build(deps): bump hashicorp/azurerm from 4.28.0 to 4.55.0 in /terraform

[dependabot]

Bumps hashicorp/azurerm from 4.28.0 to 4.55.0.

Release notes

Sourced from hashicorp/azurerm's releases.

v4.55.0

4.55.0 (December 04, 2025)

FEATURES:

• New Data Source: azurerm_api_management_workspace (#30241)
• New Resource: azurerm_cognitive_account_project (#30916)
• New Resource: azurerm_log_analytics_workspace_table_custom_log (#30800)
• New Resource: azurerm_mongo_cluster_user (#31205)
• New Resource: azurerm_palo_alto_next_generation_firewall_virtual_hub_strata_cloud_manager (#30613)
• New Resource: azurerm_palo_alto_next_generation_firewall_virtual_network_strata_cloud_manager (#30613)
• New List Resource: azurerm_private_dns_zone (#31157)

ENHANCEMENTS:

• dependencies: containerregistry - update to API version 2025-04-01 (#30205)
• dependencies: go-azure-helpers - update to v0.75.1 (#31148)
• dependencies: go-azure-sdk - update to v0.20251202.1181053 (#31253)
• dependencies: managedidentity - upgrade API version to 2024-11-30 (#30535)
• dependencies: postgres - update to API version 2025-08-01 (#31162)
• azurerm_cognitive_account - update validation for customer_managed_key.key_vault_key_id to allow managed HSM keys as input (#31147)
• azurerm_container_app_environment - extend validation for workload_profile_type for additional supported SKUs (#30738)
• azurerm_container_app_environment_certificate - add support for the certificate_key_vault block (#30510)
• azurerm_data_factory - update validation for customer_managed_key_id to allow managed HSM keys as input (#31146)
• azurerm_mongo_cluster - support for new properties customer_managed_key, data_api_mode_enabled, identity, restore, authentication_methods and storage_type (#31100)
• azurerm_mysql_flexible_server - add support for MySQL version 8.4 (#31099)
• azurerm_oracle_autonomous_database - the admin_password property is no longer ForceNew (#30966)
• azurerm_postgresql_flexible_server - update validation for customer_managed_key.key_vault_key_id and customer_managed_key.geo_backup_key_vault_key_id to allow managed HSM keys as input (#31148)
• azurerm_postgresql_flexible_server - add support for PostgreSQL version 18 (#31162)
• azurerm_storage_encryption_scope - update validation for key_vault_key_id to allow managed HSM keys as input (#31145)

BUG FIXES:

• Data Source: azurerm_ssh_public_key - fix normalisation for public_key to avoid removing a literal EOT from the base64 encoded content (#31249)
• azurerm_data_protection_backup_vault - poll delete request for completion (#31202)
• azurerm_function_app_hybrid_connection - remove validation preventing resource import when using an elastic service plan SKU (#31134)
• azurerm_key_vault_key - not_before_date and expiration_date are now set into state when empty, fixing an issue where drift was not detected (#31192)
• azurerm_key_vault_secret - not_before_date and expiration_date are now set into state when empty, fixing an issue where drift was not detected (#31192)
• azurerm_kubernetes_cluster - fix drift on azure_policy_enabled when updating cluster (#30917)
• azurerm_kubernetes_fleet_update_run - fix a nil pointer dereference to prevent panics (#31213)
• azurerm_lb_nat_rule - fix an issue that prevented changing floating_ip_enabled and tcp_reset_enabled from true to false (#31244)
• azurerm_lb_outbound_rule - fix an issue that prevented changing tcp_reset_enabled from true to false (#31244)
• azurerm_lb_rule - fix an issue that prevented changing floating_ip_enabled and tcp_reset_enabled from true to false (#31244)
• azurerm_private_endpoint - ensure Resource Identity data is set on create to avoid Missing Resource Identity After Create errors (#31246)
• azurerm_resource_group - fix poller for the prevent_deletion_if_contains_resources feature, resolving an Azure eventual consistency issue (#31253)
• azurerm_storage_account - ensure Resource Identity data is set on create to avoid Missing Resource Identity After Create errors (#31246)
• azurerm_traffic_manager_profile - fix an issue that prevented changing traffic_view_enabled from true to false (#31066)

v4.54.0

4.54.0 (November 19, 2025)

... (truncated)

Changelog

Sourced from hashicorp/azurerm's changelog.

4.55.0 (December 04, 2025)

FEATURES:

• New Data Source: azurerm_api_management_workspace (#30241)
• New Resource: azurerm_cognitive_account_project (#30916)
• New Resource: azurerm_log_analytics_workspace_table_custom_log (#30800)
• New Resource: azurerm_mongo_cluster_user (#31205)
• New Resource: azurerm_palo_alto_next_generation_firewall_virtual_hub_strata_cloud_manager (#30613)
• New Resource: azurerm_palo_alto_next_generation_firewall_virtual_network_strata_cloud_manager (#30613)
• New List Resource: azurerm_private_dns_zone (#31157)

ENHANCEMENTS:

