From cfc69f5a0fb153d1a50e807b96653afc2eb3e33e Mon Sep 17 00:00:00 2001
From: Ben Hirschberg <bhirschb@cyberarmor.io>
Date: Tue, 18 Jan 2022 14:41:07 +0200
Subject: [PATCH] adding access to container registry

---
 examples/cloud-vendor-integration/gcp.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/examples/cloud-vendor-integration/gcp.sh b/examples/cloud-vendor-integration/gcp.sh
index 2edd7414..0f33cb15 100755
--- a/examples/cloud-vendor-integration/gcp.sh
+++ b/examples/cloud-vendor-integration/gcp.sh
@@ -36,6 +36,7 @@ export custom_role_name=$(gcloud iam roles create kubescape --project=$gcp_proje
 # Attach policies to the service account
 echo 'Attach policies to the service account'
 gcloud --quiet projects add-iam-policy-binding $gcp_project --member serviceAccount:$gcp_service_account --role $custom_role_name >/dev/null
+gcloud --quiet projects add-iam-policy-binding $gcp_project --member serviceAccount:$gcp_service_account --role roles/storage.objectViewer >/dev/null
 
 # If there are missing permissions, use this role instead
 # gcloud --quiet projects add-iam-policy-binding $gcp_project --member serviceAccount:$gcp_service_account --role roles/container.clusterViewer