Skip to content

chore(deps): update terraform onepassword to 3.3.1#1236

Open
stimpy-bot[bot] wants to merge 1 commit into
mainfrom
renovate/onepassword-3.x
Open

chore(deps): update terraform onepassword to 3.3.1#1236
stimpy-bot[bot] wants to merge 1 commit into
mainfrom
renovate/onepassword-3.x

Conversation

@stimpy-bot
Copy link
Copy Markdown
Contributor

@stimpy-bot stimpy-bot Bot commented Apr 25, 2026
edited
Loading

This PR contains the following updates:

Package Type Update Change
onepassword (source) required_provider major 2.2.13.3.1

Release Notes

1Password/terraform-provider-onepassword (onepassword)

v3.3.1

Compare Source

Security

  • Update google.golang.org/grpc to v1.79.3 to address an authorization bypass reported by Dependabot. {#​346}

v3.3.0

Compare Source

Features

  • Provider adds onepassword_environment datasource for reading environment variables from 1Password Environments (service account or desktop app auth only). {#​302}

Fixes

  • Provider removes fallback to listing vaults when GetOverview fails; this workaround is no longer needed with the stable SDK. {#​339}
  • Replace slash-command-dispatch fork with upstream v5 in the ok-to-test workflow. {#​338}

v3.2.1

Compare Source

Fixes

  • onepassword-sdk-go dependecy is updated to the latest stable v0.4.0. {#​333}

v3.2.0

Compare Source

Features

  • Provider supports ephemeral onepassword_item for retrieving item values without persisting them in state. {#​212}

v3.1.2

Compare Source

Fixes

  • Provider now falls back to listing vaults when GetOverview fails with "enum Invocation" error for SDK. {#​310}

v3.1.1

Compare Source

Fixes

  • Provider properly handles dynamic sections. {#​319}

v3.1.0

Compare Source

Features

  • Provider supports section_map and field_map attributes for organizing sections and fields in items. {#​316}
  • Provider supports filename and valid_from attributes to item data source for API Credential items. {#​210}
  • Provider supports note_value_wo attribute to item resource for write-only secure note values. {#​304}

Fixes

  • Provider validates that password_recipe and value cannot be used together in the same field. {#​314}
  • MONTH_YEAR field type now enforces YYYYMM format to avoid state inconsistencies. {#​311}

v3.0.2

Compare Source

Fixes

  • Docs are updated to not mention specific provider version. {#​297}
  • purpose property is removed from the section field. {#​251}
  • Item data source correctly fetches the item with provided vault name when using service account or account to authenticate. {#​306}

v3.0.1

Compare Source

Fixes

  • Provider produces consistent results after apply. {#​223, #​170}
  • Database item doesn't throw an error anymore. {#​215}
  • Provider doesn't throw an error for sensitive attibutes. {#​185}
  • SSH private keys in OpenSSH format are properly handled. {#​286}
  • Provider reads API credential items correctly. {#​287}
  • Provider properly handles string values in sections. {#​214}

v3.0.0

Compare Source

🔴 Breaking Changes

  • Remove letters option from password recipes. Letters are now always included in generated passwords and cannot be disabled. Configurations using letters in password_recipe will result in an error. {#​256}
  • The account field should now be set to the account name. Account name appears at the top of the left sidebar in the 1Password desktop app.
  • Users who use biometric authentication should configure 1Password desktop app. {#​270}

Features

  • Enable provider to run using Terraform Stacks on HCP Terraform with a self-hosted agent. {#​227}
  • Enable provider to run on Terraform Cloud. {#​141}
  • connect_url and connect_token configuration parameters are available now. These are more specific alternatives to url and token for Connect authentication. The original url and token parameters continue to be supported but are set for deprecation. {#​265}

Fixes

  • 1password cli is not required anymore to use the provider. {#​148, #​206}
  • Biometric unlock doesn't pop up multiple times anymore. {#​140, #​130}
  • Provider re-creates item when it's missing in 1Password vault. {#​97}
  • No 504 Gateway Timeout errors anymore for newly created items. {#​5}
  • Fix field reference from label to id for item data source. {#​213}
  • password_recipe properly generates passwords now. {#​129}
  • Testing documentation now includes make commands and setup instructions about how to run e2e tests. {#​269}
  • README and documentation now to references to 1Password developer portal for more info. {#​266}

Security

  • Update golang.org/x/crypto from 0.39.0 to 0.45.0 to address security vulnerabilities. {#​276}

Configuration

📅 Schedule: (in timezone America/Chicago)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate.

@stimpy-bot stimpy-bot Bot force-pushed the renovate/onepassword-3.x branch from e26b54f to 2b692db Compare April 25, 2026 13:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

type/major

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants