chore(deps): bump the terraform group in /terraform with 2 updates

[dependabot]

Updates the requirements on hashicorp/azurerm and hashicorp/google to permit the latest version.
Updates hashicorp/azurerm to 4.66.0

Release notes

Sourced from hashicorp/azurerm's releases.

v4.66.0

4.66.0 (March 26, 2026)

FEATURES:

• New Data Source: azurerm_container_app_environment_storage (#32007)
• New List Resource: azurerm_video_indexer_account (#31978)

ENHANCEMENTS:

• dependencies: Go - upgrade to version 1.25.8 (#31907)
• azurerm_bastion_host - Upgrade API to 2025-01-01 (#32030)
• azurerm_kubernetes_cluster - add support for migration from Azure or Kubenet CNI to Azure CNI Overlay (#30959)
• azurerm_search_service: add support for endpoint attribute (#32010)
• cognitive_account_rai_blocklist_resource - add support for the tags property (#31871)

BUG FIXES:

• azurerm_container_app - fix failure_count_threshold validation values for container app probes (#31989)
• azurerm_linux_function_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_linux_web_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_log_analytics_workspace - preserve default value of local_authentication_enabled (#32004)
• azurerm_windows_function_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_windows_web_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)

Changelog

Sourced from hashicorp/azurerm's changelog.

4.66.0 (March 26, 2026)

FEATURES:

• New Data Source: azurerm_container_app_environment_storage (#32007)
• New List Resource: azurerm_video_indexer_account (#31978)

ENHANCEMENTS:

• dependencies: Go - upgrade to version 1.25.8 (#31907)
• azurerm_bastion_host - Upgrade API to 2025-01-01 (#32030)
• azurerm_kubernetes_cluster - add support for migration from Azure or Kubenet CNI to Azure CNI Overlay (#30959)
• azurerm_search_service: add support for endpoint attribute (#32010)
• cognitive_account_rai_blocklist_resource - add support for the tags property (#31871)

BUG FIXES:

• azurerm_container_app - fix failure_count_threshold validation values for container app probes (#31989)
• azurerm_linux_function_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_linux_web_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_log_analytics_workspace - preserve default value of local_authentication_enabled (#32004)
• azurerm_windows_function_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)
• azurerm_windows_web_app_slot - fix API error when removing auth_settings_v2 configuration from a previously deployed appservice slot (#32008)

4.65.0 (March 19, 2026)

ENHANCEMENTS:

• dependencies: go-azure-sdk - update to v0.20260312.1165223
• azurerm_federated_identity_credential - the parent_id property has been renamed to user_assigned_identity_id (#31921)

BUG FIXES:

• azurerm_kubernetes_cluster_node_pool - max_surge and max_unavailable are no longer required for spot node pools (#31129)
• azurerm_log_analytics_workspace_table - fix validation for basic plan (#30925)
• azurerm_managed_disk - fix nil pointer dereference when updating disk_access_id (#31955)

4.64.0 (March 12, 2026)

FEATURES:

• New List Resource: azurerm_storage_account_customer_managed_key (#31805) (#31805)

ENHANCEMENTS:

• dependencies: containerservice - partial upgrade to API version 2025-03-01 (#31838)
• dependencies: containerservice - partial upgrade to API version 2025-10-01 (#31401)
• dependencies: paloalto - update to API version 2025-10-08 (#31570)
• Data Source: azurerm_kubernetes_cluster - export the bootstrap_profile and network_profile.outbound_type attributes (#30983)
• azurerm_subnet - add support for the PureStorage.Block/storagePools value in the delegation.service_delegation.name property (#31878)

... (truncated)

Commits

• 6310605 CHANGELOG.md for 4.66.0 (#32006)
• 7ea5d51 do not use cache to build cache (#32046)
• d6cfcc1 fix runner to use new secret token to access membership (#32039)
• 993e4cc chore: Remove custom mend config (#32033)
• b3cddb2 azurerm_bastion_host - Upgrade SDK to 2025-01-01 (#32030)
• 315952d azurerm_container_app: Update failure_count_threshold validation for cont...
• 0d7411f azurerm_search_service: add support for endpoint attribute (#32010)
• f2e0ce6 Fix teamcity Parameters (#32019)
• 65111d0 test triggering action and teamcity build configuration to post results (#31852)
• f345d3e appservice slot resources - fix error when removing auth_settings_v2 blocks...
• Additional commits viewable in compare view

Updates hashicorp/google to 7.25.0

Release notes

Sourced from hashicorp/google's releases.

v7.25.0

FEATURES:

• New Data Source: google_compute_network_endpoint_groups (#26515)
• New Resource: google_dialogflow_environment (#26489)
• New Resource: google_kms_project_autokey_config (#26501)

IMPROVEMENTS:

• backupdr: added disk_backup_plan_properties field to google_backup_dr_backup_plan resource (#26497)
• backupdr: made backup_rules optional in google_backup_dr_backup_plan resource (#26494)
• blockchainnodeengine: added ethereum_details.validator_config.beacon_fee_recipient field to google_blockchain_node_engine_blockchain_nodes resource (#26499)
• ces: added custom_headers field to MCP toolset in CES google_ces_toolset resource (#26473)
• compute: added expr field to google_compute_organization_security_policy_rule resource (#26506)
• compute: added location field to google_network_services_tls_route resource (#26514)
• compute: added target_proxies field to google_network_services_tls_route resource (#26516)
• compute: made backend_service field optional for resource google_compute_target_tcp_proxy (#26519)
• compute: made backend_service field optional for resource google_compute_region_target_tcp_proxy (#26493)
• iamworkforcepool: added detailed_audit_logging field to google_iam_workforce_pool_provider resource (#26500)
• kms: added key_project_resolution_mode field to google_kms_autokey_config resource (#26501)
• lustre: added maintenance_policy field to google_lustre_instance resource (#26512)
• sql: added point_in_time_restore_context.region field to google_sql_database_instance resource (#26510)
• vertexai: added deletion_policy field to resource_vertex_ai_reasoning_engine resource (#26518)

BUG FIXES:

• vertexai: fixed permadiff on spec field in google_vertex_ai_reasoning_engine resource (#26470)

Changelog

Sourced from hashicorp/google's changelog.

