Skip to content

Commit

Permalink
GCP IAM Updates Detected
Browse files Browse the repository at this point in the history
  • Loading branch information
@jdyke
jdyke committed Nov 16, 2024
1 parent a15602c commit b99a49d
Show file tree
Hide file tree
Showing 14 changed files with 6 additions and 37 deletions.
7 changes: 0 additions & 7 deletions roles/chronicle.restrictedDataAccessViewer
View file
Original file line number Diff line number Diff line change
Expand Up @@ -68,8 +68,6 @@
"chronicle.operations.list",
"chronicle.operations.streamSearch",
"chronicle.operations.wait",
"chronicle.preferenceSets.get",
"chronicle.preferenceSets.update",
"chronicle.referenceLists.get",
"chronicle.referenceLists.list",
"chronicle.referenceLists.verifyReferenceList",
Expand All @@ -82,11 +80,6 @@
"chronicle.rules.list",
"chronicle.rules.listRevisions",
"chronicle.rules.verifyRuleText",
"chronicle.searchQueries.create",
"chronicle.searchQueries.delete",
"chronicle.searchQueries.get",
"chronicle.searchQueries.list",
"chronicle.searchQueries.update",
"resourcemanager.projects.get",
"resourcemanager.projects.list"
],
Expand Down
3 changes: 1 addition & 2 deletions roles/chronicle.viewer
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,8 +40,6 @@
"chronicle.dataTables.list",
"chronicle.dataTaps.get",
"chronicle.dataTaps.list",
"chronicle.enrichmentControls.get",
"chronicle.enrichmentControls.list",
"chronicle.entities.find",
"chronicle.entities.findRelatedEntities",
"chronicle.entities.get",
Expand Down Expand Up @@ -105,6 +103,7 @@
"chronicle.legacies.legacyGetRuleCounts",
"chronicle.legacies.legacyGetRulesTrends",
"chronicle.legacies.legacyRunTestRule",
"chronicle.legacies.legacySearchAlerts",
"chronicle.legacies.legacySearchArtifactEvents",
"chronicle.legacies.legacySearchArtifactIoCDetails",
"chronicle.legacies.legacySearchAssetEvents",
Expand Down
1 change: 1 addition & 0 deletions roles/chroniclesm.admin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,7 @@
"chroniclesm.gcpAssociations.create",
"chroniclesm.gcpAssociations.delete",
"chroniclesm.gcpAssociations.get",
"chroniclesm.gcpAssociations.list",
"chroniclesm.gcpLogFlowFilters.get",
"chroniclesm.gcpLogFlowFilters.update",
"chroniclesm.gcpSettings.get",
Expand Down
4 changes: 0 additions & 4 deletions roles/composer.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -464,8 +464,6 @@
"compute.networkEndpointGroups.listEffectiveTags",
"compute.networkEndpointGroups.listTagBindings",
"compute.networkEndpointGroups.use",
"compute.networkProfiles.get",
"compute.networkProfiles.list",
"compute.networks.access",
"compute.networks.addPeering",
"compute.networks.create",
Expand Down Expand Up @@ -683,7 +681,6 @@
"compute.snapshots.setIamPolicy",
"compute.snapshots.setLabels",
"compute.snapshots.useReadOnly",
"compute.spotAssistants.get",
"compute.sslCertificates.get",
"compute.sslCertificates.list",
"compute.sslCertificates.listEffectiveTags",
Expand Down Expand Up @@ -718,7 +715,6 @@
"compute.subnetworks.update",
"compute.subnetworks.use",
"compute.subnetworks.useExternalIp",
"compute.subnetworks.usePeerMigration",
"compute.targetGrpcProxies.create",
"compute.targetGrpcProxies.createTagBinding",
"compute.targetGrpcProxies.delete",
Expand Down
4 changes: 0 additions & 4 deletions roles/container.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -426,8 +426,6 @@
"compute.networkEndpointGroups.listEffectiveTags",
"compute.networkEndpointGroups.listTagBindings",
"compute.networkEndpointGroups.use",
"compute.networkProfiles.get",
"compute.networkProfiles.list",
"compute.networks.access",
"compute.networks.addPeering",
"compute.networks.create",
Expand Down Expand Up @@ -678,7 +676,6 @@
"compute.snapshots.setIamPolicy",
"compute.snapshots.setLabels",
"compute.snapshots.useReadOnly",
"compute.spotAssistants.get",
"compute.sslCertificates.create",
"compute.sslCertificates.createTagBinding",
"compute.sslCertificates.delete",
Expand Down Expand Up @@ -722,7 +719,6 @@
"compute.subnetworks.update",
"compute.subnetworks.use",
"compute.subnetworks.useExternalIp",
"compute.subnetworks.usePeerMigration",
"compute.targetGrpcProxies.create",
"compute.targetGrpcProxies.createTagBinding",
"compute.targetGrpcProxies.delete",
Expand Down
3 changes: 0 additions & 3 deletions roles/dialogflow.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,11 +46,8 @@
"dialogflow.conversationDatasets.list",
"dialogflow.conversationModels.get",
"dialogflow.conversationModels.list",
"dialogflow.conversationProfiles.create",
"dialogflow.conversationProfiles.delete",
"dialogflow.conversationProfiles.get",
"dialogflow.conversationProfiles.list",
"dialogflow.conversationProfiles.update",
"dialogflow.conversations.addPhoneNumber",
"dialogflow.conversations.complete",
"dialogflow.conversations.create",
Expand Down
3 changes: 0 additions & 3 deletions roles/discoveryengine.admin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -111,9 +111,6 @@
"discoveryengine.siteSearchEngines.fetchDomainVerificationStatus",
"discoveryengine.siteSearchEngines.get",
"discoveryengine.siteSearchEngines.recrawlUris",
"discoveryengine.sitemaps.create",
"discoveryengine.sitemaps.delete",
"discoveryengine.sitemaps.fetch",
"discoveryengine.suggestionDenyListEntries.import",
"discoveryengine.suggestionDenyListEntries.purge",
"discoveryengine.targetSites.batchCreate",
Expand Down
3 changes: 0 additions & 3 deletions roles/genomics.serviceAgent
View file
Original file line number Diff line number Diff line change
Expand Up @@ -261,8 +261,6 @@
"compute.networkEndpointGroups.listEffectiveTags",
"compute.networkEndpointGroups.listTagBindings",
"compute.networkEndpointGroups.use",
"compute.networkProfiles.get",
"compute.networkProfiles.list",
"compute.networks.get",
"compute.networks.list",
"compute.networks.listEffectiveTags",
Expand Down Expand Up @@ -361,7 +359,6 @@
"compute.snapshots.setIamPolicy",
"compute.snapshots.setLabels",
"compute.snapshots.useReadOnly",
"compute.spotAssistants.get",
"compute.sslCertificates.get",
"compute.sslCertificates.list",
"compute.sslCertificates.listEffectiveTags",
Expand Down
1 change: 0 additions & 1 deletion roles/iam.principalAccessBoundaryAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,6 @@
"etag": "AA==",
"includedPermissions": [
"cloudasset.assets.listResource",
"cloudasset.assets.searchAllResources",
"iam.principalaccessboundarypolicies.bind",
"iam.principalaccessboundarypolicies.create",
"iam.principalaccessboundarypolicies.delete",
Expand Down
3 changes: 3 additions & 0 deletions roles/notebooks.admin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -161,6 +161,8 @@
"compute.networkEndpointGroups.list",
"compute.networkEndpointGroups.listEffectiveTags",
"compute.networkEndpointGroups.listTagBindings",
"compute.networkProfiles.get",
"compute.networkProfiles.list",
"compute.networks.get",
"compute.networks.getEffectiveFirewalls",
"compute.networks.getRegionEffectiveFirewalls",
Expand Down Expand Up @@ -276,6 +278,7 @@
"compute.snapshots.list",
"compute.snapshots.listEffectiveTags",
"compute.snapshots.listTagBindings",
"compute.spotAssistants.get",
"compute.sslCertificates.get",
"compute.sslCertificates.list",
"compute.sslCertificates.listEffectiveTags",
Expand Down
4 changes: 0 additions & 4 deletions roles/notebooks.legacyAdmin
View file
Original file line number Diff line number Diff line change
Expand Up @@ -419,8 +419,6 @@
"compute.networkEndpointGroups.listEffectiveTags",
"compute.networkEndpointGroups.listTagBindings",
"compute.networkEndpointGroups.use",
"compute.networkProfiles.get",
"compute.networkProfiles.list",
"compute.networks.access",
"compute.networks.addPeering",
"compute.networks.create",
Expand Down Expand Up @@ -722,7 +720,6 @@
"compute.snapshots.setIamPolicy",
"compute.snapshots.setLabels",
"compute.snapshots.useReadOnly",
"compute.spotAssistants.get",
"compute.sslCertificates.create",
"compute.sslCertificates.createTagBinding",
"compute.sslCertificates.delete",
Expand Down Expand Up @@ -766,7 +763,6 @@
"compute.subnetworks.update",
"compute.subnetworks.use",
"compute.subnetworks.useExternalIp",
"compute.subnetworks.usePeerMigration",
"compute.targetGrpcProxies.create",
"compute.targetGrpcProxies.createTagBinding",
"compute.targetGrpcProxies.delete",
Expand Down
1 change: 0 additions & 1 deletion roles/policyanalyzer.activityAnalysisViewer
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,6 @@
"description": "Viewer user that can read all activity analysis.",
"etag": "AA==",
"includedPermissions": [
"policyanalyzer.resourceAuthorizationActivities.query",
"policyanalyzer.serviceAccountKeyLastAuthenticationActivities.query",
"policyanalyzer.serviceAccountLastAuthenticationActivities.query"
],
Expand Down
5 changes: 0 additions & 5 deletions roles/redis.editor
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,11 +3,6 @@
"etag": "AA==",
"includedPermissions": [
"compute.networks.list",
"redis.backupCollections.get",
"redis.backupCollections.list",
"redis.backups.get",
"redis.backups.list",
"redis.clusters.backup",
"redis.clusters.get",
"redis.clusters.list",
"redis.clusters.update",
Expand Down
1 change: 1 addition & 0 deletions roles/securitycenter.settingsViewer
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,6 +46,7 @@
"securitycentermanagement.locations.list",
"securitycentermanagement.securityCenterServices.get",
"securitycentermanagement.securityCenterServices.list",
"securitycentermanagement.securityCommandCenter.checkActivationOperation",
"securitycentermanagement.securityCommandCenter.get",
"securitycentermanagement.securityHealthAnalyticsCustomModules.get",
"securitycentermanagement.securityHealthAnalyticsCustomModules.list",
Expand Down

0 comments on commit b99a49d

Please sign in to comment.