded-integrity-monitoring flags togcloud compute instance-templates create-with-container command.
Added--shielded-vtpm,--shielded-secure-boot,--shielded-integrity-monitoring, and--shielded-learn-integrity-policy flags togcloud compute instances update-container command.
Promoted the following flags ingcloud compute backend-services create,gcloud compute backend-services update,gcloud compute backend-buckets create andgcloud compute backend-buckets update to GA:
- --cache-mode
- --[no-]client-ttl
- --[no-]default-ttl
- --[no-]max-ttl
- --[no-]custom-response-header
Added the following fields togcloud compute backend-services import andgcloud compute backend-services export:
- customResponseHeader
- cdnPolicy:
- cacheMode
- clientTtl
- defaultTtl
- maxTtl

Events

Added URI support to--target-service ofgcloud events triggers create.
Modify--type flag ofgcloud events triggers create to be optional for ApiServerSource.

Kubernetes Engine

Added--addons=GcePersistentDiskCsiDriver togcloud container clusterscreate and--update-addons=GcePersistentDiskCsiDriver togcloudcontainer clusters update to enable/disable the GCP Compute PersistentDisk Container Storage Interface (CSI) Driver.

Miscellaneous

Informational messages printed during installation are now printed tostderr, rather than stdout.

Pubsub Emulator

Added dead letter queue feature to the emulator.

Transcoder

Promotedgcloud transcoder to beta.

VPC Access

Added a newsubnet flag togcloud compute networks vpc-access connectorscreate which can be used to specify a subnet to house theconnector rather than specifyingnetwork andrange flags.
- If the provided subnet is a shared subnet, the flagsubnet-project hasbeen added to specify the host project id.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

320.0.0 (2020-12-08)

AI Platform

Updated the following command groups to display a choice of available regionsif a region hasn't been specified:
- gcloud ai-platform models
- gcloud ai-platform versions
- gcloud ai-platform predict
- gcloud ai-platform explainLearn more about regional endpoints and see a list of available regions here:https://cloud.google.com/ai-platform/prediction/docs/regional-endpoints.

App Engine

Updatedgcloud beta app instances list andgcloud beta app instances describeto return the auto healer health check (i.e. liveness) for the flexibleenvironment.
Updated the Java SDK to version 1.9.84.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Assured Workloads

Change--next-rotation-time and--rotation-period flags ofgcloudassured workloads create to be optional.
Add--provisioned-resources-parent flag togcloud assured workloadscreate command.

BigQuery

Added schema to jobs.query dry run reply.
Supportedbq partition command for HOUR/MONTH/YEAR time partitioning types.
Supported Avro logical types for creating new external tables.
AddedPARQUET as option for export type. This feature is still experimental.

Cloud Asset Inventory

Addedgcloud asset bulk-export command to beta which enables the user to export GCPresource configurations in Kubernetes Resource Model or Terraform formats.

Cloud Billing

Promotedgcloud billing budgets to GA.
- Renamedall-updates-rule-* flags asnotifications-rule-* flags in GA.

Cloud Build

Added flag--no-external-ip togcloud beta builds worker-pools<create|update> commands.

Cloud Composer

Added--kms-key-name flag togcloud beta composer environments command tospecify the Customer-managed KMS key name to use for encrypting the Composerenvironment.

Cloud DNS

Fixed issue wheregcloud dns managed-zones update could not remove labels.This issue can be tracked athttps://issuetracker.google.com/issues/171509626.

Cloud Dataproc

Added--max-failures-total flag togcloud dataproc jobs submitto allow jobs to be restarted in event of a failure during job execution.

Cloud Filestore

Removed deprecation warning of--location flag from thegcloud filestore command group.
Addedgcloud filestore operations cancel to cancel a Filestore operation.

Cloud Functions

Fixed issue wheregcloud functions deploy would crash with an AttributeErrorwhen provided invalid YAML data. This issue can be tracked athttps://issuetracker.google.com/issues/173043502.

Cloud Key Management Service

Added client-side request and response integrity verification togcloud kmsencrypt,gcloud kms decrypt,gcloud kms asymmetric-sign,gcloud kmsasymmetric-decrypt in beta.For more information about Cloud KMS's integrity verification API, visithttps://cloud.google.com/kms/docs/data-integrity-guidelines.
Added--skip-integrity-verification flag togcloud kms encrypt,gcloudkms decrypt,gcloud kms asymmetric-sign,gcloud kms asymmetric-decryptin beta.

Cloud Logging

Promoted the following commands that support Logs Buckets and Logs Views to beta:
- gcloud logging buckets
- gcloud logging sinks
- gcloud logging read
- gcloud logging locations
- gcloud logging cmek-settingsLogs Buckets are GA, while Logs Views and Regionalized Logs Buckets are in Preview.
Promoted--use-partitioned-tables ofgcloud logging sinks to beta.BigQuery sinks with partitioned tables are GA.

Cloud Memorystore

Added--transit-encryption-mode flag togcloud beta redis instances createto allow enabling Redis TLS with server authentication whencreating a new instance.

Cloud Source Repositories

Fixed issue wheregcloud source repos clone installed its credentialhelper for all URLs instead of only for Cloud Source Repositories URLs.This issue can be tracked athttps://issuetracker.google.com/issues/173139520.

Cloud Spanner

Added--strong and--read-timestamp flags togcloud spanner databases execute-sql to give more control over the timestampof a read-only query.
Added throttling state to the output ofgcloud spanner operations list.

Compute Engine

Promoted the following flags ingcloud compute instance-groups managedset-autoscaling to GA:
- --stackdriver-metric-single-instance-assignment
- --stackdriver-metric-utilization-target-type
- --stackdriver-metric-utilization-target
- --stackdriver-metric-filter
- --update-stackdriver-metric
- --remove-stackdriver-metricFor more information see<https://cloud.google.com/compute/docs/autoscaler/scaling-stackdriver-monitoring-metrics#per_group_metrics>.
Promoted--distribution-target-shape flag ingcloud compute instance-groups managed create command to beta.
Promoted--distribution-target-shape flag ingcloud compute instance-groups managed update command to beta.
Promoted--network,--subnetwork, and--private-network-ip flags ofgcloud compute instances network-interfaces update to GA.
Promoted--enable-endpoint-independent-mapping flag ofcompute routers nats create andcompute routers nats update to GA.
Promoted the following flags ingcloud compute instance-groups managedset-autoscaling to Beta:
- --set-schedule
- --schedule-cron
- --schedule-duration-sec
- --schedule-min-required-replicas
- --schedule-time-zone
- --schedule-description
Promoted the following flags ingcloud compute instance-groups managedupdate-autoscaling to Beta:
- --set-schedule
- --remove-schedule
- --enable-schedule
- --disable-schedule
- --update-schedule
- --schedule-cron
- --schedule-duration-sec
- --schedule-min-required-replicas
- --schedule-time-zone
- --schedule-description
Promoted--[no-]enable-logging flag ofgcloud compute health-checkscommand group to GA.
Promotedgcloud compute instance-groups managed describe-instance to GA.
Extendedgcloud beta compute target-tcp-proxies create command with--proxy-bind flag.
Allow--target-tcp-proxy forgcloud beta compute forwarding-rulescreate andset-targetwith specified-load-balancing-scheme=INTERNAL_SELF_MANAGED.
Promoted--no-address flag ingcloud beta compute instances import command to GA.

Config Connector

Updated Google Cloud Config Connector to version 1.32.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Dataproc Metastore

Addedgcloud metastore services export gcs which exports metadatafrom a Dataproc Metastore service.
Removed--maintenance-window-day-of-week and--maintenance-window-hour-of-day. Use--maintenance-window-day and--maintenance-window-hour instead.
Fixed issue where--maintenance-window-day-of-week and--maintenance-window-hour-of-day flags were not both required ingcloudmetastore services update.
Promotedgcloud metastore services to beta.
Promotedgcloud metastore imports to beta.
Promotedgcloud metastore operations to beta.
Promotedgcloud metastore locations to beta.

Events

Added URI support to--target-service ofgcloud events triggers create.
Updatedgcloud beta events init to set the rolesmonitoring.metricWriterandcloudtrace.agent for the data plane service account.

GKE Hub

Promotedgcloud container hub memberships get-credentials to beta.

Kubernetes Engine

Promoted--private-ipv6-google-access-type to GA.
Fixed behavior of--no-enable-stackdriver-kubernetes flag ofgcloud container clusters update command group.
Updates default kubectl from 1.16 to 1.17.
Additional kubectl versions:
- kubectl.1.15 (1.15.12)
- kubectl.1.16 (1.16.15)
- kubectl.1.17 (1.17.14)
- kubectl.1.18 (1.18.12)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

319.0.0 (2020-11-17)

Breaking Changes

(Secret Manager) Modifiedgcloud secrets commands to send action taken (e.g.Created secret [my-secret].) to stderr instead of stdout.

Assured Workloads

Add--provisioned-resources-parent flag togcloud assured workloadscreate command.

Cloud Asset Inventory

Added new content typeos-inventory togcloud asset export andgcloud asset get-history.

Cloud Healthcare

Promotedgcloud healthcare hl7v2-stores export to beta.

Cloud Pub/Sub

Promoted--message-filter flag ofgcloud pubsub subscriptions create toGA. This feature allows users to specify a filter expression on a CloudPub/Sub subscription which will automatically drop messages.

Cloud Resource Manager

Updated the following commands to accept a domain name (e.g. "example.com")for organization in addition to the ID (e.g. 1234567890):
- gcloud organizations describe
- gcloud organizations get-iam-policy
- gcloud organizations set-iam-policy

Cloud SQL

Added following flags togcloud sql instances <create|patch>:
- --retained-backups-count
- --retained-transaction-log-days

Cloud Storage

Updated gsutil component to 4.55.

Compute Engine

Promoted--filter-direction flag ingcloud compute packet-mirrorings create/update commands to beta and GA.

Config Connector

Updated Google Cloud Config Connector to version 1.30.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Identity Groups

Updated--organization flag forgcloud identity groups create andgcloud identity groups search to accept domain names (e.g. example.com) inaddition to organization IDs (e.g. 1234567890).

Kubernetes Engine

Addedpd-balanced disk type to--disk-type ofgcloud container command group.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

318.0.0 (2020-11-10)

AI

Updated--min-replica-count ingcloud beta ai endpoints deploy-model to bea non-required flag.
Added--enable-access-logging,--enable-container-logging, and--service-account flags togcloud beta ai endpoints deploy-model.

App Engine

Updated the Java SDK to version 1.9.83.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.
Promotedgcloud app services update to GA.

App Engine Flexible Environment

Promotedgcloud app services update to GA.

Artifact Registry

Added--show-occurrences flag togcloud artifacts docker images list command that enables showing metadata from Container Analysis API.

Cloud SQL

Added following flags ofgcloud sql instances create andgcloud sql instances update to GA:
- --insights-config-query-insights-enabled
- --insights-config-query-string-length
- --insights-config-record-application-tags
- --insights-config-record-client-address

Compute Engine

Added--chain-name to flaggcloud compute disks snapshot.
AddedPRIVATE_SERVICE_CONNECT as a global address purpose togcloud beta compute forwarding-rules create.
Added--target-google-apis-bundle togcloud beta compute forwarding-rules create.
Added--no-address flag togcloud beta compute instances import.

Kpt

Updated kpt from v0.35.0 to v0.36.1.
Updated import of cli-utils from v0.21.0 to v0.20.6.
Updated import of kyaml from v0.9.2 to v0.9.3.
Updated import of cmd/config from v0.8.3 to v0.8.4.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

317.0.0 (2020-11-03)

Breaking Changes

(App Engine Flexible Environment) Modified deployment prerequisites such thatapp.yaml is now required for alldeployments and can no longer be added to.gcloudignore list.

AI

Addedgcloud beta ai endpoints explain to send explanation requests to AIPlatform endpoints.

Artifact Registry

Updated Maven print-settings with service account key to use preemptive for HEAD requests.
Promotedgcloud artifacts command group to GA.

Cloud Asset Inventory

Promoted Cloud assets analysis commandsgcloud asset analyze-iam-policy andgcloud asset analyze-iam-policy-longrunning to GA.

Cloud Billing

Promotedgcloud billing budgets to beta.

Cloud Build

Added the flag--pack to the commandgcloud builds submit.

Cloud Functions

Promotedbuild-env-vars flags ofgcloud functions to GA.

Cloud IAM

Updatedgcloud iam service-accounts keys list to remove the non-functional--uri flag.

Cloud Run

Addedgcloud run regions list command to list supported Cloud Run (fullymanaged) regions.

Compute Engine

Enabled Patch support for target-http-proxies import command in GA.

Eventarc

Addedgcloud beta eventarc which manages Eventarc resources.

Firebase Test Lab

Promoted--testing-special-entitlements flag ofgcloud firebase test ios run to GA.
Increased the maximum number of test shards from 250 to 500 when using Android virtual devices.

Identity and Access Management

Addedgcloud beta iam workload-identity-pools create-cred-config to createa credential config file that can grant non-Google Cloud workloads access toGoogle Cloud resources, without using a service account key.

Kubernetes Engine

Added--ephemeral-storage togcloud beta container clusters create andgcloud beta container node-pools create. This flag is used to configure nodes' ephemeral storage to be backed by local SSDs.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

316.0.0 (2020-10-27)

Breaking Changes

(Cloud Spanner) Modifiedgcloud spanner operations list to disallow--database or--backup flags used in combination with--type=INSTANCE.
(Vmware Engine) Renamedgcloud config vmware/location togcloud config vmware/region.

AI

Addedgcloud beta ai hp-tuning-jobs stream-logs which provides the ability to stream logs of hyperparameter tuning jobs in AI Platform.

AI Platform

Added--service-account togcloud beta ai-platform jobs submit trainingto allow specifying a service account to use when running the training appplication for a training job.
Updated--region flag ofgcloud ai-platform command to include new CAIPregions.

App Engine

Updated the Go SDK to version 1.9.72.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes.

Artifact Registry

Disallowed creating CMEK-enabled repositories if Artifact Registry service account is not granted sufficient permissions.
Added a new commandgcloud beta artifacts docker images describe that shows information of a docker image and optionally the metadata of the image from Container Analysis API.
Commandgcloud beta artifacts docker images list will now show metadata of images from Container Analysis API as well.

Cloud Access Context Manager

Promotedgcloud access-context-manager cloud-bindings to GA.

Cloud Build

Updatedcloud-build-local to version 0.5.2. This version allowscloud-build-local to execute without a GCP account, providing a warningrather than an error.

Cloud SQL

Promoted Postgres 13 to GA.

Cloud Shell

Promotedgcloud cloud-shell command group to GA.

Cloud Storage

Updated gsutil component to 4.54.

Cloud Workflows

Addedgcloud workflows executions describe-last to beta which describes the last executed workflow execution that has been cached locally.
Addedgcloud workflows executions wait-last to beta which waits for the last cached workflow execution to complete.
Addedgcloud workflows run to beta which executes a workflow and waits for it to complete.

Compute Engine

Promoted--mtu flag to beta and GA forgcloud compute networks<create|update>.
Promotedgcloud compute instances set-name command to beta.
Promotedscope option for--disk flag forgcloud compute instances create to GA.
Fixed incorrect error message forgcloud compute target-http-proxies.
Added--user-licenses flag to disk create and update command for alpha.' when the resource already exists.
Addedgcloud beta compute snapshots create command. It allows to createsnapshots of disks.
Added--[no-]negative-caching and--[no-]negative-caching-policy togcloud beta compute backend-services create,gcloud beta compute backend-services update,gcloud beta compute backend-buckets create andgcloud beta compute backend-buckets update.
AddedcdnPolicy.negativeCaching andcdnPolicy.negativeCachingPolicy togcloud beta compute backend-services import andgcloud beta compute backend-services export.
Promoted HTTP Filter related resource properties to beta for:
- gcloud compute target-http-proxies import
- gcloud compute target-http-proxies export
- gcloud compute target-https-proxies import
- gcloud compute target-https-proxies export
- gcloud compute url-maps import
- gcloud compute url-maps export

Config Connector

Added Google Cloud Config Connector v1.26.0.See Config Connector Overview for more detailshttps://cloud.google.com/config-connector/docs/overview.

Events

Updatedgcloud beta events triggers create to reference theserving.knative.dev/v1 APIVersion in the subscriber reference of createdtriggers.

Firebase Test Lab

Promoted--testing-special-entitlements flag ofgcloud firebase test iosrun to GA.

Kpt

Updated kpt from v0.34.0 to v0.35.0.
Updated import of cli-utils from v0.20.1 to v0.20.6.
Updated import of kyaml from v0.8.0 to v0.9.2.
Updated import of cmd/config from v0.8.0 to v0.8.3.

Kubernetes Engine

Added--release-channel=None option togcloud container clusters create. This option is used to explicitly opt-out of release channels.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

315.0.0 (2020-10-20)

AI

Addedgcloud beta ai custom-jobs stream-logs which provides ability to stream logs of custom jobs in AI Platform.
Fixed a bug where config.yaml was parsed incorrectly for commandgcloud ai custom-jobs createin AI Platform.

Artifact Registry

Removed GCR repositories fromartifacts repositories list result.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.9
- Fix handling of!= andnot-in operators.

Compute Engine

Added sles-12, sles-sap-12, sles-sap-12-byol, sles-15, sles-sap-15, andsles-sap-15-byol options to--os flag forgcloud compute images importin GA,gcloud compute instances import in GA, andgcloud compute machine-images import in beta.
Promoted--disable-default-snat flag forgcloud container clustersupdate command to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

314.0.0 (2020-10-13)

Breaking Changes

(Cloud Build)cloud-build-local is no longer supported on 32-bit MacOS. The executablehas been deleted from this release. The prior release, v0.5.0 included a32-bit MacOS executable that may continue to work for some users.

Apigee

Addedapigee surface to GA which provides access to Apigee Hybrid.
Addedapigee organizations command group which provides access to Apigeeorganizations.
Addedapigee apis command group which allows management and deploymentof Apigee API proxies.
Addedapigee environments command group which provides access to Apigeeenvironments.
Addedapigee deployments command group which provides access to ApigeeAPI proxy deployments.
Addedapigee product command group which allows creation and management ofApigee API products.
Addedapigee developer command group which provides access to Apigeedevelopers.
Addedapigee applications command group which provides access to Apigeedeveloper applications.

BigQuery

Fixed 'TableSnapshot with expiration' issue.

Certificate Authority Service

Addedgcloud beta privateca certificates export command which simplifiesthe process of writing a PEM certificate to a file.

Cloud Build

Updatedcloud-build-local component to version v.0.5.1. This fixes anissue identified inhttps://github.com/GoogleCloudPlatform/cloud-build-local/releases/tag/v0.5.1.
Fixed issue wheregcloud builds submit would not transfer symbolic linkscorrectly to the build.

Cloud Dataproc

Removed prompt fromgcloud dataproc clusters stop andgcloud dataproc clusters start. The commands now run without requiringconfirmation.

Cloud Domains

Promotedgcloud domains registrations to beta. Enables the registering and managing of domains.

Cloud Run

Promoted--vpc-egress flag ofgcloud run deploy andgcloud run services update to beta.

Cloud Shell

Removed--boosted flag. An upgraded VM type is available by default.

Firebase Test Lab

Added--other-files flag togcloud beta firebase test ios run. This flaglets you specify files that are pushed onto the iOS test device prior totesting.
Added--directories-to-pull flag togcloud beta firebase test ios run.This flag lets you specify directories on the device that are pulled aftertesting and included in the test results.

Identity Groups

Promotedgcloud identity groups update to GA.

Identity Groups Memberships

Promotedgcloud identity groups memberships add to GA.
Promotedgcloud identity groups memberships modify-membership-roles to GA.

Notebooks

Fixed CMEK support and add PD_BALANCED disk support.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

313.0.1 (2020-10-07)

Cloud Dataflow

Fixed bug withgcloud dataflow flex-template build.

313.0.0 (2020-10-06)

Anthos

Fixed issue where v2alpha1 Login-Config could not be read from URL ingcloud anthos auth login command.

Artifact Registry

Addedgcloud beta artifacts repositories update to enable changing thedescription and labels on an existing repository.

Certificate Authority Service

Addedgcloud beta privateca command group which enables creating andmanaging private certificate authorities and certificates. For moreinformation, see<https://cloud.google.com/certificate-authority-service/>.

Cloud API Gateway

Addedgcloud api-gateway to beta, which adds commands for managing APIs, APIConfigs, and the Gateways that serve those APIs.

Cloud Build

Statically linkedcloud-build-local component. For more information, seehttps://issuetracker.google.com/issues/166758582.

Cloud Data Catalog

Promotedgcloud data-catalog taxonomies to GA release track.

Cloud Dataflow

Added runtime environment parameters support ingcloud dataflow flex-template run.

Cloud Memorystore

Added--enable-auth flag togcloud beta redis instances create to allowenabling Redis AUTH when creating a new instance.

Added--[no-]enable-auth flag togcloud beta redis instances update to allowenabling and disabling Redis AUTH when updating an instance.

Addedgcloud beta redis instances get-auth-string command to allow viewing theAUTH string for an instance.

Cloud Pub/Sub

Promotedgcloud pubsub lite-topics andgcloud pubsub lite-subscriptions to GA. For more information about Pub/Sub Lite, seehttps://cloud.google.com/pubsub/lite/docs.

Cloud Run

Promoted--min-instances flag ofgcloud run deploy andgcloud run services update to beta for--platform=managed.

Cloud SQL

Promoted server-level--deny-maintenance-period-start-date,--deny-maintenance-period-end-date,--deny-maintenance-period-time and--remove-deny-maintenance-period flags ofgcloud sql instances create/patchto GA.

Cloud Services

Promotedgcloud services peered-dns-domains <create|delete|list> to beta.

Compute Engine

Promoted--mtu flag to beta and GA forgcloud compute networks<create|update>.
Promotedgcloud compute instances set-name command to beta.
Promotedscope option for--disk flag forgcloud compute instances create to GA.
Fixes incorrect error message for 'gcloud compute target-http-proxies' when the resource already exists.

Config And Policy Automation

Addedpkg as a gcloud component.pkg installs a group ofKubernetes Resource Model (KRM) package management tools including:kustomize,kpt,appctl andnomos.

Firebase Test Lab

Added--other-files flag togcloud beta firebase test ios run. This flaglets you specify files that are pushed onto the iOS test device prior totesting.

Identity Groups

Promotedgcloud identity groups create to GA.
Promotedgcloud identity groups search to GA.

Identity Groups Memberships

Promotedgcloud identity groups memberships describe to GA.

Identity and Access Management

Addedgcloud beta iam workload-identity-pools which enables you to granton-premises or multi-cloud workloads access to Google Cloud resources,without using a service account key.

Pubsub Emulator

Increased server gRPC max message size to 10 MB with some buffer. Allows forpublishing 10 MB messages.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Cloud SDK introduced support for Python 3 in release 274.0.0 and users are strongly encouraged to migrate to Python 3. Support for Python 2 will be deprecated on September 30, 2020. See also Python 2 Sunset andUsing Python 3.

312.0.0 (2020-09-29)

Breaking Changes

(Stackdriver Debugger) Removedgcloud beta debug source upload command.

Cloud SDK

Modified the--billing-project flag andbilling/quota_project propertyto accept service accounts when specifying a Google Cloud project forbilling and quota purposes.

AI

Addedgcloud ai surface to beta which provides access to manage entities in AI Platform.
Addedgcloud ai custom-jobs command group which provides access to custom jobs in AI Platform.
Addedgcloud ai hp-tuning-jobs command group which provides access to hyperparameter tuning jobs in AI Platform.
Addedgcloud ai endpoints command group which provides access to endpoints in AI Platform.
Addedgcloud ai models command group which provides access to models in AI Platform.

Artifact Registry

Added--labels flag togcloud beta artifacts repositories create toallow labels to be added to a repository during creation.

Assured Workloads

Removed option limitations for--location flag ofgcloud assuredworkloads create.

BigQuery

Fixed 'RedirectMissingLocation' issue.

Cloud Asset Inventory

Added--partition-key and--per-asset-type flags togcloud asset export to support partitioned per-type BigQuery export.
Removedgcloud alpha asset analyze-iam-policy. Please usegcloud beta assetanalyzer-iam-policy instead.

Cloud Billing

Addedgcloud beta billing accounts add-iam-policy-binding andgcloud betabilling accounts remove-iam-policy-binding commands to manage IAM policybindings on a Cloud Billing account.

Cloud Dataflow

Modifiedgcloud dataflow sql query to allow "project.dataset.table" and "dataset.table" formats for--bigquery-table argument.

Cloud Dataproc

Added--node-group flag togcloud dataproc clusters createto allow clusters to be created on a Compute Engine sole-tenant node group.
Added--node-group flag togcloud dataprocworkflow-templates set-managed-cluster to allow managed clusters to becreated on a Compute Engine sole-tenant node group.

Cloud Healthcare

Promotedgcloud healthcare consent-stores to beta.

Cloud Pub/Sub

Promoted--enable-message-ordering flag ofgcloud pubsub subscriptionscreate and--ordering-key flag ofgcloud pubsub topics publish to GA.

Cloud Workflows

Addedgcloud beta workflows executions wait which allows the user to wait for a workflow execution to complete.

Compute Engine

Modifiedgcloud compute os-login to use the currentgcloud project forquota by default. See help forbilling/quota_project property or--billing-project flag for more details on how to control this behavior.
Added ubuntu-2004 option of--os flag forgcloud compute images import in GA,gcloud compute instances import in GA, andgcloud compute machine-images import in beta.
Promoted--service-proxy and--service-proxy-labels flags to GA forgcloud compute instance-templates create.

Events

Allow non-default brokers forevents brokers create command.
Added brokers describe/list/delete commands.

GKE Hub

Promotedgcloud container hub memberships <register|unregister> commands to beta. Modified command to unsupport manage-workload-identity-bucket flag.

Identity Groups

Promotedgcloud identity groups describe to GA.

Identity Groups Memberships

Added--update-roles-params togcloud beta identity groups memberships modify-membership-roles.
Promotedgcloud identity groups memberships delete to GA.
Promotedgcloud identity groups memberships list to GA.

Kubernetes Engine

Promoted--validate flag ofgcloud container binauthz attestationscreate andgcloud container binauthz attestations sign-and-create to GAand beta, respectively.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

311.0.0 (2020-09-22)

Breaking Changes

(Assured Workloads) Updatedgcloud assured workloads list andgcloud assured operations listcommands to use separate flags for organization and location.

App Engine

Addedgcloud beta app services update to allow management of incomingtraffic to an app on a per-service basis.
Promoted--no-cache flag ofgcloud app deploy to GA. This flag disablesthe build cache when deploying an app.
Added a warning that<application> or<version> elementswithin appengine-web.xml are not respected.
Modified the behavior ofgcloud app deploy with--promote.Previously, attempting to deploy and promote a version that was alreadydeployed, but stopped, would result in an error. Now a stopped version will bestarted before it is promoted.

App Engine Flexible Environment

Addedgcloud beta app services update to allow management of incomingtraffic to an app on a per-service basis.
Promoted--no-cache flag ofgcloud app deploy to GA. This flag disablesthe build cache when deploying an app.
Modified the behavior ofgcloud app deploy with--promote.Previously, attempting to deploy and promote a version that was alreadydeployed, but stopped, would result in an error. Now a stopped version will bestarted before it is promoted.

Assured Workloads

Added multiple input format support to resource arguments for the followingcommands:gcloud assured workloads describe,gcloud assured workloadsdelete,gcloud assured workloads update, andgcloud assured operationsdescribe.

Cloud Dataproc

Added--private-ipv6-google-access-type flag togcloud dataproc clusterscreate andgcloud dataproc workflow-templates set-managed-cluster toallow users to configure the private IPv6 Google access type for thecluster.

Cloud Resource Manager

Addedgcloud folders get-ancestors-iam-policy for retrieving IAM policies for a given folder and its ancestors.

Identity Groups

Promotedgcloud identity to GA.
Promotedgcloud identity groups delete to GA.

Kpt

Updated kpt from v0.33.0 to v0.34.0.
Updated import of cli-utils from v0.18.1 to v0.20.1.
Updated import of kyaml from v0.6.0 to v0.8.0.
Updated import of cmd/config from v0.6.0 to v0.8.0.

Secret Manager

Promotedgcloud secrets replication command group to beta.
Added--replication-policy-file flag togcloud beta secrets createcommand to specify replication policy using a JSON or YAML file.
Added--kms-key-name flag togcloud beta secrets createcommand to specify a KMS key when creating an automatic secret.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

310.0.0 (2020-09-15)

Assured Workloads

Added confirmation text togcloud assured workloads delete command.

Cloud IAM

Changed default format forgcloud iam service-accounts list to refer tothe display name of the service account as "DISPLAY NAME" instead of "NAME".

Cloud Resource Manager

Added a commandgcloud projects get-ancestors-iam-policy for retrieving IAM policies for a given project and its ancestors.

Cloud Run

Added support for--format togcloud run deploy,gcloud run servicesupdate, andgcloud run replace.

Compute Engine

Promoted--disk flag ofgcloud compute sole-tenancy node-templates createto beta.
Added--accelerator flag ofgcloud compute sole-tenancy node-templates createto beta.

Events

Addedgcloud events command group to beta to allow the configuration of event-based triggers on Cloud Run for Anthos services..

Kubernetes Engine

Added--cloud-run-config togcloud container clusters create andgcloud container clusters update. This flag is used to enable internal load balancer for Cloud Run cluster.
Enabled auto repair by default on UBUNTU and UBUNTU_CONTAINERD image.
Added--enable-gke-oidc togcloud container clusters create andgcloud container clusters update. This flag is used to enable the GKE OIDC component for authentication using OIDC.
Added new fields to specify disk type and size configuration, shieldedinstance settings, and customer-managed encryption keys when using--autoprovisioning-config-file withgcloud container clusters create andgcloud container clusters update.
Promoted--autoprovisioning-min-cpu-platform flag ofgcloud container clusters create andgcloud container clusters update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

309.0.0 (2020-09-08)

Assured Workloads

Addedgcloud assured command group to beta. Commands in this group providethe ability to read and modify Assured data controls.
Addedgcloud assured workloads command group to beta. Commands in thisgroup allow you to manage Assured Workloads environment resources.
Addedgcloud assured operations command group to beta. Commands in thisgroup allow you to view Assured Workloads operation resources.

Cloud API Gateway

Promotedgcloud api-gateway to beta.
- Modifiedgcloud api-gateway api-configs create. Removed--grpc-filestemporarily since Cloud API Gateway does not support gRPC.
- Modifiedgcloud apis create. Added the optional--managed-service flagto specify a pre-existing Google Managed Service.

Cloud Firestore

Promotedgcloud firestore databases to beta and GA.
Promotedgcloud datastore databases to beta and GA.

Cloud SQL

Updatedcloud_sql_proxy component to version 1.17.0. Please visit thefollowing release notes for details:https://github.com/GoogleCloudPlatform/cloudsql-proxy/releases.
Added support for offloading export operations.

Compute Engine

Added the following flags togcloud beta compute backend-services create,gcloud beta compute backend-services update,gcloud beta compute backend-buckets create andgcloud beta compute backend-buckets update:
- --cache-mode
- --[no-]client-ttl
- --[no-]default-ttl
- --[no-]max-ttl
- --[no-]negative-caching
- --[no-]negative-caching-policy
- --[no-]custom-response-header
Added the following fields togcloud beta compute backend-services import andgcloud beta compute backend-services export:
- customResponseHeader
- cdnPolicy:
- cacheMode
- clientTtl
- defaultTtl
- maxTtl
- negativeCaching
- negativeCachingPolicy

Kubernetes Engine

Added--notification-config togcloud <alpha|beta> container clusters<create|update>. This flag is used to enable notifications on a cluster.Currently Pub/Sub notifications are supported.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

308.0.0 (2020-09-01)

BigQuery

Added 'creationTime', 'updateTime' columns for creating reservation.
Added 'ignore_idle_slots' flag for managing reservations idle slots behavior.
Supported table snapshot and restoration operation.
Added manual instruction for Azure connection setup.
Removed requirements of specifying destination table and target dataset if the scheduling query using DML or DDL with commandbq query --schedule.

Cloud Data Catalog

Implemented the following commands forgcloud data-catalog taxonomies andgcloud data-catalog taxonomies policy-tags in beta.
- list
- describe
- get-iam-policy
- set-iam-policy
- add-iam-policy-bindings
- remove-iam-policy-bindings
Implementedexport command forgcloud data-catalog taxonomies in beta.
Implementedimport command forgcloud data-catalog taxonomies in beta.

Cloud Dataproc

Added--enable-kerberos flag togcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster to allow users toenable Kerberos directly without specifying--kerberos-root-principal-password-urior--kerberos-kms-key-uri.

Cloud Firestore

Promotedgcloud filestore backups to beta.
Addedgcloud beta filestore instances restore to enable restoring a CloudFilestore instance from a backup.
Promoted--source-backup and--source-backup-region flags to beta tospecify backup details; these flags should be used in conjunction with--file-share flag.

Cloud Healthcare

Promotedgcloud healthcare hl7v2-stores import to beta.

Cloud Run

Fixed issue when updating labels on a cluster with private visibility failed.
Added service endpoint visibility togcloud run services describe outputfor services deployed with--platform=gke or--platform=kubernetes.Cluster-local services showIngress: internal. Services that are notcluster-local showIngress: all. Use--connectivity flag ofgcloud run deploy orgcloud run services update to update service endpointvisibility.

Cloud Shell

Promotedgcloud cloud-shell command group to beta.

Compute Engine

Promotedcompute instances get-screenshot to GA.

Notebooks

Addedgcloud beta notebooks instances upgrade to upgrade Notebooks instance.
Addedgcloud beta notebooks instances is-upgradeable to verify if Notebooks instance can be upgraded to a newer image.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

307.0.0 (2020-08-25)

App Engine

Updated the Java SDK to version 1.9.82.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Dataflow

Promotedgcloud dataflow flex-template build to GA.Promotedgcloud dataflow flex-template run to GA.

Cloud Run

Changed the generation of revision names. If the generated revision nameis longer than the knative resource name length limit (63 characters), shortenthe part of the service name used as a prefix until the revision name is nolonger than the maximum knative resource name.

Cloud SQL

Promoted MySQL 8 to GA.

Cloud Security Command Center

Promotedgcloud scc notifications command group to beta and GA.
Promotegcloud scc [operations|sources|findings] to beta and GA.

Cloud Storage

Updated gsutil component to 4.53.

Compute Engine

Promoted 'SHARED_LOADBALANCER_VIP' option of--purpose flag ofgcloud compute addresses create to GA.
Promoted--logging-metadata flag to GA for
- gcloud compute firewall-rules create
- gcloud compute firewall-rules update.
Promoted--network,--subnetwork, and--private-network-ip flags ofgcloud compute instances network-interfaces update to beta.

Firebase Test Lab

Added--additional-ipas flag togcloud beta firebase test ios run. Thisflag allows you to specify additional iOS apps that should be installed onthe device prior to testing.

Kpt

Updated kpt from v0.30.1 to v0.33.0.
Updated import of cli-utils from v0.15.0 to v0.18.1.
Updated import of kyaml from v0.3.1 to v0.6.0.
Updated import of cmd/config from v0.3.0 to v0.6.0.

Kubernetes Engine

Promoted--enable-master-global-access flag ofgcloud container clusters<create|update> to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

306.0.0 (2020-08-18)

BigQuery

Fixed issue wherels --reservation command randomly failed with internal error.
Addedadd-iam-policy-binding andremove-iam-policy-binding commands, with support for modifying IAM policies for tables and views.

Cloud Dataproc

Added--dataproc-metastore flag togcloud beta dataproc clusters createto allow clusters to be created with a Dataproc Metastore service.
Added--dataproc-metastore flag togcloud beta dataprocworkflow-templates set-managed-cluster to allow managed clusters to becreated with a Dataproc Metastore service.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.7
- Includes latest features and improvements from production.

Cloud Key Management Service

Addedgcloud beta kms keys versions get-certificate-chain to retrieveHSM attestation certificate chains.

Cloud Pub/Sub

Promotedgcloud pubsub topics detach-subscription to GA.

Cloud Resource Manager

Fixed issue wheregcloud resource-manager org-policies <allow|deny> gave an error when a restore default policy exists.

Cloud Security Command Center

Promotedgcloud scc notifications command group to beta and GA.

Cloud TPU

Added--use-service-networking flag togcloud beta compute tpus create.

Compute Engine

Addedgcloud beta compute os-config os-upgrade to enable major OS version updates on support distributions.
Promoted--condition flag to GA for
- gcloud compute instances add-iam-policy-binding
- gcloud compute instances remove-iam-policy-binding.
Promoted Regional Network Endpoint Groups to GA.
Promoted Hybrid Network Endpoint Groups to GA.
Promotedgcloud compute commitments create-license to beta and GA.
Promoted the following commands to GA:
- gcloud compute instance-groups managed instance-configs create
- gcloud compute instance-groups managed instance-configs update
- gcloud compute instance-groups managed instance-configs list
- gcloud compute instance-groups managed instance-configs delete
Promoted--stateful-disk and--stateful-metadata forgcloud compute instance-groups managed create-instance to GA.
Added--network flag togcloud beta compute target-instances create.

Game Servers

Promotedgcloud game servers to GA.

Notebooks

Addedn1-standard-1 as the default for notebook instances.
Addeddeeplearning-platform as the default for notebook instance project and environment project.

Secret Manager

Updatedgcloud secrets versions access command to redact the output from logs produced by the gcloud command-line tool. For more information, seehttps://cloud.google.com/secret-manager/docs/creating-and-accessing-secrets#secretmanager-access-secret-version-cli.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

305.0.0 (2020-08-11)

Artifact Registry

Added--json-key flag togcloud beta artifacts print-settings.
Added bearer auth for npm support togcloud beta artifacts print-settings.

Cloud Build

Added the flag--worker-pool to the commandgcloud builds submit.

Cloud Dataflow

Added flex template docker container building support in build commandgcloud beta dataflow flex-template build.

Cloud Pub/Sub

Replaced--scale ingcloud beta pubsub lite-topics create andgcloud betapubsub lite-topics update with--per-partition-publish-mib and--per-partition-subscribe-mib flags.

Cloud Run

Added--image flag togcloud run services update command in beta and GAto support updating container image.

Cloud Security Command Center

Promotedgcloud scc assets command group to beta and GA.

Compute Engine

Promotedcpu-overcommit-type flag ofgcloud beta compute sole-tenancy node-templates create to GA.
Promoted--stateful-disk flag forgcloud compute instance-groups managed create to GA.
Promoted--stateful-disk,--remove-stateful-disk flags forgcloud compute instance-groups managed update to GA.
Promoted--scale-in-control flag ofgcloud compute instance-groups managed set-autoscaling to GA.
Promoted--scale-in-control and--clear-scale-in-control flags ofgcloud compute instance-groups managed update-autoscaling to GA.

Deployment Manager

Added--custom-certificate-authority-roots flag togclouddeployment-manager type-providers <create|update>.

Kubernetes Engine

Promoted the GKE add-onConfigConnector ofgcloud container clusters<create|update> to GA. This add-on is disabled by default.
- Use--addons=ConfigConnector to enable the add-on during clustercreation.
- Use--update-addons=ConfigConnector=ENABLED|DISABLED toenable/disable the add-on for existing GKE clusters.
Updates default kubectl from 1.15 to 1.16.
Additional kubectl versions:
- kubectl.1.14 (1.14.10)
- kubectl.1.15 (1.15.12)
- kubectl.1.16 (1.16.13)
- kubectl.1.17 (1.17.9)
- kubectl.1.18 (1.18.6)
Promoted--disable-default-snat flag ofgcloud container clusters<create|update> to GA.
Modified GKE nodes to have serial port output logging enabled by default. To disable, use--metadata serial-port-logging-enable=false.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

Note: Cloud SDK introduced support for Python 3 in release 274.0.0 and users are strongly encouraged to migrate to Python 3. Support for Python 2 will be deprecated on July 31, 2020. See also Python 2 Sunset andUsing Python 3.

304.0.0 (2020-08-04)

Cloud Build

Modified the command groupgcloud beta builds worker-pools such that all underlying commands now use a regional Cloud Build API endpoint (instead of the global one).
Modified the command groupgcloud builds such that all underlying commands may optionally use a regional Cloud Build API endpoint (instead of the global one). This is controlled by the new flag--region, as well as the configuration of submitted builds.

Cloud Composer

Fixed a bug where an argument added tobackfill subcommand ofgcloud composer environments run fails in older Airflow versions.
Added--web-server-machine-type flag togcloud beta composer environmentscommands to specify the machine type used by the Airflow web server.

Cloud IAM

Promotedgcloud iam service-accounts keys upload to GA.

Compute Engine

Addedgcloud beta compute os-config os-upgrade to enable major OS version updates on support distributions.
Promotedgcloud compute diagnose export-logs to GA.

Firebase Test Lab

Added the commandgcloud [alpha|beta] firebase test ip-blocks list, whichretrieves a catalog of IP blocks used by Firebase Test Lab devices.

Kubernetes Engine

Added--node-group togcloud container node-pools create. This flag is used to enable the Compute Engine sole tenant node feature on Kubernetes Engine node pools.

Secret Manager

Updated the following commands to better support IAM Conditions:
- gcloud secrets get-iam-policy outputs conditions associated with each binding.
- gcloud secrets set-iam-policy accepts policies with conditional bindings.
- gcloud secrets <add|remove>-iam-policy-binding accepts conditional bindings.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

303.0.0 (2020-07-28)

AI Platform

Promoted--kms-key flag ofgcloud ai-platform jobs submit training to GA.

Cloud Bigtable

Promotedgcloud bigtable backups commands group to GA.
Promatedgcloud bigtable instances tables restore andgcloud bigtable instances tables list to GA.

Cloud Build

Added--comment-control flag option COMMENTS_ENABLED_FOR_EXTERNAL_CONTRIBUTORS_ONLY togcloud builds triggers create github in alpha and beta.

Cloud Composer

Added--cloud-sql-machine-type flag togcloud beta composer environmentscommands to specify the Cloud SQL machine type used by the Airflow database.

Cloud Data Catalog

Added--restricted-locations togcloud data-catalog search to enable regional search.

Compute Engine

Added--log-location flag togcloud compute instances import andgcloud beta compute machine-images import.
Promoted--condition flag for
- gcloud compute images add-iam-policy-binding
- gcloud compute images remove-iam-policy-bindingto GA.
Promoted--rollout-mode,--rollout-disruption-budget, and--rollout-disruption-budget-percent flags ofgcloud compute os-config patch-jobs execute to GA.
Allowed usinguser-data key in metadata withgcloud compute instances create-with-container.
Promoted--condition flag to GA for
- gcloud compute images add-iam-policy-binding
- gcloud compute images remove-iam-policy-binding
- gcloud compute snapshots add-iam-policy-binding
- gcloud compute snapshots remove-iam-policy-binding.

Kubernetes Engine

Added--identity-provider togcloud beta container clusters create andgcloud beta container clusters update. This flag is used to enable a 3P identity provider on a cluster.
Added flag--enable-dataplane-v2 togcloud <alpha|beta> container clusters create. This flag allows GKE clusters to use the new and improved datapath with additional visibility and observability features.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

302.0.0 (2020-07-21)

AI Platform

Promoted--machine-type and--accelerator flags to GA. While theseflags are GA, some machine types themselves may be in beta; for moreinformation, seehttps://cloud.google.com/ai-platform/prediction/docs/machine-types-online-prediction#available_machine_types.
Promoted--region to GA to enable regional endpoint specification;this is the preferred method for using online prediction forn1* machine types.

App Engine

Added support for directly deploying the Gradle project 'build.gradle' file.

Cloud Asset Inventory

Modifiedgcloud asset search-all-resources andgcloud asset search-all-iam-policies to apply--page-size=20 by default.

Cloud Dataproc

Added--dag-timeout flag togcloud dataproc workflow-templates create toallow timeouts to be set on Workflow jobs DAGs.
Addedgcloud dataproc workflow-templates set-dag-timeout to allow DAGtimeouts to be updated or set on existing Workflows.
Addedgcloud dataproc workflow-templates remove-dag-timeout to allow DAGtimeouts to be removed from Workflows.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.5
- Bug fix for camel case query parameters
- Add support for!= style queries

Cloud Pub/Sub

Promoted--enable-message-ordering flag ofgcloud pubsub subscriptionscreate and--ordering-key flag ofgcloud pubsub topics publish to beta.

Cloud Resource Manager

Promotedgcloud resource-manager org-policies command group to GA.

Cloud Run

Promoted--tag flag ofgcloud run deploy to beta.
Promoted--tag flag ofgcloud run services update to beta.
Promoted--to-tags,--set-tags,--update-tags,--remove-tags, and--clear-tags flags ofgcloud run services update-traffic to beta.

Cloud SQL

Promoted server-level--collation flag ofgcloud sql instances create to GA.

Cloud Storage

Updated gsutil component to 4.52.

Compute Engine

Promoted--rollout-mode,--rollout-disruption-budget, and--rollout-disruption-budget-percent flags ofgcloud compute os-config patch-jobs execute to beta.
Promotedgcloud compute health-checks <create|update> grpc commands to GA.

Firebase Test Lab

Added--grant-permissions flag togcloud beta firebase test android run. This flag allows you to specify ifruntime permissions should be granted prior to running a test.
Modified the limit for--num-uniform-shards and--test-targets-for-shardto be 250 when no physical devices are selected.

Kubernetes Engine

Added flag--private-ipv6-access-type ofgcloud container clusters create andgcloud container clusters update to beta. This flag is used to allow GKE pods to connect to Google services over a low latency, secure, IPv6 network path.
Promoted--release-channel ofgcloud container clusters create andgcloud container clusters update to GA. This flag is used to configure the cluster release channel.

Secret Manager

Updatedgcloud secrets create command to default to an automatic replication policy if a replication policy is not provided.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

301.0.0 (2020-07-14)

Cloud SDK

Prefer Python 3 for deb and rpm package installations. The Cloud SDK nowprefers Python 3 for bq, gcloud, and gsutil on all installation paths.Seegcloud topic startup for information on configuring the Pythoninterpreter used by the Cloud SDK.

Anthos

Upgradedanthos-auth component to version 1.1.2.
Added ldap support togcloud anthos auth login.

App Engine

Updated the Java SDK to version 1.9.81.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Added support for CMEK repository creation with customer managed encryption key.
Addedgcloud beta artifacts repositories describe.

Compute Engine

Promoted--description and--family flags ofgcloud compute images update to beta.
Promoted--target-grpc-proxy forgcloud compute forwarding-rules <create|set-target> to GA.
Promoted documentation for--protocol to include GRPC forgcloud compute backend-services <create|update> to GA.
Promotedgcloud compute target-grpc-proxies <create|delete|describe|list> to GA.
Addedonly-scale-outmode enum value togcloud compute instance-groups managed <set|update>-autoscaling . Theonly-scale-out value directly replaces and deprecates theonly-up value.

Kubernetes Engine

Promoted NodeLocalDNS Addon to GA. Use NodeLocalDNS addons withgcloud container clusters create andgcloud container clusters update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

300.0.0 (2020-07-08)

Breaking Changes

(Recommender) Modified headers in output ofgcloud recommender recommendations list.
- Renamed ID to RECOMMENDATION_ID and STATE to RECOMMENDATION_STATE.
(Recommender) Modified headers in output ofgcloud recommender insights list.
- Renamed ID to INSIGHT_ID and STATE to INSIGHT_STATE.

Cloud Dataproc

Added--temp-bucket flag togcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster to allow users to configure a Cloud Storage bucket that stores ephemeral cluster and jobs data, such as Spark and MapReduce history files.

Cloud SQL

Promoted--enable-point-in-time-recovery flag ofgcloud sql instances create andgcloud sql instances patch to GA.
Promoted--point-in-time flag ofgcloud sql instances clone to GA.

Compute Engine

Promoted--source-disk flag ofgcloud compute disks create to GA.

Kpt

Updated kpt from v0.24.0 to v0.30.1.
Updated import of cli-utils from v0.8.0 to v0.15.0.
Updated import of kyaml from v0.1.8 to v0.3.1.
Updated import of cmd/config from v0.1.7 to v0.3.0.

Kubernetes Engine

Added--system-config-from-file flag togcloud beta container clusterscreate,gcloud beta container node-pools create, andgcloud betacontainer node-pools update to configure kubelet and Linux configurationsettings on nodes.

Recommender

Promotedgcloud recommender insights to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

299.0.0 (2020-06-30)

Cloud SDK

Addedgcloud cheat-sheet command to display the gcloud command-line toolcheat sheet. For the full cheat sheet, refer tohttps://cloud.google.com/sdk/docs/cheatsheet.

Anthos

Addedgcloud anthos create-login-config command to GA.

Cloud Asset Inventory

Promoted Cloud assets search commandsgcloud asset search-all-resources andgcloud asset search-all-iam-policies to GA.

Cloud Data Catalog

Added possibility to rename enum values usinggcloud data-catalog tag-templates fields enum-values rename.

Cloud Dataproc

Promoted--enable-component-gateway flag ofgcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster to GA.

Cloud Run

Updated--service-account flag to accept a Kubernetes service account for--platform=gke and--platform=kubernetes.

Compute Engine

Added--interface flag togcloud beta compute disks create.
Removedinterface key from--disk key ofgcloud beta compute instances create.
Promotedgcloud compute security-policies list-preconfigured-expression-setsto GA.
Promote--condition flag to GA for the following commands:
- gcloud compute disks add-iam-policy-binding
- gcloud compute disks remove-iam-policy-binding
- gcloud compute instance-templates add-iam-policy-binding
- gcloud compute instance-templates remove-iam-policy-binding.
Added--service-proxy and '--service-proxy-labels' flags togcloud beta compute instance-templates create to populate the fields in Instance Templaterequired to automatically deploy and configure the service proxy and service-proxy-agent.
Added--chain-name flaggcloud beta compute disks snapshot.
Promoted Regional Network Endpoint Groups to beta.

Kubernetes Engine

Promoted NodeLocalDNS Addon to GA. UseNodeLocalDNS addons withgcloud container clusters create andgcloud container clusters update.

VPC Access

Added--vpc-connector flag togcloud run deploy andgcloud run services update which allows cloud run services to connect to a VPC Connector.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

298.0.0 (2020-06-23)

Breaking Changes

(Cloud Data Catalog) Removed add-enum-values flag fromgcloud data-catalog tag-templates fields update.

Cloud SDK

Changed the bq and gcloud command-line tools to prefer Python 3 forcomponent-based Cloud SDK installs on Unix. Seegcloud topic startup forinformation on configuring the Python interpreter used by the Cloud SDK.

AI Platform

Added--network flag togcloud ml-engine jobs submit training andgcloud ai-platform jobs submit training.

App Engine

Added an optional--appyaml flag to change the app.yaml file location for an application.

Cloud Data Catalog

Added enum-values flag ingcloud data-catalog tag-templates fields update.

Compute Engine

Promote--condition flag for
- gcloud compute disks add-iam-policy-binding
- gcloud compute disks remove-iam-policy-bindingto GA.
Promote--condition flag for
- gcloud compute reservations add-iam-policy-binding
- gcloud compute reservations remove-iam-policy-bindingto GA.

Secret Manager

Updated the following beta commands to better support IAM Conditions:
- gcloud beta secrets get-iam-policy outputs conditions associated with each binding.
- gcloud beta secrets set-iam-policy accepts policies with conditional bindings.
- gcloud beta secrets <add|remove>-iam-policy-binding accepts conditional bindings.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

297.0.1 (2020-06-17)

Fixed bug ingcloud app deploy command.This issue can be tracked athttps://issuetracker.google.com/issues/159109983

297.0.0 (2020-06-16)

Anthos

Added support for preferred authentication methods toanthos auth logincommand.

BigQuery

Added support for splitting/merging capacity commitments.
Added support for autoscale based on reservations.
Fixed CLI json.loads error for Python 3.5.

Compute Engine

Added--preemptible flag togcloud compute instances set-scheduling.
Promoted--multi-writer flag ofgcloud compute disks create to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

296.0.1 (2020-06-10)

Anthos

Fixed blocking bug inanthos auth login command.

296.0.0 (2020-06-09)

Cloud SDK

Updated bundled Python executable to 3.7.5.

Cloud Composer

Fixed a bug that causesbackfill subcommand ofgcloud composer environments runto be stuck indefinitely.
Updatedgcloud composer environments run command to prefer GKE pods with 'Ready: true' condition state.

Cloud Filestore

Updatedgcloud beta filestore instances createandgcloud beta filestore instances update to include:
- Added HIGH_SCALE_SSD, BASIC_HDD and BASIC_SSD tiers.
- Addednfs-export-options to--file-share flag.
- Support for NfsExportOptions.Rungcloud filestore --helpor visithttps://cloud.google.com/filestore/docs/ to learn more.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.4
- Fixes bug for evaluating rules in query listening.
- Fixes support for?show_missing in listing collection.

Cloud Resource Manager

Promotedgcloud projects create to beta.

Cloud Run

Modified--vpc-connector and--clear-vpc-connector flags to be applicable for--platform=managed only.
Added--format export option togcloud run services describe andgcloud run revisions describe, to output resources without deployment-specific metadata or status information.

Compute Engine

Replaced coreos-cloud with fedora-coreos-cloud in the list ofpublic image projects for--standard-images flag ofgcloud compute images list.
Promotedgcloud compute commitments create-license to beta.
Added flag--instance-update-minimal-action flag togcloud beta compute instance-groups managed instance-configs <create|update|delete>.

Kubernetes Engine

Added--master-logs and '--enable-master-metrics' flags togcloud beta container clusters to enable sending master logs and metricsto Cloud Operations (fka Stackdriver).

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

295.0.0 (2020-06-02)

Anthos

Addedgcloud anthos apply command to beta. This command declarativelyapplies Config Connector resource configurations.
Addedgcloud anthos export command to beta. This command exports ConfigConnector resource configurations of existing Google Kubernetes Engineclusters.

Cloud Memorystore

Enabled support for Redis version 5.0. Addedredis_5_0 as a new option for--redis_version flag ofgcloud redis instances create.
Addedgcloud redis instances upgrade to upgrade a Memorystore Redis instance to a specified Redis version.

Cloud Pub/Sub

Rename--filter flag ofgcloud pubsub subscriptions create to--message-filter. This is done to avoid confusion with--filter flagofhttps://cloud.google.com/sdk/gcloud/reference/topic/filters.
Promoted--message-filter flag ofgcloud pubsub subscriptions create tobeta. This feature allows users to specify a filter expression on a CloudPub/Sub subscription which will automatically drop messages.

Compute Engine

Promotedgcloud compute instance-groups managed describe-instance to beta.
Added--accelerator flag togcloud beta compute instances create-with-container.
Promoted--private-ipv6-google-access-type flag ofgcloud compute instances <create|create-with-container> to GA.
Promoted--private-ipv6-google-access-type flag ofgcloud compute instance-templates <create|create-with-container> to GA.
Promoted--private-ipv6-google-access-type flag ofgcloud compute networks subnets <create|update> to GA.
Added--interface flag togcloud beta compute disks create.
Added--interface flag togcloud beta compute instances attach-disk.
Addedinterface key to--disk key ofgcloud beta compute instances create.

