Para deploy de um serviço no Google Cloud Run, é preciso das seguintes permissões:
roles/run.admin(Cloud Run Admin)roles/iam.serviceAccountUser(Service Account User)roles/artifactregistry.reader(Artifact Registry Reader, if applicable)roles/storage.admin(Storage Object Admin, to upload source)roles/cloudbuild.builds.editor(Cloud Build Editor)