Releases: darkbitio/gcp-iam-role-permissions
Releases · darkbitio/gcp-iam-role-permissions
Release 2025-11-18-01-31-52
GCP IAM Update 2025-11-18-01-31-52
gcp_roles_cai.json | 119 +++++++++++----------
roles/aiplatform.expressAdmin | 5 +
roles/aiplatform.memoryEditor (new) | 13 +++
roles/aiplatform.memoryUser (new) | 16 +++
roles/aiplatform.memoryViewer (new) | 12 +++
roles/aiplatform.notebookRuntimeAdmin | 1 +
roles/aiplatform.notebookRuntimeUser | 1 +
roles/aiplatform.sessionEditor (new) | 13 +++
roles/aiplatform.sessionUser (new) | 16 +++
roles/aiplatform.sessionViewer (new) | 12 +++
roles/apigateway.admin | 1 +
roles/apigee.apiAdminV2 | 3 +
roles/apihub.admin | 3 +
roles/apihub.editor | 3 +
roles/apihub.viewer | 3 +
roles/apphub.appManagementViewer | 2 +
roles/backupdr.admin | 10 ++
roles/backupdr.filestoreOperator | 2 +-
roles/backupdr.restoreUser | 3 +
roles/backupdr.viewer | 4 +
roles/bigquery.studioAdmin | 1 +
roles/bigquery.studioUser | 1 +
roles/capacityplanner.viewer | 1 +
roles/cloudhub.operator | 3 +
roles/cloudsql.admin | 1 +
roles/cloudtpu.serviceAgent | 5 +
roles/composer.serviceAgent | 5 +
roles/compute.networkAdmin | 5 +
roles/compute.networkUser | 2 +
roles/consumerprocurement.orderViewer | 4 +-
roles/consumerprocurement.procurementAdmin | 4 +
roles/consumerprocurement.procurementViewer | 2 +
roles/container.serviceAgent | 15 +++
roles/datacatalog.entryGroupOwner | 1 +
roles/dataflow.serviceAgent | 5 +
roles/dataplex.catalogEditor | 1 +
roles/dataplex.entryGroupOwner | 1 +
roles/dataplex.entryOwner | 1 +
roles/datastream.serviceAgent | 2 +
...eveloperconnect.connectionHttpProxyWriter (new) | 11 ++
roles/developerconnect.insightsViewer | 2 +
roles/dspm.admin | 1 +
roles/dspm.viewer | 1 +
roles/editor | 42 ++++++++
roles/file.editor | 17 +++
roles/firebase.developAdmin | 5 +
roles/firebase.developViewer | 2 +
roles/firebase.viewer | 2 +
roles/firebasevertexai.admin | 5 +
roles/firebasevertexai.viewer | 2 +
roles/geminicodeassistmanagement.serviceAgent | 2 +
roles/iam.infrastructureAdmin | 5 +
roles/iam.securityAdmin | 10 ++
roles/iam.securityAuditor | 11 ++
roles/iam.securityReviewer | 9 ++
roles/iam.supportUser | 20 ++++
roles/mcp.toolUser | 3 +-
roles/networkconnectivity.transportAdmin (new) | 24 +++++
roles/networkconnectivity.transportViewer (new) | 19 ++++
roles/networkservices.serviceExtensionsAdmin | 5 +
roles/networkservices.serviceExtensionsViewer | 2 +
roles/privilegedaccessmanager.settingsViewer | 2 +-
roles/telemetry.consumerAdmin (new) | 11 ++
roles/telemetry.logsWriter (new) | 10 ++
roles/telemetry.writer | 1 +
roles/viewer | 20 ++++
66 files changed, 488 insertions(+), 58 deletions(-)
Release 2025-11-17-13-21-41
GCP IAM Update 2025-11-17-13-21-41
gcp_roles_cai.json | 89 +++++++++++-----------
roles/aiplatform.expressAdmin | 5 --
roles/aiplatform.expressUser | 5 ++
roles/aiplatform.notebookRuntimeUser | 1 -
roles/apigateway.admin | 1 -
roles/apigee.admin | 3 +
