Merge branch 'main' into WAF-300

Author: tunzor

content/terraform-enterprise/1.0.x/docs/enterprise/releases/1.0.x/index.mdx

@@ -14,6 +14,7 @@ Below is a list of the most recent Terraform Enterprise Releases that can deploy
 
 | Version           | Linked <br />Terraform CLI\**                                     | Sentinel                                                                    | Tested Kubernetes Versions (EKS, AKS, GKE) | Helm Chart Version |
 | ----------------- | ------------------------------------------------------------------- | --------------------------------------------------------------------------- | ------------------------------ | ------------------ |
+| [1.0.2](#1-0-2)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  |  [1.33](https://docs.aws.amazon.com/eks/latest/userguide/kubernetes-versions.html), [1.33](https://learn.microsoft.com/en-us/azure/aks/supported-kubernetes-versions?tabs=azure-cli#aks-kubernetes-release-calendar), [1.32](https://cloud.google.com/kubernetes-engine/docs/release-notes)                  | [1.6.5](https://github.com/hashicorp/terraform-enterprise-helm/releases/tag/v1.6.5)       |
 | [1.0.1](#1-0-1)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  |  [1.33](https://docs.aws.amazon.com/eks/latest/userguide/kubernetes-versions.html), [1.33](https://learn.microsoft.com/en-us/azure/aks/supported-kubernetes-versions?tabs=azure-cli#aks-kubernetes-release-calendar), [1.32](https://cloud.google.com/kubernetes-engine/docs/release-notes)                  | [1.6.5](https://github.com/hashicorp/terraform-enterprise-helm/releases/tag/v1.6.5)       |
 | [1.0.0](#1-0-0)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  |  [1.33](https://docs.aws.amazon.com/eks/latest/userguide/kubernetes-versions.html), [1.33](https://learn.microsoft.com/en-us/azure/aks/supported-kubernetes-versions?tabs=azure-cli#aks-kubernetes-release-calendar), [1.32](https://cloud.google.com/kubernetes-engine/docs/release-notes)                  | [1.6.5](https://github.com/hashicorp/terraform-enterprise-helm/releases/tag/v1.6.5)       |
 
@@ -25,6 +26,7 @@ Below is a list of the most recent Terraform Enterprise Releases that can deploy
 
 | Version           | Linked <br />Terraform CLI\**                                     | Sentinel                                                                    | Recommended Docker Compose version |
 | ----------------- | ------------------------------------------------------------------- | --------------------------------------------------------------------------- | ---------------------------------- |
+| [1.0.2](#1-0-2)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [V2](https://docs.docker.com/compose/migrate/)                       |
 | [1.0.1](#1-0-1)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [V2](https://docs.docker.com/compose/migrate/)                       |
 | [1.0.0](#1-0-0)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [V2](https://docs.docker.com/compose/migrate/)                       |
 
@@ -36,6 +38,7 @@ Below is a list of the most recent Terraform Enterprise Releases that can deploy
 
 | Version           | Linked <br />Terraform CLI\**                                     | Sentinel                                                                    | Tested Podman version |
 | ----------------- | ------------------------------------------------------------------- | --------------------------------------------------------------------------- | ---------------------------------- |
+| [1.0.2](#1-0-2)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [v5](https://github.com/containers/podman/releases/tag/v5.0.0)                       |
 | [1.0.1](#1-0-1)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [v5](https://github.com/containers/podman/releases/tag/v5.0.0)                       |
 | [1.0.0](#1-0-0)   | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | [v5](https://github.com/containers/podman/releases/tag/v5.0.0)                       |
 
@@ -47,6 +50,7 @@ Below is a list of the most recent Terraform Enterprise Releases that can deploy
 
 | Version           | Linked <br />Terraform CLI\**                                       | Sentinel                                                                    | Tested Nomad versions       | Min supported version |
 | ----------------- | ------------------------------------------------------------------- | --------------------------------------------------------------------------- | --------------------------- | --------------------- |
+| [1.0.2](#1-0-2)  | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | 1.7 | 1.5 |
 | [1.0.1](#1-0-1)  | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | 1.7 | 1.5 |
 | [1.0.0](#1-0-0)  | [1.12.1](https://github.com/hashicorp/terraform/releases/tag/v1.12.1) | [0.40.0](https://developer.hashicorp.com/sentinel/docs/changelog#0-40-0-may-12-2025)  | 1.7 | 1.5 |
 
