Google Cloud Platform Newsletter

Check Archive for older issues

News

Supercharge your event-driven architecture with new Cloud Functions (2nd gen) - The next generation of our Cloud Functions Functions-as-a-Service platform gives you more features, control, performance, scalability and events sources.

Introducing Google Cloud's Tomcat migration tooling - This article describes how practitioners can easily migrate existing Tomcat workloads from virtual machines to Google Cloud’s container platforms.

Streaming data into BigQuery using Storage Write API - Using BigQuery Storage Write API in Beam pipelines.

Introducing Timeseries Insights API: real-time forecasting and anomaly detection over trillions of events - Google Cloud’s Timeseries Insights API helps businesses act on event-driven data.

Cloud SQL launches support for IAM Conditions and Tags - With IAM Conditions and Tags, you have powerful tools to institute finer-grained administrative and connection access control for your databases.

Strengthen protection for your GCE VMs with new FIDO security key support - FIDO security keys can be used to authenticate to Google Compute Engine (GCE) virtual machine (VM) instances that use OS Login service.

Introducing a Google Cloud architecture diagramming tool - Introducing the Google Cloud Architecture Diagramming Tool to help you create, visualize and define the vision of your cloud use case and deploy it.

Reduce your cloud carbon footprint with new Active Assist recommendations - Active Assist recommendations help you Identify and reclaim idle workloads, to lower the carbon footprint of your Google Cloud environment further.

Speed up your Teradata migration with the BigQuery Permission Mapper tool - The BigQuery Permission Mapper tool eases the migration of a customer’s Teradata access rights codes to Google Cloud IAM by automating the permissions mapping process between the two data warehouse solutions.

Unleash collaboration with new experiences in Google Workspace - We’re making smart canvas in Google Workspace even more powerful, with auto summaries in Docs, pageless format, and new smart chips.

Back by popular demand: Google Cloud products in 4 words or less (2022 edition) - Google Cloud offers lots of products to support a wide variety of use cases. But how do you even know where to start?! Don’t worry, we’ve got you covered! We have created a set of resources that makes it easy to familiarize yourself with the Google Cloud ecosystem. You can use these resources to quickly get up to speed on different products and choose those that you're most interested in for a deeper dive into documentation and other available resources.

Announcing Google Cloud 2022 Summits [frequently updated] - Join the Google Cloud Summit series to explore the latest in data, machine learning, collaboration, security, sustainability, and more.

Articles, Tutorials

Infrastructure, Networking, Security, Kubernetes

Standardize traffic management: Service Directory and Traffic Director - Service Directory and Traffic Director integration for service based traffic management.

Free your mainframe data with data-first digitization - By moving mainframe data to Google Cloud, data-first digitization allows you to integrate your mainframe with BigQuery and other industry solutions.

Choosing the right network architecture for your Apigee-fueled APIs - Apigee X Hub and Spoke Design uses Cloud VPN and DNS peering to bypass VPC peering transitivity limits.

Google Cybersecurity Action Team Threat Horizons Report #2 Is Out! - Cloud Threat Intelligence February 2022, issue #2.

Control access to microservices with gRPC and Traffic Director - Traffic Director now supports client authorization for proxyless gRPC services, so you can centrally control gRPC microservice access.

From your device to Google Cloud API: Networking basics - Networking touchpoints that occur when you decide to access a Google Cloud API and build in the cloud environment.

Google Cloud Anthos Series - Part4 - Part-4: Anthos Service Mesh.

Say goodbye to Let’s Encrypt, welcome Google-managed SSL certificates - Setting up Google Managed certificate in GKE service.

App Development, Serverless, Databases, DevOps

Think serverless: tips for early-stage startups - Google Cloud tips for early-stage startups, from leveraging serverless to maximizing cloud credits to comparing managed services.

Vimeo builds a fully responsive video platform on Google Cloud - The video platform Vimeo leverages managed database services from Google Cloud to serve up billions of views around the world each day.

Data modernization with Google Cloud and MongoDB Atlas - Why MongoDB Atlas on Google Cloud can be considered a modern database, it also provides common use cases and reference architectures for different scenarios.

Scaling to new heights with Cloud Memorystore and Envoy - Learn how to scale your Google Cloud Memorystore for Redis database for high volume use cases in just a few minutes with the help of Envoy proxy.

GCP Serverless VPC Access Explained - An overview of Serverless VPC Access.

Secure Google Cloud SQL Instances using Private IP: Gotchas & troubleshooting - This blog post explains different scenarios one must consider while planning to deploy the Cloud SQL instance either in one or across multiple regions using Private IP.

Send a Slack message using the Google Cloud Functions (2nd gen) - Using the 2nd generation of the Google Cloud Functions to send a Slack message whenever a VM instance is created triggered by Eventarc.

Caching a REST API (running on Cloud Run) response using Google Cloud CDN - In this article we will see how to cache a REST API response using Cloud CDN.

Identity Federation for Gitlab CI and Google Cloud APIs - Learn how to securely access Google Cloud APIs from Gitlab CI to enable shared runners for your teams.

Cloud Spanner myths busted - The blog talks about the 7 most common myths and elaborates the truth for each of the myths.

Big Data, Analytics, ML&AI

Add intelligence to your document processing with Google's Enterprise Knowledge Graph - Enterprise Knowledge Graph normalizes and enriches Document AI extracted entities with real world knowledge.

Google data experts share top data practitioner skills needed in 2022 - Top data analytics skills to learn in 2022 as a data practitioner, Google Cloud experts weigh in.

Streaming Engine Execution Model - An in-depth overview and implementation details of Dataflow Streaming Engine.

How we are streaming thousands of rows per second into BigQuery — Part II: Google Storage loading - Reducing costs when loading data from Cloud Storage to BigQuery.

Deployment Topologies for Data Fusion with Shared VPCs - An overview of various deployment topologies for Data Fusion that an organisation should consider as per their network topologies.

To user-friendly SQL with love from BigQuery - BigQuery expands user-friendly SQL with support for new data types, SQL expressions and scripting control statements, table copy DDL and information schema views.

How foodpanda reduced 45% of our BigQuery cost with reservations slots - Pros and cons of different BigQuery pricing models offered and sharing tips on how to get started.

Optimize BigQuery BI Engine Memory usage by Using Materialized Views - Reducing BI Engine memory usage using Materialized BigQuery views.

Learn Airflow and BigQuery by making an ETL for COVID-19 data - An example of data pipeline using Airflow to load data to BigQuery.

Overcoming large-scale geospatial analysis using Google BigQuery - A look into benchmarking Geospatial data in Google BigQuery.

Google Analytics sequence segments with BigQuery - Recreating sequence segments from Google Analytics in BigQuery.

Orchestrating PyTorch ML Workflows on Vertex AI Pipelines - In this blog post, we show how to build and orchestrate ML pipelines for training and deploying PyTorch models on Google Cloud Vertex AI using Vertex AI Pipelines.

Using Machine Learning to optimize mobile game experiences - Train ML model based on Google Analytics for Firebase and use in Firebase application.

A Vertex AI TensorBoard alternative for smaller budgets (Part 2) - Easily and securely share TensorBoards with your colleagues or customers.

Various

Central States CIO Pat Moroney’s parting thoughts on transformation, cloud and feeding the pigeons - CIOs are joining the masses in the Great Resignation. Central States Funds CIO Pat Moroney shares career highs and lows transforming IT.

Slides, Videos, Audio

GCP Podcast - #293 Data Journeys with Bruno Aziza.

Kubernetes Podcast - #168 Rancher Desktop, with Matt Farina.

Security Podcast - #52 EP52 Securing AI with DeepMind CISO.

GCP Life podcast - #7 “Resist the temptation to click ops!” – In this episode we discuss the Kubernetes Documentary, New GCP features, Temporal.io, and the top 10 cloud certs.

Releases

Anthos clusters on Azure - A security vulnerability, CVE-2022-0492, has been discovered in the Linux kernel's cgroup_release_agent_write function.

Anthos clusters on VMware - Anthos clusters on VMware 1.8.7-gke.0 is now available. Fixes: Fixed high-severity CVEs: CVE-2022-0185 CVE-2021-22600. A security vulnerability, CVE-2022-0492, has been discovered in the Linux kernel's cgroup_release_agent_write function.

AppEngine Standard Java - Updated the Java SDK to version 1.9.95.

AppEngine Standard NodeJS - Node.js apps now support private dependencies hosted on an Artifact Registry Node.js package repository.

AppEngine Standard Python3 - Python 3 apps now support private dependencies hosted on an Artifact Registry Python registry.

Artifact Registry - v1beta2. On-Demand Scanning for Go packages is now generally available.

BI Engine - Remote functions are now available for preview. The table clones feature in BigQuery is now in Preview. The INFORMATION_SCHEMA.STREAMING_TIMELINE_* views are now generally available (GA). The QUALIFY clause, which lets you filter the results of analytic functions in Google Standard SQL, is now generally available (GA). BigQuery reliability guide is now available.

BigQuery ML - BigQuery ML time series ARIMA_PLUS now trains models 5 times faster than previous training.

BigQuery - Remote functions are now available for preview. The table clones feature in BigQuery is now in Preview. The INFORMATION_SCHEMA.STREAMING_TIMELINE_* views are now generally available (GA). The QUALIFY clause, which lets you filter the results of analytic functions in Google Standard SQL, is now generally available (GA). BigQuery reliability guide is now available.

Cloud Build - The organization policy for integrations with services such as GitHub is now generally available. VPC Service Controls support for Cloud Build is now generally available. Support for configuring triggers to use a particular service account is now generally available.

CDN - Dynamic compression allows Cloud CDN to automatically compress responses as they are being served between the origin and the client.

Channel Services - v1. This release adds filters to ListCustomers.

Chronicle - DeleteSubject The DeleteSubject method has been added to the Chronicle Role-Based Access Control (RBAC) API.

