Console
    Contact Us Start free

    Artifact Analysis roles and permissions

    This page lists the IAM roles and permissions for Artifact Analysis. To search through all roles and permissions, see the role and permission index .

    Artifact Analysis roles

    Role
    Permissions

    ( roles/ containeranalysis.ServiceAgent )

    Gives Container Analysis API the access it needs to function

    artifactregistry. attachments. get

    artifactregistry. attachments. list

    artifactregistry. dockerimages.*

    • artifactregistry. dockerimages. get
    • artifactregistry. dockerimages. list

    artifactregistry. files. download

    artifactregistry.files.get

    artifactregistry.files.list

    artifactregistry.locations.*

    • artifactregistry.locations.get
    • artifactregistry. locations. list

    artifactregistry. mavenartifacts.*

    • artifactregistry. mavenartifacts. get
    • artifactregistry. mavenartifacts. list

    artifactregistry.npmpackages.*

    • artifactregistry. npmpackages. get
    • artifactregistry. npmpackages. list

    artifactregistry.packages.get

    artifactregistry.packages.list

    artifactregistry. projectsettings. get

    artifactregistry. pythonpackages.*

    • artifactregistry. pythonpackages. get
    • artifactregistry. pythonpackages. list

    artifactregistry. repositories. downloadArtifacts

    artifactregistry. repositories. get

    artifactregistry. repositories. list

    artifactregistry. repositories. listEffectiveTags

    artifactregistry. repositories. listTagBindings

    artifactregistry. repositories. readViaVirtualRepository

    artifactregistry.rules.get

    artifactregistry.rules.list

    artifactregistry.tags.get

    artifactregistry.tags.list

    artifactregistry.versions.get

    artifactregistry.versions.list

    containeranalysis.notes.list

    containeranalysis. occurrences. create

    containeranalysis. occurrences. delete

    containeranalysis. occurrences. get

    containeranalysis. occurrences. list

    containeranalysis. occurrences. update

    pubsub. messageTransforms. validate

    pubsub.schemas.attach

    pubsub.schemas.commit

    pubsub.schemas.create

    pubsub.schemas.delete

    pubsub.schemas.get

    pubsub.schemas.list

    pubsub.schemas.listRevisions

    pubsub.schemas.rollback

    pubsub.schemas.validate

    pubsub.snapshots.create

    pubsub.snapshots.delete

    pubsub.snapshots.get

    pubsub.snapshots.list

    pubsub.snapshots.seek

    pubsub.snapshots.update

    pubsub.subscriptions.consume

    pubsub.subscriptions.create

    pubsub.subscriptions.delete

    pubsub.subscriptions.get

    pubsub.subscriptions.list

    pubsub.subscriptions.update

    pubsub. topics. attachSubscription

    pubsub.topics.create

    pubsub.topics.delete

    pubsub. topics. detachSubscription

    pubsub.topics.get

    pubsub.topics.list

    pubsub.topics.publish

    pubsub.topics.update

    pubsub.topics.updateTag

    resourcemanager.projects.get

    resourcemanager.projects.list

    serviceusage.quotas.get

    serviceusage.services.get

    serviceusage.services.list

    storage.objects.get

    storage.objects.list

    ( roles/ containeranalysis.admin )

    Access to all Container Analysis resources.

    containeranalysis. notes. attachOccurrence

    containeranalysis.notes.create

    containeranalysis.notes.delete

    containeranalysis.notes.get

    containeranalysis. notes. getIamPolicy

    containeranalysis.notes.list

    containeranalysis. notes. setIamPolicy

    containeranalysis.notes.update

    containeranalysis. occurrences.*

    • containeranalysis. occurrences. create
    • containeranalysis. occurrences. delete
    • containeranalysis. occurrences. get
    • containeranalysis. occurrences. getIamPolicy
    • containeranalysis. occurrences. list
    • containeranalysis. occurrences. setIamPolicy
    • containeranalysis. occurrences. update

    resourcemanager.projects.get

    resourcemanager.projects.list

    ( roles/ containeranalysis.notes.attacher )

    Can attach Container Analysis Occurrences to Notes.

    containeranalysis. notes. attachOccurrence

    containeranalysis.notes.get

    ( roles/ containeranalysis.notes.editor )

