Welcome to issue #287 March 28th, 2022

News

Compute Engine Infrastructure Official Blog

Save big by temporarily suspending unneeded Compute Engine VMs—now GA - Realize huge savings by suspending temporarily unneeded VMs on Google Compute Engine and resume where you left off at a later time.

Cloud Spanner Official Blog

Disaster recovery simplified with Cloud Spanner CPU optimized backups - Reduce backup creation time, save costs, and enable disaster recovery with Cloud Spanner backups.

Google Cloud Platform Official Blog

Accelerating Government Compliance with Google Cloud’s Professional Service Organization - Google Cloud Professional Services Organization offers specialized engagements that can support customers with their cloud adoption, security and compliance journeys.

Contact Center AI Official Blog

Contact Center AI reimagines the customer experience through full end-to-end platform expansion - Google Cloud extends Contact Center AI with Contact Center AI Platform, adding CRM integration for end-to-end management of customer journeys.

Event GPU HPC Machine Learning

Join Google Cloud at NVIDIA GTC - Join Google Cloud at NVIDIA GTC to understand how Google Cloud and NVIDIA are able to help you conquer challenges.

Articles, Tutorials

Infrastructure, Networking, Security, Kubernetes

BeyondCorp Certificate Authority Service IAM Official Blog Security

Federated workload identity at scale made easy with CA Service - Google Cloud Certificate Authority Service has a simple solution for your workload certificate needs across cloud and on-premises environments.

Official Blog

In case you missed it: Google Cloud Security Talks, Threat Detection & Response Edition - In case you missed it, join us for Google Cloud Security Talks focused on security operations and modernizing your approach to threat detection and response with Google.

Cloud Functions Cloud Security Command Center Security

Shifting Left on Security with Google Cloud Infrastructure - Exploring "shifting left" in cloud security by introducing security earlier into the development process and improving the security posture of production deployments.

Google Cloud Platform

Don’t let your Google Cloud Proof of Concept undermine your production environment - Let’s discuss the steps necessary to evaluate your proof-of-concept before a production rollout and why starting over is often smarter.

App Development, Serverless, Databases, DevOps

Google Cloud Platform Official Blog

Architecting with Google Cloud - Architecting with Google Cloud is a video series that showcases innovative architectural solutions on Google Cloud by customers and partners. Each episode examines the most interesting and technically creative elements of each cloud architecture.

Compute Engine Official Blog

How VMs are the Matryoshka doll of compute: A conversation - Join Brian, Carter, and a special guest as they explore why VMs are some of Google’s most trusted and reliable offerings, and how VMs benefit companies operating at scale in the cloud.

Cloud SQL Database Migration Service Official Blog

Regain Cloud SQL disk space with Database Migration Service - Reducing disk size in place is difficult and can involve downtime for your database. Learn how to use DMS to minimize downtime while reclaiming disk space.

Cloud Spanner Official Blog

Step-by-step guide to resolve DEADLINE_EXCEEDED errors on Cloud Spanner - Deadline Exceeded error occurs for many reasons. Here we describe various scenarios and provide a guide on how to investigate and resolve the issues.

Cloud Bigtable

Cloud Bigtable: What is it? For what is it suitable? And what does it cost? - An intro to Cloud Buigtable.

Cloud Bigtable NodeJS

Cloud Bigtable: Understanding Bigtables NoSQL 3-dimensional storage model using the Node.js client - A closer look at Bigtable’s NoSQL 3-dimensional storage model.

Compute Engine Storage

Snapshots and Images in Google Cloud Platform - An overview of snapshots and images in Compute Engine.

Cloud Logging Cloud SDK Official Blog

Automating log uploads with gcloud transfer - Using the gcloud transfer CLI, you can run large-scale data transfers. In this tutorial, you’ll learn how to create file system-to-cloud transfers.

Cloud SQL

Restore Cloud SQL to instance in another project - Using GCP REST API to create Cloud SQL instance from backup in another GCP project.

Compute Engine Serverless Workflows

Long running job with Cloud Workflows - Long-running operations on serverless are quite impossible. But you can simulate an on-demand service with Cloud Workflows and Compute Engine.

Cloud Run Knative Kubernetes

Google Cloud Run with Knative CLI - Learn how to use Cloud Run from Knative CLI and Kubectl.

Cloud Monitoring Cloud Pub/Sub Go

Querying metrics from Google Cloud Monitoring in Golang - Golang code to query Pub/Sub metrics from Cloud Monitoring.

Big Data, Analytics, ML&AI

Cloud Data Fusion Data Analytics Official Blog

Bulk import and exports with Cloud Data Fusion for Contact Center AI Insights made easy - Public availability of Contact Center AI (CCAI) Insights Accelerator in Cloud Data Fusion, an out-of-the-box approach to importing and exporting large amounts of data to and from Contact Center AI Insights.