Game Servers

Added--description togcloud <alpha|beta> game servers<clusters/realms/deployments> update to allow updating description forresources.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

294.0.0 (2020-05-27)

Breaking Changes

(Secret Manager) Modifiedgcloud secrets beta command group to use the Secret Manager v1 API.The--uri flag now formats output to begin withhttps://secretmanager.googleapis.com/v1/ instead ofhttps://secretmanager.googleapis.com/v1beta1/ when used with the followingcommands:
- gcloud beta secrets list
- gcloud beta locations list
- gcloud beta secrets versions list

AI Platform

Added--kms-key togcloud <alpha|beta> ai-platform jobs submit trainingto allow specifying a customer-managed encryption key for a training job.

Cloud Pub/Sub

Promoted configurable retry-related flags ingcloud pubsub subscriptionscreate andgcloud pubsub subscriptions update to GA.

Cloud Run

Changegcloud run services get-iam-policy,gcloud run services set-iam-policy,gcloud run services add-iam-policy-binding, andgcloud run services remove-iam-policy-bindingto use the v1 api.

Cloud Storage

Updated gsutil component to 4.51.

Cloud Tasks

Promotedgcloud tasks queues create-pull-queue to beta.

Compute Engine

Changed default action fromRESTART toREPLACE for--update-instance flag ofgcloud compute instance-groups managed instance-configs create|update.
Promoted--maintenance-policy ofgcloud compute sole-tenancy node-groups create to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

293.0.0 (2020-05-19)

App Engine

Updated the Python SDK to version 1.9.91.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes.

Cloud SQL

Promoted Postgres 12 to GA.

Compute Engine

Promotedgcloud compute instance-groups managed list-errors to GA.
Addedgcloud beta compute instances get-screenshot command to beta.

Firebase Test Lab

Promoted--additional-apks,--other-files,--network-profile, and--robo-script flags ofgcloud firebase test android run to GA.

Kubernetes Engine

Promoted--disable-default-snat flag ofgcloud container clusters<create|update> to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

292.0.0 (2020-05-12)

Breaking Changes

(Cloud SDK) Modifiedgcloud auth application-default login to add a quota projectby default. Use--disable-quota-project to skip setting the quota project.
(Cloud SDK) Modifiedgcloud auth application-default login andgcloud auth application-default set-quota-project so that a quota projectis added to the application default credentials only when the credentialshave the permission to bill the project.

Cloud SDK

Fixed an issue ingcloud auth login andgcloud init when running behinda proxy/firewall. This issue can be tracked athttps://issuetracker.google.com/issues/155818300.

App Engine Flexible Environment

Fixed issue where CloudBuild timeout value without 's' suffix was rejected sometimes.

Cloud DNS

Promoted Non-RFC 1918 Cloud DNS features to GA.

Cloud Dataproc

Fixed bug ingcloud dataproc clusters list where Google KubernetesEngine-based clusters are listed withPLATFORM asGCE when accessed by theGA command.

Cloud Key Management Service

Promoted--condition flag to GA for the following commands:
- gcloud kms keyrings add-iam-policy-binding
- gcloud kms keyrings remove-iam-policy-binding
- gcloud kms keys add-iam-policy-binding
- gcloud kms keys remove-iam-policy-binding

Compute Engine

Addedimport andexport commands togcloud compute <target-http-proxies|target-https-proxies>.
Promoted--private-ipv6-google-access-type flag ofgcloud compute instances <create|create-with-container> to beta.
Promoted--private-ipv6-google-access-type flag ofgcloud compute instance-templates <create|create-with-container> to beta.
Promoted--autoscaler-mode,--min-nodes, and--max-nodes flags of commandgcloud compute sole-tenancy node-groups create to GA.

Kubernetes Engine

gcloud container now respectscompute/region property.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

291.0.0 (2020-05-05)

AI Platform

Added--config togcloud beta ai-platform versions update andgcloud beta ai-platform versions update to allow specifying manual andauto-scaling parameters.

App Engine

Updated the Java SDK to version 1.9.80.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

BigQuery

Enabled purchasing capacity commitments through the BQCLI.
Added support for passing empty array parameters.
Fixed issues with handling of YAML parse errors.
Fixed vulnerabilities related to pre-packaged dependencies.

Cloud Access Context Manager

Promotedgcloud access-context-manager perimeters dry-run command group toGA.
Added the following flags togcloud access-context-manager perimeters create:
- --enable-vpc-accessible-services
- --vpc-allowed-services
Added the following flags togcloud access-context-manager perimeters update:
- --enable-vpc-accessible-services
- --add-vpc-allowed-services
- --clear-vpc-allowed-services
- --remove-vpc-allowed-services

Cloud Dataproc

Added--secondary-worker-type togcloud dataproc clusters createandgcloud dataproc workflow-templates set-managed-cluster commands.This adds the ability to create a cluster with secondary workers that arenon-preemptible. If unspecified, secondary workers continue to be preemptible bydefault.

Cloud Functions

gcloud functions logs read now understands log entries with JSON payloads.

Cloud Healthcare

Promotedgcloud healthcare command group to GA.
This release includes some major changes that are different from beta.
- FHIR store creation requires aversion in GA, or the request will fail.
- HL7V2 stores can now have multiple Pub/Sub topics, corresponding API is changed to accomplish that.

Cloud IAM

Promoted--condition flag to GA forgcloud iam service-account <add|remove>-iam-policy-binding.

Cloud Resource Manager

Promoted--condition flag to GA for the following commands:
- gcloud projects <add|remove>-iam-policy-binding
- gcloud organizations <add|remove>-iam-policy-binding
- gcloud resources-manager folders <add|remove>-iam-policy-binding

Cloud Run

Promoted--min-instances,--no-traffic,--use-http2,--clear-config-maps,--set-config-maps,--remove-config-map,--update-config-map,--clear-secrets,--set-secrets,--remove-secrets,--update-secrets flags ofgcloud run services updateto beta.
Changed default output format ofgcloud run revisions describe to be morehuman-readable. For yaml output, use--format=yaml.

Cloud Services

Promotedgcloud services vpc-peerings enable-vpc-service-controls to beta.
Promotedgcloud services vpc-peerings disable-vpc-service-controls to beta.

Cloud Storage

Updated gsutil component to 4.50.

Compute Engine

Promoted--export-subnet-routes-with-public-ip and--import-subnet-routes-with-public-ip flags ofgcloud compute networks peerings create andgcloud compute networks peerings update to beta and GA.
Promoted--domains flag ofgcloud compute ssl-certificates create to GA.
Promotedsuspend andresume commands ofgcloud compute instances command group to beta.

Firebase Test Lab

Added--testing-special-entitlements flag togcloud beta firebase test ios run.This flag allows you to test iOS app entitlements by re-signing theapp with a new and explicit application-identifier.

Kpt

Updated kpt from v0.17.0 to v0.24.0.
Updated import of cli-utils from v0.6.0 to v0.8.0.
Updated import of kyaml from v0.1.4 to v0.1.8.
Updated import of cmd/config from v0.1.4 to v0.1.7.

Kubernetes Engine

Updates kubectl to change default version of kubectl from 1.14 to 1.15.
Additional kubectl versions:
- kubectl.1.14 (1.14.10)
- kubectl.1.15 (1.15.11)
- kubectl.1.16 (1.16.9)
- kubectl.1.17 (1.17.5)
Promoted--autoprovisioning-max-surge-upgrade,--autoprovisioning-max-unavailable-upgrade,--enable-autoprovisioning-autoupgrade,--enable-autoprovisioning-autorepair flags ofgcloud container clusters create andgcloud container clusters updateto GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

290.0.1 (2020-04-27)

Compute Engine

Promoted--domains flag ofgcloud compute ssl-certificates create to GA.

290.0.0 (2020-04-22)

Cloud Dataflow

Promotedgcloud dataflow sql query command to GA.

Cloud Dataproc

Updated--image flag to accept image family URIs.
Fixed a bug where managed clusters added to workflow templates did notcorrectly respect--enable-component-gateway.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.3
- Fix rolling back an already failed transaction.
- Fix gRPC issue on large rules coverage reports.

Compute Engine

Changed the default value of--image-family flag to debian-10 forgcloud compute instances create andgcloud compute instance-templates create commands.
Added PRIVATE_SERVICE_CONNECT as a type of global address reservation.
Added--target-bundle option ingcloud compute forwarding-rules create.

Kubernetes Engine

Promoted the GKEConfigConnector add-on ofgcloud container clusterscreate andgcloud container clusters update to beta. This add-on isdisabled by default.
- Use--addons=ConfigConnector to enable the add-on during clustercreation.
- Use--update-addons=ConfigConnector=ENABLED|DISABLED toenable/disable the add-on for existing GKE clusters.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

289.0.0 (2020-04-14)

App Engine

Deploying Maven projects using a pom.xml file is now GA.
Updated the Python SDK to version 1.9.90.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes.

Cloud Access Context Manager

Added--custom-level-spec argument to enable custom access level definition to the following commands:
- gcloud access-context-manager levels create
- gcloud access-context-manager levels update
Addedgcloud beta access-context-manager perimeters dry-run enforce commandfor enforcing the dry-run configurations for individual Service Perimeters.
Promotedgcloud access-context-manager levels replace-all andgcloud access-context-manager perimeters replace-all commands to GA.
Addedgcloud beta access-context-manager perimeters dry-run enforce commandfor enforcing the dry-run configurations for individual Service Perimeters.

Cloud Dataproc

Fixed bug where the GKE cluster name is also displayed in the zone column whenlisting GKE-based Dataproc clusters.

Cloud Memorystore

Added newredis_5_0 redis-version value togcloud redis instancesupgrade.

Cloud Run

Promoted the Knative API version used from v1alpha1 to v1 on allgcloud betarun andgcloud run commands for--platform=gke and--platform=kubernetes.

Compute Engine

Promotedgcloud compute instances add-resource-policies command to GA.

Kubernetes Engine

Promoted the following flags to GA forgcloud container binauthz attestorspublic-keys add:
- --pkix-public-key-file
- --pkix-public-key-algorithm
- --keyversion
- --public-key-id-override

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

288.0.0 (2020-04-07)

Breaking Changes

(Secret Manager) Removed newline from the end of the output ofgcloud secrets versions access command.

AI Platform

Added support for--region flag forgcloud beta ai-platform.

Cloud Access Context Manager

Renamedgcloud beta access-context-manager perimeters dry-run reset asgcloud beta access-context-manager perimeters dry-run drop.

Cloud Composer

Added the following flags togcloud composer environments create to handleIP aliasing:
- --enable-ip-alias
- --cluster-ipv4-cidr
- --services-ipv4-cidr
- --cluster-secondary-range-name
- --services-secondary-range-name
Added the following flags togcloud composer environments create to handlePrivate IP:
- --enable-private-environment
- --enable-private-endpoint
- --master-ipv4-cidr
Added the following flags togcloud composer environments create to handlePrivate IP:
- --web-server-ipv4-cidr
- --cloud-sql-ipv4-cidr
Fixed a bug that could cause flags passed togcloud composer environmentsrun to be interpreted incorrectly.

Cloud Dataflow

Addedgcloud beta dataflow snapshots command group which provides the ability to create and manage Cloud Dataflow snapshots.

Cloud Dataproc

Fixed bug where the default project was not automatically used as the GKEcluster project for GKE-based Dataproc clusters.
Changed the default value for--timeout ingcloud dataproc clusters updatefrom 3h to 25h. This prevents client-side timeouts during long gracefuldecommissioning operations.

Cloud Run

Promoted--no-traffic flag ofgcloud run deploy to GA for--platform=managed.

Compute Engine

Promoted--scale-in-control flag ofgcloud compute instance-groups managed set-autoscaling to beta.
Promoted--scale-in-control and--clear-scale-in-control flags ofgcloud compute instance-groups managed update-autoscaling to beta.
Added support of tabular display format of commandgcloud compute networks get-effective-firewalls andgcloud compute instances network-interfaces get-effective-firewalls.

Kpt

Updated kpt from v0.14.0 to v0.17.0.
Updated import of cli-utils from v0.5.0 to v0.6.0.
Updated import of kyaml from v0.1.3 to v0.1.4.
Updated import of cmd/config from v0.1.3 to v0.1.4.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

287.0.0 (2020-04-01)

App Engine

Updated the Python SDK to version 1.9.89.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes.

BigQuery

Added support to update capacity_commitment plan and renewal_plan.
Modified DTS CreateTransferConfig and UpdateTransferConfig CLI to accept aversion_info instead of an authorization_code.
Added support for ROW ACCESS POLICY DDL statements.
Fixed a bug with None auth_info in UpdateTransferConfig.

Cloud Access Context Manager

Added the following flags togcloud beta access-context-manager perimeters create:
- --enable-vpc-accessible-services
- --vpc-allowed-services
Added the following flags togcloud beta access-context-manager perimeters update:
- --enable-vpc-accessible-services
- --add-vpc-allowed-services
- --clear-vpc-allowed-services
- --remove-vpc-allowed-services

Cloud Asset Inventory

Supportorg-policy andaccess-policy in the real-time feed API.

Cloud Composer

Added the following flags togcloud beta composer environments commands tospecify IP ranges for Web Server and Cloud SQL network subranges:
- --web-server-ipv4-cidr
- --cloud-sql-ipv4-cidr
Require explicitly specifying web server access control when using--enable-private-environment ingcloud beta composer environments create.

Cloud Dataproc

Promotedgcloud dataproc jobs submit presto command group to GA.

Cloud Machine Learning Engine

Added--json-request flag togcloud ml-engine predict andgcloud ml-engine local predict to improve the UX by matching the input format to that used in actual requests.

Cloud Spanner Emulator

Addedgcloud beta emulators spanner command group which allows startinga Cloud Spanner emulator for local development and unit testing.

Cloud Storage

Updated gsutil component to 4.49.

Compute Engine

Promoted centos-8, opensuse-15, rhel-8, rhel-8-byol, sles-12-byol, andsles-15-byol options of--os flag forgcloud compute images importandgcloud compute instances import to GA.
Promoted--resource-policies flag ofgcloud compute instances createto GA.
Promoted--logging-filter-expr and--logging-metadata-fields flags ofgcloud compute networks subnets create andgcloud compute networks subnets update to GA.
Promoted--platform-key-file,--key-exchange-key-file,--signature-database-file, and--forbidden-database-file flags ofgcloud compute images create command to GA.
Updated "list-rules" command of Organization Firewalls to add more fields.

Stackdriver Monitoring

Promotegcloud monitoring dashboards command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

286.0.0 (2020-03-24)

Breaking Changes

(Compute Engine) RemovedSECURE_BOOT from list of guest OS features.

Cloud SDK

Fixed issue where special characters in quoted arguments on Windows were notbeing escaped properly. For example, a command invocation such as:gcloud compute ssh my-vm --zone=us-central1-c --command="echo 1 && echo 2"would fail with "unrecognized arguments: 1".

Anthos

Addedgcloud anthos auth login command to GA. This command enablesauthentication of Anthos clusters through a command line interface, given anon-prem identity provider (IDP) is configured in an Anthos Kubernetes clusterenvironment.

App Engine

Updated the Java SDK to version 1.9.79.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Cloud Access Context Manager

Addedgcloud beta access-context-manager perimeters dry-run command groupfor management of dry-run configurations for Service Perimeters.

Cloud Dataflow

Added--worker-region and--worker-zone parameters togcloud dataflow jobs run.
Added deprecation notice for--zone parameter togcloud dataflow jobs run.
Added--num-workers,--worker-machine-type,--network,--subnetwork, and--dataflow-kms-key parameters togcloud beta dataflow sql query.
Promoted--num-workers,--worker-machine-type,--network, and--subnetwork parameters to GA ingcloud dataflow jobs run.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.11.1
- Allow service account tokens in Firestore Emulator.
- ListCollectionIds now correctly omits empty collections.
- The first request now correctly interacts with seed data.

Cloud Key Management Service

Promoted changes related to external keys ingcloud kms locations list,gcloud kms keys create,gcloud kms keys versions create,gcloud kmskeys versions update to GA.

Cloud Memorystore

Enabled support for Redis version 5.0 (beta). Addedredis_5_0 as a new option for--redis_version flag when usinggcloud beta redis instances create.
Enabled support for Redis version 5.0 (beta) stream node configurations. Addedstream-node-max-bytes andstream-node-max-entries as new options for--redis-config flag when usinggcloud beta redis instances create.
Enabled support forstream-node-max-bytes andstream-node-max-entries for--update-redis-config flag when usinggcloud beta redis instances update.

Cloud Run

Changed the default output format forgcloud run services describe. Movedthe service URL from its own line to next to the traffic section heading.
Changed the default output format forgcloud run services update-traffic touse the same format as the traffic section of the output ofgcloud run services describe. To restore the previous output format,specify--format="table(displayPercent:label=TRAFFIC,displayRevisionId:label=REVISION)".
Promoted--min-instances,--no-traffic,--use-http2,--clear-config-maps,--set-config-maps,--remove-config-map,--update-config-map,--clear-secrets,--set-secrets,--remove-secrets,--update-secrets flags ofgcloud run deploy to betaand GA for--platform=gke and--platform=kubernetes only.

Cloud SQL

Promoted Postgres 10 to GA.
Added support for specifying backup locations.

Cloud Spanner

Addedgcloud spanner backups surface.
Addedgcloud spanner databases restore.
Updatedgcloud spanner operations for backup and restore operations, and ability to filter by operation type.
Added optimizer version to the query plan (PROFILE) output ofgcloud spanner databases execute-sql.

Cloud Tasks

Promoted--log-sampling-ratio and--clear-log-sampling-ratio to GA.

Compute Engine

Promoted--replacement-method ofgcloud compute instance-groups managed rolling-action restart to GA.
Promoted--[no-]enable-logging flag ofgcloud compute health-checkscommand group to beta.
Addedcpu-overcommit-type flag togcloud beta compute sole-tenancy node-templates create.
Promotedgcloud compute org-security-policies command group to beta.
Promotedgcloud compute networks get-effective-firewalls command to beta.
Promotedgcloud compute instances network-interfaces get-effective-firewalls command to beta.
Promotedgcloud compute instance-groups managed update-instance to GA.
Promoted--failover-ratio,--drop-traffic-if-unhealthy, and--connection-drain-on-failover flags ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promoted--failover flag ofgcloud compute backend-services add-backend andgcloud compute backend-services update-backend to GA.
Promoted global scope ofgcloud compute network-endpoint-groups command group in global to GA.
Promoted--global-network-endpoint-group flag ofgcloud compute backend-services to GA.

Kpt

Updated kpt from v0.12.0 to v0.14.0.
Updated import of cli-utils from v0.4.0 to v0.5.0.

Kubernetes Engine

Added--release-channel flag togcloud beta container clusters updatefor subscribing an existing cluster to a release channel or removing acluster from a release channel.

Service Directory

Promotedgcloud service-directory locations to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

285.0.1 (2020-03-18)

Resolved issue that caused spurious post installation errors in 285.0.0.

285.0.0 (2020-03-17)

Breaking Changes

(Cloud Dataproc) Deprecated the following flag ingcloud dataproc clusters update command:
- --num-preemptible-workers

AI Platform

Modifiedai-platform models set-iam-policy to accept a model resource arg.
Modifiedai-platform models get-iam-policy to accept a model resource arg.

Artifact Registry

Promotedgcloud artifacts to beta.

Cloud Access Context Manager

Added--custom-level-spec argument to enable custom access level definitionto the following commands:
- gcloud access-context-manager levels create
- gcloud access-context-manager levels update

Cloud Build

Reset ownership to root when creating workspace snapshot.

Cloud DNS

Promotedgcloud dns managed-zones to beta.
Added--service-directory-namespace togcloud beta dns managed-zones create to support providing a Service Directory namespace that should be associated with the zone.

Cloud Data Catalog

Modifiedgcloud data-catalog entries <create|update> to support user specified types.

Cloud Dataproc

Added the following flag togcloud dataproc clusters update command:
- --num-secondary-workers
Added--gke-cluster and--gke-cluster-namespace flags togcloud betadataproc clusters create to allow creation of GKE-based Dataproc clusters.

Cloud Identity-Aware Proxy

Promotedgcloud iap settings command group to GA.

Cloud Memorystore

Addedgcloud beta memcache which manages Cloud Memorystore Memcached resources.

Cloud Run

Modified--args and--command flags ofgcloud run services update,gcloud run deploy,gcloud beta run services update, andgcloud beta rundeploy to support repeated usages on a single command invocation.

Compute Engine

Addedcpu-overcommit-type flag togcloud beta compute sole-tenancy node-templates create.
Promotedgcloud compute resource-policies create group-placement commandto GA.
Promotedgcloud compute os-config patch-jobs command group to GA.
Promotedgcloud compute os-config patch-deployments command group to GA.

Identity Groups

Addedgcloud beta identity groups preview to retrieve a list of users in acustomer account using CEL query.
Added--dynamic-user-query togcloud beta identity groups create.

Kpt

Updated kpt from v0.9.0 to v0.11.0.
Updated import of cli-utils from v0.2.0 to v0.3.0.

Kubernetes Engine

Added--enable-logging-monitoring-system-only flag togcloud container clusters create andgcloud container clustersupdate to enable Stackdriver system-only logging and monitoring.

Network Management

Modifiedgcloud beta network-management connectivity-tests create to verify that at least one source and one destination are specified.
Modifiedgcloud beta network-management connectivity-tests create andgcloud beta network-management connectivity-tests update to verify that instance and network formats are valid.
Added the following optional flags togcloud beta network-management connectivity-tests update:
- --clear-source-instance
- --clear-source-ip-address
- --clear-destination-instance
- --clear-destination-ip-address
Promotedgcloud network-management command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

284.0.0 (2020-03-10)

Breaking Changes

(Cloud Dataproc) Deprecated the following flags ingcloud dataproc clusters create and
(Cloud Dataproc)gcloud dataproc workflow-templates set-managed-cluster commands:
- --num-preemptible-workers
- --num-preemptible-worker-local-ssds
- --preemptible-worker-boot-disk-size
- --preemptible-worker-boot-disk-type
- --preemptible-worker-accelerator
(Kubernetes Engine) Promoted Workload Identity flags to GA:
- Promoted--disable-workload-identity ofgcloud beta containerclusters update.
- Renamed--identity-namespace ofgcloud beta container clusters to--workload-pool.
- Changed the choices of--workload-metadata-from-node ofgcloud betacontainer node-pools to ["GCE_METADATA", "GKE_METADATA"].
(Kubernetes Engine) Removed "UNSPECIFIED" from the choices of--workload-metadata-from-node ofgcloud beta container node-pools.

App Engine Flexible Environment

Removed the deprecated flag--use-container-optimized-os fromgcloud beta app update.Starting 2020-02-17, Container-Optimized OS is the default VM image type of App Engine Flex deploymentsand can not be changed.

Cloud Access Context Manager

Added the 'etag' field togcloud access-context-manager policies list.

Cloud Data Catalog

Promotedgcloud data-catalog command group to GA.
Addedgcloud data-catalog entry-groups list to help list all entry groups in a Cloud Data Catalog location.

Cloud Dataflow

Added flex-template build commandgcloud beta dataflow flex-template build.

Cloud Dataproc

Added the following flags togcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster commands:
- --num-secondary-workers
- --num-secondary-worker-local-ssds
- --secondary-worker-boot-disk-size
- --secondary-worker-boot-disk-type
- --secondary-worker-accelerator

Compute Engine

Added centos-8, rhel-8, and rhel-8-byol options for--os flagtogcloud beta compute images importandgcloud beta compute instances import.

Kpt

Updated kpt from v0.7.0 to v0.9.0.
Addedkpt live init command to existingkpt live commands.
Updated import of cli-utils from v0.1.3 to v0.2.0.

Kubernetes Engine

Added--enable-tpu and--tpu-ipv4-cidr flags togcloud container clusters update to support enabling/disabling Cloud TPUon existing clusters.

Service Directory

Promotedgcloud service-directory namespaces to beta. Added command tocreate/delete/describe/list/update namespaces.
Promotedgcloud service-directory services to beta. Added command tocreate/delete/describe/list/resolve/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.
Promotedgcloud service-directory endpoints to beta. Added command tocreate/delete/describe/list/update/add-iam-policy-binding/get-iam-policy/set-iam-policy/remove-iam-policy-binding.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

283.0.0 (2020-03-03)

Cloud Dataflow

Addedgcloud beta dataflow sql query command.
Removed--flex-template flag support fromgcloud beta dataflow jobs run.
Added flex-template commandgcloud beta dataflow flex-template run.

Cloud Run

Fixed error handling when Cloud Run for Anthos fails with an HTTP error.

Cloud Storage

Updated gsutil component to 4.48.

Compute Engine

Added field 'PRESERVED_STATE' to the output ofgcloud beta compute instance-groups managed list-instances.
Promoted--enable-logging and--logging-sample-rate flags ofgcloud compute backend-services <create|update> to GA.
Added support forgroup-placement-policy without specific VM count.Spread placement policies support incremental groups size now.
Promoted--resource-policies flag ofgcloud compute instances createto beta.
Addedget-iam-policy andset-iam-policy commands togcloud compute resource-policies command group.
Promotedexport andupdate-from-file commands ofgcloud compute instances command group to beta and GA.

Stackdriver Logging

Promoted the following commands to beta:
- gcloud logging buckets list
- gcloud logging buckets describe
- gcloud logging buckets update

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

282.0.0 (2020-02-25)

Breaking Changes

(Cloud Key Management Service) Modifiedgcloud beta kms locations list to include EKM availability. This may disrupt automated processing of the command's output; consider using the--format flag for parsing.

BigQuery

Addedrequire_hive_partition_filter support for hive partitioned tables.

Cloud Access Context Manager

Addedreplace-all command to the following command groups in beta:
- gcloud access-context-manager levels.
- gcloud access-context-manager perimeters.
replace-all is a command that is used to replace all existinglevelsorperimeters with the ones you provide in a valid yaml file.

Cloud Composer

Added the following flags togcloud beta composer environments commands to manage Airflow web server network access control:
- --web-server-allow-ip
- --web-server-deny-all
- --web-server-allow-all
- --update-web-server-allow-ip

Cloud Dataflow

Added--dataflow-kms-key flag togcloud dataflow jobs run.

Cloud Functions

Promoted--egress-settings and--ingress-settings flags ofgcloud functions deploy to GA.

Cloud Key Management Service

Added EKM availability togcloud beta kms locations list.

Cloud Memorystore

Added--connect-mode flag togcloud redis instances create to specify anetwork connection mode when creating a new Redis instance.

Cloud SQL

Promoted SQL Server to GA.

Stackdriver Monitoring

Promotedgcloud monitoring dashboards command group to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

281.0.0 (2020-02-18)

Breaking Changes

(Cloud SDK) Modified--update-adc ingcloud auth login to not writea quota project to the generated application default credential file.Usegcloud auth application-default login --add-quota-project orgcloud auth application-default set-quota-project to add a quota projectto the generated file.

AI Platform

Added xrai option for--explanation-method flag togcloud beta ai-platform versions create.

Access Approval

Addedgcloud access-appoval surface to alpha.

App Engine

Added beta support for deploying the Maven project pom.xml file directly.

Cloud Asset Inventory

Modified the following commands such that they no longer require--scopeflag:
- gcloud beta asset search-all-iam-policies
- gcloud beta asset search-all-resources
- gcloud beta asset search-iam-policies
- gcloud beta asset search-resourcesIf scope is not specified, the default project property is used.

Cloud Bigtable

Addeddeleteallrows command tocbt command line tool, which will clear a Cloud Bigtable table.

Cloud Dataproc

Promotedgcloud dataproc clusters import andgcloud dataproc clustersexport to GA.

Cloud IAM

Promoted--condition flag to beta forgcloud iam service-account <add|remove>-iam-policy-binding.

Cloud Key Management Service

Promoted--condition flag to beta for the following commands:
- gcloud kms keyrings <add|remove>-iam-policy-binding
- gcloud kms keys <add|remove>-iam-policy-binding

Cloud Resource Manager

Promoted--condition flag to beta for the following commands:
- gcloud projects <add|remove>-iam-policy-binding
- gcloud organizations <add|remove>-iam-policy-binding
- gcloud resources-manager folders <add|remove>-iam-policy-binding

Cloud Run

RemovedspecTarget andstatusTarget fields from the yaml and jsonoutput ofgcloud run services update-traffic. The information nested withinspecTarget andstatusTarget is available in the top-levellatestRevision,revisionName,specPercent, andstatusPercent fields ofthe output.

Cloud Tasks

Added--response-view parameter togcloud tasks describe.

Compute Engine

Added sles-12-byol, sles-15-byol, and opensuse-15 options for--os flag togcloud beta compute images import andgcloud beta compute instances import.
Fixed issue wheregcloud compute ssh command fails with--impersonate-service-account flag.
Promoted--network flag ofcompute backend-services create to GA.
Promoted--condition flag to beta for the following commands:
- gcloud compute disks <add|remove>-iam-policy-binding
- gcloud compute images <add|remove>-iam-policy-binding
- gcloud compute instance-templates <add|remove>-iam-policy-binding
- gcloud compute instances <add|remove>-iam-policy-binding
- gcloud compute reservations <add|remove>-iam-policy-binding
- gcloud compute snapshots <add|remove>-iam-policy-binding

GKE Hub

Promotedgcloud container hub memberships command group to GA.
Deprecatedgcloud beta container memberships command group.

Kubernetes Engine

Promoted--node-locations flags ofgcloud container clusters create andgloud container clusters update to GA.
Added--addons=GcePersistentDiskCsiDriver togcloud beta containerclusters create and--update-addons=GcePersistentDiskCsiDriver togcloudbeta container clusters update to enable/disable the GCP Compute PersistentDisk Container Storage Interface (CSI) Driver.
Added kubectl version 1.17 for upcoming rapid channel release.
- Default kubectl version 1.14.
- Additional kubectl versions:
- kubectl.1.13 (1.13.12)
- kubectl.1.14 (1.14.10)
- kubectl.1.15 (1.15.9)
- kubectl.1.16 (1.16.6)
- kubectl.1.17 (1.17.2)
Added warning for upcoming shielded nodes default behavior change.

Notebooks

Addednotebooks surface to beta which provides access to AI PlatformNotebooks.
Addednotebooks instances command group which provides access to AIPlatform Notebooks' instances.
Addednotebooks environments command group which provides access to AIPlatform Notebooks' environments.

Secret Manager

Promotedgcloud secrets command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

280.0.0 (2020-02-11)

Breaking Changes

(Cloud SQL) Removed support for creating First Generation Cloud SQL instances.
- Removed First Generation instance only flags:--authorized-gae-apps,--follow-gae-app, and--pricing-plan fromgcloud sql create.

AI Platform

Added--use-chief-in-tf-config flag to the following commands:
- gcloud beta ml-engine jobs submit training
- gcloud ml-engine jobs submit training
- gcloud beta ai-platform jobs submit training
- gcloud ai-platform jobs submit training

Cloud Access Context Manager

Modified Access Context Manager beta commands to call the ACM v1 API instead ofv1beta.

Cloud Data Catalog

Addedgcloud beta data-catalog entries list which lists Data Catalogentries.
Addedgcloud beta data-catalog entry-groups update which updates a DataCatalog entry group.
Added flags togcloud beta data-catalog entries update for updating anentry's description, display name, and Cloud Storage file patterns.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.10.4
- Addedupdate_transform support for commit and batchWrite.
- Send resume tokens on the Listen stream

Cloud Run

Added--force-override togcloud run domain-mappings create to overridean existing domain mapping.
Fixed a bug where--cpu flag was incorrectly disallowed with--platform=managed.

Compute Engine

Promoted--allow-global-access flag ofgcloud compute forwarding-rulescreate to GA.
Promotedgcloud compute forwarding-rules update to GA.
AddedHEALTH_STATE to output ofgcloud compute instance-groups managedlist-instances in GA.
Addedgcloud beta compute machine-images import to enable importing OVA/OVFvirtual appliances into Google machine images.

Kubernetes Engine

Promoted--max-surge-upgrade and--max-unavailable-upgrade flags to GAingcloud container command group. Use these flags to specify upgradesettings parameters during cluster creation, node pool creation, or nodepool update.
Updated kubectl to change default version of kubectl from 1.13 to 1.14.
- Additional kubectl versions:
- kubectl.1.13 (1.13.12)
- kubectl.1.14 (1.14.10)
- kubectl.1.15 (1.15.9)
- kubectl.1.16 (1.16.6)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

279.0.0 (2020-02-04)

Breaking Changes

(Cloud SDK) Modifiedgcloud auth application-default login to not write a quotaproject to the generated file. Use--add-quota-project to changethis behavior.
(Compute Engine) Removed--priority flag fromcompute beta packet-mirrorings create andcompute beta packet-mirrorings update.

BigQuery

Fixed issue where--apilog would not use the specified log file and wouldinstead output the logs to stdout.

Cloud Dataproc

Deprecated default global value ofgcloud dataproc --region flag.

Cloud Life Sciences

Addedgcloud beta lifesciences locations command group to query locations where the Cloud Life Sciences API is available.

Cloud Memorystore

Addedgcloud beta redis instances upgrade to upgrade a Memorystore Redisinstance to a specified Redis version.

Cloud Run

Promoted--cpu to GA for all platforms.
Promotedgcloud run services update-traffic to GA.

Compute Engine

Promoted ubuntu-1804 option of--os flag forgcloud compute images importandgcloud compute instances import to GA.
Promoted--hostname flag ofgcloud compute instances import to GA.
Promotedgcloud compute packet-mirrorings command group to GA.
Promoted--is-mirroring-collector flag ofgcloud compute forwarding-rules create to GA.
Promoted--logging-metadata flag forgcloud compute firewall-rules createandgcloud compute firewall-rules update to beta.
Promotedgcloud compute network-endpoint-groups command group in global scope to beta.
Promoted--global-network-endpoint-group flag ofgcloud compute backend-services to beta.

Kubernetes Engine

Promoted--enable-shielded-nodes to GA. Use this flag withgcloudcontainer clusters create orgcloud container clusters update.

Network Management

Addedgcloud network-management command group. This feature enable theprovisioning and administering of Network Management resources.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

278.0.0 (2020-01-28)

AI Platform

Added--evaluator-count for local train to allow specifying the number ofevaluators to run with when--distributed is set.

App Engine

Updated the Java SDK to version 1.9.78.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes.

Artifact Registry

Rolled backgcloud beta artifacts command group to alpha state.

Cloud Dataflow

Added--flex-template flag togcloud beta dataflow jobs run.

Cloud Key Management Service

Addedgcloud beta kms keys versions update to enable updating crypto key versions and the external key URIs of key versions.

Cloud Pub/Sub

Promoted dead letter queue-related flags ingcloud pubsub subscriptionscreate andgcloud pubsub subscriptions update to GA.

Compute Engine

Promoted permission validation ingcloud compute images import,gcloud compute images export, andgcloud compute instances import to GA.
Promotedgcloud compute instance-groups managed create-instance to GA.
Promotedgcloud compute instance-groups managed wait-until to GA.
Deprecatedgcloud compute instance-groups managed wait-until-stable to GA; usegcloud compute instance-groups managed wait-until --stable instead.
Renamed--update-stateful-disk and--update-stateful-metadata ofgcloud compute instance-groups managed instance-configs update to--stateful-disk and--stateful-metadata respectively.
Renamed--update-stateful-disk ofgcloud compute instance-groups managed update to--stateful-disk.
Promotedgcloud compute instance-groups managed list-errors command tobeta.

Firebase Test Lab

Removed--app-package and--test-package flags fromgcloud firebase test android run; the application and test package names are parsed automatically from the APK manifest.
Updated--environment-variables to allow a period in the key.

Kpt

Publishedkpt binary as a new Cloud SDK component.
- kpt may be installed withgcloud components install kpt.
- kpt contains utilities for packaging, viewing and modifying Kubernetes configuration.
- For more information, runkpt help.

Kubernetes Engine

Promoted Autoscaling Profiles to beta. Use withgcloud beta container clusters create orgcloud container clusters update:--autoscaling-profile=balanced (default) or--autoscaling-profile=optimize-utilization.
Promoted--sandbox flag ofgcloud container node-pools create to GA.This flag enables the requested sandbox on all nodes in the node-pool.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

277.0.0 (2020-01-21)

Breaking Changes

(App Engine) Fixed longstanding issue where/path* in dispatch.yaml was silentlyconverted to/path/*.
(Cloud Dataproc) Modified--region flag to be mandatory.
- To use Cloud Dataproc commands, pass--region flag on every invocation,or setdataproc/region configuration variable viagcloud config setdataproc/region.

Cloud SDK

Added--update-adc togcloud auth login to update the credentials in ADCat the end of authentication.
Promote REGISTRIES positional argument ingcloud auth configure-docker toGA.

AI Platform

Added Tensorflow version check for local train. For version 1.x, 'master' isused as primary node. For version 2.x, 'chief' is used as primary node.

Artifact Registry

Promotedgcloud artifacts to beta.
Following operations will be supported in beta:
- Repository creation, deletion, and listing.
- Printing settings for supported native tools (e.g. mvn, npm, gradle).
- Setting and getting permission/IAM policies on repositories.
- Listing and deleting packages inside a repository.
- Listing and deleting versions inside a package.
- Creating, updating, deleting, and listing tags.
- Listing and deleting docker images or specific image digests.
- Adding, listing, and deleting docker image tags.
- Listing Artifact Registry supported locations.

Cloud Machine Learning Engine

Added Tensorflow version check for local train. For version 1.x, 'master' isused as primary node. For version 2.x, 'chief' is used as primary node.

Compute Engine

Added--hostname togcloud beta compute instances import.
Promoted--instance-redistribution-type flag ofcompute instance-groups managed create to GA.
Promoted--instance-redistribution-type flag ofcompute instance-groups managed update to GA.
Promotedgcloud compute diagnose export-logs to beta.
Promoted--replacement-mode flag of commandgcloud compute instance-groups managed rolling-action start-update andgcloud compute instance-groups managed rolling-action replace to beta.

Kubernetes Engine

Increased default Operation timeout ingcloud container clusters command group to 1 hour.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

276.0.0 (2020-01-14)

Breaking Changes

(Cloud Dataproc) Modifiedgcloud beta clusters create command replacing--reservation-labelwith--reservation which accepts the name of the reservation when--reservation-affinity isspecific, matchinggcloud compute instancescreate.

Cloud SDK

Modifiedgcloud auth configure-docker to take a--registries flag.
- Use this flag to provide a comma-separated list of registries to add to theDocker credential configuration. If the flag is not set, the command addsall gcr.io registries.
- Changes to the docker credential configuration are now merged in to theexisting configuration instead of replacing all existing entries.
- Added support for*.pkg.dev domains.

App Engine

Updated appengine libraries to pick up fix using now-invalid project idswith VPC connectors.
Fixed an issue where response headers were not usable due to python3 bytesregex use.

BigQuery

Fixed delimiter specification issues in Python3.
Fixed proxy authentication issues in Python3.

Cloud Dataproc

Promoted--reservation and--reservation-affinity flags ofgclouddataproc clusters create to GA.

Cloud Storage

Updated gsutil component to 4.47.

Compute Engine

Promoted--mode flag ofgcloud compute instance-groups managedset-autoscaling command to GA.
Promotedgcloud compute instance-groups managed update-autoscaling commandto GA.
Promotedinstance-configs create,instance-configs list,instance-configs update,instance-configs delete commands to beta.

Kubernetes Engine

Adds kubectl version 1.16.4 for the rapid channel.
Additional kubectl versions:
- kubectl.1.13 (1.13.12)
- kubectl.1.14 (1.14.10)
- kubectl.1.15 (1.15.7)
- kubectl.1.16 (1.16.4)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

275.0.0 (2020-01-07)

Breaking Changes

(Firebase Test Lab) Modified--other-files to allow the specificationof a list of device-path=file-path instead of a list of file-path=device-directory.Additionally, the flag can no longer be specified multiple times. Use acomma-separated list to push multiple files to a device.

Cloud SDK

Modifiedgcloud auth application-default login to find a quota project fromgcloud command-line tool's context and write it to the application defaultcredentials. This allows Google client libraries to use the project for quotaand billing.
Addedgcloud auth application-default set-quota-project to update thequota project in application default credentials.
Fixed issue wheregcloud components update andgcloud components installwould crash with a UnicodeDecodeError when encountering certain networkerrors. The gcloud command-line tool will now correctly display the errorencountered during the update or installation. This issue was reported athttps://issuetracker.google.com/issues/80344082.

App Engine

Updated the Python SDK to version 1.9.88.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes.

Cloud Asset Inventory

Promoted group commands ofgcloud asset feeds to GA.

Cloud DNS

Promoted DNS Peering to GA.

Cloud Data Catalog

Added flags togcloud beta data-catalog entries update for updating an entry's description, display name, and Cloud Storage file patterns.
Addedrequired field togcloud beta data-catalog tag-templates create --field to specify whether the tag template field is required.
Added--required flag togcloud beta data-catalog tag-templates fields update to specify whether the tag template field is required.
Removedgcloud beta data-catalog entries set-iam-policy commands.

Cloud Identity-Aware Proxy

Promotedgcloud iap command group to GA.

Cloud Run

Promotedgcloud run services replace to beta.
Promoted--command and--args flags forgcloud run deploy andgcloud services update to GA.
Promoted--port flag forgcloud run deploy andgcloud services update toGA.
Promoted--revision-suffix flag forgcloud run deploy andgcloud services update toGA.

Compute Engine

Changedgcloud compute backend-services create to make specification ofhealth checks optional when no associated backends are specified.
Added--no-health-checks flag togcloud compute backend-services update tosupport unsetting all health checks for the given backend service.
Addedgroup-placement-policy toresource-policies creation.
Promotedresource-policiesgroup-placement-policy creation to beta.
Updated Windows PuTTY executables to version 0.73.
Modifiedgcloud beta compute images import andgcloud beta computeinstances import to validate required permissions.
Promotedgcloud compute networks peerings list-routes to GA.
Promoted--stateful-disks flag in managed instance group creation to beta.
Promoted--update-stateful-disks and--remove-stateful-disks flags for updating managed instance groups to beta.
Fixedgcloud compute instances import to support importing OVFs storeddirectly in Cloud Storage buckets (as opposed to stored in sub-directories).

Kubernetes Engine

The following flags are now available in GA ongcloud container clusterscreate andgcloud container clusters update:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- --add-maintenance-exclusion-name
- --add-maintenance-exclusion-start
- --add-maintenance-exclusion-end
- --clear-maintenance-window
- --remove-maintenance-exclusion

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

274.0.1 (2019-12-26)

Fixed issue in which the Windows installer failed on install paths containing spaces.This issue can be tracked athttps://issuetracker.google.com/issues/146458519.

274.0.0 (2019-12-17)

Cloud SDK

Cloud SDK now has GA support for Python 3. Please rungcloud topic startup for:
- Information on configuring the Python interpreter used by theCloud SDK.
- List of tools in the Cloud SDK that still require a Python 2.7interpreter.
- List of known issues with Python 3 support.
For Windows installer-installed Cloud SDK version 274.0.0, if the Cloud SDKfails to run, upgrade to version 274.0.1 or higher. Refer to thistracking bugfor details.

BigQuery

Added support for Python3.
Specifying unique prefixes for any flag name is no longer accepted. Forexample using--project instead of--project_id will throw an error.This change is a result of changing the underlying flag library from gflags toabseil-flags.
Added--service_account_name flag inbq mk --transfer_confg andbq update --transfer_config --update_credential to use a service accountcredential on transfer config or scheduled query.
Removed support for Reservation v1alpha2 API.

Cloud Access Context Manager

Fixed a bug whereaccess-context-manager commands couldn't run without--policy specified; commands now use the default policy ID if one isn't provided.

Compute Engine

Added ubuntu-1804 option to--os flag ofgcloud beta compute images importandgcloud beta compute instances import.
Promoted--target-distribution-shape flag ofcompute instance-groups managed create to GA.
Promoted--erase-windows-vss-signature flag ofcompute disks create to beta.
Promotedcompute machine-images command group to beta.
Promoted--source-machine-image,--source-machine-image-csek-key-file, and--erase-windows-vss-signature flags ofcompute instances create to beta.
Fixed issue wheregcloud compute os-login commands failed with--impersonate-service-account flag.
Promotedgcloud compute os-config guest-policies command group to beta.
Removed--description flag fromgcloud beta compute os-config guest-policies create command to only allowcreating a guest policy from a file.
Removed--description and--etag flags fromgcloud beta compute os-config guest-policies update command to only allowupdating a guest policy from a file.
Removed--organization and--folder flags from the following commands toonly allow managing project-level guest policies:
- gcloud beta compute os-config guest-policies create
- gcloud beta compute os-config guest-policies describe
- gcloud beta compute os-config guest-policies delete
- gcloud beta compute os-config guest-policies update
Promoted--maintenance-policy flag ofgcloud compute sole-tenancy node-groups create to beta.
Promoted--min-node-cpu flag ofcompute instances create to beta.
Added--min-node-cpu and--clear-min-node-cpu togcloud compute instances set-scheduling beta.
Added--node-group,--node,--node-affinity-file, and--clear-node-affinities flags tocompute instances set-scheduling beta.

Kubernetes Engine

Added--boot-disk-kms-key togcloud beta containerclusters create and--boot-disk-kms-key togcloudbeta container node-pools create to specify acustomer managed encryption key to encrypt the node boot disks with.

Miscellaneous

Modified the account loader to print a warning if there is no active account,and the configuration file can not be found.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

273.0.0 (2019-12-10)

Cloud SDK

Fixed issue where the gcloud command-line tool would crash with a TypeErrorwhen invoked behind a proxy using a Python 3 interpreter. This issue wasreported at:https://issuetracker.google.com/issues/144297388.
GA support for Python 3 will be announced soon. Please rungcloud topic startup for:
- Information on configuring the Python interpreter used by theCloud SDK.
- List of tools in the Cloud SDK that still require a Python 2.7interpreter.
- List of known issues with Python 3 support.

Cloud Bigtable

Added Table-level IAM controls. For more information, seegcloud bigtable instances tables --help andhttps://cloud.google.com/bigtable/docs/access-control.

Cloud Build

Passing empty--cache-dir flag to Kaniko to suppress log spam about"Error while retrieving image from cache".

Cloud Composer

Modified validation for--master-ipv4-cidr flag ofgcloud beta composer environments create to verify that the IPV4 CIDR blockhas a mask of 28 bits size.

Cloud Dataproc

Promotedgcloud dataproc jobs submit spark-r command group to GA.

Cloud Datastore

Fixed a bug where the strings "yes", "no", "y", or "n" could not be used asfield names in indexes.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.10.1
- Fix bug where ruleCoverage.html pages were always return a 404 NOT FOUND.
Release Cloud Firestore emulator v1.10.2
- Introduce support for data import and export.
- Fix bug where rapid, repeated writes to the same document could trigger timestamp collisions.

Cloud Key Management Service

Promotedgcloud kms commands for external keys to beta.
Promoted key import commands to GA.

Cloud Memorystore

Promoted the following commands to GA:
- gcloud redis instances import
- gcloud redis instances export
- gcloud redis operations cancel

Compute Engine

Promotedgcloud compute os-config patch-jobs command group to beta.
Added the following flags togcloud beta compute os-config patch-jobs execute command to allow for acustom patch job name and more structured expressions for instance filters:
- --display-name
- --instance-filter-all
- --instance-filter-group-labels
- --instance-filter-zones
- --instance-filter-names
- --instance-filter-name-prefixes
Promotedgcloud compute os-config patch-deployments command group to beta.
Promotedgcloud compute security-policies list-preconfigured-expression-setsto beta.
Promoted--private-ipv6-google-access-type flag ofgcloud compute networks subnets <create|update> to beta.
Modifiedgcloud compute backend-services create to accept oneof--global-health-checks or--health-checks-region.
Modified the following commands to accept one of--global or--region flag:
- gcloud compute ssl-certificates create
- gcloud compute ssl-certificates delete
- gcloud compute ssl-certificates describe
Updated the following commands to require either a--global or--region flag:
- gcloud compute health-checks create http
- gcloud compute health-checks create http2
- gcloud compute health-checks create https
- gcloud compute health-checks create ssl
- gcloud compute health-checks create tcp
- gcloud compute health-checks delete
- gcloud compute health-checks describe
- gcloud compute health-checks update http
- gcloud compute health-checks update http2
- gcloud compute health-checks update https
- gcloud compute health-checks update ssl
- gcloud compute health-checks update tcp
Modified the following commands to accept either a regional or global flag:
- gcloud compute target-http-proxies createcan accept a--region or--global flag.
- gcloud compute target-http-proxies deletecan accept a--region or--global flag.
- gcloud compute target-http-proxies describecan accept a--region or--global flag.
- gcloud compute target-http-proxies listcan accept a--global or--regions flag.
- gcloud compute target-http-proxies updatecan accept a--region or--global flag.
Modified the following commands to accept either a regional or global flag:
- gcloud compute target-https-proxies createcan accept a--region or--global flag.
- gcloud compute target-https-proxies createcan accept a--url-map-region or--global-url-map flag.
- gcloud compute target-https-proxies createcan accept a--ssl-certificates-regionor--global-ssl-certificates` flag.
- gcloud compute target-https-proxies deletecan accept a--region or--global flag.
- gcloud compute target-https-proxies describecan accept a--region or--global flag.
- gcloud compute target-https-proxies listcan accept a--global or--regions flag.
- gcloud compute target-https-proxies updatecan accept a--region or--global flag.
- gcloud compute target-https-proxies updatecan accept a--url-map-region or--global-url-map flag.
- gcloud compute target-https-proxies updatecan accept a--ssl-certificates-region or--global-ssl-certificates flag.
Promoted--autoscaler-mode,--min-nodes,--max-nodes flags ofgcloud compute sole-tenancy node-groups <create|update> to beta.
Added and standardized the Windows Client BYOL names in--osflag ofgcloud compute images import.
- For 32-bit versions of Windows:Windows 7 SP1: windows-7-x86-byolWindows 8.0 and 8.1: windows-8-x86-byolWindows 10, all versions: windows-10-x86-byol
- For 64-bit versions of Windows:Windows 7 SP1: windows-7-x64-byol (renamed, previously windows-7-byol)Windows 8.0 and 8.1: windows-8-x64-byol (renamed, previously windows-8-1-x64-byol)Windows 10, all versions: windows-10-x64-byol (renamed, previously windows-10-byol)
Modified the following commands to accept either a regional or global flag:
- gcloud compute url-maps add-host-rule can accept a--global or--regions flag.
- gcloud compute url-maps add-path-matcher can accept a--global or--regions flag.
- gcloud compute url-maps create can accept a--global or--regions flag.
- gcloud compute url-maps delete can accept a--global or--regions flag.
- gcloud compute url-maps describe can accept a--global or--regions flag.
- gcloud compute url-maps list can accept a--global or--regions flag.
- gcloud compute url-maps remove-host-rule can accept a--global or--regions flag.
- gcloud compute url-maps remove-path-matcher can accept a--global or--regions flag.
- gcloud compute url-maps set-default-service can accept a--global or--regions flag.
Updatedgcloud compute forwarding-rules create commandto accept one of the following flags:--global-target-http-proxy,--target-http-proxy-region,--global-target-https-proxy,--target-https-proxy-region.

Firebase Test Lab

Added--num-uniform-shards and--test-targets-for-shard (mutually exclusive) flags togcloud beta firebase test android run to run tests in parallel.

GKE Hub

Added support for registrations in container.

Kubernetes Engine

Promoted NodeLocalDNS Addon to beta. Use--addons=NodeLocalDNS withgcloud beta container clusters create.This addon can be enabled or disabled on existing clusters using--update-addons=NodeLocalDNS=ENABLED or--update-addons=NodeLocalDNS=DISABLEDwithgcloud container clusters update.
Fixed doc link ofgcloud container clusters create amdgcloud containerclusters update.

Miscellaneous

Modifiedgcloud projects list to apply--limit on client-side if anyclient-side filters were applied with--filter.

Policy Troubleshooter

Addedgcloud policy-troubleshoot iam, which troubleshoots a member's IAM permissions on a resource.

Secret Manager

Promotedgcloud secrets command group to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

272.0.0 (2019-11-19)

Cloud SDK

The gcloud command-line tool now has beta support for using a Python 3.5+interpreter, users interested in using Python 3 should switch now. Followthe instructions linked below.
- Some Python tools other than the gcloud command-line tool that are shippedin the Cloud SDK still require a Python 2.7 interpreter, for details run:gcloud topic startup or visit:https://cloud.google.com/sdk/gcloud/reference/topic/startup.
- For more information on how to configure your Python interpreter, run:gcloud topic startup or visit:https://cloud.google.com/sdk/gcloud/reference/topic/startup.

App Engine Flexible Environment

Modified builds to start on the server-side by default.

Cloud DNS

Promoted Non-RFC1918 support features to beta. Added--managed-reverse-lookup and--private-forwarding-targets params to support resolution and forwarding of Non-RFC1918 IP Addresses.

Cloud Dataproc

Fixed a bug where--region wasn't getting applied togcloud dataproc jobs set-iam-policy --region andgcloud dataproc jobs get-iam-policy --region or to the polling requests ofgcloud dataproc jobs wait --region andgcloud dataproc jobs kill --region, resulting in errors whenever--region was supplied and did not match the value ofgcloud config get-value dataproc/region.

Cloud Pub/Sub

Added the following optional flags togcloud pubsub topics update to support Cloud KMS integration:
- --topic-encryption-key
- --topic-encryption-key-keyring
- --topic-encryption-key-location
- --topic-encryption-key-project

Cloud Run

Promotedgcloud run to GA. All beta commands and flags have been promotedwith the following exceptions:
- gcloud run domain-mappings is limited to Cloud Run for Anthos.To use with Cloud Run (fully managed), please continue to usegcloud beta run domain-mappings.

Cloud Tasks

Promotedgcloud beta tasks create-http-task to GA.

Kubernetes Engine

Hid the following flags ongcloud container clusters create andgcloudcontainer clusters update. The promotion to GA is delayed. Flags aretemporarily hidden to avoid confusion.
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
- --add-maintenance-exclusion-name
- --add-maintenance-exclusion-start
- --add-maintenance-exclusion-end
- --clear-maintenance-window
- --remove-maintenance-exclusion

Stackdriver Monitoring

Promotedmonitoring channels andmonitoring channel-descriptorscommands from alpha to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

271.0.0 (2019-11-12)

Breaking Changes

(Kubernetes Engine) Enabled node auto-upgrade by default for clusters and node-pools createdwithgcloud container <clusters|node-pools> create. To disable manually,use--no-enable-autoupgrade flag.

App Engine

Updated the Java SDK to version 1.9.77.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes

App Engine Flexible Environment

Deprecated--use-container-optimized-os flag ofgcloud beta app update.

BigQuery

Updated the BigQuery CLI to handle ASSERT statements.
Modified JSON mode such that failed child job results aren't printed.
Enabled v2 API for enabling/disabling materialized view refresh.
Added Reservation API v1beta1 support.

Cloud Functions

Promoted the following commands to GA:gcloud functions add-iam-policy-binding,gcloud functions remove-iam-policy-binding,gcloud functions set-iam-policy,andgcloud functions get-iam-policy.

Cloud Run

Removed the ability to specify deprecated string values like "Single" to--concurrency flag ingcloud beta run deploy andgcloud beta run servicesupdate. Instead, please specify an integer value for this field or "default".
Changed the default describe format for services to be human-readable. Touse the previous yaml describe format, pass the flag--format=yaml.

Compute Engine

Added--private-network-ip flag togcloud compute instance-templates create command.
Added--private-network-ip flag togcloud compute instance-templates create-with-container command.
Promotedgcloud compute backend-services export command to GA.
Promotedgcloud compute backend-services import command to GA.
Promotedgcloud compute forwarding-rules export command to GA.
Promotedgcloud compute forwarding-rules import command to GA.
Promotedgcloud compute url-maps export command to GA.
Promotedgcloud compute url-maps import command to GA.
Promoted--storage-location flag ofgcloud compute images create andgcloud compute images import to GA.
Promotedgcloud compute instance-groups managed create-instance commandto beta.

Kubernetes Engine

Promoted--enable-vertical-pod-autoscaling flag ofgcloud container clusters create andgloud container clusters update toGA.
Added--release-channel flag togcloud beta container clusters updatefor subscribing an existing cluster to a release channel or removing acluster from a release channel.
Promoted Cloud Run for Anthos on Google Cloud to GA. Use--addons=CloudRun withgcloud container clusters create or--update-addons=CloudRun=ENABLED withgcloud container clusters update.
Promoted the GKEApplicationManager add-on ofgcloud container clusterscreate andgcloud container clusters update to beta. This add-on isdisabled by default.
- Use--addons=ApplicationManager to enable the add-on during clustercreation.
- Use--update-addons=ApplicationManager=ENABLED|DISABLED toenable/disable the add-on for existing GKE clusters.
Promoted--shielded-secure-boot and--shielded-integrity-monitoringflags ofgcloud container clusters create andgloud container clustersupdate to GA.

Pubsub Emulator

Released Cloud Pub/Sub emulator v0.1.0
- First versioned release.
- Build system changes.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

270.0.0 (2019-11-05)

AI Platform

Added--explanation-method,--num-integral-steps, and--num-pathsoptions forgcloud <alpha|beta> ai-platform versions create.
Added commandgcloud <alpha|beta> ai-platform explain.

App Engine

Updated the Python SDK to version 1.9.87.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes

App Engine Flexible Environment

Fixedgcloud beta app deploy to stream to build logs to stderr instead ofstdout.

Cloud Bigtable

Show full operation name without the implied operation and project prefix ingcloud bigtable operations list.
Accept full operation name or full name without the implied operation and project prefix ingcloud bigtable operations describe.

Cloud Dataflow

Added--disable-public-ips flag togcloud dataflow jobs run.

Cloud Dataproc

Fixedgcloud dataproc workflow-templates instantiate-inline to acceptcluster properties. Previously, you would have seen the error"File not found $PWD/google-cloud-sdk/latest/google-cloud-sdk/lib/googlecloudsdk/schemas/dataproc/v1/PropertiesValue.yaml".

Cloud Endpoints

Fixed issue wheregcloud endpoints services deploy would sometimes fail dueto a permissions error.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.10.0
- Added support for seeding database from export via--seed_from_export.
- Fixed an issue where batchGet and transactions does not work over REST.

Cloud Storage

Updated gsutil component to 4.46.

Compute Engine

Promoted--mode flag ofgcloud compute instance-groups managedset-autoscaling command to beta.
Promotedgcloud compute instance-groups managed update-autoscaling commandto beta.

Kubernetes Engine

Fixed issue where setting maintenance windows would overwrite all existingmaintenance exclusions.
Fixed issue where you could not set a recurring maintenance window if adaily window was already set (and vice versa).
Promoted Node Auto-Provisioning to GA. Use--enable-autoprovisioning withgcloud container clusters createorgcloud container clusters update to enable this feature.
Added--enable-autoprovisioning togcloud container node-pools create,gcloud beta container node-pools create,gcloud beta container node-pools update andgcloud container node-pools update.
Fixed cluster and node pool creation ingcloud beta container commands whenusing GKE versions below 1.13.6. The regression was caused by sending aNodePool API field that's version-gated (1.13.6+ only). This field is nowonly sent when--shielded-integrity-monitoring or--shielded-secure-bootflags are set.
Added--max-surge-upgrade and--max-unavailable-upgrade flags togcloud beta container command group. Use these flags to specify surgeupgrade parameters for cluster creation, node pool creation, or node poolupdate.
- Surge upgrade is enabled by default (--max-surge-upgrade=1) forclusters and node pools created withgcloud beta container commands.
Promoted the following flags to GA ongcloud container clusters create andgcloud container clusters update:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
Promoted the following flags to GA ongcloud container clusters update:
- --add-maintenance-exclusion-name
- --add-maintenance-exclusion-start
- --add-maintenance-exclusion-end
- --clear-maintenance-window
- --remove-maintenance-exclusion
Promoted--database-encryption-key forgcloud container clusterscreate|update, and--disable-database-encryption forgcloud containerclusters update to GA.
Added--enable-cloud-run-alpha flag togcloud container clusters createto enable Cloud Run alpha features on the cluster.

Managed Active Directory

Promotedgcloud active-directory command group to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

269.0.0 (2019-10-29)

Breaking Changes

(Cloud Run) Removed check for the compute/region property when determining which CloudRun region to use. Pass--region or set the run/region property instead.

Cloud Composer

Added two Airflow subcommands (list_dag_runs, next_execution) togcloudcomposer environments run.

Cloud Functions

Promoted network settings flags (ingress, egress) forgcloud functions deploy to beta.
Promoted prompt to allow unauthenticated access forgcloud functions deploy to GA.
Promoted--allow-unauthenticated flag forgcloud functions deploy to GA.

Cloud IAM

Promotedgcloud iam service-accounts disable to GA.
Promotedgcloud iam service-accounts enable to GA.

Cloud Services

Promotedservices identity command group to beta.
Removed the commandservices operations list.

Compute Engine

Promoted--next-hop-ilb and--next-hop-ilb-region flags ofgcloud compute routes create to GA.
Promotedgcloud compute packet-mirrorings command group to beta.
Promoted--is-mirroring-collector flag ofgcloud compute forwarding-rules create command to beta.
Rename the flag--drain-nat-ips to--nat-external-drain-ip-pool to matchthe user guide.

Miscellaneous

Fixed issue where results would be limited before filtering.
Fixed issue where a blank line was not printed between pages when the resultset fit on two pages.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

268.0.0 (2019-10-22)

Cloud Life Sciences

Addedgcloud beta lifesciences pipelines which defines and runs pipelines.
Addedgcloud beta lifesciences operations which manages pipeline operations.

Cloud Memorystore

Modified--update-redis-config flag ofgcloud redis instances update toaccept 'maxmemory-gb' as a parameter.

Cloud SQL

Promoted--disk-encryption-key flag to GA.

Cloud Storage

Updated gsutil component to 4.45.

Compute Engine

Promoted--drain-nat-ips and--clear-drain-nat-ips flags ofgcloud compute routers nats to GA.

GKE Hub

Renamedcontainer hub register-cluster andcontainer hub unregister-cluster tocontainer memberships register andcontainer memberships unregister respectively.

Kubernetes Engine

Fixed issue wheregcloud beta container clusters update crashed whenadding a maintenance exclusion if a maintenance window is set but noexclusions exist.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

267.0.0 (2019-10-15)

Breaking Changes

(Cloud Datastore Emulator) Removed the deprecated component(gcd-emulator) for the legacy version that used the v1beta3 API.
(Cloud Datastore Emulator) Removed the deprecated--legacy flag fromgcloud beta emulators datastore start that invoked the legacy version ofthe emulator.

BigQuery

Fixed crash when displaying the results of a script query.
Added options to control the maximum time and bytes per script statement,maximum time to run a script, and the maximum number of results to display fora script.

Cloud Asset Inventory

Promotedgcloud asset feeds command group to beta.

Cloud Bigtable

Added support for authorization tokens via the-auth-token flag.

Cloud Dataproc

Fixed issue where--region flag was not honored forgcloud beta dataproccommands, specifically when passing resources as URIs.
- Ifdataproc/region is set--region flag, still correctly override it.

Cloud Firestore

Promotedgcloud firestore command group to GA.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.9.0
- Serve WebChannel traffic on the same port as gRPC.

Cloud IAM

Promoted--description flag ofgcloud iam service-accounts create andgcloud iam service-accounts update to GA.

Cloud Run

Cloud Run will no longer require the Istio add-on for newer versions of GKE(1.15.3-gke.19+, 1.14.3-gke.12+, and 1.13.10-gke.8+).

Compute Engine

Promoted--family and--description flags ofgcloud compute images import to GA.

Kubernetes Engine

Fixed defaulting of--shielded-integrity-monitoring to remain true when--shielded-secure-boot is also enabled.
Removed validation condition that restricts--autoprovisioning-service-account and--autoprovisioning-scopes from being specified together.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

266.0.0 (2019-10-08)

AI Platform

Promoted--accelerator ingcloud ai-platform versions create to beta.

App Engine

Modified validation for Go main package paths: hyphens and other characters are now valid.
Added error checking when a deployed jar does not contain a Main-Class manifest entry.

Cloud Build

Promotedgcloud builds triggers command group to beta.

Cloud Data Catalog

Addedgcloud beta data-catalog entry-groups command group.
Addedcreate anddelete commands togcloud beta data-catalog entries.

Cloud Dataproc

Addedrealm field to the file specified by--kerberos-config-file,applicable to the following commands:
- gcloud dataproc clusters create
- gcloud dataproc workflow-templates set-managed-cluster
- gcloud beta dataproc clusters create
- gcloud beta dataproc workflow-templates set-managed-cluster

Cloud Functions

Promoted--vpc-connector in functions deploy to GA.

Cloud Run

Modifiedroutes andconfigurations command groups to be hidden.
Changed the descriptions of the platforms for Cloud Run to match currentproduct names and functionality.

Cloud Spanner

Added--timeout flag togcloud spanner databases execute-sql to supportlong-running requests.

Cloud Storage

Updated gsutil component to 4.44.

Compute Engine

Promoted--networks flag ofcompute backend-services create to beta.
Promoted 'SHARED_LOADBALANCER_VIP' option of--purpose flag ofgcloud beta compute addresses create to beta.

Kubernetes Engine

Added the following flags togcloud beta container clusters create andgcloud beta container clusters update for specifying more flexiblemaintenance windows:
- --maintenance-window-start
- --maintenance-window-end
- --maintenance-window-recurrence
Added the following flags togcloud beta container clusters update forspecifying exclusions to maintenance windows:
- --add-maintenance-exclusion-name
- --add-maintenance-exclusion-start
- --add-maintenance-exclusion-end
Added the following flags togcloud beta container clusters update forremoving maintenance windows and exclusions:
- --clear-maintenance-window
- --remove-maintenance-exclusion
Promoted--enable-binauthz flag ofgcloud container clusters create toGA.
Added--node-locations flag togcloud container create node-pool andgcloud container update node-pool commands. This flag specifies thelocation(s) where nodes will be hosted when the node pool has been createdor updated.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

265.0.0 (2019-10-01)

Cloud SDK

Added--include-email flag togcloud auth print-identity-token toinclude service account email in the identity token of an impersonatedservice account.
Added--token-format and--include-license flags togcloud auth print-identity-token to include project and instanceinformation in the identity token of a Compute Engine instance.

App Engine

Added support for deploying Java11 fatjar directly.
Added support for Class-Path entry dependent jars for deploying a Java11 fatjar.
Updated the Go SDK to version 1.9.71.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/go/release-notes

BigQuery

Modified the output ofbq show for models to also show encryption info.
Added functionality tobq update with--clustering_fields flag to converta clustered table to an unclustered table.
Added--use_avro_logical_types flag tobq extract to extract some columnsto their AVRO logical types rather than raw types.
Fixed issue where the formatting of unicode table names in some error messageswas incorrect.
Modifiedbq query to display the results of each statement in a script,instead of only the last statement.
Added--parent_job_id flag tobq ls for listing child jobs of a scriptjob.

Cloud DNS

Promoted--enable-logging flag ofgcloud dns policies to GA.

Cloud Dataproc

Promotedgcloud dataproc autoscaling-policies command group to GA.
Promoted--autoscaling-policy flag ofgcloud dataproc clusters create andgcloud dataproc clusters update to GA.

Cloud Functions

Fixed a bug ingcloud beta functions deploy where new functions wereincorrectly made publicly invokable when the user specified they should beprivate.

Cloud Pub/Sub

Promoted--message-storage-policy-allowed-regions flag ofgcloud pubsub topics create, and--recompute-message-storage-policy and--message-storage-policy-allowed-regions flags ofgcloud pubsub topics update to GA. This allows users to controlthe Cloud regions where published messages are stored at rest.

Cloud Run

Promoted--max-instances flag ofgcloud run deploy andgcloud run services update to beta.

Cloud Storage

Updated gsutil component to 4.43.

Compute Engine

Promoted 100G interconnect link type support forgcloud compute interconnects create to GA.
Promotedgcloud compute instances os-inventory command group to GA.
Promotedgcloud compute instances import to GA.

Firebase Test Lab

Added beta support for iOS Game Loop tests.
Added--type flag togcloud firebase test ios run.
Added--app togcloud firebase test ios run.
Added--scenario-numbers togcloud firebase test ios run.

Miscellaneous

Addedseparator attribute to--format=multi flag.

Translation API

Addedgcloud beta ml translate command group.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

264.0.0 (2019-09-24)

Cloud SDK

Fixed issue where the Google Cloud SDK Windows installer would break thePSModulePath environment variable when installing the "Cloud Tools forPowerShell" component. This issue was reported athttps://github.com/GoogleCloudPlatform/google-cloud-powershell/issues/524.
- Users affected by this breakage may need to manually add%HomeDrive%%HomePath%\Documents\WindowsPowerShell\Modulesto their PSModulePath user environment variable. See the instructionshere for adding a persistent value:https://docs.microsoft.com/en-us/powershell/developer/module/modifying-the-psmodulepath-installation-path#to-add-locations-to-the-psmodulepath-variable.

Cloud Bigtable

Addedgcloud bigtable operations describe|list which provides the functionality to describe an operation or list operations to GA.

Cloud DNS

Promotedgcloud dns policies to GA.
Promotedgcloud dns managed-zones forwarding-targets to GA.

Cloud Dataproc

Fixes issues where--region flag is passed togcloud dataproc autoscaling-policies orgcloud dataproc workflow-templates, but the commands still fail with the error "The required property [region] is not currently set.".

Cloud SQL

Added Postgres 11 option to--database-version flag.

Compute Engine

Promoted instance health state field ofgcloud compute instance-groupsmanaged list-instances to beta.
Made--os flag optional ingcloud <alpha|beta> compute instances import.
Updatedgcloud compute ssh to add support for reading SSH host keys frominstance guest attributes. For more information, seehttps://cloud.google.com/solutions/connecting-securely#storing_host_keys_by_enabling_guest_attributes.

Kubernetes Engine

Google Kubernetes Engine default kubectl is updated to 1.13.11.
Addresses CVE-2019-11251.
Additional kubectl versions:
- kubectl.1.13 (1.13.11)
- kubectl.1.14 (1.14.7)
- kubectl.1.15 (1.15.4)
Fixedgcloud container binauthz IAM commands to call the correct v1 APIroutes.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

263.0.0 (2019-09-17)

Breaking Changes

(Compute Engine)gcloud compute vpn-tunnels create now requires either a--target-vpn-gateway or--vpn_gateway flag.
(Compute Engine)gcloud compute vpn-tunnels create now requires one of the following three flags:
- --peer_address
- --peer_gcp_gateway
- --peer_external_gateway
(Compute Engine) Promoted--reservations-from-file,--reservation,--reservation-zone,--accelerator,-local-ssd,--machine-type,--machine-type,--min-cpu-platform,--require-specific-reservation, and--vm-count flags forgcloud compute commitments create to GA.
(Miscellaneous) Fixed issue wheregcloud table formats would sort numbers alphabetically,rather than numerically.

Cloud Asset Inventory

Added--bigquery-table--output-bigquery-force flags togcloud asset export.

Cloud Dataproc

Promoted accelerators and min cpu platform related flags to GA.
- Added--preemptible-worker-accelerator flag togcloud dataproc clusters create, providing the capability for accelerators to be attached to preemptible workers.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.8.3.
- Fix bug where concurrent requests for the same transaction would sometimes hang.
Release Cloud Firestore emulator v1.8.4
- Fix bug where WriteResults for deletes had anupdate_time populated.

Cloud Pub/Sub

Promoted the following commands undergcloud pubsub topics andgcloudpubsub subscriptions to GA to support iAM policy configuration:
- add-iam-policy-binding
- get-iam-policy
- remove-iam-policy-binding
- set-iam-policy

Cloud Run

Promoted--platform=kubernetes,--kubeconfig, and--context flags ofgcloud run to beta.

Compute Engine

Promotedgcloud compute external-vpn-gateways to GA.
Promotedgcloud compute vpn-gateways to GA.
Promoted Highly Available related commands forgcloud compute vpn-tunnels to GA.
Promoted--logging-aggregation-interval,--logging-flow-sampling, and--logging-metadata flags ofgcloud compute networks subnets <create|update> to GA.
Promoted--reservation and--reservation-affinity flags forgcloud compute instance-templates create to GA.
Promoted--reservation and--reservation-affinity flags forgcloud compute instances create to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

262.0.0 (2019-09-10)

Cloud SDK

Added 'context_aware' configuration, to specify the usage of clientcertificate. Please seegcloud config set --help for more details.
Updated the winkeygen.exe executable on Windows to include a fix that willre-encode .ppk key files created with an incorrect encoding.

Cloud Healthcare

Promotedgcloud healthcare command group to beta.

Cloud Run

Added log warning that shows the list of regions that did not respondtogcloud run beta services list.
Promoted--labels and related flags forgcloud beta run update andgcloud beta run deploy to beta.

Cloud Speech API

Promoted--additional-language-codes,--include-word-confidence,--enable-speaker-diarization,--diarization-speaker-count flags ofgcloud ml speech recognize to beta.
Promoted--additional-language-codes,--include-word-confidence,--enable-speaker-diarization,--diarization-speaker-count flags ofgcloud ml speech recognize-long-running to beta.

Compute Engine

Promotedgcloud compute networks peerings update to GA.
Added--family flag togcloud beta compute images import.
Added--description flag togcloud beta compute images import.
Added Mutual TLS support for context aware access users to access VMs(ssh/tcp) using IAP tunnel.
Updated Windows PuTTY executables to version 0.71.
Promotedgcloud beta compute routers nats update to beta.
Promotedenable-display-device flag forgcloud compute instances create to GA.
Promotedenable-display-device andno-enable-display-device flags forgcloud compute instances update to GA.

Kubernetes Engine

Flag--allow-route-overlap now needs either--enable-ip-alias or--no-enable-ip-alias to be set.
Added--enable-intra-node-visibility togcloud container clusters create.
Added--release-channel flag togcloud beta container clusters createfor subscribing a cluster to a release channel.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

261.0.0 (2019-09-03)

Breaking Changes

(Cloud Datastore Emulator) Deprecated--legacy flag fromgcloud beta emulators datastore start. This is due to the legacyDatastore emulator no longer being supported. The flag will be removedin early October 2019.
(Kubernetes Engine) Removed deprecated PGP-specific flags fromgcloud beta container binauthz command group.

Cloud Bigtable

Fixed issue where the ColumnFamilies and timestamp granularity was missing inthe emulator's CreateTableResponse. This issue can be tracked athttps://github.com/googleapis/google-cloud-go/issues/1512.
Fixed issue where the emulator would return partial matches for a regex thatcontained alternation operator. This issue can be tracked athttps://github.com/googleapis/google-cloud-go/issues/1499.
Fixed issue where the emulator would ignore the result of aPredicateFilter.This issue can be tracked athttps://github.com/googleapis/google-cloud-go/issues/1435.

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.8.1.
- Fixed bug where committing a transaction with no writes would not release locks.
Release Cloud Firestore emulator v1.8.2.
- Fixed bug where transactions that timed out could still modify data.

Compute Engine

Promotedgcloud compute networks peerings update to GA.
Added--family flag togcloud beta compute images import.
Added--description flag togcloud beta compute images import.

Kubernetes Engine

Removed the following flags fromgcloud beta container clusters create andgcloud beta container clusters update:
- --database-encryption-key-location
- --database-encryption-key-keyring
- --database-encryption-key-project.
Deprecated--enable-cloud-monitoring and--enable-cloud-logging flagsand moved default selection for Stackdriver monitoring and logging to theGKE API.
Promotedgcloud container binauthz KMS and PKIX key type support to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

260.0.0 (2019-08-27)

Breaking Changes

(Cloud Dataproc) Modified--region flag to be mandatory.
- To use Cloud Dataproc commands, pass the--region flag on every invocation, or set thedataproc/region configuration variable viagcloud config set dataproc/region.
- Forgcloud beta dataproc commands, this flag/config value is required.
- Forgcloud dataproc commands, the default will remainglobal until January 2020.
(Cloud Run) Removed--[no-]allow-unauthenticated flag fromgcloud beta run services update. Usegcloud beta run services add-iam-policy-binding andgcloud beta run services remove-iam-policy-binding commands to modify the policies of an existing service.

Cloud SDK

Deprecated--size alias ofgcloud container clusters resize --num-nodes.

AI Platform

Added--tpu-tf-version togcloud beta ai-platform jobs submit training.

BigQuery

Added support for org/folder level reservation grants.
Added support for setting and getting IAM policies:bq get-iam-policy <resource> [<json_file_name>].

Cloud Firestore Emulator

Release Cloud Firestore emulator v1.8.0
- Add support for queries inside of read-write transactions.
- Fix bug causing the WebChannel adapter to reject queries with limits.

Cloud Run

Updated success message for synchronousgcloud run alpha/beta deployto indicate if and how much traffic the new revision is serving.

Compute Engine

Added windows-2019, windows-2019-byol, and windows-8-1-x64-byol options to--os flag ofgcloud compute images import.

Kubernetes Engine

Added--enable-shielded-nodes togcloud beta container clusters createandgcloud beta container clusters update. These flags control theShielded GKE Nodes feature, seehttps://cloud.google.com/kubernetes-engine/docs/how-to/shielded-gke-nodes.
Made--max-cpu and--max-memory flags optional forgcloud container clusters update --enable-autoprovisioning.
Enabled auto repair by default on COS_CONTAINERD image.
Google Kubernetes Engine default kubectl is updated to 1.13.9.
Additional kubectl versions:
- kubectl.1.11 (1.11.10)
- kubectl.1.12 (1.12.10)
- kubectl.1.13 (1.13.9)
- kubectl.1.14 (1.14.5)
- kubectl.1.15 (1.15.2)
Added--autoprovisioning-locations flag forgcloud container clusters create --enable-autoprovisioning andgcloud container clusters update --enable-autoprovisioning.

Policy Troubleshooter

Addedgcloud beta policy-troubleshoot iam which troubleshoots a member's IAM permission on a resource.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

259.0.0 (2019-08-20)

Cloud SDK

Updatedgsutil component be able to use Python v3.x.
Added--impersonate-service-account flag togcloud auth print-identity-token to be used inconjunction with--audiences.
Added support for Compute Engine service accounts togcloud auth print-identity-token.

Cloud Pub/Sub

Added the following optional flags togcloud pubsub topics create to support Cloud KMS integration:
- --topic-encryption-key
- --topic-encryption-key-keyring
- --topic-encryption-key-location
- --topic-encryption-key-project

Compute Engine

Added--storage-location flag togcloud beta compute images import to allow specifying image location in VM image import.

GKE Hub

Promotedgcloud container hub commands to beta. Added--version flagto allow specifying a specific GKE Connect version to use.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

258.0.0 (2019-08-13)

Breaking Changes

(Compute Engine) Renamed--custom-vm-gen flag to--custom-vm-type for the following commands:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instances import
- gcloud compute instances set-machine-type
- gcloud compute instance-template create
- gcloud compute instance-template create-with-container

Cloud Dataproc

Added flags--max-age,--max-idle,--expiration-time togcloud dataproc clusters create command group.
Added flags--max-age, '--max-idle',--expiration-time,--no-max-age,--no-max-idle togcloud dataproc clusters update command group.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.7.1
- Fixed bug where auth context was always null when using WebChannel.
- Changed name of experimental--webchannel-port flag to--webchannel_port.

Cloud Functions

Changedgcloud beta functions deploy to disallow unauthenticated callers ofnew functions by default. The GAgcloud functions deploy command remains thesame.

Cloud Storage

Updated gsutil component to 4.42.

Kubernetes Engine

Added--shielded-secure-boot and--shielded-integrity-monitoring togcloud beta container clusters create andgcloud beta containerclusters create. These flags control the corresponding Shielded VM optionson Nodes, seehttps://cloud.google.com/security/shielded-cloud/shielded-vm.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

257.0.0 (2019-08-06)

Breaking Changes

(Cloud SDK) Removed support formultistore format credentials. To upgrade from versions older than 155.0.0 without losing credentials, run the following commands:
- gcloud components update --version=255.0.0
- gcloud auth list
- gcloud components update

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.7.0
- Added experimental support for the WebChannel protocol, allowing communication with browser clients.

Kubernetes Engine

Added--disable-database-encryption togcloud beta container clustersupdate to allow disabling Database Encryption. For more information, seehttps://cloud.google.com/kubernetes-engine/docs/how-to/encrypting-secrets.

256.0.0 (2019-07-30)

Breaking Changes

(Kubernetes Engine) Reverted cluster creation behavior such that new clusters now come up inRoutes mode by default. The change to using VPC-Native mode as the defaultwill be reintroduced at a later date.Use--enable-ip-alias flag for VPC-Native (IP Alias-enabled) mode.

BigQuery

Fixed bug inbq update --transfer_config --update_credentials.

Cloud Bigtable

Added support for specifying complex policies usingcbt setgcpolicy such asmaxage=30d || (maxage=3d && maxversions=100).

Cloud Dataflow

Added--dataflow-kms-key flag togcloud beta dataflow jobs run.

Cloud Identity-Aware Proxy

Promotedgcloud iap command group to beta.

Cloud Pub/Sub

Added optional flags--push-auth-service-account and--push-auth-token-audience for defining an authenticated push subscription ingcloud pubsub subscriptions create | update | modify-push-config.

Managed Active Directory

Addedgcloud active-directory command group. This feature enables theprovisioning and administering of a managed Microsoft Active Directory domain.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

255.0.0 (2019-07-23)

Breaking Changes

(Cloud Run) Changed--platform flag and its respectiverun/platform property to berequired in allgcloud beta run commands. If not specified, you will beprompted to choose a platform.

Cloud Asset Inventory

Added new content typeaccess-policy togcloud asset export andgcloud asset get-history.

Cloud Storage

Updated gsutil component to 4.41.

Compute Engine

Removed deprecation notice for--zones ingcloud compute.--zones is no longer deprecated and will continue to be supported.
Addedgcloud compute diagnose command group.
Addedgcloud beta compute diagnose command group.
Fixed bug wheregcloud compute network-endpoint-groups update did notrequire either--add-endpoint or--remove-endpoint flag to be specified.

Firebase Test Lab

Fixed a bug where the files specified using--other-files were not correctlypushed to an Android device before the test starts.

Kubernetes Engine

Promotedgcloud beta container binauthz to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

254.0.0 (2019-07-16)

AI Platform

Promoted the following flags forgcloud ai-platform jobs submit trainingto GA:
- --master-machine-type
- --master-accelerator
- --master-image-uri
- --worker-count
- --worker-machine-type
- --worker-accelerator
- --worker-image-uri
- --parameter-server-count
- --parameter-server-machine-type
- --parameter-server-accelerator
- --parameter-server-image-uriUse these flags to configure training VMs and deploy custom containers.

BigQuery

Removed json formatting requirement forbq ls --print_last_token.
Added support for dataset default KMS key.

Cloud Asset Inventory

Added--output-path-prefix flag togcloud asset export.
Added new content typeorg-policy togcloud asset export andgcloud asset get-history.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.6.1.
- Fixed bug where ClearData would fail for databases with more than 500 documents.
Released Cloud Firestore emulator v1.6.2.
- Fixed bug where Firestore queries with cursors had incorrect boundary behavior.

Cloud Pub/Sub

Promoted--message-storage-policy-allowed-regions flag ofgcloud pubsub topics create to beta. This feature allows users to controlthe Cloud regions where published messages are stored at rest.
Promoted--recompute-message-storage-policy and--message-storage-policy-allowed-regions flags ofgcloud pubsub topics update to beta. This feature allows users to controlthe Cloud regions where published messages are stored at rest.

Cloud Run

Fixed bug causing unnecessary API enablement prompt when working with Cloud SQL instances.

Cloud Storage

Updated gsutil component to 4.40.

Compute Engine

Addeddisk-resource-policy option to--create-disk flag ingcloud beta compute instance-templates create.
Fixed bug wheregcloud compute images export would create temporary Cloud Storage bucket in USmulti-region when destination file is in a different region.
Promotedgcloud compute resource-policies to GA.
Promoted resource policies ingcloud compute disks to GA.

Firebase Test Lab

Fixed a possible crash when invalid iOS device dimensions are specified for a test run.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

253.0.0 (2019-07-02)

Breaking Changes

(Compute Engine) Deprecatedgcloud beta compute resource-policies create-snapshot-schedule.Usegcloud beta compute resource-policies create snapshot-schedule instead.

Cloud SDK

Promoted--audiences flag ofgcloud auth print-identity-token to GA.

App Engine

Updated the Java SDK to version 1.9.76.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes

BigQuery

Added support for persistent user-defined functions and stored procedures inbq show --routine,bq ls --routines, andbq rm --routine.
Added support for creating scheduled queries; usebq query with--scheduleas well as--destination_table and--target_dataset flags.
Increased number of projects listed from the 'bq show' command.
Added 'clustered fields' information forlist dataset andshow tablecommands.
Modifiedbq show --connection to use the default location if the connectionname is given in 'short' form.
Fixed Python 3 compatibility issues.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.6.0.
- Calling SetSecurityRules with invalid rules is allowed.

Cloud Key Management Service

Promotedgcloud kms import-jobs and other import-related commands to beta.

Cloud Run

Removed--kubeconfig and--context flags and--platform=kubernetesoption fromgcloud beta run.

Cloud SQL

Updatedgcloud sql instances describe to show the 'STOPPED' instance state,to be consistent with the 'gcloud sql instances list` command.

Compute Engine

Fixed bug wheregcloud compute images import would create temporary Cloud Storage bucket in US multi-region when source image file is in a different region.
Promotedgcloud compute instances get-guest-attributes to GA.
Promoted--storage-location flag ofgcloud compute images create to beta.
Modifiedgcloud compute backend-services create andgcloud compute backend-services update to relax validation for specifying--enable-logging, and--logging-sample-rate.
Promotedhttp2 value to v1 for--protocol flag ofgcloud computebackend-services create andgcloud compute backend-services update.
Promotedgcloud compute start-iap-tunnel to GA.
Promoted--tunnel-through-iap flag ofgcloud compute ssh andgcloud compute scp to GA.
Promoted--internal-ip flag ofgcloud compute scp to GA.
Promotedgcloud compute health-checks create http2 andgcloud compute health-checks update http2 commands to GA.
Promotedgcloud compute instances import to beta.
Added--ssh_key_expiration and--ssh_key_expire_after flags togcloud compute scp, andgcloud compute ssh, andgcloud compute connect-to-serial-port commands to set expirations forssh keys.

Kubernetes Engine

Promoted Google Kubernetes Engine kubectl to 1.12.9 from 1.12.8, to addressCVE-2019-11246.
Promoted the following flags ofgcloud container clusters update to beta:
- --database-encryption-key
- --database-encryption-key-keyring
- --database-encryption-key-location
- --database-encryption-key-project
These flags control Database Encryption which encrypt Kubernetes Secrets atthe application layer. For more information, seehttps://cloud.google.com/kubernetes-engine/docs/how-to/encrypting-secrets.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

252.0.0 (2019-06-25)

Breaking Changes

(Compute Engine) Removed--network-interface fromgcloud beta compute start-iap-tunnel.

Cloud SDK

Fixed issue where the Cloud SDK failed to install on Windows if the installpath contained exclamation point characters.

Cloud Data Catalog

Addedgcloud beta data-catalog tags andgcloud beta data-catalog tag-templates to manage tagsand tag templates in Cloud Data Catalog.
Addedgcloud beta data-catalog search to search Cloud Data Catalogresources.

Cloud Datalab

Updateddatalab component to the 20190610 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/2144.

Cloud Functions

Promoted the following commands to beta:
- gcloud functions add-iam-policy-binding
- gcloud functions get-iam-policy
- gcloud functions remove-iam-policy-binding
- gcloud functions set-iam-policy
Promoted--max-instances and--clear-max-instances flags ofgcloud functions deploy to GA.

Cloud Pub/Sub

Promotedgcloud labels functionality to GA for topics and subscriptions. These features allow users to create resource labels, or update existing resource labels. The label features now live on the following commands:
- gcloud pubsub topics create
- gcloud pubsub topics update
- gcloud pubsub subscriptions create
- gcloud pubsub subscriptions update

Cloud Storage

Updated gsutil component to 4.39.

Compute Engine

Promoted--allow-global-access flag ofgcloud compute forwarding-rules create andgcloud compute forwarding-rules update to beta.
Promoted--source-snapshot flag ofgcloud compute instances create to GA.
Promotedsource-snapshot option of--create-disk flag ofgcloud compute instances create to GA.
update-instances command (gcloud beta compute instance-groups managed update-instances) is now available in beta.
Added the following commands:
- gcloud beta compute reservations get-iam-policy
- gcloud beta compute reservations set-iam-policy
- gcloud beta compute reservations add-iam-policy-binding
- gcloud beta compute reservations remove-iam-policy-binding

Kubernetes Engine

Promoted--identity-namespace and--disable-workload-identity flags ofgcloud container clusters create andgcloud container clusters update tobeta. These flags control Workload Identity, which lets Kubernetes service accounts act as Googleservice accounts. For more information, seehttps://cloud.google.com/kubernetes-engine/docs/how-to/workload-identity.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

251.0.0 (2019-06-18)

Breaking Changes

(Compute Engine) Commands under the following command groups now require either a--global or--region flag:
- gcloud beta compute target-http-proxies
- gcloud beta compute target-https-proxies
- gcloud beta compute url-maps
- gcloud beta compute health-checks
(Kubernetes Engine) Modified Kubernetes Engine cluster creation such that new clusters nowcome up in VPC-native (IP Alias enabled) mode by default.Use--[no-]enable-ip-alias flag for the old, non-default behavior (Routesmode).

Cloud Bigtable

Fixed Latin-1 regex filters, allowing \C.
ExposedPassAllFilter.

Cloud Dataproc

Added--kerberos-root-principal-password-uri,--kerberos-kms-key, and--kerberos-config-file flags togcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster.

Cloud Firestore Emulator

Released Cloud Firestore emulator v1.5.0.
- Fixed bug where property paths with special characters would cause errors due to ClassNotFound exceptions.
- Fixed bug where auto-id allocation only worked once per collection.
- Added REST API to set security rules.

Cloud Key Management Service

Fixed issue wheregcloud kms decrypt would crash when decrypting an empty encrypted file.

Cloud Run

Added--platform flag and its respectiverun/platform property to allcommands ingcloud beta run. This argument is optional but will be requiredin a future release of the gcloud command-line tool.
Added support for connecting to clusters defined in a kubeconfig file. Specify--platform kubernetes orrun/platform kubernetes to use. Optionally, use--kubeconfig to specify a kubeconfig file and--context to specify aconnection context.

Compute Engine

Added support for regional variants of the following resources in beta:
- gcloud beta compute health-checks
- gcloud beta compute url-maps
- gcloud beta compute target-http-proxies
- gcloud beta compute target-https-proxies
Added INTERNAL_MANAGED as an option for--load-balancing-scheme to thefollowing commands:
- gcloud beta compute forwarding-rules create.
- gcloud beta compute backend-services create.

Kubernetes Engine

Promoted resource usage export to GA. Use--resource-usage-bigquery-dataset withgcloud container clusters createorgcloud container clusters update to enable this feature.
Migrated theOccurrence type created bygcloud beta container binauthzattestations create fromPgpSignedAttestation toGenericSignedAttestation.
- If you were signing JSONnot generated bybinauthzcreate-signature-payload, youmust now provide this JSON as--payload-file when creating the Attestation.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

250.0.0 (2019-06-11)

Breaking Changes

(Compute Engine) Modifiedgcloud compute networks update --switch-to-custom-subnet-mode to poll and wait for operation to finish instead of returning immediately. Please use--async flag to reproduce the previous behavior of returning immediately.

Cloud SDK

Addedcore/disable_file_logging property to prevent the gcloud command-linetool from storing logs to a file. This may be useful if disk space is limited.To set this property, rungcloud config set core/disable_file_loggingTrue.

App Engine

Updated the Python SDK to version 1.9.86. For more details, seehttps://cloud.google.com/appengine/docs/python/release-notes.
Updated the Java SDK to version 1.9.75. For more details, seehttps://cloud.google.com/appengine/docs/java/release-notes.

Cloud Functions

Added--clear-vpc-connector flag togcloud beta functions deploy.

Cloud Key Management Service

Promoted the following commands to GA.
- gcloud kms asymmetric-decrypt.
- gcloud kms asymmetric-sign.
- gcloud kms keys versions get-public-key.
Promoted the following flags ingcloud kms keys command group to GA.
- --attestation-file.
- --default-algorithm.
- --purpose.
- --protection-level.

Cloud Memorystore

Addedgcloud beta redis instances import andgcloud beta redis instances export to import data to orexport data from a Memorystore Redis instance from or to Google Cloud Storage.
Addedgcloud beta redis operations cancel to cancel a Memorystore Redisimport or export operation.

Cloud Pub/Sub

Added the following optional flags togcloud beta pubsub topics create to support Cloud KMS integration:
- --topic-encryption-key
- --topic-encryption-key-keyring
- --topic-encryption-key-location
- --topic-encryption-key-project

Cloud Run

Promoted--service-account flag ofgcloud run deploy andgcloud run services update to beta.

Compute Engine

Promotedgcloud compute instances create --source-snapshot flag to beta.
Promote INTERNAL_SELF_MANAGED value of--load-balancing-scheme ingcloud compute backend-services create andgcloud compute forwarding-rules create to GA.
Modifiedgcloud compute backend-services create andgcloud compute backend-services update to allow toggling logging for backendservices with HTTP2 protocol.
Promoted--server-binding flag ofgcloud compute sole-tenancynode-templates create to GA.
Promoted--enable-logging and--log-filter flags ofgcloud compute routers nats to GA.

Kubernetes Engine

Promoted Stackdriver Kubernetes Engine Monitoring to GA. Use--enable-stackdriver-kubernetes withgcloud container clusters create orgcloud container clusters update to enable this feature.
Updated several flag names ingcloud beta container binauthz that assumedPGP as the only supported key type.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

249.0.0 (2019-06-04)

Cloud SDK

Addedgcloud auth print-identity-token command.
Added propertysurvey/disable_prompts to opt out of being prompted to take a survey periodically.

Compute Engine

Promoted the following commands to beta:
- gcloud compute backend-services import
- gcloud compute backend-services export
- gcloud compute url-maps import
- gcloud compute url-maps export
- gcloud compute forwarding-rules import
- gcloud compute forwarding-rules export

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

248.0.0 (2019-05-28)

Breaking Changes

(Cloud Composer) Removed support for the deprecatedinitdb,resetdb, andupgradedbsubcommands withingcloud composer environments run. Execution of thesesubcommands could be detrimental to the Airflow metadata of existingComposer environments.

Cloud Build

Added--ignore-file flag togcloud builds submit for overriding default .gcloudignore file.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.4.6.
- Fixed bug where some FieldTransforms were not sending the correct responses.
- Added support for read-only transactions.

Cloud Resource Manager

Addedgcloud projects get-ancestors command to display project ancestors.

Cloud Run

Added--connectivity and--allow-unauthenticated flags togcloud beta run services update.

Cloud Scheduler

Promotedgcloud scheduler command group to GA.

Compute Engine

Added--custom-vm-gen flag to the following commands to allow specifying the VM generation (either n1 or n2) of custom machine types:
- gcloud compute instances create
- gcloud compute instances create-with-container
- gcloud compute instances import
- gcloud compute instances set-machine-type
- gcloud compute instance-template create
- gcloud compute instance-template create-with-container
Promotedgcloud compute instances os-inventory to beta.

Firebase Test Lab

Added--client-details flag togcloud beta firebase test android run andgcloud beta firebase test ios run. This flag allows you to add additionalcontextual details to the test run.

Kubernetes Engine

Added--enable-stackdriver-kubernetes flag togcloud beta container clusters update.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

247.0.0 (2019-05-21)

App Engine

Added--ignore-file togcloud app deploy for overriding default .gcloudignore file.

Cloud Bigtable

Promotedgcloud bigtable instances tables list to beta.

Cloud Build

Added--ignore-file flag togcloud builds submit for overriding default .gcloudignore file.

Cloud Dataproc

Removed the--max-age,--max-idle,--expiration-time flags from thegcloud beta dataproc workflow-templates set-managed-cluster command group.The workflow template feature does not support cluster scheduled deletion.

Cloud Functions

Added--ignore-file flag togcloud functions deploy for overriding default .gcloudignore file.

Cloud Machine Learning Engine

Fixed incorrect URL for viewing an AI Platform job in the Cloud Console.

Cloud Scheduler

Added the following commands:
- gcloud beta scheduler jobs update app-engine
- gcloud beta scheduler jobs update http
- gcloud beta scheduler jobs update pubsub

Cloud Tasks

Addedgcloud beta tasks create-http-task command.
Added--log-sampling-ratio and--clear-log-sampling-ratio togcloud beta tasks queues create andgcloud beta tasks queues updatecommands.

Kubernetes Engine

Updated Google Kubernetes Enginekubectl to 1.12.8 (from 1.11.9).
Updated extra Google Kubernetes Engine kubectl versions:
- kubectl.1.11 (patch 1.11.10)
- kubectl.1.12 (patch 1.12.8)
- kubectl.1.13 (patch 1.13.6)
- kubectl.1.14 (patch 1.14.1)

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

246.0.0 (2019-05-14)

Breaking Changes

(Compute Engine) Removed redundant--bandwidth flag values withbps- prefix fromgcloud compute interconnects attachments dedicated create,gcloud compute interconnects attachments dedicated update,gcloud compute interconnects attachments provider create, andgcloud compute interconnects attachments provider update commands. Use matching values without this prefix instead.

Cloud SDK

Added the--billing-project flag to all gcloud commands, for explicitlyspecifying a project to bill.

Cloud Functions

Added--allow-unauthenticated flag togcloud beta functions deploy.

Cloud Pub/Sub

Promoted--expiration-period ingcloud pubsub subscriptions createandgcloud pubsub subscriptions update to GA.

Cloud Scheduler

Added attempt-deadline flag togcloud beta scheduler jobs create.

Cloud Tasks

Promotedgcloud tasks command group to GA.

Compute Engine

Added--accelerator flag togcloud compute instances create-with-container.
Added '--resource-policy' flag togcloud beta compute instances create-disk

Vision API

Addedgcloud beta ml vision product-search command group.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

245.0.0 (2019-05-07)

Breaking Changes

(Kubernetes Engine) Removed deprecated--enable-cloud-endpoints flag.
(Kubernetes Engine) Removed container/new_scopes_behavior property (new_scopes_behavior is now default behavior).

Cloud SDK

Rungcloud alpha survey to help improve the gcloud command-line tool experience by answering a customer satisfaction survey.
Reminders for the survey will be made periodically.

App Engine

Updated the Java SDK to version 1.9.74.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes

Cloud Asset Inventory

Added--output-path-prefix flag togcloud beta asset export.

Cloud Run

Fixed--uri flag support forlist commands ingcloud beta run.
Cloud SQL flags are now available in beta.

Cloud Scheduler

Addedgcloud beta scheduler jobs pause andgcloud beta scheduler jobsresume commands.

Compute Engine

Promoted--instance-redistribution-type flag ofgcloud compute instance-groups managed create andgcloud compute instance-groups managed update to beta.

Kubernetes Engine

Modifiedgcloud container clusters create andgcloud container node-poolscreate to allow simultaneously specifying both--scopes and--service-account flags.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

244.0.0 (2019-04-30)

Cloud Scheduler

Added auth flags togcloud beta scheduler jobs create http.

Kubernetes Engine

Promotedgcloud container subnets list-usable to GA.
Added the--workload-metadata-from-node flag togcloud beta containernode-pools update for changing the type of metadata server visible to podsrunning in the nodepool.

Vision API

Added--detect_objects,--detect_text_pdf,--detect_text_tiff commands togcloud ml vision.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

243.0.0 (2019-04-23)

Breaking Changes

(AI Platform) Renamed--worker-server-count flag ofgcloud ml-engine jobs submit training to--worker-count.
(App Engine) Updatedgcloud app repair to no longer recreatea deleted service account.
(Cloud Machine Learning Engine) Deprecated thegcloud ml-engine command group. Usegcloud ai-platform instead.

AI Platform

Added thegcloud ai-platform command group to replacegcloud ml-engine.
Promotedgcloud ai-platform versions create andgcloud ai-platform versions update to beta.
Added the--enable-console-logging flag togcloud beta ai-platform modelscreate to enable logging of stderr and stdout streams for online predictionin Stackdriver Logging.

Cloud Composer

Added five new flags togcloud beta composer environments create to supportIP alias (a.k.a. VPC-native) for Composer environments:
- --enable-ip-alias
- --cluster-ipv4-cidr
- --cluster-secondary-range-name
- --services-ipv4-cidr
- --services-secondary-range-name

Cloud Firestore Emulator

Released Cloud Firestore Emulator version 1.4.5
- Fixed bug for Firestore REST API
- Added support to allow secure JWTs with warnings

Cloud SQL

Added the--root-password flag togcloud sql instances create.

Cloud Tasks

Replacedgcloud tasks queues create-app-engine-queue andgcloud tasks queues update-app-engine-queue withgcloud tasks queues create andgcloud tasks queues update in beta and GA.

Compute Engine

Promotedgcloud compute network-endpoint-groups command group to GA.
Promoted the--storage-location and--labels flag ofgcloud compute disks snapshot to GA.
Promoted--network-endpoint-group and--network-endpoint-group-zoneflags ofgcloud compute backend-services add-backend,gcloud compute backend-services remove-backend,andgcloud compute backend-services update-backend to GA.
Promoted--max-connections-per-endpoint and--max-rate-per-endpointflags ofgcloud compute backend-services add-backendandgcloud compute backend-services update-backend to GA.
Promoted--use-serving-port flag to GA for the following commands:
- gcloud compute health-checks http create
- gcloud compute health-checks https create
- gcloud compute health-checks http2 create
- gcloud compute health-checks ssl create
Promoted--custom-request-headers and--no-custom-request-headers flags ofgcloud compute backend-services create andgcloud compute backend-services update to GA.
Promoted--no-guest-environment,--network, and--subnet flags ofgcloudcompute images import to GA.
Changed--no-guest-environment to--guest-environment flag ingcloudcompute images import.
Promoted--subnet flag ofgcloud compute images export to GA.
Promoted feature allowinggcloud beta compute images importandgcloud beta compute images export to usetemporary buckets in the same region as source/destination buckets. This avoidscross-region copying and its associated cost and performance penalty.
Promoted--container-mount-disk-* flags ofgcloud compute instances create-with-container andgcloud compute instances update-container to GA.
Promoted--container-mount-disk-* flags ofgcloud compute instance-templates create-with-container to GA.

Kubernetes Engine

Added--update-addons=CloudRun=ENABLED|DISABLED to allow enablingand disabling the Cloud Run on Google Kubernetes Engine add-on for existingGKE clusters.
Promoted the--sandbox flag ofgcloud container node-pools create to beta.This flag enables the requested sandbox on all nodes in the node-pool.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

242.0.0 (2019-04-16)

Breaking Changes

(Cloud Composer) Deprecated support for theinitdb,resetdb, andupgradedb subcommandswithingcloud composer environments run. Execution of these subcommandscan be detrimental to the Airflow metadata of existing Composerenvironments.

Cloud Data Catalog

Added the--lookup-entry flag togcloud beta data-catalog entries updateto update the entry corresponding to the lookup of the given resource.

Cloud Firestore Emulator

Released Cloud Firestore Emulator version 1.4.4
- Reduced lock contention for multiple writes on a single document
- Fixed bug where no-op writes were incorrectly updating the updatedAt timestamp
Released Cloud Firestore Emulator version 1.4.3
- Fixed bug that caused parsing security rules with string literals to fail

Compute Engine

Updatedgcloud beta compute ssh andgcloud beta compute scp to use IAP Tunneling by defaultif an external interface/IP address is not available and--internal-ip hasnot been specified.
Added warning message about the maximum number of nodes that a cluster can have when being created.
Added the--deprecate-in and--deprecate-on flags togcloud computeimages deprecate to set informational deprecate times to images.

Identity and Access Management

Added the--description flag togcloud beta iam service-accounts createandgcloud beta iam service-accounts update.

Kubernetes Engine

Renamed--size flag ofgcloud container clusters resize to--num-nodes.--size retained as an alias.
Disabled node auto-repair and node auto-upgrade by default when--enable-kubernetes-alpha flag is used to create clusters with Kubernetesalpha features enabled. Users may now create alpha clusters without specifying--no-enable-autorepair or--no-enable-autoupgrade flags. However, forcreating new node pools in an existing alpha cluster, these two flags may stillbe required.

Miscellaneous

Fixed a bug ingcloud config config-helper which could result in oldidentity tokens when--force-auth-refresh was not present.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

241.0.0 (2019-04-03)

Breaking Changes

(Cloud Functions) Modifiedgcloud functions deploy such that the--runtime flag needs to be set when deploying a new function.

App Engine

Updated the Java SDK to version 1.9.73.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes
Updated the Python SDK to version 1.9.85.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes

BigQuery

Added DML/DDL query results that display the number of affected rows (for DML) and performed operation and target name (for DDL).

Cloud Asset Inventory

Promotedgcloud asset command group to GA

Cloud Bigtable

Promoted the following to GA:
- gcloud bigtable app-profiles command group
- gcloud bigtable clusters create
- gcloud bigtable clusters update
- gcloud bigtable clusters delete

Cloud Build

Added--network=cloudbuild togcloud builds submit --tag invocations ofdocker build. This enables access to metadata during DockerfileRUNoperations at build time.

Cloud Composer

Added three new flags togcloud beta composer environments create to supportPrivate IP Composer environments:
- --enable-private-environment
- --enable-private-endpoint
- --master-ipv4-cidr
Addedgcloud beta composer environments list-upgrades to list all imageversion upgrades that are supported for a specified environment.
Added two mutually exclusive flags togcloud beta composer environmentsupdate to allow for in-place environment upgrades:
- --airflow-version
- --image-version

Cloud DNS

Added support for DNS peering ingcloud beta dns managed-zones.
Added--enable-logging flag togcloud beta dns policies to enable query logging.

Cloud Data Catalog

Added thegcloud beta data-catalog entries command group, which provideslookup, describe, and schema update functionality for Cloud Data Catalogentries.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.4.2
- Adds implementations for BeginTransaction and Rollback

Cloud Functions

Added--service-account flag togcloud functions deploy.
Added--vpc-connector flag togcloud beta functions deploy.

Cloud Memorystore

Addedgcloud redis instances failover which provides the ability tofailover a standard tier Cloud Memorystore for Redis instance from themaster node to its replica.
Added--redis-version flag togcloud beta redis instances create toenable the specification of a preferred Redis version compatibility; thiscan be eitherredis_3_2 orredis_4_0.
Modified the--update-redis-config flag ofgcloud redis instances updateto accept three additional parameters for Redis 4.0 compatible instances:activedefrag,lfu-decay-time,lfu-log-factor.

Cloud Pub/Sub

Added optional flags--push-auth-service-account and--push-auth-token-audience for defining an authenticated push subscriptionto the following commands:
- gcloud beta pubsub subscriptions create
- gcloud beta pubsub subscriptions update
- gcloud beta pubsub subscriptions modify-push-config

Cloud Storage

Updated gsutil component to 4.38.

Cloud Video Intelligence API

Addedgcloud beta ml video transcribe-speech|detect-text|detect-objectcommands.

Compute Engine

Promoted--logging-aggregation-interval,--logging-flow-sampling, and--logging-metadata flags ofgcloud compute networks subnets create andgcloud compute networks subnets update to beta.
Modifiedgcloud compute networks subnets update to support specifying--logging-aggregation-interval,--logging-flow-sampling, and--logging-metadata flags in a single call.
Promotedgcloud compute reservations command group to beta.
Promoted--reservation and--reservation-affinity ofgcloud compute instance-templates create to beta.
Promoted--reservation and--reservations-from-file ofgcloud compute commitments create to beta.
Promotedgcloud compute commitments update-reservations to beta.
Promoted 100G interconnect link type support forgcloud compute interconnects create to beta.
Deprecated the creation of new legacy network.

Firebase Test Lab

Promoted--num-flaky-test-attempts flag ofgcloud firebase test android run andgcloud firebase test ios run to GA.This flag specifies how many times to rerun any failed executions.

Kubernetes Engine

Promoted the--security-group flag ofgcloud container clusters createto beta. The flag enables support for Google Groups in Kubernetes RBACrules.
Added the--enable-intra-node-visibility flag togcloud beta containerclusters create.
Promoted the--enable-tpu flag and the--tpu-ipv4-cidr flag ofgcloudcontainer clusters create to GA. The flags enables support for using CloudTPU in Google Kubernetes Engine clusters.
Changed the default output formatting for thegcloud beta containerbinauthz attestations list command.
Google Kubernetes Engine kubectl is updated to 1.11.9. Addresses securityvulnerability: CVE-2019-1002101.
Updated extra Google Kubernetes Engine kubectl versions:
- kubectl.1.11 (patch 1.11.9)
- kubectl.1.12 (patch 1.12.7)
- kubectl.1.13 (patch 1.13.5)
- kubectl.1.14 (patch 1.14.0)
Removed extra Google Kubernetes Engine kubectl versions, since theseversions are vulnerable.
- kubectl.1.9
- kubectl.1.10

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

240.0.0 (2019-03-26)

Breaking Changes

(Kubernetes Engine) Enabled node auto-upgrade by default for clustersand node-pools created withgcloud beta container clusters createandgcloud beta container node-pools create. To disable manually, use the--no-enable-autoupgrade flag.

Cloud SDK

Added the--impersonate-service-account flag togcloud.

App Engine

Fixed a bug which could cause gcloud to incorrectly printhttp URLs forservices, whenhttps URLs would be more appropriate.
Removed 32MB file size limit for second generation runtimes.