roles/apigee.serviceAgent | 1 +
roles/apihub.viewer | 3 -
roles/backupdr.admin | 10 ---
roles/backupdr.backupUser | 9 +++
roles/backupdr.filestoreOperator (new) | 11 +++
roles/backupdr.userv2 | 10 +++
roles/bigquery.studioAdmin | 1 -
roles/bigquery.studioUser | 1 -
roles/billing.admin | 4 +
roles/capacityplanner.viewer | 1 -
roles/chronicle.serviceAgent | 1 +
roles/cloudsql.admin | 1 -
roles/cloudsql.editor | 1 +
roles/cloudtpu.serviceAgent | 5 --
roles/compute.networkViewer | 2 +
roles/consumerprocurement.orderViewer | 4 +-
roles/consumerprocurement.procurementAdmin | 4 -
roles/datafusion.serviceAgent | 2 +
roles/dataplex.catalogAdmin | 1 +
roles/dataplex.catalogEditor | 1 -
roles/dataplex.entryOwner | 1 -
roles/datastream.serviceAgent | 2 -
...veloperconnect.connectionHttpProxyWriter (gone) | 7 --
roles/dspm.admin | 1 -
roles/editor | 42 ----------
roles/file.viewer | 4 +
roles/firebase.admin | 5 ++
roles/firebase.developAdmin | 5 --
roles/firebase.developViewer | 2 -
roles/firebasevertexai.admin | 5 --
roles/firebasevertexai.viewer | 2 -
roles/iam.infrastructureAdmin | 5 --
roles/iam.securityReviewer | 9 ---
roles/mcp.toolUser (new) | 11 +++
roles/networkconnectivity.transportAdmin (gone) | 24 ------
roles/networkconnectivity.transportViewer (gone) | 15 ----
roles/networkservices.serviceExtensionsAdmin | 5 --
roles/networkservices.serviceExtensionsViewer | 2 -
roles/owner | 50 ++++++++++++
roles/securitycenter.adminEditor | 1 +
roles/telemetry.writer | 1 -
roles/viewer | 20 -----
48 files changed, 166 insertions(+), 230 deletions(-)
Release 2025-11-17-01-32-06
GCP IAM Update 2025-11-17-01-32-06
gcp_roles_cai.json | 99 ++++++++++++-------------
roles/aiplatform.memoryEditor (gone) | 13 ----
roles/aiplatform.memoryUser (gone) | 16 ----
roles/aiplatform.memoryViewer (gone) | 12 ---
roles/aiplatform.notebookRuntimeAdmin | 1 -
roles/aiplatform.notebookRuntimeUser | 1 +
roles/aiplatform.sessionEditor (gone) | 13 ----
roles/aiplatform.sessionUser (gone) | 16 ----
roles/aiplatform.sessionViewer (gone) | 12 ---
roles/apigateway.admin | 1 +
roles/apigee.admin | 3 -
roles/apigee.apiAdminV2 | 3 -
roles/apigee.apiReaderV2 | 3 +
roles/apihub.admin | 3 -
roles/apihub.editor | 3 -
roles/backupdr.backupUser | 9 ---
roles/backupdr.restoreUser | 3 -
roles/backupdr.viewer | 4 -
roles/billing.admin | 4 -
roles/capacityplanner.planner | 3 +-
roles/capacityplanner.viewer | 1 +
roles/chronicle.serviceAgent | 1 -
roles/cloudhub.operator | 3 -
roles/cloudsql.admin | 1 +
roles/cloudtpu.serviceAgent | 5 ++
roles/compute.networkAdmin | 5 --
roles/compute.networkUser | 2 -
roles/consumerprocurement.orderAdmin | 6 +-
roles/consumerprocurement.orderViewer | 4 +-
roles/consumerprocurement.procurementViewer | 2 -
roles/container.serviceAgent | 15 ----
roles/datacatalog.entryOwner | 1 +
roles/datafusion.serviceAgent | 2 -
roles/dataplex.catalogAdmin | 1 -
roles/dataplex.catalogEditor | 1 +
