Google Cloud Platform Newsletter

Check Archive for older issues

News

Announcing the General Availability of AlloyDB for PostgreSQL - Migrate and modernize legacy databases with AlloyDB for PostgreSQL, a PostgreSQL-compatible database for demanding enterprise database workloads.

Minimal Downtime Migrations to Cloud Spanner with HarbourBridge 2.0 - We're demonstrating migration of schema and data for an application from MySQL to Cloud Spanner using HarbourBridge.

Introductory Google Cloud computing training for students now available on edX - Google Cloud has partnered with edX to make the Google Cloud computing foundations training courses available on the edX platform.

Google named a Leader in 2022 Gartner® Magic Quadrant™ for Cloud Database Management Systems - For the third straight year, Gartner named Google a Leader in the 2022 Gartner Magic Quadrant for Cloud Database Management Systems.

---

Meet DoiT

We are committed to solving both essential and advanced cloud challenges. That's why we provide intelligent technology that simplifies and automates cloud use, alongside expert consultancy and unlimited technical support - all at no extra cost to our customers.

---

Articles, Tutorials

Infrastructure, Networking, Security, Kubernetes

Centralized Multi Cluster Ingress with Anthos Service Mesh - In this article, we will demonstrate how organizations can leverage Anthos to centralize the management of internet traffic using Multi Cluster Ingress (MCI) and Anthos Service Mesh (ASM).

How we validated the security controls of our new Confidential Space - Our new Confidential Space can help you secure control access to your sensitive data and collaborate in ways not previously possible, and it’s now in public Preview.

GKE Load Balancing with custom Ingress Controller using NGINX, Terraform & Helm - In this article, we are going to achieve deployment of Google Cloud Load Balancer with Custom Ingress Controller such as NGINX using Terraform.

Microservice centric Infrastructure as Code with Terraform at Voi - This post describes microservice centric Infrastructure as Code journey for Voi, Scandinavian micro mobility company.

Nginx ingress and Cloud Armor - Using Cloud Armor in Nginx Ingress.

App Development, Serverless, Databases, DevOps

Why Focus on Symptoms, Not Causes? - Why aren’t we monitoring what users care about? How did we get here? What do users care about?

Power Matchmaking with Redis Enterprise via Google Cloud Marketplace - This blog post shows the benefits of using Redis Enterprise to back the data layer of Open Match.

ANZ Bank turns to Apigee to execute a secure and compliant API strategy - ANZ Bank turns to Apigee for an API management solution that would align to its API-first strategy, while also maintaining its high performance, security, and regulatory standards.

Running database migrations with Cloud Run Jobs - With the Public Preview of Cloud Run Jobs, you can now run ad-hoc commands against your web framework deployments, including database migrations.

How to develop and test your Cloud Functions locally - This article shows how to efficiently develop and debug a Cloud Function in TypeScript locally that depends on external dependencies and is triggered by Eventarc.

How to use Google Cloud Serverless tech to iterate quickly in a startup environment - How to use Google Cloud Serverless tech to iterate quickly in a startup environment.

Introducing Cloud Functions support in Cloud Code - Cloud Code now supports Cloud Functions.

You are missing errors in Google Cloud Build steps - This article explains the usage of new fields in Cloud Build: allowFailure and allowExitCodes.

Migration from Oracle to AlloyDB made easy - This article explains the process, challenges, and benefits of migrating an Oracle database to AlloyDB with minimal to near-zero downtime.

The quest to tame Firestore - Should you choose Firestore as your NoSQL Database?

Big Data, Analytics, ML&AI

Automate data governance, extend your data fabric with Dataplex-BigLake integration - Learn how to automate data governance and your data fabric with Dataplex & BigLake integration. Allow centralizing policies in data lakes & warehouses.

BigQuery Omni: solving cross-cloud challenges by bringing analytics to your data - Customers can solve marketing analytics, data governance and data sharing challenges with cross-cloud analytics.

Year in Review for BigQuery User Friendly SQL - 2022 saw the launch of amazing new SQL capabilities for BigQuery users.

Build greener software on Google Cloud using VertFlow from OVO Energy - OVO Energy has developed VertFlow an Airflow operator for running Cloud Run Jobs in the greenest Google Cloud region with Cloud Composer.

How Vodafone Hungary migrated their data platform to Google Cloud - How Vodafone Hungary migrated their data platform to Google Cloud.

How a steel distributor reinvents its data science & ML workflows with Vertex AI - How a leader of the metal industry reinvented their data science workflows with the help of Vertex AI incl. pipelines and CI/CD steps.

Why we use Cloud Composer - Benefits and costs of using Airflow in a cloud-native environment.

Understand and optimize your BigQuery analytics queries using the query execution graph - The query execution graph provides an intuitive interface with insights to help you understand, troubleshoot and optimize your BigQuery analytics queries.

Use BigQuery AEAD functions and Tink to secure your data pipeline - Encrypt your data on the application side, and decrypt it ondemand in query time.

Google Analytics 4 and Google BigQuery linking — complete guide - Step-by-step tutorial to correctly export data from Google Analytics 4 to Google BigQuery and what you need to pay attention to in order to get the most out of the collected information.

Deduplication in BigQuery Tables: A Comparative Study of 7 Approaches - Analyzing and comparing 7 ways of deduplicating rows in a BigQuery table.

How to dynamically mask column data in BigQuery? - This guide shows how to leverage the Dynamic Data masking capability in BigQuery to obscure column data to users, while still allowing access to the column.

Smart Training of BigQuery ML models with dbt - How to create an ML pipeline with automated model retraining and build dashboards on top of it by simply combining BigQuery ML and dbt.

Efficient PyTorch training with Vertex AI - Introducing methods to improve the performance of PyTorch training with cloud data and integrates to these methods Vertex AI.

Using Vertex AI to build an industry leading Peer Group Benchmarking solution - Leveraging the latest technologies in artificial intelligence, Vertex AI is being used to build an industry leading Peer Group Benchmarking solution.

Speech AI Year in Review - Google Cloud’s 2022 announcements involving Speech-to-Text, Text-to-Speech, large language models, speech services that don’t require internet connections, and other aspects of Speech AI.

Data Profiling using Dataplex in GCP - Data users can now easily understand common characteristics of their data in GCP by leveraging the Data Profile feature of Dataplex.

A first impression of Google Cloud’s new Visual Inspection AI tool - Visual Inspection AI allows manufacturers and consumer goods companies to quickly train and deploy AI models to detect production defects.

Simplifying and Accelerating Machine Learning Predictions in Apache Beam with NVIDIA TensorRT - A walk through the integration of NVIDIA TensorRT with Apache Beam SDK and showing how complex inference scenarios can be fully encapsulated within a data processing pipeline.

Various

Googler Patricia Florissi learned to code on one of Brazil’s early personal computers—now she helps solve customers’ most complex problems - Patricia Florissi, Technical Director in Google Cloud’s OCTO is leveraging her passion for computing to tackle global problems.

Many ways to learn GCP for Free with Google Cloud over the holidays - Google Cloud is giving plenty of learning gifts to choose from this month, so take your pick from the topics below.

Slides, Videos, Audio

GCP Podcast - #330 Cloud Workstations with Marcos Grappeggia and Antoine Castex.

Kubernetes Podcast - #195 Kubernetes v1.26 Electrifying, with Leonard Pahlke.

Security Podcast - #101 Cloud Threat Detection Lessons from a CISO.

Releases

Key Access Justifications - Access Approval supports Artifact Registry in the Preview stage.

Cloud Composer - All Composer environment GKE clusters are set up with maintenance exclusions for the period between December 22, 2022 and January 2, 2022. Data lineage is available in Preview in Cloud Composer 2. Fixed an issue where a failed upgrade to the latest Cloud Composer version caused further upgrade attempts to fail. Cloud Composer 1.20.2 and 2.1.2 images are available: composer-1.20.2-airflow-1.10.15 (default) composer-1.20.2-airflow-2.2.5 composer-1.20.2-airflow-2.3.4 composer-2.1.2-airflow-2.2.5 composer-2.1.2-airflow-2.3.4 (default). Cloud Composer versions 1.17.6, 1.17.7, 2.0.0-preview.6, and 2.0.0-preview.7 have reached their end of full support period.

Compute Engine - The image import tool now supports importing RHEL 9 images to Google Cloud. Generally available: NVIDIA® T4 GPUs are now available in the following region and zones: Hong Kong, APAC: asia-east2-a,c For more information about using GPUs on Compute Engine, see GPU platforms.

Data Fusion - Cloud Data Fusion integrates with Data Catalog for asset level lineage in Preview. Cloud Data Fusion is available in the following regions: us-east5 us-south1 For more information, see Locations and Pricing.

Database Migration Service - Database Migration Service now supports high availability (HA) instances for MySQL and PostgreSQL database migrations.

Dataflow - Dataflow now supports regional placement for workers. The Dataflow VM image has been updated to include mitigations for OpenSSL CVE-2022-3602 by upgrading to cos-97-16919-189-12.

Dataplex - Dataplex BigLake integration is now available in preview. Dataplex auto data quality (AutoDQ) is now available in Preview. Dataplex data profiling is now available in Preview.

Dataproc - General Availability (GA) release of Dataproc 2.1 images. New sub-minor versions of Dataproc images: 1.5.78-debian10, 1.5.78-rocky8, 1.5.78-ubuntu18 2.0.52-debian10, 2.0.52-rocky8, 2.0.52-ubuntu18 2.1.0-debian11, 2.1.0-rocky8, 2.1.0-ubuntu20. Upgrade Cloud Storage connector version to 2.1.9 for 1.5 images. Upgrade Cloud Storage connector version to 2.2.9 for 2.1 images. New Serverless Spark runtime versions:1.0.24 and 2.0.4. Serverless Spark runtime 1.0: Upgrade to Spark to 3.2.3 Upgrade Cloud Storage connector version to 2.2.9 Upgrade dependencies: Jetty to 9.4.49.v20220914 ORC to 1.7.7 Protobuf to 3.19.6 RoaringBitmap to 0.9.35 Scala to 2.12.17. Serverless Spark runtime 2.0: Upgrade Cloud Storage connector version to 2.2.9 Upgrade Spark dependencies: Protobuf to 3.21.9 RoaringBitmap to 0.9.35. Use jemalloc as a default OS memory allocator in Dataproc Serverless for Spark runtime. Upgrade Cloud Storage connector version to 2.2.9 in Serverless Spark runtime 1.0 and 2.0. Backport Spark patches in Serverless Spark runtime 1.0 and 2.0: SPARK-39324: Log ExecutorDecommission as INFO level in TaskSchedulerImpl SPARK-40168: Handle SparkException during shuffle block migration SPARK-40269: Randomize the orders of peer in BlockManagerDecommissioner SPARK-40778: Make HeartbeatReceiver as an IsolatedRpcEndpoint.

Dialogflow - Dialogflow CX now supports flow export to diagram in the draw.io XML format. To improve security, the "dialogflow.sessions.detectIntent" and "dialogflow.sessions.streamingDetectIntent" permissions are being removed from the IAM Viewer role on January 31, 2023. Dialogflow CX now supports interaction logging export to BigQuery. Dialogflow CX added sentiment analysis support in the following regions for English (en), French (fr), Italian (it), German (de), and Spanish (es) languages: asia-southeast1 europe-west1 europe-west2 europe-west3 northamerica-northeast1.

Cloud Data Loss Prevention - A new detection model is available for the STREET_ADDRESS infoType detector.

Cloud Networking Products - Zonal Cloud DNS zones are now available in GA. Configuring Cloud DNS scopes is now available in GA.

