diff --git a/go.mod b/go.mod
index 7e4a8ff2d1..5038f64d63 100644
--- a/go.mod
+++ b/go.mod
@@ -3,37 +3,37 @@ module github.com/coreos/coreos-assembler
 go 1.24.0
 
 require (
-	github.com/Azure/azure-sdk-for-go/sdk/azcore v1.20.0
+	github.com/Azure/azure-sdk-for-go/sdk/azcore v1.21.0
 	github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.13.1
 	github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/compute/armcompute v1.0.0
 	github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/network/armnetwork v1.1.0
 	github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armresources v1.2.0
 	github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage v1.8.1
-	github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.3
+	github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.4
 	github.com/IBM-Cloud/bluemix-go v0.0.0-20250324085928-caa6511f0c13
-	github.com/IBM/ibm-cos-sdk-go v1.12.4
+	github.com/IBM/ibm-cos-sdk-go v1.13.0
 	github.com/aliyun/alibaba-cloud-sdk-go v1.63.107
 	github.com/aliyun/aliyun-oss-go-sdk v3.0.2+incompatible
-	github.com/aws/aws-sdk-go-v2 v1.41.0
-	github.com/aws/aws-sdk-go-v2/config v1.32.5
-	github.com/aws/aws-sdk-go-v2/credentials v1.19.5
-	github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.16
-	github.com/aws/aws-sdk-go-v2/service/ec2 v1.277.0
-	github.com/aws/aws-sdk-go-v2/service/iam v1.53.1
-	github.com/aws/aws-sdk-go-v2/service/s3 v1.94.0
-	github.com/aws/aws-sdk-go-v2/service/sts v1.41.5
+	github.com/aws/aws-sdk-go-v2 v1.41.1
+	github.com/aws/aws-sdk-go-v2/config v1.32.7
+	github.com/aws/aws-sdk-go-v2/credentials v1.19.7
+	github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.19
+	github.com/aws/aws-sdk-go-v2/service/ec2 v1.279.2
+	github.com/aws/aws-sdk-go-v2/service/iam v1.53.2
+	github.com/aws/aws-sdk-go-v2/service/s3 v1.95.1
+	github.com/aws/aws-sdk-go-v2/service/sts v1.41.6
 	github.com/aws/smithy-go v1.24.0
-	github.com/coreos/butane v0.25.1
+	github.com/coreos/butane v0.26.0
 	github.com/coreos/go-semver v0.3.1
 	github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e
 	github.com/coreos/go-systemd/v22 v22.6.0
-	github.com/coreos/ignition/v2 v2.25.0
+	github.com/coreos/ignition/v2 v2.25.1
 	github.com/coreos/pkg v0.0.0-20240122114842-bbd7aa9bf6fb
 	github.com/coreos/rpmostree-client-go v0.0.0-20240514234259-72a33e8554b6
 	github.com/coreos/stream-metadata-go v0.4.10
 	github.com/coreos/vcontext v0.0.0-20231102161604-685dc7299dc5
 	github.com/digitalocean/go-qemu v0.0.0-20250212194115-ee9b0668d242
-	github.com/digitalocean/godo v1.170.0
+	github.com/digitalocean/godo v1.172.0
 	github.com/frostschutz/go-fibmap v0.0.0-20160825162329-b32c231bfe6a
 	github.com/google/uuid v1.6.0
 	github.com/gophercloud/gophercloud v1.14.1
@@ -43,41 +43,41 @@ require (
 	github.com/pborman/uuid v1.2.1
 	github.com/pin/tftp v2.1.0+incompatible
 	github.com/pkg/errors v0.9.1
-	github.com/sirupsen/logrus v1.9.3
+	github.com/sirupsen/logrus v1.9.4
 	github.com/spf13/cobra v1.10.2
 	github.com/vincent-petithory/dataurl v1.0.0
 	github.com/vishvananda/netlink v1.3.1
 	github.com/vishvananda/netns v0.0.5
 	github.com/vmware/govmomi v0.52.0
 	github.com/xeipuuv/gojsonschema v1.2.0
-	golang.org/x/crypto v0.46.0
+	golang.org/x/crypto v0.47.0
 	golang.org/x/oauth2 v0.34.0
-	golang.org/x/term v0.38.0
-	google.golang.org/api v0.257.0
+	golang.org/x/term v0.39.0
+	google.golang.org/api v0.260.0
 	gopkg.in/yaml.v2 v2.4.0
 	gopkg.in/yaml.v3 v3.0.1
 )
 
 require (
-	cloud.google.com/go/auth v0.17.0 // indirect
+	cloud.google.com/go/auth v0.18.0 // indirect
 	cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect
 	cloud.google.com/go/compute/metadata v0.9.0 // indirect
 	github.com/Azure/azure-sdk-for-go/sdk/internal v1.11.2 // indirect
 	github.com/AzureAD/microsoft-authentication-library-for-go v1.6.0 // indirect
 	github.com/IBM/go-sdk-core/v5 v5.21.2 // indirect
 	github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.4 // indirect
-	github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.16 // indirect
-	github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.16 // indirect
-	github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.16 // indirect
+	github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17 // indirect
 	github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4 // indirect