roles/dataplex.entryGroupOwner | 1 -
roles/developerconnect.insightsViewer | 2 -
roles/editor | 42 +++++++++++
roles/file.editor | 17 -----
roles/file.viewer | 4 -
roles/firebase.admin | 5 --
roles/firebase.developAdmin | 5 ++
roles/firebasevertexai.admin | 5 ++
roles/firebasevertexai.viewer | 2 +
roles/geminicodeassistmanagement.serviceAgent | 2 -
roles/iam.infrastructureAdmin | 5 ++
roles/iam.networkAdmin | 5 ++
roles/iam.securityAdmin | 10 ---
roles/iam.supportUser | 20 -----
roles/mcp.toolUser (gone) | 12 ---
roles/networkconnectivity.transportAdmin (new) | 24 ++++++
roles/networkconnectivity.transportViewer (new) | 15 ++++
roles/owner | 50 -------------
roles/securitycenter.adminViewer | 1 +
roles/telemetry.writer | 1 +
55 files changed, 176 insertions(+), 324 deletions(-)
Release 2025-11-16-13-18-13
GCP IAM Update 2025-11-16-13-18-13
gcp_roles_cai.json | 104 +++++++++++----------
roles/aiplatform.expressAdmin | 5 +
roles/aiplatform.memoryEditor (new) | 13 +++
roles/aiplatform.memoryUser (new) | 16 ++++
roles/aiplatform.memoryViewer (new) | 12 +++
roles/aiplatform.notebookRuntimeAdmin | 1 +
roles/aiplatform.sessionEditor (new) | 13 +++
roles/aiplatform.sessionUser (new) | 16 ++++
roles/aiplatform.sessionViewer (new) | 12 +++
roles/apigateway.viewer | 1 +
roles/apigee.admin | 3 +
roles/apigee.apiAdminV2 | 3 +
roles/apihub.admin | 3 +
roles/apihub.editor | 3 +
roles/apihub.viewer | 3 +
roles/backupdr.admin | 10 ++
roles/backupdr.backupUser | 9 ++
roles/backupdr.restoreUser | 3 +
roles/backupdr.viewer | 4 +
roles/bigquery.studioAdmin | 1 +
roles/bigquery.studioUser | 1 +
roles/billing.admin | 4 +
roles/chronicle.serviceAgent | 1 +
roles/cloudhub.operator | 3 +
roles/cloudsql.viewer | 1 +
roles/compute.networkAdmin | 5 +
roles/compute.networkUser | 2 +
roles/consumerprocurement.procurementAdmin | 4 +
roles/consumerprocurement.procurementViewer | 2 +
roles/container.serviceAgent | 15 +++
roles/datacatalog.admin | 1 +
roles/datafusion.serviceAgent | 2 +
roles/dataplex.catalogAdmin | 1 +
roles/dataplex.entryGroupOwner | 1 +
roles/dataplex.entryOwner | 1 +
roles/datastream.serviceAgent | 2 +
...eveloperconnect.connectionHttpProxyWriter (new) | 7 ++
roles/developerconnect.insightsAdmin | 5 +
roles/developerconnect.insightsViewer | 2 +
roles/discoveryengine.admin | 4 +
roles/discoveryengine.agentspaceAdmin | 4 +
roles/dspm.admin | 1 +
roles/file.editor | 17 ++++
roles/file.viewer | 4 +
roles/firebase.admin | 5 +
roles/firebase.developViewer | 2 +
roles/geminicodeassistmanagement.serviceAgent | 2 +
roles/iam.securityAdmin | 10 ++
roles/iam.securityReviewer | 9 ++
roles/iam.supportUser | 20 ++++
roles/mcp.toolUser (new) | 12 +++
roles/networkservices.serviceExtensionsAdmin | 5 +
roles/networkservices.serviceExtensionsViewer | 2 +
roles/owner | 50 ++++++++++
roles/securitycenter.admin | 1 +
roles/viewer | 20 ++++
roles/vmwareengine.vmwareenginePrivilegedUser | 1 +
57 files changed, 416 insertions(+), 48 deletions(-)
