Skip to content

Commit

Permalink
GCP IAM Updates Detected
Browse files Browse the repository at this point in the history
  • Loading branch information
@jdyke
jdyke committed Nov 3, 2024
1 parent fd5555b commit a93af39
Show file tree
Hide file tree
Showing 42 changed files with 274 additions and 13 deletions.
2 changes: 1 addition & 1 deletion roles/aiplatform.expressAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,6 @@
"aiplatform.endpoints.predict"
],
"name": "roles/aiplatform.expressAdmin",
"stage": "ALPHA",
"stage": "BETA",
"title": "Vertex AI Platform Express Admin"
}
2 changes: 1 addition & 1 deletion roles/aiplatform.expressUser
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,6 @@
"aiplatform.endpoints.predict"
],
"name": "roles/aiplatform.expressUser",
"stage": "ALPHA",
"stage": "BETA",
"title": "Vertex AI Platform Express User"
}
2 changes: 1 addition & 1 deletion roles/artifactregistry.containerRegistryMigrationAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,6 @@
"storage.objects.list"
],
"name": "roles/artifactregistry.containerRegistryMigrationAdmin",
"stage": "ALPHA",
"stage": "GA",
"title": "Container Registry -> Artifact Registry Migration Admin"
}
10 changes: 10 additions & 0 deletions roles/auditmanager.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@
"etag": "AA==",
"includedPermissions": [
"bigquery.datasets.get",
"certificatemanager.certs.list",
"certificatemanager.trustconfigs.list",
"cloudasset.assets.analyzeIamPolicy",
"cloudasset.assets.analyzeMove",
"cloudasset.assets.analyzeOrgPolicy",
Expand Down Expand Up @@ -563,15 +565,19 @@
"cloudasset.assets.queryResource",
"cloudasset.assets.searchAllIamPolicies",
"cloudasset.assets.searchAllResources",
"cloudkms.cryptoKeys.list",
"cloudsql.instances.get",
"cloudsql.instances.list",
"compute.autoscalers.list",
"compute.backendServices.list",
"compute.disks.list",
"compute.firewallPolicies.list",
"compute.firewalls.list",
"compute.forwardingRules.list",
"compute.globalForwardingRules.list",
"compute.instanceGroupManagers.list",
"compute.instanceGroups.list",
"compute.instances.get",
"compute.instances.list",
"compute.regionSslPolicies.list",
"compute.regionTargetHttpProxies.list",
Expand All @@ -586,10 +592,14 @@
"compute.urlMaps.list",
"compute.vpnGateways.list",
"compute.zones.list",
"container.clusters.get",
"container.clusters.list",
"dns.managedZones.list",
"iam.serviceAccounts.getIamPolicy",
"logging.buckets.list",
"monitoring.timeSeries.list",
"orgpolicy.policy.get",
"privateca.certificates.list",
"recommender.cloudAssetInsights.get",
"recommender.cloudAssetInsights.list",
"recommender.locations.get",
Expand Down
4 changes: 4 additions & 0 deletions roles/batch.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -234,6 +234,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.get",
"compute.networkAttachments.list",
"compute.networkAttachments.listEffectiveTags",
Expand Down
10 changes: 10 additions & 0 deletions roles/cloudtpu.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -355,6 +355,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.create",
"compute.networkAttachments.createTagBinding",
"compute.networkAttachments.delete",
Expand Down Expand Up @@ -987,6 +991,12 @@
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.tlsRoutes.update",
"networkservices.wasmPlugins.create",
"networkservices.wasmPlugins.delete",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.update",
"networkservices.wasmPlugins.use",
"pubsub.schemas.attach",
"pubsub.schemas.commit",
"pubsub.schemas.create",
Expand Down
4 changes: 4 additions & 0 deletions roles/compute.admin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -384,6 +384,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.create",
"compute.networkAttachments.createTagBinding",
"compute.networkAttachments.delete",
Expand Down
4 changes: 4 additions & 0 deletions roles/compute.instanceAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -155,6 +155,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkEndpointGroups.attachNetworkEndpoints",
"compute.networkEndpointGroups.create",
"compute.networkEndpointGroups.createTagBinding",
Expand Down
4 changes: 4 additions & 0 deletions roles/compute.instanceAdmin.v1
