kubernetes · k8s-ci-robot · Mar 3, 2021 · Mar 3, 2021 · spiffxp · Mar 3, 2021
diff --git a/audit/org_kubernetes.io/iam.json b/audit/org_kubernetes.io/iam.json
@@ -8,10 +8,23 @@
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "organizations/758905017065/roles/StorageBucketLister"
     },
+    {
+      "members": [
+        "group:[email protected]"
+      ],
+      "role": "organizations/758905017065/roles/audit.viewer"
+    },
+    {
+      "members": [
+        "group:[email protected]"
+      ],
+      "role": "organizations/758905017065/roles/organization.admin"
+    },
     {
       "members": [
         "user:[email protected]",
@@ -27,37 +40,49 @@
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/billing.user"
     },
     {
       "members": [
-        "group:[email protected]"
+        "group:[email protected]"
+      ],
+      "role": "roles/billing.viewer"
+    },
+    {
+      "members": [
+        "group:[email protected]",
+        "group:[email protected]"
       ],
       "role": "roles/browser"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/compute.viewer"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/dns.reader"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/iam.organizationRoleAdmin"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/iam.securityReviewer"
     },
@@ -69,9 +94,10 @@
     },
     {
       "members": [
-        "group:[email protected]",
+        "user:[email protected]",
         "user:[email protected]",
         "user:[email protected]",
+        "user:[email protected]",
         "user:[email protected]",
         "user:[email protected]",
         "user:[email protected]"
@@ -80,31 +106,42 @@
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/resourcemanager.organizationViewer"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/resourcemanager.projectCreator"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/resourcemanager.projectDeleter"
     },
     {
       "members": [
-        "group:[email protected]"
+        "group:[email protected]"
+      ],
+      "role": "roles/secretmanager.viewer"
+    },
+    {
+      "members": [
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/servicemanagement.quotaAdmin"
     },
     {
       "members": [
-        "group:[email protected]"
+        "user:[email protected]",
+        "user:[email protected]"
       ],
       "role": "roles/serviceusage.serviceUsageConsumer"
     }

diff --git a/audit/org_kubernetes.io/roles/CustomRole.json b/audit/org_kubernetes.io/roles/CustomRole.json
@@ -1,5 +1,5 @@
 {
-  "description": "Can view billing info",
+  "description": "View access to billing info",
   "includedPermissions": [
     "billing.accounts.getSpendingInformation",
     "billing.budgets.get",

diff --git a/audit/org_kubernetes.io/roles/StorageBucketLister.json b/audit/org_kubernetes.io/roles/StorageBucketLister.json