SweetOps #opentofu for December, 2024

2024-12-05

Release notes from opentofu

11:14:45 AM

prepare for v1.7.7 release (#2254) Signed-off-by: ollevche [email protected] (<mailto:[email protected]>)

Release prepare for v1.7.7 release (#2254) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Release notes from opentofu

12:04:45 PM

v1.8.7: prepare for 1.8.7 release (#2255) Signed-off-by: ollevche [email protected] (<mailto:[email protected]>)

Release v1.8.7: prepare for 1.8.7 release (#2255) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Release notes from opentofu

12:14:46 PM

v1.7.7 BUG FIXES:

Changes to encryption configuration now auto-apply the migration (#2232) Updated github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.5.1 to make security scanners happy (no vulnerability, see <a href=”https://github.com/opentofu/opentofu/pull/2179” data-hovercard-type=”pull_request”…

Release prepare for v1.7.7 release (#2254) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Force state change if encryption used fallback by cam72cam · Pull Request #2232 · opentofu/opentofu attachment image

Currently when using a remote state storage configuration, if the encryption method is changed a null_resource, output or similar state change is required to apply the encryption change. This has …

Bump github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.5.1 by dependabot[bot] · Pull Request #2179 · opentofu/opentofu attachment image

ImportantThis fix is for the sake of security scanners only. The vulnerable code (ParseWithClaims) is not used anywhere in OpenTofu or its dependencies outside of test cases.

Bumps github.com/gola…

Release notes from opentofu

12:34:43 PM

v1.8.7 BUG FIXES:

Error messages related to validation of sensitive input variables will no longer disclose the sensitive value in the UI. (#2219) Changes to encryption configuration now auto-apply the migration (<a href=”https://github.com/opentofu/opentofu/pull/2232” data-hovercard-type=”pull_request”…

Variable validation reveals sensitive value · Issue #2219 · opentofu/opentofu

OpenTofu Version OpenTofu v1.8.5 on linux_amd64 OpenTofu Configuration Files variable “passphrase” { type = string sensitive = true nullable = false validation { condition = length(var.passphrase) …

Release notes from opentofu

02:54:48 PM

prepare for v1.9.0-beta1 (#2258) Signed-off-by: ollevche [email protected] (<mailto:[email protected]>)

Release prepare for v1.9.0-beta1 (#2258) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Release notes from opentofu

03:34:50 PM

v1.9.0-beta1 Do not use this release for production workloads! It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

for_each in provider configuration blocks: An alternate (aka “aliased”) provider configuration can now have multiple dynamically-chosen instances using the for_each argument: provider “aws” { alias = “by_region” for_each = var.aws_regions

region = each.key…

Release v1.9.0-beta1 · opentofu/opentofu

Do not use this release for production workloads! It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contr…

2024-12-09

Release notes from opentofu

02:24:50 PM

v1.9.0-beta2: Bump version to 1.9.0-beta2 (#2271) Signed-off-by: Christian Mesh [email protected] (<mailto:[email protected]>)

Release v1.9.0-beta2: Bump version to 1.9.0-beta2 (#2271) · opentofu/opentofu attachment image

Signed-off-by: Christian Mesh [email protected]

Release notes from opentofu

03:04:45 PM

v1.9.0-beta2 Do not use this release for production workloads! This build fixes a bug where destroy would not always function correctly with provider for_each. It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

for_each in provider configuration blocks: An alternate (aka “aliased”) provider configuration can now have multiple dynamically-chosen instances using the for_each…

Release v1.9.0-beta2 · opentofu/opentofu attachment image

Do not use this release for production workloads! This build fixes a bug where destroy would not always function correctly with provider for_each. It’s time for the beta release of the 1.9.0 …

2024-12-12

Release notes from opentofu

02:04:46 PM

v1.9.0-rc1 1.9.0-rc1

Release v1.9.0-rc1 · opentofu/opentofu attachment image

1.9.0-rc1

Release notes from opentofu

02:54:50 PM

v1.9.0-rc1 Do not use this release for production workloads! It’s time for the release candidate of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

region =…

Release v1.9.0-rc1 · opentofu/opentofu attachment image

Do not use this release for production workloads! It’s time for the release candidate of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community …

2024-12-26

Release notes from opentofu

02:54:51 PM

prepare branch for v1.8.8 release (#2314) Signed-off-by: ollevche [email protected] (<mailto:[email protected]>)

Release prepare branch for v1.8.8 release (#2314) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Release notes from opentofu

03:34:51 PM

v1.8.8 SECURITY:

Upgraded golang.org/x/crypto to resolve CVE-2024-45337. (#2287) Upgraded golang.org/x/net to resolve <a title=”CVE-2024-45338”…

Release v1.8.8 · opentofu/opentofu attachment image

SECURITY:

Upgraded golang.org/x/crypto to resolve CVE-2024-45337. (#2287) Upgraded golang.org/x/net to resolve CVE-2024-45338. (#2311)

BUG FIXES:

tofu test now removes outputs of destroyed modul…

Bump golang.org/x/crypto from 0.21.0 to 0.31.0 by dependabot[bot] · Pull Request #2287 · opentofu/opentofu attachment image

ImportantThis issue does NOT affect OpenTofu because it does not run TLS servers, but to avoid unnecessary nagging from compliance checking tools, we should merge and backport this anyway.

Bumps g…

2024-12-30

Release notes from opentofu

11:44:55 AM

v1.9.0-rc2: prepare v1.9 branch for rc-2 release (#2316) Signed-off-by: ollevche [email protected] (<mailto:[email protected]>)

Release v1.9.0-rc2: prepare v1.9 branch for rc-2 release (#2316) · opentofu/opentofu attachment image

Signed-off-by: ollevche [email protected]

Release notes from opentofu

12:34:56 PM

v1.9.0-rc2 Do not use this release for production workloads! This build includes a few more bug fixes and dependency upgrades. Namely, it fixes create_before_destroy updates with no refresh (<a class=”issue-link js-issue-link” data-error-text=”Failed to load title” data-id=”2403408105” data-permission-text=”Title is private” data-url=”https://github.com/opentofu/opentofu/issues/1806” data-hovercard-type=”issue” data-hovercard-url=”/opentofu/opentofu/issues/1806/hovercard”…

Release v1.9.0-rc2 · opentofu/opentofu attachment image

Do not use this release for production workloads! This build includes a few more bug fixes and dependency upgrades. Namely, it fixes create_before_destroy updates with no refresh (#1806) and …

Changing `create_before_destroy` and using `-refresh=false` could keep resources detached from state · Issue #1806 · opentofu/opentofu attachment image

OpenTofu Version 1.8.0-beta OpenTofu Configuration Files Configuration during the first apply resource “local_file” “main” { content = “test” filename = “foo.txt” lifecycle { create_before_destroy …

#opentofu (2024-12)

Discuss OpenTofu-related topics

2024-12-05

2024-12-09

2024-12-12

2024-12-26

2024-12-30