Google Cloud SDK 220.0.0 introduces several breaking changes, including default disabling of legacy metadata APIs for new Kubernetes Engine node pools and deprecation of the internal gsutil implementation for Python 3 support. Key security enhancements include default secure node pool configurations and KMS encryption for Dataproc clusters. New features span across various services, adding enhanced logging, Python version specification for Composer, and DML support for Cloud Spanner queries.

Jump to: Annotated Release Notes | Stats 📊

Breaking Changes

  • Modified output of gcloud container clusters list for DEGRADED clusters to include reason for degradation.
  • Starting in 1.12, new Kubernetes Engine node pools (and default node pools in new clusters) will be created with their legacy Compute Engine instance metadata APIs disabled by default. The flag --metadata disable-legacy-endpoints=true can be used to explicitly create a new node pool (or default pool in a new cluster) with legacy metadata APIs disabled.
  • The gsutil implementation for specific commands is now deprecated to support Python 3. Commands that previously called gsutil internally (e.g., functions deploy, compute images import, dataproc jobs submit variants, composer environments storage commands) now use a different implementation. The storage/use_gsutil property can temporarily restore the old behavior but will eventually be removed.

Security Updates

  • Starting in 1.12, new Kubernetes Engine node pools (and default node pools in new clusters) will have their legacy Compute Engine instance metadata APIs disabled by default to enhance metadata protection. Users can explicitly disable them with --metadata disable-legacy-endpoints=true. [HIGH]
  • Added the --gce-pd-kms-key flag to dataproc clusters create to enable protecting clusters with Google Cloud KMS encryption for persistent disks. [MEDIUM]

New Features by Service

Cloud SDK

  • Commands that upload to Google Cloud Storage can now control the upload/download chunksize using the storage/chunk_size property.
  • Added functionality to gcloud beta help that allows running a search for terms of interest within the help text of gcloud commands.

Cloud Build

  • Added a warning message to gcloud builds submit for builds submitted with configs that don’t specify a logging option.

Cloud Composer

  • Added the --python-version flag to gcloud beta composer environments create to specify the Python version used within the created environment.

Cloud Dataproc

  • Added the --gce-pd-kms-key flag to dataproc clusters create to enable protecting clusters with Google Cloud KMS encryption.

Cloud Key Management Service

  • Modified gcloud kms locations list to display information about the availability of Hardware Security Modules in each location.

Compute Engine

  • Added support for managed SSL certificates to gcloud beta compute ssl-certificates.

Internet of Things

  • Added --log-level flag for gcloud iot devices create, gcloud iot devices update, gcloud iot registries create, and gcloud iot registries update for beta.
  • Added gcloud iot commands to beta, expanding IoT Core command-line capabilities.

API Changes

App Engine

Cloud Spanner

  • Updated gcloud spanner execute-sql to accept DML statements, extending its functionality for database interaction.

Stats

  • Files changed: 122
  • Inserted lines: +6,406
  • Deleted lines: -707

Generated by Gemini - View full diff

Google, Google Cloud, and gcloud are trademarks of Google LLC. This analysis was automatically generated by an AI agent examining only public release artifacts, without access to internal or non-public information from Google Cloud.