Terraform
HashiCorp Terraform core releases and blog.
- HashiCorp Blog bloginfraengineer ·
Terraform adds cost visibility and project notifications
Terraform's latest release enhances operational overhead reduction with new cost visibility features and strengthens governance and security through project-level notifications. These updates aim to provide better control and insight across the infrastructure lifecycle for users of HCP Terraform and Terraform Enterprise.
feature patch - Terraform Databricks Provider Releases terraforminfradatabricksdeprecationengineer ·
Databricks Terraform Provider v1.115.0 fixes state decoding and account-level data source issues
Databricks Terraform Provider v1.115.0 resolves several bugs affecting state decoding and account-level operations for various data sources and resources, including `databricks_library` and `databricks_service_principal`. These fixes enhance stability and correct regressions introduced in previous versions, benefiting users managing Databricks resources via Terraform, particularly at the account level.
patch - Terraform AzureRM Provider Releases terraforminfraazureengineer ·
Terraform Provider Azure Resource Manager v4.72.0 Adds New Subnet Resource
Terraform Provider Azure Resource Manager v4.72.0 introduces a new resource for managing Azure Subnets, alongside several enhancements and bug fixes. These updates improve configuration options for services like Frontdoor and Log Analytics, enhance security by marking sensitive fields, and migrate Cosmos resources to the go-azure-sdk. These changes benefit engineers and architects managing Azure infrastructure via Terraform.
feature patch - HashiCorp Blog blogsecurityinfraengineer ·
IBM Vault Enterprise 2.0 adds LDAP secrets management
IBM Vault Enterprise 2.0 introduces centralized rotation for LDAP static roles, enabling self-managed flows and automated lifecycle management. This feature simplifies secrets management by consolidating control and automating updates for LDAP-based access.
feature - Terraform AWS Provider Releases terraforminfraawsengineer ·
Terraform AWS Provider v6.44.0: New resources, DynamoDB index no longer experimental
Terraform AWS Provider version 6.44.0 introduces several new resources, including data sources for AWS Glue Catalog and list resources for various services. The `aws_dynamodb_global_secondary_index` resource is now out of experimental status and subject to backwards compatibility guarantees. These updates provide Terraform users with expanded capabilities for managing AWS infrastructure.
feature patch - Terraform Google Provider Releases terraforminfragcpgapreviewengineer ·
Terraform Google Provider v7.31.0: New resources and compute improvements
This release of the Terraform Google Provider introduces new data sources and resources for services like Artifact Registry, Contact Center AI, and Firebase App Check. Several compute-related resources have been migrated to use direct HTTP calls, enhancing efficiency. Additionally, various improvements and bug fixes are included across services such as Cloud Deploy, Dataplex, and BigQuery, impacting users managing GCP infrastructure via Terraform.
feature patch - HashiCorp Blog bloginfrapreviewengineer ·
HCP Terraform with Infragraph enters public preview
HCP Terraform powered by Infragraph is now in public preview, aiming to address data silos in hybrid and multi-cloud environments. This new capability provides a unified view to optimize and secure infrastructure configurations, benefiting teams managing complex cloud estates.
feature - HashiCorp Blog blogsecurityinfraengineer ·
Secure RDP with Boundary and Vault using Dynamic Credentials
This article explains the importance of dynamic credentials for infrastructure access and demonstrates how Boundary and Vault can integrate with Windows AD DS. This integration enhances security for RDP connections by mitigating credential exposure risks.
announcement - Terraform Core Releases terraforminfraengineer ·
Terraform v1.15.1: Bug fixes for configuration and init
Terraform version 1.15.1 addresses several bugs, including crashes related to invalid configuration blocks, issues with non-constant variable checks during initialization, and provider pre-release handling. These fixes improve stability and reliability for users performing Terraform operations.
patch - HashiCorp Blog blogsecurityinfraengineer ·
HashiCorp Vault Secrets Operator automates Kubernetes secret management
HashiCorp Vault Secrets Operator (VSO) enhances secret delivery for Kubernetes and Red Hat OpenShift environments. This automation simplifies secure secret lifecycle management for enterprises operating at scale.
