fix(deps)!: Update Terraform terraform-google-modules/kubernetes-engine/google to v44

[renovate-bot]

This PR contains the following updates:

Package	Type	Update	Change
terraform-google-modules/kubernetes-engine/google (source)	module	major	~> 40.0 → ~> 44.0

---

Release Notes

terraform-google-modules/terraform-google-kubernetes-engine (terraform-google-modules/kubernetes-engine/google)

v44.0.0

Compare Source

⚠ BREAKING CHANGES

• TPG>=7.17: add support for node_drain_config (#​2535)
• TPG>=7.10: bump min google provider to 7.10 for network_tier_config support (#​2527)

Features

• Add private endpoint subnetwork variable for safer cluster modules (#​2540) (ca18dbc)
• allow cluster creation without node pool (#​2520) (8b65cd7)
• sa: Adjustment to the SA description and reference to the member attribute (#​2518) (b4ac6d9)
• TPG>=7.17: add support for node_drain_config (#​2535) (1f95a65)

Bug Fixes

• Add example for multi network configuration for gke-node-pool module (#​2514) (11193a5)
• auto_provisioning_defaults not created when enable_default_compute_class=true and NAP disabled (#​2547) (8e7afd9)
• TPG>=7.10: bump min google provider to 7.10 for network_tier_config support (#​2527) (04dc4af)

v43.0.0

Compare Source

⚠ BREAKING CHANGES

• remove istio and kalm (#​2505)
• add sensitive endpoint for TPG v7.14 (#​2509)

Features

• add support for provisioned_iops and provisioned_throughput (#​2510) (4579c46)
• allow new hashicorp/kubernetes version 3.0.0 (#​2501) (841d889)

Bug Fixes

• add sensitive endpoint for TPG v7.14 (#​2509) (8d309be)
• Adding output types to metadata.yaml for gke-standard-cluster (#​2492) (0d4b38a)
• deps: Update Terraform kubernetes to v3 (#​2504) (6c2d800)
• remove istio and kalm (#​2505) (c6947f3)

v42.0.0

Compare Source

⚠ BREAKING CHANGES

• making location field as required for standard cluster (#​2495)
• gke-node-pool: module to allow List configurations for fields (#​2496)
• support enabling default compute class in cluster autoscaler (#​2442)

Features

• add auto_monitoring_config in GKE managed_prometheus (#​2420) (04c88e6)
• add network tier configuration (#​2497) (873d39e)
• add support for transparent huge pages configs (#​2464) (8297521)
• support enabling default compute class in cluster autoscaler (#​2442) (3569f13)

Bug Fixes

• additional_ip_ranges_config (#​2458) (839093c)
• gke-node-pool: module to allow List configurations for fields (#​2496) (dc798c1)
• making location field as required for standard cluster (#​2495) (5f7d53c)

v41.0.2

Compare Source

Bug Fixes

• updated the option for evaluation mode (#​2482) (3d577fb)

v41.0.1

Compare Source

Bug Fixes

• Regex for network, subnetwork, CIDR block and Workload Pool in standard and autopilot cluster (#​2479) (4f47d6a)

v41.0.0

Compare Source

⚠ BREAKING CHANGES

• TPG>=7.0: adding default_compute_class_enabled (#​2434)

Features

• add support for anonymous_authentication_config (#​2436) (f27a2dd)
• add support for NAP/autopilot resource manager tags (#​2447) (3a1945f)
• TPG>=7.0: adding default_compute_class_enabled (#​2434) (b61584c)

Bug Fixes

• add required fields for GKE autopilot and standard cluster (#​2461) (a3da13d)
• syntax in main.tf for field cost_management_config (#​2466) (6a9b284)
• updated description in nodepool field (#​2471) (f43ad46)

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[dpebot]

/gcbrun

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request performs a significant upgrade of the terraform-google-modules/kubernetes-engine/google module to its latest major version, v44.0. This update consolidates numerous features, bug fixes, and breaking changes accumulated across several intermediate major versions (v37.0.0 through v44.0.0). The primary purpose is to ensure the project benefits from the most current capabilities and security enhancements available for Google Kubernetes Engine provisioning, while also necessitating a thorough review for compatibility due to the breaking changes.