@@ -57,6 +61,19 @@ Below is a list of the most recent Terraform Enterprise Releases that can deploy
 
 \** The release package contains this version of the Terraform CLI, but you can install older and newer versions of the Terraform CLI as needed via the Admin [UI](/terraform/enterprise/application-administration/resources#managing-terraform-versions) or [API](/terraform/enterprise/api-docs/admin/terraform-versions).
 
+## 1.0.2
+<span class="h4-size">2025-10-15</span>
+
+Last required release: [v202406-1 (776)](/terraform/enterprise/releases/2024/v202406-1)
+
+Flexible Deployment Options `terraform-enterprise` container digest: amd64/linux `sha256:edc06293b395e5beb3dfbbda4e89341334ab184c5895b81cf31c074dadc43ff7`, arm64/linux `sha256:7d7dfa2b283f252b8a65b1689a49db2b3a0b81fcaefd11a560a93baf8ad6041f`
+
+## Bug Fixes
+1. Plan output will now be rendered when Structured Run Output (SRO) is enabled. Previously, the output from `terraform plan` and `terraform apply` was not displayed as expected when SRO was active.
+
+## Security
+1. Security vulnerabilities have been addressed and resolved in this update to enhance overall system protection.
+
 ## 1.0.1
 <span class="h4-size">2025-09-15</span>
 

content/terraform-enterprise/1.0.x/docs/enterprise/releases/index.mdx

@@ -10,8 +10,6 @@ description: >-
 
 <Tip title="Next Release">
 
-The next patch release for 1.0.x is scheduled for the week of October 11, 2025 
-
 The next minor release for 1.1.x is scheduled for the week of November 11, 2025
 
 </Tip>

content/vault/v1.19.x/content/docs/deploy/why-use-tls.mdx

@@ -0,0 +1,50 @@
+---
+layout: docs
+page_title: Why use TLS?
+description: >-
+  Understand the benefits of securing your Vault clusters with end-to-end TLS.
+---
+
+# Why use TLS?
+
+You can enhance the overall security posture of your Vault cluster when you
+secure communications with TLS to ensure that data transmitted between Vault
+nodes and clients remains confidential and tamper-proof.
+
+@include 'ld-images/deploy/secure-vault-tls.mdx'
+
+Use mutual TLS with your Vault cluster deployments to protect sensitive data and
+prevent unauthorized access with enhanced compliance, governance, auditing
+capabilities, and incident response.
+
+## TLS benefits
+
+- **Improved data protection**.
+  TLS prevents unauthorized access or communication with the Vault cluster to
+  ensure data availability based on your security policies. TLS also protects
+  sensitive data in transit to prevent interception or tampering.
+
+- **Strong identity verification**.
+  Vault cluster nodes and clients verify identities from TLS certificates before
+  communicating to enable trusted operations and prevent impersonation.
+
+- **Improved compliance and governance**.
+  Implementing mutual TLS in your Vault clusters aligns your deployments with
+  industry best practices and regulatory requirements like HIPAA, PCI-DSS, and
+  others.
+
+- **Reduce risk of data leaks**.
+  When you operate Vault clusters with mutual TLS enabled, you minimize the risk
+  of data leaks and unauthorized access to sensitive information.
+
+- **Improved incident response**.
+  Mutual TLS helps to limit the exposure or damage from unauthorized access to
+  sensitive data stored in Vault, which makes incident response more
+  straightforward.
+
+## TLS resources
+
+- [Default Vault TLS configuration](/vault/docs/configuration/listener/tcp#default-tls-configuration)
+- [Configure TLS for your Vault TCP listener](/vault/docs/configuration/listener/tcp/tcp-tls)
+- [Vault installation to minikube via Helm with TLS enabled](/vault/tutorials/kubernetes/kubernetes-minikube-tls)
+- [Medium blog: Enabling TLS on your Vault cluster on Kubernetes](https://medium.com/@martin.hodges/enabling-tls-on-your-vault-cluster-on-kubernetes-0d20439b13d0)