Cloud DNS

Promoted private zones of thegcloud dns managed-zones command group to GA.Use the--visibility and--networks flags to configure zone visibility.

Cloud Dataproc

Addedgcloud beta dataproc jobs submit presto andgcloud beta dataproc workflow-templates add-job prestoto enable submitting Presto jobs to a Dataproc cluster and adding Presto jobsto workflow templates, respectively.
Added--enable-component-gateway flag togcloud beta dataproc clusterscreate andgcloud beta dataproc workflow-templates set-managed-cluster.

Compute Engine

Promoted--failover-ratio,--drop-traffic-if-unhealthy, and--connection-drain-on-failover flags ofgcloud compute backend-services create andgcloud compute backend-services update to beta.
Promoted--failover flag ofgcloud compute backend-services add_backend andgcloud compute backend-services update_backend to beta.
Promotedgcloud compute instance-groups managed wait-until command to beta.
Promoted--region flag ofgcloud compute disks and related commands to GA.
Addedgcloud beta compute external-vpn-gateway command group to enable reading and manipulating of Compute Engine external VPN gateways.
Addedgcloud beta compute vpn-gateway command group to enable reading and manipulating of Compute Engine VPN gateways.
Updatedgcloud beta compute vpn-tunnel command to enable the creation of HA VPN tunnels.

Identity and Access Management

Added a new column,DISABLED, to the return table ofgcloud iam service-account list, which displays the state of the serviceaccount listed.

Kubernetes Engine

Added the--release-channel flag togcloud alpha container clusters createfor subscribing a cluster to a release channel.
Promoted--default-max-pods-per-node flag ofgcloud container clusters create from Beta to GA.
Promoted--max-pods-per-node flag ofgcloud container node-pools create from Beta to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

239.0.0 (2019-03-19)

Cloud Dataproc

Addedgcloud beta dataproc autoscaling-policies command group for managingCloud Dataproc autoscaling policies. For more information, see:https://cloud.google.com/dataproc/docs/concepts/configuring-clusters/autoscaling
Added--autoscaling-policy flag togcloud beta dataproc clusters create,gcloud beta dataproc clusters update, andgcloud beta dataproc workflow-templates set-managed-cluster to supportenabling and disabling autoscaling on Cloud Dataproc clusters with autoscalingpolicies.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.4.1
- Fixes bug where an empty CommitRequest was trigger exceptions

Cloud Resource Manager

Promotedresource-manager folders command group to GA.

Compute Engine

Promoted--bandwidth flag ofgcloud compute interconnects attachments dedicated create andgcloud compute interconnects attachments dedicated update to GA.
Promoted load_balancing_scheme enum value INTERNAL_SELF_MANAGED to beta in 'gcloud compute forwarding-rules create' and 'gcloud compute backend- services create'.
Promotedgcloud compute instances get-shielded-identity to GA.
Promoted the--shielded-vtpm,--shielded-secure-boot, and--shielded-integrity-monitoring flags ofgcloud compute instances createto GA.
Promoted the--shielded-vtpm,--shielded-secure-boot, and--shielded-integrity-monitoring flags ofgcloud compute instance-templatescreate to GA.
Promoted the--shielded-vtpm,--shielded-secure-boot,--shielded-integrity-monitoring, and--shielded-learn-integrity-policyflags ofgcloud compute instances update to GA.
Removed the deprecated--shielded-vm-vtpm,--shielded-vm-secure-boot, and--shielded-vm-integrity-monitoring flags ofgcloud compute instancescreate from alpha and beta.
Removed the deprecated--shielded-vm-vtpm,--shielded-vm-secure-boot, and--shielded-vm-integrity-monitoring flags ofgcloud computeinstance-templates create from alpha and beta.
Removed the deprecated--shielded-vm-vtpm,--shielded-vm-secure-boot,--shielded-vm-integrity-monitoring, and--shielded-vm-learn-integrity-policy flags ofgcloud compute instancesupdate from alpha and beta.

Kubernetes Engine

Update Google Container Engine's kubectl so that it now first attemptsto match the API server version. If successful, the kubectl willdelegate to the matching version of kubectl. Otherwise, it defaultsto execute the current 1.11.7 version of kubectl.
Updated extra Google Kubernetes Engine kubectl versions:
- kubectl.1.9 (patch 1.9.11)
- kubectl.1.10 (patch 1.10.13)
- kubectl.1.11 (patch 1.11.8)
- kubectl.1.12 (patch 1.12.6)
- kubectl.1.13 (patch 1.13.4)
In June 2019, node auto-upgrade will be enabled by default for newly createdclusters and node pools. To disable it, use the--no-enable-autoupgrade flag.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

238.0.0 (2019-03-12)

App Engine

Updated the Python SDK to version 1.9.84.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes
Added a new field, 'main', to app.yaml. This allows users of the Gosecond-generation runtimes to specify which package to build. Seehttps://cloud.google.com/appengine/docs/standard/go111/config/appref for moreinformation.

App Engine Flexible Environment

Promoted network.session_affinity flag in yaml file to GA.

Cloud Access Context Manager

Promoted the gcloud access-context-manager command group to GA
Removed the unrestricted-services field from alpha and beta, always set to default '*'.

Cloud Dataproc

Promoted--optional-components ofgcloud dataproc clusters to GA.

Cloud Functions

Promotedmax-instances andclear-max-instances flags ofgcloud functions deploy to beta.

Cloud Machine Learning Engine

Promoted--machine-type flag ofgcloud ml-engine versions create command to GA.

Kubernetes Engine

Added the--enable-shielded-containers flag togcloud beta container clusters create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

237.0.0 (2019-03-05)

Cloud SDK

Fixed issue affecting users overwriting an existing Cloud SDK install via theWindows installer, in which certain gcloud commands crashed with a "gcloudcrashed (LayoutException): Multiple definitions for release track" error. Thisissue can be tracked athttps://issuetracker.google.com/123390310.

BigQuery

Fixes bug in formatting pre-1900 timestamps.

Cloud Dataproc

Fixed a bug where several fields were hidden fromgcloud dataproc clusters import andgcloud dataproc clusters exportin all release tracks. Note that these fields were alwaysavailable ingcloud dataproc clusters create-from-file andgcloud dataproc clusters describe.

Cloud Storage

Updated gsutil component to 4.37.

Compute Engine

Promoted the--server-binding flag ofgcloud compute sole-tenancynode-templates create to beta.
Reduced lower bound for data disk sizes from 10GB to 1GB forgcloud compute instances create.
Addedresources-accelerator togcloud beta compute commitments create.
Promotedall option of--ports flag forgcloud compute forwarding-rulesto GA.
Added INSTANCE_TEMPLATE and VERSION_NAME columns to output ofgcloud computeinstance-groups managed list-instances.

Kubernetes Engine

Updated Google Kubernetes Engine's kubectl from version 1.10.7 to 1.11.7.
Added extra Google Kubernetes Engine kubectl versions:
- kubectl.1.9
- kubectl.1.10
- kubectl.1.11
- kubectl.1.12
- kubectl.1.13

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

236.0.0 (2019-02-26)

Cloud SDK

Modified error handling forgcloud auth revoke when revoking a serviceaccount token to print a friendly error message with more detailedinstructions on how to revoke the token.

Cloud Asset Inventory

Added--folder flag togcloud beta asset export command.

Cloud Dataproc

Added--kerberos-root-principal-password-uri,--kerberos-kms-key, and--kerberos-config-file flags togcloud beta dataproc clusters createandgcloud beta dataproc workflow-templates set-managed-cluster.

Cloud Firestore Emulator

Released Cloud Firestore Emulator version 1.4.0:
- Added support for thedebug(...) function in security rules.
- Simplified security rule evaluation and rule coverage reports.

Cloud Services

Promotedservices vpc-peerings command group to GA.

Compute Engine

Removed auto-create-routes column from default output ofgcloud beta computenetworks peerings list.
Promoted--enable-logging and--log-filter flags ofgcloud compute routers nats to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

235.0.0 (2019-02-19)

App Engine

Fixed bug where deleting a service at the same time as deleting an appversion in an unrelated service caused deletion of the version to fail.
Updated the Python SDK to version 1.9.83.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/python/release-notes
Updated the Java SDK to version 1.9.72.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/java/release-notes

Cloud Composer

Promoted--airflow-version and--image-version flags ofgcloud composer environments create to GA. These mutually exclusive flagscan be used to specify the airflow version or image version used within acreated environment.

Cloud IoT

Promotedgcloud iot devices gateways command group to GA.

Cloud Key Management Service

Exposed a new format of Cavium's attestation introduced in Cavium's new 3.2-08 version.

Compute Engine

Updated thegcloud beta compute start-iap-tunnel command for Cloud IAP TCPForwarding to listen on both IPv4 and IPv6 for localhost.
Updated Windows PuTTY executables to 0.70.
Promotedgcloud compute networks peerings list-routes command to beta.
Modified the output ofgcloud beta compute networks peerings list to includeIMPORT_CUSTOM_ROUTES/EXPORT_CUSTOM_ROUTES columns.
Promoted--resource-policies ofgcloud compute disks create to beta.
Promoted--enable-logging and--logging-sample-rate flags ofgcloud compute backend-services create andgcloud compute backend-services update to beta.
Promoted--bandwidth flag ofgcloud compute interconnects attachments dedicated createandgcloud compute interconnects attachments dedicated update to beta.

Firebase Test Lab

Added anignore: option to the--robo-directives flag ofgcloud beta firebase test android run command. This option directs Robo to avoid interactions with a user-defined UI element.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

234.0.0 (2019-02-12)

Cloud SDK

Added theaccessibility/screen_reader property. This property changessome gcloud UX to make output more screen reader friendly. Seegcloud topicaccessibility for more information`.
- Accessibility support is still in the early stages, so please report anyissues that you would like fixed usinggcloud feedback.

Cloud Asset Inventory

Addedgcloud beta asset command group to manage the Cloud Asset Inventory.

Cloud Resource Manager

Promotedresource-manager folders command group to beta

Cloud Services

Addedgcloud beta services vpc-peerings to support updating a connection.

Cloud Source Repositories

Promotedgcloud source project-configs command group to GA.
Promotedgcloud source repos update to GA.

Compute Engine

Promoted the following commands to GA:
- gcloud beta compute networks subnets get-iam-policy
- gcloud beta compute networks subnets set-iam-policy
- add-iam-policy-bindings
- remove-iam-policy-bindings
Promoted the following commands to beta:
- gcloud compute disks add
- gcloud compute disks remove-resource-policies
- gcloud compute resource-policies create-snapshot-schedule
- gcloud compute resource-policies delete
- gcloud compute resource-policies describe
- gcloud compute resource-policies list
Promoted--service-label flag ofgcloud compute forwarding-rules createto GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

233.0.0 (2019-02-05)

Cloud Dataflow

Added numWorkers, network, subnetwork and workerMachineType flags to'gcloud beta dataflow jobs run' command

Cloud Datalab

Updated thedatalab component to the 20190116 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/2114.

Cloud Filestore

Promotedgcloud filestore command group to GA.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.3.0
- Added a clearDatabase RPC to delete all data in a database
- Added logging to assist with FIRESTORE_EMULATOR_HOST environment variable
- The getDocument RPC now supports a read_time consistency selector
- Fixed bug related to rule evaluation callbacks

Cloud Machine Learning Engine

Added support for custom server configuration toml-engine jobs submit training in beta. Added the following flags:
- --master-machine-type
- --master-accelerator
- --master-image-uri
- --worker-machine-type
- --worker-count
- --worker-accelerator
- --worker-image-uri
- --parameter-server-machine-type
- --parameter-server-count
- --parameter-server-accelerator
- --parameter-server-image-uri

Cloud Pub/Sub

Promoted Snapshot & Seek features to GA. These features allow users tocreate snapshots of subscription backlog state, and later restore thatstate.

Cloud SQL

Fixedgcloud sql connect whitelisting issues that resulted from invaliddatetime formatting.

Cloud Storage

Updated gsutil component to 4.36.

Compute Engine

Promoted the--force-attach flag ofcompute instances attach-disk to GA
Addedget-iam-policy,set-iam-policy,add-iam-policy-bindings,andremove-iam-policy-bindings togcloud beta compute networks subnets
Promotedgcloud compute instances get-shielded-identity to beta.
Promotedgcloud compute instance-groups managed update to GA together with--health-check,--initial-delay and--clear-autohealing flags.
Promoted--initial-delay and--health-check flags ofgcloud computeinstance-groups managed create to GA.
Enabled the use of multiple--network-interface flags withgcloud compute instances create-with-containerandgcloud compute instance-templates create-with-container to support usingmultiple network interfaces.
Promotedgcloud compute instance-groups managed rolling-action command groupto GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

232.0.0 (2019-01-29)

Breaking Changes

(Kubernetes Engine) Added a warning on cluster and node-pool creation to notify users thatmodifications on the boot disks of node VMs do not persist across noderecreations and must be done using a DaemonSet.

Cloud SQL

Rolled back fix togcloud sql connect that seems to be causing additionalissues connecting.

Compute Engine

Promotedget-iam-policy,set-iam-policy,add-iam-policy-bindings,andremove-iam-policy-bindings to GA in the following command groups:
- gcloud compute disks
- gcloud compute images
- gcloud compute instance-templates
- gcloud compute snapshots
Added '--enable-display-device' togcloud beta compute instances create andgcloud beta compute instances update
Deprecatedgcloud compute instance-groups managed set-autohealing command.Usegcloud compute instance-groups managed update instead.

Kubernetes Engine

Promoted the--database-encryption-key flag ofgcloud container clusterscreate to beta. The flag enables support for encryption of Kubernetes Secrets.
Modified the--enable-stackdriver-kubernetes flag to be a hard requirementfor--addons=CloudRun. The CloudRun-on-GKE add-on depends on StackdriverKubernetes Monitoring to enrich Kubernetes metadata for logs and metrics.
Add--max-pods-per-node forgcloud beta container clusters create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

231.0.0 (2019-01-23)

Breaking Changes

(Cloud SQL) Updated the error messaging associated with failed long-running operations.

App Engine

Updated the Python SDK to version 1.9.82.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

BigQuery

Added--ignore_unknown_values flag tobq mkdef command.
Added support for BigQuery BI Engine reservations inbq cli.

Cloud Datastore Emulator

Release Cloud Datastore Emulator version 2.1.0
- Implement export/import for emulator. For details, refer tohttps://cloud.google.com/datastore/docs/tools/emulator-export-import.

Cloud SQL

Fixed the display of error codes ingcloud sql operations list.

Compute Engine

Promotedgcloud compute instance-groups managed update to beta together with--health-check,--initial-delay and--clear-autohealing flags.
Promoted--hostname flag ofgcloud compute instances create to GA.
Added--physical-block-size flag togcloud beta compute disks create.

Firebase Test Lab

Added--num-flaky-test-attempts flag togcloud beta firebase test android run andgcloud beta firebase test ios run to rerun failed executions multiple times.

Kubernetes Engine

Promoted the--security-group flag ofgcloud container clusters create tobeta. The flag enables support for Google Groups in Kubernetes RBAC rules.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

230.0.0 (2019-01-15)

Breaking Changes

(App Engine) Fixed a bug where symlinked directories were skipped on source upload.Second Generation runtimes and source directories using .gcloudignore nowupload the contents of symlinked directories, matching the behavior of FirstGeneration runtimes. To explicitly skip a symlinked directory, add it to.gcloudignore.
(Cloud Functions) Fixed a bug where symlinked directories were skipped on source upload.To explicitly skip a symlinked directory, add it to .gcloudignore.
(Cloud SQL) Made the flags--region,--gce-zone, and--zone mutually exclusivefor the commandgcloud sql instances create.
(Cloud SQL) Deprecated the creation of First Generation Cloud SQL instances, adding awarning and confirmation prompt togcloud sql instances create.

Cloud Build

Releasedcloud-build-local v0.5.0; seerelease notes:https://github.com/GoogleCloudPlatform/cloud-build-local/releases/tag/v0.5.0.

Cloud SQL

Added the flag--zone togcloud sql instances create as an alternative to--gce-zone, which is now deprecated.
Deprecated First Generation Cloud SQL instances, adding warnings togcloud sql instances describe andgcloud sql instances patch.

Cloud Scheduler

Added support for all of App Engine's regions to Cloud Scheduler.

Compute Engine

Promotedget-iam-policy,set-iam-policy,add-iam-policy-bindings, andremove-iam-policy-bindings to GA in the following command groups:
- gcloud compute instances
- gcloud compute sole-tenancy node-templates
- gcloud compute sole-tenancy node-groups
Promoted--boot flag ofgcloud compute instances attach-disk to GA.
Deprecated--auto-create-routes flag ofgcloud alpha compute networkspeerings create in Beta.
Promotedgcloud compute networks peerings update command to Beta.
Promotedimport-custom-routes andexport-custom-routes flags to Betaingcloud compute networks peerings create command.
Deprecated and renamed the following--shielded-vm-* flags:
- --shielded-vm-secure-boot as--shielded-secure-boot
- --shielded-vm-vtpm as--shielded-vtpm
- --shielded-vm-integrity-monitoring as--shielded-integrity-monitoring
- --shielded-vm-learn-integrity-policy as--shielded-learn-integrity-policy

Firebase Test Lab

Deprecated the--app-package and--test-package flags ingcloud firebase test android run commands; the application and test package names will be parsed from the APK manifest by default.
Removed three robo test args that were deprecated 6+ months ago:--max-steps,--max-depth, and--app-initial-activity.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

229.0.0 (2019-01-08)

App Engine

Updated the Python SDK to version 1.9.81.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
Updated the Java SDK to version 1.9.71.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

BigQuery

Addedgcloud bq command group to alpha.
- Added initial support for creating and managing datasets, tables and jobs.

Cloud Build

Updatedcloud-build-local to 0.4.3. For details, seehttps://github.com/GoogleCloudPlatform/cloud-build-local/releases.
Added propertiesbuilds/use_kaniko and builds/kaniko_cache_ttlto controluse of Kaniko (<https://github.com/GoogleContainerTools/kaniko>) when using--tag`.
Added--no-cache flag to disable layer caching when using Kaniko with--tag. This is only valid if thebuilds/use_kaniko flag isTrue.

Cloud Datastore Emulator

Release Cloud Datastore Emulator version 2.0.3
- Fixes bug where read contention errors were being reported as UNKNOWN

Cloud Firestore

Addedgcloud beta firestore indexes which provides index managementcapability for Cloud Firestore.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.2.2
- Add support for Java 10 and Java 11 runtimes
- Enable IPv6 support by default
Release Cloud Firestore Emulator version 1.2.3
- Fixed bug when setting more than one server timestamp in a commit
- Fixed bug regarding array ordering during writing/reading
- Fixed bug when using query cursors containing document names
- Added the ability to produce rule-coverage reports
- Exposed the v1 service definition

Cloud Storage

Updated gsutil component to 4.35

Cloud Tasks

Use full list of App Engine's supported regions for Cloud Tasks.

Compute Engine

Promoted--tunnel-through-iap flag ofgcloud compute ssh andgcloud compute scp to beta.
Deprecated--http-health-check and--https-health-check flags ingcloudbeta compute instance-groups managed create. Use--health-check flaginstead.
Promoted 'gcloud compute interconnects get-diagnostics' to GA.
Promoted--enable-logging flag ofgcloud compute firewall-rules create andgcloud compute firewall-rules update to GA.

Firebase Test Lab

Added support for Android App Bundles to the--app flag ingcloud firebase test android run commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

228.0.0 (2018-12-11)

Breaking Changes

(Cloud Endpoints) Deprecated--full flag ofgcloud endpoints operations describe. Alldescribed operations are now printed without redacting any content.

App Engine

Updated the Java SDK to version 1.9.70.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Cloud Composer

Promoted--python-version flag ofgcloud composer environments createto GA. This flag can be used to specify the Python version used within acreated environment.

Cloud DNS

Added thegcloud beta dns policies command group.

Compute Engine

Added--use-serving-port flag togcloud beta compute health-checks update.
Added--container-mount-disk flag togcloud beta compute instance-templatescreate-with-container.
Promotedgcloud compute security-policies andgcloud compute security-policies rules to GA.
Promoted--security-policy flag ofgcloud compute backend-services updateto GA.
Added--no-guest-environment flag togcloud beta compute images importwhich prevents Google Guest Agent from being installed on the image.
Added--network and--subnet flags togcloud beta compute images import.
Added--subnet flag togcloud beta compute images export.
Fixedgcloud beta compute images import to use gcloud command line toolconfig forzone flag in addition to--zone command line flag.
Modifiedgcloud beta compute images import andgcloud beta compute images export to use temporary bucketin the same region as source/destination buckets to avoid cross-region copyingand its associated cost and performance penalty.
Added--prefix-length,--purpose and--network flags to GA forgcloud compute addresses create to support reserving IP range fromvirtual network for peering.
Added thegcloud beta compute start-iap-tunnel command for Cloud IAP TCPForwarding which creates a TCP tunnel to an instance without requiring anexternal IP and with access granted using Cloud IAP.

Kubernetes Engine

Promoted Vertical Pod Autoscaling to beta. Use--enable-vertical-pod-autoscaling withgcloud beta container clusters create orgcloud beta container clusters update to enable this feature.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

227.0.0 (2018-12-04)

Breaking Changes

(Cloud Datastore)gcloud datastore create-indexes andgcloud datastore cleanup-indexes is removed. Please usegcloud datastore indexes create andgcloud datastore indexes cleanup instead. Seehttps://cloud.google.com/sdk/gcloud/reference/datastore/indexes/ foradditional details.
(Cloud IoT) Removed deprecated-event-pubsub-topic and--pubsub-topicflags fromgcloud iot registries create andgcloud iot registries update
(Container Builder) Removedgcloud container builds command group. Usegcloud buildsinstead.

Cloud SDK

Invalid commands (wrongly ordered, partial) now prompt more robust suggestionsof valid commands instead of the regular usage text.

App Engine

Updated the Java SDK to version 1.9.69.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Cloud Bigtable

Added support for arbitrary bytes in regex filters.
Added support forrow_sample_filter.
Added support forapply_label_transformer.

Cloud DNS

Added the--forwarding-targets flag togcloud beta dns managed-zones create andgcloud beta dns managed-zones update

Cloud Dataproc

Addedgcloud beta dataproc jobs submit sparkr to enable submitting SparkRjobs to a Dataproc cluster.
Promoted--num-preemptible-worker-local-ssds flag ofgcloud dataproc clusters create to GA

Cloud Functions

Promoted--service-account flag ofgcloud functions deploy to beta.
Promoted the following environment variable flags ofgcloud functions deploy to GA:
- --set-env-vars
- --update-env-vars
- --remove-env-vars
- --clear-env-vars
- --env-vars-file

Cloud IoT

Promotedgcloud iot devices commands send command group to GA.
Promoted--log-level flag ofgcloud iot devices andgcloud iot registries to GA.
Promotedgcloud iot devices gateways command group to beta.

Cloud Pub/Sub

Added support for defining an expiration period for a subscription togcloud beta pubsub subscriptions.

Cloud Spanner

Promotedgcloud spanner rows to GA.

Compute Engine

Added--use-serving-port flag togcloud beta compute health-checks update.
Added--container-mount-disk flag togcloud beta compute instance-templatescreate-with-container.
Promotedgcloud compute security-policies andgcloud compute security-policies rules to GA.
Promoted--security-policy flag ofgcloud compute backend-services updateto GA.

Kubernetes Engine

Promoted resource usage export to beta. Use--resource-usage-bigquery-dataset withgcloud beta container clusters create orgcloud beta container clusters update to enable this feature.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

226.0.0 (2018-11-20)

Breaking Changes

(Cloud Spanner) Updated--data flag ofgcloud beta spanner rows to reject array values.--flags-file should be used to specify an array value.

App Engine

Added command groupgcloud beta app migrate-config for migratingdatastore-indexes.xml, cron.xml, queue.xml and dispatch.xml to theiryaml counterparts.

BigQuery

Fixed a bug in the update table command.

Cloud Endpoints

Modifiedgcloud endpoints such that it no longer attempts to enable eitherthe Endpoints meta-service or the produced service during the servicedeployment process, except if the produced service was created for the firsttime during the deployment.

Cloud Firestore Emulator

Release Cloud Firestore Emulator version 1.2.1
- This is the first beta release of the emulator.

Cloud Scheduler

Fixed bug ingcloud beta scheduler jobs create pubsub that caused themessage body to be base-64 encoded twice.

Deployment Manager

Fixed a bug to match operation timeout and service timeout;both are now set at 2 hours.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

225.0.0 (2018-11-13)

Cloud SDK

Added the--flags-file=YAML-FILE flag, available to all gcloud commands,for specifying complex flag values in any command interpreter. Seegcloud topic flags-file for more information.

App Engine

Updated the Python SDK to version 1.9.80.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

BigQuery

Added support for Avro Logical Types in Avro load jobs via the load configuration optionuseAvroLogicalTypes.

Cloud Dataproc

Added--num-preemptible-worker-local-ssds flag togcloud dataproc clusters create command, which adds local SSDs topreemptible worker VMs.

Cloud Scheduler

Added the following flags togcloud beta scheduler jobs create pubsub:
- --max-retry-attempts
- --max-retry-duration
- --min-backoff
- --max-backoff
- --max-doublings

Cloud Spanner

Promoted--enable-partitioned-dml flag ofgcloud spanner execute-sql to GA.

Compute Engine

Promoted--boot flag ofgcloud compute instances attach-disk to beta.
Promoted thegcloud compute routers nats group to GA.
Promoted thenext-hop-ilb flag ofgcloud compute routes to beta.
Addedall as a valid option of--ports forgcloud beta computeforwarding-rules.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

224.0.0 (2018-11-06)

Breaking Changes

(Container Builder) Removed deprecatedcontainer-builder-local component. Usecloud-build-local instead.
(Container Builder) Removedgcloud container builds command group. Callers will be redirectedto usegcloud builds instead.

App Engine

Updated the Python SDK to version 1.9.79.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
Updated the Go SDK to version 1.9.70.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/go/release-notes

Compute Engine

Promoted--hostname flag ofgcloud compute instances create to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

223.0.0 (2018-10-30)

App Engine

Updated the Python SDK to version 1.9.78.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
Updated the Java SDK to version 1.9.68.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
Updated the Go SDK to version 1.9.69.Fix a bug in windows support for go.mod deployments for the Go 1.11 runtime

Cloud Access Context Manager

Promoted the gcloud access-context-manager command group to BETA

Cloud Build

Added default behavior forgcloud builds submit to assume--config=cloudbuild.yaml unless either--tag or--config is specified.

Kubernetes Engine

Promoted Node Auto-Provisioning to beta. Use--enable-autoprovisioning withgcloud beta container clusters create orgcloud beta container clustersupdate to enable this feature.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

222.0.0 (2018-10-23)

App Engine

Fixed a bug that causedgcloud app logs tail to crash when the logs were toolarge.
Updated the Java SDK to version 1.9.67.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Cloud Build

Updatedcloud-build-local to 0.4.2. For details, seehttps://github.com/GoogleCloudPlatform/cloud-build-local/releases.

Cloud Composer

Added two mutually exclusive flags togcloud beta composer environmentscreate:
- --airflow-version - specifies the Apache Airflow version for the created environment
- --image-version - specifies the image version for the created environment

Cloud DNS

Added support for private zones togcloud beta dns managed-zones. Use thenew--visibility and--networks flags to configure zone visibility.

Cloud Dataflow

Updated error message for cancel and drain commands to include possibility of--region flag inconsistency.

Cloud SQL

Updatedgcloud beta sql connect to connect to V2 instances throughthe Cloud SQL Proxy Component.
Added the--port flag togcloud beta sql connect to allow forconnecting to the Cloud SQL Proxy through a custom port.

Compute Engine

Promoted--container-mount-disk-* flags ofgcloud compute instances create-with-container andgcloud compute instances update-container to beta.These flags enable mounting disks to containers running on VMs.

Container Builder

Reminder: usegcloud builds instead ofgcloud container builds; thedeprecated command groupgcloud container builds will be removed on orafter 2018-10-31.

Firebase Test Lab

Promoted thegcloud firebase test ios command group to GA.

Identity and Access Management

Modifiedgcloud iam service-accounts keys create such that in the case auser does not have write access to the specified output file, the commandwill not be executed.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

221.0.0 (2018-10-16)

Breaking Changes

(Cloud SQL) Removed the deprecatedhost positional argument fromgcloud sql users create,gcloud sql users delete, andgcloud sql users set-password.

App Engine

Fixed a bug where environment variables with values of 'on' or 'off' wereending up as 'true' or 'false' when deployed.
gcloud app logs read andgcloud app logs tail now displays stdout and stderr from theApp Engine standard environment Python 3.7, PHP 7.2, Go 1.11, Java 8,and Node.js 8 runtimes by default, or explicitly by supplying--logs=<stdout|stderr>.

BigQuery

Added flags for setting a default table partition expiration for a dataset.

Cloud Dataproc

Promoted the--no-address flag ofgcloud dataproc clusters create andgcloud dataproc workflow-templates set-managed-cluster to GA.

Cloud SQL

Updated thecloud_sql_proxy component to version 1.13.0. Please visit thefollowing release notes for details:https://github.com/GoogleCloudPlatform/cloudsql-proxy/releases

Cloud Spanner

Added --enable-partitioned-dml flag forgcloud beta spanner execute-sql

Compute Engine

Addedgcloud beta compute instances get-guest-attributes command forretrieving guest attributes.
Promoted--response flag ofgcloud compute health-checks for HTTP/Scommands to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

220.0.0 (2018-10-09)

Breaking Changes

(Kubernetes Engine) Modified output ofgcloud container clusters list for DEGRADED clustersto include reason for degradation.
(Kubernetes Engine) Starting in 1.12, new node pools (and default node pools in new clusters) willbe created with their legacy Compute Engine instance metadata APIs disabledby default.
- To create a new node pool (or default pool in a new cluster) withlegacy metadata APIs disabled, use the flag--metadata disable-legacy-endpoints=true. See:https://cloud.google.com/kubernetes-engine/docs/how-to/protecting-cluster-metadata#disable-legacy-apis

Cloud SDK

Updated thestorage/chunk_size property. Commands that upload to GoogleCloud Storage can now control the upload/download chunksize using thisproperty.
Some commands no longer call gsutil in their implementation in order tosupport Python 3. The gsutil implementation is now deprecated. Use thestorage/use_gsutil property to temporarily get this behavior back. Thisproperty and its old implementation will eventually be removed. The followingcommands are affected by this change:
- functions deploy
- compute images import
- dataproc jobs submit pyspark
- dataproc jobs submit hadoop
- dataproc jobs submit pig
- dataproc jobs submit hive
- dataproc jobs submit spark
- dataproc jobs submit spark-sql
- composer environments storage dags delete
- composer environments storage dags export
- composer environments storage dags import
- composer environments storage data delete
- composer environments storage data export
- composer environments storage data import
- composer environments storage plugins delete
- composer environments storage plugins export
- composer environments storage plugins import
Added functionality togcloud beta help that allows running a search forterms of interest within the help text of gcloud commands. For moreinformation, run $ gcloud beta help --help.

App Engine

Updated the Java SDK to version 1.9.66.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
Updated the Python SDK to version 1.9.77.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Build

Added a warning message togcloud builds submit for builds submitted withconfigs that don't specify a logging option. Seehttps://cloud.google.com/cloud-build/docs/api/reference/rest/v1/projects.builds#loggingmode.

Cloud Composer

Added the--python-version flag togcloud beta composer environmentscreate to specify the Python version used within the created environment.

Cloud Dataproc

Added the--gce-pd-kms-key flag todataproc clusters create toenable protecting clusters with Google Cloud KMS encryption.

Cloud Key Management Service

Modifiedgcloud kms locations list to display information about theavailability of Hardware Security Modules in each location.

Cloud Spanner

Updatedgcloud spanner execute-sql to accept DML statements.

Compute Engine

Added support for managed ssl certificates togcloud beta computessl-certificates.

Internet of Things

Added--log-level flag forgcloud iot devices create,gcloud iot devices update,gcloud iot registries create, andgcloud iot registries update for beta.
Addedgcloud iot commands to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

219.0.1 (2018-10-02)

Cloud SDK

Updated to a new version of ruamel that fixesUnicode issueson OS X and Windows.

App Engine

Updated the Python SDK to version 1.9.76.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Compute Engine

Promotedcompute routers nats to beta.
Promoted 'gcloud compute interconnects get-diagnostics' to beta.
Promoted the following flags to GA to support using KMS keys to protect disks and images:
- --kms-key-* flags ofgcloud compute disks andgcloud compute images
- --boot-disk-kms-* flags ofgcloud compute instances andgcloud compute instance-templates.
Promotedgcloud compute instance-templates create-with-container from beta to GA.

Interactive

Promotedgcloud interactive to beta.

Kubernetes Engine

Added--enable-private-nodes,--enable-private-endpoint, and--master-ipv4-cidr flags togcloud container clusters create.
Added--internal-ip flag togcloud container clusters get-credentials.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

218.0.0 (2018-09-25)

Breaking Changes

(Cloud SQL) Added the PRIVATE_NETWORK column to thegcloud sql instances list defaultformat and renamed ADDRESS to PRIMARY_ADDRESS.

Cloud Dataproc

Addedgcloud beta dataproc clusters export to enable exporting a cluster'sconfiguration to a YAML file.
Addedgcloud beta dataproc clusters import to enable creating a clusterfrom configuration in a YAML file.
Added--optional-components flag togcloud beta dataproc clusters createcommand.
Promoted the following commands to GA:
- gcloud dataproc clusters get-iam-policy
- gcloud dataproc clusters set-iam-policy
- gcloud dataproc jobs get-iam-policy
- gcloud dataproc jobs set-iam-policy
- gcloud dataproc operations get-iam-policy
- gcloud dataproc operations set-iam-policy
- gcloud dataproc workflow-templates get-iam-policy
- gcloud dataproc workflow-templates set-iam-policy
Promotedgcloud dataproc workflow-templates to GA.

Cloud Scheduler

Promotedgcloud scheduler to beta.

Cloud Tools For PowerShell

Updated Cloud Tools for PowerShell to version 1.0.1.10.
- Fixed a bug where fixed key metadata did not work with Google CloudStorage cmdlets.

Compute Engine

Added the--storage-location flag togcloud beta compute disks snapshotto specify location region of a snapshot.

Container Analysis

Promoted the following alpha flags ingcloud container images describe tobeta.
- --metadata-filter
- --show-build-details
- --show-package-vulnerability
- --show-image-basis
- --show-deployment
- --show-all-metadata
Promoted the following alpha flags ingcloud container images list-tags tobeta.
- --occurrence-filter
- --show-occurrences
- --show-occurrences-fromFor more information about occurrences, seehttps://cloud.google.com/container-registry/docs/container-analysis.

Firebase Test Lab

Fixed bug where--environment-variables did not work in the 217.0.0 release.

Kubernetes Engine

Added--metadata and--metadata-from-file flags togcloud node-pools create andgcloud clusters create.
Added--internal-ip flag togcloud beta container clustersget-credentials.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

217.0.0 (2018-09-18)

Breaking Changes

(Cloud Services) Renamed--reserved-ranges toranges ingcloud beta servicesvpc-peerings.

App Engine

Updated the Java SDK to version 1.9.65.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Cloud SQL

Promoted the--network flag ofgcloud sql instances create andgcloud sql instances patch tobeta.

Cloud Storage

Updated gsutil component to 4.34

Compute Engine

Added--prefix-length,--purpose and--network flags to BETA forgcloud compute addresses create to support reserving IP range from virtual network for peering.
Added thedescription property to the--create-disk flag ofgcloud compute instances create andgcloud compute instance-templates create.

Kubernetes Engine

Added--metadata and--metadata-from-file flags togcloud beta node-pools create andgcloud beta clusters create.
Updated Google Kubernetes Engine's kubectl from version 1.9.7 to 1.10.7.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

216.0.0 (2018-09-11)

App Engine

Updated the Go SDK to version 1.9.68.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/go/release-notes

Cloud Bigtable

Promoted the following commands to GA:
- gcloud bigtable instances command group
- gcloud bigtable clusters list
- gcloud bigtable clusters describe

Cloud Memorystore

Promotedgcloud redis to GA.

Cloud Services

Deprecatedgcloud services operations list in beta and GA.

Compute Engine

Promoted--internal-ip flag ofgcloud compute scp to beta.
Promoted--disabled flag ofgcloud compute firewall-rules to GA.
Fixed bug preventinggcloud compute ssh andgcloud compute scp fromfinding an instance's external IP address when configured with multiplenetwork interfaces.
Promotedgcloud compute instances create-with-containerandgcloud compute instances update-container to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

215.0.0 (2018-09-05)

Breaking Changes

(Cloud SQL) Removed the default value of the--database-version flagofgcloud sql instances create, allowing the API to select the value.

App Engine

Added python 3 support for gcloud app and gcloud domains.
Added the--no-cache flag togcloud beta app deploy forSecond Generation runtimes,to disable the build cache during deployment.
Updated the Python SDK to version 1.9.75.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Datalab

Updated thedatalab component to the 20180823 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/2068.

Cloud Dataproc

Fixed an issue preventing the creation of clusters with SSD in GA.

Cloud Firestore

Addedgcloud beta firestore andgcloud beta firestore operations formanaging cloud firestore imports and exports.

Cloud Functions

Added --service-account flag to gcloud alpha functions deploy.

Cloud Pub/Sub

Promoted Snapshot & Seek features to beta. These features allow users tocreate snapshots of subscription backlog state, and later restore thatstate.

Cloud SQL

Fixed a bug preventing--backup and--enable-bin-log flags from being sent together when using thegcloud sql instances create command.

Compute Engine

Promoted--internal-ip flag ofgcloud compute scp to beta.
Promoted--disabled flag ofgcloud compute firewall-rules to GA.

Kubernetes Engine

Promotegcloud alpha container subnets list-usable to Beta.
AddsecondaryIpRanges to the output ofgcloud beta container subnets list-usable.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

214.0.0 (2018-08-28)

Breaking Changes

(Cloud Bigtable) Modified the arguments accepted bycbt createappprofile andcbtupdateappprofile in the following ways:
- Removedetag argument fromcreateappprofile.
- Renamedallow-transactional-writes option astransactional-writes.
- Added aforce option to ignore warnings.
(Cloud Bigtable) Modified the specification for routing policies. A routing policy can beeither "route-any" (previously of "multi_cluster_routing_use_any") or"route-to=<cluster-id>".
(Compute Engine) Deprecatedgcloud compute interconnects attachments create. Please usegcloud compute interconnects attachments dedicated create instead.
(Compute Engine) Removed deprecated--mode flag fromgcloud compute networks create. Use--subnet-mode instead.
(Compute Engine) Removed deprecatedgcloud compute networks switch-mode command. Usegcloud compute networks update --switch-to-custom-mode instead.
(Compute Engine) Removed deprecatedgcloud compute xpn command group. Usegcloud compute shared-vpc instead.

Cloud Bigtable

Restored the output of thecbt count command that was inadvertentlyremoved in the previous release.

Cloud Datalab

Updated thedatalab component to the 20180820 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/2064.

Cloud Dataproc

Added SCHEDULED_DELETE column togcloud beta dataproc clusters list commandoutput.

Cloud Datastore Emulator

Released Cloud Datastore Emulator version 2.0.2.
- Improved backward compatibility with App Engine local development bykeeping auto generated indexes in index file generated from previous runs.

Cloud Functions

Promoted--runtime flag ofgcloud functions deploy to GA.

Compute Engine

Promoted the following flags to GA:
- --network-tier ofgcloud compute addresses create
- --network-tier ofgcloud compute forwarding-rules create
- --default-network-tier ofgcloud compute project-info update
- --network-tier ofgcloud compute instances add-access-config
  - --network-tier ofgcloud compute instances create
- --network-tier ofgcloud compute instance-templates create
Promotedgcloud compute instances simulate-maintenance-event to GA.
Promotedget-iam-policy,set-iam-policy,add-iam-policy-bindings andremove-iam-policy-bindings tobeta in the following commands groups:
- gcloud compute sole-tenancy node-groups
- gcloud compute sole-tenancy node-templates

Kubernetes Engine

Promoted--disk-type flag ofgcloud container clusters create andgcloud container node-pools create to GA.
Promoted--default-max-pods-per-node flag ofgcloud container clusters create to beta.
Promoted--max-pods-per-node flag ofgcloud container node-pools create to beta.
Modified--monitoring-service flag ofgcloud containers clusters update to enable Google Cloud Monitoring service with Kubernetes-native resource model.
Modified--logging-service flag ofgcloud containers clusters update to enable Google Cloud Logging service with Kubernetes-native resource model.
Modified output ofgcloud beta container clusters list for DEGRADED clusters to include reason for degradation.
Added--enable-private-nodes and--enable-private-endpoint togcloud beta container clusters create.
Deprecated--private-cluster flag ofgcloud beta container clusters create; use--enable-private-nodes instead.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

213.0.0 (2018-08-21)

Breaking Changes

(Cloud Datastore) Deprecatedgcloud datastore create-indexes andgcloud datastore cleanup-indexes.Usegcloud datastore indexes create andgcloud datastore indexes cleanup instead.

App Engine

Updated the Python SDK to version 1.9.74.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Datastore

Promotedgcloud datastore indexes command group to GA.

Cloud SQL

Added the--timeout flag togcloud sql operations wait, to supportspecifying a custom timeout or allow the command to wait indefinitely.

Kubernetes Engine

Promoted--disk-type flag ofgcloud container clusters create andgcloud container node-pools create to GA.
Modified--monitoring-service flag ofgcloud containers clusters update to enable Google Cloud Monitoring service with Kubernetes-native resource model.
Modified--logging-service flag ofgcloud containers clusters update to enable Google Cloud Logging service with Kubernetes-native resource model.
Modified output ofgcloud beta container clusters list forDEGRADED clusters to include reason for degradation.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

212.0.0 (2018-08-14)

Cloud Build

cloud-build-local release 0.4.1 fixes a bug in build step status reportingfor timed out builds. For details, seehttps://github.com/GoogleCloudPlatform/cloud-build-local/releases

Cloud Machine Learning Engine API

Added--signature-name flag togcloud ml-engine predict andgcloud ml-engine jobs prediction create to specify custom TensorFlowsignature to use in prediction.

Kubernetes Engine

Addedgcloud beta container binauthz command group to help manage BinaryAuthorization policy.
- Binary Authorization enforcement can be enabled for your GoogleKubernetes Engine clusters by passing the--enable-binauthz flag togcloud beta container create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

211.0.0 (2018-08-07)

App Engine

Removed automated app.yaml generation fromgcloud app deploy. The deprecatedgcloud beta app gen-config command is still available separately for now.
gcloud app deploy now supports.gcloudignore for all deployments..gcloudignore supersedes theskip_files section in app.yaml. Read moreabout.gcloudignore by runninggcloud topic gcloudignore.

Cloud Datastore

Addedgcloud beta datastore indexes describe.
Addedgcloud beta datastore indexes list.

Cloud Deployment Manager

Added config key which enables globbing in thegcloud deployment-manager deployments create andgcloud deployment-manager deployments update commands. Config filescan now use glob patterns in import paths.
This feature can be enabled by setting the config propertydeployment_manager/glob_imports to true:gcloud config set deployment_manager/glob_imports True.Additional details for this feature:
- Imports with a path pattern that match multiple files cannot be named.
- When referencing a template in a resource type field, its full name is still required.
- More information on globbing is available athttp://man7.org/linux/man-pages/man7/glob.7.html.
- More information on deployment-manager configurations is available athttps://cloud.google.com/deployment-manager/docs/configuration/.

Cloud Services

gcloud beta services disable now supports force option. If specified, thedisable call will proceed even if there are enabled services which depend onthe service to be disabled. Forcing the call means that the services whichdepend on the service to be disabled will also be disabled.
Promotedgcloud services vpc-peerings to beta.

Compute Engine

Promoted--network-tier flag ofgcloud compute addresses create andgcloud compute forwarding-rules create to GA.
Promoted--default-network-tier flag ofgcloud compute project-info update to GA.
Promoted--network-tier flag ofgcloud compute instances add-access-config andgcloud compute instances create to GA.
Promoted--network-tier flag ofgcloud compute instance-templates create to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

210.0.0 (2018-07-31)

Breaking Changes

(Compute Engine) Removed deprecatedgcloud compute interconnects patch. Usegcloud compute interconnects update instead.
(Container Builder) Deprecatedcontainer-builder-local; usecloud-build-local instead.
(Container Builder) Deprecatedgcloud container builds command group; usegcloud buildsinstead.
- gcloud builds retains the functionality ofgcloud container builds.Existinggcloud container builds commands will continue to work duringthe deprecation period but will be deleted from a future release.
- Renamed thecontainers.build_timeout property asbuilds.timeout ingcloud builds.
- Renamed thecontainer.build_check_tag property asbuilds.check_tagingcloud builds.
(Kubernetes Engine) Starting in version 1.12,gcloud container clusters create will have basicauthentication and client certificate issuance disabled by default. Thesefunctionalities can be enabled (or disabled) manually using the--[no-]enable-basic-auth and--[no-]issue-client-certificate flags,respectively.

App Engine

Removed automated app.yaml generation fromgcloud app deploy. The deprecatedgcloud beta app gen-config command is still available separately for now.

Cloud Bigtable

Fixedcbt deleterow andcbt deletecolumn to not return errors during argument checking.

Cloud Build

Renamed thecontainer-builder-local binary ascloud-build-local with nofunctional changes. Initial release is version0.4.0.
Released initialcloud-build-local package installers for deb and RPM.

Cloud Endpoints

Added warnings when validating service config for a service which does notyet exist. (Previously, this would silently create the service.)

Cloud IoT

Promoted the following commands to beta:
- gcloud registries add-iam-policy-binding
- gcloud registries remove-iam-policy-binding

Cloud Services

gcloud beta services disable now supports force option. If specified, thedisable call will proceed even if there are enabled services which depend onthe service to be disabled. Forcing the call means that the services whichdepend on the service to be disabled will also be disabled.

Compute Engine

Promotedsole-tenancy commands to GA.
Promoted--internal-ip flag ofgcloud compute ssh to GA.
Addedlist-nodes command togcloud compute sole-tenancy node-groups for showing node information.
Added--use-serving-port flag togcloud compute health-checks tcp create command.
Promoted--enable-logging flag ofgcloud compute firewall-rules create andgcloud compute firewall-rules update to beta.
Promotedgcloud compute networks subnets list-usable to GA.

Container Builder

Deprecatedgcloud container builds; usegcloud builds instead. Theexistingcontainer builds commands will continue to work during thedeprecation period but will be deleted from a future release.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

209.0.0 (2018-07-18)

Breaking Changes

(Cloud DNS) Removed deprecatedgcloud beta dnskeys command group; please usegcloud beta dns-keys instead.
(Kubernetes Engine) Modifiedgcloud container clusters create andgcloud container node-pools create commands to create clusters andnode-pools with node autorepair enabled by default if they use COS baseimage. Use the--no-enable-autorepair flag to disable this behavior.

App Engine

Updated the Go SDK to version 1.9.67.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/go/release-notes
Updated the Python SDK to version 1.9.73.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Composer

Promotedgcloud composer commands to GA.

Cloud Functions

Promotedgcloud functions commands to GA.

Cloud Tasks

Promotedgcloud tasks commands to beta.

Compute Engine

Promoted--zones flag ofgcloud compute instance-groups managed create command to GA.
Promotedget-iam-policy,set-iam-policy,add-iam-policy-bindings, andremove-iam-policy-bindings tobeta in the following commands groups:
- gcloud compute disks
- gcloud compute images
- gcloud compute instance-templates
- gcloud compute instances
- gcloud compute snapshots

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

208.0.2 (2018-07-12)

Hotfix fordev_appserver crashes.

208.0.1 (2018-07-11)

Hotfix forgcloud dataproc crashes.

208.0.0 (2018-07-10)

Breaking Changes

(Kubernetes Engine) Added warning that the default value of--enable-ip-alias will change forgcloud container clusters createcommand. VPC native(ip alias enabled) clusterswill become the default in the future. Use--[no-]enable-ip-alias flagto suppress this warning.

Cloud SDK

gcloud TAB completion for commands, flags, and constant flag value choices is~10x faster.

App Engine

Updated the Python SDK to version 1.9.72.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Dataproc

Addedgcloud beta dataproc workflow-templates import to enable creatingand updating workflow templates using a YAML file.
Addedgcloud beta dataproc workflow-templates export to enable exportinga workflow template to a YAML file.
Added--parameters flag togcloud beta dataproc workflow-templatesinstantiate to enable parameterization of workflow templates.

Cloud Datastore Emulator

Released Cloud Datastore Emulator version 2.0.1.
- Improved backward compatibility with App Engine local development byallowing special entity kinds written to Cloud Datastore to bewhitelisted for App Engine.

Cloud Filestore

gcloud filestore command group is now available in beta. These commandslet you create, configure, and manipulate Cloud Filestore instances.
- Rungcloud filestore --help to learn more.
- More information on Cloud Filestore can be found here:https://cloud.google.com/filestore/
- Detailed documentation can be found here:https://cloud.google.com/filestore/docs/

Cloud Functions

Added--runtime flag togcloud beta functions deploy.
Added the following flags togcloud beta functions deploy for settingcustom environment variables to functions:
- --clear-env-vars
- --set-env-vars
- --env-vars-file
- --remove-env-vars
- --update-env-varsSeehttps://cloud.google.com/functions/docs/env-var for more information.

Cloud Machine Learning Engine

Promoted--python-version flag ofgcloud ml-engine versions create to GA.

Cloud Storage

Updated gsutil component to 4.33.

Compute Engine

Added the following flags togcloud compute instance-templates create to integrate with KMS:
- --boot-disk-kms-key
- --boot-disk-kms-keyring
- --boot-disk-kms-location
- --boot-disk-kms-project
Added--use-serving-port flag to the following commands:
- gcloud compute health-checks http create
- gcloud compute health-checks https create
- gcloud compute health-checks http2 create
- gcloud compute health-checks ssl create
Promoted the followingsource-instance flags ofgcloud computeinstance-templates create command to GA:
- --source-instance
- --source-instance-zone
- --configure-disk
Promotedgcloud compute network-endpoint-groups command group to beta.
Promoted--network-endpoint-group and--network-endpoint-group-zoneflags ofgcloud compute backend-services add-backend,gcloud compute backend-services remove-backend,andgcloud compute backend-services update-backend to beta.
Promoted--max-connections-per-endpoint and--max-rate-per-endpointflags ofgcloud compute backend-services add-backend andgcloud compute backend-services update-backend to beta.

Kubernetes Engine

Removed gcloud propertycontainer/use_v1_api and its aliascontainer/use_v1_api_client.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

207.0.0 (2018-06-26)

App Engine

Updated the Python SDK to version 1.9.71.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
Updated the Go SDK to version 1.9.65.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/go/release-notes

App Engine Flexible Environment

Added therollout_strategy property to theendpoints_api_service sectionin theapp.yaml. Setting this makes Endpoints run inmanaged mode.

Cloud Build

Addedgcloud builds command group to create and manage builds for GoogleCloud Build.

Cloud Dataproc

Promoted boot disk type configuration flags ofgcloud dataproc clusters create command to GA:
- --master-boot-disk-type
- --worker-boot-disk-type
- --preemptible-worker-boot-disk-type
Promoted the--image flag ofgcloud dataproc clusters create to GA.

Cloud Machine Learning Engine

Promoted--machine-type flag ofgcloud ml-engine versions create commands to beta.

Cloud SQL

Added the--host flag togcloud sql users create,gcloud sql users deleteandgcloud sql users set-password.
Deprecated thehost argument ofgcloud sql users create,gcloud sql users delete, andgcloud sql users set-password in favor of the--host flag.

Cloud TPU

Promoted thegcloud compute tpus command group to GA

Compute Engine

Promoted the following Cloud CDN Signed URL commands to GA:
- gcloud compute sign-url
- gcloud compute backend-buckets add-signed-url-key
- gcloud compute backend-buckets delete-signed-url-key
- gcloud compute backend-services add-signed-url-key
- gcloud compute backend-services delete-signed-url-key
Promoted--signed-url-cache-max-age flag to GA in the following commands:
- gcloud compute backend-buckets create
- gcloud compute backend-buckets update
- gcloud compute backend-services create
- gcloud compute backend-services update
Promoted theHTTP2 value to beta for the--protocol flag ofgcloud compute backend-services create andgcloud compute backend-services update.
Promotedhttp2 relatedgcloud compute health-checks commands to beta.

Kubernetes Engine

Added the--enable-autoscaling flag to thenode-pools command to enableautoscaling for a node-pool. For example,gcloud beta container node-pools update --enable-autoscaling --max-nodes=3.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

206.0.0 (2018-06-19)

Breaking Changes

(Container Registry) Updateddocker-credential-gcr to version 1.5.0.
- Order of access_token sources has been reversed: by default,gcloudwill now take precedence over environmental sources when operating inKubernetes Engine, Compute Engine, or App Engine Managed VMs.
- See docker-credential-gcr v1.5.0 release notes on GitHub:https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases/tag/v1.5.0

Cloud SDK

Thegcloud CLI now has experimental support for running using a Python 3.4+interpreter. (Prior versions of gcloud required Python 2.7.) Allgcloudcommands are supported except for the following command groups:
- gcloud app
- gcloud datastore
- gcloud scheduler
- gcloud tasks
Python tools other thangcloud that are shipped in the Cloud SDK stillrequire a Python 2.7 interpreter.
For more information on how to configure your Python interpreter, run:gcloud topic startup or visit:https://cloud.google.com/sdk/gcloud/reference/topic/startup
Fixed issue where credentials were written with broad permissions.

App Engine

Modifiedgcloud app domain-mappings create to provision an automaticallymanaged SSL certificate by default on domain mapping creation.
Promoted--certificate-management flag ofgcloud app domain-mappings create andgcloud app domain-mappings update to GA.

Cloud Dataproc

Added the--gce-pd-kms-key flag todataproc clusters create in beta to enable protecting clusters with Google Cloud KMS encryption.

Cloud Machine Learning Engine

Promoted the--framework flag ofgcloud ml-engine versions create to GA.

Compute Engine

Added the--labels flag togcloud beta compute disks snapshot to enable setting labels on new snapshots.

Kubernetes Engine

Promoted the--min-cpu-platform flag ofgcloud container create to GA.
Promoted--accelerator flag ofgcloud container clusters create andgcloud container node-pools create to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

205.0.0 (2018-06-12)

Cloud Bigtable

Added new flags to thecbt command-line tool:
- -user-agent for specifying a custom User Agent
- -columns for specifying columns to read withread andlookup
- -cells-per-column for limiting number of cells read per column withread andlookup

Cloud Datastore

Addedgcloud datastore indexes command group to beta with the following commands:
- gcloud datastore indexes cleanup
- gcloud datastore indexes create

Cloud Interconnect

Promoted interconnects attachments partner related commands to GA.

Cloud Storage

Updated gsutil component to 4.32.

Cloud TPU

Added--preemptible flag togcloud beta compute tpus create.

