#opentofu (2024-12)

Discuss OpenTofu-related topics

2024-12-05

Release notes from opentofu avatar
Release notes from opentofu
12:14:46 PM

v1.7.7 BUG FIXES:

Changes to encryption configuration now auto-apply the migration (#2232) Updated github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.5.1 to make security scanners happy (no vulnerability, see <a href=”https://github.com/opentofu/opentofu/pull/2179” data-hovercard-type=”pull_request”…

Force state change if encryption used fallback by cam72cam · Pull Request #2232 · opentofu/opentofuattachment image

Currently when using a remote state storage configuration, if the encryption method is changed a null_resource, output or similar state change is required to apply the encryption change. This has …

Bump github.com/golang-jwt/jwt/v4 from 4.4.2 to 4.5.1 by dependabot[bot] · Pull Request #2179 · opentofu/opentofuattachment image

ImportantThis fix is for the sake of security scanners only. The vulnerable code (ParseWithClaims) is not used anywhere in OpenTofu or its dependencies outside of test cases.

Bumps github.com/gola

Release notes from opentofu avatar
Release notes from opentofu
12:34:43 PM

v1.8.7 BUG FIXES:

Error messages related to validation of sensitive input variables will no longer disclose the sensitive value in the UI. (#2219) Changes to encryption configuration now auto-apply the migration (<a href=”https://github.com/opentofu/opentofu/pull/2232” data-hovercard-type=”pull_request”…

Variable validation reveals sensitive value · Issue #2219 · opentofu/opentofu

OpenTofu Version OpenTofu v1.8.5 on linux_amd64 OpenTofu Configuration Files variable “passphrase” { type = string sensitive = true nullable = false validation { condition = length(var.passphrase) …

Release notes from opentofu avatar
Release notes from opentofu
02:54:48 PM
Release notes from opentofu avatar
Release notes from opentofu
03:34:50 PM

v1.9.0-beta1 Do not use this release for production workloads! It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

for_each in provider configuration blocks: An alternate (aka “aliased”) provider configuration can now have multiple dynamically-chosen instances using the for_each argument: provider “aws” { alias = “by_region” for_each = var.aws_regions

region = each.key…

Release v1.9.0-beta1 · opentofu/opentofu

Do not use this release for production workloads! It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contr…

2024-12-09

Release notes from opentofu avatar
Release notes from opentofu
03:04:45 PM

v1.9.0-beta2 Do not use this release for production workloads! This build fixes a bug where destroy would not always function correctly with provider for_each. It’s time for the beta release of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

for_each in provider configuration blocks: An alternate (aka “aliased”) provider configuration can now have multiple dynamically-chosen instances using the for_each…

Release v1.9.0-beta2 · opentofu/opentofuattachment image

Do not use this release for production workloads! This build fixes a bug where destroy would not always function correctly with provider for_each. It’s time for the beta release of the 1.9.0 …

2024-12-12

Release notes from opentofu avatar
Release notes from opentofu
02:04:46 PM

v1.9.0-rc1 1.9.0-rc1

Release notes from opentofu avatar
Release notes from opentofu
02:54:50 PM

v1.9.0-rc1 Do not use this release for production workloads! It’s time for the release candidate of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community contributions! The highlights are:

for_each in provider configuration blocks: An alternate (aka “aliased”) provider configuration can now have multiple dynamically-chosen instances using the for_each argument: provider “aws” { alias = “by_region” for_each = var.aws_regions

region =…

Release v1.9.0-rc1 · opentofu/opentofuattachment image

Do not use this release for production workloads! It’s time for the release candidate of the 1.9.0 version! This includes a lot of major and minor new features, as well as a ton of community …

2024-12-26

Release notes from opentofu avatar
Release notes from opentofu
03:34:51 PM

v1.8.8 SECURITY:

Upgraded golang.org/x/crypto to resolve CVE-2024-45337. (#2287) Upgraded golang.org/x/net to resolve <a title=”CVE-2024-45338”…

Release v1.8.8 · opentofu/opentofuattachment image

SECURITY:

Upgraded golang.org/x/crypto to resolve CVE-2024-45337. (#2287) Upgraded golang.org/x/net to resolve CVE-2024-45338. (#2311)

BUG FIXES:

tofu test now removes outputs of destroyed modul…

Bump golang.org/x/crypto from 0.21.0 to 0.31.0 by dependabot[bot] · Pull Request #2287 · opentofu/opentofuattachment image

ImportantThis issue does NOT affect OpenTofu because it does not run TLS servers, but to avoid unnecessary nagging from compliance checking tools, we should merge and backport this anyway.

Bumps g…

2024-12-30

Release notes from opentofu avatar
Release notes from opentofu
12:34:56 PM

v1.9.0-rc2 Do not use this release for production workloads! This build includes a few more bug fixes and dependency upgrades. Namely, it fixes create_before_destroy updates with no refresh (<a class=”issue-link js-issue-link” data-error-text=”Failed to load title” data-id=”2403408105” data-permission-text=”Title is private” data-url=”https://github.com/opentofu/opentofu/issues/1806” data-hovercard-type=”issue” data-hovercard-url=”/opentofu/opentofu/issues/1806/hovercard”…

Release v1.9.0-rc2 · opentofu/opentofuattachment image

Do not use this release for production workloads! This build includes a few more bug fixes and dependency upgrades. Namely, it fixes create_before_destroy updates with no refresh (#1806) and …

Changing `create_before_destroy` and using `-refresh=false` could keep resources detached from state · Issue #1806 · opentofu/opentofuattachment image

OpenTofu Version 1.8.0-beta OpenTofu Configuration Files Configuration during the first apply resource “local_file” “main” { content = “test” filename = “foo.txt” lifecycle { create_before_destroy …

    keyboard_arrow_up