Release 2025-11-16-01-33-18
GCP IAM Update 2025-11-16-01-33-18
gcp_roles_cai.json | 42 ++++++++++------------
roles/aiplatform.expressUser | 5 ---
roles/apigee.serviceAgent | 1 -
roles/apihub.editor | 3 --
roles/apphub.appManagementViewer | 2 --
roles/backupdr.viewer | 4 ---
roles/bigquery.studioAdmin | 1 -
roles/compute.networkAdmin | 5 ---
roles/compute.networkUser | 2 --
roles/consumerprocurement.procurementAdmin | 4 ---
roles/datacatalog.admin | 1 -
roles/dataflow.serviceAgent | 5 ---
roles/dataplex.catalogEditor | 1 -
roles/dataplex.entryGroupOwner | 1 -
...veloperconnect.connectionHttpProxyWriter (gone) | 7 ----
roles/firebase.developAdmin | 5 ---
roles/firebasevertexai.admin | 5 ---
roles/firebasevertexai.viewer | 2 --
roles/iam.infrastructureAdmin | 5 ---
roles/iam.networkAdmin | 5 ---
roles/mcp.toolUser (gone) | 12 -------
roles/networkconnectivity.transportAdmin (gone) | 24 -------------
roles/networkconnectivity.transportViewer (gone) | 15 --------
roles/telemetry.writer | 1 -
24 files changed, 19 insertions(+), 139 deletions(-)
Release 2025-11-15-13-19-35
GCP IAM Update 2025-11-15-13-19-35
gcp_roles_cai.json | 42 ++++++++++++----------
roles/aiplatform.expressUser | 5 +++
roles/apigee.serviceAgent | 1 +
roles/apihub.editor | 3 ++
roles/apphub.appManagementViewer | 2 ++
roles/backupdr.viewer | 4 +++
roles/bigquery.studioAdmin | 1 +
roles/compute.networkAdmin | 5 +++
roles/compute.networkUser | 2 ++
roles/consumerprocurement.procurementAdmin | 4 +++
roles/datacatalog.admin | 1 +
roles/dataflow.serviceAgent | 5 +++
roles/dataplex.catalogEditor | 1 +
roles/dataplex.entryGroupOwner | 1 +
...eveloperconnect.connectionHttpProxyWriter (new) | 7 ++++
roles/firebase.developAdmin | 5 +++
roles/firebasevertexai.admin | 5 +++
roles/firebasevertexai.viewer | 2 ++
roles/iam.infrastructureAdmin | 5 +++
roles/iam.networkAdmin | 5 +++
roles/mcp.toolUser (new) | 12 +++++++
roles/networkconnectivity.transportAdmin (new) | 24 +++++++++++++
roles/networkconnectivity.transportViewer (new) | 15 ++++++++
roles/telemetry.writer | 1 +
24 files changed, 139 insertions(+), 19 deletions(-)
Release 2025-11-09-01-32-21
GCP IAM Update 2025-11-09-01-32-21
gcp_roles_cai.json | 198 +++++++++++----------
roles/aiplatform.extensionCustomCodeServiceAgent | 5 +-
roles/apigee.serviceAgent | 2 +
roles/apihub.runtimeProjectServiceAgent | 1 +
roles/bigquery.admin | 22 +++
roles/bigquery.jobUser | 1 +
roles/bigquery.routineAdmin | 2 +-
roles/bigquery.routineDataEditor | 2 +-
roles/ces.admin | 11 ++
roles/chronicle.limitedViewer | 2 +
roles/chronicle.viewer | 5 +
roles/cloudtpu.serviceAgent | 1 +
roles/composer.environmentAndStorageObjectAdmin | 5 +-
roles/composer.worker | 3 +
roles/compute.admin | 5 +
roles/compute.networkAdmin | 1 +
roles/compute.viewer | 2 +
roles/compute.vmExtensionPolicyAdmin | 7 +-
roles/compute.vmExtensionPolicyViewer | 4 +-
roles/contactcenterinsights.admin | 11 ++