Document AI - v1beta3. The Form Parser now supports Generic Entity Extraction in Public Preview, covering the following entity types: email: email address phone: phone number url: website URLs date_time: partial or full date/time/period address: full address or street address in a single line person: partial or full name of a person organization: full name of an organization quantity: a number specifying quantity or percentage price: a number specifying monetary amount id: a number specifying identity page_number: a number specifying page number. The Form Parser has the following feature enhancements: The Form Parser key-value pair (entity and checkbox) extraction and table extraction now support 200+ languages that are supported by the underlying multi-language OCR model.

Eventarc - Eventarc support for creating triggers for direct events from the following sources is available in Preview: API Gateway Apigee Registry BeyondCorp Certificate Manager Cloud Data Fusion Cloud Functions Cloud Memorystore for Memcached Database Migration Datastream Eventarc Workflows.

Cloud Functions - The cloudfunctions.googleapis.com/v2 API now supports reading 1st gen functions, using the get and list methods.

IAM - For information about issues with workforce identity federation, see Troubleshoot workforce identity federation.

Cloud IDS - You can disable noisy or otherwise unnecessary threat IDs by using the --threat-exceptions flag when you create or update your Cloud IDS endpoint.

Google Kubernetes Engine - Global external HTTP(S) load balancer is now supported with the GKE Gateway controller in Preview. (2022-R28) Version updates GKE cluster versions have been updated. Cloud DNS for GKE (cluster scope) is now Generally Available. GKE Autopilot clusters may now migrate the cluster's datapath provider to Dataplane V2. Compact placement policy is now generally available. Public clusters upgraded to GKE versions 1.25 and later will eventually be migrated to use Private Service Connect (PSC) for private control plane communication.

GKE - (2022-R28) Version updates Version 1.24.7-gke.900 is now the default version The following control plane and node versions are now available: 1.22.16-gke.2000 1.23.14-gke.1800 1.24.8-gke.2000 1.25.3-gke.800 1.25.4-gke.2100 The following control plane versions are no longer available: 1.22.13-gke.1000 1.22.14-gke.300 Control planes and nodes with auto-upgrade enabled will be upgraded from version 1.23 to version 1.23.13-gke.900 with this release.

Google Kubernetes Engine Rapid - (2022-R28) Version updates Version 1.25.4-gke.1600 is now the default version in the Rapid channel The following versions are now available in the Rapid channel: 1.22.16-gke.2000 1.23.14-gke.1800 1.24.8-gke.2000 1.25.4-gke.2100 The following versions are no longer available in the Rapid channel: 1.22.15-gke.100 1.23.12-gke.1600 1.24.5-gke.600 1.25.3-gke.800 Control planes and nodes with auto-upgrade enabled in the Rapid channel will be upgraded from version 1.21 to version 1.22.15-gke.1000 with this release.

Google Kubernetes Engine Regular - (2022-R28) Version updates Version 1.24.7-gke.900 is now the default version in the Regular channel The following versions are now available in the Regular channel: 1.22.16-gke.1300 1.23.14-gke.401 1.25.3-gke.800 The following versions are no longer available in the Regular channel: 1.22.13-gke.1000 1.23.12-gke.1600 Control planes and nodes with auto-upgrade enabled in the Regular channel will be upgraded from version 1.21 to version 1.22.15-gke.100 with this release.

Google Kubernetes Engine Stable - (2022-R28) Version updates Version 1.23.13-gke.900 is now the default version in the Stable channel Control planes and nodes with auto-upgrade enabled in the Stable channel will be upgraded from version 1.23 to version 1.23.13-gke.900 with this release.

StratoZone - Added ability to view collected GPUs in the StratoZone portal and run a report with collected GPU footprint. Added heterogeneous database fit recommendations and pricing for Oracle to PostgreSQL. StratoProbe 5.0.5.2 - Fixed an issue with collector creating unwanted files on target Windows assets during Fit Assessment. Fixed an issue in the StratoZone portal assessment list where the last uploaded date could be off by a few hours depending on timezone. StratoProbe 5.0.5.2 - Fixed an issue where core count collection could be off in Guest OS collection in some older Windows instances and in some older Linux distros. StratoProbe 5.0.5.2 - Updated PostgreSQL DB collection queries to detect AWS SCT extensions. StratoProbe 5.0.5.2 - Updated Oracle DB collection queries to support Oracle heterogenous fit recommendations. StratoProbe 5.0.5.2 - Updated Fit Assessment Scripts to version 1.13.1.

Cloud Monitoring - You can now use the Observability tab on the Kubernetes Engine Workloads page to see the five workloads consuming the most of a resource. You can use the new Map view on the VM Instances dashboard to visualize the health of the resources in your fleet. You can now use the Monitoring API to configure a snooze, which prevents Cloud Monitoring from sending notifications or creating incidents during specific time periods.

Cloud Router - Cloud Router supports Multiprotocol BGP (MP-BGP) and can exchange IPv6 prefixes over IPv4 BGP sessions.

Cloud VPN - Cloud VPN supports dual-stack HA VPN gateways that allow both IPv4 and IPv6 traffic.

Policy Intelligence - You can now use the Google Cloud console to write IAM policy analysis results to BigQuery.

Cloud PubSub - The Pull subscription guide is now updated with improved conceptual information regarding the following topics: StreamingPull and the Pull API Asynchronous and synchronous pull mode Pub/Sub client libraries.

SAP Solutions - Enhancements to Bare Metal Solution resource management for SAP HANA For Bare Metal Solution environments running SAP HANA, you can now view and manage your Bare Metal Solution servers, storage, and networks using the Google Cloud console, CLI, and API. Cloud Storage Backint agent for SAP HANA version 1.0.24 Version 1.0.24 of the Cloud Storage Backint agent for SAP HANA is now available.

Cloud Spanner - Cloud Spanner now offers the Cloud Spanner change streams to Pub/Sub Dataflow template, which streams Cloud Spanner data change records and writes them into Pub/Sub topics. You can now create a custom instance configuration and add optional read-only replicas to your custom instance configurations to scale reads and support low latency stale reads. Support for moving a Cloud Spanner instance is now generally available. An update to Spanner change streams provides two new data capture types for change records: NEW_VALUES mode captures only new values in non-key columns, and no old values.

Cloud SQL MySQL - MySQL 5.7.38 has been upgraded to 5.7.39. You can now allow other Google Cloud services such as BigQuery to access data in Cloud SQL for MySQL and make queries against this data over a private connection.

Cloud SQL Postgres - You can now allow other Google Cloud services such as BigQuery to access data in Cloud SQL for PostgreSQL and make queries against this data over a private connection. The Cloud SQL System insights dashboard now shows additional metrics and an events timeline.

Cloud Storage Transfer - Storage Transfer Service now offers GA Support for transferring data between file systems, including on-premises file systems and Filestore instances.

Traffic Director - A new series of enhancements for handling locality load balancing in proxyless mesh deployments is now available in GA.

Cloud Vision API - Landmark Detection Upgrade Specify "builtin/latest" in the model field of a Feature object to use the new model. Face Detection Upgrade Specify "builtin/latest" in the model field of a Feature object to use the new model.

VPC Service Controls - Preview stage support for the following integrations: Batch. Preview stage support for the following integration: Bare Metal Solution.

Virtual Private Cloud - General Availability: VPC Peering supports the exchange of IPv6 routes between peered VPC networks. Reserving static regional internal IPv6 addresses is available in Preview.

Workflows - A workflow's source and details can now be updated independently through the Cloud Console using the Source and Details tabs for quicker editing.

Access Approval - v1. Access Approval supports Artifact Registry in the Preview stage.

AlloyDB - AlloyDB for PostgreSQL is generally available (GA). The AlloyDB index advisor helps you optimize your databases by observing the queries your databases handle, and then recommending new indexes based on these observations.

Anthos Config Management - Config Controller now uses the following versions of its included products: Config Connector v1.97.0, release notes.

Anthos clusters on AWS - Anthos clusters on AWS (previous generation) aws-1.14.0-gke.2 is now available. You can now launch clusters with the following Kubernetes versions: 1.23.13-gke.2000 1.24.7-gke.2000 1.25.3-gke.1900. This release fixes the following vulnerabilities: CVE-2022-43680 CVE-2022-43680 CVE-2022-37434 CVE-2022-37434 CVE-2022-23218 CVE-2021-33574 CVE-2022-23219 CVE-2019-25013 CVE-2021-3999 CVE-2020-10029 CVE-2021-27645 CVE-2019-19126 CVE-2020-1752 CVE-2016-10228 CVE-2020-6096 CVE-2020-27618 CVE-2021-35942 CVE-2021-3326. Kubernetes version 1.25 deprecates several APIs.

Anthos clusters on bare metal - 1.12. Release 1.12.6 Anthos clusters on bare metal 1.12.6 is now available for download. The following container image security vulnerabilities have been fixed: CVE-2022-44638 CVE-2022-23491 CVE-2022-41916 CVE-2022-35737. Known issues: For information about the latest known issues, see Anthos on bare metal known issues in the Troubleshooting section. 1.14. Release 1.14.0 Anthos clusters on bare metal 1.14.0 is now available for download. Improved cluster lifecycle functionalities: Upgraded from Kubernetes version 1.24 to 1.25. Known issues: For information about the latest known issues, see Anthos on bare metal known issues in the Troubleshooting section.

Anthos clusters on Azure - You can now launch clusters with the following Kubernetes versions: 1.23.14-gke.1100 1.24.8-gke.1300 1.25.4-gke.1300. You can now upload workload metrics using Google Managed Service for Prometheus with managed collection to Cloud Monarch. Azure ActiveDirectory is now supported in GA, letting cluster admins configure RBAC policies based on Azure AD groups for authorization in clusters and supporting retrieval of groups information for users belonging who belong to more than 200 groups. Added a new token manager (gke-token-manager) to generate tokens for control plane components. As a preview feature, Google Cloud Monitoring can now ingest a set of control plane metrics from kube-apiserver, kube-scheduler, kube-controller manager and etcd. Administrators can grant Azure cluster access to all members of a Google Group by granting the required RBAC permission to the group. Static pods running on the cluster's control plane VMs are now restricted to run as non-root Linux users. This release fixes the following vulnerabilities: CVE-2016-10228 CVE-2019-19126 CVE-2019-25013 CVE-2020-10029 CVE-2020-16156 CVE-2020-1752 CVE-2020-27618 CVE-2020-6096 CVE-2021-27645 CVE-2021-3326 CVE-2021-33574 CVE-2021-35942 CVE-2021-3671 CVE-2021-3999 CVE-2021-4037 CVE-2021-43618 CVE-2022-0171 CVE-2022-1184 CVE-2022-1586 CVE-2022-1587 CVE-2022-20421 CVE-2022-23218 CVE-2022-23219 CVE-2022-2602 CVE-2022-2663 CVE-2022-2978 CVE-2022-3061 CVE-2022-3116 CVE-2022-3176 CVE-2022-32221 CVE-2022-3303 CVE-2022-35737 CVE-2022-3586 CVE-2022-3621 CVE-2022-3646 CVE-2022-3649 CVE-2022-37434 CVE-2022-3903 CVE-2022-39188 CVE-2022-39842 CVE-2022-40303 CVE-2022-40304 CVE-2022-40307 CVE-2022-40768 CVE-2022-4095 CVE-2022-41674 CVE-2022-41916 CVE-2022-42010 CVE-2022-42011 CVE-2022-42012 CVE-2022-42719 CVE-2022-42720 CVE-2022-42721 CVE-2022-42722 CVE-2022-43680 CVE-2022-43750 CVE-2022-44638. Fixed an issue in which outdated versions of gke-connect-agent were not always removed after cluster upgrades. Kubernetes 1.22 versions are no longer supported. Kubernetes version 1.25 deprecates several APIs.

Anthos clusters on VMware - Anthos clusters on VMware 1.13.3-gke.26 is now available. Added yq tool in the admin workstation to simplify troubleshooting. Fixed an issue where anet-operator could be scheduled to a Windows node with enableControlplaneV2: true.