-	github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.16 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.17 // indirect
 	github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4 // indirect
-	github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.7 // indirect
-	github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.16 // indirect
-	github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.16 // indirect
-	github.com/aws/aws-sdk-go-v2/service/signin v1.0.4 // indirect
-	github.com/aws/aws-sdk-go-v2/service/sso v1.30.7 // indirect
-	github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.12 // indirect
+	github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.8 // indirect
+	github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.17 // indirect
+	github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.17 // indirect
+	github.com/aws/aws-sdk-go-v2/service/signin v1.0.5 // indirect
+	github.com/aws/aws-sdk-go-v2/service/sso v1.30.9 // indirect
+	github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.13 // indirect
 	github.com/clarketm/json v1.17.1 // indirect
 	github.com/containers/image/v5 v5.34.2 // indirect
 	github.com/containers/storage v1.57.2 // indirect
@@ -98,8 +98,8 @@ require (
 	github.com/golang-jwt/jwt/v5 v5.3.0 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
 	github.com/google/s2a-go v0.1.9 // indirect
-	github.com/googleapis/enterprise-certificate-proxy v0.3.7 // indirect
-	github.com/googleapis/gax-go/v2 v2.15.0 // indirect
+	github.com/googleapis/enterprise-certificate-proxy v0.3.9 // indirect
+	github.com/googleapis/gax-go/v2 v2.16.0 // indirect
 	github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
 	github.com/hashicorp/go-retryablehttp v0.7.8 // indirect
 	github.com/hashicorp/go-uuid v1.0.3 // indirect
@@ -126,13 +126,13 @@ require (
 	go.opentelemetry.io/otel/metric v1.38.0 // indirect
 	go.opentelemetry.io/otel/trace v1.38.0 // indirect
 	go.yaml.in/yaml/v2 v2.4.3 // indirect
-	golang.org/x/net v0.47.0 // indirect
-	golang.org/x/sys v0.39.0 // indirect
-	golang.org/x/text v0.32.0 // indirect
+	golang.org/x/net v0.49.0 // indirect
+	golang.org/x/sys v0.40.0 // indirect
+	golang.org/x/text v0.33.0 // indirect
 	golang.org/x/time v0.14.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20251124214823-79d6a2a48846 // indirect
-	google.golang.org/grpc v1.77.0 // indirect
-	google.golang.org/protobuf v1.36.10 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b // indirect
+	google.golang.org/grpc v1.78.0 // indirect
+	google.golang.org/protobuf v1.36.11 // indirect
 	gopkg.in/ini.v1 v1.67.0 // indirect
 	sigs.k8s.io/yaml v1.6.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 24a8fc2b01..dd012ca26b 100644
--- a/go.sum
+++ b/go.sum
@@ -1,12 +1,12 @@
-cloud.google.com/go/auth v0.17.0 h1:74yCm7hCj2rUyyAocqnFzsAYXgJhrG26XCFimrc/Kz4=
-cloud.google.com/go/auth v0.17.0/go.mod h1:6wv/t5/6rOPAX4fJiRjKkJCvswLwdet7G8+UGXt7nCQ=
+cloud.google.com/go/auth v0.18.0 h1:wnqy5hrv7p3k7cShwAU/Br3nzod7fxoqG+k0VZ+/Pk0=
+cloud.google.com/go/auth v0.18.0/go.mod h1:wwkPM1AgE1f2u6dG443MiWoD8C3BtOywNsUMcUTVDRo=
 cloud.google.com/go/auth/oauth2adapt v0.2.8 h1:keo8NaayQZ6wimpNSmW5OPc283g65QNIiLpZnkHRbnc=
 cloud.google.com/go/auth/oauth2adapt v0.2.8/go.mod h1:XQ9y31RkqZCcwJWNSx2Xvric3RrU88hAYYbjDWYDL+c=
 cloud.google.com/go/compute/metadata v0.9.0 h1:pDUj4QMoPejqq20dK0Pg2N4yG9zIkYGdBtwLoEkH9Zs=
 cloud.google.com/go/compute/metadata v0.9.0/go.mod h1:E0bWwX5wTnLPedCKqk3pJmVgCBSM6qQI1yTBdEb3C10=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/azure-sdk-for-go/sdk/azcore v1.20.0 h1:JXg2dwJUmPB9JmtVmdEB16APJ7jurfbY5jnfXpJoRMc=
-github.com/Azure/azure-sdk-for-go/sdk/azcore v1.20.0/go.mod h1:YD5h/ldMsG0XiIw7PdyNhLxaM317eFh5yNLccNfGdyw=
+github.com/Azure/azure-sdk-for-go/sdk/azcore v1.21.0 h1:fou+2+WFTib47nS+nz/ozhEBnvU96bKHy6LjRsY4E28=
+github.com/Azure/azure-sdk-for-go/sdk/azcore v1.21.0/go.mod h1:t76Ruy8AHvUAC8GfMWJMa0ElSbuIcO03NLpynfbgsPA=
 github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.13.1 h1:Hk5QBxZQC1jb2Fwj6mpzme37xbCDdNTxU7O9eb5+LB4=
 github.com/Azure/azure-sdk-for-go/sdk/azidentity v1.13.1/go.mod h1:IYus9qsFobWIc2YVwe/WPjcnyCkPKtnHAqUYeebc8z0=
 github.com/Azure/azure-sdk-for-go/sdk/azidentity/cache v0.3.2 h1:yz1bePFlP5Vws5+8ez6T3HWXPmwOK7Yvq8QxDBD3SKY=
@@ -29,8 +29,8 @@ github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armresources v1.