Highlights

• Major Version Update: The terraform-google-modules/kubernetes-engine/google module has been updated from version ~> 36.0 to ~> 44.0, incorporating multiple major releases and their cumulative changes.
• Breaking Changes Introduced: This update includes several breaking changes across versions, such as requiring a minimum Google Provider version (e.g., 7.10, 7.17), changes to node_drain_config, removal of Istio and Kalm integrations, making the location field required for standard clusters, and updates to additional_ip_ranges_config.
• New GKE Features: New features include support for node_drain_config, private endpoint subnetwork, cluster creation without node pool, provisioned_iops and provisioned_throughput, network tier configuration, default compute class, lustre csi driver, rbac_binding_config, gke_auto_upgrade_config, multi networking, storage_pools, HPA profile, in_transit_encryption_config, and confidential nodes.
• Google Provider Update: The underlying Terraform Google Provider has been updated to v7, which may introduce further changes and require compatibility checks.

Changelog

• terraform-google-modules/kubernetes-engine/google
  • v44.0.0: Introduced breaking changes for TPG>=7.17 (node_drain_config) and TPG>=7.10 (min Google provider, network_tier_config). Added features like private endpoint subnetwork variable and allowing cluster creation without a node pool.
  • v43.0.0: Removed Istio and Kalm integrations (breaking change). Added support for provisioned_iops and provisioned_throughput, and allowed HashiCorp Kubernetes version 3.0.0.
  • v42.0.0: Made the location field required for standard clusters (breaking change). Added features for auto_monitoring_config, network tier configuration, and transparent huge pages configs.
  • v41.0.0: Breaking change for TPG>=7.0 by adding default_compute_class_enabled. Features included anonymous_authentication_config and NAP/autopilot resource manager tags.
  • v40.0.0: Properly implemented additional_ip_ranges_config (breaking change) and updated Terraform terraform-google-modules/gcloud/google to v4 (breaking change).
  • v39.0.0: Breaking changes for TPG >= 6.47 to add support for lustre csi driver and rbac_binding_config. Features included enable_k8s_beta_apis and additional_pod_ranges_config.
  • v38.1.0: Updated Terraform Google Provider to v7 (major feature).
  • v38.0.0: Introduced breaking changes for data cache count, TPG>=6.42 (gke_auto_upgrade_config), flex start, TPG>=6.41 (performance_monitoring_unit), and TPG>=6.39 (Fleet app operator permissions custom roles).
  • v37.1.0: Added features such as autopilot confidential nodes example, ip_endpoints_enabled variable, in_transit_encryption_config, max_run_duration, multi networking, windows config, and GCS FUSE CSI driver support.
  • v37.0.0: Breaking changes included removing ip-masq configmap for autopilot, bumping hpa_profile to GA for TPG>=6.38, adding storage_pools support for TPG>=6.36, allowing in-place update for enable_gvnic and enable_confidential_nodes for TPG>=6.33, and adding support for disable_l4_lb_firewall_reconciliation for TPG>=6.28.

Activity

• This pull request was automatically generated by renovate-bot to update a dependency.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[gemini-code-assist]

Code Review

This pull request updates the terraform-google-modules/kubernetes-engine/google module from version ~> 36.0 to ~> 44.0. This is a major version update. My review confirms the version bump and also identifies an opportunity for improvement. The GKE cluster modules are using deprecated beta- submodule paths. I've recommended updating these paths to the current, non-beta versions to improve long-term maintainability, which is a good practice when performing a major version upgrade.

[gemini-code-assist]

The beta-private-cluster submodule used on the preceding line is deprecated. As you are performing a major version upgrade, this is a good opportunity to switch to the recommended private-cluster submodule for better maintainability.

Suggestion:
Update line 250 to:

source  = "terraform-google-modules/kubernetes-engine/google//modules/private-cluster"

[gemini-code-assist]

Similarly, the beta-autopilot-private-cluster submodule used on the preceding line is deprecated. Please update it to autopilot-private-cluster to align with the module's latest structure.

Suggestion:
Update line 339 to:

source  = "terraform-google-modules/kubernetes-engine/google//modules/autopilot-private-cluster"

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[dpebot]

/gcbrun

[forking-renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.