roles/binaryauthorization.serviceAgent
Title: Binary Authorization Service Agent
Description: Can read Notes and Occurrences from the Container Analysis Service to find and verify signatures.
Stage: GA
Role Type: Service Agent
20 Assigned Permissions:
- artifactregistry.dockerimages.get
- artifactregistry.repositories.downloadArtifacts
- binaryauthorization.attestors.get
- binaryauthorization.attestors.list
- binaryauthorization.attestors.verifyImageAttested
- binaryauthorization.platformPolicies.evaluatePolicy
- binaryauthorization.policy.evaluatePolicy
- cloudasset.assets.exportResource
- cloudasset.feeds.create
- cloudasset.feeds.delete
- cloudasset.feeds.get
- cloudasset.feeds.update
- containeranalysis.notes.get
- containeranalysis.notes.list
- containeranalysis.notes.listOccurrences
- containeranalysis.occurrences.get
- containeranalysis.occurrences.list
- resourcemanager.projects.get
- resourcemanager.projects.list
- storage.objects.list