 github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armresources v1.2.0/go.mod h1:5kakwfW5CjC9KK+Q4wjXAg+ShuIm2mBMua0ZFj2C8PE=
 github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage v1.8.1 h1:/Zt+cDPnpC3OVDm/JKLOs7M2DKmLRIIp3XIx9pHHiig=
 github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage v1.8.1/go.mod h1:Ng3urmn6dYe8gnbCMoHHVl5APYz2txho3koEkV2o2HA=
-github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.3 h1:ZJJNFaQ86GVKQ9ehwqyAFE6pIfyicpuJ8IkVaPBc6/4=
-github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.3/go.mod h1:URuDvhmATVKqHBH9/0nOiNKk0+YcwfQ3WkK5PqHKxc8=
+github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.4 h1:jWQK1GI+LeGGUKBADtcH2rRqPxYB1Ljwms5gFA2LqrM=
+github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.4/go.mod h1:8mwH4klAm9DUgR2EEHyEEAQlRDvLPyg5fQry3y+cDew=
 github.com/AzureAD/microsoft-authentication-extensions-for-go/cache v0.1.1 h1:WJTmL004Abzc5wDB5VtZG2PJk5ndYDgVacGqfirKxjM=
 github.com/AzureAD/microsoft-authentication-extensions-for-go/cache v0.1.1/go.mod h1:tCcJZ0uHAmvjsVYzEFivsRTN00oz5BEsRgQHu5JZ9WE=
 github.com/AzureAD/microsoft-authentication-library-for-go v1.6.0 h1:XRzhVemXdgvJqCH0sFfrBUTnUJSBrBf7++ypk+twtRs=
@@ -41,56 +41,56 @@ github.com/IBM-Cloud/bluemix-go v0.0.0-20250324085928-caa6511f0c13 h1:oBtZEpmwue
 github.com/IBM-Cloud/bluemix-go v0.0.0-20250324085928-caa6511f0c13/go.mod h1:/7hMjdZA6fEpd/dQAOEABxKEwN0t72P3PlpEDu0Y7bE=
 github.com/IBM/go-sdk-core/v5 v5.21.2 h1:mJ5QbLPOm4g5qhZiVB6wbSllfpeUExftGoyPek2hk4M=
 github.com/IBM/go-sdk-core/v5 v5.21.2/go.mod h1:ngpMgwkjur1VNUjqn11LPk3o5eCyOCRbcfg/0YAY7Hc=
-github.com/IBM/ibm-cos-sdk-go v1.12.4 h1:XUxGUQoqNH6Cpa/eSItbRhVRdmDIsd9jCTMeTVh1siE=
-github.com/IBM/ibm-cos-sdk-go v1.12.4/go.mod h1:s4abN0Kllr83a/aI5KEjNY6fZCQK4apt2w4QjVD0PU0=
+github.com/IBM/ibm-cos-sdk-go v1.13.0 h1:bN1e3ayGzBbgEhd57uOq1xqtbQJHZwJReg4AoAa5/ks=
+github.com/IBM/ibm-cos-sdk-go v1.13.0/go.mod h1:y6vy1Vie63M+PKaKM339Zifbo7MZ+pukm03ql95tSDw=
 github.com/ajstarks/svgo v0.0.0-20180226025133-644b8db467af/go.mod h1:K08gAheRH3/J6wwsYMMT4xOr94bZjxIelGM0+d/wbFw=
 github.com/aliyun/alibaba-cloud-sdk-go v1.63.107 h1:qagvUyrgOnBIlVRQWOyCZGVKUIYbMBdGdJ104vBpRFU=
 github.com/aliyun/alibaba-cloud-sdk-go v1.63.107/go.mod h1:SOSDHfe1kX91v3W5QiBsWSLqeLxImobbMX1mxrFHsVQ=
 github.com/aliyun/aliyun-oss-go-sdk v3.0.2+incompatible h1:8psS8a+wKfiLt1iVDX79F7Y6wUM49Lcha2FMXt4UM8g=
 github.com/aliyun/aliyun-oss-go-sdk v3.0.2+incompatible/go.mod h1:T/Aws4fEfogEE9v+HPhhw+CntffsBHJ8nXQCwKr0/g8=
 github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
-github.com/aws/aws-sdk-go-v2 v1.41.0 h1:tNvqh1s+v0vFYdA1xq0aOJH+Y5cRyZ5upu6roPgPKd4=
-github.com/aws/aws-sdk-go-v2 v1.41.0/go.mod h1:MayyLB8y+buD9hZqkCW3kX1AKq07Y5pXxtgB+rRFhz0=
+github.com/aws/aws-sdk-go-v2 v1.41.1 h1:ABlyEARCDLN034NhxlRUSZr4l71mh+T5KAeGh6cerhU=
+github.com/aws/aws-sdk-go-v2 v1.41.1/go.mod h1:MayyLB8y+buD9hZqkCW3kX1AKq07Y5pXxtgB+rRFhz0=
 github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.4 h1:489krEF9xIGkOaaX3CE/Be2uWjiXrkCH6gUX+bZA/BU=
 github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream v1.7.4/go.mod h1:IOAPF6oT9KCsceNTvvYMNHy0+kMF8akOjeDvPENWxp4=
-github.com/aws/aws-sdk-go-v2/config v1.32.5 h1:pz3duhAfUgnxbtVhIK39PGF/AHYyrzGEyRD9Og0QrE8=
-github.com/aws/aws-sdk-go-v2/config v1.32.5/go.mod h1:xmDjzSUs/d0BB7ClzYPAZMmgQdrodNjPPhd6bGASwoE=
-github.com/aws/aws-sdk-go-v2/credentials v1.19.5 h1:xMo63RlqP3ZZydpJDMBsH9uJ10hgHYfQFIk1cHDXrR4=
-github.com/aws/aws-sdk-go-v2/credentials v1.19.5/go.mod h1:hhbH6oRcou+LpXfA/0vPElh/e0M3aFeOblE1sssAAEk=
-github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.16 h1:80+uETIWS1BqjnN9uJ0dBUaETh+P1XwFy5vwHwK5r9k=
-github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.16/go.mod h1:wOOsYuxYuB/7FlnVtzeBYRcjSRtQpAW0hCP7tIULMwo=
-github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.16 h1:NkjoiJoSpZqzsRcpM6rlk5AOCLro8JkK8UqekAm/hxM=
-github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.16/go.mod h1:l2736DvrgbOinD65Ksh8fc/WQHBBlvsd+0/ZaxtsmGY=