    Can edit Container Analysis Notes.

    containeranalysis. notes. attachOccurrence

    containeranalysis.notes.create

    containeranalysis.notes.delete

    containeranalysis.notes.get

    containeranalysis.notes.list

    containeranalysis.notes.update

    resourcemanager.projects.get

    resourcemanager.projects.list

    ( roles/ containeranalysis.notes.occurrences.viewer )

    Can view all Container Analysis Occurrences attached to a Note.

    containeranalysis.notes.get

    containeranalysis. notes. listOccurrences

    ( roles/ containeranalysis.notes.viewer )

    Can view Container Analysis Notes.

    containeranalysis.notes.get

    containeranalysis.notes.list

    resourcemanager.projects.get

    resourcemanager.projects.list

    ( roles/ containeranalysis.occurrences.editor )

    Can edit Container Analysis Occurrences.

    containeranalysis. occurrences. create

    containeranalysis. occurrences. delete

    containeranalysis. occurrences. get

    containeranalysis. occurrences. list

    containeranalysis. occurrences. update

    resourcemanager.projects.get

    resourcemanager.projects.list

    ( roles/ containeranalysis.occurrences.viewer )

    Can view Container Analysis Occurrences.

    containeranalysis. occurrences. get

    containeranalysis. occurrences. list

    resourcemanager.projects.get

    resourcemanager.projects.list

    Artifact Analysis permissions

    Permission
    Included in roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Attacher ( roles/ containeranalysis.notes.attacher )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Attacher ( roles/ containeranalysis.notes.attacher )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Container Analysis Occurrences for Notes Viewer ( roles/ containeranalysis.notes.occurrences.viewer )

    Container Analysis Notes Viewer ( roles/ containeranalysis.notes.viewer )

    Support User ( roles/ iam.supportUser )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Container Analysis Notes Viewer ( roles/ containeranalysis.notes.viewer )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Container Analysis Occurrences for Notes Viewer ( roles/ containeranalysis.notes.occurrences.viewer )

    Service agent roles

    Owner ( roles/ owner )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Security Admin ( roles/ iam.securityAdmin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Notes Editor ( roles/ containeranalysis.notes.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Build Service Account ( roles/ cloudbuild.builds.builder )

    Composer Worker ( roles/ composer.worker )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Occurrences Editor ( roles/ containeranalysis.occurrences.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Build Service Account ( roles/ cloudbuild.builds.builder )

    Composer Worker ( roles/ composer.worker )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Occurrences Editor ( roles/ containeranalysis.occurrences.editor )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Cloud Build Service Account ( roles/ cloudbuild.builds.builder )

    Composer Worker ( roles/ composer.worker )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Occurrences Editor ( roles/ containeranalysis.occurrences.editor )

    Container Analysis Occurrences Viewer ( roles/ containeranalysis.occurrences.viewer )

    Developer Connect Insights Config Agent ( roles/ developerconnect.insightsAgent )

    Support User ( roles/ iam.supportUser )

    Service agent roles

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Viewer ( roles/ viewer )

    Cloud Build Service Account ( roles/ cloudbuild.builds.builder )

    Composer Worker ( roles/ composer.worker )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Occurrences Editor ( roles/ containeranalysis.occurrences.editor )

    Container Analysis Occurrences Viewer ( roles/ containeranalysis.occurrences.viewer )

    Developer Connect Insights Config Agent ( roles/ developerconnect.insightsAgent )

    Security Admin ( roles/ iam.securityAdmin )

    Security Auditor ( roles/ iam.securityAuditor )

    Security Reviewer ( roles/ iam.securityReviewer )

    Support User ( roles/ iam.supportUser )

    Service agent roles

    Owner ( roles/ owner )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Security Admin ( roles/ iam.securityAdmin )

    Owner ( roles/ owner )

    Editor ( roles/ editor )

    Cloud Build Service Account ( roles/ cloudbuild.builds.builder )

    Composer Worker ( roles/ composer.worker )

    Container Analysis Admin ( roles/ containeranalysis.admin )

    Container Analysis Occurrences Editor ( roles/ containeranalysis.occurrences.editor )

    Service agent roles

    Design a Mobile Site
    View Site in Mobile | Classic
    Share by: