AlloyDB for PostgreSQL
Feature
You can now create an AlloyDB instance with a specific IP address range using the Google Cloud CLI, Terraform, or REST API. You can also override IP address range allocations configured during cluster creation. For more information, see Create an instance with a specific IP address range. This feature is generally available GA.
Apigee Advanced API Security
Announcement
On July 14, 2025 we released an updated version of Advanced API Security
Note: Rollouts of this release to production instances will begin within two business days and may take four or more business days to complete across all Google Cloud zones. Your instances may not have the feature available until the rollout is complete.
Feature
Support for editing and deleting security actions
With this release you can edit and delete existing security actions using either the UI or the Apigee Management APIs.
For usage information, see the security actions documentation.
Cloud Composer
Changed
We’re changing the way we provide support dates for Airflow builds in Cloud Composer 3. Before this change, some Airflow builds had their end of support date listed as “To be announced” until a later Airflow version became available. We’re deprecating this approach for all builds that are released after July 01, 2025.
We are now providing support dates that depend on a date when a particular Airflow build was released:
- We are introducing the standard support period of 12 months after the release date.
- All Airflow builds that didn’t have an end of support date when this change was introduced are supported until July 1, 2026. Because of this change, some Airflow builds released before July 1, 2025 are supported for longer than the standard support period.
- All Airflow builds that had their support date shorter than 12 months are now supported for 12 months since the date of their initial release.
- All builds released after July 1, 2025 will use the standard support period.
Cloud Logging
Libraries
A weekly digest of client library updates from across the Cloud SDK.
Java
Changes for google-cloud-logging
3.23.0 (2025-07-11)
Features
Dependencies
Confidential VM
Issue
As of June 20, 2025, Confidential VM instances using AMD SEV-SNP or Intel TDX do not support remote attestation when running the following guest OS images:
-
SLES 15 SP7
-
Ubuntu 25.04
To restore remote attestation, use an earlier guest OS version such as SLES 15 SP6 or Ubuntu 24.04.
Config Connector
Announcement
Config Connector version 1.132.1 is now available.
Changed
Reconciliation Improvements:
- SpannerInstance
- You can opt-in the direct controller by adding the
alpha.cnrm.cloud.google.com/reconciler: directannotation to theSpannerInstanceresource`. - Direct controller is opt-in if using the following fields:
spec.labelsspec.defaultBackupScheduleTypespec.editionspec.autoscalingConfig
- You can opt-in the direct controller by adding the
Container Optimized OS
Changed
cos-117-18613-263-66
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v24.0.9 | v1.7.27 | See List |
Changed
Upgraded nvidia-container-toolkit to v1.17.8.
Fixed
Updated google-guest-agent to v20250701.01.
Security
Updated app-editors/nano to v8.5. This resolves
CVE-2024-5742.
Security
Upgraded vim, vim-core to
version 9.1.1500. This fixes CVE-2025-26603, CVE-2025-27423,
CVE-2025-29768, CVE-2025-1215, CVE-2025-24014, CVE-2025-22134.
Changed
Runtime sysctl changes:
- Changed: fs.file-max: 811799 -> 811784
Changed
cos-109-17800-519-47
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.1.141 | v24.0.9 | v1.7.27 | See List |
Changed
Upgraded nvidia-container-toolkit to v1.17.8.
Fixed
Upgraded sys-apps/less to v679.
Security
Updated app-editors/nano to v8.5. This resolves
CVE-2024-5742.
Security
Upgraded vim, vim-core to
version 9.1.1500. This fixes CVE-2025-26603, CVE-2025-27423,
CVE-2025-29768, CVE-2025-1215, CVE-2025-24014, CVE-2025-22134.
Changed
Runtime sysctl changes:
- Changed: fs.file-max: 812201 -> 812258
Changed
cos-121-18867-90-85
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.6.93 | v27.5.1 | v2.0.4 | See List |
Changed
Upgraded nvidia-container-toolkit to v1.17.8.
Fixed
Updated google-guest-agent to v20250701.01.
Security
Updated app-editors/nano to v8.5. This resolves
CVE-2024-5742.
Security
Upgraded vim, vim-core to
version 9.1.1500. This fixes CVE-2025-26603, CVE-2025-27423,
CVE-2025-29768, CVE-2025-1215, CVE-2025-24014, CVE-2025-22134.
Changed
cos-113-18244-382-60
| Kernel | Docker | Containerd | GPU Drivers |
| COS-6.1.141 | v24.0.9 | v1.7.27 | See List |
Changed
Upgraded nvidia-container-toolkit to v1.17.8.
Fixed
Upgraded sys-apps/less to v679.
Security
Updated app-editors/nano to v8.5. This resolves
CVE-2024-5742.
Security
Upgraded vim, vim-core to
version 9.1.1500. This fixes CVE-2025-26603, CVE-2025-27423,
CVE-2025-29768, CVE-2025-1215, CVE-2025-24014, CVE-2025-22134.
Dataform
Feature
Updates to the automatic cataloging of Dataform metadata in Dataplex improve the near real-time management and search capabilities for repository metadata. These features are generally available (GA).
Deep Learning VM Images
Breaking
The following framework versions have reached their end of patch and support dates:
- Base versions with CUDA 12.4 and earlier
- Tensorflow versions 2.17 and earlier
- PyTorch versions 2.3 and earlier
To view the end of patch and support dates, see Supported framework versions.
For more information on what the end of patch and support date means, see Support policy schedule.
If you must use an image after deprecation against Google security recommendations and at your own risk, see After deprecation.
Generative AI on Vertex AI
Feature
Multimodal MedGemma 27B IT, MedSigLIP, and T5Gemma models are available through Model Garden.
Google Cloud VMware Engine
Announcement
VMware Engine ve2 nodes are now available in the São Paulo, Brazil (southamerica-east1-c) zone in the São Paulo region (southamerica-east1).
Google Kubernetes Engine
Fixed
Windows NVMe attached disks are supported only in GKE version
1.33.2-gke.1240000 and later. In earlier GKE versions, creating
PersistentVolumeClaims on Windows nodes that use NVMe volumes results in errors.
For more information about the disk interface types that are used by machine
families, see the Compute Engine
Machine series comparison.
If you have Windows workloads that use machine families that support only NVMe,
upgrade your clusters to version 1.33.2-gke.1240000 or later.
Pub/Sub
Libraries
A weekly digest of client library updates from across the Cloud SDK.
Python
Changes for google-cloud-pubsub
2.31.0 (2025-06-26)
Features
Bug Fixes
Security Command Center
Changed
In the Google Kubernetes Engine (GKE) security posture dashboard, the software vulnerabilities pane is available in Preview, not General Availability.
Spanner
Feature
Spanner Data Boost supports data stored on hard disk drives (HDD). This feature is generally available (GA).
VPC Service Controls
Feature
Preview stage support for the following integration:
Vertex AI
Feature
Multimodal MedGemma 27B IT, MedSigLIP, and T5Gemma models are available through Model Garden.
Source: Google Cloud Platform
Latest Posts
- (Updated) Microsoft Viva Insights: New prompt categories in the Microsoft Copilot Dashboard [MC1092459]
- (Updated) Contact Unification across Outlook and Teams [MC695487]
- (Updated) Microsoft Teams: Support for making a silent test call [MC1089323]
- Introducing the Fabric Notebooks Competition for Power BI