Compute Engine

Added the--network flag togcloud compute images export to allow theexport process to use a network other thandefault.
Promoted--quic-override flag ofcompute target-https-proxies create andcompute target-https-proxies update to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

204.0.0 (2018-06-05)

Breaking Changes

(Compute Engine) Replaced--node-index with--node forgcloud alpha compute instance createandgcloud alpha compute instance_templates create. Node name willreplace node index in the API, and nodes can now be targeted directlyby node name (as opposed to node index, which was only unique within a group).

App Engine

Updated the Java SDK to version 1.9.64.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Cloud Endpoints

Fixed an issue where attempting to deploy normalized service configurationfiles in yaml format would error out.

Cloud Machine Learning Engine

Added--framework flag toml-engine local predict.

Cloud Source Repositories

Added thegcloud source repos update command to beta with the following flags:
- --add-topic
- --remove-topic
- --update-topic
Added the following flags togcloud source project-configs update in beta:
- --add-topic
- --remove-topic
- --update-topic

Compute Engine

Promoted--response flag ofgcloud compute health-checks commands to beta.
Promoted the following flags to beta to support using KMS keys to protect disks, images, and snapshots:
- --kms-key-* flags ofgcloud compute disks
- --kms-key-* flags ofgcloud compute images
- --boot-disk-kms-* flags ofgcloud compute instances.
Promoted node affinities in instance and instance template creation to beta.

Firebase Test Lab

Promoted--type=game-loop tests for Android from beta to GA.

Kubernetes Engine

Promoted--region flag ofgcloud container to GA.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

203.0.0 (2018-05-30)

Breaking Changes

(Cloud SQL) Deprecatedgcloud sql ssl-certs. Usegcloud sql ssl client-certs instead.

App Engine

Fixed issue where attempting to deploy non-yaml config files would reportsuccess, but silently update configuration incorrectly, e.g.gcloud appdeploy cron.xml. Note that xml-files are not supported withgcloud app,with the exception ofappengine-web.xml.

App Engine Flexible Environment

Fixed an issue wheregcloud beta app deploy failed to respect the--image-url argument during Flex deployments. This issue was introduced inCloud SDK version 195.0.0.

Cloud Dataproc

Addedgcloud beta dataproc workflow-templates instantiate-from-file toenable instantiation of workflow templates directly from a YAML file.
Addedgcloud beta dataproc clusters create-from-file to enable creationof clusters directly from a YAML file.

Cloud SQL

Added thegcloud beta sql ssl server-ca-certs group to support certificaterotation, which includes the following commands:
- gcloud beta sql ssl server-ca-certs list
- gcloud beta sql ssl server-ca-certs create
- gcloud beta sql ssl server-ca-certs rotate
- gcloud beta sql ssl server-ca-certs rollback

Cloud Source Repositories

Added the following commands to beta:
- gcloud source project-configs describe
- gcloud source project-configs update

Compute Engine

Promoted--service-label flag ofgcloud compute forwarding-rules createto beta.
Promoted--shielded-vm-* flags to beta ingcloud compute instances create,gcloud compute instances update andgcloud compute instance-templates create.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

202.0.0 (2018-05-22)

Breaking Changes

(Cloud Composer) Increased minimum--disk-size ofgcloud beta composer environments createto 20GB.
(Compute Engine) Deprecatedgcloud compute interconnects attachments create. Usegcloudcompute interconnects attachments dedicated create instead.
(Firebase Test Lab) Deprecated the following Robo test crawler-related flags:
- --max-depth
- --max-steps: Use the--timeout option instead to limit the testlength.
- --app-initial-activity: Use the--robo-script option (in beta) toguide Robo to a specific part of the app under test.

App Engine

Updated the Python SDK to version 1.9.70.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Datastore Emulator

Released Cloud Datastore Emulator version 2.0.0.
- Java 8 (or later) is now required to run the emulator.
- When the emulator is run in an App Engine local development server,index.yaml parsing errors are bubbled up. Previously the emulator wouldthrow a AppEngineConfigException without responding to the developmentserver requests.

Cloud Tools For PowerShell

Updated Cloud Tools for PowerShell to version 1.0.1.8.
- Fixed a bug whereGet-GcpProject did not enumerate collection.
- Fixed a bug where local SSD option for attach disk cmdlet did not work.

Compute Engine

Added help text output upon creating interconnects/interconnect attachments.To hide this output, append the--no-user-output-enabled flag.
Promoted--enable-flow-logs flag ofgcloud compute networks subnets create andgcloud compute networks subnets update to GA.
Promotedgcloud compute sole-tenancy commands to beta.
Modified--delete-nodes ofgcloud beta compute sole-tenancy node-groupsto accept node names instead of node indexes.

Kubernetes Engine

Added--disk-type togcloud beta container clusters create andgcloud beta container node-pools create to allow setting of the node VM boot disk type.
Updated Google Kubernetes Engine's kubectl from version 1.8.6 to 1.9.7.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

201.0.0 (2018-05-15)

Breaking Changes

(Compute Engine) Modified default TPU accelerator type tov2-8 forgcloud compute tpuscommands.tpu-v2 has been deprecated.

Cloud Bigtable

Added the following commands to thegcloud beta bigtable instances commandgroup to help manage IAM policies:
- set-iam-policy
- get-iam-policy
- add-iam-policy-binding
- remove-iam-policy-binding

Cloud Datalab

Updated thedatalab component to the 20180503 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1999.

Compute Engine

Promoted--create-disk flag ofgcloud compute instances create to GA.These flags allow creating new disks during instance creation.
Added the TYPE column togcloud compute interconnects attachments listtable format.
Added--labels flag togcloud beta compute instance-templates create-with-container.

Firebase Test Lab

Firebase Test Lab now supports mobile app testing for iOS. Please request access here:https://docs.google.com/forms/d/e/1FAIpQLSf5cx1ot8ndHU9YrFkCn6gPoQZLxgW_6H13e_bot3he90n7Ng/viewform. Added the following commands:
- gcloud beta firebase test ios models list
- gcloud beta firebase test ios models describe
- gcloud beta firebase test ios versions list
- gcloud beta firebase test ios versions describe
- gcloud alpha firebase test ios run

Kubernetes Engine

Promoted--enable-stackdriver-kubernetes ofgcloud container clusters create to beta.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

200.0.0 (2018-05-01)

Breaking Changes

(Cloud DNS) Modifiedgcloud beta dns dnskeys describe command to remove thedsRecordfield for closer correspondence to the Google Cloud DNS API. Please usethe flag--format "value(ds_record())" instead.
(Cloud DNS) Moved thegcloud beta dns dnskeys commands togcloud beta dns dns-keys;the old commands are deprecated and will soon be removed.
(Cloud Interconnect) Deprecatedgcloud compute interconnects patch and renamed it togcloud compute interconnects update.

App Engine Flexible Environment

Fixed a bug due to which some Flexible deployments would fail withLargeFileError.

Cloud Composer

Initial (beta track) release of thegcloud beta composer command group.Cloud Composer is a managed Apache Airflow service. To learn more, seehttps://cloud.google.com/composer/docs/.

Cloud DNS

Promotedgcloud dns dns-keys list andgcloud dns dns-keys describe commands to GA.

Cloud SQL

Added--source-ip-address and--source-port flags togcloud beta sql instances create to support creating external primaryinstances.
Added the following flags togcloud beta sql instances create to supportcreating read replicas of external primary instances:
- --master-username
- --master-password,
- --prompt-for-master-password
- --master-dump-file-path,
- --master-ca-certificate-path
- --client-certificate-path
- --client-key-path

Cloud Storage

Updated gsutil component to 4.31

Compute Engine

Promoted support for disabling firewall rules to beta.

Kubernetes Engine

Added--enable-stackdriver-kubernetes flag to enable Stackdriver logging andmonitoring beta experience.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

199.0.0 (2018-04-24)

Breaking Changes

(App Engine) Deprecated thegcloud app gen-config command and "app.yaml" generationfeature of thegcloud app deploy command (both in beta).As an alternative, create an app.yaml file yourself using theApp EngineFlexibleEnvironmentdirections or theApp Engine StandardEnvironment directions for your application's language.

Cloud Bigtable

Updated the Cloud Bigtablecbt tool for regional replication.
- Added the following commands:
  - createcluster
  - updatecluster
  - deletecluster
  - waitforreplication
- Added application profile support inread,lookup andset
Added the following commands to beta:
- app-profiles to manage application profiles for your instances.
- clusters create to create additional clusters within an existing instance.
- clusters delete to delete clusters from an instance.

Cloud Billing API

Addedgcloud billing accounts get-iam-policy andgcloud billing accounts set-iam-policy in alpha and beta.
Modified output ofgcloud billing accounts list in beta to include themaster account ID of any subaccounts.

Cloud DNS

Promotedgcloud dns operations list andgcloud dns operations describe commands to GA.

Cloud Datalab

Updated thedatalab component to the 20180412 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1989.

Cloud Spanner

The following commands are now available in beta:
- gcloud spanner rows delete
- gcloud spanner rows insert
- gcloud spanner rows update

Kubernetes Engine

Updated for Python 3 compatibility.
Promotedgcloud container clusters create --enable-ip-alias to GA.
- --enable-ip-alias no longer requires the--create-subnetworkoption to be specified when creating a cluster.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

198.0.0 (2018-04-18)

Breaking Changes

(Cloud Endpoints) Deprecated support for uploading uncompiled .proto files withgcloudendpoints services deploy. Support will be removed in a future release.

App Engine

Fixed a rare, intermittent bug where deployments would fail with an errormessage about "copying files to App Engine".
Updated the Python SDK to version 1.9.69.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
AddedPyTz version 2017.3 to thebuilt-in third-party libraries.

BigQuery

Added support for reauth. Reauth allows using two-factor authentication forend-user credentials.

Cloud DNS

Promotedgcloud dns managed-zones update to GA.

Cloud TPU

Addedgcloud compute tpus accelerator-types list andgcloud compute tpus accelerator-types describe to beta.

Compute Engine

Promoted the--region flag ofgcloud compute disks and related commands to beta
Updatedgcloud compute instances create command to supportblank disk creation.
Modifiedgcloud compute sign-url to accept HTTP URLs in addition to HTTPS URLsfor signing.
Promoted the following Cloud CDN Signed URL commands to beta:
- gcloud beta compute sign-url
- gcloud beta compute backend-buckets add-signed-url-key
- gcloud beta compute backend-buckets delete-signed-url-key
- gcloud beta compute backend-services add-signed-url-key
- gcloud beta compute backend-services delete-signed-url-key
Promoted--signed-url-cache-max-age flag to beta in the following commands:
- gcloud beta compute backend-buckets create
- gcloud beta compute backend-buckets update
- gcloud beta compute backend-services create
- gcloud beta compute backend-services update

Firebase Test Lab

Added--other-files flag togcloud beta firebase test android run to support running tests with non-OBB files pushed to device.

Kubernetes Engine

Addedgcloud alpha container subnets list-usable command for listing subnetsusable for creating clusters in Google Kubernetes Engine.
Fixed--node-locations ofgcloud containers clusters create to correctlyspecify what node-pools should be created during the creation of a cluster.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

197.0.0 (2018-04-11)

Breaking Changes

(Cloud Bigtable) Removed deprecated--instance-type flag forgcloud beta bigtable instancesupdate. Usegcloud beta bigtable instances upgrade instead.
(Cloud Bigtable) Removed deprecated--description flag fromgcloud beta bigtable instances create andgcloud beta bigtable instances update. Use--display-name instead.
(Kubernetes Engine) Added warning that the default value of--enable-autorepair will change forcontainer clusters create andcontainer node-pools create commands. Use--[no-]enable-autorepair flag to suppress this warning.

App Engine

Updated the Python SDK to version 1.9.68.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

App Engine Flexible Environment

Added deprecation warning ingcloud app deploy for apps on the App Engineflexible environment using Python version 3.4. For more information about thisdeprecation, seehttps://cloud.google.com/appengine/docs/standard/deprecations/python34.

Cloud DNS

Promoted--labels flag ofgcloud dns managed-zones create to GA.

Cloud Endpoints

Changedgcloud services list to sort by name by default.

Cloud TPU

Addedgcloud compute tpus reimage,gcloud compute tpus start, andgcloud compute tpus stop commands to beta.

Compute Engine

Promoted--network-tier flag ofgcloud compute addresses create to beta.
Promoted--network-tier flag ofgcloud compute forwarding-rules create to beta.
Promoted--default-network-tier flag ofgcloud compute project-info update to beta.
Promoted--network-tier flag ofgcloud compute instances add-access-config to beta.
Promoted--network-tier flag ofgcloud compute instances create to beta.
Promoted--network-tier flag ofgcloud compute instances create-with-container to beta.
Promoted--network-tier flag ofgcloud compute instance-templates create to beta.
Promoted--network-tier flag ofgcloud compute instance-templates create-with-container to beta.

Container Registry

Updatedauth configure-docker to work even whendocker is not installedor cannot be found on the system PATH. This is primarily useful for Bazelrules_docker users.

Firebase Test Lab

Added--additional-apks flag togcloud beta firebase test android run to support running tests with additionally installed APKs.

Vision API

Added '--include-geo-results' flag tobeta ml vision detect-web.
Added--model-version flag tobeta ml vision commands.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

196.0.0 (2018-04-04)

Breaking Changes

(Compute Engine) Renamed the--no-translate flag ofgcloud compute images import to--data-disk.
(Docker)gcloud docker will not be supported for Docker client versions above 18.03.Please usegcloud auth configure-docker to configuredocker to usegcloud as a credential helper; then, usedocker as you would for non-GCRregistries, e.g.docker pull gcr.io/project-id/my-image.
- See:https://cloud.google.com/container-registry/docs/support/deprecation-notices#gcloud-docker
(Kubernetes Engine) Modified the default value of deprecated propertycontainer/use_v1_api,whose alias iscontainer/use_v1_api_client, fromtrue tofalse.

Cloud DNS

Promoted the following DNSSEC flags ofgcloud dns managed-zones to GA:
- --denial-of-existence
- --dnssec-state
- --ksk-algorithm
- --ksk-key-length
- --zsk-algorithm
- --zsk-key-length

Cloud Interconnect

Promoted interconnects attachments partner related commands to beta.

Cloud TPU

Addedgcloud compute tpus versions list to beta.
Addedgcloud compute tpus versions describe to beta.
Addedgcloud compute tpus locations list to beta.
Addedgcloud compute tpus locations describe to beta.

Cloud Tools For PowerShell

Updated Cloud Tools for PowerShell to version 1.0.1.7.
- Fixed a bug whereGet-GceMetaData failed when called twice.

Compute Engine

Promotedgcloud compute images import to GA.
Promoted the following to GA:
- gcloud compute instances network-interfaces update
- --add-secondary-ranges and--remove-secondary-ranges flags ofgcloud compute networks subnets update
Promotedgcloud compute instances simulate-maintenance-event to beta.
Added three flags (--prefix-length,--purpose and--network) togcloudcompute addresses create in alpha to support reserving IP range from virtualnetwork for peering.
Promoted--enable-flow-logs flag ofgcloud compute networks subnets create andgcloud compute networks subnets update to beta.
Promoted SSL policies support to GA.
- Promoted the following commands to GA:
  - compute ssl-policies create
  - compute ssl-policies describe
  - compute ssl-policies list
  - compute ssl-policies update
  - compute ssl-policies delete
  - compute ssl-policies list-available-features
- Promoted--ssl-policy flag ofcompute target-https-proxies createandcompute target-ssl-proxies create to GA.
- Promoted--ssl-policy and--clear-ssl-policy flags ofcompute target-https-proxies updateandcompute target-ssl-proxies update to GA.
Promoted--custom-request-headers and--no-custom-request-headers flags ofgcloud compute backend-services create andgcloud compute backend-services update to beta.

Container Registry

Promotedgcloud auth configure-docker to GA.
Modifiedcontainer images add-tag to allow the specification of multiple destination tags.

Kubernetes Engine

Restoredcontainer/use_client_certificate option functionality. It wasaccidentally removed in the previous release.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

195.0.0 (2018-03-28)

Breaking Changes

(Kubernetes Engine) Fixed issue where--service-account flag did not adduserinfo.email scopeingcloud container.

App Engine

Updated the Go SDK to version 1.9.64.
Updatedgo-app-stager to use Go version 1.10 for staging App Engine Flexible apps withruntime: go in app.yaml.

Cloud Dataproc

AddedPREEMPTIBLE_WORKER_COUNT togcloud dataproc clusters list.
Removed unnecessary zone flag fromdataproc workflow-templates create.

Cloud Endpoints

Updated thegcloud endpoints services deploy command to recognize filesending in.proto.bin as protobuf binary descriptor files, improvinginteroperability withBazel'sproto_libraryrule which outputs protobuf descriptors with this extension.

Cloud Machine Learning Engine

Added--python-version flag togcloud beta ml-engine versions create.

Cloud SQL

Promoted--availability-type ofgcloud sql instances create andgcloud sql instances patch to GA.

Compute Engine

Added support for internationalized domain names toalpha ssl-certificates.
Promoted--source-instance-template flag ofgcloud compute instancescreate command to GA.
Promotedgcloud compute images export to GA.
Promoted QUIC support to beta
- Promoted--quic-override flag ofcompute target-https-proxies create andcompute target-https-proxies update to beta.

194.0.0 (2018-03-21)

Breaking Changes

Removed--disable-addons fromgcloud container clusters create.

Cloud Machine Learning Engine

Added--python-version flag togcloud ml-engine jobs submit training.

Compute Engine

Added--disk-scope flag todetach-disk operation in alpha.
Promotedgcloud compute networks subnets list-usable to beta.
Promoted--guest-os-features flag ofgcloud compute disks create to GA.This flag allows create disks with additional specified GuestOS features.
Removedgcloud compute networks switch-mode. Please usegcloud computenetworks update --switch-to-custom-mode instead.
Removed--mode flag fromgcloud compute networks create. Please use--subnet-mode instead.
Promotedgcloud compute images export to beta.

193.0.0 (2018-03-14)

Breaking Changes

(REMOVED) Removedgcloud sql instances set-root-password command.
(MODIFIED) Changed default scopes for Kubernetes 1.10 when creating clustersor node pools:compute-rw anddevstorage-ro are no longer always added.(This is the default behavior for all Kubernetes versions for alpha and betatracks or ifcontainer/new_scopes_behavior property is set to true.) Theversion of Kubernetes does not affect the behavior of--[no-]enable-cloud-endpoints.

App Engine

Show server side warnings to the user.

BigQuery

Added DEFLATE and SNAPPY compression types for Avro exports.
Added flag 'require_partition_filter' for creating and updating partitionedtables. This will require a partition filter for any queries over the table.
Added flags to filter jobs based on creation time when runningbq ls -j:'min_creation_time' and 'max_creation_time'.

Cloud Dataproc

Addedget-iam-policy andset-iam-policy commands to thegcloud beta dataproc jobs,gcloud beta dataproc operations, andgcloud beta dataproc workflow-templates command groups.

Cloud Machine Learning Engine

Addedgcloud alpha ml-engine locations command group.

Cloud Tools For PowerShell

Updated Cloud Tools for PowerShell to version 1.0.1.6.
- Addedregion support for Google Compute Engine Managed Instance cmdlets.

Compute Engine

Addedrhel-sap-cloud project to the default public image list.
Promoted Flexible Route Advertisement commands and flags to GA:
- gcloud compute routers update
- --advertisement-mode,--set-advertisement-groups,--set-advertisement-ranges ingcloud compute routers create andgcloud compute routers add-bgp-peer
- --advertisement-mode,--set-advertisement-groups,`--set-advertisement-ranges,--add-advertisement-groups,--add-advertisement-ranges,--remove-advertisement-groups,--remove-advertisement-ranges ingcloud compute routers update-bgp-peer
Promoted--source-snapshot flag ofgcloud compute images create command toGA. This flag allows creating images from snapshots.

Deployment Manager

Added--create-policy togcloud beta deployment-managerdeployments create.
Added the create-policy CREATE to Deployment Manager alpha and beta tracks.

Firebase Test Lab

Added--robo-script flag togcloud beta firebase test android run to support running a Robo test with a Robo Script.

192.0.0 (2018-03-07)

Breaking Changes

(REMOVED) Removed the deprecated--port flag fromgcloud compute backend-services. Use--port-name instead.
(REMOVED) Removedgcloud compute images translate. The functionality of this commandis now a part of thegcloud compute images import command.
(MODIFIED) Changed the flags used withgcloud compute images import. This command nowrequires the user to specify either the--os or--no-translate flag.

App Engine

Updated the Java SDK to version 1.9.63.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

Compute Engine

Promotedgcloud compute images import to beta; removedgcloud alpha computeimages translate. The translate command was combined with the import command.
Added--shielded-vm-integrity-monitoring flag togcloud compute instance-templates create in alpha to support theconfiguration of shielded VMs.
Added--shielded-vm-learn-integrity-policy flag togcloud compute instance update in alpha to support configuration of theshielded VM integrity policy.
Modifiedgcloud compute sign-url to accept HTTP URLs in addition to HTTPS URLsfor signing.
Added support for managed ssl certificates togcloud alpha computessl-certificates

Container Registry

Fixed a bug withauth configure-docker when~/.docker doesn't exist.

Kubernetes Engine

Added--private-cluster flag to enable PrivateCluster creation:`gcloud beta container clusters create --private-cluster --master-ipv4-cidr
Added--workload-metadata-from-node flag togcloud beta container clusters createandgcloud beta container node-pools create to allow enabling metadata concealment onclusters and node pools. Seehttps://cloud.google.com/kubernetes-engine/docs/how-to/metadata-proxyfor more information. This feature is scheduled to be deprecated in thefuture and later removed.

191.0.0 (2018-02-28)

Breaking Changes

(DEPRECATED) Deprecated--instance-type flag forgcloud beta bigtableinstances update. Usegcloud beta bigtable instances upgrade instead.
(DEPRECATED) Renamed the--description flag to--display-name forgcloud beta bigtable instances create andgcloud beta bigtable instances update.
(MODIFIED) The behavior of--trigger-bucket flag forgcloud functions deploy has changed and now corresponds to the newobject.finalize event on file creation. To get the legacy behavior, use the--trigger-event and--trigger-resource flags e.g.gcloud functions deploy --trigger-event
providers/cloud.storage/eventTypes/object.change
--trigger-resource
(MODIFIED) The schema for Pub/Sub events has changed.eventId,timestamp,resource, andeventType have all been moved inside thecontext property e.g., context.timestamp. All functions deployed using--trigger-topic flag will use the new schema. To get the legacy behavior,use the--trigger-event and--trigger-resource flags e.g.gcloud functions deploy --trigger-event
providers/cloud.pubsub/eventTypes/topic.publish
--trigger-resource
Please see https://cloud.google.com/storage/docs/pubsub-notifications for moreinformation on storage event types.
(REMOVED) Removedfunctions/use_new_pubsub_trigger andfunctions/use_new_object_trigger properties.
Deprecatedgcloud sql instances export. Usegcloud sql export sql instead.
Deprecatedgcloud sql instances import. Usegcloud sql import sql instead.
Region is now inferred from--gce-zone flag duringgcloud sql instancescreate calls, and will override any value set with--region.
(REMOVED) Removed the deprecated--port flag fromgcloud compute backend-services. Use--port-name instead.
(DEPRECATED) Deprecated--additional-zones (replaced by--node-locations)

App Engine

The Python SSL 2.7 library will be decommissioned on 2 April 2018. After thisdate, apps will be blocked from deploying until you specify the SSL library(latest) or (2.7.11).
Updated the Go SDK to version 1.9.63.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/go/release-notes

Cloud Bigtable

Addedgcloud beta bigtable instances upgrade command which upgradesan existing development instance to a production instance.

Cloud Datastore

Promotedgcloud datastore import andgcloud datastore export to GA.

Cloud Machine Learning Engine

Added--framework flag togcloud ml-engine versions create to specifythe machine learning framework (TensorFlow, scikit-learn, or XGboost) for MLEngine versions.

Cloud SQL

Promotedgcloud sql export to GA.
Promotedgcloud sql import to GA.
Added warnings when callinggcloud sql instances create with both the--region and--gce-zone flags, or with neither. These flags will becomemutually exclusive, with exactly one being required for create calls.

Container Engine

Addedcontainer/use_v1_api_client property as an alias ofcontainer/use_v1_api.container/use_v1_api is still supported.

Kubernetes Engine

Added--enable-pod-security-policy flag to enable PodSecurityPolicy enforcement in clusters:gcloud beta container clusters create --enable-pod-security-policyandgcloud beta container clusters update --enable-pod-security-policy

Stackdriver Debugger

Changedgcloud beta source upload command to use the.gcloudignore file ifpresent. If not present and.gitignore is,.gitignore will still be used.Seegcloud topic gcloudignore to learn more.

190.0.1 (2018-02-22)

Hotfix for UnicodeDecodeError issue affecting logging.

190.0.0 (2018-02-21)

Breaking Changes

The--class and--jar flags for thehadoop andspark commands ingcloud dataproc jobs submit are now mutually exclusive. The previous usagehad been deprecated for more than a year.
(MODIFIED) Soon changing the default event schema returned by CloudFunctions with a Pub/Sub trigger(e.g.--trigger-topic). TheeventId,timestamp,eventType, andresource properties will all be moved intotheevent.context property.
- To opt-in to the new behavior early, rungcloud config set functions/use_new_pubsub_trigger True.
- To restore old behavior, rungcloud config set functions/use_new_pubsub_trigger False or usethe--trigger-event flag e.g.gcloud functions deploy --trigger-event providers/cloud.pubsub/eventTypes/topic.publish \--trigger-resource <TOPIC_NAME>
- Please seehttps://cloud.google.com/functions/docs/writing/background#event_parameterfor more information on the new schema.
In alpha and beta:
- Removediot configs andiot credentials command groups. Please useiot devices configs andiot devices credentials instead.
- Removed the--enable-device flag fromiot devices create andiot devices update. Please use--blocked instead.
- Removed the--pubsub-topic flag and deprecated the--event-pubsub-topicflag fromiot registries create andiot registries update. Please use the--event-notification-config flag instead.
(REMOVED) RemovedNAME and--regexp args fromcompute target-ssl-proxies list. Please use the--filter flag instead.
Added thecontainer/use_v1_api property, which replaces thecontainer/use_v1_api_client property. If true, all gcloud Kubernetes Enginecommands (regardless of release track) will use the v1 API; otherwise,gcloud beta track commands will use v1beta1 API and gcloud alpha trackcommands will use v1alpha1 API. By default, it is set to true. The defaultwill be changed to false by the end of March.

App Engine

Updated the Python SDK to version 1.9.67.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
gcloud app deploy can now deploy App Engine Java Standard apps, by providingthe path to appengine-web.xml.
Staging is now supported in appengine-web.xml. Information on staging tags isavailable in theappengine-web.xml reference.

Cloud Datalab

Updated thedatalab component to the 20180213 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1959.

Cloud Dataproc

Added--image flag togcloud beta dataproc clusters andgcloud betadataproc workflow-templates.

Cloud IoT

Promotedgcloud iot commands to GA.

Cloud Machine Learning Engine

Added--description flag togcloud models create,gcloud models update,gcloud versions create, andgcloud versions updateto manage model and version descriptions, respectively.

Cloud SDK

Modified--log-http to redact oauth tokens by default.

Cloud SQL

Added--database flag togcloud beta sql connect.
Changegcloud sql instances list default table format REGION column toLOCATION, containing either the gceZone if defined or the region.

Compute Engine

Promotedpublic-ptr andpublic-ptr-domain flags ofgcloud compute instances create,gcloud compute instances add-access-config,andgcloud compute instances update-access-config toGA. These flags allow setting up the PTR record for the external IPs ofCompute Engine instances.
Added--shielded-vm-secure-boot and--shielded-vm-vtpm flags togcloud compute instance-templates create in alpha to support theconfiguration of shielded VMs.
Added--enable-flow-logs flag togcloud compute networks subnets createandgcloud compute networks subnets update to toggle between enabling anddisabling flow logs for the subnet.
Changedgcloud alpha compute images vulnerabilities list to display theimage name instead of image id to match images command group usage.
Promoted--create-disk flag ofgcloud compute instances create to beta.These flags allow creating new disks during instance creation.
Modifiedgcloud compute machine-types list to filter out OBSOLETE types bydefault. Specify a--filter=... flag, or--filter="" to list all types.

Container Builder

Modifiedgcloud container builds submit such that if no source is specifiedand the--no-source flag is omitted, the current working directory will beused.

Container Engine

gcloud container clusters list changed to displayinitialNodeCount in theNUM_NODES column ifcurrentNodeCount is undefined. This shows a usablevalue during upgrading.
The--region flag is now available in all 'gcloud beta|alpha container' commands.

Kubernetes Engine

Added--issue-client-certificate togcloud container clusters create inGA. This allows users to create clusters without global admin key pair (using--no-issue-client-certificate) to improve security.

189.0.0 (2018-02-14)

Breaking Changes

(REMOVED) Removed the--ssl-certificate flag fromgcloud compute target-https-proxies create,gcloud compute target-https-proxies update,gcloud compute target-ssl-proxies create,andgcloud compute target-ssl-proxies update. Use--ssl-certificates instead.

App Engine

Updated the Java SDK to version 1.9.62.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
- Fixed theissue with missing QuickStartGenerator class
Changedgcloud app deploy to use a new runtime build pipeline to deploy apps forGo (in the Flexible Environment). This enables more robust and flexibledeployments in some cases. To revert to the legacy builder, rungcloud config set app/use_runtime_builders false from the command line.

BigQuery

Added experimental support for import of ORC files into BigQuery.
Added Cloud KMS key rotating for customer-managed encryption key protectedBigQuery tables.
Added--location flag to specify the geographic location in which BigQueryjobs will run. No changes are required for commands in the existing US and EUregions.

Cloud Datalab

Updated thedatalab component to the 20180206 release.Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1945.

Cloud Datastore Emulator

Released Cloud Datastore Emulator version 1.4.1.
- Recommended: Use the health check endpoint to confirmemulator startup instead of relying on the "Dev App Server is nowrunning." message.
- Fixed issue where the emulator server would close HTTP connectionsbefore shutting down, which was a problem for /shutdown. This issuecan be tracked athttps://github.com/GoogleCloudPlatform/google-cloud-datastore/issues/188.

Compute Engine

Modified the preview field to be optional when importing usinggcloud compute security-policies import orgcloud compute security-policies create.

Container Engine

Promoted--cluster-secondary-range-name,--create-subnetwork,--enable-autorepair,--enable-ip-alias,--enable-kubernetes-alpha,--enable-legacy-authorization,--enable-network-policy,--labels,--local-ssd-count,--maintenance-window,--enable-master-authorized-networks,--master-authorized-networks,--min-cpu-platform,--node-locations,--node-taints,--node-version,--preemptible,--service-account,--services-ipv4-cidr,--services-secondary-range-name ofgcloud container clusters create to GA.
Promoted--complete-ip-rotation,--enable-legacy-authorization,--enable-master-authorized-networks,--enable-network-policy,--logging-service,--maintenance-window,--remove-labels,--start-ip-rotation,--update-labels,--node-locations,--master-authorized-networks ofgcloud container clusters update to GA.
Promoted--enable-autorepair,--local-ssd-count,--min-cpu-platform,--node-taints,--preemptible,--node-version ofgcloud container node-pools create to GA.
Promoted--enable-autorepair ofgcloud container node-pools update to GA.

188.0.1 (2018-02-08)

Hotfix for https://issuetracker.google.com/73044966 affecting Cloud SDKinstallations in environments with inconsistent access to the Compute Enginemetadata server.

188.0.0 (2018-02-07)

Breaking Changes

(REMOVED) Removed deprecatedgcloud service-management. Usegcloud endpoints andgcloud services instead.
(MODIFIED) The default trigger event behavior for--trigger-bucket flagon thegcloud functions deploy command will soon change.google.storage.object.finalize will replaceproviders/cloud.storage/eventTypes/object.change as default trigger event.To opt-in to the new behavior early, rungcloud config set functions/use_new_object_trigger True.

Cloud SDK

Addedgcloud topic command-conventions for details on command lineconventions and processing.

Compute Engine

Promotedgcloud compute security-policies rules to beta.
Added--file-name and--file-format flags togcloud compute security-policies create. These flags allow creating securitypolicies from predefined templates by importing from the specified file.
Modified the default file format forgcloud compute security-policies importandgcloud compute security-policies export from json to yaml.

Container Builder

Fixed issue where a.gcloudignore entry matching "." causedgcloudcontainer builds submit to not upload any files.

Firebase Test Lab

Added defaultas a possible device orientation. When orientation isdefault, the most appropriate orientation for your app is picked.Usually, this is any app-specified orientation for the main activity orportrait`, if none is specified in the app manifest.

Identity and Access Management

(MODIFIED) Promotedgcloud beta iam roles,gcloud beta iam list-testable-permissions to GA.

Miscellaneous

Updated the Pub/Sub Emulator
- Pub/Sub emulator now spams the console less.
- Pub/Sub emulator properly sets the default value for Subscription.message_retention_duration.

Subscribe to these release notes athttps://groups.google.com/forum/#!forum/google-cloud-sdk-announce.

187.0.0 (2018-01-31)

App Engine

Updated the Java SDK to version 1.9.61.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes

App Engine Flexible Environment

Added--use-container-optimized-os flag togcloud alpha|beta app update toenableContainer-Optimized OSas Flex VM base image by default on new deployments.

Cloud DNS

Added Cloud labels flags togcloud beta managed-zones create andgcloud beta managed-zones updatecommands.

Cloud Interconnect

Promoted support for labels on interconnects to beta.

Cloud Pub/Sub

Addedgcloud alpha pubsub snapshots describe command.

Cloud TPU

Promotedgcloud compute tpus to beta.

Compute Engine

Promotedgcloud compute target-vpn-gateways update andgcloud computevpn-tunnels update to beta. These commands allow adding/modifying/clearinglabels.
Promotedstackdriver-metric flag family ofgcloud compute instance-groupsmanaged set-autoscaling to beta. These flags allow setting up per-groupautoscaling and metric filtering, as well as provide an improved interface tothe existing per-instance autoscaling.
Promoted--source-snapshot flag ofgcloud compute images create command tobeta. This flag allows creating images from snapshots.
Promoted--guest-os-features flag ofgcloud compute disks create to beta.This flag allows create disks with additional specified GuestOS features.
Promoted--licenses flag ofgcloud compute disks create to GA.This flag allows create disks with additional specified licenses.

Container Builder

Changedgcloud container builds submit command to no longer create a.gcloudignore file on disk. Git files are still ignored by default, seegcloud topic gcloudignore to learn more.

Container Engine

Promoted--accelerator flag ofgcloud container clusters create andgcloud container node-pools create to beta.

Container Registry

Removed public read-only endpoints from default registries used bygcloud docker anddocker-credential-gcloud for authentication.

Kubernetes Engine

Fixed an issue causing relativeKUBECONFIG paths to fail when used with thegcloud container clusters get-credentials command.

Miscellaneous

Fixed crash when attempting to use a SOCKS proxyhttps://issuetracker.google.com/72407295.

186.0.0 (2018-01-24)

Breaking Changes

(REMOVED) Removed support for the format--scopes=[ACCOUNT=]SCOPE,[[ACCOUNT=]SCOPE,...]] ingcloud compute instances create,gcloud compute instances create-with-container,gcloud compute instance-templates create, andgcloud compute instance-templates create-with-container. Please use--scopes=[SCOPE, ...] and--service-account=ACCOUNT instead.
(MODIFIED) Added cautionary 'y/n' prompts togcloud beta iam roles create,gcloud beta iam roles update, andgcloud beta iam roles copy commands when using permissions withTESTINGcustomRolesSupportLevel. The prompt needs to be answered to finish therequest. Specify--quiet to prevent prompting confirming intent.

Cloud Datalab

Updated thedatalab component to the 20180119 release.
Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1921.

Cloud Datastore Emulator

Released Cloud Datastore Emulator version 1.4.0.
- The emulator now returns error codes that match the Cloud Datastoreservice for two scenarios: inserts of entities that already exist andupdates to ones that don't.

Cloud Functions

Modified behaviour ofgcloud beta functions deploy whenre-deploying existing function without --source flag.beta functions deploywill now always upload source code (whether or not --source flag is supplied)from current directory if function was previously deployed from local source.

Cloud SDK

The[all-box] attribute has been added to the table format. It draws a rulearound all table cells and may be useful for visualizing list data or datawith embedded newlines. Usage:--format="table[all-box](...)
Addedgcloudignore/enabled property to allow turning off defaultfile-skipping behavior on commands that upload source. Run$ gcloud config set gcloudignore/enabled false (and see$ gcloud topic gcloudignore for more details).

185.0.0 (2018-01-17)

Cloud Datalab

Updated thedatalab component to the 20180105 release.
Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1892.

Compute Engine

Promotedgcloud compute os-login commands to GA.
Promoted SSL policy commands to beta
- Promotedcompute ssl-policies to beta.
- Promoted--ssl-policy flag incompute target-https-proxies createandcompute target-ssl-proxies create to beta.
- Promoted--ssl-policy and--clear-ssl-policy flags incompute target-https-proxies update andcompute target-ssl-proxies update to beta.

Container Registry

Addedstaging-k8s.gcr.io to the default set of registries authenticated bygcloud docker.

Kubernetes Engine

Removed--disable-addons flag in gcloud container alpha|beta clusters create.
Added--addons flag to gcloud container clusters create.
Deprecated--disable-addons flag in gcloud container clusters create.

184.0.0 (2018-01-10)

Breaking Changes

(REMOVED) Removedgcloud ml-engine init-project. This step is now performedautomatically.
Removed--discard-local-ssd flag fromgcloud compute instances stop(beta and GA). This flag wasn't working as intended. Stopping an instancethat uses a local SSD is not currently supported; delete and recreate theinstance instead.
(DEPRECATED) Deprecated thegcloud container--[no-]enable-cloud-endpointsflag (removed in alpha and beta).
(MODIFIED) Added thegcloud containercontainer/new_scopes_behaviorproperty, which will, in a future release, be the default behavior. If setto true,compute-rw,devstorage-ro,service-control, andservice-management scopes are no longer added to what is specified in--scopes,compute-rw is no longer included in the default scopes, and--[no-]enable-cloud-endpoints flags are not allowed. This is now thedefault behavior for alpha and beta, so this property has no effect forthose tracks.

App Engine

Fixed an issue wherequeue.yaml deployments failed due to a permissionerror.
Updated the Python SDK for App Engine to version 1.9.65.
- AddedSetupTools version 36.6.0 to the built-in third-party libraries.
Updated Java SDK to version 1.9.60.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
Updated the Go SDK for App Engine to version 1.9.62
- Includes internal updates for how applications are deployed.
Fixed inaccurate warning about "module" inapp.yaml configuration file

BigQuery

Fixed issue where page token switch (-k or--page_token) was not passed tolist --transfer_config command.
Fixed issue wherelist --transfer_run command filter condition failed dueto field name error.
Added time partitioning field toshow command.

Cloud Datalab

Updated thedatalab component to the 20171222 release.
Released changes are documented in its tracking issue athttps://github.com/googledatalab/datalab/issues/1868.

Cloud Dataproc

Added boot disk type configuration flags to thegcloud beta dataproc clusters create command:
- --master-boot-disk-type
- --worker-boot-disk-type
- --preemptible-worker-boot-disk-type

Cloud Machine Learning Engine

Added--labels flag togcloud ml-engine models create andgcloud ml-engine versions create.
Added--labels flag togcloud ml-engine jobs prediction submit andgcloud ml-engine jobs training submit.
Addedgcloud ml-engine models update,gcloud ml-engine versions update,andgcloud ml-engine jobs update commands which update Cloud Machine Learning resources.

Cloud Pub/Sub

Added--wait flag togcloud beta pubsub subscriptions pull.

Cloud SQL

Added--user flag togcloud beta sql import sql to add support forspecifying a Postgres user to import with.
Added--user flag togcloud beta sql import csv to add support forspecifying a Postgres user to import with.

Container Builder

Added support for.gcloudignore files tocontainer builds submit command.

Container Engine

Updated Google Kubernetes Engine's kubectl from version 1.8.4 to 1.8.6.
Promoted--node-version flag ofgcloud container clusters create andgcloud container node-pools create to GA. Clusters/node-pools can now becreated with a node versiondifferent from that of the master, via the--node-version flag.

Container Registry

Updateddocker-credential-gcr to v1.4.2:
- Refreshes the cloud SDK's access token when retrieving it, when configuredto usegcloud as a token source.

183.0.0 (2017-12-13)

Breaking Changes

Modified the default output forgcloud beta logging metrics list to displayin YAML format. To view metrics in the previous table format, usegcloud beta logging metrics list --format"table(name, description, filter)".
Deprecated thegcloud alpha source captures group. Please see thegclouddebug source upload command.
- Made 'gke-default' the default for --scopes ingcloud container[clusters|node-pools] create. It includes storage-ro, logging-write,monitoring, service-control, service-management, and trace.
- Fixed issue ingcloud container [clusters|node-pools] create where, if--scopes included cloud endpoints scopes and --no-enable-cloud-endpointswas also specified, the cloud endpoints scopes were still included. Theyare now filtered out.
(MODIFIED) Modifiedgcloud alpha deployment-manager deployments<create|update|describe> andgcloud alpha deployment-manager resources listcommands to show the 'RUNTIME_POLICIES' instead of 'INTENT' of the resourcesunder deployment that have not been previewed.

App Engine

Updated App Engine Python components to 1.9.64.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes

Cloud Dataproc

Promoted--num-masters flag for Dataproc Cluster High Availability modein thegcloud dataproc clusters create command to GA.
Promoted--graceful-decommission-timeout flag ofgcloud dataproc clustersupdate command for Dataproc Graceful Downscale to GA.
Added--master-min-cpu-platform and--worker-min-cpu-platform flags to`gcloud beta dataproc clusters create

Cloud Logging

Added a--config-from-file flag to thegcloud logging metrics create andupdate commands in beta. This flag is mutually exclusive with--description and--log-filter and can be used to configure a new metricor update the configuration of a metric.

Cloud ML Product Search

Launched ML Product Search (gcloud ml products) to ALPHA.

Compute Engine

Added thegcloud beta compute os-login ssh-keys describe command, whichdisplays the details of an OS Login user profile SSH key.
Promoted--labels flag ofgcloud compute instance-templates create toGA.
Added--configure-disk flag to beta commandcompute instance-templates create.
Addedgcloud beta compute os-login remove-profile command which removesposix account information for OS Login users.

Deployment Manager

Modifiedgcloud alpha deployment-manager deployments create,gcloud alpha deployment-manager deployments update,gcloud alpha deployment-manager deployments describe and'gcloud alpha deployment-manager resources list' commands to show additional'TO_RUN' or 'NOT_RUN' intent for action resources under previeweddeployment.

Speech API

Promotedgcloud ml speech to GA.

Stackdriver Debugger

Addedgcloud beta debug source upload to replace thegcloud alpha sourcecaptures group.

Vision API

Promotedgcloud ml vision to GA.

182.0.0 (2017-12-06)

Breaking Changes

Renamed the--language flag to--language-code for thegcloud beta ml speech commands.
Forgcloud [alpha|beta] container [clusters|node-pools] create,--service-account is now mutually exclusive with--scopes and--[no-]enable-cloud-endpoints, and sets thecloud-platform scope whenspecified.
(REMOVED) Removed ability to use--backup-pool flag without anargument ingcloud compute target-pools set-backup. Use--no-backup-pool instead.
(REMOVED) Removed ability to use--bucket flag without an argument ingcloud compute project-info set-usage-bucket. Use--no-bucket instead.

Cloud Video Intelligence API

Promotedgcloud ml video to GA.

Cloud Natural Language API

Promotedgcloud ml language classify-text to GA.

Speech API

Added the--include-word-time-offsets flag to thegcloud beta ml speechcommands.

Google Container Engine

Regional clusters are in beta. The--region flag is now supported in thegcloud beta container clusters surface.
Added the--machine-type and--disk-size flags to thegcloud container builds submit command.
Updated Google Container Engine's kubectl from version 1.8.3 to 1.8.4.
Added--allow-route-overlap flag ingcloud beta container clusters createto allow the provided cluster CIDRs to overlap with some existing routes.

Google Cloud Bigtable

Updated the version ofcbt to 0.2.3. Changes in this version:
- Fixed spurious error message for many commands
- Added the ability to apply a regex toread command

Google Container Builder

Updated the version to 0.2.6. Changes in this version:
- Added build's timing information: build steps, image pulls and pushes.
- Simplified logs package.

Google Cloud Functions

The--stage-bucket flag of the betafunctions deploy command is nowoptional, even when deploying from local sources. The command now uploadssources to signed URLs generated by the API.

181.0.0 (2017-11-30)

NOTE: This release was hidden and the Cloud SDK was rolled back to version180.0.1.

Breaking Changes

Promotedgcloud pubsub to GA. There are breaking changes in beta.
- pubsub subscriptions modify-ack-deadline has been renamed topubsub subscriptions modify-message-ack-deadline.
- (BETA - DEPRECATED) Deprecatedmodify-ack-deadline. It will beremoved in the future.
- Inpubsub subscriptions ack,pubsub subscriptions modify-message-ack-deadline, andpubsub subscriptions modify-ack-deadline,the positional argumentACK_ID has been replaced by--ack-ids.
- (BETA - DEPRECATED) Deprecated the positional. It will be removedin the future.
- Removed the--max-messages flag frompubsub subscriptions pull.Use the--limit flag to achieve the same behavior.
- (BETA - DEPRECATED) Deprecated--max-messages. It will be removedin the future.
- Replaced the positional argumentMESSAGE_BODY with--message inpubsub topics publish .
- (BETA - DEPRECATED) Deprecated the positional. It will be removedin the future.
- Addedpubsub subscriptions describe andpubsub topics describe commands to allrelease tracks.
- All commands inpubsub subscriptions andpubsub topics now output exactly theAPI response. Extra fields have been removed. See the following foroutputdocumentation: https://cloud.google.com/pubsub/docs/reference/rest/
- (BETA), this is also the new default behavior. You can set thepubsub/legacy_output property to get the old output. This willeventually be removed.
(ALPHA - DEPRECATED)gcloud alpha shell has been renamedgcloud alpha interactive.

Google Cloud SDK

gcloud alpha interactive has been added with these features:
- auto-completion and active help forgcloud commands, flags and resourcearguments
- auto-completion and active help forbq,gsutil andkubectl
- support for running non-gcloud commands
- state preservation across commands:cd,pwd, local and environmentvariables

Compute Engine

Promoted--source-instance-template flag ofgcloud compute instancescreate command to beta.
Added--async flag togcloud alpha compute instances suspend.
- Added wait polling for synchronous case.
- Removed zone prompting support.
- Moved tests to autogen test framework.

Cloud Machine Learning

gcloud beta ml vision suggest-crop is now available.

Google App Engine

Fixed issue where Python 2.7 apps using App Engine managed libraries, such asDjango and Flask, would result in ImportError when runningdev_appserver.py.Now,dev_appserver.py offers to install theapp-engine-python-extrascomponent which contain the missing libraries. Only applies to apps specifyingthelibraries-section in app.yaml.

Google Cloud Dataproc

Renamedrun toinstantiate ingcloud beta dataproc workflow-templatescommand group.

Google Cloud Source Repositories

Corrected warning message fromgcloud source repos clone when cloning amirror.

Google Cloud Deployment Manager

deployment-manager deployments create/update --config no longer acceptstemplates. Please use the--template argument.

180.0.1 (2017-11-20)

Hotfix forgcloud compute project-info add-metadata/remove-metadatacrashes.

180.0.0 (2017-11-15)

Breaking Changes

(REMOVED) Removed the capability to deploy Endpoints configuration whenusinggcloud beta app deploy.

Google Container Engine

Updated Google Container Engine's kubectl from version 1.8.2 to 1.8.3.

Google Cloud SQL

Updatedgcloud sql instances import to show full source URI.

Google App Engine

Updated components to 1.9.63.
Added deprecation warning ingcloud app deploy for Python apps using thelibraryssl 2.7. For information about this deprecation, seehttps://cloud.google.com/appengine/docs/standard/deprecations/python-ssl-27.
Fixed issue affecting the Go runtime in whichgcloud app deploy failed atfinding dependencies that are not required.
Added--go_debugging flag todev_appserver.py to enable delve debuggingfor the Go runtime.

Google Cloud ML

Made Google Cloud ML Engine scale tier BASIC_TPU available in gcloud commandline tool.

Google Cloud Deployment Manager

Updatedgcloud deployment-manager to use latest public API version.

179.0.0 (2017-11-08)

Breaking Changes

(DEPRECATED) Deprecatedgcloud service-management in favor ofgcloud endpoints andgcloud services. See help text for details.
Removed thegcloud alpha bio command group.

Google Container Engine

Added the --enable-basic-auth flag togcloud container clusters create.
Added the --username, --enable-basic-auth, and --password flags togcloud container clusters update. These allow a user to enable/disablebasic auth on an existing cluster or change the username.

Google Compute Engine

Promote these commands to beta:
- gcloud beta compute instance-templates create-with-container
- gcloud beta compute instances create-with-container
- gcloud beta compute instances update-container
Added alpha commands for creating, describing, listing, deleting, updatingSSL policies and listing available SSL policy features:
- gcloud alpha compute ssl-policies create
- gcloud alpha compute ssl-policies describe
- gcloud alpha compute ssl-policies list
- gcloud alpha compute ssl-policies delete
- gcloud alpha compute ssl-policies update
- gcloud alpha compute ssl-policies list-available-features
Added alpha commands for attaching SSL policies to Target HTTPS proxiesand Target SSL proxies:
- gcloud alpha compute target-https-proxies create
- gcloud alpha compute target-https-proxies update
- gcloud alpha compute target-ssl-proxies create
- gcloud alpha compute target-ssl-proxies update

Google App Engine

Components updated to 1.9.59. Please visit the following release notes fordetails:
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes

Firebase Test Lab

Added Firebase Test Lab support for testing Android apps that include anetwork profile setting. Run tests as follows:
gcloud firebase test android run
--network-profile=LTE # or LTE-poor, HSPA, etc.

Cloud Pub/Sub

Added the following commands to thegcloud beta pubsub topics andgcloudbeta pubsub subscriptions groups, which enable managing IAM policies:
- set-iam-policy
- get-iam-policy
- add-iam-policy-binding
- remove-iam-policy-binding
Added labels flags (--labels,--update-labels, and--remove-labels) togcloud pubsub topics create,gcloud pubsub topics update,gcloud pubsub subscriptions create,gcloud pubsub subscriptions update,gcloud pubsub snapshots create,andgcloud pubsub snapshots update in releasetracks where these commands exist. Use these labels to organize your GoogleCloud Pub/Sub subscriptions.

Cloud Machine Learning

Allgcloud ml commands in all release tracks can now be used with standarduser credentials (no longer requires a service account). For this to work,you must have the appropriate ML API enabled on your current gcloud project.

178.0.0 (2017-11-01)

Google App Engine

The Java development server for Standard is now available asjava_dev_appserver.sh (java_dev_appserver.cmd for Windows). It isequivalent to the dev_appserver.sh/cmd from the Java StandaloneApp Engine SDK.

Google Cloud Datastore Emulator

Cloud Datastore Emulator version changed from 1.3 to 1.3.0 for gcloudemulator package compatibility, with no other changes.

Google Compute Engine

Added --async flag to gcloud computes instances stop command.Added wait polling for synchronous cases.
Promotedcompute instance-templates create-with-container,compute instances create-with-container, andcompute instances update-container commands to beta.
Promoted--deletion-protection flag ingcloud compute instances create/update to GA.
Addedsource-service-accounts andtarget-service-accounts ingcloud compute firewall-rules {describe, list, create, update} commands.

Google Container Engine

Updated Google Container Engine's kubectl from version 1.7.6 to 1.8.2
Removed--wait flag incontainer node-pools delete.Please use--async instead.
Added warning prompt to be displayed when usinggcloud alpha/beta container clusters, to avoid failure due to incorrectconfiguration.

Google Cloud SQL

gcloud sql database create now returns with non-zero exit code ondatabase creation failure.
Addedbeta sql import csv, to support importing data from CSV files intoCloud SQL instances.
Addedbeta sql import sql, with the eventual goal of replacingsql instances import.
gcloud beta sql instances create andgcloud beta sql instances patchcommands now support the--availability-type flag, for use in togglinghigh availability on Postgres instances.

Google Cloud Spanner

Promoted the Spanner Databases Sessions command group to GA.

177.0.0 (2017-10-25)

Breaking Changes

(BETA - DEPRECATED) The--include-ignored-file flag ofgcloud betafunctions deploy is now deprecated. Added support for using a.gcloudignore file instead.
Thegcloud pubsub snapshots create,gcloud pubsub snapshots update,gcloud pubsub subscriptions create,gcloud pubsub subscriptions update,gcloud pubsub topics create,gcloud pubsub topics update, andgcloud pubsub subscriptions update commands have been updated:
- These now throw an exception when any of the API requests fail. The exception contains the list of failed requests.
- These now only output the resources corresponding to successful requests.
- Thesuccess andreason fields have been removed from the output of these commands.

Google Cloud Endpoints

gcloud endpoints andgcloud services are now generally available.

Google App Engine

gcloud app deploy now uses a new runtime build pipeline to deploy apps forPython. This enables more robust and flexible deployments in some cases. Torevert to the legacy builder, rungcloud config setapp/use_runtime_builders false from the command line.
Go 1.8 is now generally available and the default Go runtime.
Google App Engine components have been updated to 1.9.62.Please visit the following release notes for details:
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes

Google Compute Engine

(ALPHA) Added support to update the default network tier on a Compute Engineproject:gcloud alpha compute project-info update --default-network-tierDEFAULT_NETWORK_TIER.

Google Cloud SQL

(BETA) Addedgcloud beta sql export csv to support exporting data from aCloud SQL instance to a CSV file.
(BETA) Addedgcloud beta sql export sql with the eventual goal ofreplacinggcloud sql instances export.

Google Cloud Storage

Updated gsutil component to 4.28

176.0.0 (2017-10-18)

Breaking Changes

(DEPRECATED) Deprecated theswitch-mode command fromgcloud compute networks, replaced by theupdate --switch-to-custom-subnet-mode command.
The--force flag is removed fromgcloud source repos delete.

Google Cloud SDK

On 64-bit Windows platforms Google Cloud SDK will use 64-bit python version2.7.13. Previously it was using 32-bit version. Existing Windowsinstallations using Cloud SDK with included python will see their pythonswapped for new version when upgrading to this release.

Google Compute Engine

CPU Platform Selection is now generally available. The--min-cpu-platformflag can now be used in the following commands to set the minimum desiredCPU Platform of the virtual machine instance.
- gcloud compute instances create
- gcloud compute instances update
- gcloud compute instance-templates create
gcloud beta compute os-login commands are now available for using GoogleCompute Engine OS Login.
gcloud compute images create now has a--guest-os-features flag forenabling specific OS supported features.
Added alpha support for labels for thegcloud compute target-vpn-gateways update command.
Added static internal IP reservation togcloud compute addresses create.Users can now:
- reserve a specific address and then associate it with a specificresource
- specify an ephemeral internal IP address for a resource and then promotethe address

Google App Engine

Components updated to 1.9.58. Please visit the following release notesfor details:
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes

Google Container Engine

Added the--node-taints flag togcloud container clusters create andgcloud container node-pools create in beta to support Kubernetes taints.