-github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.16 h1:rgGwPzb82iBYSvHMHXc8h9mRoOUBZIGFgKb9qniaZZc=
-github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.16/go.mod h1:L/UxsGeKpGoIj6DxfhOWHWQ/kGKcd4I1VncE4++IyKA=
-github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.16 h1:1jtGzuV7c82xnqOVfx2F0xmJcOw5374L7N6juGW6x6U=
-github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.16/go.mod h1:M2E5OQf+XLe+SZGmmpaI2yy+J326aFf6/+54PoxSANc=
+github.com/aws/aws-sdk-go-v2/config v1.32.7 h1:vxUyWGUwmkQ2g19n7JY/9YL8MfAIl7bTesIUykECXmY=
+github.com/aws/aws-sdk-go-v2/config v1.32.7/go.mod h1:2/Qm5vKUU/r7Y+zUk/Ptt2MDAEKAfUtKc1+3U1Mo3oY=
+github.com/aws/aws-sdk-go-v2/credentials v1.19.7 h1:tHK47VqqtJxOymRrNtUXN5SP/zUTvZKeLx4tH6PGQc8=
+github.com/aws/aws-sdk-go-v2/credentials v1.19.7/go.mod h1:qOZk8sPDrxhf+4Wf4oT2urYJrYt3RejHSzgAquYeppw=
+github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17 h1:I0GyV8wiYrP8XpA70g1HBcQO1JlQxCMTW9npl5UbDHY=
+github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17/go.mod h1:tyw7BOl5bBe/oqvoIeECFJjMdzXoa/dfVz3QQ5lgHGA=
+github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.19 h1:Gxj3kAlmM+a/VVO4YNsmgHGVUZhSxs0tuVwLIxZBCtM=
+github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.19/go.mod h1:XGq5kImVqQT4HUNbbG+0Y8O74URsPNH7CGPg1s1HW5E=
+github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17 h1:xOLELNKGp2vsiteLsvLPwxC+mYmO6OZ8PYgiuPJzF8U=
+github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17/go.mod h1:5M5CI3D12dNOtH3/mk6minaRwI2/37ifCURZISxA/IQ=
+github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17 h1:WWLqlh79iO48yLkj1v3ISRNiv+3KdQoZ6JWyfcsyQik=
+github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17/go.mod h1:EhG22vHRrvF8oXSTYStZhJc1aUgKtnJe+aOiFEV90cM=
 github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4 h1:WKuaxf++XKWlHWu9ECbMlha8WOEGm0OUEZqm4K/Gcfk=
 github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4/go.mod h1:ZWy7j6v1vWGmPReu0iSGvRiise4YI5SkR3OHKTZ6Wuc=
-github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.16 h1:CjMzUs78RDDv4ROu3JnJn/Ig1r6ZD7/T2DXLLRpejic=
-github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.16/go.mod h1:uVW4OLBqbJXSHJYA9svT9BluSvvwbzLQ2Crf6UPzR3c=
-github.com/aws/aws-sdk-go-v2/service/ec2 v1.277.0 h1:RHJSkRXDGkAKrV4CTEsZsZkOmSpxXKO4aKx4rXd94K4=
-github.com/aws/aws-sdk-go-v2/service/ec2 v1.277.0/go.mod h1:Wg68QRgy2gEGGdmTPU/UbVpdv8sM14bUZmF64KFwAsY=
-github.com/aws/aws-sdk-go-v2/service/iam v1.53.1 h1:xNCUk9XN6Pa9PyzbEfzgRpvEIVlqtth402yjaWvNMu4=
-github.com/aws/aws-sdk-go-v2/service/iam v1.53.1/go.mod h1:GNQZL4JRSGH6L0/SNGOtffaB1vmlToYp3KtcUIB0NhI=
+github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.17 h1:JqcdRG//czea7Ppjb+g/n4o8i/R50aTBHkA7vu0lK+k=
+github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.17/go.mod h1:CO+WeGmIdj/MlPel2KwID9Gt7CNq4M65HUfBW97liM0=
+github.com/aws/aws-sdk-go-v2/service/ec2 v1.279.2 h1:MG12Z/W1zzJLkw2gCU2gKZ872rqLM0pi9LdkZ/z3FHc=
+github.com/aws/aws-sdk-go-v2/service/ec2 v1.279.2/go.mod h1:Uy+C+Sc58jozdoL1McQr8bDsEvNFx+/nBY+vpO1HVUY=
+github.com/aws/aws-sdk-go-v2/service/iam v1.53.2 h1:62G6btFUwAa5uR5iPlnlNVAM0zJSLbWgDfKOfUC7oW4=
+github.com/aws/aws-sdk-go-v2/service/iam v1.53.2/go.mod h1:av9clChrbZbJ5E21msSsiT2oghl2BJHfQGhCkXmhyu8=
 github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4 h1:0ryTNEdJbzUCEWkVXEXoqlXV72J5keC1GvILMOuD00E=
 github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4/go.mod h1:HQ4qwNZh32C3CBeO6iJLQlgtMzqeG17ziAA/3KDJFow=
-github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.7 h1:DIBqIrJ7hv+e4CmIk2z3pyKT+3B6qVMgRsawHiR3qso=
-github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.7/go.mod h1:vLm00xmBke75UmpNvOcZQ/Q30ZFjbczeLFqGx5urmGo=
-github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.16 h1:oHjJHeUy0ImIV0bsrX0X91GkV5nJAyv1l1CC9lnO0TI=
-github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.16/go.mod h1:iRSNGgOYmiYwSCXxXaKb9HfOEj40+oTKn8pTxMlYkRM=
-github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.16 h1:NSbvS17MlI2lurYgXnCOLvCFX38sBW4eiVER7+kkgsU=
-github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.16/go.mod h1:SwT8Tmqd4sA6G1qaGdzWCJN99bUmPGHfRwwq3G5Qb+A=
-github.com/aws/aws-sdk-go-v2/service/s3 v1.94.0 h1:SWTxh/EcUCDVqi/0s26V6pVUq0BBG7kx0tDTmF/hCgA=
-github.com/aws/aws-sdk-go-v2/service/s3 v1.94.0/go.mod h1:79S2BdqCJpScXZA2y+cpZuocWsjGjJINyXnOsf5DTz8=
-github.com/aws/aws-sdk-go-v2/service/signin v1.0.4 h1:HpI7aMmJ+mm1wkSHIA2t5EaFFv5EFYXePW30p1EIrbQ=
-github.com/aws/aws-sdk-go-v2/service/signin v1.0.4/go.mod h1:C5RdGMYGlfM0gYq/tifqgn4EbyX99V15P2V3R+VHbQU=
-github.com/aws/aws-sdk-go-v2/service/sso v1.30.7 h1:eYnlt6QxnFINKzwxP5/Ucs1vkG7VT3Iezmvfgc2waUw=
-github.com/aws/aws-sdk-go-v2/service/sso v1.30.7/go.mod h1:+fWt2UHSb4kS7Pu8y+BMBvJF0EWx+4H0hzNwtDNRTrg=
-github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.12 h1:AHDr0DaHIAo8c9t1emrzAlVDFp+iMMKnPdYy6XO4MCE=
-github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.12/go.mod h1:GQ73XawFFiWxyWXMHWfhiomvP3tXtdNar/fi8z18sx0=
-github.com/aws/aws-sdk-go-v2/service/sts v1.41.5 h1:SciGFVNZ4mHdm7gpD1dgZYnCuVdX1s+lFTg4+4DOy70=
-github.com/aws/aws-sdk-go-v2/service/sts v1.41.5/go.mod h1:iW40X4QBmUxdP+fZNOpfmkdMZqsovezbAeO+Ubiv2pk=
+github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.8 h1:Z5EiPIzXKewUQK0QTMkutjiaPVeVYXX7KIqhXu/0fXs=
+github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.8/go.mod h1:FsTpJtvC4U1fyDXk7c71XoDv3HlRm8V3NiYLeYLh5YE=
+github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.17 h1:RuNSMoozM8oXlgLG/n6WLaFGoea7/CddrCfIiSA+xdY=
+github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.17/go.mod h1:F2xxQ9TZz5gDWsclCtPQscGpP0VUOc8RqgFM3vDENmU=
+github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.17 h1:bGeHBsGZx0Dvu/eJC0Lh9adJa3M1xREcndxLNZlve2U=
+github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.17/go.mod h1:dcW24lbU0CzHusTE8LLHhRLI42ejmINN8Lcr22bwh/g=
+github.com/aws/aws-sdk-go-v2/service/s3 v1.95.1 h1:C2dUPSnEpy4voWFIq3JNd8gN0Y5vYGDo44eUE58a/p8=
+github.com/aws/aws-sdk-go-v2/service/s3 v1.95.1/go.mod h1:5jggDlZ2CLQhwJBiZJb4vfk4f0GxWdEDruWKEJ1xOdo=
+github.com/aws/aws-sdk-go-v2/service/signin v1.0.5 h1:VrhDvQib/i0lxvr3zqlUwLwJP4fpmpyD9wYG1vfSu+Y=
+github.com/aws/aws-sdk-go-v2/service/signin v1.0.5/go.mod h1:k029+U8SY30/3/ras4G/Fnv/b88N4mAfliNn08Dem4M=
+github.com/aws/aws-sdk-go-v2/service/sso v1.30.9 h1:v6EiMvhEYBoHABfbGB4alOYmCIrcgyPPiBE1wZAEbqk=
+github.com/aws/aws-sdk-go-v2/service/sso v1.30.9/go.mod h1:yifAsgBxgJWn3ggx70A3urX2AN49Y5sJTD1UQFlfqBw=
+github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.13 h1:gd84Omyu9JLriJVCbGApcLzVR3XtmC4ZDPcAI6Ftvds=
+github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.13/go.mod h1:sTGThjphYE4Ohw8vJiRStAcu3rbjtXRsdNB0TvZ5wwo=
+github.com/aws/aws-sdk-go-v2/service/sts v1.41.6 h1:5fFjR/ToSOzB2OQ/XqWpZBmNvmP/pJ1jOWYlFDJTjRQ=
+github.com/aws/aws-sdk-go-v2/service/sts v1.41.6/go.mod h1:qgFDZQSD/Kys7nJnVqYlWKnh0SSdMjAi0uSwON4wgYQ=
 github.com/aws/smithy-go v1.24.0 h1:LpilSUItNPFr1eY85RYgTIg5eIEPtvFbskaFcmmIUnk=
 github.com/aws/smithy-go v1.24.0/go.mod h1:LEj2LM3rBRQJxPZTB4KuzZkaZYnZPnvgIhb4pu07mx0=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
@@ -102,8 +102,8 @@ github.com/containers/image/v5 v5.34.2 h1:3r1etun4uJYq5197tcymUcI1h6+zyzKS9PtRtB
 github.com/containers/image/v5 v5.34.2/go.mod h1:MG++slvQSZVq5ejAcLdu4APGsKGMb0YHHnAo7X28fdE=
 github.com/containers/storage v1.57.2 h1:2roCtTyE9pzIaBDHibK72DTnYkPmwWaq5uXxZdaWK4U=
 github.com/containers/storage v1.57.2/go.mod h1:i/Hb4lu7YgFr9G0K6BMjqW0BLJO1sFsnWQwj2UoWCUM=
-github.com/coreos/butane v0.25.1 h1:Nm2WDRD7h3f6GUpazGlge1o417Z+eIC9bQlkpgVdNms=
-github.com/coreos/butane v0.25.1/go.mod h1:N5JMWID5tmPsfsp3SR9w9xQk32rru8RDHSTerQiq8vI=
+github.com/coreos/butane v0.26.0 h1:Cqrz5Ud0eLZUQFHVc67A8l+rJ9N4UoWXW4cjqVrMsfQ=
+github.com/coreos/butane v0.26.0/go.mod h1:syp2EmtkDFDFzANxWogkSvMgcW/6taTbdvqyd8V/dgM=
 github.com/coreos/go-json v0.0.0-20231102161613-e49c8866685a h1:QimUZQ6Au5wFKKkPMmdoXen+CNR66lXt/76AQLBltS0=
 github.com/coreos/go-json v0.0.0-20231102161613-e49c8866685a/go.mod h1:rcFZM3uxVvdyNmsAV2jopgPD1cs5SPWJWU5dOz2LUnw=
 github.com/coreos/go-semver v0.3.1 h1:yi21YpKnrx1gt5R+la8n5WgS0kCrsPp33dmEyHReZr4=
@@ -112,8 +112,8 @@ github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd/v22 v22.6.0 h1:aGVa/v8B7hpb0TKl0MWoAavPDmHvobFe5R5zn0bCJWo=
 github.com/coreos/go-systemd/v22 v22.6.0/go.mod h1:iG+pp635Fo7ZmV/j14KUcmEyWF+0X7Lua8rrTWzYgWU=
-github.com/coreos/ignition/v2 v2.25.0 h1:4TboIy9z2ofMZmIv5ypyXCFTeKjPNwE5mQNpgkJLdMM=
-github.com/coreos/ignition/v2 v2.25.0/go.mod h1:L8tzd8rDzGMKtEvJ22Rk41jW5chE50sDK5Rn/8C1JsE=
+github.com/coreos/ignition/v2 v2.25.1 h1:mrXOVwb4ZPlLG1tIki5em604Yiz5oRFlWkISrEYpHds=
+github.com/coreos/ignition/v2 v2.25.1/go.mod h1:Px9MZK4oLhMUM3QMzzRhKbHowc5Hkf+VUu67i0gmsNw=
 github.com/coreos/pkg v0.0.0-20240122114842-bbd7aa9bf6fb h1:GIzvVQ9UkUlOhSDlqmrQAAAUd6R3E+caIisNEyWXvNE=
 github.com/coreos/pkg v0.0.0-20240122114842-bbd7aa9bf6fb/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/coreos/rpmostree-client-go v0.0.0-20240514234259-72a33e8554b6 h1:0pX2AoeeKHmH5QOQ4PiWxVgBXFp05abmu4hJfLwm0FE=
@@ -132,8 +132,8 @@ github.com/digitalocean/go-libvirt v0.0.0-20250317183548-13bf9b43b50b h1:LqD7kE8
 github.com/digitalocean/go-libvirt v0.0.0-20250317183548-13bf9b43b50b/go.mod h1:s7Tz3AmcoxYalhSQXZ2dzHanRebh35PeetRkYfhda3c=
 github.com/digitalocean/go-qemu v0.0.0-20250212194115-ee9b0668d242 h1:rh6rt8pF5U4iyQ86h6lRDenJoX4ht2wFnZXB9ogIrIM=
 github.com/digitalocean/go-qemu v0.0.0-20250212194115-ee9b0668d242/go.mod h1:LGHUtlhsY4vRGM6AHejEQKVI5e3eHbSylMHwTSpQtVw=
-github.com/digitalocean/godo v1.170.0 h1:T/hAGb6qK//y+XJ1K/BcsRzGBlI9iEdiFoGFlZ1DVhQ=
-github.com/digitalocean/godo v1.170.0/go.mod h1:xQsWpVCCbkDrWisHA72hPzPlnC+4W5w/McZY5ij9uvU=
+github.com/digitalocean/godo v1.172.0 h1:7AYPfmCUlScyoQJF+3rVw17HR3V1+ogf2qmf2SND/DI=
+github.com/digitalocean/godo v1.172.0/go.mod h1:xQsWpVCCbkDrWisHA72hPzPlnC+4W5w/McZY5ij9uvU=
 github.com/fatih/color v1.16.0 h1:zmkK9Ngbjj+K0yRhTVONQh1p/HknKYSlNT+vZCzyokM=
 github.com/fatih/color v1.16.0/go.mod h1:fL2Sau1YI5c0pdGEVCbKQbLXB6edEj1ZgiY4NijnWvE=
 github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg=
@@ -217,10 +217,10 @@ github.com/google/uuid v1.0.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+
 github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/enterprise-certificate-proxy v0.3.7 h1:zrn2Ee/nWmHulBx5sAVrGgAa0f2/R35S4DJwfFaUPFQ=
-github.com/googleapis/enterprise-certificate-proxy v0.3.7/go.mod h1:MkHOF77EYAE7qfSuSS9PU6g4Nt4e11cnsDUowfwewLA=
-github.com/googleapis/gax-go/v2 v2.15.0 h1:SyjDc1mGgZU5LncH8gimWo9lW1DtIfPibOG81vgd/bo=
-github.com/googleapis/gax-go/v2 v2.15.0/go.mod h1:zVVkkxAQHa1RQpg9z2AUCMnKhi0Qld9rcmyfL1OZhoc=
+github.com/googleapis/enterprise-certificate-proxy v0.3.9 h1:TOpi/QG8iDcZlkQlGlFUti/ZtyLkliXvHDcyUIMuFrU=
+github.com/googleapis/enterprise-certificate-proxy v0.3.9/go.mod h1:MkHOF77EYAE7qfSuSS9PU6g4Nt4e11cnsDUowfwewLA=
+github.com/googleapis/gax-go/v2 v2.16.0 h1:iHbQmKLLZrexmb0OSsNGTeSTS0HO4YvFOG8g5E4Zd0Y=
+github.com/googleapis/gax-go/v2 v2.16.0/go.mod h1:o1vfQjjNZn4+dPnRdl/4ZD7S9414Y4xA+a/6Icj6l14=
 github.com/gophercloud/gophercloud v1.3.0/go.mod h1:aAVqcocTSXh2vYFZ1JTvx4EQmfgzxRcNupUfxZbBNDM=
 github.com/gophercloud/gophercloud v1.14.1 h1:DTCNaTVGl8/cFu58O1JwWgis9gtISAFONqpMKNg/Vpw=
 github.com/gophercloud/gophercloud v1.14.1/go.mod h1:aAVqcocTSXh2vYFZ1JTvx4EQmfgzxRcNupUfxZbBNDM=
@@ -340,8 +340,8 @@ github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH
 github.com/rogpeppe/go-internal v1.14.1 h1:UQB4HGPB6osV0SQTLymcB4TgvyWu6ZyliaW0tI/otEQ=
 github.com/rogpeppe/go-internal v1.14.1/go.mod h1:MaRKkUm5W0goXpeCfT7UZI6fk/L7L7so1lCWt35ZSgc=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
-github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
+github.com/sirupsen/logrus v1.9.4 h1:TsZE7l11zFCLZnZ+teH4Umoq5BhEIfIzfRDZ1Uzql2w=
+github.com/sirupsen/logrus v1.9.4/go.mod h1:ftWc9WdOfJ0a92nsE2jF5u5ZwH8Bv2zdeOC42RjbV2g=
 github.com/spf13/cobra v1.10.2 h1:DMTTonx5m65Ic0GOoRY2c16WCbHxOOw6xxezuLaBpcU=
 github.com/spf13/cobra v1.10.2/go.mod h1:7C1pvHqHw5A4vrJfjNwvOdzYu0Gml16OCs2GRiTUUS4=
 github.com/spf13/pflag v1.0.9/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
@@ -421,8 +421,8 @@ golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98y
 golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
 golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
 golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
-golang.org/x/crypto v0.46.0 h1:cKRW/pmt1pKAfetfu+RCEvjvZkA9RimPbh7bhFjGVBU=
-golang.org/x/crypto v0.46.0/go.mod h1:Evb/oLKmMraqjZ2iQTwDwvCtJkczlDuTmdJXoZVzqU0=
+golang.org/x/crypto v0.47.0 h1:V6e3FRj+n4dbpw86FJ8Fv7XVOql7TEwpHapKoMJ/GO8=
+golang.org/x/crypto v0.47.0/go.mod h1:ff3Y9VzzKbwSSEzWqJsJVBnWmRwRSHt/6Op5n9bQc4A=
 golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190125153040-c74c464bbbf2/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -468,8 +468,8 @@ golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
 golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.19.0/go.mod h1:CfAk/cbD4CthTvqiEl8NpboMuiuOYsAr/7NOjZJtv1U=
-golang.org/x/net v0.47.0 h1:Mx+4dIFzqraBXUugkia1OOvlD6LemFo1ALMHjrXDOhY=
-golang.org/x/net v0.47.0/go.mod h1:/jNxtkgq5yWUGYkaZGqo27cfGZ1c5Nen03aYrrKpVRU=
+golang.org/x/net v0.49.0 h1:eeHFmOGUTtaaPSGNmjBKpbng9MulQsJURQUAfUwY++o=
+golang.org/x/net v0.49.0/go.mod h1:/ysNB2EvaqvesRkuLAyjI1ycPZlQHM3q01F02UY/MV8=
 golang.org/x/oauth2 v0.34.0 h1:hqK/t4AKgbqWkdkcAeI8XLmbK+4m4G5YeQRrmiotGlw=
 golang.org/x/oauth2 v0.34.0/go.mod h1:lzm5WQJQwKZ3nwavOZ3IS5Aulzxi68dUSgRHujetwEA=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -502,7 +502,6 @@ golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220319134239-a9b59b0215f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220422013727-9388b58f7150/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -517,8 +516,8 @@ golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.39.0 h1:CvCKL8MeisomCi6qNZ+wbb0DN9E5AATixKsvNtMoMFk=
-golang.org/x/sys v0.39.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
+golang.org/x/sys v0.40.0 h1:DBZZqJ2Rkml6QMQsZywtnjnnGvHza6BTfYFWY9kjEWQ=
+golang.org/x/sys v0.40.0/go.mod h1:OgkHotnGiDImocRcuBABYBEXf8A9a87e/uXjp9XT3ks=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
@@ -533,8 +532,8 @@ golang.org/x/term v0.11.0/go.mod h1:zC9APTIj3jG3FdV/Ons+XE1riIZXG4aZ4GTHiPZJPIU=
 golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
 golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
 golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
-golang.org/x/term v0.38.0 h1:PQ5pkm/rLO6HnxFR7N2lJHOZX6Kez5Y1gDSJla6jo7Q=
-golang.org/x/term v0.38.0/go.mod h1:bSEAKrOT1W+VSu9TSCMtoGEOUcKxOKgl3LE5QEF/xVg=
+golang.org/x/term v0.39.0 h1:RclSuaJf32jOqZz74CkPA9qFuVTX7vhLlpfj/IGWlqY=
+golang.org/x/term v0.39.0/go.mod h1:yxzUCTP/U+FzoxfdKmLaA0RV1WgE0VY7hXBwKtY/4ww=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
@@ -549,8 +548,8 @@ golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
-golang.org/x/text v0.32.0 h1:ZD01bjUt1FQ9WJ0ClOL5vxgxOI/sVCNgX1YtKwcY0mU=
-golang.org/x/text v0.32.0/go.mod h1:o/rUWzghvpD5TXrTIBuJU77MTaN0ljMWE47kxGJQ7jY=
+golang.org/x/text v0.33.0 h1:B3njUFyqtHDUI5jMn1YIr5B0IE2U0qck04r6d4KPAxE=
+golang.org/x/text v0.33.0/go.mod h1:LuMebE6+rBincTi9+xWTY8TztLzKHc/9C1uBCG27+q8=
 golang.org/x/time v0.14.0 h1:MRx4UaLrDotUKUdCIqzPC48t1Y9hANFKIRpNx+Te8PI=
 golang.org/x/time v0.14.0/go.mod h1:eL/Oa2bBBK0TkX57Fyni+NgnyQQN4LitPmob2Hjnqw4=
 golang.org/x/tools v0.0.0-20180525024113-a5b4c53f6e8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -580,16 +579,16 @@ gonum.org/v1/gonum v0.16.0 h1:5+ul4Swaf3ESvrOnidPp4GZbzf0mxVQpDCYUQE7OJfk=
 gonum.org/v1/gonum v0.16.0/go.mod h1:fef3am4MQ93R2HHpKnLk4/Tbh/s0+wqD5nfa6Pnwy4E=
 gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0/go.mod h1:wa6Ws7BG/ESfp6dHfk7C6KdzKA7wR7u/rKwOGE66zvw=
 gonum.org/v1/plot v0.0.0-20190515093506-e2840ee46a6b/go.mod h1:Wt8AAjI+ypCyYX3nZBvf6cAIx93T+c/OS2HFAYskSZc=
-google.golang.org/api v0.257.0 h1:8Y0lzvHlZps53PEaw+G29SsQIkuKrumGWs9puiexNAA=
-google.golang.org/api v0.257.0/go.mod h1:4eJrr+vbVaZSqs7vovFd1Jb/A6ml6iw2e6FBYf3GAO4=