Cloud Data Fusion

Cloud Data Fusion: Upload UDD’s through the Rest API - Use the Rest API to upload UDD’s across namespaces in a programatic way. While the Data Fusion UI has the ability to do this, it can be problematic when working across many independent namespaces. This allows a developer to quickly push new UDD’s across many namespaces.

BigQuery Data Analytics GIS Official Blog

Using GeoJSON in BigQuery for geospatial analytics - Learn about BigQuery’s new geospatial support for geoJSON files and how to use it for spatial analytics.

BigQuery

Multi-Cloud Analytics with BigQuery Omni : No time to load ! - Example of setting and using BigQuery Omni in AWS.

BigQuery Data Science

BigQuery UDFs Complete Guide - Everything you need to know about Google Cloud BigQuery’s User-Defined Functions.

Cloud Dataproc Python

Running pyspark jobs on Google Cloud using Serverless Dataproc - Run Spark batch workloads without having to bother with the provisioning and management of clusters!.

Machine Learning Official Blog

Meet AI’s multitool: Vector embeddings - Vector embeddings are one of machine learning’s most useful, least understood tools. Here’s what they’re good for.

Recommendations AI

Enhancing online sales channels - Content personalization can be achieved easily when you use the correct tools. Google Recommendation Engine is one of them.

Various

GCP Certification Official Blog

Google Cloud Certification success story: Meet Gabby - This month we’d like to feature one particular certification journey of our colleague Gabby - Customer Engineer, Application Modernization at Google Cloud and a holder of four Google Cloud certifications. Read the interview with Gabby conducted by Magda, Head of Google Cloud Credentials and Certifications.

Slides, Videos, Audio

GCP Podcast - #297 Fathers of the Internet with Vint Cerf.

Kubernetes Podcast - #173 ThreatMapper, with Sandeep Lahane and Owen Garrett.

Security Podcast - #57 Stop Zero Days, Save the World: Project Zero's Maddie Stone Speaks.

GCP Life Podcast - #10 In this episode we discuss; Google Cloud to stop accepting new Russian customers, GCP Prices Increase, GCP Cuts Aussie Jobs, Google acquires Mandiant, Databricks in APAC, Rush to cloud computing.

 

Releases

Anthos Config Management - 1.11.0. New Nomos CLI ARM binaries for Linux and Mac (darwin) are now available. You can now specify apply and delete ordering using the new config.kubernetes.io/depends-on annotation. Added dependency enforcement to skip apply of objects whose dependencies are not successfully applied and fully reconciled. Added support for multiple RootSync objects on the same cluster and multiple RepoSync objects in the same namespace. Added new fields to the ResourceGroup inventory object to distinguish between actuation status and reconciliation status, as well as the intended actuation strategy (apply or delete) before actuation. Updated the spec.override.resources field on RootSync and RepoSync to let you override the default resource amounts (for example, CPU or memory) requested by the corresponding containers of the reconciler Deployment. Increased the config-management-operator container memory request to 100Mi. Increased the reconciler-manager container memory request to 50Mi and memory limit to 200Mi. Increased the admission-webhook container memory request to 100Mi and memory limit to 250Mi. Fixed individual resource object status to correspond to actuation and reconciliation of the latest specification from Git, not just reconciliation status of the last specification that was successfully applied.

Anthos clusters on bare metal - 1.9. Release 1.9.6 Anthos clusters on bare metal 1.9.6 is now available for download. Fixes: The following container image security vulnerabilities have been fixed: CVE-2021-43824 CVE-2021-43825 CVE-2021-43826 CVE-2021-21654 CVE-2021-21655 CVE-2021-23606 CVE-2021-21657 CVE-2021-21656 CVE-2021-23635 CVE-2022-23648 CVE-2021-45960 CVE-2021-3996 CVE-2021-3995 CVE-2021-45960 CVE-2022-22823 CVE-2022-22824 CVE-2022-22822 CVE-2022-23852 CVE-2022-23990 CVE-2021-43618 CVE-2022-22825 CVE-2022-22827 CVE-2021-46143 CVE-2022-22826. Known issues: For information about the latest known issues, see Anthos on bare metal known issues in the Troubleshooting section.

Anthos clusters on Azure - Anthos clusters on Azure now supports clusters in the australia east region.

Anthos clusters on VMware - Anthos clusters on VMware 1.9.5-gke.2 is now available. Fixed issue: Failure to register admin cluster during creation.

Artifact Registry - Artifact Registry support for attaching tags to repositories is now in Preview.

Cloud Asset Inventory - The following resource types are now publicly available through the Export APIs (ExportAssets and BatchGetAssetsHistory), the Feed API, and the Search APIs (SearchAllResources and SearchAllIamPolicies): Datastream datastream.googleapis.com/ConnectionProfile datastream.googleapis.com/PrivateConnection datastream.googleapis.com/Stream Anthos clusters on-prem anthos.googleapis.com/ConnectedCluster Database Migration Service datamigration.googleapis.com/ConnectionProfile datamigration.googleapis.com/MigrationJob. The following resource types are now publicly available through the Analyze Policy APIs (AnalyzeIamPolicy and AnalyzeIamPolicyLongrunning): Dialog ES API dialogflow.googleapis.com/ConversationProfile dialogflow.googleapis.com/KnowledgeBase Vertex AI aiplatform.googleapis.com/PipelineJob aiplatform.googleapis.com/MetadataStore aiplatform.googleapis.com/ModelDeploymentMonitoringJob.

BigTable - Cloud Bigtable support for Cloud EKM is generally available (GA).

Compute Engine - General purpose Tau T2D VMs have limited availability in London (europe-west2-a,c). Preview: You can now share sole-tenant node groups with other projects or your entire organization.

Config Connector - Config Connector version 1.78.0 is now available. Fixed issue where users could not switch between the field singleClusterRouting and the fields multiClusterRoutingUseAny and multiClusterRoutingClusterIds in BigtableAppProfile resources. Fixed issue where users could not update the policy in ResourceManagerPolicy resources. Fixed issue where users could not switch between the field github.push and the field github.pullRequest in CloudBuildTrigger resources (Issue #357).

Deep Learning Containers - M91 Release PyTorch 1.11 and PyTorch XLA 1.11 are now available in both Deep Learning Containers and Deep Learning VM Images. Fixed an R package installation issue for R Deep Learning Containers and Vertex AI Workbench.

Eventarc - Support for Firebase Alerts triggers is now in Preview.

Cloud Functions - Support for Firebase Remote Config, Firebase Alerts, and Firebase Test Lab triggers is now in Preview.

IAM - IAM Conditions now provides resource attributes for Apigee X.

KMS - Cloud EKM now supports Cloud Bigtable and Log Storage in Cloud Logging.

Google Kubernetes Engine - There is a misconfiguration with Simultaneous Multi-Threading (SMT), also known as Hyper-threading, on GKE Sandbox images. (2022-R6) Version updates GKE cluster versions have been updated.

Google Kubernetes Engine Rapid - (2022-R6) Version updates Version 1.22.7-gke.900 is now the default version in the Rapid channel.

Google Kubernetes Engine Regular - (2022-R6) Version updates The following versions are now available in the Regular channel: 1.20.15-gke.2500 1.21.10-gke.400 The following versions are no longer available in the Regular channel: 1.20.15-gke.1000 1.21.6-gke.1503 Control planes and nodes with auto-upgrade enabled in the Regular channel will be upgraded from version 1.19 to 1.20.15-gke.2500 with this release.

Google Kubernetes Engine Stable - (2022-R6) Version updates Version 1.20.15-gke.1000 is now the default version in the Stable channel.

Cloud Logging - Cloud Logging now supports organization policies that can enforce CMEK protection. Customer-managed encryption keys (CMEK) for Logs Storage are now Generally Available (GA).

Cloud Memorystore - Maintenance Windows are now Generally Available for Memorystore for Redis.

KF - 2.8.1. Fixed bug in App controller, made App.Status.RouteConditions as an optional field.

Cloud Spanner - The data type of the COLUMN_DEFAULT column in the information schema COLUMNS table has changed from BYTES to STRING.

Cloud Storage Transfer - Storage Transfer Service now enforces the Resource Location Restriction, which is part of the Org Policy Service.

Cloud Talent Solution - v4. The Cloud Talent Solutions dashboard management tool has added a Jobs and Companies page, which displays job statistics and metadata. v3 & v4. Added functionality in the companyDisplayNames filter to support fuzzy matching.

VMware Engine - Added ability to set the number of cores available per node in a cluster to meet your application-specific requirements during cluster creation. The public IP service now supports the ICMP protocol, and default firewall rules for new projects expand the previous outbound rule to allow outbound TCP, UDP, and ICMP any.

Workflows - Workflows is now available in the following regions: asia-east1 (Changhua County, Taiwan) asia-northeast1 (Tokyo, Japan) asia-south1 (Mumbai, India) australia-southeast1 (Sydney, Australia) northamerica-northeast1 (Montréal, Québec) us-west1 (The Dalles, Oregon).

 

Latest Issues




Contact

Zdenko Hrček
Třebanická 183
Prague, Czech Republic
Phone: +420 777 283 075
Email: [email protected]