roles/contactcenterinsights.authorizedEditor | 15 +-
roles/contactcenterinsights.authorizedViewer | 3 +
roles/contactcenterinsights.editor | 13 ++
roles/databaseinsights.eventsViewer | 2 +-
roles/databaseinsights.monitoringViewer | 2 +-
roles/databaseinsights.operationsAdmin | 2 +-
roles/databaseinsights.recommendationViewer | 2 +-
roles/databaseinsights.viewer | 2 +-
roles/dataflow.serviceAgent | 37 ++++
roles/dataform.codeCreator | 1 +
roles/dataform.codeOwner | 12 ++
roles/dataform.codeScheduler (new) | 11 ++
roles/dataform.codeViewer | 3 +
roles/dataform.editor | 7 +
roles/dataform.teamFolderCommenter (new) | 49 +++++
roles/dataform.teamFolderContributor (new) | 68 +++++++
roles/dataform.teamFolderCreator (new) | 10 ++
roles/dataform.teamFolderOwner (new) | 80 +++++++++
roles/dataform.teamFolderViewer (new) | 39 ++++
roles/dataform.viewer | 7 +
roles/datafusion.serviceAgent | 17 ++
roles/datapipelines.serviceAgent | 16 +-
roles/dataplex.admin | 12 ++
roles/dataplex.dataProductsAdmin (new) | 24 +++
roles/dataplex.dataProductsConsumer (new) | 14 ++
roles/dataplex.dataProductsEditor (new) | 23 +++
roles/dataplex.dataProductsViewer (new) | 16 ++
roles/dataplex.editor | 11 ++
roles/dataplex.serviceAgent | 36 ++++
roles/dataplex.viewer | 5 +
roles/dataprep.serviceAgent | 8 +-
roles/dataproc.admin | 1 +
roles/dataproc.editor | 1 +
roles/dataproc.hubAgent | 1 +
roles/dataproc.serviceAgent | 17 +-
roles/designcenter.admin | 5 +-
roles/designcenter.user | 5 +-
roles/dlp.projectdriver | 1 +
roles/dlp.serviceAgent | 17 +-
roles/documentai.editor | 21 +++
roles/enterpriseknowledgegraph.serviceAgent | 1 +
roles/firebase.managementServiceAgent | 1 +
roles/firebase.sdkAdminServiceAgent | 5 +-
roles/firebaseapphosting.computeRunner | 3 +
roles/fleetengine.serviceAgent | 1 +
roles/generativelanguage.serviceAgent (new) | 11 ++
roles/iam.accessPolicyAdmin (new) | 17 ++
roles/iam.accessPolicyUser (new) | 13 ++
roles/iam.accessPolicyViewer (new) | 12 ++
roles/iam.dataScientist | 5 +
roles/iam.databasesAdmin | 38 ++++
roles/iam.devOps | 3 +
roles/iam.infrastructureAdmin | 20 +++
roles/iam.mlEngineer | 28 ++-
roles/iam.networkAdmin | 6 +
roles/iam.securityAuditor | 22 +++
roles/iam.securityReviewer | 21 +++
roles/iam.siteReliabilityEngineer | 3 +
roles/iam.supportUser | 43 +++++
roles/ml.serviceAgent | 16 +-
roles/notebooks.admin | 2 +
roles/notebooks.legacyAdmin | 5 +
roles/notebooks.legacyViewer | 2 +
roles/notebooks.runner | 2 +
roles/notebooks.serviceAgent | 2 +
roles/owner | 118 ++++++++++++
roles/paymentsresellersubscription.partnerAdmin | 1 +
...paymentsresellersubscription.subscriptionEditor | 1 +
roles/run.sourceDeveloper | 1 +
roles/saasservicemgmt.admin | 5 +
roles/securesourcemanager.instanceOwner | 5 +
roles/servicenetworking.networksAdmin | 1 +
roles/spanner.databaseReader | 1 +
roles/spanner.databaseReaderWithDataBoost | 1 +
roles/spanner.databaseUser | 1 +
roles/spanner.viewer | 1 +