Firebase Test Lab

The--use-orchestrator flag forgcloud firebase test android run is nowgenerally available.

Google Cloud Spanner

The following commands are now available in beta:
- gcloud spanner databases sessions list (to list active sessions in aSpanner database)
- gcloud spanner databases sessions delete (to delete an active sessionin a Spanner database)

Google Cloud Dataflow

The--region flag has been added to allgcloud dataflow commands tosupport Dataflow Regional Endpoints.
- Most commands will function without the--region flag, and willcontinue to default tous-central1 without the flag.
- Thejobs list command will default to listing jobs from all regionsunless the--region flag is specified, at which point it will onlyquery that regional endpoint.
- Added a--staging-location flag to thejobs run command to permitrunning of templates where the template is location-only readable, notwriteable.

Google Cloud Container Builder Local Builder

Updated container-builder-local to version 0.2.5. This:
- Adds a flag to export workspace to host

Google Cloud Datastore Emulator

Updated cloud-datastore-emulator to version 1.3. Cloud Datastore emulatornow supports ID reservation in the Cloud Datastore V1 API.

175.0.0 (2017-10-11)

Breaking Changes

Behavior of--segments flag for allgcloud ml video detect-* commandschanged. The flag now accepts a list of duration pair strings(e.g. 0:1m40s,3m50s:5m10.232265s) instead of pairs of microseconds.Microseconds can still be specified using fractional seconds. For example,0.000569s represents 569 microseconds.
The--mode flag for thegcloud compute networks create command has beendeprecated. Please use the--subnet-mode flag instead.
The output of thegcloud container images describe command has beenupdated to be more consistent with other commands.

Google Compute Engine

gcloud compute networks update is now generally available.
--bgp-routing-mode and--subnet-mode flags added togcloud compute networks create.
Ability to configure reverse DNS (PTR) records for instances through thegcloud beta compute instances create --public-ptr-* flags and thegcloud beta compute instances update-access-config command now available.

Google App Engine

gcloud app firewall-rules is now generally available.

Google Cloud Resource Manager

gcloud projects create --folder is now generally available. This commandenables creation of projects within folders.

Google Cloud KMS

gcloud kms update is now generally available.

Google Cloud Video Intelligence

gcloud beta ml video detect-explicit-content is now available.

Google Cloud Datalab

Updated thedatalab component to the 20171003 release. Changes in thatrelease are documentedhere.

Google Cloud Deployment Manager

The--credential flag forgcloud alpha deployment-manager deployments create/update commands is nowavailable. Using this flag, a custom service account can be provided as thedeployment credential.

Google Cloud SDK

Nested command line argument groups have been enabled. The groups areclearly labelled and indented in--help documents. Also, argument groupconflict error messaging is uniform across allgcloud commands.

174.0.0 (2017-10-04)

Google App Engine

App Engine components updated to 1.9.61. Please visit the following releasenotes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes
The App Engine flexible environment now defaults to Python 3.6 when Python3 is requested. To revert to Python 3.5, specifypython_version: 3.5 intheruntime_config element of yourapp.yaml configuration file
Theaspnetcore runtime is now available usinggcloud app deploy in theGA track. It remains available via the beta track as well. Seehttps://cloud.google.com/appengine/docs/flexible/dotnet/ for moredetails.
Auto-generated app.yaml for Go under Flexible no longer containsapi_version (which is for the Standard only).

Google Compute Engine

Adding/Removing IP alias ranges are now supported ingcloud beta computeinstances network-interfaces update. Subnetwork secondary ranges can bemodified usinggcloud beta compute networks subnets update.
Addgcloud alpha compute sign-url for generating Cloud CDN Signed URLs.
Add--signed-url-cache-max-age flag to the following alpha commandsrelated to Cloud CDN Signed URL:
- gcloud alpha compute backend-buckets create
- gcloud alpha compute backend-buckets update
- gcloud alpha compute backend-services create
- gcloud alpha compute backend-services update
Add alpha commands for adding and deleting Cloud CDN Signed URL keys tobackend buckets and services:
- gcloud alpha compute backend-buckets add-signed-url-key
- gcloud alpha compute backend-buckets delete-signed-url-key
- gcloud alpha compute backend-services add-signed-url-key
- gcloud alpha compute backend-services delete-signed-url-key

Google Cloud Dataproc

Addedgcloud beta dataproc workflow-templates group for managing DataprocWorkflow Templates.

173.0.0 (2017-09-27)

Google App Engine

Add build tag for Go 1.9 to go-app-stager
Fixed build tags when using dev_appserver.py with the Go 1.8 beta

Google Cloud Dataproc

Addedgcloud beta dataproc clusters get-iam-policy andgcloud beta dataproc clusters set-iam-policy commands to manage IAM permissions on a cluster.

Google Cloud IOT

gcloud iot is now in public beta.
The --enable-device boolean flag forbeta iot device create/update isnow deprecated and renamed to --blocked.
Added--enable-http-config flag tobeta iot registries create/update.
Added new flag--state-pubsub-topic flag tobeta iot registries create/update
Added two new key types foriot device credentials and renamed existing types.
Added --metadata[-from-file] flag tobeta iot devices create/update.
Addedbeta iot registries credentials command group and added the--public-key-path flag tobeta iot registries create.
Addedbeta iot devices states list surface.

Google Compute Engine

Fix validation ingcloud compute routers update-interface to disallow--mask-length to be specified without --ip-address.
Add--zones flag tobeta compute instance-groups managed create command.

Google Container Engine

The--enable-network-policy flag is now available in thegcloud beta container clusters update command. To use this command on anexisting cluster, first rungcloud beta container clusters update --update-addons network-policy=ENABLED.
Added --maintenance-window flag togcloud beta container clusters createandgcloud beta container clusters update.
Updated Google Container Engine's kubectl from version 1.7.5 to 1.7.6.
The--enable-autoupgrade flag is now GA, available forgcloud container cluster create,gcloud container node-pools createandgcloud container node-pools update commands.

Google Container Registry

gcloud auth configure-docker is now in BETA. This is the new preferredmethod to configure gcloud/docker integration.

Google Cloud Machine Learning Engine

Added--summarize flag togcloud ml-engine jobs describe command.Prints job resource in human readable table format.

Google Cloud Machine Learning Language

gcloud ml language analyze-entity-sentiment is now in GA

172.0.1 (2017-09-21)

Google Cloud Service Management

Fixing crash in gcloud service-management deploy

172.0.0 (2017-09-20)

Google App Engine

gcloud app update is now available.
gcloud app deploy now uses a new runtime build pipeline to deploy apps forruntime: java. This enables more robust and flexible deployments in somecases. Consult the runtime release notes for your language athttps://cloud.google.com/appengine/docs/flexible/ for more details. Torevert to the legacy builder, you can set theapp/use_runtime_buildersconfig tofalse.
Updated App Engine Java components to version 1.9.56. For more details, seethe release notes at:https://cloud.google.com/appengine/docs/standard/java/release-notes.

Google Container Registry

gcloud container images describe is now available.
gcloud alpha container images describe now has additional functionalityfor whitelisted users.
Fixed a timestamp issue ingcloud container images list-tags.

Google Compute Engine

Added support for Cloud KMS keys with Disks, Snapshots, Images, andInstances.
Added the--autoscaling-config-file flag togcloud beta computeinstance-groups managed set-autoscaling.

Firebase Test Lab

Added the--no-record-video and--no-performance-metrics flags togcloud firebase test android run. This supports running tests withoutrecording video and/or performance metrics. Disabling these options mayreduce test post-processing time.

Google Cloud Service Management

Commands ingcloud service-management will soon be deprecated.
- The preferred commands to list, enable, and disable services are now undergcloud beta services.
- The preferred commands to produce services for consumption are now undergcloud beta endpoints services.

Google Cloud SQL

Fixed the--async flag ingcloud sql backups delete to work as expected.

Google Cloud BigQuery CLI

Updated the bq command-line tool to version 2.0.26.
Added support for Data Transfer Service commands. You can now do thefollowing:
- Transfer config: Show, List, Add, Delete, Edit
- Transfer run: Show, List, Schedule, Delete
- Transfer log: List
Added support for customer-managed encryption keys with Cloud KMS. Youcan specify your Cloud KMS crypto key in the following operations:
- A query that creates a destination table:bq query --destination_kms_key {key name}.
- A load job that creates a destination table:bq load --destination_kms_key {key name}.
- When creating a new table:bq mk --destination_kms_key {key name}.
Partitioned tables can now be created using thequery andload commands.
- Use the--time_partitioning_xxx flags and the--destination_table flag to write or load data into a new partitioned table.

Google Cloud Container Builder Local Builder

Updated container-builder-local to version 0.2.3. This:
- Upgrades server docker to version 17.06.1.
- Adds the--no-source flag and related tests.
- Always pulls the latestgcr.io/cloud-builders/metadata container.
- Increases the limit on encrypted secrets to 100.

171.0.0 (2017-09-13)

Breaking changes

(MODIFIED)beta functions deploy will setdeployment-tool label tocli-gcloud. Manually setting labels starting with "deployment" will nolonger be allowed.

Google Cloud SDK

Implemented command line TAB completion cache using sqlite. Youcan use thegcloud meta cache list command to view the cache.

Google App Engine

Updated App Engine components for Python to version 1.9.60.Please visit the release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes.
Updated App Engine components for Java to version 1.9.55.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes.
Improved client-side traffic split validation ingcloud app servicesset-traffic.
Promotedgcloud app ssl-certificates command group to GA and beta.
Promotedgcloud app domain-mappings command group to GA and beta.
Promotedgcloud app domains command group to GA.
Promotedgcloud app update command to GA.

Google Cloud Compute Engine

Promotedgcloud compute commitments command group to GA.

Google Cloud Source Repositories

gcloud source repos commands now accept slashes/ in repository names.

170.0.1 (2017-09-08)

Google Compute Engine

Revert a change which inadvertently removedgcloud compute xpn commands.

170.0.0 (2017-09-06)

Google Cloud SDK

You can now use the [json-decode] --format printer attribute to JSONdecode resource values that are compact JSON encodings. For example,--format="yaml[json-decode]".
gcloud init will now give the choice to enter a project id, create aproject, or list all projects if a user has a large number of projects.
gcloud components list now has the--only-local-state flag which showsonly locally installed components.

Google App Engine

A bug in which traffic split exhibited a rounding error has been fixed.

Google Cloud Bigtable

An error with reading the results of Read-Modify-Write operations has beenfixed.

Google Cloud Dataproc

The flags--max-age,--max-idle, and--expiration-time have been added togcloud beta dataproc clusters create.

Google Cloud Functions

The--update-labels and--remove-labels flags have been added togcloud beta functions deploy.

Google Cloud KMS

Thegcloud beta kms keys update command is new. This command allows usersto update a key's labels, rotation period, next rotation time, and primaryversion. Effective with this change, use the following commands instead ofremove-rotation-schedule,set-rotation-schedule, andset-primary-version:
- Usegcloud beta kms keys update --remove-rotation-schedule to removea key's rotation schedule instead ofgcloud kms keys remove-rotation-schedule.
- Usegcloud beta kms keys update --next-rotation-time --rotation-period toset the next rotation time and rotation period instead ofgcloud kms keys set-rotation-schedule.
- Usegcloud beta kms keys update --primary-version to set a key'sprimary version instead ofgcloud kms keys set-primary-version.
The--labels argument has been added tocloud kms keys create. Thisargument allows users to create labels during key creation. Related tolabels in Cloud KMS:
- Usegcloud beta kms keys update --update-labels to modify a key'slabels.
- Usegcloud beta kms keys update --remove-labels to remove a key'slabels.

Google Compute Engine

The--ssl-certificates flag incompute target-{https|ssl}-proxies {create|update} has been promoted toGA. The--ssl-certificate flag in the same command groups has beendeprecated. Please use--ssl-certificates as an alternative.
The hiddencompute diagnose routes command is now available. It enables(trace)routing to/from VMs in Compute Engine.
Thegcloud compute shared-vpc command is now available as an alias ofgcloud compute xpn.

Google Container Engine

Google Container Engine's kubectl version has been updated from 1.7.4 to1.7.5.
The following flags are now available ingcloud beta containers create forenabling the use of IP aliases with an existing subnetwork:-enable-ip-alias,--cluster-secondary-range-name,--services-secondary-range-name.

169.0.0 (2017-08-30)

Breaking Changes

(DEPRECATION)gcloud compute networks subnets listNAMES,--regionsand--regexp arguments. Use--filter instead.

Google Cloud Functions

When deploying an update to a existing functiongcloud beta functions deploy will keep the old trigger by default.Specifying trigger is now required only when deploying a new function.
Added the--retry flag togcloud beta functions deploy.
gcloud beta function deploy now keeps old field values unless they'reexplicitly overridden.

Google App Engine

gcloud app deploy now uses a new runtime build pipeline to deploy apps forruntime: nodejs andruntime: ruby. This enables more robust and flexibledeployments in some cases. Consult the runtime release notes for yourlanguage on https://cloud.google.com/appengine/docs/flexible/ for moredetails. To revert to the legacy builder, you can set theapp/use_runtime_builders config to false.

Google Compute Engine

The max metadata value size has been increased to 256 KiB.

Google Compute Engine (Networking)

The--bgp-routing-mode flag ingcloud beta compute networks create andgcloud beta compute networks update is now available.

Google Cloud Datastore

Import and export Cloud Datastore data usinggcloud beta datastore importandgcloud beta datastore export. For more information seehttps://cloud.google.com/datastore/docs/export-import-entities
Manage active imports and exports usinggcloud beta datastore operationscommands.

Google Machine Learning Engine

gcloud alpha ml * commands now work with user account authentication (inaddition to service accounts). For this to work, you must have a currentproject set in gcloud's config and you must be a writer or an editor on thatproject.

Google Container Engine

Updated Google Container Engine's kubectl from version 1.7.3 to 1.7.4.

Google Cloud Datalab

Updated thedatalab component to the 20170818 release. Changes in thatrelease are documented in its tracking issuehere.

168.0.0 (2017-08-23)

Breaking Changes

Removed support for the deprecated--instance flag fromgcloud sql operations describe andgcloud sql operations wait;removed support for the deprecatedDUE_TIME argument fromgcloud sql backups describe and the equivalent--due-time flag ofgcloud sql instance restore_backup.
The--mode flag ingcloud beta compute networks create andgcloud beta compute networks update has been renamed to--subnet-mode.

Google Compute Engine

The--ip-version flag is now available ingcloud compute addresses create andgcloud compute forwarding_rules create.
IP aliases are now supported ingcloud compute instances create andgcloud compute instance-templates create commands.
Subnetwork secondary ranges are now supported ingcloud compute networks subnets create.
Added--action,--rules,--direction,--destinationRanges,and--priority flags togcloud compute firewall-rules {describe, list, create, update} commands.
(DEPRECATED) Deprecatedgcloud alpha compute instances create-from-container. Usegcloud alpha compute instances create-with-container instead.
(DEPRECATED) Deprecatedgcloud alpha compute instance-templates create-from-container. Usegcloud alpha compute instance-templates create-with-container instead.
(DEPRECATED) Deprecated thenames and--regexp flags from thefollowing compute commands. Use--filter instead.
- gcloud compute backend-buckets list
- gcloud compute firewalls list
- gcloud compute groups list
- gcloud compute http-health-checks list
- gcloud compute https-health-checks list
- gcloud compute images list
- gcloud compute instance-templates list
- gcloud compute networks list
- gcloud compute operations list
- gcloud compute routes list
- gcloud compute target-http-proxies list
- gcloud compute url-maps list
- gcloud compute users list
(DEPRECATED) Deprecated thenames,--regexp, and--regions flagsfrom the following compute commands. Use--filter instead.
- gcloud compute addresses list
- gcloud compute backend-services list
- gcloud compute forwarding-rules list
(DEPRECATED) Deprecated thenames,--regexp,--zones, and--regions flags from the following compute commands. Use--filterinstead.
- gcloud alpha compute disks list
- gcloud compute instance-groups managed list

Google Cloud Logging

Thegcloud logging command group is now available in GA.gcloud beta logging will be removed in three months' time.

Google App Engine

Added the following commands:
- gcloud beta app firewall-rules create
- gcloud beta app firewall-rules delete
- gcloud beta app firewall-rules describe
- gcloud beta app firewall-rules list
- gcloud beta app firewall-rules test-ip
- gcloud beta app firewall-rules update

Google Cloud KMS

Added user-defined labels (key/value pairs) to Cloud KMS. Users will beable to attach labels to their CryptoKey resources.

Google ML Engine

Fixed a bug wheregcloud ml-engine local train did not work on Windows.

Google Container Registry

Fixed a warning that users of Docker 17.07 were seeing.

Google Cloud Deployment Manager

Fixed thedeployment manager create output format.

Google Cloud Container Builder

The local builder was upgraded to version 0.2.1. Release notes:
- Volumes feature added.
- Secrets feature added.
- Integration test for $PROJECT_ID substitution.
- Stop channel to terminate the goroutines that refresh the auth tokens.
- Clean some unnecessary stdout.

167.0.0 (2017-08-16)

Breaking Changes

(DEPRECATED) Deprecated thenames and--regexp flags for the followingcommands. Use the--filter flag instead:
- gcloud compute snapshots list
- gcloud compute regions list
- gcloud compute target-https-proxies list
- gcloud compute ssl-certificates list
- gcloud compute zones list
(DEPRECATED) Deprecated the following flags fromgcloud computeinstance-groups list:names,--regexp,--zones,--region; these arereplaced by the--filter flag.
(DEPRECATED) Deprecated the--pubsub-topic flag fromgcloud beta/alpha iotregistries create/update; this is replaced by the--event-pubsub-topic flag.
(DEPRECATED) Deprecatedgcloud iot credentials command group. This isreplaced bygcloud iot devices credentials.
(DEPRECATED) Deprecatedgcloud iot configs command group. This isreplaced bygcloud iot devices configs.
(DEPRECATED) Deprecated the--force-create flag fromgcloud computeimages create. This is replaced by the--force flag.

Google Cloud SDK

Upgraded Windows bundled python version from 2.7.10 to 2.7.13.
Cloud Tools for PowerShell:
- AddedNew-GceNetwork andRemove-GceNetwork to add and remove Google ComputeEngine Networks.
- Added-MaxBadRecords parameter toStart-BqJob cmdlet.
- Fixed a bug inFix-GkeCluster cmdlet where-NodeVersion parameter isnot processed correctly.

Google Container Engine

Added--min-cpu-platform flag togcloud alpha container commands.
Updatedgcloud alpha container clusters resize andgcloud beta containerclusters resize commands to safely drain nodes before removal.
Updated Google Container Engine's kubectl from version 1.7.2 to 1.7.3.
Added--logging-service flag togcloud beta container clusters update.This flag controls the enabling and disabling of Stackdriver Logging integration.Use--logging-service=logging.googleapis.com to enable and--logging-service=noneto disable.
Modified the--scopes flag ingcloud beta container clusters create andgcloud beta container node-pools create commands to default tologging.write,monitoring and support passing an empty list.

Google Compute Engine

Promotedgcloud compute interconnects commands to beta. These commandsallow you to provision an interconnection between your network and Google Cloud VPCs.For more details see online documentation,
- https://cloud.google.com/interconnect/docs
Fixed a bug ingcloud compute update routers where removing interfaces/peers wasfailing.
Added--security-policy flag togcloud beta compute backend-services update.
gcloud compute security-policies commands now in beta.
Addedgcloud beta compute instance-groups managed rolling-action command group.
Updatedgcloud compute instance-templates create to support labels

Google Cloud Deployment Manager

Added--composite-type and--template flags togcloud deployment-managerdeployments create. Also, added a warning when using--config with a templateinstead of the new--template flag. This behavior will be deprecated 2017-11-08.

Google App Engine

Updatedgcloud app services set-traffic to support--split-by=random tosplit traffic randomly between versions.

Firebase Test Lab

Promoted Firebase Test Lab to beta for running instrumentation test withAndroid Test Orchestrator. Use--use-orchestrator to run with Orchestrator.

166.0.0 (2017-08-09)

Breaking Changes

Demotedgcloud container images describe to the alpha track.
(DEPRECATED) Deprecated the following flags fromgcloud beta functionsdeploy:--local-path,--source-path,--source-url,--source-revision,--source-branch,--source-tag; these are replaced by the--sourceflag.
(DEPRECATED) Deprecated the--region flag fromgcloud beta functionslist, replaced by the--regions flag.
(DEPRECATED) Deprecated the--regions and--regexp flags fromgcloud compute routers list names, use--filter instead.

Google Compute Engine

Added support for multiple network interface cards forgcloud computeinstances create andgcloud compute instance-templates create.

Google Cloud IAM

Updatedgcloud iam surfaces to also accept uniqueId as service accountnames.

Google Container Engine

Added--node-locations flag togcloud alpha container clusters createandgcloud alpha container clusters update.
Modifiedgcloud alpha container images list to properly handledomain-scoped project ids when--project is omitted.

Google Container Registry

Fixed concurrent docker pull calls that used the same container name.

Google App Engine

Modifiedgcloud app deploy to use the new PHP Runtime Builder pipeline todeploy apps. You can setapp/use_runtime_builders config to false if youneed the old behavior.
Go'saetest package now reuses http connections, fixing a bug that exhaustedfile descriptors when running tests.
Go 1.8 uses the new standard library context package when callingappengine.NewContext().

Google Cloud SQL

Modified Cloud SQL replica creation to no longer require specification ofdatabase version, tier, or region.

Google Cloud Logging

Modifiedgcloud beta logging metrics list to no longer display versionnumber.

165.0.0 (2017-08-02)

Breaking Changes

(DEPRECATED) Deprecatednames,--regions and--regexp flags forthe following commands. Use--filter instead.
- gcloud compute target-vpn-gateways list
- gcloud compute target-pools list
- gcloud compute vpn-tunnels list
- gcloud compute commitments list

Google Cloud BigQuery

Changed the structure of thebq ls command output when theformat flagis set tojson,prettyjson orcsv.
Added--schema option tobq show command that outputs theJSON-formatted schema for a table, suitable for use as a schema inputfile forbq load orbq mk --schema.

Google Cloud Functions

Added--source flag to alpha and beta functions deploy commands.

Google Cloud IAM

gcloud beta iam roles command group is now available. These commandsallow you to create and manipulate IAM predefined/custom roles:
- gcloud beta iam roles create
- gcloud beta iam roles describe
- gcloud beta iam roles update
- gcloud beta iam roles copy
- gcloud beta iam roles list
- gcloud beta iam roles delete
- gcloud beta iam roles undelete
gcloud beta iam list-testable-permissions is now available. This commandallows you to list all the permissions that apply to the given resource,which also includes thecustomRolesSupportLevel field.

Google Container Engine

Updated Google Container Engine'skubectl from version 1.7.0 to 1.7.2.

Google Cloud Logging

gcloud beta logging sinks list will stop working for gcloud versions 161and earlier.

164.0.0 (2017-07-26)

Breaking Changes

Removed the--show-execution-ids,--show-function-names,--show-log-levels, and--show-timestamps flags from thegcloud alpha function logs read andgcloud beta function logs read commands.
Removedappengine.gcr.io from the list of default repositories thatgcloud docker authenticates for.

Deprecations

Deprecated theNAME... argument,--zones flag, and--regexp flag forthe commands listed below. Please use the--filter flag instead.
- gcloud compute disks list
- gcloud compute disk-types list
- gcloud compute instance-groups unmanaged list
- gcloud compute instances list
- gcloud compute machine-types list
- gcloud compute target-instances list

Google Cloud Container Builder

First release of the local builder. Install thecontainer-builder-localcomponent, and runcontainer-builder-local to try it out.

Google Compute Engine

gcloud beta compute ssh can now connect to instances using their private IP.
Added thegcloud alpha compute instances simulate-maintenance-event command.

Google Container Engine

gcloud beta container clusters create now supports enabling authorizednetworks for Kubernetes Master via--enable-master-authorized-networks and--master-authorized-networks flags.
gcloud beta container clusters update now supports configuring authorizednetworks for Kubernetes Master via--enable-master-authorized-networks,--no-enable-master-authorized-networks, and--master-authorized-networksflags.
gcloud container clusters create now allows the Kubernetes Dashboard to bedisabled for a new cluster via the--disable-addons=KubernetesDashboard flag.
gcloud container clusters update now allows the Kubernetes Dashboard to bedisabled on existing clusters via the--update-addons=KubernetesDashboard=DISABLED flag.

163.0.0 (2017-07-19)

Google Cloud BigQuery

Table list command (bq ls [dataset]) now displays Time Partitioning information about listed tables.

Google Cloud SQL

'gcloud sql instance create' now defaults to the Second Generation 'db-n1-standard-1' tier instead of the First Generation 'D1' tier. 'create' commands in which a tier is specified, will be unaffected.
'sql instances list' and 'beta sql instances list' commands now list DATABASE_VERSION of each instance.

Google Cloud Container Builder

Fix bug where permission bits weren't set on directories in tar files uploaded to Cloud Storage

Google Compute Engine

gcloud beta compute images list shows BLOCKED_BY_POLICY status for images blocked by compute.trustedImageProjects for user project.
Changed the default value of the--image-family flag to debian-9 for thegcloud compute instances create andgcloud compute instance-templates create commands.

Google Container Engine

gcloud container clusters get-credentials now correctly respects the HOMEDRIVE/HOMEPATH and USERPROFILE environment variables when generating the kubectl config file.
Added --region flag to gcloud alpha containers to manage regional clusters.

162.0.0 (2017-07-12)

Breaking Changes

Removedgcloud alpha compute instance-groups managed rolling-actionrecreate. Instead, usegcloud alpha compute instance-groups managedrolling-action replace.

Google Compute Engine

gcloud compute networks peerings is now generally available. The alpha andbeta tracks remain.
gcloud alpha compute networks list-ip-owners is now available in thealpha track.
Addedsource-service-accounts andtarget-service-accounts to thegcloud beta compute firewall-rules describe,gcloud beta compute firewall-rules list,gcloud beta compute firewall-rules create, andgcloud beta compute firewall-rules update commands.
Added the--custom-extensions flag to:
- gcloud compute instances create
- gcloud compute instances set-machine-type
- gcloud compute instance-templates create.
Forwarding rules with a standard network tier can now accept global targets.
Added support for updating network tiers in thegcloud alpha computeforwarding-rules update commands.

Google App Engine

Google App Engine components updated to 1.9.57. Please visit the followingrelease notes for more details:https://cloud.google.com/appengine/docs/standard/python/release-notes.
Addedgcloud beta app update to support configuring an application'sfeature settings.
gcloud app deploy now allows deployments of Go 1.8 apps on App EngineStandard. During this open beta period you may opt-in to Go 1.8 byspecifyingapi_version: go1.8 in yourapp.yaml.
Added support for standard scheduler settings.

Google Cloud Deployment Manager

gcloud deployment-manager deployments create--automatic-rollback-on-failure will now delete the new deployment aftercreation if it contains operation errors.
gcloud beta deployment-manager deployments create can now createdeployments with a list of key-value pairs as labels using the--labelsflag.gcloud beta deployment-manager deployments update can nowupdate/remove labels of the deployment using the--update-labels and--remove-labels flags.

Google Cloud Machine Learning Engine

Added thegcloud ml-engine models get-iam-policy,gcloud ml-engine models set-iam-policy,gcloud ml-engine models remove-iam-policy-binding, andgcloud ml-engine models add-iam-policy-bindingcommands. These read and modify IAM policy data for ML Engine models. Seehttps://cloud.google.com/iam/docs/managing-policies for details.

Google Cloud Machine Learning APIs

Thegcloud ml language analyze-entity-sentiment command is now availablein the beta track. This command allows for entity-level sentiment analysis.Please visit https://cloud.google.com/natural-language/pricing to learn moreabout pricing for this feature.

Google Cloud Resource Manager

The following Organization Policy commands are now available in the betatrack:gcloud beta resource-manager org-policies allow,gcloud beta resource-manager org-policies delete,gcloud beta resource-manager org-policies deny,gcloud beta resource-manager org-policies describe,gcloud beta resource-manager org-policies disable-enforce,gcloud beta resource-manager org-policies enable-enforce,gcloud beta resource-manager org-policies list,andgcloud beta resource-manager org-policies set-policy.

Google Cloud SQL

Thebeta sql instances create andbeta sql instances patch commands havebeen updated to support storage auto-resize limits using--storage-auto-increase-limit.

Google Container Engine

Added the--enable-ip-alias,--services-ipv4-cidr, and--create-cluster flags to support IP aliases.
Updatedkubectl from version 1.6.6 to version 1.7.0.

Google Cloud Storage

Updated the gsutil component to 4.27.

Google Cloud Container Builder

Fixed bug: defining substitutions with the command-line--substitutionsflag no longer causes all substitutions defined in cloudbuild.yaml to bedeleted.

Google Cloud Logging

gcloud beta logging sinks commands now use only V2 of the API instead ofa mix of V1 and V2 calls.

Google Cloud Source Repositories

gcloud source repos clone now gives a warning if the repository ismirrored.

161.0.0 (2017-06-28)

Breaking Changes

Removedgcloud beta test android devices. Please usegcloud firebase testandroid models as an alternative.
Renamed the--account-id flag ingcloud alpha billing projects link to--billing-account. The old flag is still available but deprecated.
Renamed theACCOUNT_ID flag in thegcloud alpha billing projectslist command to--billing-account.
Renamedgcloud billing accounts projects togcloud billing projects.The old commands are available but deprecated.

Billing

Promotedgcloud billing to beta. The alpha surface remains and isidentical; the changes listed in the "Breaking Changes" section apply tothe beta release track and the old flag and commands are not available inbeta.

Google App Engine

Promotedgcloud app instances ssh andgcloud app instances scp to GA. The beta commands remainand are identical.
Updated App Engine components for Python to version 1.9.55.Please visit the release notes for details:https://cloud.google.com/appengine/docs/standard/python/release-notes.
Updated App Engine components for Java to version 1.9.54.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes.
Added support for deploying Standard Environment Java applications togcloud beta app deploy; use eithergcloud beta app deploy$APP_DIR/WEB-INF/appengine-web.xml orgcloud beta app deploy $APP_DIR.
Added support for directories as positional arguments togcloud appdeploy, in addition to YAML files. In each directory, the command uses theapp.yaml file if present, or interactively creates one otherwise.

Google Cloud Dataproc

Promoted--region flag to beta and GA for everygcloud dataproc command.The flag remains available in alpha and is identical.
Added URL support for zonal resource flags--zone,--master-machine-type,--worker-machine-type,--master-accelerator-type, and--worker-accelerator-type ingclouddataproc commands in addition to short names; for instance,https://www.googleapis.com/compute/v1/projects/zones/us-central1-f aswell asus-central1-f.

Google Cloud Natural Language

Promotedgcloud ml language commands to GA to allow the analysis of textusing the Cloud Natural Language API. The commands remain in alpha and betaand are identical.

Google Cloud SQL

Added--labels flag togcloud beta sql instances create and--update-labels,--remove-labels, and--clear-labels flags togcloud beta sql instances patchto support the application of labels to SQL instances.

Google Compute Engine

Added--source-instance-template flag togcloud beta compute instances createandgcloud beta compute instances create-from-container to allow instancecreation based on aninstance template (seegcloud compute instance-templates command group).
Added--ssl-certificates flag togcloud alpha compute target-https-proxies create,gcloud alpha compute target-https-proxies update,gcloud alpha compute target-ssl-proxies create, andgcloud alpha compute target-ssl-proxies update to allow thespecification of multiple ssl certificates when creating or updating atarget proxy.
Added for optionSTANDARD for
- --network-interface sub-flagnetwork-tier ingcloud alpha compute instances create, andgcloud alpha compute instances create-from-container.
- --network-tier flag ingcloud alpha compute instances<create|add-access-config|update-access-config>,gcloud alpha computeinstance-templates <create|create-from-container>, andgcloud alphacompute <addresses|forwarding-rules> create.
Added commandgcloud beta compute addresses update formodification of addresses (in particular, modifying labels).
Added commandgcloud beta compute forwarding-rules update formodification of forwarding rules (in particular, modifying labels).
Promoted flag--force-create ofgcloud compute images create to beta.By default, image creation fails when it is created from a disk that isattached to a running instance. When this flag is used, image creation fromdisk will proceed even if the disk is in use.

Google Container Engine

Promotedgcloud container node-pools rollback command to GA. The alphaand beta command remains available and is identical.
Added--enable-network-policy flag togcloud alpha container clusters<create|update> to enable network policy enforcement.
Updatedkubectl from version 1.6.4 to version 1.6.6.

160.0.0 (2017-06-21; abandoned: all changes available in 161.0.0)

Breaking Changes

Removed the deprecatedgcloud ml-engine init-project command. It is nolonger needed by other Google Cloud ML Engine commands.

Google Cloud SDK

GA cmdlets for Stackdriver Logging, Google Cloud Pub/Sub, Google Cloud IAMare now available in Cloud Tools for PowerShell.

Google App Engine

gcloud beta app deploy now uses the new PHP Runtime Builder pipeline todeploy apps. The normalgcloud app deploy remains unchanged.
Previously,gcloud app list commands would only show the first 50 results.Now, all relevant results will be shown.

Google Compute Engine

It is now supported to delete both zonal and regional Managed InstanceGroups in onegcloud invocation.
Using labels ingcloud for the following Google Compute Engine resourcesis now in GA: disks, images, instances, and snapshots.

Google Cloud Container Builder

Fixed a bug affecting concurrent invocations ofgcloud container buildssubmit wherein objects could be uploaded to the same location,resulting in collisions and corrupted/broken builds.

Google Cloud Video Intelligence

Thegcloud ml video command group is now available in the beta track.These commands allow you to use the Cloud Video Intelligence API to analyzevideos and manage long-running video analysis operations.

159.0.0 (2017-06-14)

Google App Engine

Added commands to support automatically managed certificates:
- gcloud alpha app domain-mappings
- gcloud alpha app ssl-certificates
Added--no-launch-browser flag to allgcloud app browse commands:
- Allows the user to specify that they don't want a browser, they justwant the url.
- Detects situations that the user probably can't launch a browser (noDISPLAY, etc.) and just prints the URL instead of attempting to launcha browser.

Google Cloud Bigtable

cbt ls <table> now shows the GC policy for each column family.

Google Compute Engine

Addedgcloud compute instances set-service-account
gcloud compute disks snapshot now waits for the operation to finishindefinitely.
Removed the--zone flag in:
- gcloud compute backend-services add-backend
- gcloud compute backend-services remove-backend
- gcloud compute backend-services update-backend
Removed the--region flag in:
- gcloud functions command group (alpha and beta)
- gcloud functions regions list
Promoted Google cloud TCP proxy to GA.https://cloud.google.com/compute/docs/load-balancing/tcp-ssl/tcp-proxy

Google Container Registry

Fixed an issue that affecteddocker build while usingdocker-credential-gcr.

Google Cloud KMS

Promoted KMSgcloud kms encrypt andgcloud kms decrypt commands frombeta to GA.

158.0.0 (2017-06-07)

Breaking Changes

The App Engine Go externalized runtime will detect Go apps using only thefiles in the root of the app directory. This means thatgcloud beta app gen-config (andgcloud app deploy in an app directorywith no app.yaml file) will not recognize a Go runtime if .go files are insubdirectories. To override this behavior, rungcloud beta app gen-config --runtime go to generate an app.yaml with theGo runtime.

Google App Engine

gcloud beta app deploy now uses the new Ruby Runtime Builder pipeline to deploy apps. The normalgcloud app deploy remains unchanged.

Google Cloud Bigtable Emulator

Fixes compatibility with latest HBase client library.
Performance improvements for large bulk mutations.

Google Cloud SQL

gcloud sql instances patch commands will stop asking for confirmation that existing networks have been included in case of authorized networks being updated, unless the--authorized-networks flag is being used.

Google Compute Engine

POTENTIALLY BREAKING: Mostgcloud compute commands that involve specifying instances will now only prompt with relevant zones and no longer show all Google Cloud Platform zones when the--zone flag is omitted.
gcloud shared VPC network (XPN) commands are now in GA.

157.0.0 (2017-05-31)

Google Cloud SDK

Added the auth/disable_credentials property that allows gcloud tomake requests without loading credentials. This is only useful if you arebehind a proxy that adds authentication to your requests automatically.
Cloud Tools for PowerShell:
- Added BigQuery beta cmdlets to manage BigQuery datasets.
- Added Container beta cmdlets to manage Container clusters.

Google App Engine

Added commandgcloud beta app instances scp for securely copying filesbetween an App Engine Flexible instance and the local machine.
Updated App Engine components to 1.9.54.

Google Compute Engine

Added ability to set the min-cpu-platform of an instance orinstance-template in beta.

Google Cloud BigQuery

gcloud config set proxy/* settings are now propagated to bq.

Google Cloud IOT

Addedgcloud beta iot command group to the beta release track. Commands inthis group manage IoT devices and data.

Google Cloud Datalab

Updated thedatalab component to the 20170525 release. Changes in thisrelease are documented in its tracking issuehere.

Google Cloud Container Engine

Updated Google Container Engine's kubectl from version 1.6.3 to 1.6.4.

Google Cloud ML Engine

Removedgcloud beta ml alias forgcloud beta ml-enginecommands. Please usegcloud ml-engine directly.
Removedgcloud ml-engine models versions group in favor of the identicalgcloud ml-engine versions group.
gcloud ml-engine commands in the beta track now runagainst thev1 API, since thev1beta1 API is turning down.These changes do not affectgcloud ml commands for Google Cloud NaturalLanguage, Google Cloud Speech, or Google Cloud Vision.

Google Cloud SQL

Promotedgcloud sql connect to GA.

Google Cloud KMS

Addedencrypt anddecrypt commands togcloud beta kms.

156.0.0 (2017-05-24)

Breaking Changes

gcloud container builds submit will host build logs in a bucket ownedby the Container Builder team by default, rather than one owned by thecustomer. If the customer does specify a bucket,The commandgcloud container builds submit will no longer create thatbucket if it does not already exist.
gcloud sql instances set-root-password is now deprecated and will beremoved in version 162.0.0. Please usegcloud sql users set-passwordas an alternative.
gcloud computes copy-files is now deprecated. Usegcloud compute scpinstead. Note that recursive copy is not turned on by default forscp.Add--recurse to the invocation to turn it on.
The ISO time string format for theDUE_TIME argument to retrieve a backupingcloud beta sql backups describe is now deprecated in favor ofinteger format (now known as theID argument). Instead of running:
$ gcloud beta sql backups describe 2017-05-24T00:00:00.000Z --instance a1
please run:
$ gcloud beta sql backups describe 1490238000769 --instance a1

Google App Engine

Google App Engine components have been updated to 1.9.53.Please visit the following release notes for details:
- Python: https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java: https://cloud.google.com/appengine/docs/standard/java/release-notes
The App Engine Flexible environment includes Python 3.6 support (beta).To preview this runtime, specifypython_version: 3.6 in theruntime_config stanza of yourapp.yaml file.
gcloud beta app instances ssh now accepts remote commands in thefollowing fashion:gcloud beta app instances ssh -- echo hello world.

Google Cloud Bigtable

Add versioning information to thecbt commandline tool. The toolversion is displayed in help output and by the newcbt version command.

Google Cloud Bigtable Emulator

The Cloud Bigtable Emulator is now supported on Windows hosts.

Google Cloud Container Engine

Update Google Container Engine's kubectl from version 1.6.2 to 1.6.3.

Google Cloud Logging

Print the correct resource name ingcloud logging beta sinks create fornon-project resources.

Google Cloud Resources

The newgcloud alpha resources list command lists all indexed resourcesaccessible from your account.

Google Cloud Source Repositories

Thegcloud source repos command group is now available in the GA releasetrack.
Thegcloud source repos list command is now paginated.

Google Cloud SQL

All functionality fromgcloud beta sql instances commands is nowavailable ingcloud sql instances.
Promotedgcloud sql backups to the GA release track.

Google Cloud Storage

gcloud config set proxy/* settings are now propagated to gsutil. Usersno longer need to update gsutil .boto file with these settings.

Google Compute Engine

The--container flag ingcloud compute ssh usesdocker exec commandinstead ofnsenter in order to attach to container. The--containerflag can be used with any VM instance that has docker installed.
Promoted Identity-Aware Proxy support to the GA release track forgcloud compute backend-services.
Add thesuse-sap-cloud project to the default public image list.
Fixed a bug ingcloud compute ssh where SSH commands were incorrectlyassembled when using-- [SSH_ARGS] for passing extra arguments andcommands.
Promotedgcloud compute scp to the GA release track.
Add the--custom-extensions flag togcloud beta compute instances create,gcloud beta compute instances set-machine-type,andgcloud beta compute instance-templates create.

Firebase Test Lab

Firebase Test Lab now has beta support for testing Android game appsthat include game test loops. You run tests as follows:
$ gcloud beta firebase test android run --type game-loop ...
To learn more, see https://firebase.google.com/docs/test-lab/android/game-loop.
Added support for network shaping to alpha and beta release tracksfor Firebase Test Lab. You can add a network profile to your tests withthe--network-profile flag, followed by the name of the network profileyou would like to use. Firebase Test Lab provides information about thenetwork profiles available for network shaping through thelist anddescribe commands. You can use them as follows:
- $ gcloud beta firebase test network-profiles --help
- $ gcloud beta firebase test network-profiles list
- $ gcloud beta firebase test network-profiles describe PROFILE_ID

Go SDK

Go SDK has been upgraded to go1.6.4.

155.0.0 (2017-05-11)

Google App Engine

Addedgcloud beta domains command group.
Addedgcloud beta app domain-mappings command group.
Addedgcloud beta app ssl-certificates command group.
Added a goroot specific to Go 1.6 in preparation for the Go 1.8 beta.

Google Cloud Datalab

Updated the datalab component.This is a bugfix-only release. Details of the fixed issue are availablehere:https://github.com/googledatalab/datalab/issues/1356

Google Cloud DNS

Added beta track forgcloud dns which uses the new v2beta1 API.

Google Cloud Logging

BUG FIX:gcloud beta logging sinks update would remove any start time orend time from a sink.

Google Cloud SDK

Upgradedgsutil component to version 4.26.

Google Cloud SQL

Promotedgcloud sql users to GA.

Google Compute Engine

Modifiedgcloud compute instances attach-disk to output full urls of zonesand machine types instead of outputting just their names.
Added--force-create flag togcloud compute images create. Applicable toalpha track only.

Google Container Engine

Added--async flag and deprecated--wait flag ingcloud container node-pools delete. Users should use--async in place of--wait.
Movedgcloud container operations cancel to beta.
Movedgcloud container node-pools rollback to beta.
Added ability to specify--labels when creating a Container Engine clusterin gcloud alpha or beta. These labels can be changed by using the--update-labels or--remove-labels flags now available ingcloudcontainer clusters update. Labels will then be applied to Google CloudPlatform resources that the cluster creates.

154.0.1 (2017-05-04)

Cloud SDK

Fixed issue in for gcloud init command. See https://issuetracker.google.com/37968909.

154.0.0 (2017-05-03)

Cloud SDK

Added support for project creation during thegcloud init flow.

Google Cloud Logging

BUG FIX: gcloud beta logging sinks update would remove any start time or end time from a sink
gcloud beta logging sinks describe now reports values of start_time, end_time and include_children
The--include-children flag is now available forgcloud beta logging sinks create to create sinks that apply to an organization or folder and also to all of its child projects and folders.

Google Compute Engine

Workaround problems with alpha and beta versions of compute ssh command fail an attempt to use clouduseraccounts APIs.

Google Container Engine

Promote --cluster-version from beta to GA in gcloud container clusters create.
'--no-source' flag for 'gcloud container builds submit' allows builds with no source input.

Google Cloud ML Engine

Added --config parameter togcloud ml-engine versions create; this parameter allows specifying scaling settings for a version.

Google Cloud Speech

Thegcloud ml speech commands to recognize spoken words in recorded speech using the Cloud Speech API are now available in beta. Please rungcloud beta ml speech --help or visit https://cloud.google.com/speech/docs/ to learn more.

Google App Engine

gcloud beta app deploy now attempts to use the Service Management API to enable the Appengine Flexible Environment API for Flexible deployments, if needed. Before deploying a Flexible app, please ensure that the Flexible Environment API is enabled on the app's project.
The new Node.js Runtime Builder pipeline will now be used to deploy apps when usinggcloud beta app deploy.

Google Cloud SQL

Promotegcloud sql operations to GA. The beta surface still remains and is identical.

Google Cloud Source Repositories

Add a source repos describe command to describe a repository to the beta track.

153.0.0 (2017-04-26)

Breaking Changes

(Cloud SQL)gcloud beta sql instances restore-backup no longer accepts short flag-b. Use--backup-id instead.

Google App Engine

Components updated to 1.9.52.
- Please visit the following release notes for details: Python - https://cloud.google.com/appengine/docs/standard/python/release-notes

Google BiqQuery

Scope-related warnings when usingbq with Google Compute Engine service accounts have been fixed.
Small improvements to error messages and flag descriptions inbq.

Google Cloud Dataproc

gcloud datapoc clusters create now accepts the--no-address flag

Google Cloud SDK

Added choice to enable the API and retry if attempting to contact a disabled API.

Google Cloud Source Repositories

repos list no longer reports repo size.

Google Cloud Spanner

Different query modes (normal, plan, and profile) now supported.
- A table with aggregate statistics for queries run in 'profile' mode added.

Google Cloud SQL

gcloud sql databases is now in GA.
- The beta surface still remains and is identical.

Google Compute Engine

alpha and betacompute instances set-machine-type commands now require specifying the new machine type.
Label support forinstance,snapshot andimages resources added.
gcloud beta compute instance-templates create now accepts the--accelerator flag.
compute addresses create andcompute forwarding_rules create flag--ip-version is now in beta
gcloud compute networks peerings commands are now in alpha and beta. These commands allow you to manage peering connections in your Google Cloud Platform VPC network.

Google Container Engine

kubctl version is now 1.6.2 instead of 1.6.0

Google Service Management

gcloud beta service-management deploy command will now scan for potentially hazardous changes to service configurations and abort if any actionable advice is returned. These can be overridden with the new--force flag.

152.0.0 (2017-04-19)

Breaking Changes

(Compute Engine) The--force-creation flag is no longer supported ingcloud compute images create.

Google Container Registry

gcloud container images is now globally available.

Google Compute Engine

The--force-creation flag is no longer supported ingcloud compute imagescreate.
Thegcloud compute instance-groups managed abandon-instances,gcloud compute instance-groups managed delete-instances, andgcloud compute instance-groups managed recreate-instances` commands nowsupport more than 1000 instances.
Custom cache keys are now v1, adding the following flags togcloud computebackend-services create andgcloud compute backend-services update:
- --cache-key-include-host
- --cache-key-include-protocol
- --cache-key-include-query-string
- --cache-key-query-string-blacklist
- --cache-key-query-string-whitelist
(Alpha, Beta) Added thegcloud beta compute disks add-labels,gcloud beta compute disks remove-labels, andgcloud beta compute disks update commands to support labels for ComputeEngine disk resources.

Google Cloud SQL

Starting on 2017-06-30, the--instance flag ingcloud sql operationswait andgcloud sql operations describe will no longer be supported. Youcan still run the same command by omitting this flag.

Google Cloud Containers

Added the--start-ip-rotation and--complete-ip-rotation flags togcloud container clusters update.
Improved the performance ofgcloud container images list-tags in certaincases.

Miscellaneous

(Cloud Bigtable Emulator) The Cloud Bigtable Emulator no longer crashes whennot configured with a host_port.
(Cloud SDK) Fixed a bug in the fish shell $PATH script that caused the $PWDto change (https://issuetracker.google.com/issues/35906130).

151.0.1 (2017-04-14)

Cloud SDK

Fixed issue in which some users could not use the Windows installer or"bundled python" version of the Cloud SDK for installation.

151.0.0 (2017-04-12)

Google App Engine

Added commandgcloud beta app repair, for restoring resources needed byApp Engine.
Updated Google App Engine components to 1.9.51.Please visit the following release notes for details:
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes

Google Cloud Datalab

Updated the datalab component to the 20170330 build:
- Fixed a race condition oncreate when mounting /tmp that caused intermittent mount failures.
- Added.gitignore andREADME.md files to newly created user notebooks.

Google Cloud Source Repositories

Added--use-full-gcloud-path flag togcloud source repos clone commandin alpha and beta tracks. Fixes issuehttps://issuetracker.google.com/issues/35907670.

Google Cloud Storage

Updated gsutil component to 4.25.

Google Compute Engine

Added--action,--rules,--direction,--destination-ranges, and--priority flags togcloud beta compute firewall-rules {describe,create,update} commands.
Addedsize=SIZE parameter to the--local-ssd flag forgcloud compute {instances,instance-templates} create{,-from-container}commands in the alpha track.

Google Service Management

Addedgcloud service-management operations list command in the alpha andbeta tracks.

150.0.0 (2017-04-05)

Breaking Changes

The v1beta1 API for Google Cloud ML Engine is deprecated and will be turnedoff on 2017-05-31. Please switch to thegcloud ml-engine commands, whichuse the v1 API, by that date; at that time, thegcloud beta ml-enginecommands will switch over to the v1 API.

Cloud Tools for PowerShell

Added beta cmdlets for Google Container Engine.
Fixed a bug whereGet-GcdChange andGet-GcdResourceRecordSet were notreturning more than 1000 items.

Google App Engine

Fixed an issue ingcloud app operations list which resulted in sporadiccrashes.

Google Compute Engine

Added Google Cloud TCP proxy commands to the Beta track. For moreinformation seegcloud beta compute target-tcp-proxies group and theonline documentation:
- https://cloud.google.com/compute/docs/load-balancing/tcp-ssl/tcp-proxy

Google Container Engine

gcloud container clusters create|get-credentials will now configurekubectl to use the credentials of the active gcloud account by default,instead of using application default credentials. This requires kubectl1.6.0 or higher. You can update kubectl by runninggcloud components update kubectl.If you prefer to use application default credentials to authenticate kubectlto Google Container Engine clusters, you can revert to the previous behaviorby setting thecontainer/use_application_default_credentials property:
- gcloud config set container/use_application_default_credentials true
- export CLOUDSDK_CONTAINER_USE_APPLICATION_DEFAULT_CREDENTIALS=true
Added--[no-]enable-legacy-abac option togcloud container clusters create andgcloud container clusters update.For more details see online documentation:
- https://cloud.google.com/container-engine/docs/role-based-access-control
Added--set-password and--generate-password options to thegcloud container cluster update command.
Modified thegcloud container images list-tags command to consider 10recent images by default, instead of all.
Updated Google Container Engine's kubectl from version 1.5.4 to 1.6.0.

Google Cloud IAM

Added tab completion togcloud iam service-accounts commands.

Google Cloud Logging

Removed deprecated "unique-writer-identity" flag. All created/updated sinkswill use custom service accounts to increase security.Please see documentation for more details:
- https://cloud.google.com/logging/docs/export/configure_export_v2#dest-auth
Remove support for creating/updating sinks with legacy V1 format.

Google Cloud Resource Manager

Updatedgcloud projects set-iam-policy andgcloud organizations set-iam-policy commands to allow users to edit auditconfigs. Changes to IAM policy should be handled via a read-modify-writecommand sequence.

Google Cloud Storage

Update gsutil component to 4.24.

Google Cloud SQL

Addedgcloud beta sql instances set-root-password for consistency withthe GA set of commands.This command is deprecated in favor ofgcloud beta sql users set-password.

Google Cloud Source Repositories

gcloud source repos command group promoted to Beta track.

Emulators

Datastore emulator now defaults to port 8081, and Pub/Sub emulator to 8085.

149.0.0 (2017-03-29)

Breaking Changes

The Cloud SDK installer on*nix will no longer attempt to update your RCfiles in non-interactive mode.
Support for creating/updating legacy sinks has been removed fromgcloud beta logging.

Cloud SDK

SHA256 checksums, instead of SHA1 checksums, are now being published forCloud SDK versioned archives and other downloadable assets.

Firebase Test Lab

Thegcloud test commands have been promoted to GA and renamedgcloud firebase test .... Allgcloud beta test ... commands aredeprecated.
The preferred way to specify test devices is the new--device argument,which allows more precise control over which device dimensions are includedin a test matrix. Seegcloud firebase test android run --help andgcloud topic arg-files for details.

Google App Engine

Updated Python SDK to version 1.9.51.
Support Server Name Indication (SNI) for remote API shell.

Google Cloud Datalab

Update the datalab component to the 20170323 build. With this release, theentire/content directory of newly created instances will be persisted tothe attached disk rather than just the/content/datalab directory.

Google Cloud Natural Language

Thegcloud beta ml language command group is now available. Use commandsin this group to analyze text with the Natural Language API. For moreinformation, see: https://cloud.google.com/natural-language/.

Google Cloud Runtime Configuration

The optional flag--values has been added togcloud beta runtime-config configs variables list; it can be used toreturn values along with variables.

Google Cloud SQL

Argument validation for instance arguments has been added togcloud beta sql instances create,gcloud sql instances create, andgcloud sql instances set-root-password

Google Compute Engine

gcloud alpha compute ssh can now connect to instances using private IPaddresses.
gcloud alpha compute images create now has a--force-creation flag.

Google Container Engine

gcloud container images delete has been modified to delete the underlyingimage, and all associated tags, when given a tag reference. For theremainder of beta,--resolve-tag-to-digest will be required when deletingan image by tag, to avoid accidental deletion. This will become defaultbehavior when the command graduates from beta.

148.0.1 (2017-03-24)

Google Cloud Functions

Fixed a bug wheregcloud beta functions deploy did not work without the--region flag specified.

148.0.0 (2017-03-22)

Breaking Changes

Thegcloud ml-engine jobs submit trainingcommand is now asynchronous by default; pass--stream-logs to get theold behavior.
gcloud ml-engine local predict now only supportsprediction using models in SavedModel format. For details, see:https://github.com/tensorflow/tensorflow/blob/master/tensorflow/python/saved_model/README.md

Cloud SDK

Windows users upgrading to the new version might see an error afterrunninggcloud components update. This is because the update modifiesthe gcloud.cmd file. The update should have finished successfullyregardless of the error. To make sure, rungcloud components updateagain. It should say it's already up to date.

Google Cloud BigQuery

Added support for updating field descriptions on query destination table.See thedestination_schema flag within thequery command.
Added support for showing only a subset of selected table fields.See theselected_fields flag within thehead command.
Added support for setting labels on tables.See thelabel flag within themk command.

Google Cloud Datalab

Updated the datalab component to the 20170316 build.This release includes two bug fixes in how the tool looks upDatalab instances:
1. No longer prompt for a zone if the specified instance does not exist.
2. Report an error if the specified instance was not created by the tool.

Deployment Manager

Promotegcloud alpha deployment-manager commands to the betarelease track.

Google Cloud ML Engine

The default log polling interval for logs has been raised;this should prevent streaming from using too much quota.

Google Container Engine

Update Google Container Engine's kubectl from version 1.5.3 to 1.5.4.

Google Container Registry

untag has been added to thecontainer images command group. In thefuture,container images delete will be modified to delete the underlyingimage (and all associated tags) and this will be the primary method ofremoving tags from images.

Google Service Management

--validate-only flag added toservice-management deploy command

Google Cloud Key Management Service

gcloud beta kms commands have been promoted to general availability asgcloud kms.

Google Cloud Storage

Promotecompute backend-buckets commands to general availability.
Update gsutil component to 4.23

147.0.0 (2017-03-15)

Breaking Changes

Modified argument parsing for commands that pass arguments through toanother program.The-- argument must be specified between gcloud specific args on theleft and the rest of the command on the right.Commands will no longer allow the omission of the--, and unparsedarguments will not be treated as implementation args.
Made the--config-name flag mandatory forruntime-config configs variables andruntime-config configs waiterscommands.
Renamedgcloud kms cryptokeys asgcloud kms keys.Renamed the--cryptokey flag as--key.Deprecated thecryptokey variants.
Modifiedalpha source repos clone to produce an error message if therepository being cloned is a mirror. The command no longer asks to createthe repo if it does not exist.

Cloud SDK

The gcloud interactive shell auto completes gcloud commands and flags, anddisplays help, as command lines are typed into the shell.Rungcloud alpha shell to launch the shell.

Google Compute Engine

Promoted custom cache keys to beta.
Promotedgcloud compute networks subnets to beta.

Google App Engine

Modified Google App Engine Flexible Environment runtimes thatrequireentrypoint: to automatically prependexec toentrypoints, to ensure signals are passed through to the applicationprocess.
Java SDK updated to 1.9.50. For more details, please see
- https://cloud.google.com/appengine/docs/standard/java/release-notes

Google Cloud Bigtable

Updated binaries for thecbt commandline tool to allow for creation oftables with initial splits.

Google Cloud Datalab

Updated the datalab component to the 20170309 build. This is a small updatethat only updates the name of the project from which we fetch theContainer OS images to the newcos-cloud project.

Google Container Engine

Added--enable-autorepair flag togcloud beta container clusters create andgcloud beta container node-pools create.

Google Cloud Resource Manager

Promoted thegcloud projects create command to GA.

Google Cloud Vision

Thegcloud beta ml vision command group is now available. These commandsallow you to analyze images with Google Cloud Vision:
- gcloud beta ml vision detect-documents
- gcloud beta ml vision detect-faces
- gcloud beta ml vision detect-image-properties
- gcloud beta ml vision detect-labels
- gcloud beta ml vision detect-landmarks
- gcloud beta ml vision detect-logos
- gcloud beta ml vision detect-safe-search
- gcloud beta ml vision detect-text
- gcloud beta ml vision detect-web

Google Service Management

Modified--format flag forgcloud service-management deploy to makethe new service configuration available for formatting with--format

Google Cloud Source Repositories

Mirrored repositories now display the URL of the repository being mirrored.

Cloud Tools for PowerShell

Added beta cmdlets for managing access control and visibility ofGoogle Cloud IAM bindings. For more information, seehttps://googlecloudplatform.github.io/google-cloud-powershell/#/google-cloud-iam

Google Container Registry

Updateddocker-credential-gcr to support the Docker client'snew chronological version numbering duringconfigure-docker for Dockerclient versions of 17.03.xx and above.

Firebase Test Lab

Added new--results-dir flag for thegcloud test android run commandto specify a predetermined storage location for test results. The valuemust be unique per each test matrix created. This avoids the need to parsestderr to find the path to the raw test results.
Added new commandsbeta test android versions describe andbeta test android locales describe.

Google Cloud Key Management Service (Beta)

Tab completion for the Cloud KMS --location flag is now supported.

146.0.0 (2017-03-02)

Google Cloud ML

gcloud ml has been promoted to GA and renamedgcloud ml-engine
Add--max-worker-count togcloud ml-engine jobs submit prediction tospecify maximum number of workers to use.
Add--model-dir ingcloud ml-engine jobs submit prediction to use modelfiles saved in Google Cloud Storage.

Google Cloud Source Repositories

gcloud source repos set-iam-policy andgcloud source reposget-iam-policy commands now available on alpha release track.

Google Cloud Datalab

Add a--verbosity flag togcloud datalab command
Changegcloud datalab to use thelatest Docker image by default, ratherthan thelocal image.
Fix bug wheregcloud datalab connect would seemingly hang untilENTERwas pressed.

Google Cloud Bigtable

Add support for development instances that can be upgraded to productioninstances later.

Google Compute Engine/Networking

gcloud compute xpn commands now available in the beta release track. Thesecommands configure cross-project networking.
gcloud compute disks snapshot --guest-flush flag now generally availablefor creating application-consistent snapshots. Currently only supported onWindows instances using the Volume Shadow Copy Service (VSS)
Addgcloud compute networks subnets list-usable to alpha release track forlisting subnetworks that the user has compute.subnetworks.use permission on.
Add support for multiple network interface cards ingcloud computeinstances create andgcloud compute instance-templates create command onthe beta release track.

Google Container Engine

Updated Google Container Engine'skubectl from version 1.5.2 to 1.5.3.

Google Cloud Container Builder

gcloud container builds submit now takes a--substitutions flag foruser-defined templating; seehttps://cloud.google.com/cloud-build/docs/api/build-requests#substitutionsfor more details.

Google Cloud SQL

gcloud sql instances create now shows a clear error message if user triesto exceed instance limit.

Firebase Test Lab

gcloud test android run now directs the user to the test results pagewithin the Firebase console instead of the deprecated Test Lab section ofthe Google Developer's Console.

145.0.0 (2017-02-22)

Breaking Changes

Thegcloud beta runtime-configs group has been renamedgcloud betaruntime-config. All commands previously undergcloud beta runtime-configshave been moved to thegcloud beta runtime-config configs command group.

Google App Engine

gcloud app deploy now deploys Go apps for both Standard and Flexibleenvironments. All usage ofaedeploy can now usegcloud app deploydirectly instead.
When passing a directory to dev_appserver.py, dev_appserver.py searches foryaml in the directory so that gcloud can check missing components and promptto install.
Java SDK updated to 1.9.49. For more details, please see
- https://cloud.google.com/appengine/docs/standard/java/release-notes
gcloud app logs tail is now available in GA.

Google Cloud Datalab

Update thedatalab command line tool to the 20170215 build. Thisincorporates the following changes to the datalab tool:
1. Allow specifying a service account when creating a Datalab instance.
2. Move the/tmp directory outside of the VM's boot disk.

Google Cloud Dataproc

Cluster and job labels support ingcloud dataproc is now available in GA.
The--network-tier flag has been added to the following commands:
- gcloud alpha compute addresses create
- gcloud alpha compute forwarding-rules create
- gcloud alpha compute instance-templates create
- gcloud alpha compute instances add-access-config
- gcloud alpha compute instances create
- gcloud alpha compute instances create-from-container
- gcloud alpha compute instances update-access-config

Google Cloud SQL

A--database-version flag has been added togcloud sql flags list andgcloud beta sql flags list to allow filtering. An 'applies to' column hasbeen added to tabular output.
Added the following commands:
- gcloud beta sql databases create
- gcloud beta sql databases delete
- gcloud beta sql databases describe
- gcloud beta sql databases list
- gcloud beta sql databases patch

Google Compute Engine

The--network-tier flag has been added to the following commands:
- gcloud alpha compute addresses create
- gcloud alpha compute forwarding-rules create
- gcloud alpha compute instance-templates create
- gcloud alpha compute instances add-access-config
- gcloud alpha compute instances create
- gcloud alpha compute instances create-from-container
- gcloud alpha compute instances update-access-config

144.0.0 (2017-02-15)

Breaking Changes

Many Cloud SQL commands now prompt for confirmation in more circumstances:
- gcloud sql instances import
- gcloud beta sql instances import
- gcloud beta sql instances failover
- gcloud sql instances promote-replica
- gcloud beta sql instances promote-replica
- gcloud sql instances reset-ssl-config
- gcloud beta sql instances reset-ssl-config
- gcloud sql instances restart
- gcloud beta sql instances restart
- gcloud sql ssl-certs delete
- gcloud beta sql ssl-certs delete
- gcloud beta sql users delete
gcloud compute backend-services now requires an explicit scope.Pass--global to retain the old behavior.

Deployment Manager

deployment-manager deployments {update,stop,cancel-preview} can take--fingerprint flag to ensure optimistic locking.
Thegcloud deployment-manager runtime-configs command group is now availableas a top-level command group:gcloud runtime-configs.

Google App Engine

Fixed a bug ingcloud app instances list where instances were always listedas NOT in debug mode.
Added--container flag togcloud beta app instances ssh, which lets youSSH straight into the app container within the instance VM.
Deployments usingvm: true have been deprecated. Please update your app.yamlto useenv: flex. To learn more, please visithttps://cloud.google.com/appengine/docs/flexible/migration.
Added Google Analytics reporting to the dev_appserver.py binary. This is onlyenabled for users who have opted in during installation.

Google Cloud Datalab

Update the datalab command line tool to the 20170208 build.This update includes the following changes:
1. All subcommands of thedatalab tool now support a--quiet flag fordisabling interactive prompts.
2. You can now configure the logging threshold for messages that Datalabinstances write to StackDriver logging. The default iswarn, butthis can be overridden by passing in the--log-level flag.
3. Thedatalab create anddatalab connect commands are more intelligentabout when they should open a browser. In particular, they detect ifthe configured browser is a text-only browser or if the command isbeing run from inside of Google Cloud Shell, and do not attempt tolaunch the browser in those cases.
4. The tool will now detect and warn if two users try to share a singleDatalab instance, as that use case is not supported.
5. Newly created Datalab instances use the Container Optimized OSrather than the older Container VM OS.

Google Cloud Functions

Thegcloud functions commands are now available in the beta release track asgcloud beta functions.

Google Cloud Spanner

Initial (beta track) release of thegcloud beta spanner command group.

Google Cloud SQL

gcloud sql instances create andgcloud sql instances patch now supportspecifying custom machine types on psql instances by using the--memory and--cpu flags.
Add ability to delete backups in SQL beta CLI(gcloud beta sql backups delete).
If a user does not confirm a backup deletion, immediately cancel theoperation. Also bringing this function into line with others in the SQL CLI.Affects one command:
- gcloud beta sql backups delete

Google Compute Engine

Accelerators (e.g. GPUs) can now be attached to instances by passing--accelerator togcloud beta compute instances create.
gcloud beta compute accelerator-types is now available in beta.

143.0.1 (2017-02-09)

Fixed issue in which some downloads of the Cloud SDK were missing criticallibraries.
- https://issuetracker.google.com/issues/35907794

143.0.0 (2017-02-08)

Google App Engine

gcloud beta app instances ssh is now available in beta.
Updated app-engine-go component to the 1.9.50 SDK.
Fixed a bug wheregcloud beta app deploy failed while deploying Go apps.
Python SDK updated to 1.9.50. For more details, please seehttps://cloud.google.com/appengine/docs/standard/python/release-notes

Google Compute Engine

Show Cloud OS Images (COS) in 'gcloud compute images list' output.
Added beta for 'compute xpn get-xpn-host' and 'compute xpn organizations list-xpn-hosts'.

Cloud Tools for PowerShell

Added beta cmdlets for Log Sinks and Log Metrics.

Google Cloud Pub/Sub

The Pub/Sub emulator now adheres to the documented topic and subscriptionname constraints, including support for '+' and '%25' in names viaREST.

Google Cloud ML

The--job-dir flag forgcloud beta ml jobs submit training maynow be used for staging code in the absence of the (now optional)--staging-bucket flag.
--staging-bucket flag is only required injobs submit trainingif a file upload is necessary.
Add--job-dir flag toml jobs submit training

Google Cloud Deployment Manager/Runtime Configuration

gcloud beta deployment-manager runtime-configs is now available in beta.

142.0.0 (2017-02-01)

Breaking Changes

(Google Cloud Logging) Renamed--only-project-sinks flag for gcloud loggingbeta sinks list to--only-v2-sinks
(Google Cloud ML) Support for space-separated values with the--packagesflag forgcloud beta ml jobs submit training has been removed. Pleaseseparate your packages with commas.

Google App Engine

Addedgcloud beta app logs tail command.

Google Cloud Dataproc

Cluster labels can now be updated

Google Cloud IAM

gcloud beta iam service-accounts sign-jwt is now available in beta.
gcloud beta iam service-accounts keys get-public-key is now available inbeta.

Google Cloud Storage

Add thebackend-buckets command to the beta release track.

Google Cloud Logging

Added support for sinks for organizations, folders and billing accounts

Google Cloud SQL

Prompt for confirmation when user restores an SQL instance from backup.Affects three commands:
- gcloud beta sql backups restore
- gcloud sql instances restore-backup
- gcloud beta sql instances restore-backup

Google Cloud BigQuery

Preparation for new API features. Ifbq ls begins failing,updating to this release should fix it.

Google Cloud Datalab

Update the datalab command line tool to the 20170119 build.With this update, thedatalab create command will ensurethat adatalab-notebooks Cloud Source Repository existsin the project, and newly created persistent disks willinclude a clone of that repository in thedatalab/notebooksdirectory.Creating that repository can be disabled by passing in the--no-create-repository flag to thedatalab create command.

141.0.0 (2017-01-25)

Breaking Changes

(Google Cloud SDK) The deprecatedgcloud preview app andgcloud preview datastore have been removed. Commands are available under theGA release track.

Google App Engine

gcloud app operations is now in GA.
Added support for using Yarn with Node.js applications.

Google Cloud ML

Added a--regions flag ingcloud beta ml models create to set theregion(s) where the model will be deployed.
Implementedgcloud beta ml operations commands.
Fixed a bug wheregcloud beta ml local train --distributed did not work withTensorFlow >= 0.12

Google Compute Engine

Deprecated old--scopes format ingcloud compute instances create in favorof--scopes format consistent withgcloud compute set-scopes.
Deprecated old--scopes format ingcloud compute instance-templates createin favor of--scopes format consistent withgcloud compute set-scopes.
Added support for creating Google Compute Engine VMs with GPU accelerators.

Google Container Engine

Updated Google Container Engine'skubectl from version 1.5.1 to 1.5.2.

Google Container Registry

Mitigated an issue regarding gcr.kubernetes.io's certificate when usersinvokedgcloud docker.

Google Cloud Bigtable Emulator

Bigtable emulator now supportsvalue_range,condition,strip_value_transformer,timestamp_range androw_key_regex filters.

Google Service Management

Full resource URI parsing now supported

Google Cloud Key Management Service (Beta)

Fixed an issue that prevented setting next-rotation-time ingcloud beta kms crytpokeys set-rotation-schedule.

140.0.0 (2017-01-18)

Cloud SDK

gcloud alpha search-help is now available in alpha.Rungcloud alpha search-help [TERM] to find gcloud commands whose help textcontains [TERM].

Google Cloud ML

gcloud ml jobs submit training now supports packages already in GoogleCloud Storage via the--packages flag.

Google Cloud Datalab

Upgrade the Datalab CLI to the 20170110 build.

Google Cloud Debugger

Thegcloud debug command group is now available in GA.

Google Container Registry

An issue that affected Docker client version parsing duringdocker-credential-gcr configure-docker has been fixed.

Google Cloud Deployment Manager

'deployment-manager deployments update' can update deployments with a newdescription using --description flag.

Emulators

The Pub/Sub emulator now accepts web-safe Base64 encoded data.

139.0.1 (2017-01-12)

Fixed crash ingcloud dataproc clusters create
- https://issuetracker.google.com/issues/35907682

139.0.0 (2017-01-11)

Breaking Changes

(Google Cloud Logging) The default value of the--unique-writer-identityflag togcloud beta logging sinks create andgcloud beta logging sinks update is now true. Please consult thedocumentation before using these commands.
(Google Cloud Logging) Remove 'struct' option fromgcloud logging write.Use 'json' instead
(Google Cloud Logging)logging beta metrics create andlogging beta metrics update commands have changed their flags andimportantly now use Logging V2 filter syntax. See the help for moreinformation.
(Google App Engine) Flexible deployments now skip files matchingnode_modules and.git by default, but no longer skip other hidden files bydefault. Standard deployments are not changing.
(Google Compute Engine)gcloud compute target-pools set-backup --backup-pool andgcloud compute project-info set-usage-bucket --bucket flags now warn if youprovide an empty argument; use--no-backup-pool and--no-bucket instead.
(Google Cloud Bigtable) Removedgcloud alpha bigtable command group; pleaseusegcloud beta bigtable for all Cloud Bigtable operations.
(Stackdriver Debugger) Added a--location option to severalgcloud beta debug commands, to separate out the processing of resource IDsfrom filename patterns. These commands now take only resource IDs aspositional parameters.

Google Cloud Datalab

Added the command-line tool for Google Cloud Datalab in the Cloud SDK; callit via thedatalab script.

Google Cloud Key Management Service

Added thegcloud beta kms commands for key management.

Google Cloud Logging

Add--billing-account flag togcloud logging read
gcloud beta logging metrics list/describe now output the version of the filterassociated with the metric

Google Cloud ML

Thegcloud beta ml jobs submit training now takes a--scale-tier flag.
Support gzipped TFRecord file type forgcloud beta ml jobs submit prediction.

Google App Engine

(Google App Engine) Fixed bug withgcloud app instances describe. --serviceand --version flags are now required.
gcloud beta app deploy now uses multi-threading rather thanmulti-processing for file uploads; if you've been seeing issues on Windows,please try thebeta command out.
gcloud app versions migrate is now GA.
gcloud app instances delete is now GA.
Addedgcloud beta app operations commands.
Addedgcloud beta app instances delete command.

Google Compute Engine

gcloud beta compute images create now has a--guest-os-features flag forenabling specific OS supported features.
Use the new scopes format (see--help for deetails) for
- gcloud alpha compute instances create
- gcloud alpha compute instances create-from-container
- gcloud alpha compute instance-templates create
- gcloud alpha compute instance-templates create-from-container
- gcloud beta compute instances create
- gcloud beta compute instance-templates create
Add--custom-extensions flag to:gcloud alpha compute instances create,gcloud alpha compute instances set-machine-type, andgcloud alpha compute instance-templates create

Google Compute Engine (Networking)

The--host flag forgcloud alpha compute url-maps invalidate-cdn-cache isnow available in the GA version of the command.

Stackdriver Debugger

Fixed log view URLs in the debug logpoints commands to use the V2 querysyntax.

Google Service Management

--validate-only flag added togcloud service-management deploy command

Google Cloud Functions

The--trigger-params flag has been renamed to--trigger-path(thepath= specifier is no longer necessary). The old flag has beendeprecated and will be removed orgcloud alpha functions deploy.
Restoregcloud alpha functions get-logs command.
Restore deprecated flags--trigger-topic,--trigger-bucket,--source,--bucket, and--trigger-gs-uri togcloud alpha functions deploycommand.

Google Container Engine

Update Google Container Engine's kubectl from version 1.4.6 to 1.5.1.

Google Cloud Bigtable

Thecbt command line tool component is now available. See:https://cloud.google.com/bigtable/docs/go/cbt-reference

Google Cloud Datastore

gcloud datastore create-indexes andcleanup-indexes are now GA

Google Container Registry

docker-credential-gcr has been upgraded to v1.3 and now supports Dockerclient v1.14 credential helpers.docker-credential-gcr will nowpreferentially act as a credential helper (as opposed to credential store) onDocker client versions 1.14+. Update (or install) thedocker-credential-gcrcomponent and rundocker-credential-gcr configure-docker to configure yourDocker client to usedocker-credential-gcr to authenticate operations onyour GCR repositories.

Google Cloud Deployment Manager

Added labels support to thegcloud alpha deployment-manager deployments create andupdate commands(via the--labels and--{update,remove}-labels flags respectively).
Introduce new syntaxkey:val,foo:bar for--properties flag in allgcloud deployment-manager commands. The oldkey=val,foo=bar syntax isdeprecated.

138.0.0 (2016-12-14)

Cloud SDK

Introduce --(no-)force-key-file-overwrite flags to all gcloud commands usingSSH key files. These new flags control overwrite behavior when SSH key filesare broken. Without these flags, interactive sessions will ask forconfirmation before regenerating key files. Old non-interactive behavior(permissive) is deprecated and will be removed in 6 months. To preserve oldbehavior in your scripts, use new flag --force-key-file-overwrite(though this is discouraged).
Credential store format for service accounts has changed. Your credentialswill get auto-upgraded to new format upon usage; however, if gcloud isdowngraded to previous version those credentials will not be usable and userswill have to reactivate their service account.

Google Cloud ML

gcloud beta ml jobs submit training is now blocking by default. Use the--async flag to finish immediately after job submission.

Google Compute Engine

gcloud compute instances create creates instance with no scopes by defaultif project has no default service account.
compute target-ssl-proxies list deprecated--regex and names argument.Please use--filter flag instead.
gcloud compute connect-to-serial-port allows for interactive connections tothe serial port for instances.
Promotecompute instances set-scopes command from alpha to beta.

Google App Engine

Java SDK updated to 1.9.48. For more details, please seehttps://cloud.google.com/appengine/docs/standard/java/release-notes
Python SDK updated to 1.9.49. For more details, please seehttps://cloud.google.com/appengine/docs/standard/python/release-notes
gcloud app describe is now GA.
Addedgcloud beta app instances delete, which deletes a specific App Engineinstance.
Addedgcloud beta app versions migrate.
Added support forenv: flex (Flexible Environment) instances togcloud app instances enable-debug andgcloud app instances disable-debug.
Added support for skip_files in Flexible Environment deployments.

Google Container Engine

Users can create clusters/nodepools with node autoupgrade enabled in Beta byadding--enable-auto-upgrade. Please refer togcloud beta container clusters create --help andgcloud beta container node-pools create --help for more details.
node-pool upgrades can now be rolled back using thegcloud alpha container node-pools rollback <pool-name> command.Seegcloud alpha container node-pools rollback --help for more details.

Google Cloud Container Builder

Container Builder timeouts are now unlimited (with a default of ten minutes),and can be specified with the --timeout flag.

Google Cloud Dataflow

Thegcloud dataflow jobs command group now has the following commands in GA:cancel, describe, drain, list, show

Google Cloud Functions

Removegcloud alpha functions get-logs command.
Remove deprecated flags --trigger-topic --trigger-bucket --source --bucket--trigger-gs-uri fromgcloud alpha functions deploy command.

137.0.1 (2016-12-08)

Google Cloud ML

gcloud beta ml jobs submit training: Fix crash when--packages was notspecified.

137.0.0 (2016-12-07)

Google Cloud Functions

Addgcloud alpha functions deploy--trigger-provider,--trigger-event,--trigger-resource and--trigger-params flags.
Addgcloud alpha functions event-types list command.

Google Cloud ML

Thegcloud beta ml models versions command group has been moved togcloud beta ml versions. The old commands still work, but are deprecated.
The--origin flag for thegcloud beta ml versions create command nowaccepts local file paths in addition to Google Cloud Storage (gs://) paths.
gcloud beta ml jobs training:--packages now takes a comma-separated listinstead of a space-separated list.

Google Compute Engine

Internal Load Balancing is now available in GA.
It is no longer allowed to pass an empty scope ingcloud compute instances create --scopes flag.

Google Container Engine

gcloud container images describe has some breaking changes to its--format=JSON output.

Google Service Management

The gcloud service-management surface is now available in the GA and betarelease tracks. Please usegcloud service-management instead ofgcloud beta service-management.

136.0.0 (2016-12-01)

Cloud SDK

gcloud config get-value is now GA.

Google Cloud Service Management

Addgcloud beta service-management undelete.

Google Container Engine

Addgcloud beta container image describe to list container analysis data.
Update Google Container Engine's kubectl from version 1.4.4 to 1.4.6.

Google Cloud Container Builder

gcloud container builds ... are now GA.

Google Cloud Resource Manager

gcloud organizations ... are now GA.
Removedgcloud organizations update.

Google Cloud ML

Addgcloud beta ml local predict to do local prediction.
Deprecate '--instances' flag ingcloud beta ml predict.

Google App Engine

gcloud app instances describe is now GA.
gcloud app services describe is now GA.
gcloud app logs read will now show request logs by default as well asstdout, stderr, and crash.log.
Addgcloud beta app describe, which prints information about the currentApp Engine application.
gcloud beta app deploy can now deploy go apps, without the use ofaedeployorgoapp deploy. Both App Engine Standard and Flexible environments aresupported. If you are usingruntime: custom withaedeploy, you will needto vendor your dependencies into the app directory manually.
Deprecated the configuration propertyapp/gsutil. Affected users are warnedduringgcloud app deploy with instructions on how to update theirconfiguration appropriately.
The App Engine flexible environment now defaults to Python 3.5 when Python 3is requested. To temporarily revert to Python 3.4, specifypython_version: 3.4 in theruntime_config stanza of yourapp.yaml.
Updated app-engine-go component to the 1.9.48 SDK.

Google Compute Engine

Add--service-label flag togcloud alpha compute forwarding-rules create.

Cloud Tools for PowerShell

Add cmdlets to manage Cloud Storage ACLs.

Google Cloud Deployment Manager/Runtime Configuration

Fixedgcloud deployment-manager deployments describe when resourceexpansion fails.

Bigtable Emulator

Bigtable emulator now supportscolumn_range_filter.

Google Cloud Dataproc

Add--service-account flag togcloud dataproc clusters create.

135.0.0 (2016-11-16)

Google Cloud Service Management

gcloud service-management deploy command now supports providing multipleservice configuration or API specification inputs simultaneously. This changeallows creating .proto and YAML based configurations for gRPC services.

Google Container Engine

Change thegcloud container list-tags command to support user-specifiedfilters on occurrences and exposes a column summarizing vulnerabilityinformation.

Google Cloud Resource Manager

gcloud organizations update is now deprecated.

Google Cloud Deployment Manager/Runtime Configuration

Runtime configuration variables can now be set and retrieved using textvalues.

Bigtable Emulator

Now supports macOS Sierra.

Google App Engine

The App Engine flexible environment now includes Python 3.5 support (beta).To preview this runtime, specifypython_version: 3.5 in theruntime_configstanza of yourapp.yamlfile.
Added thegcloud beta app services describe command, which printsinformation about a given service.

134.0.0 (2016-11-09)

Cloud SDK

gcloud info --run-diagnostics flag is now available to diagnose commoninstallation and local network issues.
gcloud init now has a--skip-diagnostics flag.

Google App Engine

App Engine Java SDK updated to 1.9.46.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
Addedgcloud app create command, which creates an App Engine app in thecurrent project.
Addedgcloud app regions list command, which lists support for App EngineStandard and Flexible environments for each geographical region.
gcloud app deploy now offers to create an App Engine app interactively, ifthe current project does not have an app yet.

Google Cloud BigQuery

Add support for specifying a null marker when loading data. See thenull_marker flag within theload command.

Google Compute Engine

gcloud compute instance-groups managed delete shows clean error messageinstead of bare exception on attempt to delete zonal and regional ManagedInstance Groups in one gcloud invocation. Old behavior was to accept andinvoke such request and then fail on waiting for operation complete.
Remove OpenSUSE as a default image option. OpenSUSE images are still availablein the opensuse-cloud project.

133.0.0 (2016-11-02)

Google Cloud Container Builder

gcloud alpha container builds promoted to beta. The following has changed:
- The 'create' command is now called 'submit'.
- The 'stream-logs' command is now called 'log', and will only stream the logif the '--stream' flag is used. Otherwise, it will print only the logcontents available at the time the command was run.

The alpha commands will remain, as is, until at least March of 2017.

Google Compute Engine

regional instance groups are now GA.gcloud compute instance-groups managed
Customer-Supplied Encryption Keys (CSEK) for image creation is now GA. Seehttps://cloud.google.com/compute/docs/disks/customer-supplied-encryption fordetails.

Google Container Engine

Update kubectl to version 1.4.4.

132.0.0 (2016-10-26)

Breaking Changes

(Cloud SDK-wide) Command line flag abbreviations are no longer supported.
(Cloud SDK-wide) Python 2.6 is no longer supported by the Cloud SDK andcommands may not function correctly when run under a Python 2.6 interpreter.Please update your Python installation to 2.7 to ensure compatibility.
- If you have a 2.7 interpreter on your system that is not the default, youcan use the CLOUDSDK_PYTHON environment variable to point to it.
- The last version of the SDK that supports Python 2.6 is 131.0.0, which canbe downloaded from our archive:https://cloud.google.com/sdk/downloads#earlier_versions
(Google Compute Engine/Google Cloud Source Repositories): Google Cloud SourceRepositories scope no longer added by default on instance creation.
(Stackdriver Debugger) Changed the default to true for the--all-usersoption ongcloud beta debug logpoints list command.

Google Cloud Storage

Update gsutil component to 4.22See:https://github.com/GoogleCloudPlatform/gsutil/blob/v4.22/CHANGES.md

Google Compute Engine

Allow specifying both--network and--subnet for the same networkinterface card.

Google Cloud Dataproc

Jobs and clusters now support labels on creation
Jobs and clusters now support filtering by labels and state

Google Container Engine

Google Container Engine cluster upgrade operations can now be cancelled usingthegcloud alpha container operations cancel command. Seegcloud alpha container operations cancel --help for more details.

Cloud Tools for PowerShell

Fix a bug where the module is not picking up the active user credentialscorrectly.
MakeNew-GcsObject-ObjectName parameter optional when uploading a file.
Add ability to pipelineGcsObject toWrite-GcsObject cmdlet.

131.0.0 (2016-10-19)

Cloud SDK

Added PowerShell provider for Google Cloud Storage; allows navigation ofGoogle Cloud Storage buckets as if they were a local file system.When using Cloud Tools for PowerShellcd into gs:\ and typedir to begin.Learn more at https://cloud.google.com/tools/powershell/docs/backup.
App Engine updated to 1.9.45. Java SDK updated to 1.9.44.Please visit the following release notes for details:https://cloud.google.com/appengine/docs/standard/java/release-notes
gcloud config configurations create will now automatically activatespecified empty configuration. Usegcloud config set to populate itsproperties.

Google Cloud Compute

The Customer-Supplied Encryption Keys (CSEK) feature for Google Compute Engineimage creation is now available in the beta release track. Seehttps://cloud.google.com/compute/docs/disks/customer-supplied-encryption fordetails.

Google Container Engine

Added support for creating new clusters and nodepools on preemptibleVM instances in Beta by adding--preemptible. Seegcloud beta container clusters create --help andgcloud beta container node-pools create --help for more details.
Fixed a bug ingcloud alpha container clusters update thatprevented disabling cluster autoscaling. Cluster autoscalingcan now be disabled by running:gcloud alpha container clusters update --disable-autoscaling
Update kubectl to version 1.4.1.

Google Cloud BigQuery

Added support for setting labels on query jobs.Example usage:bq query --label "foo:bar" "select 123".Theshow command outputs any labels set on a job.

Google Source Repository

Change the Cloud Source Repositories scope given by default to Google ComputeEngine Instances and Instance Templates to read_only from full control.

130.0.0 (2016-10-12)

Breaking Changes

Breaking change to --network-interface inalpha compute instances create,andalpha compute instance-images create commands. By defaultinterfaces will have ephemeral IP (was: no external ip).

Google App Engine

App Engine: Thegcloud app deploy command no longer blocks when stopping theprevious version; this should speed up deployment times. Instructions forchecking the status of the stop-version operation are included in the commandoutput.
Support ramdisk volumes in App Engine flexible environments Alpha.

Google Cloud Functions

Addalpha functions regions list command.

Google Cloud ML

Change '--instances=' to'(--json-instances=, --instances= | --text-instances=)' to allowgcloud beta ml predict to read files in UTF-8 encoded text format.

Google Cloud Platform Projects

Add thegcloud alpha projects create command.

Google Compute Engine

Add new key to --network-interface inalpha compute instances create,andalpha compute instance-images create commands: no-address.
Make flag --network-interface visible inalpha compute instances create,andalpha compute instance-templates create commands.

Google Container Engine

Fix a bug ingcloud beta container images list-tags.
Add support for kubernetes labels on new clusters and nodepools by passing--node-labels=label1=value1,label2=value2.... Seegcloud container clusters create --help andgcloud container nodepools create --help for more details andexamples.

129.0.0 (2016-10-05)

Google Cloud Bigtable

gcloud alpha bigtable commands are deprecated and will be removed inrelease 134.0.0. All users should migrate togcloud beta bigtable commands.

Google Cloud ML

Addgcloud beta ml jobs stream-logs JOB [--allow-multiline-logs][--polling-interval=POLLING_INTERVAL; default="60"] [GLOBAL-FLAG ...]to show logs from a running Cloud ML job.

Google Compute Engine

The --replacement flag is no longer required in thegcloud compute images deprecate command.
Add --create-disk flag togcloud alpha compute instances create.
Add --create-disk flag togcloud alpha compute instance-templates create.

Google Container Engine

Can now specify the cluster-version when creating Google Container Engineclusters.
Update kubectl to version 1.4.0.

Google Container Registry

docker-credential-gcr bug fixed.

Go SDK

Update Go SDK component to use 20160927 release, based on Go 1.6.3.

Stackdriver Logging

Added commands to manage logs-based metrics in Stackdriver Logging.

128.0.0 (2016-09-28)

Breaking Changes

Thegcloud auth application-default commands are now in GA.gcloud auth login no longer writes Application Default Credentials, usegcloud auth application-default login instead.

Google App Engine

Java apps that have no app.yaml file are now auto-detected based on aWEB-INF/appengine-web.xml file when launching the dev_appserver.
Fixed timestamp processing issue(https://issuetracker.google.com/issues/35907291) ingcloud app logs read.

Google Cloud Functions

Added the--memory flag togcloud alpha functions deploy to allowconfiguration of amount of memory available during function execution.

Google Cloud ML

Addedgcloud beta ml local train command which runs user code locally andinjects the environment variables necessary for running distributed TensorFlowjobs in subprocesses.
gcloud beta ml jobs submit training now takes a path to a python package,and either (1) builds from the setup.py file at the package root, or (2)generates a setup.py file and builds the package. It then uploads thegenerated tar.gz archives to Google Cloud Storage.

Google Compute Engine

Internal load balancing is now in beta.
Cloud Source Repositories control scope is now included in the list of defaultscopes granted to newly created instances and instance templates.
Added multi-nic support togcloud alpha compute instances create andgcloud alpha compute instance-templates create.

Google Container Engine

Can now create temporary clusters with all kubernetes alpha features enabledusinggcloud alpha container clusters create --enable-kubernetes-alpha.
Added support for kubernetes labels on new clusters and nodepools by passing--node-labels=label1=value1,label2=value2.... Seegcloud alpha container clusters create --help andgcloud alpha container nodepools create --help for more details andexamples.

Google Container Repository

Added the ability to configure where (and in which order)docker-credential-gcr searches for Google Container Registry credentials. Rundocker-credential-gcr config --help for more details.

127.0.0 (2016-09-21)

Google BigQuery

New load/query option in BigQuery client to support schema update within aload/query job.
New query option in BigQuery client to specify query parameters inStandard SQL.

Google Cloud Dataproc

gcloud dataproc clusters create flag--preemptible-worker-boot-disk-sizecan be used to specify future preemptible VM boot disk size.

Google Container Engine

Update kubectl to version 1.3.7.

Google Cloud ML

Newgcloud beta ml predict command to do online prediction.
Newgcloud beta ml jobs submit prediction command to submit batchprediction job.

Google Cloud SQL

New arguments to beta sql instances create/patch commands for Cloud SQLSecond Generation instances:
- --storage-size Sets storage size in GB.
- --maintenance-release-channel Sets production or preview channel formaintenance window.
- --maintenance-window-day Sets day of week for maintenance window.
- --maintenance-window-hour Sets hour of day for maintenance window.
- --maintenance-window-any (patch only) Clears maintenance window setting.

126.0.0 (2016-09-14)

Breaking changes

The HTTP error messages for these command groups have changed to a commonformat:
- gcloud dns
- gcloud genomics
- gcloud logging
Some command groups have not changed yet. That should happen in the nextrelease. You can use--log-http to see the details of all HTTP requests andresponses on the standard error.

Google Compute Engine

Add--connection-draining-timeout flag togcloud compute backend-services{create,update} commands.
Addedgcloud alpha compute instance-groups managed update-instances andstop-proactive-update-instances commands.

Google Cloud Debugger

Thegcloud beta debug source gen-repo-info-file command, which generatesrepository information files for the Stackdriver Debugger, is now available.

Google Container Registry

Thegcloud container images command group is now available in the betarelease track.

Cloud SDK

Addedcore/custom_ca_certs_file property to allow use of a custom CAcertificate file.

Emulators

Cloud Datastore emulator now supports proto-over-HTTP and JSON for the v1 API.This version of the emulator resolves the deserialization issues in 123.0.0.

125.0.0 (2016-09-07)

Google BigQuery

gcloud alpha bigquery is no longer available. To use BigQuery, use thebqtool shipped with the Cloud SDK.

Google Compute Engine

Add support to change the default service account on a Compute Engine project(alpha release) via the following command:gcloud alpha compute project-info set-default-service-account
Support multiple network interface cards ingcloud alpha compute instances create command.
Addgcloud alpha compute instances set-scopes command.

Google Container Engine

Update kubectl to version 1.3.6.

Google Container Repository

Released bug fixes for docker-credential-gcr as v1.0.1, please rerundocker-credential-gcr configure-docker after updating.

Google Cloud Logging

gcloud logging create andgcloud logging update echo back the writeridentity associated with the sink.

Google Cloud Dataflow

The Dataflow CLI is now in Beta.

Google Cloud Deployment Manager

gcloud deployment-manager manifests describe with no manifest specified willshow the latest manifest of the given deployment.

Emulators

gcloud beta emulators datastore start now defaults to the new version of theemulator which supports Cloud Datastore API v1 and v1beta3 over gRPC,proto-over-HTTP, and JSON-over-HTTP.

124.0.0 (2016-08-31)

Breaking Changes

Creating a Global Backend Service in Compute Engine will warn you if you don'tuse --global. In the future this will be required.
Major changes were made togcloud alpha dataflow commands. See Google CloudDataflow section for more information

Google App Engine

Added endpointscfg.py to the app-engine-python component.
Skipped modules during upload will now be logged at INFO level instead ofWARN.

Google Cloud Dataflow

Changes togcloud alpha dataflow commands:
- Changed thejobs list command now has a "status" filter. This change isfrom the JobsV1B3 API. You can now use the API's filter request as either"all", "terminated", or "active".
- Added thelogs list command. This dumps the log messages created from theworkflow. Please see the help docs for more information.
- Renamedmetrics tail tometrics list.
- Renamedmetrics list --origin flag to --source. This can be either "user"for custom-made aggregates or "service" otherwise. This defaults to "all".
- Addedmetrics list --transform flag. This filters all metrics that prefixregex matches the argument.
- Removedjobs list --job-name flag.
- Addedjobs list --uri flag.

Cloud Tools for PowerShell

Add Google Cloud Sql and Google Cloud Dns powershell cmdlets.

Google Cloud Deployment Manager

deployment-manager deployments create with a template file will copythe outputs specified in the schema to the generated config file.

Google Cloud Functions

Add alpha functions logs read command

Google Container Repository

docker-credential-gcr (GCR's Docker credential helper) has been added as anoptional component for GCR customers running Docker client v1.11 or newer. Rungcloud components install docker-credential-gcr followed bydocker-credential-gcr configure-docker in order to configure Docker. You maythen use Docker normally, without any gcloud interaction at all (e.g.docker pull gcr.io/myproject/myimage)

Google Container Engine

Update kubectl to version 1.3.5.

Google Compute Engine

Addedgcloud compute instances stop --discard-local-ssd flag.
Added windows-sql-cloud project to the default public image list.

Cloud SDK

gcloud config get-value is now available in the BETA release track.

Emulators

Cloud Datastore emulator now supports proto-over-HTTP and JSON for the v1 API.

Cloud SQL

New commands added to beta:
- gcloud beta sql backups create
- gcloud beta sql backups create
- gcloud beta sql instances failover
New flags forgcloud beta sql instances create:
- --failover-replica-name
- --replica-type
- --storage-auto-increase
- --storage-type
New flags forgcloud beta sql instances patch:
- --storage-auto-increase
- --no-storage-auto-increase

123.0.0 (2016-08-24)

Google App Engine

Thegcloud beta app regions list command is now available. It shows supportfor the standard and flexible environments for each geographical region.
gcloud app versions describe now shows more extensive information about thedeployed version, including the container used for App Engine Flexible.
Built-in versions will no longer appear when listing App Engine versions(gcloud app versions list).

Cloud SDK

Users can now make logs garbage collection optional by changing the value ofthecore/max_log_days property to 0.
Thegsutil component has been upgraded to version 4.21.

Google Cloud Machine Learning

Addedgcloud alpha ml jobs submit training command to start a Cloud MLtraining job.

Google Compute Engine/Networking

compute networks switch-mode andcompute networks expand-ip-range commandsare now in beta.

Google Container Engine

Image Type selection forgcloud container commands is now GA.

Google Cloud Deployment Manager

gcloud deployment-manager deployments will now displayINTENT whenapplicable.

Emulators

A bug causing the rejection of unpadded base64-encoded bytes data in thePub/Sub emulator (INVALID_ARGUMENT: "Payload isn't valid for request") hasbeen fixed.

122.0.0 (2016-08-17)

Google App Engine

Addedgcloud beta app instances describe, which shows information about arunning App Engine Flexible instance.
Add new flags togcloud alpha functions deploy, hide flags that are beingreplaced with new flags, log a warning when someone uses a flag to bereplaced:
- --bucket to be replaced by--stage-bucket.
- --source to be replaced by--local-path (for code in local file system)and--source-path (for code in Google Code Storage).
- --trigger-gs-uri to be replaced by--trigger-bucket.

Cloud SDK

gcloud init now has an opt-in for listing all user projects, whichcould be in the hundreds. The user can now to opt-in to see all projects,or they can just type in a known project.

Google Cloud Machine Learning

Addgcloud alpha ml models versions group to manage Cloud ML model versions.
Addgcloud alpha ml models group to manage Cloud ML models
Addgcloud alpha ml jobs group to manage Cloud ML training and predictionjobs.

Google Cloud Genomics

Thegcloud genomics pipelines run command now uses the default ComputeEngine zone property if the--zones flag is not specified.

Google Cloud Pub/Sub

Fixed error handling bug ingcloud beta pubsub subscriptions create(https://issuetracker.google.com/issues/35907190).

Google Compute Engine

Enable--health-checks flag for thegcloud beta compute backend-servicescreate andupdate commands.

Google Container Builder

RepoSource is now available as a source for builds.
BuildSteps now respect arbitrary dependencies on each other as defined bythewaitFor field.

Google Container Engine

Update kubectl to version 1.3.4.

121.0.0 (2016-08-10)

Google App Engine

Cloud SDK dev_appserver.py supports running App Engine Standard Goapplications.
gcloud app instances disable-debug now deletes the instance rather thanrestarting it. New instance(s) may spawn based on the app's scaling settings.

Google Cloud Dataproc

Added the--preemptible-worker-boot-disk-size flag togcloud dataproc clusters create.

Google Compute Engine

gcloud compute backend-services session affinity flags have been promotedfrom beta to GA.

Google Container Engine

Changed thecontainer/use_client_certificate property default value tofalse. This makes thegcloud container clusters create andgcloud container clusters get-credentials commands configurekubectl touse Google OAuth2 credentials by default instead of the legacy clientcertificate.

Google Cloud Dataflow

Added thegcloud alpha dataflow jobs drain command. Thedrain commandtakes a streaming job and stops receiving new data from the sources. It thenprocesses the buffered data. For more information please see the documentationfor stopping a running pipeline athttps://cloud.google.com/dataflow/pipelines/stopping-a-pipeline.

Google Cloud DNS

Fix for issue reported in:http://stackoverflow.com/questions/38636010/removing-dns-entries-with-gcloud.

Stackdriver Error Reporting

Addedgcloud beta error-reporting events report command for reportingerrors.

120.0.0 (2016-08-03)

Deployment Manager

deployment-manager resources list will show INTENT when the resource STATEisIN_PREVIEW.
deployment-manager deployments describe will show output values in additionto listing the resources.

Emulators

Added agcloud beta emulators bigtable env-init command to exportenvironment variables required to communicate with the bigtable emulator.
The Pub/Sub emulator now correctly starts the push loops when creating a pushsubscription.

Google Cloud DNS

gcloud dns now supports CAA records.

Google Cloud Storage

Update gsutil component to 4.20.See:https://github.com/GoogleCloudPlatform/gsutil/blob/v4.20/CHANGES.md

Google Compute Engine/Networking

gcloud alpha compute instance-groups managed wait-for-stable command waitsuntil allcurrent_action fields are set to none and there are only nopending_actions in managed instance group.
gcloud compute xpn commands now available in the alpha release track. Thesecommands configure cross-project networking.
gcloud compute networks subnets {get,set}-iam-policy commands now availablein alpha.

Google Container Engine

Update kubectl to 1.3.3.

119.0.0 (2016-07-27)

Google BigQuery

Added support for dataset labels. See:https://cloud.google.com/bigquery/docs/labeling-datasets for more details.
Now sending progress output to stderr and query output to stdout. This fixeshttps://issuetracker.google.com/issues/35906906.

Google Cloud SDK

gcloud auth login will stop writing application default credentials in afuture release. See:https://developers.google.com/identity/protocols/application-default-credentials#toolcloudsdkfor more information.
Command line flag abbreviations are now deprecated and produce warningmessages. Flag abbreviations will be completely disabled in release 130.0.0.This pre-empts the problem of future flag additions making some flagabbreviations ambiguous, possibly breaking scripts.

Google Cloud SQL

Added thegcloud beta sql users command group with commands that enablemanagement of users on Cloud SQL instances.

Google Cloud Platform Projects

gcloud alpha projects update now support labels.

Google Container Engine

Added thedelete command to thegcloud alpha container images commandgroup.

118.0.0 (2016-07-20)

Emulators

There is a newgcloud beta emulators start bigtable command for starting aCloud Bigtable emulator.

Google Compute Engine/Networking

gcloud alpha compute backend-services andforwarding-rules commands nowsupport the internal load balancing scheme. Please use--load-balancing-scheme=internal flag when creating these resources.In additiongcloud alpha compute forwarding-rules create supports--backend-service flag to allow forwarding to internal load balancers.
Beta release ofcompute connect-to-serial-port command forInteractive Serial Console support. Seehttp://cloud.google.com/compute/docs/instances/interacting-with-serial-consolefor details.

Google Container Engine

Bump kubectl from 1.2.4 to 1.2.5.

SQL

gcloud beta sql instances create supports new database type MYSQL_5_7.

Cloud Tools for PowerShell

Beta launch of Google Cloud PowerShell. PowerShell cmdlets for managingGoogle Cloud Storage and Google Compute Engine.For more information seehttps://googlecloudplatform.github.io/google-cloud-powershell.

117.0.0 (2016-07-13)

Google Compute Engine

Regional Managed Instance Groups commands are now in beta.
target-ssl-proxies commands are now in beta.
Connection-based load balancing commands are now in beta.
Added--connection-draining-timeout flag togcloud beta compute backend-servicescreate andupdate commands.
health-checks command group is now in beta.

Google Container Engine

Local SSDs are now supported for clusters via the--local-ssd-countflag (in beta).
Added--additional-zones flag togcloud beta container clusters update.

Google Container Builder

Thegcloud alpha container builds create command now supports usingJSON or YAML config files to configure builds, using the--config flag.

116.0.0 (2016-06-29)

Breaking Changes

gcloud alpha dataflow list-messages datetime values are now displayed inISO 8601 format: 2015-01-15T12:31:07 ('T' separating the date and timecomponents).

Google App Engine

Thegcloud app surface is now available in the GA and beta release tracks.Please usegcloud app instead ofgcloud preview app (some features onlyavailable in the beta release track).
Addgcloud app open-console command, which opens the App Engine dashboardin a web browser.

Google Cloud Datastore emulator

The Cloud Datastore emulator can accept an IPv6 address for the--host-port argument.
Cloud Datastore emulator no longer fails when trying to load an index.yamlfile.

Google Container Builder

Thegcloud alpha container builds command group creates and managesbuilds using the Google Container Builder service. Seehttps://cloud.google.com/cloud-build/docs/ for API documentation.

Google Cloud Dataproc

Added--preemptible-worker-boot-disk-size flag, which allows configurationof preemptible worker boot disk, togcloud beta dataproc clusters create.

Google BigQuery

New query option in BigQuery client to specify a limit on bytes billed forthe query.

Google Cloud Bigtable

Addedgcloud beta bigtable instances group to manage Bigtable instances.
Addedgcloud beta bigtable clusters group to manage Bigtable clusterswithin instances.
Known issue:gcloud beta bigtable instances create is an asynchronousoperation by default and will not block with or without the--async flag.

115.0.0 (2016-06-22)

Breaking Changes

(Google Compute Engine) Thedebian-7 anddebian-7-backports imagealiases have been removed, as Debian 7 has reached end-of-life
(Google Compute Engine) The--port-range flag in thegcloud computeforwarding-rules create command has been deprecated; please use the--ports flag instead. At this time only consecutive ports can bespecified.
(Google Compute Engine)gcloud alpha compute rolling-updates commandshave been deprecated and removed.
(Google Container Engine) The--wait flag for thegcloud containerclusters command group is now deprecated; please use the--async flaginstead.

Cloud SDK

Users will now be prompted to set Cloud SDK proxy properties if networkissues are detected while runninggcloud init.

Google Compute Engine

gcloud compute backend-services {create,update} --enable-cdn flag has beenpromoted from beta to GA.
gcloud compute url-maps invalidate-cdn-cache has been promoted from betato GA.
The--remote-traffic-selector flag ingcloud compute vpn-tunnels create,which allows specifying a list of CIDR blocks to be used during IKE\IPsectraffic selectors negotiation, is now available in the GA release track.

Google App Engine

Addgcloud preview app versions describe command.

Deployment Manager

(beta only) deployment-manager now supports rollbacks with the--manifest-id flag:gcloud beta deployment-manager deployments updatedeployment-name --manifest-id=MANIFEST-ID

Docker

gcloud docker now respects the$DOCKER_CONFIG environment variable

Emulators

The Cloud Datastore emulator now has anenv-unset command which prints thecommands to unset any environment variables set by running the commands inthe output of theenv-init command.

114.0.0 (2016-06-15)

Breaking Changes

(Google Compute Engine) Deprecated the use of image aliases. Please useimage families instead. See https://cloud.google.com/compute/docs/images formore details.
(Google App Engine) Removed the deprecated and unused--force flag forgcloud app deploy.
(Google Cloud Debugger) Removedgcloud alpha debug command group; debugcommands are now accessible solely usinggcloud beta debug.

Google Compute Engine

The Customer-Supplied Encryption Keys (CSEK) feature for Google ComputeEngine disks is now available in the GA release track. Seehttps://cloud.google.com/compute/docs/disks/customer-supplied-encryption formore details.
Added autocompletion for the URL map name ingcloud compute url-maps invalidate-cdn-cache.
Addedgcloud alpha compute networks switch-mode command.
Addedgcloud alpha compute networks subnets expand-ip-range command.
Added--remote-traffic-selector flag, which allows specifying a list ofCIDR blocks to be used during IKE\IPsec traffic selectors negotiation, togcloud beta compute vpn-tunnels create
Fixedgcloud compute routes list command to display vpn-tunnel asNEXT_HOP.

Google App Engine

Parallelized source file uploads ingcloud preview app deploy forincreased speed. To revert to the old behavior in event of a problem, pleaserungcloud config set app/num_file_upload_processes 1and report an issue here:https://issuetracker.google.com/issues/new?component=187143
Google App Engine components updated to 1.9.38.Please visit the following release notes for details:
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes
Added support for Managed VMs instances ingcloud preview app instances enable-debug andgcloud preview app instances disable-debug.

Docker

Fixed a bug where Windows users experienced docker authentication issueswhen the%HOME% variable was set and differed from%USERPROFILE%

Emulators

Fixed behavior of Pub/Sub emulator subscription topic names when theirrespective topics are deleted. They should now be set to_deleted-topic_.

113.0.0 (2016-06-08)

Cloud SDK

gcloud now uses Internet Explorer proxy configuration settings when onWindows, or MacOSX SystemConfiguration proxy settings on Mac, if the gcloudconfigurationsproxy/* are not set.

Google Compute Engine

gcloud compute ssh no longer generates keys when invoked with --plain flag.
gcloud compute routers is now GA.

Google Genomics

gcloud genomics pipelines run command supports passing "inputs" and"outputs" as repeated parameters.

112.0.0 (2016-06-01)

Cloud SDK

Updated error messages forgcloud projects surface.
gcloud docker commands now take less time to execute when the Docker clientis not configured to use a credential helper.

Google App Engine

The--docker-build flag and relatedapp/docker_build property, as well asapp/use_cloud_build property have been deprecated and will be removed in afuture release. By default, Docker images are built remotely using GoogleContainer Builder. To perform a Docker build on a different host, you can run:
docker build -t gcr.io/project/service.version .gcloud docker push gcr.io/project/service.versiongcloud preview app deploy --image-url=project/service.version

Google Compute Engine

Added--licenses flag togcloud compute images create.

Google Container Engine

Fixed bug where only 16-bit kubectl was installed on Windows.Now Installs 32 and 64-bit.

Google Genomics

gcloud alpha genomics datasets/callsets name argument is a flag,instead of positional.
gcloud alpha genomics pipelines run command now accepts "zones"command-line argument.
gcloud alpha genomics datasets restore/update andvariantsets delete/describe now take string IDs instead of ints.

Deployment Manager

gcloud deployment-manager deployments describe output only reports errorsonce, includes status for resources, and includes more useful fields.

111.0.0 (2016-05-25)

Google App Engine

gcloud docker commands are now less verbose during the authenticationoperation.

Google Container Engine

gcloud container clusters update command now GA.
gcloud container node-pools commands are now GA.

Google Compute Engine

Enabled Strict Host Key Checking for SSH connections (after the firstconnection) to instances. Also adds a new flag togcloud compute sshcalled--strict-host-key-checking to control the StrictHostKeyCheckingoption.
Add support for customer-supplied encryption keys togcloud beta computeinstances start. (in beta track)
Implemented backend-service connection based balancing mode.

Google Service Registry

Launchedgcloud alpha service-registry. (alpha track)Users will need to sign upherebefore enabling this API in their projects.

Deployment Manager

Addedgcloud alpha deployment-manager runtime-configs. Alpha commands forDeployment Manager's Runtime Config API.

Emulators

Adds a--legacy flag to gcloud beta emulators datastore. The flag is setby default and maintains existing behavior with support for Cloud DatastoreAPI v1beta2. Passing--no-legacy uses a new version of the Cloud DatastoreEmulator which supports Cloud Datastore API v1beta3 over gRPC, JSON, andproto-over-HTTP. The default behavior of the legacy flag will change in afuture release.