7.25.0 (Mar 24, 2026)

FEATURES:

• New Data Source: google_compute_network_endpoint_groups (#26515)
• New Resource: google_dialogflow_environment (#26489)
• New Resource: google_kms_project_autokey_config (#26501)

IMPROVEMENTS:

• backupdr: added disk_backup_plan_properties field to google_backup_dr_backup_plan resource (#26497)
• backupdr: made backup_rules optional in google_backup_dr_backup_plan resource (#26494)
• blockchainnodeengine: added ethereum_details.validator_config.beacon_fee_recipient field to google_blockchain_node_engine_blockchain_nodes resource (#26499)
• ces: added custom_headers field to MCP toolset in CES google_ces_toolset resource (#26473)
• compute: added expr field to google_compute_organization_security_policy_rule resource (#26506)
• compute: added location field to google_network_services_tls_route resource (#26514)
• compute: added target_proxies field to google_network_services_tls_route resource (#26516)
• compute: made backend_service field optional for resource google_compute_target_tcp_proxy (#26519)
• compute: made backend_service field optional for resource google_compute_region_target_tcp_proxy (#26493)
• iamworkforcepool: added detailed_audit_logging field to google_iam_workforce_pool_provider resource (#26500)
• kms: added key_project_resolution_mode field to google_kms_autokey_config resource (#26501)
• lustre: added maintenance_policy field to google_lustre_instance resource (#26512)
• sql: added point_in_time_restore_context.region field to google_sql_database_instance resource (#26510)
• vertexai: added deletion_policy field to resource_vertex_ai_reasoning_engine resource (#26518)

BUG FIXES:

• vertexai: fixed permadiff on spec field in google_vertex_ai_reasoning_engine resource (#26470)

7.24.0 (Mar 17, 2026)

DEPRECATIONS:

• iamworkforcepool: deprecated extended_attributes_oauth2_client on google_iam_workforce_pool_provider. Use scim_usage instead. (#26388)

FEATURES:

• New Resource: google_biglake_iceberg_table (#26394)
• New Resource: google_contact_center_insights_auto_labeling_rule (#26426)
• New Resource: google_observability_trace_scope (#26428)
• New Resource: google_sql_provision_script (#26432)

IMPROVEMENTS:

• ces: added Service Account OAuth scopes fields to google_ces_toolset resource (#26368)
• cloudrunv2: added DISK fields to google_cloud_run_v2_service resource (#26418)
• cloudsql: added max_custom_on_demand_retention_days field to sqladmin resource (#26407)
• compute: added ForwardProxy field in google_compute_region_backend_service resource (#26449)
• compute: added accelerator_topology_mode field to google_compute_resource_policy resource (#26383)
• compute: added target_type and target_forwarding_rules on google_compute_region_network_firewall_policy_rule resource (#26369)
• compute: promoted the endpoint_url field in google_compute_service_attachment to GA (#26434)
• container: marked subnetwork as settable in google_container_node_pool (#26416)
• container: added disruption_budget field to google_container_cluster resource (#26425)
• discoveryengine: added search_engine_config.required_subscription_tier field to google_discovery_engine_search_engine resource (#26398)
• discoveryengine: marked content_config as optional field in google_discovery_engine_data_store (#26398)
• memorystore: added server_ca_mode and server_ca_pool fields to google_memorystore_instance resource (#26437)

... (truncated)

Commits

• 2530db4 Update CHANGELOG for version 7.25.0 features (#26531)
• bb60302 Add field loadBalancingScheme to resources compute_target_tcp_proxy (beta) (#...
• 84ee2c6 feat: add deletion_policy field to reasoning engine resource (#16744) (#26518)
• daf6444 Add field targetProxies to resources google_network_services_tls_route (#1676...
• 7cf2615 New data source: google_compute_network_endpoint_groups (#16766) (#26515)
• f77843e Regionalize network_services_tls_route resource with global as default value ...
• 17b439e Prevent Beta-only Chronicle DataTable test from running in GA (#16719) (#26513)
• a4ec6f6 Adding maintenancePolicy to google_lustre_instance (#16725) (#26512)
• c0475f2 Update google apis library to v0.272.0 (#16753) (#26511)
• a5a4438 Changes for adding region parameter for multiregion Point In time res… (#1603...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 6d36dfc.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

Scanned Files

None

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

⛔ Superseded — A newer run has replaced this result.

🏗️ Terraform Plan

🌍 Environment: dev

✅ Validate — Passed

✅ Plan

	Count
➕ Add	1
🔄 Change	1

📋 Resource Details

Action	Resource
➕ Create	azurerm_api_management_api_version_set.api_version_set
🔄 Update	azurerm_api_management_subscription.web

[github-actions]

🏗️ Terraform Plan

🌍 Environment: dev

✅ Validate — Passed

✅ Plan

	Count
➕ Add	1
🔄 Change	1

📋 Resource Details

Action	Resource
➕ Create	azurerm_api_management_api_version_set.api_version_set
🔄 Update	azurerm_api_management_subscription.web