roles/storage.folderAdmin | 5 +-
roles/storage.legacyBucketOwner | 5 +-
roles/storage.legacyObjectOwner | 5 +-
roles/storage.objectAdmin | 5 +-
roles/storage.objectCreator | 3 +-
roles/storage.objectUser | 5 +-
roles/storagebatchoperations.admin (new) | 22 +++
roles/storagebatchoperations.viewer (new) | 17 ++
roles/visualinspection.serviceAgent | 16 +-
roles/vmwareengine.vmwareengineAdmin | 9 +
roles/vmwareengine.vmwareenginePrivilegedUser | 3 +
roles/vmwareengine.vmwareengineViewer | 3 +
108 files changed, 1303 insertions(+), 119 deletions(-)
Release 2025-11-08-13-19-41
GCP IAM Update 2025-11-08-13-19-41
gcp_roles_cai.json | 120 +++++++++++------------
roles/aiplatform.colabEnterpriseAdmin | 22 +++++
roles/aiplatform.colabEnterpriseUser | 1 +
roles/aiplatform.extensionCustomCodeServiceAgent | 5 +-
roles/aiplatform.serviceAgent | 1 +
roles/bigquery.admin | 22 -----
roles/bigquery.jobUser | 1 -
roles/bigquery.routineAdmin (new) | 22 +++++
roles/bigquery.routineDataEditor (new) | 21 ++++
roles/bigquery.routineDataViewer (new) | 17 ++++
roles/bigquery.routineMetadataViewer (new) | 15 +++
roles/bigquery.studioAdmin | 22 +++++
roles/bigquery.user | 1 +
roles/chronicle.editor | 11 +++
roles/chronicle.viewer | 5 -
roles/cloudtpu.serviceAgent | 1 -
roles/composer.worker | 3 -
roles/compute.admin | 5 -
roles/compute.networkAdmin | 1 -
roles/compute.vmExtensionPolicyAdmin (new) | 23 +++++
roles/compute.vmExtensionPolicyViewer (new) | 17 ++++
roles/contactcenterinsights.authorizedEditor | 15 +--
roles/dataflow.serviceAgent | 37 -------
roles/dataform.admin | 22 +++++
roles/dataform.codeEditor | 6 ++
roles/dataform.codeScheduler (gone) | 11 ---
roles/dataform.teamFolderCommenter (gone) | 49 ---------
roles/dataform.teamFolderContributor (gone) | 59 -----------
roles/dataform.teamFolderCreator (gone) | 7 --
roles/dataform.teamFolderOwner (gone) | 63 ------------
roles/dataform.teamFolderViewer (gone) | 34 -------
roles/dataform.viewer | 7 --
roles/datafusion.serviceAgent | 17 ----
roles/dataplex.admin | 12 ---
roles/dataplex.dataProductsAdmin (gone) | 12 ---
roles/dataplex.dataProductsConsumer (gone) | 14 ---
roles/dataplex.serviceAgent | 36 -------
roles/dataprep.serviceAgent | 8 +-
roles/dataproc.admin | 1 -
roles/dataproc.worker | 3 +
roles/designcenter.user | 5 +-
roles/dlp.orgdriver | 1 +
roles/dlp.serviceAgent | 17 +---
roles/editor | 108 ++++++++++++++++++++
roles/enterpriseknowledgegraph.serviceAgent | 1 -
roles/firebase.admin | 16 ++-
roles/firebase.developAdmin | 16 ++-
roles/generativelanguage.serviceAgent (gone) | 11 ---
roles/iam.accessPolicyAdmin (gone) | 7 --
roles/iam.accessPolicyUser (gone) | 7 --
roles/iam.accessPolicyViewer (gone) | 7 --
roles/iam.dataScientist | 5 -
roles/iam.devOps | 3 -
roles/iam.securityAuditor | 22 -----
roles/iam.securityReviewer | 21 ----
roles/iam.siteReliabilityEngineer | 3 -
roles/ml.serviceAgent | 16 +--
roles/notebooks.admin | 2 -
roles/notebooks.runner | 2 -