Organizations

Launchedgcloud alpha orgranizations. (alpha track)

110.0.0 (2016-05-18)

Google IAM

Thegcloud iam command group is now available in GA. Thegcloud beta iamwill still be available for several more releases.

Google App Engine

Fixed issue with the--docker-build=local flag in thegcloud preview appdeploy command with docker version 1.10+. Note that local Docker buildswith Docker version 1.11 will still fail when using the new Docker externalcredentials; please downgrade to the plain credential store.https://issuetracker.google.com/issues/35906927

Google Container Engine

gcloud beta container commands (e.g.container create) now supportspecifying ImageTypes.
Thegcloud container clusters list command now sorts the clusters based onzone and then on cluster name.
Thegcloud container clusters create command now allows specifying--max-nodes-per-pool (default 1000) to create multiple node pools for largeclusters.

Google Compute Engine

Thegcloud compute backend-services backend commands now support--instance-group-zone and --instance-group-region to qualify instance groupspecifically. Before --zone, --region was used to qualify all resourcearguments, where as now it is used to qualify backend service.

Google Genomics

Thegenomics variantsets create command now supports the --name and--description flags.
Thegenomics variantsets delete command displays the name of the variantset before prompting the user to delete it.
The genomicsvariantsets describe/list commands display variant set namesand descriptions.

Emulators

The Google Cloud Datastore emulator supports a new environment variable forclient library configuration.
The Google Cloud Datastore emulator flag --store-on-disk has been fixed toaccept a false value using --no-store-on-disk. Previously,--store-on-disk=False could be specified but wasn't respected.

Debug

TheThe gcloud debug command group is now in Beta.

Misc.

The Cloud SDK Windows installer is now dual signed SHA1 and SHA256. Theexecutable is signed with both authenticode and RFC3161 signatures.
The winkeygen.exe executable is also now dual signed, like above.

109.0.0 (2016-05-11)

Google App Engine

Google App Engine components updated to 1.9.37.
- Please visit the following release notes for details:
  - Python - https://cloud.google.com/appengine/docs/standard/python/release-notes
  - Java - https://cloud.google.com/appengine/docs/standard/java/release-notes
Fixed issue with failed uploads in gcloud preview app-deploy(https://issuetracker.google.com/issues/35906909).
Deprecated --server flag for app commands; its use is unsupported.

Google Compute Engine

Removed thegcloud alpha compute autoscaler command group.
Removed deprecatedgcloud compute backend-services add-backend --groupflag in favor of --instance-group.
gcloud compute copy-files now exits with the return code of the calledscp process.
Added support for customer-supplied encryption keys to thegcloud beta compute disks snapshot command.
Remove google-containers from default gcloud public image project.

Google Container Engine

Fixed bug listing clusters with no node pools.
gcloud container resize command now supports multi-zone clusters.

Google Error Reporting

Added thegcloud beta error-reporting events delete command to cleanupStackdriver Error Reporting data.

108.0.0 (2016-05-04)

Breaking Changes

Thegcloud preview app modules get-logs command is now deprecated. Pleaseuse the new commandgcloud preview app logs read instead.

Google App Engine

Fixed a bug which causedgcloud preview app deploy to fail when run from agit directory.

Google Cloud SDK

Deprecated user property files (~/.config/gcloud/properties) will no longerbe read by gcloud. If you are not already usingconfigurations, yourproperties will be automatically migrated for you. No action is required onyour part.
The--format flag now supports four more transforms:extract,join,slice, andsplit.

Google Cloud Debugger

Added thegcloud alpha debug snapshots wait command.

Google Compute Engine

Thegcloud alpha compute instance-groups managed list-instances commandoutput now includes theINSTANCE_TEMPLATE andSTATUS columns.

Google Container Engine

Update kubectl to v1.2.3

Google Genomics

gcloud alpha genomics variants describe/delete/update commands now acceptnon-integer variant IDs.

107.0.0 (2016-04-27)

Google Compute Engine

Enable cursor ("start") support for get-serial-port-output in Beta.
Add tail-serial-port-output in Beta.
Image families are now in General Availability (GA).

Google App Engine

Google App Engine components updated to 1.9.36.
- Please visit the following release notes for details:
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes

Deployment Manager

Creating and updating Deployments will now display output values in additionto listing the resources.

Google Container Engine

gcloud container clusters resize now allows specifying a node pool.

Cloud Debugger

Addedgcloud alpha debug command surface to allow control of theCloud Debugger from the command line.

Google BigQuery

BigQuery support for partitioned tables.

106.0.0 (2016-04-20)

Breaking Changes

Python 2.6 support in the Cloud SDK is deprecated and releases will stopsupporting Python 2.6 on September 1, 2016. Please update your Pythoninstallation to 2.7 to ensure compatibility with future Cloud SDK versions.
gcloud preview app modules commands are now deprecated (see "Google AppEngine" section for more details).
module parameter in application .yaml files is now deprecated (see "GoogleApp Engine" section for more details).
--format printer legend attributes are now deprecated (see "Cloud SDK"section for more details).

Cloud SDK

The --format printer legend attributes are deprecated and will be removed inrelease 124.0.0. The legend attribute docs have been removed.
The gcloud compute, functions, genomics, logging, and projects list commandsnow support the--filter flag.

Google Cloud Storage

Update gsutil component to 4.18 (https://github.com/GoogleCloudPlatform/gsutil/blob/v4.19/CHANGES.md)

Google App Engine

App Engine "modules" are being renamed to "services".
- Thegcloud preview app modules commands are now deprecated (exceptgcloud preview app modules get-logs). Please use the just-addedgcloud preview app versions,gcloud preview app services, andgcloud preview app instances commands instead.
- The 'module' parameter in application .yaml files is deprecated; pleaseuse 'service' instead.
FixedMaxRetrialsException forgcloud preview app deploy of standard(not MVM or flexible) App Engine apps with.git directory present(https://issuetracker.google.com/issues/35906804).
Fixed bug ingcloud preview app deploy where--docker-build=local didnot work whenapp/use_cloud_build was enabled.

Google Compute Engine

Add--no-creation-retries flag tocompute instance-groups managed resizecommand in alpha and beta.

Google Container Engine

Fix bug that caused kubectl component to be missing from components list onWindows.
gcloud container clusters create now allows specifying multiple zoneswithin a region for your cluster's nodes to be created in.
Update kubectl to v1.2.2

105.0.0 (2016-04-13)

Breaking Changes

health-checks commands for protocol HTTP2 have been removed.
Rename thealpha compute url-mapsinvalidate-cache andlist-cache-invalidations subcommands toinvalidate-cdn-cache andlist-cdn-cache-invalidations, respectively.

Cloud SDK

Suppress progress tracker animations if not outputting to a terminal.
gcloud components list now supports the--filter flag and queries like:gcloud components list --filter=id:app-engine-java--format="value(state.name)"

Google Compute Engine

Promote Cloud CDN functionality from alpha to beta.

Google App Engine

File uploads during gcloud preview app deploy have been improved. If you haveany trouble, you can revert to the old behavior withgcloud config set app/use_gsutil true.

104.0.0 (2016-04-06)

Cloud SDK

gcloud init no longer offers to cloneGoogle Cloud Repositories.Please usegcloud source repos clone at any time after runninggcloud init.

Google Compute Engine

gcloud beta compute commands now support image families.

Google App Engine

Users ofgcloud preview app deploy can set the timeout for theContainer Builder service using the app/cloud_build_timeoutproperty.

Google Container Engine

kubectl component is now available for Windows (64-bit only).
gcloud alpha container clusters update now allows enabling/disablingaddons for Container Engine clusters via--update-addons flag.
gcloud container clusters create now supports disablingHPA and Ingress controller addons via--disable-addons flag.

Google Genomics

gcloud alpha genomics variants import now supports configurable variant infofield merging via the info_merge_config command line flag.

103.0.0 (2016-03-30)

Google Cloud Storage

Update gsutil component to 4.18 (https://github.com/GoogleCloudPlatform/gsutil/blob/v4.18/CHANGES.md)

Google App Engine

Add fingerprinting support for PHP applications. You can now rungcloud preview app gen-config to auto-generate the necessary configurationfor deploying PHP applications to the App Engine Flexible Environment.

Google Container Engine

gcloud container clusters create|get-credentials will warn/errorrespectively if the HOME env var isn't set. The variableis required to store kubectl credentials (kubeconfig).

Google Compute Engine

Enable support for: gcloud compute disks resize.

102.0.0 (2016-03-22)

Breaking Changes

Thegcloud alpha container nodepools commands have been renamed tonode-pools. Functionality and parameters haven't changed.
gcloud beta iam list-grantable-roles now returns a list of roles instead ofa dictionary with a single key 'roles' with the value of a list of roles.
gcloud config configuration describe output has changed to include theconfigurationname andis_active fields. All configuration properties arenow part of theproperties field.

Cloud SDK

--format=json and --format=yaml now list resource attributes with null values.

Google App Engine

Use of the Google Container Builder service is now enabled by default forall managed VMs deployments.
This change may require you to enable the Container Builder API. Visithttps://console.developers.google.com/apis/api/cloudbuild.googleapis.com/overview?project=*PROJECT_ID*;to enable it, wherePROJECT_ID is your current project ID.
Updated Google App Engine components to 1.9.34.Please visit the following release notes for details:
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes

Google Compute Engine

Addedgcloud compute backend-services session affinity commands.
Addedgcloud compute http-health-checks andhttps-health-checks commands.
Addedgcloud alpha compute target-ssl-proxies commands.
Extendedgcloud compute forwarding-rules to supporttarget-ssl-proxies.

Google Container Engine

gcloud container clusters list will output a warning if there were zonesfor which it could not retrieve results.
Updated kubectl to version 1.2.0.

101.0.0 (2016-03-16)

Billing

Addedgcloud alpha billingcommand surface.

Google App Engine

App Engine components updated to 1.9.34. Please visithttps://cloud.google.com/appengine/docs/standard/python/release-notes for the Pythonrelease notes andhttps://cloud.google.com/appengine/docs/standard/java/release-notesfor the Java release notes.

Google BigQuery

Updated thebq tool to version v2.0.24. Also includes fix forhttps://issuetracker.google.com/issues/35906711.

100.0.0 (2016-03-09)

Breaking Changes

gcloud preview app deploy deployments that promote the new version toreceive all traffic will stop the previous version by default.
To keep the previous behavior, pass the--no-stop-previous-version flag,or run the following command:
$ gcloud config set app/stop_previous_version false

Cloud SDK

Providing no argument for list- and dict-type flags now results in a warning.Instead, please explicitly provide an empty string value. For instance,gcloud command --flag becomesgcloud command --flag '' (for list- anddict-type flags only).

IAM

Addedgcloud beta iam list-grantable-roles command for givencloud resource.

Google App Engine

FixedWindowsError: [Error 32] in thegcloud preview app deploy commandon Windows. Fixeshttps://issuetracker.google.com/issues/35906633.

Google Container Engine

Added node pool support to enable heterogeneous clusters (alpha).

99.0.0 (2016-3-2)

Breaking Changes

Support for the deprecated workspace configurations feature has been removed.If you are using gcloud in a workspace, those properties will no longer beread. Seegcloud topic configurations for information on how to useconfigurations instead.

Cloud SDK

Enable gcloud to run in Cygwin 64 bit environments.
Fail gracefully on unreadable Google Compute Engine credential file. Fixeshttps://issuetracker.google.com/issues/35906539.

Google App Engine

App Engine components updated to 1.9.33. Please visithttps://cloud.google.com/appengine/docs/standard/python/release-notes for the Pythonrelease notes andhttps://cloud.google.com/appengine/docs/standard/java/release-notes for the Javarelease notes.
Addedgcloud preview app browse command.
Fixed a race condition that caused errors while deploying App Engine ManagedVM applications.
Fixed a TLS-related error during gcloud preview app deploy. Alleviates theproblem inhttps://issuetracker.google.com/issues/35906638.

Google Compute Engine

routers surface moved to beta and is now accessible viagcloud beta compute routers

Google Cloud Dataproc

Add--subnet flag togcloud dataproc clusters create.

Google Cloud Genomics

genomics alpha operations cancel assumes theoperations/ prefix if notpresent.

Google Cloud Storage

Update gsutil component to 4.17

98.0.0 (2016-2-24)

Release 95.0.0 introduced a bug that generated corrupt keys for Windows gcloudcompute ssh|copy-files. Any keys generated on Windows between 95.0.0 and97.0.0 inclusive are rejected by ssh servers.gcloud compute has beenchanged to:
- Fix the winkeygen Windows key generator.
- Recognize corrupt Windows keys and automatically regenerate them.
Fixed#538.Users should no longer get "gsutil ImportError: No module named google"errors.

Google App Engine

MySqldb "latest" version changed from 1.24b4 to 1.2.5.

Emulators

Improves Pub/Sub emulator's ability to handle requests concurrent with HTTPpull requests.
The Pub/Sub emulator attempts to detect and inform users when an unsupportedAPI version is used.
The Pub/Sub emulator now correctly handles absolute URIs in HTTP/Jsonrequests.

Windows support

Google Cloud SDK no longer needs Python installed when using the WindowsInstaller. The SDK for Windows comes with Python bundled.

97.0.0 (2016-2-17)

Breaking Changes

gcloud alpha compute routers now requires manual configuration of interfaces

Google Compute Engine

Added flag--advertised-route-priority togcloud alpha compute routerscreate
Added support for regional instance groups in alpha

Google App Engine

Ruby runtime now uses the Rack "deployment" environment, instead of "none"

Google Container Engine

Added--master flag togcloud container clusters upgrade

96.0.0 (2016-2-10)

Breaking Changes

Google App Engine

Google App Engine components updated to 1.9.32. Please visit the followingrelease notes for details:Python - https://cloud.google.com/appengine/docs/standard/python/release-notesJava - https://cloud.google.com/appengine/docs/standard/java/release-notes
Thegcloud preview app gen-config command now offers to automatically updatethe runtime field in app.yaml if necessary.

IAM

Thegcloud beta iam command group has launched.

Emulators

The Pub/Sub emulator now supports Gzip-encoded requests.

Google Compute Engine

The gcloud compute copy-files|scp commands on Windows now treat path argumentswith a drive prefix as local files.

Configurations

Theconfig configurations delete command now takes multiple configurationnames.

Containers

kubectl is updated to v1.1.7.
Bugfix on thegcloud container clusters get-credentials when run from aclient without edit permissions.

Misc. Changes

The default floating point output format precision is 6. Exponent notation isused for abs(n) < 1e-04 and abs(n) >= 1e+09.
The arrow and page up/down/home/end keys now work in the Windows help pager.

95.0.0 (2016-2-3)

Breaking Changes

Usegcloud compute networks create --mode=legacy to create non-subnetnetworks.

Google Compute Engine

gcloud compute copy-files andgcloud compute ssh on Windows now usestandard PuTTY plink.exe, pscp.exe and putty.exe. A standalone winkeygen.exegenerates PuTTY and ssh compatible keys. The Windows PuTTY executables are upto date at version 0.66.

Google Compute Engine subnets

Addedgcloud compute networks subnets.
Added--mode flag togcloud compute networks create.
Added--subnet flag togcloud compute instances create andgcloud compute instance-templates create.
Added--local-traffic-selector flag togcloud compute vpn-tunnels create.

Google App Engine

Added support for streaming logs when theuse_cloud_build=1 property is set.
Moved the nodejs install script into the docker image.

Projects

gcloud projects update|undelete|delete have been moved to beta.

gcloud --format

Added nested table formatting by--format="table(field1,listField2:format=FORMAT-STRING)" whereFORMAT-STRING can be any format (json, table, ...).Try:gcloud compute instances list--format="table[box](name, disks:format='table[no-heading](deviceName:sort=1,kind)')"
Added list field aggregation formatting (similar to nested formatting) by--format="table(listField2:format=FORMAT-STRING)". When the main tablehas no columns each nested format is aggregated into a single list.Try:gcloud compute instances list--format="table(disks:format='table[box](deviceName:sort=1, kind)')"

94.0.0 (2016-1-27)

Google Compute Engine

Addedgcloud alpha compute url-maps list-cache-invalidations command.

Google App Engine

Google App Engine components updated to 1.9.31. Please visit the followingrelease notes for details:Python - https://cloud.google.com/appengine/docs/standard/python/release-notesJava - https://cloud.google.com/appengine/docs/standard/java/release-notes
Added--runtime flag togcloud preview app gen-config to specify a runtimewhen a directory identifies as multiple runtimes. This flag can be used inconjunction with--custom.

Google Container Engine

gcloud container cluster describe andlist commands now notify the userwhen their cluster versions are about to go out of support or are unsupported.

Google Cloud Logging

gcloud beta logging write andgcloud beta logging logs delete commands nowuse the V2beta1 API. Thegcloud beta logging write command now uses theglobal resource descriptor (which translates to "custom.googleapis.com"service in V1).

Cloud Dataproc

gcloud beta dataproc clusters create now supports--tags and--metadataflags to set instance tags and metadata on all instances in the Dataproccluster.

Pub/Sub Emulator

A new --host flag can be used to specify the address the emulator should bindas. The flag can be left unspecified, set to "localhost", a hostname, or anexplicit IP address.

Projects

Added commandsget-iam-policy,set-iam-policy,add-iam-policy-binding,andremove-iam-policy-binding for thegcloud beta projects surface.
Added thegcloud projects list command that can be used to list projects.

93.0.0 (2016-1-20)

kubectrl upgraded to 1.1.4.
gcloud beta dataproc cluster create now supports--properties flag to setproperties for installed packages.
Datastore emulator'sDATASTORE_LOCAL_HOST environment variable changed toDATASTORE_EMULATOR_HOST.
gcloud source repos clone now supports--dry-run flag to show equivalentgit command.

92.0.0 (2016-1-13)

Because of the rollback of 91.0.0, this release contains all of the changesfrom 91.0.0 in addition to the changes listed below.

Breaking Changes

gcloud preview app deploy
- Changed deployments to set the deployed versions to receive all trafficfor their modules by default.
  To keep the old behavior (traffic split remains the same), use the--no-promote flag or rungcloud config set app/promote_by_default true.
  Note that your old versions are still running, and must be stoppedmanually. This behavior will change in a future release.
- Removed deprecated--set-default flag. Please use--promoteinstead.
- gcloud preview app deploy: Removed deprecated--env-vars flag.
The output of thegcloud preview app modules list command has beenchanged to include the traffic split percentage instead of the 'defaultversion' field.
Removed deprecatedgcloud preview app modules cancel-deployment command.
This command is no longer necessary due to recent improvements in theDeployment API.
Removed deprecatedgcloud preview app modules download command.
This command is no longer necessary due to recent improvements in theDeployment API.
Removed deprecatedgcloud preview app run command. Please usedev_appserver.py instead.
Changed behavior of the--zone/-z flag in thegcloud dns record-setscommand group. This flag can no longer precede the command. For instance,gcloud dns record-sets -z=mz list will not work, butgcloud dns record-sets list -z=mz will.
Changed--password-file option forsql instances set-root-password;password now does not include trailing newline from password file. Thismatches the documented behavior, but not the previous behavior.(Fixes https://issuetracker.google.com/issues/35906498)
Removedmeta/active_configuration from the results ofgcloud config listsince it is not a property that can be set. You can continue to use thegcloud config configurations commands to view and manage yourconfigurations.

Cloud SDK

Addedgcloud config proxy settings. Users can configuregcloud to use aproxy via the following settings:
- gcloud config proxy/address
- gcloud config proxy/password
- gcloud config proxy/port
- gcloud config proxy/type
- gcloud config proxy/username
Addedalpha andbeta components to Debian packages.
Removed unused config properties:app/hosted_registry,app/host,app/admin_host,app/api_host.

Google Cloud Logging

Migrated tov2beta1 APIrelease.
- Movedgcloud beta logging sinks commands tov2beta1.
- Addedgcloud beta logging resource-descriptors command to displaysupported resources from various services.
- Addedgcloud beta logging read command to retrieve log entries usingfilters.

Google Container Engine

Addedgcloud container clusters resize for resizing Container Engineclusters.
Added notifications when node upgrades are available togcloud containercluster describe andlist commands.

Google App Engine

Fixed bug where initial deployments using--image-url failed.
Changedgcloud preview app modules set_default command to use the AppEngine Admin API.
Changedgcloud preview app modules list command to use the App EngineAdmin API.

91.0.1 (2015-12-16)

The Cloud SDK has been rolled back to 90.0.0.

91.0.0 (2015-12-16)

Breaking Changes

Deprecated command groupgcloud compute replica-pools has been removed.
Deprecated command groupgcloud compute resource-views has been removed.
App Engine API is now the only supported method for deploying in thegcloud preview app deploy command.

Google App Engine

DEPLOYABLES argument forgcloud preview app deploy is now optional. If notgiven, the command defaults toapp.yaml in the current directory; if thatis not found, it attempts to automatically generate necessary configurationfiles (such as app.yaml) in the current directory before deployment.
--force argument togcloud preview app deploy is now deprecated and willbe removed in a future release.

Container

gcloud container commands that poll long running operations (e.g create,delete, upgrade) now display progress details when available.

90.0.0 (2015-12-09)

Cloud SDK release version scheme has changed. Patch version is now treated asa major release version which corresponds to SDK weekly releases.Any updates/fixes to released version will increment minor/patch versionnumber going forward.

Breaking Changes

The deprecated flag --clear-target-pool has been removed fromgcloud compute instance-groups managed set-target-pools command.

Google App Engine

Components updated to 1.9.30.Please visit the following release notes for details:
- Python - https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java - https://cloud.google.com/appengine/docs/standard/java/release-notes
Fixed a bug caused by uploading invalid file names for vm: true applications.

Compute

Subnetwork support has been promoted from alpha to beta. For more informationsee https://cloud.google.com/compute/docs/subnetworks.

0.9.89 (2015-12-02)

Breaking Changes

Removed flag--container-ipv4-cidr forgcloud container clusters create;please use--cluster-ipv4-cidr instead.
Renamedgcloud alpha compute vpn-tunnels create --ike-networks to--local-traffic-selector.
gcloud alpha compute resource-views commands will soon be removed. Pleaseusegcloud compute instance-groups unmanaged commands instead.
gcloud alpha compute replica-pools commands will soon be removed. Pleaseusegcloud compute instance-groups commands instead.

`gcloud` Core

Changed behavior ofgcloud init git repository clone option. It now takesas input a path to the destination directory for the repository,rather than the parent directory of the repository destination.

BigQuery

Fixed failure ingcloud alpha bq query "select * from ..." commandwhile displaying query results.

Compute

Fixedgcloud alpha compute instances set-machine-type failure whensupplying custom cpu/custom memory, but no zone.
Added a new scope alias for Cloud Monitoring:monitoring-write. This scopeis on by default in all new VMs.

Google Cloud DNS

Added--replace-origin-ns flag togcloud dns record-sets import commandto allow importing NS records.

Google Cloud Storage

Updatedgsutil component to 4.16.

Google Container Engine

Updated kubectl to version 1.1.2.
Increasedgcloud container clusters create/delete timeouts from 20m to30m.
Added--subnetwork flag togcloud container clusters create to allowcreation of container clusters can now be created in a Google Compute Enginesubnetwork (https://cloud.google.com/compute/docs/subnetworks).

0.9.88 (2015-11-25)

Breaking Changes

Thegcloud preview app run command has now been removed. Please use thebundleddev_appserver.py script directly instead.
App Engine: The 'version' and 'application' fields in module and configurationfiles are now illegal. Project name should instead be specified either bygcloud config set project MY_PROJECT or by setting the--project flag onindividual command executions. Versions are generated automatically by defaultbut can also be manually specified by setting the--version flag onindividual command executions.

App Engine

Don't do runtime identification for custom runtimes during deploy. This fixesissue#387.
Thedev_appserver.py script no longer requires the installation of all AppEngine components. It will install only the necessary ones at run time.Fixes#273

Core

Added thegcloud components install command. This allows you to installmissing components at the version of the SDK you currently have (it does notupdate your SDK installation).gcloud components update should now only beused to update your SDK to the latest version.
Fixes#293 related SSLcertificate validation issues.
Use zsh builtins in path.zsh.inc for faster/cleaner shell startup.

0.9.87 (2015-11-18)

Compute

gcloud alpha compute instances create now supports --custom-cpu and--custom-memory flags to specify custom machine types.

Dataproc

Addedgcloud beta dataproc clusters diagnose command. Seehttps://cloud.google.com/dataproc/support/diagnose-command for more info.

Google Container Engine

Updated kubectl to version 1.1.1.

0.9.86 (2015-11-11)

App Engine

Generated node.js Dockerfiles now add the full application context beforerunning install hooks.
For Google App Engine Node.js runtimes, install requested version of nodeprior to doing an npm install.

Compute

gcloud beta compute instances set-machine-type has been promoted from alphato beta,

0.9.85 (2015-11-04)

Breaking Changes

gcloud alpha compute networks create now requires --mode flag.

App Engine

Added the --output-directory option to gen-repo-info-file command. This optionsupersedes --output-file, which is deprecated and will be removed in a futurerelease.
Improved error message when specified yaml file is not found.

Compute

Launchinggcloud alpha compute networks subnets.
gcloud compute alpha instance-templates andinstances now supportsubnetworks.
New flag --ike-networks ingcloud alpha compute vpn-tunnels create.
gcloud compute ssh now passes through the exit code of the ssh command. Thisfixes issue#146.

Misc. Changes

Gracefully handle socket timeouts while checking for Google Compute Enginemetadata server. This fixes issue#339.

0.9.84 (2015-10-28)

App Engine

Due to PageSpeed service deprecation, user will receive a warning whendeploying a new version to App Engine.
Implemented fingerprinting support for Java.
The gen-config flag now generates only app.yaml for the matching runtime bydefault, you must use the --custom flag to generate an app.yaml with a runtimeof "custom" and Dockerfile (and other configs).

Compute

GA support for HTTPS load balancing features.
Deprecated --clear-target-pool flag from compute instance-groups managedset-target-pools command.

Windows support

Windows Installer can now take a /logtofile flag to write installation logs tofile CloudSDKInstall.log located in the same directory.
Windows installer now displays an error message when the installationdoes not succeed.

Command Line Interface support

The [page=N] table format attribute prints one or more tables of at most Nrows. Use this to view paged server data as it arrives at the client.

0.9.83 (2015-10-21)

App Engine

In a future release, thegcloud preview app deploy command will no longersupport deploying multiple modules in the same invocation.

Compute

Ubuntu 14.10 is end of life: https://wiki.ubuntu.com/Releases
Fixed external issue#291,related to handling network addresses on Windows.

Container Engine

gcloud container clusters list now displays the current number of nodesfor the cluster.

Windows support

When running Cloud SDK tools from PowerShell thegcloud-ps.ps1 wrapperscripts now can be used which no longer call tocmd.exe. Usinggcloud-ps,complex arguments can be passed without escaping for Windows command line.Usinggcloud, the following command would be correctly escaped when runninggcloud in PowerShell:
gcloud fun --arg='"test ^< 123"'
With the newgcloud-ps, the same command can be simply written as:
gcloud-ps fun --arg='test < 123'
Permissions to run PowerShell scripts must be given to PowerShell before thesewill work. Permissions can be changed with"Set-ExecutionPolicy RemoteSigned".

0.9.82 (2015-10-14)

App Engine

The App Engine Admin API is now the default path for deployments in thegcloud preview app deploy command. This transition should be transparent,but if you experience any issues and would like to revert to the oldbehavior, please rungcloud config set app/use_appengine_api false.
Seehttps://cloud.google.com/appengine/docs/standard/admin-api/ for moreinformation about this API.
Withenv: 2, valid python runtimes arepython andpython-compat.
Implemented fingerprinting support for python.

Container Engine

gcloud container clusters create: The flag--container-ipv4-cidr hasbeen deprecated;--cluster-ipv4-cidr should be used instead.

SQL

gcloud beta sql operations describe andgcloud beta sql operations waitno longer need--instance flag (gcloud beta sql operations list stilldoes).
Fixed issue withgcloud sql instances clone when--bin-log-file-name and--bin-log-position are set.(https://issuetracker.google.com/issues/35906280).

0.9.81 (2015-10-07)

Breaking Changes

If you are using a service account to run commands undergcloud preview app, you must enable the "App Engine Admin API" in theDevelopers Console (https://console.developers.google.com; navigate toAPIs and Auth > APIs).
In a future Cloud SDK release, deployments that promote the new version toreceive all traffic will stop the previous version by default.
To keep the current behavior, pass the--no-stop-previous-versionflag, or run the following command:
$ gcloud config set app/stop_previous_version false
Removedapp get-resource-limits command.

App Engine

App Engine components updated to 1.9.27. Please see the following releasenotes for details:
- Python:https://cloud.google.com/appengine/docs/standard/python/release-notes
- Java:https://cloud.google.com/appengine/docs/standard/java/release-notes
Thegcloud preview app deploy command now requires that users specify oromit the runtime: field from app.yaml if a Dockerfile is also specified.
Thegcloud preview app deploy command now supports the "engines" field inpackage.json for node.js applications.

Misc. Changes

Windows Installer has an option to rungcloud init after the installationfinishes.

0.9.80 (2015-09-30)

gcloud app
- Soon, deployments will set the deployed version to receive all trafficby default. To keep the current behavior, use the--no-promote flagor run the following command:
```
$gcloudconfigsetapp/promote_by_defaultfalse
```
  To adopt the new behavior early, use the--promote flag or run thefollowing command:
```
$gcloudconfigsetapp/promote_by_defaulttrue
```
- The--set-default flag is deprecated. Please use the--promote flaginstead.
- In a future Cloud SDK release, deployments that promote the new versionto receive all traffic will stop the previous version by default. Tokeep the current behavior, pass the--no-stop-previous-version flag,or run the following command:
```
$gcloudconfigsetapp/stop_previous_versiontrue
```
- Theapp run command is deprecated and will soon be removed. Pleaseuse dev_appserver (found in the same directory as the `gcloud command)instead.
- Thegcloud preview app modules download command is deprecated, andwill be removed soon.
The Windows installer has an option to rungcloud init after theinstallation finishes.
Thepreview component has been removed.
- Thegcloud preview app commands remain available as usual andare still shipped through theapp component.
- Please usegcloud compute instance-groups unmanaged insteadofgcloud preview instance-groups. Note that you will need tomodify some command invocations when switching to the non-previewcommands.
- Please usegcloud compute instance-groups managed instead ofgcloud preview managed-instance-groups. Note that you will need tomodify some command invocations when switching to the non-previewcommands.
All Google Compute User Accounts commands have moved to beta.
Deployment-manager list commands now support pagination.
Minor bug fixes.

0.9.79 (2015-09-23)

The following commands have been promoted from beta to GA:
- gcloud config configurations ...
- gcloud source repos clone
- gcloud beta init. Oldgcloud init behavior has been removed, andpartially replaced by new gcloud init or directly via gcloud sourcerepos clone.
Release gcloud beta dataproc.
The --env-vars flag in gcloud preview app deploy has been removed.
Automatic ssh key generation respects the --quiet flag.
The --format flag now supports extended format expressions. For details run$ gcloud topic formats.
Most commands now document the positive Boolean --FLAG form and accept--no-FLAG to disable. For the past few releases --log-http accepted anoptional true/false value. It has been restored to its original definitionof being a Boolean flag that has no value.
gcloud sql operations are now automatically retried for 2s in case ofHttpException: The Cloud SQL instance operation does not exist.
Update gcloud's kubectl from 1.0.5 to 1.0.6.
Deprecategcloud preview app get-resource-limits.

0.9.78 (2015-09-16)

App Engine components updated to 1.9.26.
Increase the default boot disk size for remote build VMs ingcloud preview app deploy.
The--instance flag to thegcloud preview app modules set-managed-bycommand now takes an instance name instead of an index.
The V1Beta4 API for sqladmin can now be accessed through thegcloud beta sql surface.
Usability enhancements forgcloud beta init and named configurations.

0.9.77 (2015-09-09)

gcloud preview logging is now gcloud beta logging.
Update kubectl to version 1.0.5
Windows Cloud SDK installer improvements:
- Now allows changing the installation mode. You can choose between a"current user" installation and an "all users" installation.
- Now has an uninstaller and writes "Add/Remove Programs" uninstallentries.
Removal of unsupported --env-vars argument from gcloud preview app deploy.
gcloud compute instance groups: Allow --named-ports flag to be empty andclean named ports in set-named-ports commands.
Change in gcloud compute backend-services: introduce new flag--instance-group which takes advantage of new Instance Groups API.

0.9.76 (2015-09-02)

Update gsutil component to 4.14.
Resource views commands have moved from preview to alpha. Please usegcloudalpha compute resource-views in place ofgcloud preview resource-views.
Replica pool commands have moved from preview to alpha. Please usegcloudalpha compute replica-pools in place ofgcloud preview replica-pools.
gcloud beta source repo was renamed togcloud beta source repos
Created google-cloud-sdk-announce@googlegroups.comhttps://groups.google.com/d/forum/google-cloud-sdk-announce email group toannounce new releases and other important information.
'gcloud alpha init' command is now also in beta.
Add target size of managed instance group for "compute instance-groupsmanaged list" command.
Fixed the removal of platform-specific components when runninggcloudcomponents remove.
Fixed a bug related to checking for SDK updates when the SDK is installed asroot (like on Debian Compute Engine images).
- Affected users should now see less frequent update messages and overallimproved gcloud performance
gcloud preview app deploy won't update local images automatically anymore.

0.9.75 (2015-08-26)

Container Engine
- Container Engine GA commands available undergcloud container.
- gcloud beta container get-credentials now takes cluster name asargument instead of--cluster flag for consistency with othercommands.
- Addedgcloud alpha container clusters update <cluster>--cloud-monitoring=<val> command.
New release notes are printed on upgrade. (This won't take effect untilan upgrade from this version to a later version.)
Newgcloud alpha genomics variantsets export command.
Commands promoted fromgcloud alpha togcloud beta:
- gcloud beta config configurations ...
- gcloud beta sources clone
Improvements in error reporting and default output formatting.

0.9.74 (2015-08-19)

New list and import commands undergcloud alpha genomics variants.
Removed--remote flag. Instead, please use the--docker-build=remoteflag (or use--docker-build=local to force a local build).
In this release, Docker builds are hosted by default. To opt-in to the oldbehavior, please use the--docker-build=local flag.

0.9.73 (2015-08-12)

gcloud sql instances create default to MySQL 5.6
gcloud beta container get-credentials renamed to gcloud beta containerclusters get-credentials
New commands
- gcloud beta projects ...
- gcloud alpha genomics callsets ...
- gcloud beta emulators datastore ...
- gcloud beta container get-server-config
- gcloud alpha config configurations

0.9.72 (2015-08-05)

gcloud compute
- initial surface changes for the backend-bucket.
- instance-groups set-named-ports: introduced a new flag--named-ports NAME:PORT,[NAME:PORT,...] - no need to specify namesand ports in separate flags.
gcloud preview app deployDeprecate--remote flag in preparation for hosted Docker builds bydefault. Instead, please use the--docker-build={remote,local} flag.The default is still a local Docker build; in two releases, the defaultwill switch to a hosted build.
New gcloud alpha genomics operations {list, cancel, describe} commands

0.9.71 (2015-07-29)

Launchinggcloud alpha pubsub commands.
Movedgcloud preview rolling-updates togcloud alpha computerolling-updates.
gcloud alpha compute disks resize command enabling resizing of persistentdisks.
Beta launch of customer supplied encryption keys for Compute Engine.
Updated kubectl to 1.0.1.
gcloud alpha container commands now target Container Engine v1 API.Options forgcloud alpha container clusters create updated accordingly:
- --user renamed to--username
- --cluster-api-version removed. Cluster version is not selectable in v1API; new clusters always created at latest supported version.
- --image option removed. Source image not selectable in v1 API;clusters are always created with latest supported ContainerVM image.Note that using an unsupported image (i.e. not ContainerVM) wouldresult in an unusable cluster in most cases anyway.
- Added--no-enable-cloud-monitoring to turn off cloud monitoring(on by default).
- Added--disk-size option for specifying boot disk size of node vms.
App Engine components updated to 1.9.24.
For several months on the Managed VMs team we've been testing a new mode ofdockerless local development on gcloud that makes developing a module forPython, Java and Go users similar to development of regular App Engineapplications. This new mode relaxes the sandbox constraints present in thedevappserver forvm: false applications, and does not require Docker to beinstalled.
You can currently opt-into this behavior by setting GAE_LOCAL_VM_RUNTIME=1;In this release of the Cloud SDK, we will be making this behavior thedefault for Managed VM users who are using gcloud.
You can still opt-out of this behavior by setting: GAE_LOCAL_VM_RUNTIME=0.
For custom runtime users, if you are relying on the local Development Serverto build your application, will now need to pass the--custom-entrypointflag togcloud preview app run to provide gcloud with the correctcommand to call.
This does not affect users developing for non-managed VMs, or for users whoare not using gcloud."
Bug fixes for:
- gcloud preview app deploy file paths issue on Windows.
- gcloud compute instance-groups managed wait-until-stable periodic userprompting for target zone.

0.9.70 (2015-07-22)

Addgcloud compute instance-groups commands.
Movegcloud beta deployment-manager commands to general availability asgcloud deployment-manager and update to use the v2beta3 API. This changedoes not alter the gcloud surface for users of the deployment-managercomponent.
Update kubectl to 1.0.0.
gcloud alpha genomics commands now use the genomics V1 API. The--project-number flag fordataset create anddataset list is nowobsolete. The configured --project-id is used instead and can be overriddenwith the --project-id flag.
Fix hang on errors ingcloud preview app deploy.

0.9.69 (2015-07-15)

Update kubectl to 0.20.2.
Fix an authentication issue with 'gcloud docker' affecting docker version1.7.0 and later.
Removegcloud preview dm-v2 command group.
Removegcloud preview deployment-manager command group(gcloud beta deployment-manager still exists; seehttps://cloud.google.com/sdk/#install-version if you want to pin yourinstallation to an old version).
Bug fixes.

0.9.68 (2015-07-08)

Deprecated gcutil tool is no longer distributed with Cloud SDK.It is still available viahttps://cloud.google.com/compute/docs/gcutil.
Added support for Container engine BETA commands under thegcloud beta container command group. Existinggcloud alpha containercommands are unchanged.
The standalone App Engine SDKs are no longer distributed through the CloudSDK.
- App Engine functionality can still be used through thegcloud preview app command group.
- The gae-java, gae-python, gae-php, and gae-go components no longer exist in the component manager.
- If you need to use appcfg or dev_appserver directly, these are still available in the App Engine SDK downloads that can be found here:https://cloud.google.com/appengine/downloads
Bug fixes.

0.9.67 (2015-07-01)

App Engine components updated to 1.9.23.
Added the "gen-config" command to app surface to generate configurationfiles for node.js apps.
Newcompute instance-groups unmanaged commands group for Instance Groupswhich are not managed by Instance Group Manager
Movedgcloud beta sql instances connect togcloud beta sql connect.
Smarter polling while waiting for SQL operations to finish, reducing thenumber of requests sent to the server.
Linux/Mac install script disables prompts if there is no controlling tty.
Linux/Mac install script now properly detects zsh and ksh RC files.
Bug fixes.

0.9.66 (2015-06-24)

New commands
- gcloud alpha compute instances set-machine-type for managing types
- gcloud topic for supplementary help topics.
gcloud deployment-manager deployments delete prompt defaults to false.

0.9.65 (2015-06-17)

Fixesreset-windows-password on Windows ifopenssl is present on thepath.
gcloud compute reset-windows-password is now available as a GA command.
Prevent creation of a user that matches the machine name on Windows.
gsutil now runs properly from not-default drive letters on Windows.
kubectl updated to 0.18.1.
gcloud preview docker moved togcloud docker.

0.9.64 (2015-06-10)

New commands
- gcloud beta compute scp for secure copy.
- gcloud alpha genomics commands (on datasets).
- gcloud alpha source list to lists project repositories.
kubectl will no longer be installed by default.
Bug fixes for HTTPS load balancing.
The help pager is $PAGER or less(1) if available, otherwise a builtin pager.
Update of gsutil component to version 4.13.

0.9.63 (2015-06-03)

2x faster command load times.
Fix to allowpreview app to use oauth service accountshttps://issuetracker.google.com/issues/35906214

0.9.62 (2015-05-27)

Not released.

0.9.61 (2015-05-20)

New kubectl component (installed by default)
Internal improvements to gcloud preview app deploy; includes changes tocommand output.
gcloud preview projects moved togcloud alpha projects
Tab completion forgcloud compute ssh

0.9.60 (2015-05-13)

VPN moved to GA.
Preemptible VM support.
Bug fixes.

0.9.59 (2015-05-06)

Bug fixes.

0.9.58 (2015-04-29)

gcloud alpha bigquery launch.
Better error reporting in Customer Supplied Encryption Key files.
Bug fixes.

0.9.57 (2015-04-22)

gcloud beta deployment-manager launch.
gcloud app new deployment behavior.
- deploy and run commands no longer take directories, only take a list ofexplicit yaml files.
gcloud beta compute reset-windows-password, support for new authenticationscheme on Windows guest agent versions 3.0.0.0 and later.
Bug fixes.

0.9.56 (2015-04-15)

Bug fixes.

0.9.55 (2015-04-8)

New and improved gcloud dns surface including:
- Transactions for scriptable editing of record-sets.
- Importing record-sets from zone files and yaml files.
- Exporting record-sets to zone files and yaml files.
VPN commands surfaced under gcloud compute.
Dataflow CLI commands launched under gcloud alpha!

0.9.52 (2015-03-18)

Bug Fixes.

0.9.51 (2015-03-11)

Bug Fixes.

0.9.50 (2015-03-04)

Introducing thegcloud beta ... command group
- Existing gcloud commands will be replicated under this new group, butuse the beta version of their API instead of the GA version.
- New command behavior and features that are beta only will first appearunder this group until the feature gets promoted to generalavailability.
- Rungcloud components update beta to access the new commands, or itwill be automatically installed for you on first run attempt.
gcloud beta compute ... is now available, using the compute 'beta' API.Cloud VPN. Seehttps://cloud.google.com/compute/docs/vpnfor details.
Release ofgcloud compute instances move andgcloud compute disks move.

0.9.49 (2015-02-25)

The Google Container Registry is now used by default for deployment ofManaged VM applications. See here for more information:https://cloud.google.com/tools/container-registry/
We've increased the speed of the "image push" phase of Managed VMdeployments.
The heavy lifting of retrieving the Go toolchain has been moved into thebase Go Docker image which dramatically reduces the bandwidth consumedlocally when running and deploying your images. You must delete yourDockerfile to pick up the changes.
We've fixed several bugs related to port forwarding in the localdevappserver.

0.9.48 (2015-02-18)

A bug fix for running setup-managed-vms multiple times when using the GoogleContainer Registry

0.9.47 (2015-02-11)

Bug fixes that allow tab completion to work for components in preview.
GCloud now auto installs components based on command execution.

0.9.46 (2015-02-04)

We've made significant improvements to the stability and speed of deployingManaged VMs by leveraging the new Google Container Registry. See this postfor details on how to try it out today:https://groups.google.com/forum/#!topic/google-appengine/c543NHZGhKM

0.9.45 (2015-01-28)

Several bug fixes in the Dockerfile generated for the 'go' runtime. Deletethe Dockerfile in your application directory and the Cloud SDK will copy theupdated Dockerfile on your next deployment.
Several bug fixes related to flakiness in the setup-managed-vms command.

0.9.44 (2015-01-21)

Fixes applied to the google/appengine-gobase image for managed VMs.
Tab completion for gcloud SQL commands.

0.9.43 (2015-01-14)

Support added for authenticating service accounts with JSON keys. If usingJSON keys, PyOpenSSL is no longer a dependency. Refer to help docs here:https://cloud.google.com/sdk/gcloud/reference/auth/activate-service-account.

0.9.42 (2015-01-08)

Support for local SSDs in instance templates for gcloud compute.

0.9.41 (2014-12-17)

Progress bars.
Compute Instances start and stop commands.

0.9.40 (2014-12-09)

Bug Fixes.

0.9.39 (2014-12-03)

Bug Fixes.

0.9.37 (2014-11-19)

Added support for local SSD.

0.9.36 (2014-11-12)

Bug Fixes.

0.9.35 (2014-11-04)

Added support for Google Container Engine. It is available under the'gcloud preview container' command group.

0.9.34 (2014-10-14)

Added support for Google Compute Engine Instance Templates incompute component.
Launch of instance-groups and managed-instance-groups inpreview component.

0.9.33 (2014-09-30)

Overhaul of 'gcloud sql'
- Updated the output for all commands.
- Updated usage for 'gcloud sql ssl-certs create'.

0.9.32 (2014-09-16)

Bug Fixes.

0.9.31 (2014-09-02)

Added support for creating and maintaining Cloud SQL read replica instances.
- Added --master-instance-name property that can be set during replicacreation to indicate the replication master for the read replicainstance.
- Added --enable-database-replication, --no-enable-database-replicationflags that can be used to start, stop replication for the read replicainstance.
- Added 'promote-replica' command that promotes a read replica instanceinto a stand-alone Cloud SQL instance.
Added several new features to the compute component:
- Implemented new subcommands for interacting with HTTP load balancing:
  - gcloud compute backend-services update
  - gcloud compute url-maps add-host-rule
  - gcloud compute url-maps add-path-matcher
  - gcloud compute url-maps remove-host-rule
  - gcloud compute url-maps remove-path-matcher
  - gcloud compute url-maps set-default-service
- Added support for automatically generating initial Windows username andpassword when creating a virtual machine instance from a Windowsimage or a disk initializaed from a Windows image.
- Added a new scope alias for Cloud SQL administration: 'sql-admin'.

0.9.30 (2014-08-19)

Bug Fixes.

0.9.29 (2014-08-11)

The compute component is now in General Availability.
- Added new 'compute/zone' and 'compute/region' properties thatcan be used to set a default zone and region. To set theproperties, run 'gcloud config set compute/zone ZONE' and 'gcloudconfig set compute/region REGION'.
- Added support for overriding disk auto-deletion during instancedeletion.
- Updated the output of commands that mutate resources to be morehuman-friendly. The --format flag can be used for more verboseoutput.
- Replaced all 'get' subcommands with 'describe' subcommands (e.g.,'gcloud compute instances get' has been replaced with 'gcloudcompute instances describe').
- Renamed the 'firewalls' collection to 'firewall-rules'.
- Added support to the 'addresses' collection for interacting withglobal addresses.

0.9.28 (2014-07-18)

Updated gcutil to 1.16.3 and various App Engine runtimes to 1.9.7 binaries.
Support running several modules by gcloud app run and fixed output errors.
Limit gcloud upgrade nags to once per day.
Bring help files up to date (for example improved the documentation for DM'templates create' and 'deployments create').
Added prompting for regions and zones to most subcommands of the computecomponent.
Added new subcommands to the compute component for adding and removingbackends from backend services.
Added --ssh-flags to 'gcloud compute ssh' for passing additional flags tossh.
Added image alias support for the --image flag in the compute component.

0.9.27 (2014-06-18)

Added --shell mode to all gcloud commands
- Type a partial command followed by '--shell' to drop into a sub shell atthat point in the command tree.
- Eg:$ gcloud compute --shellgcloud compute $ instances listgcloud compute $ copy-files ...
Updated gsutil to 4.3
Allow installed crcmod to be used by default with gsutil by enabling sitepackages

0.9.26 (2014-06-04)

Windows support for SSH and SCP to Compute VMs
- The following will now work natively on Windows without the need forcygwin:
  - gcloud compute ssh
  - gcloud compute copy-files
  - gcutil ssh
  - gcutil push
  - gcutil pull
Support for Java apps in 'gcloud preview app run'
Updated gsutil to 4.1
Updated gcutil to 1.16.0
Updated all App Engine tools to 1.9.6

0.9.25 (2014-05-21)

gcloud preview app deploy and... run argument updates.
gcloud config ... argument updates.
Updated all App Engine tools to 1.9.5

0.9.24 (2014-05-07)

gcloud now has App Engine and Cloud Datastore integration.
- Commands can be found undergcloud preview app andgcloud previewdatastore

0.9.23 (2014-05-01)

Newgcloud compute tool for working with compute engine (RC)
- Rungcloud components update compute to install
- Rungcloud help compute for more information
Updated all App Engine tools to 1.9.4
Added color to error and warning messages (on Linux and Mac)
- To disable, rungcloud config set disable_color true

0.9.22 (2014-04-23)

New 'gcloud help command'
- Displays man style extended help for commands (where available).
New 'gcloud auth activate-service-account' command
- Used to authenticate with gcloud using a service account key file.
- See:https://developers.google.com/storage/docs/authentication#service_accounts
Bug fixes and improved error handling.

0.9.21 (2014-04-09)

Minor updates and bug fixes.

0.9.20 (2014-03-24)

Minor updates and bug fixes.

0.9.19 (2014-03-19)

Minor updates and bug fixes.

0.9.18 (2014-03-05)

New 'gcloud init' command
- Crpace for your project with a git clone of your Googlehosted repository.
Updated gcutil to 1.14.0

0.9.17 (2014-02-11)

Updated all App Engine tools to 1.9.0
Cloud SDK now distributed under the Apache v2.0 license. Please see LICENSEfor more information.

0.9.16 (2014-01-28)

Added Python2.6 compatibility.
Added ability to symlink directly to scripts in the bin/ directory.
Fixed bug in default setup of credentials when on a Compute Engine VM.

0.9.15 (2014-01-15)

Updated gsutil to 3.40
Updated all App Engine tools to 1.8.9
Fixed broken PHP runtimes on Mac and Windows installs when runningthe dev_appserver.
Adding sh/cmd wrapper scripts for bq, gcutil, and gsutil for better PATHhandling on Windows.
Fixed issue with failinggoapp build

0.9.14 (2013-12-17)

'gcloud sql' now available.
- Find out more:https://developers.google.com/cloud-sql/docs/cloud-sdk
Added bash completion for gcloud commands.
- Choose 'yes' at the prompt during installation to add it to your bashprofile.
Added 'gcloud version' command.
More flexible support of virtual env installations.
Fix for environments with protobuf installed.

0.9.13.1 (2013-12-04)

Validate queries to metadata server.

0.9.13 (2013-11-19)

Updated all App Engine tools to 1.8.8
Disabling site packages when running commands, to avoid library conflicts.

0.9.12 (2013-11-06)

Updated all App Engine tools to 1.8.7
Updated bq to 2.0.17
A few usability improvements in the component manager and install flow.

0.9.11 (2013-10-28)

The Cloud SDK is now distributed using a new component manager.
- Download a small initial zip file, then install the tools you want ondemand.
- Updates to tools in the Cloud SDK are performed in-place, incrementally,without the need to re-download the entire SDK.
- The component manager allows you to see when updates are available.
- Run 'gcloud components --help' for more information.
New authentication features:
- The gauth command has been replaced by 'gcloud auth'. Run'gcloud auth --help' for more information.
- It now supports authenticating multiple users simultaneously. Use'gcloud config set account' to choose your active account.
For more information, please see:https://developers.google.com/cloud/sdk/gettingstarted

0.9.10 (2013-10-20)

Upgraded all App Engine tools to 1.8.6.
Upgraded bq to 2.0.16.
Upgraded gcutil to 1.9.1.
A few improvements to the gauth web flow.

0.9.9 (2013-09-26)

Upgraded all App Engine tools to 1.8.5.
Upgraded bq to 2.0.15.
Upgraded gcutil to 1.8.4.
Upgraded gsutil to 3.37.

0.9.8 (2013-08-27)

Upgraded all App Engine tools to 1.8.4.
Upgraded gcutil to 1.8.3.
Upgraded gsutil to 3.35.

0.9.7 (2013-08-06)

Upgraded all App Engine tools to 1.8.3
Upgraded gsutil to 3.34

0.9.6 (2013-07-17)

Upgraded all App Engine tools to 1.8.2
Upgraded bq to 2.0.14
Upgraded gcutil to 1.8.2
Upgraded gsutil to 3.33

0.9.5 (2013-06-18)

App Engine Hotfix

0.9.4 (2013-06-12)

archive file name changed to google-cloud-sdk
Upgraded all App Engine tools to 1.8.1
Upgraded gcutil to 1.8.1
Upgraded gsutil to 3.31 (3.30 was never released)
More improvements to gauth experience
- gauth now provides links to the new Cloud Console (for obtaining yourproject ID), as opposed to the API console
- Suppression of spurious error related to the Windows Registry

0.9.3 (2013-05-24)

Upgraded gcutil to 1.8.0
Upgraded gsutil to 3.29

0.9.2 (2013-05-07)

Upgraded all App Engine tools to 1.8.0
Upgraded gsutil to 3.27
Several improvements to gauth experience
- Will not re-run oauth2 flow if you already have valid credentials (youcan force re-auth with the --login flag)
- Added --set-project to change your current project without having tore-auth
- Renamed gauth.py to gauth for simplicity
- gauth will warn you if there are older versions of the cloud tools onyour path.

0.9.1 (2013-04-10)

Fixed an issue with gauth that occurred when running a command beforecredentials were created.

0.9.0 (2013-04-09)

Developer preview release of the Cloud SDK
Includes command line tools for:
- App Engine
- BigQuery
- Compute Engine
- Cloud Storage
- Cloud SQL
Includes the new gauth tool for one time common authentication for all tools

Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2026-02-19 UTC.

Movatterモバイル変換

Google Cloud CLI - Release Notes Stay organized with collections Save and categorize content based on your preferences.

557.0.0 (2026-02-18)

Google Cloud CLI

App Engine

Cloud Backup DR

Cloud Bigtable

Cloud DNS

Cloud Interconnect

Compute Engine

Compute Firewall Policies

Container Registry

Eventarc

Looker

Pubsub Emulator

Workbench

556.0.0 (2026-02-10)

Google Cloud CLI

AI

App Engine

BigQuery

Cloud Backup DR

Cloud Run

Cloud SQL

Compute Engine

Compute Firewall Policy Rules

Developer Connect

GKE Hub

Kpt

Kubernetes Engine

Network Connectivity

Vector Search

555.0.0 (2026-02-03)

Google Cloud CLI

Cloud Run

Cloud SQL

Cloud Services

Compute Engine

Developer Connect

Kpt

Kubernetes Engine

Network Connectivity

Network Management

Pubsub Emulator

554.0.0 (2026-01-27)

Breaking Changes

BigLake

Cloud Dataflow

Cloud Managed Kafka

Cloud Resource Manager

Cloud SQL

Compute Engine

Kubernetes Engine

Network Connectivity

553.0.0 (2026-01-21)

AI

Auth Login

Cloud Backup DR

Cloud Dataproc

Cloud Datastream

Cloud NetApp

Cloud Resource Manager

Cloud Run

Cloud Storage

Compute Engine

Developer Connect

Kubernetes Engine

Oracle Database

552.0.0 (2026-01-13)

BigQuery

Cloud Composer

Cloud Firestore

Cloud Infrastructure Manager

Cloud Run

Cloud Storage

Cloud Workstations

Compute Engine

Design Center

Developer Connect

Kubernetes Engine

Google Cloud CLI - Release Notes