OpenTofu 1.7 is alive!

We’re incredibly excited today to announce that the long anticipated OpenTofu 1.7 is finally out and available! It includes several long-requested features and some OpenTofu-exclusive capabilities, such as state encryption and enhanced provider-defined functions.

It includes:

• State Encryption, to protect sensitive state-files at rest with local passphrases and cloud integrations for key management systems such as AWS KMS, GCP KMS, OpenBao, and an extensible API for future integrations.
• Enhanced Provider-defined Functions, to let providers define custom functions to be used in tofu code, including a tofu-exclusive feature to write those custom functions in Go or Lua next to a user's tofu config files.
• Loopable Imports, which enable the use of `for_each` in import blocks, making the importing of large amounts of infrastructure into tofu configuration much easier.
• “Removed” blocks, which make it easy to export infrastructure from user tofu configs.

If you haven’t migrated yet, use our docs to get started. Click here for a detailed changelog.