Cloud Composer - DAG UI is available in Preview. (Cloud Composer 2) Tasks that take less than 25 minutes to execute are not impacted by maintenance operations. Cloud Composer 1.18.0 and 2.0.4 release started on February 15, 2022. (Cloud Composer 1) Starting from this version, newly created environments use Python 3.8 as the default Python version. (Cloud Composer 2) Environment creation no longer fails if the default Compute Engine service account is deleted in a project. Cloud Composer 1.18.0 and 2.0.4 images are available: composer-2.0.4-airflow-2.2.3 composer-2.0.4-airflow-2.1.4 composer-1.18.0-airflow-2.2.3 composer-1.18.0-airflow-2.1.4 composer-1.18.0-airflow-1.10.15 (default). Airflow 2.0.2 is no longer included in Cloud Composer images. Cloud Composer 1.14.3 has reached its end of full support period.

Compute Engine - New documentation for licenses and appending licenses. T2D machines are now available in the following regions and zones: St.

Config Connector - Config Connector version 1.74.0 is now available. Added support for PrivateCACertificateAuthority resource. Fixed topicRef in CloudBuildTrigger (Issue #605).

Data Catalog - v1. Data Catalog now supports cataloguing and searching data entries from Dataplex lakes, zones, tables, and filesets.

Data Catalog Resources - v1. Data Catalog now supports cataloguing and searching data entries from Dataplex lakes, zones, tables, and filesets.

Dataflow - Profiling Dataflow pipelines with Cloud Profiler is generally available (GA).

Dataproc - General Availability (GA) release of new Rocky Linux based images: 1.5.57-rocky8 and 2.0.31-rocky8. Dataproc Serverless for Spark now uses runtime version 1.0.4, which updates GCS connector to 2.2.5 version. New sub-minor versions of Dataproc images: 1.5.57-debian10, 1.5.57-ubuntu18, and 1.5.57-rocky8 2.0.31-debian10, 2.0.31-ubuntu18, and 2.0.31-rocky8. Upgraded Cloud Storage connector version to 2.2.5 in image version 2.0. Upgraded Cloud Storage connector version to 2.1.7 in image version 1.5. CentOS images are EOL. A script that checks if a project or organization is using an unsupported Dataproc image is available for downloading (see Unsupported Dataproc versions). Dataproc images prior to 1.3.95, 1.4.77, 1.5.53, and 2.0.27 are deprecated and cluster creations based on these images will fail starting 2/28/2022.

Cloud Functions - Cloud Functions has added support for low-configuration access to private dependencies on Artifact Registry in in Node.js and Python. Cloud Functions has released Cloud Functions (2nd gen), available at the Preview release level.

KMS - Virtru is now available as a supported Cloud EKM partner.

Google Kubernetes Engine - Kubernetes Network Policy API allows specifying range of ports (see KEP on port ranges) on which the policy is enforced in GKE 1.22 and later versions. A security vulnerability, CVE-2022-0492, has been discovered in the Linux kernel's cgroup_release_agent_write function. Kubernetes 1.23 is now available in the Rapid channel.

Load Balancing - Internal TCP/UDP Load Balancing now supports source-IP address session affinity (CLIENT_IP_NO_DESTINATION) in Public Preview.

Cloud Logging - You can now configure default storage regions and disabled _Default sinks for your Google Cloud organizations and all of their new projects and folders. You can now collect Apache Solr metrics and logs from the Ops Agent, starting with version 2.10.0. You can now collect Apache Kafka metrics and logs from the Ops Agent, starting with version 2.10.0. You can now collect MongoDB logs from the Ops Agent, starting with version 2.10.0.

Cloud Memorystore - Added support for enabling read replicas (preview) on existing instances.

Cloud Monitoring - You can now configure how missing data is treated in alerting policies. The install-monitoring-agent.sh installation script for the Cloud Monitoring agent for Linux has been decommissioned. You can now collect Apache Solr metrics and logs from the Ops Agent, starting with version 2.10.0. You can now collect Apache Kafka metrics and logs from the Ops Agent, starting with version 2.10.0. You can now collect Apache CouchDB metrics from the Ops Agent, starting with version 2.10.0. You can now collect Apache ZooKeeper metrics from the Ops Agent, starting with version 2.10.0. You can now collect Elasticsearch metrics from the Ops Agent, starting with version 2.10.0.

Cloud NAT - Dynamic port allocation for Cloud NAT is available in General Availability.

Service Directory - Service Directory integration with Traffic Director is available in Preview.

SAP Solutions - SAP NetWeaver certifications: T2D AMD-based general-purpose machine types For SAP NetWeaver, SAP now certifies Compute Engine general-purpose T2D series machine types with the AMD EPYC Milan CPU platform.

Cloud SQL MySQL - Cloud SQL now supports the use of tags on instances.

Cloud SQL Postgres - Cloud SQL now supports the use of tags on instances.

Cloud SQL SQL Server - Cloud SQL now supports the use of tags on instances.

Traffic Director - Traffic Director is now integrated with Service Directory.

Vertex AI - You can now use a pre-built container to perform custom training with TensorFlow 2.8.

VMware Engine - Beginning on February 21 2022, the VMware Engine operations team will perform essential maintenance of the network infrastructure to improve equipment robustness and apply security patches.

VPC Service Controls - General availability for the following integration: Speaker ID.