• dependencies: containerregistry - update to API version 2025-04-01 (#30205)
• dependencies: go-azure-helpers - update to v0.75.1 (#31148)
• dependencies: go-azure-sdk - update to v0.20251202.1181053 (#31253)
• dependencies: managedidentity - upgrade API version to 2024-11-30 (#30535)
• dependencies: postgres - update to API version 2025-08-01 (#31162)
• azurerm_cognitive_account - update validation for customer_managed_key.key_vault_key_id to allow managed HSM keys as input (#31147)
• azurerm_container_app_environment - extend validation for workload_profile_type for additional supported SKUs (#30738)
• azurerm_container_app_environment_certificate - add support for the certificate_key_vault block (#30510)
• azurerm_data_factory - update validation for customer_managed_key_id to allow managed HSM keys as input (#31146)
• azurerm_mongo_cluster - support for new properties customer_managed_key, data_api_mode_enabled, identity, restore, authentication_methods and storage_type (#31100)
• azurerm_mysql_flexible_server - add support for MySQL version 8.4 (#31099)
• azurerm_oracle_autonomous_database - the admin_password property is no longer ForceNew (#30966)
• azurerm_postgresql_flexible_server - update validation for customer_managed_key.key_vault_key_id and customer_managed_key.geo_backup_key_vault_key_id to allow managed HSM keys as input (#31148)
• azurerm_postgresql_flexible_server - add support for PostgreSQL version 18 (#31162)
• azurerm_storage_encryption_scope - update validation for key_vault_key_id to allow managed HSM keys as input (#31145)

BUG FIXES:

• Data Source: azurerm_ssh_public_key - fix normalisation for public_key to avoid removing a literal EOT from the base64 encoded content (#31249)
• azurerm_data_protection_backup_vault - poll delete request for completion (#31202)
• azurerm_function_app_hybrid_connection - remove validation preventing resource import when using an elastic service plan SKU (#31134)
• azurerm_key_vault_key - not_before_date and expiration_date are now set into state when empty, fixing an issue where drift was not detected (#31192)
• azurerm_key_vault_secret - not_before_date and expiration_date are now set into state when empty, fixing an issue where drift was not detected (#31192)
• azurerm_kubernetes_cluster - fix drift on azure_policy_enabled when updating cluster (#30917)
• azurerm_kubernetes_fleet_update_run - fix a nil pointer dereference to prevent panics (#31213)
• azurerm_lb_nat_rule - fix an issue that prevented changing floating_ip_enabled and tcp_reset_enabled from true to false (#31244)
• azurerm_lb_outbound_rule - fix an issue that prevented changing tcp_reset_enabled from true to false (#31244)
• azurerm_lb_rule - fix an issue that prevented changing floating_ip_enabled and tcp_reset_enabled from true to false (#31244)
• azurerm_private_endpoint - ensure Resource Identity data is set on create to avoid Missing Resource Identity After Create errors (#31246)
• azurerm_resource_group - fix poller for the prevent_deletion_if_contains_resources feature, resolving an Azure eventual consistency issue (#31253)
• azurerm_storage_account - ensure Resource Identity data is set on create to avoid Missing Resource Identity After Create errors (#31246)
• azurerm_traffic_manager_profile - fix an issue that prevented changing traffic_view_enabled from true to false (#31066)

4.54.0 (November 19, 2025)

FEATURES:

... (truncated)

Commits

• 37bf7f0 CHANGELOG.md for 4.55.0 (#31143)
• 84db9cb postgres - upgrade API version to 2025-08-01 and add support for PSQL FS ...
• 21927a9 oracle_autonomous_database support to reset password (#30966)
• 3108873 New Resource: azurerm_mongo_cluster_user (#31205)
• 471d22f azurerm_ssh_public_key - fix ssh key normalisation in data source (#31249)
• 1cb00a2 azurerm_data_protection_backup_vault - Change delete method to partially ad...
• 9a037ac azurerm_traffic_manager_profile - remove d.GetOk() for `traffic_view_enable...
• 230558c loadbalancer - fix drift due to GetOk check on boolean (#31244)
• 3f75c88 azurerm_resource_group - use new RetryOnErrorPoller to resolve eventual c...
• 01db6a8 Misc - deprecated function clean up and removal of functions (#31247)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🦙 MegaLinter status: ❌ ERROR

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ COPYPASTE	jscpd	yes		no	1.16s
❌ REPOSITORY	checkov	yes		5	22.59s
✅ REPOSITORY	dustilock	yes		no	2.83s
✅ REPOSITORY	gitleaks	yes		no	33.05s
✅ REPOSITORY	git_diff	yes		no	0.1s
✅ REPOSITORY	grype	yes		no	32.61s
❌ REPOSITORY	kics	yes		27	78.38s
✅ REPOSITORY	secretlint	yes		no	1.2s
✅ REPOSITORY	syft	yes		no	0.65s
❌ REPOSITORY	trivy	yes		1	20.09s
✅ REPOSITORY	trivy-sbom	yes		no	0.15s
✅ REPOSITORY	trufflehog	yes		no	3.72s
✅ TERRAFORM	terraform-fmt	1	0	0	0.08s
❌ TERRAFORM	terrascan	yes		1	7.67s
❌ TERRAFORM	tflint	yes		1	7.33s

See detailed report in MegaLinter reports
Set VALIDATE_ALL_CODEBASE: true in mega-linter.yml to validate all sources, not only the diff

MegaLinter is graciously provided by

[dependabot]

Superseded by #725.