Anthos - Anthos components release notes Anthos clusters on-premises Anthos clusters on VMware Anthos clusters on bare metal Anthos clusters on other public clouds Anthos clusters on AWS Anthos clusters on Azure Anthos applications and services Anthos Config Management Anthos Service Mesh Binary Authorization Cloud Run for Anthos Cloud Logging Cloud Monitoring Migrate to Containers. Anthos component releases for October, 2022 Anthos clusters on VMware: October 28, 2022: CVE-2022-20409 October 27, 2022: CVE-2022-3176 October 25, 2022: 1.12.3-gke.23 patch release October 13, 2022: 1.11.4-gke.32 patch release October 12, 2022 October 11, 2022 Anthos clusters on bare metal: October 31, 2022: 1.13.1 patch release October 28, 2022: 1.11.7 patch release October 05, 2022: 1.12.3 patch release Anthos clusters on AWS: October 28, 2022: CVE-2022-3176 October 14, 2022: patch release Anthos clusters on Azure: October 28, 2022: CVE-2022-3176 Anthos Config Management: October 27, 2022: 1.13.1 minor release Anthos Service Mesh: October 25, 2022: 1.15.2-asm.6, 1.14.5-asm.3, 1.13.9-asm.1 patch releases October 19, 2022: Managed Anthos Service Mesh October 05, 2022: 1.14.4-asm.2, 1.13.8-asm.3, 1.13.8-asm.4, 1.12.9-asm.3 patch releases Connect: N/A Cloud Run for Anthos: N/A Migrate to Containers: N/A Cloud Logging: October 31, 2022: release updates October 24, 2022: release updates October 21, 2022: release updates October 17, 2022: release updates October 10, 2022: release updates October 04, 2022: release updates October 03, 2022: release updates Cloud Monitoring: October 24, 2022, 2022: release updates October 21, 2022, 2022: release updates October 20, 2022, 2022: release updates October 13, 2022, 2022: release updates October 04, 2022, 2022: release updates.

Anthos GKE on AWS - Anthos clusters on AWS (previous generation) aws-1.14.0-gke.2 is now available. You can now launch clusters with the following Kubernetes versions: 1.23.13-gke.2000 1.24.7-gke.2000 1.25.3-gke.1900. This release fixes the following vulnerabilities: CVE-2022-43680 CVE-2022-43680 CVE-2022-37434 CVE-2022-37434 CVE-2022-23218 CVE-2021-33574 CVE-2022-23219 CVE-2019-25013 CVE-2021-3999 CVE-2020-10029 CVE-2021-27645 CVE-2019-19126 CVE-2020-1752 CVE-2016-10228 CVE-2020-6096 CVE-2020-27618 CVE-2021-35942 CVE-2021-3326. Kubernetes version 1.25 deprecates several APIs.

AppEngine Standard - You can now use any configured service account in your Cloud project as the app-level default service account, while creating and updating your App Engine applications.

Google Cloud Armor - Advanced network DDoS protection is now Generally Available for network load balancers, protocol forwarding, and VMs with public IP addresses.

Cloud Asset Inventory - The following resource types are now publicly available through the Export APIs (ExportAssets, ListAssets, and BatchGetAssetsHistory), Feed API, and Search APIs (SearchAllResources, SearchAllIamPolicies).

Bare Metal Solution - Enhancements to Bare Metal Solution resource management for SAP HANA–For Bare Metal Solution environments running SAP HANA, you can now use the Google Cloud console, gcloud CLI, and API to view and manage your Bare Metal Solution servers, storage, and networks.

Batch - Any job can use a custom machine type. Preview: Batch supports VPC Service Controls, which lets you create perimeters that protect the resources and data of Google Cloud services that you explicitly specify.

BigQuery - You can now access and query Cloud SQL data over a private connection.

Certificate Manager - You can now view a list of certificates managed by Certificate Manager in your project in the Cloud Console.

Chronicle - New endpoint for UK Chronicle has added a supported region for Chronicle customers in the UK, europe-west2.