feature - Terraform Databricks Provider Releases terraforminfradatabricksengineer ·
Databricks Terraform Provider v1.114.2: Adopt Existing Postgres Resources
Databricks Terraform provider v1.114.2 introduces the ability to adopt pre-existing PostgreSQL branch and endpoint resources using `replace_existing = true`. This simplifies migration by allowing Terraform to manage existing resources. Additionally, internal changes address potential drift issues with external locations by marking a field as computed with diff suppression.
patch - Terraform AzureRM Provider Releases terraforminfraazureengineer ·
Terraform Azure Provider v4.71.0 Adds CDN Security Policy Data Source
Version 4.71.0 of the AzureTerraform provider introduces a new data source for CDN Frontdoor security policies and includes enhancements to various services like Event Hubs and Kubernetes clusters. It also addresses several bug fixes, including issues with MSSQL managed databases and network security rules, impacting users managing Azure infrastructure via Terraform.
feature patch - HashiCorp Blog blogaiinfraengineer ·
Vault Enterprise Adds SPIFFE Auth for AI Agents
Vault Enterprise now supports SPIFFE authentication for non-human identities, including AI agents. This integration simplifies securing and extending authentication for these dynamic workloads, benefiting teams managing AI agent security.
feature - HashiCorp Blog bloginfraengineer ·
Terraform Registry adds Partner Premier tier
HashiCorp has launched a new "Partner Premier" status within the Terraform Registry. This introduces a new tier for partners, aiming to enhance discoverability and trust for Terraform providers.
announcement feature - HashiCorp Blog blogsecurityinfraengineer ·
IBM Vault Enterprise 2.0 Automates Local Account Password Rotation
IBM Vault Enterprise 2.0 now automates local account password rotation using SSH. This feature replaces shared passwords with unique, audited credentials, significantly reducing security risks for organizations.
feature - Terraform AWS Provider Releases terraforminfraawsdeprecationengineer ·
Terraform AWS Provider v6.43.0: New resources and bug fixes
This release of the Terraform AWS Provider introduces several new data sources and resources, including those for AWS Security Hub and EC2 Network Insights. Enhancements focus on resource identity support across various services and an update for AWS Bedrock Agent Core. A notable bug fix addresses plan-time errors with CloudWatch metric alarms, and improvements were made to ECS Express Gateway Service error handling. This update impacts users managing AWS infrastructure via Terraform.
feature patch - HashiCorp Blog bloginfraawsengineer ·
HashiCorp Vault and Boundary for Scalable SSH Access
HashiCorp has updated its approach to building scalable, role-based SSH access using SSH certificates, Vault, and Boundary. This solution is designed for modern hybrid and multi-cloud environments, enhancing security and manageability for accessing infrastructure.
feature - Terraform Core Releases terraforminfraawsdeprecationengineer ·
Terraform 1.15.0 adds Windows ARM64 builds and variable support in module sources
Terraform v1.15.0 introduces builds for Windows ARM64 and allows variables and locals in module source and version attributes. It also adds a `deprecated` attribute for variables and outputs, enabling better lifecycle management for configurations. These changes benefit engineers managing diverse environments and complex module dependencies by providing more flexibility and clearer deprecation signals.
feature patch deprecation - Terraform Databricks Provider Releases terraformdatadatabricksengineer ·
Databricks Terraform Provider Adds Disaster Recovery and Supervisor Agent Resources
Databricks Terraform Provider v1.114.0 introduces new resources for managing disaster recovery failover groups, stable URLs, and supervisor agents, alongside support for adopting pre-existing PostgreSQL branch and endpoint resources. This release enhances infrastructure management capabilities for Databricks users, impacting engineers and architects responsible for data platform deployment and resilience.
feature patch - Terraform Google Provider Releases terraforminfragcpengineer ·
Terraform Provider for Google v7.30.0
This release of the Terraform Google Provider introduces new resources for Data Lineage, Artifact Registry, Document AI, and Firebase Remote Config. It also includes improvements such as support for regional endpoints, new disk types for Workbench instances, and enhanced BigQuery connection configurations. A breaking change in the Apigee provider requires the `name` field for `google_apigee_env_keystore`.
breaking feature patch