Skip to content

CHANGELOG.md

Latest commit

 

History

History
123 lines (68 loc) · 7.18 KB

CHANGELOG.md

File metadata and controls

123 lines (68 loc) · 7.18 KB

1.11.4 (April 9, 2025)

BUG FIXES:

  • disable X25519Kyber768Draft00 in TLS to prevent timouts with some AWS network firewalls (#36791)

  • write-only attributes: internal providers should set write-only attributes to null (#36824)

1.11.3 (March 26, 2025)

BUG FIXES:

  • Fixes unintended exit of CLI when using the remote backend and applying with post-plan tasks configured in HCP Terraform (#36686)

  • Modules with zero instances that contain ephemeral resources could produce an error during apply (#36719)

1.11.2 (March 12, 2025)

ENHANCEMENTS:

  • Azure Backend supports ADO Pipelines OIDC token refresh by using the oidc_request_url, oidc_request_token and (the new) ado_pipeline_service_connection_id. (#36458)

BUG FIXES:

  • Return error when the templatestring function contains only a single interpolation that evaluates to a null value (#36652)

  • Backend/azure: subscription_id be optional & skip unnecessary management plane API call in some setup (#36595)

NOTES:

  • Updated dependency github.com/hashicorp/aws-sdk-go-base/v2 to v2.0.0-beta.62 to support newly added AWS regions (#36625)

1.11.1 (March 5, 2025)

BUG FIXES:

  • Temporarily revert updated Windows symlink handling until we can account for known existing configurations using non-symlink junctions. (#36575)

  • terraform test: Fix crash when a run block attempts to cleanup after a non-applyable plan. (#36582)

  • Updated dependency golang.org/x/oauth2 from v0.23.0 => v0.27.0 to integrate latest changes (fix for CVE-2025-22868) (#36584)

  • lang/funcs/transpose: Avoid crash due to map with null values (#36611)

  • Combining ephemeral and sensitive marks could fail when serializing planned changes (#36619)

1.11.0 (February 27, 2025)

NEW FEATURES:

  • Add write-only attributes to resources. Providers can specify that certain attributes are write-only. They are not persisted in state. You can use ephemeral values in write-only attributes. (#36031)

  • terraform test: The -junit-xml option for the terraform test command is now generally available. This option allows the command to create a test report in JUnit XML format. Feedback during the experimental phase helped map terraform test concepts to the JUnit XML format, and new additons may happen in future releases. (#36324)

  • S3 native state locking is now generally available. The use_lockfile argument enables users to adopt the S3-native mechanism for state locking. As part of this change, we've deprecated the DynamoDB-related arguments in favor of this new locking mechanism. While you can still use DynamoDB alongside S3-native state locking for migration purposes, we encourage migrating to the new state locking mechanism. (#36338)

ENHANCEMENTS:

  • init: Provider installation will utilise credentials configured in a .netrc file for the download and shasum URLs returned by provider registries. (#35843)

  • terraform test: Test runs now support using mocked or overridden values during unit test runs (e.g., with command = "plan"). Set override_during = plan in the test configuration to use the overridden values during the plan phase. The default value is override_during = apply. (#36227)

  • terraform test: Add new state_key attribute for run blocks, allowing test authors control over which internal state file should be used for the current test run. (#36185)

  • Updates the azure backend authentication to match the terraform-provider-azurermprovider authentication, in several ways:

    • github.com/hashicorp/go-azure-helpers: v0.43.0 -> v0.71.0
    • github.com/hashicorp/go-azure-sdk/[resource-manager/sdk]: v0.20241212.1154051. This replaces the deprecated Azure SDK used before
    • github.com/jackofallops/giovanni: v0.15.1 -> v0.27.0. Meanwhile, updating the azure storage API version from 2018-11-09 to 2023-11-03
    • Following new properties are added for the azure backend configuration:
      • use_cli
      • use_aks_workload_identity
      • client_id_file_path
      • client_certificate
      • client_id_file_path
      • client_secret_file_path (#36258)

  • Include ca-certificates package in our official Docker image to help with certificate handling by downstream (#36486)

BUG FIXES:

  • ephemeral values: correct error message when ephemeral values are included in provisioner output (#36427)

  • Attempting to override a variable during apply via TF_VAR_ environment variable will now yield warning instead of misleading error. (#36435)

  • backends: Fix crash when interrupting during interactive prompt for values (#36448)

  • Fixes hanging behavior seen when applying a saved plan with -auto-approve using the cloud backend (#36453)

Previous Releases

For information on prior major and minor releases, refer to their changelogs: