diff --git a/gcp_roles_cai.json b/gcp_roles_cai.json
index e664ee90..b244784f 100644
--- a/gcp_roles_cai.json
+++ b/gcp_roles_cai.json
@@ -79,7 +79,7 @@
 {"description":"Administrator access to create and manage repositories.","etag":"AA==","includedPermissions":["artifactregistry.aptartifacts.create","artifactregistry.dockerimages.get","artifactregistry.dockerimages.list","artifactregistry.files.get","artifactregistry.files.list","artifactregistry.locations.get","artifactregistry.locations.list","artifactregistry.mavenartifacts.get","artifactregistry.mavenartifacts.list","artifactregistry.npmpackages.get","artifactregistry.npmpackages.list","artifactregistry.packages.delete","artifactregistry.packages.get","artifactregistry.packages.list","artifactregistry.pythonpackages.get","artifactregistry.pythonpackages.list","artifactregistry.repositories.create","artifactregistry.repositories.createTagBinding","artifactregistry.repositories.delete","artifactregistry.repositories.deleteArtifacts","artifactregistry.repositories.deleteTagBinding","artifactregistry.repositories.downloadArtifacts","artifactregistry.repositories.get","artifactregistry.repositories.getIamPolicy","artifactregistry.repositories.list","artifactregistry.repositories.listEffectiveTags","artifactregistry.repositories.listTagBindings","artifactregistry.repositories.setIamPolicy","artifactregistry.repositories.update","artifactregistry.repositories.uploadArtifacts","artifactregistry.tags.create","artifactregistry.tags.delete","artifactregistry.tags.get","artifactregistry.tags.list","artifactregistry.tags.update","artifactregistry.versions.delete","artifactregistry.versions.get","artifactregistry.versions.list","artifactregistry.yumartifacts.create"],"name":"roles/artifactregistry.admin","stage":"GA","title":"Artifact Registry Administrator","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Access to read repository items.","etag":"AA==","includedPermissions":["artifactregistry.dockerimages.get","artifactregistry.dockerimages.list","artifactregistry.files.get","artifactregistry.files.list","artifactregistry.locations.get","artifactregistry.locations.list","artifactregistry.mavenartifacts.get","artifactregistry.mavenartifacts.list","artifactregistry.npmpackages.get","artifactregistry.npmpackages.list","artifactregistry.packages.get","artifactregistry.packages.list","artifactregistry.pythonpackages.get","artifactregistry.pythonpackages.list","artifactregistry.repositories.downloadArtifacts","artifactregistry.repositories.get","artifactregistry.repositories.list","artifactregistry.repositories.listEffectiveTags","artifactregistry.repositories.listTagBindings","artifactregistry.tags.get","artifactregistry.tags.list","artifactregistry.versions.get","artifactregistry.versions.list"],"name":"roles/artifactregistry.reader","stage":"GA","title":"Artifact Registry Reader","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Access to manage artifacts in repositories.","etag":"AA==","includedPermissions":["artifactregistry.aptartifacts.create","artifactregistry.dockerimages.get","artifactregistry.dockerimages.list","artifactregistry.files.get","artifactregistry.files.list","artifactregistry.locations.get","artifactregistry.locations.list","artifactregistry.mavenartifacts.get","artifactregistry.mavenartifacts.list","artifactregistry.npmpackages.get","artifactregistry.npmpackages.list","artifactregistry.packages.delete","artifactregistry.packages.get","artifactregistry.packages.list","artifactregistry.pythonpackages.get","artifactregistry.pythonpackages.list","artifactregistry.repositories.deleteArtifacts","artifactregistry.repositories.downloadArtifacts","artifactregistry.repositories.get","artifactregistry.repositories.list","artifactregistry.repositories.listEffectiveTags","artifactregistry.repositories.listTagBindings","artifactregistry.repositories.uploadArtifacts","artifactregistry.tags.create","artifactregistry.tags.delete","artifactregistry.tags.get","artifactregistry.tags.list","artifactregistry.tags.update","artifactregistry.versions.delete","artifactregistry.versions.get","artifactregistry.versions.list","artifactregistry.yumartifacts.create"],"name":"roles/artifactregistry.repoAdmin","stage":"GA","title":"Artifact Registry Repository Administrator","asset_type":"iam.googleapis.com/ExportedIAMRole"}
-{"description":"Gives the Artifact Registry service account access to managed resources.","etag":"AA==","includedPermissions":["artifactregistry.repositories.downloadArtifacts","pubsub.topics.publish"],"name":"roles/artifactregistry.serviceAgent","stage":"GA","title":"Artifact Registry Service Agent","asset_type":"iam.googleapis.com/ExportedIAMRole"}
+{"description":"Gives the Artifact Registry service account access to managed resources.","etag":"AA==","includedPermissions":["artifactregistry.repositories.downloadArtifacts","artifactregistry.versions.delete","pubsub.topics.publish"],"name":"roles/artifactregistry.serviceAgent","stage":"GA","title":"Artifact Registry Service Agent","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Access to read and write repository items.","etag":"AA==","includedPermissions":["artifactregistry.aptartifacts.create","artifactregistry.dockerimages.get","artifactregistry.dockerimages.list","artifactregistry.files.get","artifactregistry.files.list","artifactregistry.locations.get","artifactregistry.locations.list","artifactregistry.mavenartifacts.get","artifactregistry.mavenartifacts.list","artifactregistry.npmpackages.get","artifactregistry.npmpackages.list","artifactregistry.packages.get","artifactregistry.packages.list","artifactregistry.pythonpackages.get","artifactregistry.pythonpackages.list","artifactregistry.repositories.downloadArtifacts","artifactregistry.repositories.get","artifactregistry.repositories.list","artifactregistry.repositories.listEffectiveTags","artifactregistry.repositories.listTagBindings","artifactregistry.repositories.uploadArtifacts","artifactregistry.tags.create","artifactregistry.tags.get","artifactregistry.tags.list","artifactregistry.tags.update","artifactregistry.versions.get","artifactregistry.versions.list","artifactregistry.yumartifacts.create"],"name":"roles/artifactregistry.writer","stage":"GA","title":"Artifact Registry Writer","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Grants full access to Assured Workloads resources, CRM resources - project/folder and Organization Policy administration","etag":"AA==","includedPermissions":["assuredworkloads.operations.get","assuredworkloads.operations.list","assuredworkloads.violations.get","assuredworkloads.violations.list","assuredworkloads.violations.update","assuredworkloads.workload.create","assuredworkloads.workload.delete","assuredworkloads.workload.get","assuredworkloads.workload.list","assuredworkloads.workload.update","logging.cmekSettings.update","orgpolicy.policy.get","orgpolicy.policy.set","resourcemanager.folders.create","resourcemanager.folders.get","resourcemanager.folders.list","resourcemanager.organizations.get","resourcemanager.projects.create","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/assuredworkloads.admin","stage":"GA","title":"Assured Workloads Administrator","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Grants read, write access to Assured Workloads resources, CRM resources - project/folder and Organization Policy administration","etag":"AA==","includedPermissions":["assuredworkloads.operations.get","assuredworkloads.operations.list","assuredworkloads.violations.get","assuredworkloads.violations.list","assuredworkloads.violations.update","assuredworkloads.workload.create","assuredworkloads.workload.delete","assuredworkloads.workload.get","assuredworkloads.workload.list","assuredworkloads.workload.update","orgpolicy.policy.get","orgpolicy.policy.set","resourcemanager.folders.create","resourcemanager.folders.get","resourcemanager.folders.list","resourcemanager.organizations.get","resourcemanager.projects.create","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/assuredworkloads.editor","stage":"GA","title":"Assured Workloads Editor","asset_type":"iam.googleapis.com/ExportedIAMRole"}
@@ -100,7 +100,7 @@
 {"description":"Full access to all autoscaling site features","etag":"AA==","includedPermissions":["autoscaling.sites.getIamPolicy","autoscaling.sites.readRecommendations","autoscaling.sites.setIamPolicy","autoscaling.sites.writeMetrics","autoscaling.sites.writeState","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/autoscaling.sitesAdmin","stage":"BETA","title":"Autoscaling Site Admin","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Access to write state for autoscaling site","etag":"AA==","includedPermissions":["autoscaling.sites.writeState"],"name":"roles/autoscaling.stateWriter","stage":"BETA","title":"Autoscaling State Writer","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Enable Access Transparency for Organization","etag":"AA==","includedPermissions":["axt.labels.get","axt.labels.set","resourcemanager.organizations.get","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/axt.admin","stage":"GA","title":"Access Transparency Admin","asset_type":"iam.googleapis.com/ExportedIAMRole"}
-{"description":"Full control of Backup and DR resources including ACL configuration via the management console.","etag":"AA==","includedPermissions":["backupdr.locations.get","backupdr.locations.list","backupdr.managementServers.backupAccess","backupdr.managementServers.create","backupdr.managementServers.delete","backupdr.managementServers.get","backupdr.managementServers.getIamPolicy","backupdr.managementServers.list","backupdr.managementServers.manageInternalACL","backupdr.managementServers.setIamPolicy","backupdr.operations.cancel","backupdr.operations.delete","backupdr.operations.get","backupdr.operations.list","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/backupdr.admin","stage":"ALPHA","title":"Backup and DR Admin","asset_type":"iam.googleapis.com/ExportedIAMRole"}
+{"description":"Full control of Backup and DR resources including ACL configuration via the management console.","etag":"AA==","includedPermissions":["backupdr.locations.get","backupdr.locations.list","backupdr.managementServers.backupAccess","backupdr.managementServers.create","backupdr.managementServers.delete","backupdr.managementServers.get","backupdr.managementServers.getIamPolicy","backupdr.managementServers.list","backupdr.managementServers.manageInternalACL","backupdr.managementServers.setIamPolicy","backupdr.operations.cancel","backupdr.operations.delete","backupdr.operations.get","backupdr.operations.list","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/backupdr.admin","stage":"GA","title":"Backup and DR Admin","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Provides access to management console. Granular Backup and DR permissions depend on ACL configuration provided by Backup and DR admin within the management console.","etag":"AA==","includedPermissions":["backupdr.managementServers.backupAccess","backupdr.managementServers.get","backupdr.managementServers.getIamPolicy","backupdr.managementServers.list","backupdr.operations.get","backupdr.operations.list","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/backupdr.user","stage":"GA","title":"Backup and DR User","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Read-only access to Backup and DR resources.","etag":"AA==","includedPermissions":["backupdr.locations.get","backupdr.locations.list","backupdr.managementServers.get","backupdr.managementServers.getIamPolicy","backupdr.managementServers.list","backupdr.operations.get","backupdr.operations.list","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/backupdr.viewer","stage":"GA","title":"Backup and DR Viewer","asset_type":"iam.googleapis.com/ExportedIAMRole"}
 {"description":"Administrator of Bare Metal Solution resources","etag":"AA==","includedPermissions":["baremetalsolution.instancequotas.list","baremetalsolution.instances.attachVolume","baremetalsolution.instances.create","baremetalsolution.instances.detachVolume","baremetalsolution.instances.get","baremetalsolution.instances.list","baremetalsolution.instances.reset","baremetalsolution.instances.start","baremetalsolution.instances.update","baremetalsolution.luns.create","baremetalsolution.luns.delete","baremetalsolution.luns.get","baremetalsolution.luns.list","baremetalsolution.luns.update","baremetalsolution.networkquotas.list","baremetalsolution.networks.get","baremetalsolution.networks.list","baremetalsolution.networks.update","baremetalsolution.nfsshares.get","baremetalsolution.nfsshares.list","baremetalsolution.nfsshares.update","baremetalsolution.snapshotschedulepolicies.create","baremetalsolution.snapshotschedulepolicies.delete","baremetalsolution.snapshotschedulepolicies.get","baremetalsolution.snapshotschedulepolicies.list","baremetalsolution.snapshotschedulepolicies.update","baremetalsolution.volumequotas.list","baremetalsolution.volumes.create","baremetalsolution.volumes.delete","baremetalsolution.volumes.get","baremetalsolution.volumes.list","baremetalsolution.volumes.resize","baremetalsolution.volumes.update","baremetalsolution.volumesnapshots.create","baremetalsolution.volumesnapshots.delete","baremetalsolution.volumesnapshots.get","baremetalsolution.volumesnapshots.list","baremetalsolution.volumesnapshots.restore","resourcemanager.projects.get","resourcemanager.projects.list"],"name":"roles/baremetalsolution.admin","stage":"GA","title":"Bare Metal Solution Admin","asset_type":"iam.googleapis.com/ExportedIAMRole"}
diff --git a/roles/artifactregistry.serviceAgent b/roles/artifactregistry.serviceAgent
index 88c06774..9ae9e59a 100644
--- a/roles/artifactregistry.serviceAgent
+++ b/roles/artifactregistry.serviceAgent
@@ -3,6 +3,7 @@
   "etag": "AA==",
   "includedPermissions": [
     "artifactregistry.repositories.downloadArtifacts",
+    "artifactregistry.versions.delete",
     "pubsub.topics.publish"
   ],
   "name": "roles/artifactregistry.serviceAgent",
diff --git a/roles/backupdr.admin b/roles/backupdr.admin
index 66abfe73..129545d1 100644
--- a/roles/backupdr.admin
+++ b/roles/backupdr.admin
@@ -20,6 +20,6 @@
     "resourcemanager.projects.list"
   ],
   "name": "roles/backupdr.admin",
-  "stage": "ALPHA",
+  "stage": "GA",
   "title": "Backup and DR Admin"
 }