roles/paymentsresellersubscription.partnerAdmin | 1 -
roles/run.sourceDeveloper | 1 -
roles/saasservicemgmt.admin | 5 -
roles/securesourcemanager.admin | 5 +
roles/spanner.viewer | 1 -
roles/storage.admin | 16 ++-
roles/storage.legacyBucketOwner | 5 +-
roles/storage.legacyBucketWriter | 1 +
roles/viewer | 43 ++++++++
roles/visualinspection.serviceAgent | 16 +--
roles/vmwareengine.vmwareengineViewer | 3 -
70 files changed, 472 insertions(+), 644 deletions(-)
Release 2025-11-08-01-32-16
GCP IAM Update 2025-11-08-01-32-16
gcp_roles_cai.json | 122 +++++++++++------------
roles/aiplatform.colabEnterpriseAdmin | 22 ----
roles/aiplatform.extensionCustomCodeServiceAgent | 5 +-
roles/aiplatform.serviceAgent | 1 -
roles/bigquery.jobUser | 1 +
roles/bigquery.routineAdmin (gone) | 22 ----
roles/bigquery.routineDataEditor (gone) | 21 ----
roles/bigquery.routineDataViewer (gone) | 17 ----
roles/bigquery.routineMetadataViewer (gone) | 15 ---
roles/bigquery.studioAdmin | 22 ----
roles/bigquery.user | 1 -
roles/bigquerydatatransfer.serviceAgent | 1 +
roles/ces.admin | 11 --
roles/chronicle.admin | 11 ++
roles/chronicle.limitedViewer | 2 -
roles/cloudtpu.serviceAgent | 1 +
roles/composer.serviceAgent | 15 +++
roles/composer.worker | 3 +
roles/compute.admin | 5 +
roles/compute.networkAdmin | 1 +
roles/compute.viewer | 2 -
roles/contactcenterinsights.admin | 11 --
roles/databaseinsights.monitoringViewer | 2 +-
roles/databaseinsights.recommendationViewer | 2 +-
roles/dataform.admin | 22 ----
roles/dataform.codeCommenter | 2 +
roles/dataform.codeEditor | 6 --
roles/dataform.codeOwner | 12 ---
roles/dataform.codeScheduler | 2 +-
roles/dataform.teamFolderViewer | 7 +-
roles/dataplex.admin | 12 +++
roles/dataplex.dataProductsEditor (gone) | 23 -----
roles/dataplex.dataProductsViewer (gone) | 11 --
roles/dataplex.editor | 11 --
roles/dataplex.viewer | 5 -
roles/dataproc.admin | 1 +
roles/dataproc.worker | 3 -
roles/dlp.serviceAgent | 17 +++-
roles/documentai.admin | 21 ++++
roles/documentai.editor | 21 ----
roles/documentai.viewer | 8 ++
roles/editor | 108 --------------------
roles/firebase.developAdmin | 16 +--
roles/firebase.sdkAdminServiceAgent | 5 +-
roles/firebaseapphosting.computeRunner | 3 -
roles/generativelanguage.serviceAgent (new) | 11 ++
roles/iam.accessPolicyAdmin (new) | 7 ++
roles/iam.accessPolicyUser (new) | 7 ++
roles/iam.accessPolicyViewer (new) | 7 ++
roles/iam.dataScientist | 5 +
roles/iam.databasesAdmin | 38 -------
roles/iam.securityAdmin | 25 +++++
roles/iam.securityReviewer | 21 ++++
roles/ml.serviceAgent | 16 ++-
roles/notebooks.legacyViewer | 2 -
roles/notebooks.serviceAgent | 2 -
roles/notebooks.viewer | 2 +
roles/oci.serviceAgent | 1 +
roles/owner | 118 ----------------------
roles/saasservicemgmt.admin | 5 +
roles/saasservicemgmt.viewer | 2 +
roles/spanner.databaseReader | 1 -
roles/storage.admin | 16 +--
roles/storage.legacyBucketOwner | 5 +-
roles/storage.legacyBucketWriter | 1 -