View file
Original file line number Diff line number Diff line change
Expand Up @@ -242,6 +242,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.get",
"compute.networkAttachments.list",
"compute.networkAttachments.listEffectiveTags",
Expand Down
6 changes: 6 additions & 0 deletions roles/compute.networkAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -799,6 +799,12 @@
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.tlsRoutes.update",
"networkservices.wasmPlugins.create",
"networkservices.wasmPlugins.delete",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.update",
"networkservices.wasmPlugins.use",
"resourcemanager.projects.get",
"resourcemanager.projects.list",
"servicedirectory.namespaces.create",
Expand Down
3 changes: 3 additions & 0 deletions roles/compute.networkUser
View file
Original file line number Diff line number Diff line change
Expand Up @@ -174,6 +174,9 @@
"networkservices.tcpRoutes.list",
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.use",
"resourcemanager.projects.get",
"resourcemanager.projects.list",
"servicenetworking.services.get",
Expand Down
2 changes: 2 additions & 0 deletions roles/compute.networkViewer
View file
Original file line number Diff line number Diff line change
Expand Up @@ -291,6 +291,8 @@
"networkservices.tcpRoutes.list",
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"resourcemanager.projects.get",
"resourcemanager.projects.list",
"servicenetworking.services.get",
Expand Down
22 changes: 22 additions & 0 deletions roles/container.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -400,6 +400,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.create",
"compute.networkAttachments.createTagBinding",
"compute.networkAttachments.delete",
Expand Down Expand Up @@ -1561,6 +1565,24 @@
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.tlsRoutes.update",
"networkservices.wasmPlugins.create",
"networkservices.wasmPlugins.delete",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.update",
"networkservices.wasmPlugins.use",
"parallelstore.instances.create",
"parallelstore.instances.delete",
"parallelstore.instances.get",
"parallelstore.instances.importData",
"parallelstore.instances.list",
"parallelstore.instances.update",
"parallelstore.locations.get",
"parallelstore.locations.list",
"parallelstore.operations.cancel",
"parallelstore.operations.delete",
"parallelstore.operations.get",
"parallelstore.operations.list",
"pubsub.topics.create",
"pubsub.topics.get",
"pubsub.topics.publish",
Expand Down
10 changes: 10 additions & 0 deletions roles/dataflow.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -467,6 +467,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.create",
"compute.networkAttachments.createTagBinding",
"compute.networkAttachments.delete",
Expand Down Expand Up @@ -1252,6 +1256,12 @@
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.tlsRoutes.update",
"networkservices.wasmPlugins.create",
"networkservices.wasmPlugins.delete",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.update",
"networkservices.wasmPlugins.use",
"observability.scopes.get",
"opsconfigmonitoring.resourceMetadata.list",
"orgpolicy.policy.get",
Expand Down
2 changes: 2 additions & 0 deletions roles/datafusion.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -512,6 +512,8 @@
"networkservices.tcpRoutes.list",
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"orgpolicy.policy.get",
"recommender.iamPolicyInsights.get",
"recommender.iamPolicyInsights.list",
Expand Down
2 changes: 1 addition & 1 deletion roles/dataplex.discoveryBigLakePublishingServiceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,6 @@
"bigquery.connections.use"
],
"name": "roles/dataplex.discoveryBigLakePublishingServiceAgent",
"stage": "ALPHA",
"stage": "GA",
"title": "Dataplex Discovery BigLake Publishing Service Agent"
}
2 changes: 1 addition & 1 deletion roles/dataplex.discoveryPublishingServiceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,6 @@
"bigquery.datasets.get"
],
"name": "roles/dataplex.discoveryPublishingServiceAgent",
"stage": "ALPHA",
"stage": "GA",
"title": "Dataplex Discovery Publishing Service Agent"
}
2 changes: 1 addition & 1 deletion roles/dataplex.discoveryServiceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,6 @@