content/vault/v1.19.x/content/partials/ld-images/deploy/secure-vault-tls.mdx

@@ -0,0 +1,11 @@
+<ImageConfig hideBorder>
+
+![Secure Vault intra-cluster and inter-cluster communications with TLS](/img/diagram-secure-vault-tls-dark.png#dark-theme-only)
+
+</ImageConfig>
+
+<ImageConfig hideBorder>
+
+![Secure Vault intra-cluster and inter-cluster communications with TLS](/img/diagram-secure-vault-tls.png#light-theme-only)
+
+</ImageConfig>

content/vault/v1.19.x/data/docs-nav-data.json

@@ -666,6 +666,10 @@
   {
     "title": "Deploy Vault",
     "routes": [
+      {
+        "title": "Why use TLS?",
+        "path": "deploy/why-use-tls"
+      },
       {
         "title": "Run as a service",
         "path": "deploy/run-as-service"

content/vault/v1.20.x/content/docs/deploy/why-use-tls.mdx

@@ -0,0 +1,50 @@
+---
+layout: docs
+page_title: Why use TLS?
+description: >-
+  Understand the benefits of securing your Vault clusters with end-to-end TLS.
+---
+
+# Why use TLS?
+
+You can enhance the overall security posture of your Vault cluster when you
+secure communications with TLS to ensure that data transmitted between Vault
+nodes and clients remains confidential and tamper-proof.
+
+@include 'ld-images/deploy/secure-vault-tls.mdx'
+
+Use mutual TLS with your Vault cluster deployments to protect sensitive data and
+prevent unauthorized access with enhanced compliance, governance, auditing
+capabilities, and incident response.
+
+## TLS benefits
+
+- **Improved data protection**.
+  TLS prevents unauthorized access or communication with the Vault cluster to
+  ensure data availability based on your security policies. TLS also protects
+  sensitive data in transit to prevent interception or tampering.
+
+- **Strong identity verification**.
+  Vault cluster nodes and clients verify identities from TLS certificates before
+  communicating to enable trusted operations and prevent impersonation.
+
+- **Improved compliance and governance**.
+  Implementing mutual TLS in your Vault clusters aligns your deployments with
+  industry best practices and regulatory requirements like HIPAA, PCI-DSS, and
+  others.
+
+- **Reduce risk of data leaks**.
+  When you operate Vault clusters with mutual TLS enabled, you minimize the risk
+  of data leaks and unauthorized access to sensitive information.
+
+- **Improved incident response**.
+  Mutual TLS helps to limit the exposure or damage from unauthorized access to
+  sensitive data stored in Vault, which makes incident response more
+  straightforward.
+
+## TLS resources
+
+- [Default Vault TLS configuration](/vault/docs/configuration/listener/tcp#default-tls-configuration)
+- [Configure TLS for your Vault TCP listener](/vault/docs/configuration/listener/tcp/tcp-tls)
+- [Vault installation to minikube via Helm with TLS enabled](/vault/tutorials/kubernetes/kubernetes-minikube-tls)
+- [Medium blog: Enabling TLS on your Vault cluster on Kubernetes](https://medium.com/@martin.hodges/enabling-tls-on-your-vault-cluster-on-kubernetes-0d20439b13d0)

content/vault/v1.20.x/content/partials/ld-images/deploy/secure-vault-tls.mdx

@@ -0,0 +1,2 @@
+![Secure Vault intra-cluster and inter-cluster communications with TLS](/img/diagram-secure-vault-tls-dark.png#dark-theme-only)
+![Secure Vault intra-cluster and inter-cluster communications with TLS](/img/diagram-secure-vault-tls.png#light-theme-only)

content/vault/v1.20.x/data/docs-nav-data.json

@@ -711,6 +711,10 @@
   {
     "title": "Deploy Vault",
     "routes": [
+      {
+        "title": "Why use TLS?",
+        "path": "deploy/why-use-tls"
+      },
       {
         "title": "Run as a service",
         "path": "deploy/run-as-service"