roles/viewer | 43 --------
roles/visualinspection.serviceAgent | 16 ++-
67 files changed, 296 insertions(+), 687 deletions(-)
Release 2025-11-07-13-21-37
GCP IAM Update 2025-11-07-13-21-37
gcp_roles_cai.json | 120 +++++++++++++-----------
roles/aiplatform.colabEnterpriseAdmin | 22 +++++
roles/aiplatform.serviceAgent | 1 +
roles/bigquery.admin | 22 +++++
roles/bigquery.routineAdmin (new) | 22 +++++
roles/bigquery.routineDataEditor (new) | 21 +++++
roles/bigquery.routineDataViewer (new) | 17 ++++
roles/bigquery.routineMetadataViewer (new) | 15 +++
roles/bigquery.studioAdmin | 22 +++++
roles/bigquery.studioUser | 1 +
roles/bigquery.user | 1 +
roles/ces.admin | 11 +++
roles/ces.viewer | 5 +
roles/chronicle.limitedViewer | 2 +
roles/chronicle.viewer | 5 +
roles/compute.viewer | 2 +
roles/contactcenterinsights.admin | 11 +++
roles/contactcenterinsights.authorizedEditor | 15 ++-
roles/contactcenterinsights.viewer | 5 +
roles/container.serviceAgent | 1 +
roles/databaseinsights.monitoringViewer | 2 +-
roles/databaseinsights.recommendationViewer | 2 +-
roles/dataflow.serviceAgent | 37 ++++++++
roles/dataform.admin | 22 +++++
roles/dataform.codeEditor | 6 ++
roles/dataform.codeOwner | 12 +++
roles/dataform.codeScheduler (new) | 11 +++
roles/dataform.teamFolderCommenter (new) | 49 ++++++++++
roles/dataform.teamFolderContributor (new) | 59 ++++++++++++
roles/dataform.teamFolderCreator (new) | 7 ++
roles/dataform.teamFolderOwner (new) | 63 +++++++++++++
roles/dataform.teamFolderViewer (new) | 39 ++++++++
roles/dataform.viewer | 7 ++
roles/datafusion.serviceAgent | 17 ++++
roles/dataplex.dataProductsAdmin (new) | 12 +++
roles/dataplex.dataProductsConsumer (new) | 14 +++
roles/dataplex.dataProductsEditor (new) | 23 +++++
roles/dataplex.dataProductsViewer (new) | 11 +++
roles/dataplex.editor | 11 +++
roles/dataplex.serviceAgent | 36 +++++++
roles/dataplex.viewer | 5 +
roles/dataprep.serviceAgent | 8 +-
roles/dataproc.worker | 3 +
roles/designcenter.user | 5 +-
roles/documentai.editor | 21 +++++
roles/editor | 108 +++++++++++++++++++++
roles/enterpriseknowledgegraph.serviceAgent | 1 +
roles/firebase.developAdmin | 16 +++-
roles/firebase.sdkAdminServiceAgent | 5 +-
roles/firebaseapphosting.computeRunner | 3 +
roles/iam.databasesAdmin | 38 ++++++++
roles/iam.devOps | 3 +
roles/iam.securityAuditor | 22 +++++
roles/iam.siteReliabilityEngineer | 3 +
roles/notebooks.admin | 2 +
roles/notebooks.legacyViewer | 2 +
roles/notebooks.runner | 2 +
roles/notebooks.serviceAgent | 2 +
roles/owner | 118 +++++++++++++++++++++++
roles/paymentsresellersubscription.partnerAdmin | 1 +
roles/run.sourceDeveloper | 1 +
roles/saasservicemgmt.serviceAgent | 5 +
roles/spanner.databaseReader | 1 +
roles/spanner.viewer | 1 +
roles/storage.admin | 16 +++-
roles/storage.legacyBucketWriter | 1 +
roles/viewer | 43 +++++++++
roles/vmwareengine.vmwareengineViewer | 3 +
68 files changed, 1139 insertions(+), 61 deletions(-)