"storage.objects.list"
],
"name": "roles/dataplex.discoveryServiceAgent",
"stage": "ALPHA",
"stage": "GA",
"title": "Dataplex Discovery Service Agent"
}
2 changes: 2 additions & 0 deletions roles/dataprep.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -192,6 +192,8 @@
"compute.machineImages.list",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.get",
"compute.networkAttachments.getIamPolicy",
"compute.networkAttachments.list",
Expand Down
4 changes: 4 additions & 0 deletions roles/dataproc.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -158,6 +158,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkEndpointGroups.attachNetworkEndpoints",
"compute.networkEndpointGroups.create",
"compute.networkEndpointGroups.createTagBinding",
Expand Down
2 changes: 1 addition & 1 deletion roles/designcenter.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,6 @@
"storage.objects.update"
],
"name": "roles/designcenter.serviceAgent",
"stage": "ALPHA",
"stage": "GA",
"title": "DesignCenter Service Agent"
}
35 changes: 35 additions & 0 deletions roles/editor
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2859,6 +2859,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.create",
"compute.networkAttachments.delete",
"compute.networkAttachments.get",
Expand Down Expand Up @@ -6992,6 +6996,12 @@
"networkservices.tlsRoutes.get",
"networkservices.tlsRoutes.list",
"networkservices.tlsRoutes.update",
"networkservices.wasmPlugins.create",
"networkservices.wasmPlugins.delete",
"networkservices.wasmPlugins.get",
"networkservices.wasmPlugins.list",
"networkservices.wasmPlugins.update",
"networkservices.wasmPlugins.use",
"notebooks.environments.create",
"notebooks.environments.delete",
"notebooks.environments.get",
Expand Down Expand Up @@ -7110,6 +7120,12 @@
"osconfig.instanceOSPoliciesCompliances.list",
"osconfig.inventories.get",
"osconfig.inventories.list",
"osconfig.locations.get",
"osconfig.locations.list",
"osconfig.operations.cancel",
"osconfig.operations.delete",
"osconfig.operations.get",
"osconfig.operations.list",
"osconfig.osPolicyAssignmentReports.get",
"osconfig.osPolicyAssignmentReports.list",
"osconfig.osPolicyAssignmentReports.searchSummaries",
Expand All @@ -7130,6 +7146,11 @@
"osconfig.patchJobs.exec",
"osconfig.patchJobs.get",
"osconfig.patchJobs.list",
"osconfig.policyOrchestrators.create",
"osconfig.policyOrchestrators.delete",
"osconfig.policyOrchestrators.get",
"osconfig.policyOrchestrators.list",
"osconfig.policyOrchestrators.update",
"osconfig.projectFeatureSettings.get",
"osconfig.projectFeatureSettings.update",
"osconfig.upgradeReports.get",
Expand All @@ -7138,6 +7159,19 @@
"osconfig.upgradeReports.searchSummaries",
"osconfig.vulnerabilityReports.get",
"osconfig.vulnerabilityReports.list",
"parallelstore.instances.create",
"parallelstore.instances.delete",
"parallelstore.instances.exportData",
"parallelstore.instances.get",
"parallelstore.instances.importData",
"parallelstore.instances.list",
"parallelstore.instances.update",
"parallelstore.locations.get",
"parallelstore.locations.list",
"parallelstore.operations.cancel",
"parallelstore.operations.delete",
"parallelstore.operations.get",
"parallelstore.operations.list",
"paymentsresellersubscription.products.list",
"paymentsresellersubscription.promotions.list",
"paymentsresellersubscription.subscriptions.cancel",
Expand Down Expand Up @@ -7980,6 +8014,7 @@
"securesourcemanager.operations.delete",
"securesourcemanager.operations.get",
"securesourcemanager.operations.list",
"securesourcemanager.repositories.approvePullRequests",
"securesourcemanager.repositories.create",
"securesourcemanager.repositories.delete",
"securesourcemanager.repositories.fetch",
Expand Down
4 changes: 4 additions & 0 deletions roles/genomics.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -242,6 +242,10 @@
"compute.machineImages.useReadOnly",
"compute.machineTypes.get",
"compute.machineTypes.list",
"compute.multiMig.create",
"compute.multiMig.delete",
"compute.multiMig.get",
"compute.multiMig.list",
"compute.networkAttachments.get",
"compute.networkAttachments.list",
"compute.networkAttachments.listEffectiveTags",
Expand Down
Loading

0 comments on commit a93af39

Please sign in to comment.