Platform Pulse: Navigating the Latest in Cloud Native and Core Services

Weekly Cloud Platform Deep Dive

This week's engineering brief underscores the continuous evolution of Google Cloud's platform, with significant updates impacting how we deploy serverless applications, manage Kubernetes clusters, and operate core infrastructure. The focus remains steadfast on enhancing developer experience, bolstering security postures, and optimising performance for diverse workloads, including those involved in legacy modernisation initiatives.

Key developments include vital GKE version updates that ensure our containerised environments leverage the latest stability and feature sets. Concurrently, Cloud Run receives enhancements aimed at simplifying dependency management for Python applications, further solidifying its position as a robust serverless platform. These targeted improvements enable our teams to build and deploy applications with greater agility and confidence.

Beyond serverless and container orchestration, critical updates to core services like Cloud DNS, Cloud Storage, and AlloyDB for PostgreSQL reflect a broader commitment to platform-wide reliability and security. Even the deprecation of Cloud Tools for PowerShell, while a sunsetting of a tool, signals a shift towards more streamlined and integrated management approaches, which is crucial for maintaining operational excellence across our Google Cloud footprint.

🚨 Critical Actions & Updates

1. Cloud DNS Armor Generally Available for Enhanced Security (Release notes) (Documentation): Google Cloud's DNS Armor is now generally available, providing advanced capabilities for monitoring internet-bound DNS queries to detect and mitigate malicious activity. This is a critical enhancement for network security.
2. Cloud Storage Introduces Dry Run Mode for Batch Operations (Release notes): A new dry run mode allows teams to simulate storage batch operations without modifying or deleting data, enabling thorough validation of job configurations before execution and reducing the risk of errors.
3. GKE Control Plane and Node Version Upgrades (Release notes): Significant updates to GKE control planes and nodes are rolling out, bringing new minor and patch versions (e.g., 1.30 to 1.31.14-gke.1175000) that enhance stability, performance, and security of our Kubernetes clusters.
4. Cloud Service Mesh Patch Releases for GKE Address CVEs (Release notes): Managed Cloud Service Mesh receives critical patch releases, including fixes for security vulnerabilities CVE-2025-61729 and CVE-2025-61727, ensuring the integrity and security of our service mesh deployments.
5. GKE Extended Channel Version Updates (Release notes): New versions are now available in the Extended release channel for GKE clusters, offering a broader range of options for organisations managing their Kubernetes environment lifecycle.
6. AlloyDB for PostgreSQL Memory Usage Estimation Fix (Release notes): An important fix for AlloyDB for PostgreSQL improves memory usage estimation for high-dimensional vector indexes, preventing out-of-memory errors and enhancing database stability.
7. Cloud Asset Inventory Bigtable Backup Location Granularity Update (Release notes): The location granularity for the Bigtable Backup resource type in Cloud Asset Inventory has been updated from global to regional, providing more precise asset management and compliance reporting.
8. Cloud Storage Bulk Restore of Soft-Deleted Objects (Release notes): New functionality in Cloud Storage enables bulk restoration of soft-deleted objects, with options to restore based on their original live state or creation time.
9. Cloud Tools for PowerShell Deprecation Announcement (Release notes): Effective January 14, 2026, Cloud Tools for PowerShell is deprecated and can no longer be installed via the Google Cloud CLI. Teams should review and transition to recommended alternatives for managing Google Cloud resources.
10. Cloud Run Source Deployments Support pyproject.toml (Release notes): Cloud Run and Cloud Run functions now support the pyproject.toml file for managing Python application dependencies, streamlining development and deployment workflows for serverless functions.
11. Cloud Spanner Full-Text Search Enhancements (Release notes): Spanner receives several updates to its full-text search capabilities, including support for named schemas, accelerated pattern matching, and improved diacritic and emoji handling in tokenisation.