Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): update dependency upbound/provider-gcp to v1 #49

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency upbound/provider-gcp to v1 #49

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Nov 29, 2024
edited
Loading

This PR contains the following updates:

Package Update Change
upbound/provider-gcp major v0.41.1 -> v1.11.2

Release Notes

upbound/provider-gcp (upbound/provider-gcp)

v1.11.2

Compare Source

This release updates golang.org/x/net to v0.33.0 to fix CVE-2024-45338

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.11.1...v1.11.2

v1.11.1

Compare Source

This release includes updates to the go.mod file to address security vulnerabilities.

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.11.0...v1.11.1

v1.11.0

Compare Source

The v1.11.0 release introduces the Terraform provider upgrade from 5.44.2 to 5.45.0, and a new resource AspectType.dataplex.gcp.upbound.io/v1beta1

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.10.0...v1.11.0

v1.10.0

Compare Source

The v1.10.0 release introduces the following new resources.

  • ResponsePolicy.dns.gcp.upbound.io/v1beta1
  • ResponsePolicyRule.dns.gcp.upbound.io/v1beta1
  • TrustConfig.certificatemanager.gcp.upbound.io/v1beta1

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.9.0...v1.10.0

v1.9.0

Compare Source

The v1.9.0 release introduces the Terraform provider upgrade from 5.39.0 to 5.44.2, new resources, bug fixes, enhancements, and dependency updates.

Support for New Resources
  • ServiceConnectionPolicy.networkconnectivity.gcp.upbound.io/v1beta1
  • Cluster.redis.gcp.upbound.io/v1beta1
  • PolicyTag.datacatalog.gcp.upbound.io/v1beta1
  • Taxonomy.datacatalog.gcp.upbound.io/v1beta1

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.8.3...v1.9.0

v1.8.3

Compare Source

With the v1.8.3 release we cleaned uptest specific codes/placeholders from the examples in the marketplace.

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.8.2...v1.8.3

v1.8.2

Compare Source

The v1.8.2 release fixes the issue of hiding error messages.

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.8.1...v1.8.2

v1.8.1

Compare Source

The v1.8.1 release is reverting this commit, which caused a regression. See related PR https://github.com/crossplane-contrib/provider-upjet-gcp/pull/614

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.8.0...v1.8.1

v1.8.0

Compare Source

The v1.8.0 release introduces bug fixes, enhancements, and dependency updates.

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.7.0...v1.8.0

v1.7.0

Compare Source

The v1.7.0 release introduces the Terraform provider upgrade from v5.28.0 to v5.39.0, bug fixes, enhancements, and dependency updates.

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.6.0...v1.7.0

v1.6.0

Compare Source

The v1.6.0 release introduces new family providers, new resources, an important bug fix, enhancements, and dependency updates.

Support for New Family Providers
  • provider-gcp-orgpolicy
  • provider-gcp-tags
Support for New Resources
  • EnvgroupAttachment.apigee.gcp.upbound.io/v1beta1
  • EndpointAttachment.apigee.gcp.upbound.io/v1beta1
  • InstanceAttachment.apigee.gcp.upbound.io/v1beta1
  • AddonsConfig.apigee.gcp.upbound.io/v1beta1
  • SyncAuthorization.apigee.gcp.upbound.io/v1beta1
  • Policy.orgpolicy.gcp.upbound.io/v1beta1
  • TagBinding.tags.gcp.upbound.io/v1beta1
  • TagKey.tags.gcp.upbound.io/v1beta1
  • TagValue.tags.gcp.upbound.io/v1beta1
Bug Fix

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.5.0...v1.6.0

v1.5.0

Compare Source

In the release v1.5.0, we've upgraded the underlying Terraform provider version from 5.19.0 to 5.28.0

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.4.0...v1.5.0

v1.4.0

Compare Source

The v1.4.0 release introduces a new resource named HMACKey.storage.gcp.upbound.io/v1beta1, enhancements, and dependency updates.

What's Changed

New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.3.0...v1.4.0

v1.3.0

Compare Source

The v1.3.0 release introduces bug fixes, documentation updates, and dependency updates.

What's Changed
New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.2.0...v1.3.0

v1.2.0

Compare Source

The v1.2.0 release introduces converting singleton lists in the MR APIs to embedded objects, and dependency updates.

In this release, we've updated how Terraform configuration blocks are handled in our APIs. Terraform configuration blocks, even if they have a MaxItems constraint of 1, are (almost) always generated as lists. We now generate the lists with a MaxItems constraint of 1 as embedded objects in our MR APIs. This also helps when updating or patching via SSA the (previously list) objects.

The new v1beta2 versions of the CRD APIs incorporate these changes, ensuring backward compatibility for clients using the older v1beta1 versions. Any clients wanting to use the embedded objects-based APIs should update to the v1beta2 versions of the CRD APIs.

  • For instance, let's look at the YAML output of the DatabaseInstance.sql.gcp.upbound.io/v1beta2 resource's spec.forProvider, with this release we can see the spec.forProvider.settings field as an object:
spec:
  forProvider:
    databaseVersion: MYSQL_5_7
    deletionProtection: false
    project: official-provider-testing
    region: us-central1
    settings:
      diskSize: 20
      tier: db-f1-micro
  • If we look at the v1beta1 YAML output of the resource, we see the field as a list:
spec:
  forProvider:
    databaseVersion: MYSQL_5_7
    deletionProtection: false
    project: official-provider-testing
    region: us-central1
    settings:
    - diskSize: 20
      tier: db-f1-micro

For a detailed overview of the implementation, please see https://github.com/crossplane/upjet/pull/387 and https://github.com/crossplane/upjet/pull/400

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.1.0...v1.2.0

v1.1.0

Compare Source

The v1.1.0 release introduces MR metrics, a new family provider provider-gcp-containerattached, new resources, bug fixes, enhancements, and dependency updates.

We are excited to introduce a new set of managed resource (MR) metrics in this release. These metrics are pivotal for monitoring the state and performance of resources managed through Crossplane. This enhancement follows the implementation guidelines from the provider-kubernetes and incorporates changes from https://github.com/crossplane/crossplane-runtime/pull/683. The newly available metrics include:

  • crossplane_managed_resource_exists{"gvk"}
  • crossplane_managed_resource_ready{"gvk"}
  • crossplane_managed_resource_synced{"gvk"}
  • crossplane_managed_resource_first_time_to_reconcile_seconds{"gvk"}
  • crossplane_managed_resource_first_time_to_readiness_seconds{"gvk"}
  • crossplane_managed_resource_deletion_seconds{"gvk"}
  • crossplane_managed_resource_drift_seconds{"gvk"}

For a detailed overview of the implementation, please refer to this https://github.com/crossplane/crossplane-runtime/pull/683.

Note that, for async resources, upjet_resource_ttr_bucket{"group","kind","version"} gives a more accurate measurement of when the external resource becomes available, compared to crossplane_managed_resource_first_time_to_readiness_seconds{"gvk"}.

Support for New Resources
  • RegionNetworkEndpoint.compute.gcp.upbound.io/v1beta1
  • Cluster.containerattached.gcp.upbound.io/v1beta1
Bug Fixes and Enhancements
  • Bug Fix: Addresses a critical bug related to asynchronous operation failures. With this fix, the "Synced" status will immediately reflect as "False" upon any failure in asynchronous operations, ensuring compliance with the XRM contract and improving reliability in status reporting. Previously, the error handling only updated the LastAsyncOperation status without properly setting the Synced condition to False. For more information, please see the https://github.com/crossplane/upjet/pull/391#issue-2262134402.
  • Support for publishing password to Connection Secret for the Uer.sql resource https://github.com/crossplane-contrib/provider-upjet-gcp/pull/501
Breaking UX Changes

The release switches the order of the SYNCED and READY printer columns so that the SYCNED column is now printed before the READY column as follows:

❯ kubectl get managed
NAME                                                                  SYNCED   READY   EXTERNAL-NAME             AGE
serviceaccount.cloudplatform.gcp.upbound.io/example-service-account   True     True    example-service-account   56s

This used to be first the READY column and then the SYNCED column previously. Please see https://github.com/crossplane/upjet/pull/360 for further details.

What's Changed
New Contributors

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.0.2...v1.1.0

v1.0.2

Compare Source

The release v1.0.2 introduces:

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.0.1...v1.0.2

v1.0.1

Compare Source

The release v1.0.1 sets a default io.Discard logger for the controller-runtime if debug logging is not enabled. If debug logging is enabled, then the controller-runtime uses a debug mode zap logger as usual.

What's Changed

Full Changelog: crossplane-contrib/provider-upjet-gcp@v1.0.0...v1.0.1

v1.0.0

Compare Source

In the v1.0.0 release, we've upgraded the underlying Terraform provider version from 4.77.0 to 5.19.0.
Explore the API Changes section below for a concise overview of the modifications introduced by this version bump.

The release introduces support for the conversion functions to be able to handle any future breaking API changes. Also includes updates to the dependencies.

With this release, the provider-gcp-cloudiot family provider has been removed with the following two resources:

  • Device.cloudiot.gcp.upbound.io/v1beta1
  • Registry.cloudiot.gcp.upbound.io/v1beta1
Bug Fixes and Enhancements
API Changes
  • Changed external name configuration for Membership.gkehub.gcp.upbound.io/v1beta1 and DNSAuthorization.certificatemanager.gcp.upbound.io/v1beta1, and spec.forProvider.location is now required.
  • Instance.alloydb.gcp.upbound.io/v1beta1 => added reference and selector for spec.forProvider.instanceType field.
  • Routine.bigquery.gcp.upbound.io/v1beta1 => spec.forProvider.routineType is now required.
  • Function.cloudfunctions2.gcp.upbound.io/v1beta1 => spec.forProvider.location is now required.
  • DomainMapping.cloudrun.gcp.upbound.io/v1beta1 => spec.forProvider.metadata is now optional.
  • V2Job.cloudrun.gcp.upbound.io/v1beta1 => spec.forProvider.location is now required and spec.forProvider.template.template.containers.{livenessProbe,startupProbe} have been removed.
  • Service.cloudrun.gcp.upbound.io/v1beta1 => spec.forProvider.location is now required.
  • NodeGroup.compute.gcp.upbound.io/v1beta1 => spec.forProvider.size has been replaced with spec.forProvider.initialSize.
  • RouterNAT.compute.gcp.upbound.io/v1beta1 =>
    • spec.forProvider.natIpAllocateOption is now optional.
    • spec.forProvider.enableEndpointIndependentMapping now defaults to FALSE. Previously, the default value was TRUE.
  • Cluster.container.gcp.upbound.io/v1beta1 =>
    • spec.forProvider.enableBinaryAuthorization has been removed.
    • spec.forProvider.deletionProtection field has been added with a default of true. Cluster deletion now prevented by default with this field.
    • spec.forProvider.networkingMode defaults to VPC_NATIVE for newly created clusters.
  • Trigger.eventarc.gcp.upbound.io/v1beta1 => spec.forProvider.destination.cloudFunction has been removed.
  • Certificate.privateca.gcp.upbound.io/v1beta1 => status.atProvider.pemCertificates has been removed and status.atProvider.certificateDescription.configValues has been removed.
  • Secret.secretmanager.gcp.upbound.io/v1beta1 => spec.forProvider.replication.automatic has been replaced with spec.forProvider.replication.auto.
  • Databaselnstance.sql.gcp.upbound.io/v1beta1 => status.atProvider.serverCaCert has been removed.
  • SSLCert.sql.gcp.upbound.io/v1beta1 => status.atProvider.serverCaCert has been removed.
  • ServiceAttachment.compute.gcp.upbound.io/v1beta1 => spec.forProvider.reconcileConnections now defaults from API. Previously defaulted to true.
  • NodePool.container.gcp.upbound.io/v1beta1 => spec.forProvider.autoRepair and spec.forProvider.autoUpgrade now default to true. Previously both fields defaulted to false if spec.forProvider.management was set as an empty block.
  • ProjectSink.logging.gcp.upbound.io/v1beta1 => spec.forProvider.uniqueWriterIdentity now defaults to TRUE. Previously, the default value was FALSE.
What's Changed

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from a team as a code owner November 29, 2024 09:18
@renovate renovate bot added the automated label Nov 29, 2024
@village-labs-bot Village Labs Bot
Copy link

# upbound/configuration-gcp-database #49

Change Summary

  • Provider version upgrade for GCP SQL provider from v0.41.1 to v1.10.0
  • Provider version upgrade for GCP Service Networking provider from v0.41.1 to v1.10.0
  • Both provider upgrades represent significant version jumps (major version changes)

Potential Vulnerabilities

  • File: crossplane.yaml:21-22
  • Code: version: "v1.10.0"
  • Explanation: Major version jump (v0.41.1 to v1.10.0) could introduce breaking changes in API or security configurations. Without proper testing and validation, this could expose the database to security risks.

Code Smells

None identified in the provided changes.

Debug Logs

None identified in the provided changes.

Unintended Consequences

  1. Breaking Changes Risk:

    • File: crossplane.yaml:21-22
    • Code: version: "v1.10.0"
    • Explanation: Major version upgrade from v0.41.1 to v1.10.0 could introduce breaking changes in provider functionality, API compatibility, or resource management that might affect existing database configurations.

  2. Dependency Synchronization:

    • File: crossplane.yaml:19-23
    • Code: ```
      dependsOn:
      • provider: xpkg.upbound.io/upbound/provider-gcp-sql
        version: "v1.10.0"
      • provider: xpkg.upbound.io/upbound/provider-gcp-servicenetworking
        version: "v1.10.0"
    - Explanation: While both providers are updated to the same version, the configuration-gcp-network dependency remains at v0.5.0. This version mismatch could lead to compatibility issues or unexpected behavior in the networking integration with the database services.

Risk Score: 7

The high risk score is primarily due to:

  1. Major version jumps in both providers
  2. Potential breaking changes in database and networking configurations
  3. The criticality of database infrastructure components
  4. Lack of gradual version progression (jumping multiple major versions)

@kaessert
Copy link
Contributor

/test-examples

@renovate renovate bot force-pushed the renovate/major-crossplane-dependencies branch from 35cd1f2 to 40955c8 Compare December 5, 2024 16:44
@renovate renovate bot force-pushed the renovate/major-crossplane-dependencies branch from 40955c8 to 33297d4 Compare December 18, 2024 20:24
@renovate renovate bot force-pushed the renovate/major-crossplane-dependencies branch from 33297d4 to 59993ca Compare December 26, 2024 14:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
automated
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@kaessert