-google.golang.org/genproto v0.0.0-20250922171735-9219d122eba9 h1:LvZVVaPE0JSqL+ZWb6ErZfnEOKIqqFWUJE2D0fObSmc=
-google.golang.org/genproto v0.0.0-20250922171735-9219d122eba9/go.mod h1:QFOrLhdAe2PsTp3vQY4quuLKTi9j3XG3r6JPPaw7MSc=
-google.golang.org/genproto/googleapis/api v0.0.0-20251111163417-95abcf5c77ba h1:B14OtaXuMaCQsl2deSvNkyPKIzq3BjfxQp8d00QyWx4=
-google.golang.org/genproto/googleapis/api v0.0.0-20251111163417-95abcf5c77ba/go.mod h1:G5IanEx8/PgI9w6CFcYQf7jMtHQhZruvfM1i3qOqk5U=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20251124214823-79d6a2a48846 h1:Wgl1rcDNThT+Zn47YyCXOXyX/COgMTIdhJ717F0l4xk=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20251124214823-79d6a2a48846/go.mod h1:7i2o+ce6H/6BluujYR+kqX3GKH+dChPTQU19wjRPiGk=
-google.golang.org/grpc v1.77.0 h1:wVVY6/8cGA6vvffn+wWK5ToddbgdU3d8MNENr4evgXM=
-google.golang.org/grpc v1.77.0/go.mod h1:z0BY1iVj0q8E1uSQCjL9cppRj+gnZjzDnzV0dHhrNig=
+google.golang.org/api v0.260.0 h1:XbNi5E6bOVEj/uLXQRlt6TKuEzMD7zvW/6tNwltE4P4=
+google.golang.org/api v0.260.0/go.mod h1:Shj1j0Phr/9sloYrKomICzdYgsSDImpTxME8rGLaZ/o=
+google.golang.org/genproto v0.0.0-20251202230838-ff82c1b0f217 h1:GvESR9BIyHUahIb0NcTum6itIWtdoglGX+rnGxm2934=
+google.golang.org/genproto v0.0.0-20251202230838-ff82c1b0f217/go.mod h1:yJ2HH4EHEDTd3JiLmhds6NkJ17ITVYOdV3m3VKOnws0=
+google.golang.org/genproto/googleapis/api v0.0.0-20251202230838-ff82c1b0f217 h1:fCvbg86sFXwdrl5LgVcTEvNC+2txB5mgROGmRL5mrls=
+google.golang.org/genproto/googleapis/api v0.0.0-20251202230838-ff82c1b0f217/go.mod h1:+rXWjjaukWZun3mLfjmVnQi18E1AsFbDN9QdJ5YXLto=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b h1:Mv8VFug0MP9e5vUxfBcE3vUkV6CImK3cMNMIDFjmzxU=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b/go.mod h1:j9x/tPzZkyxcgEFkiKEEGxfvyumM01BEtsW8xzOahRQ=
+google.golang.org/grpc v1.78.0 h1:K1XZG/yGDJnzMdd/uZHAkVqJE+xIDOcmdSFZkBUicNc=
+google.golang.org/grpc v1.78.0/go.mod h1:I47qjTo4OKbMkjA/aOOwxDIiPSBofUtQUI5EfpWvW7U=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -599,8 +598,8 @@ google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.36.10 h1:AYd7cD/uASjIL6Q9LiTjz8JLcrh/88q5UObnmY3aOOE=
-google.golang.org/protobuf v1.36.10/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
+google.golang.org/protobuf v1.36.11 h1:fV6ZwhNocDyBLK0dj+fg8ektcVegBBuEolpbTQyBNVE=
+google.golang.org/protobuf v1.36.11/go.mod h1:HTf+CrKn2C3g5S8VImy6tdcUvCska2kB7j23XfzDpco=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
diff --git a/vendor/cloud.google.com/go/auth/CHANGES.md b/vendor/cloud.google.com/go/auth/CHANGES.md
index 4deca44353..36c7db49c5 100644
--- a/vendor/cloud.google.com/go/auth/CHANGES.md
+++ b/vendor/cloud.google.com/go/auth/CHANGES.md
@@ -1,3 +1,13 @@
+# Changes
+
+## [0.18.0](https://github.com/googleapis/google-cloud-go/releases/tag/auth%2Fv0.18.0) (2025-12-15)
+
+### Features
+
+* Support scopes field from impersonated credential json (#13308) ([e3f62e1](https://github.com/googleapis/google-cloud-go/commit/e3f62e102840127a0058f5cced4c9738f2bf45f2))
+* add support for parsing EC private key (#13317) ([ea6bc62](https://github.com/googleapis/google-cloud-go/commit/ea6bc62ffe2cc0a6d607d698a181b37fa46c340d))
+* deprecate unsafe credentials JSON loading options (#13397) ([0dd2a3b](https://github.com/googleapis/google-cloud-go/commit/0dd2a3bdece9a85ee7216a737559fa9f5a869545))
+
 ## [0.17.0](https://github.com/googleapis/google-cloud-go/releases/tag/auth%2Fv0.17.0) (2025-10-02)
 
 ### Features
@@ -5,8 +15,6 @@
 * Add trust boundary support for service accounts and impersonation (HTTP/gRPC) (#11870) ([5c2b665](https://github.com/googleapis/google-cloud-go/commit/5c2b665f392e6dd90192f107188720aa1357e7da))
 * add trust boundary support for external accounts (#12864) ([a67a146](https://github.com/googleapis/google-cloud-go/commit/a67a146a6a88a6f1ba10c409dfce8015ecd60a64))
 
-# Changelog
-
 ## [0.16.5](https://github.com/googleapis/google-cloud-go/compare/auth/v0.16.4...auth/v0.16.5) (2025-08-14)
 
 
diff --git a/vendor/cloud.google.com/go/auth/credentials/detect.go b/vendor/cloud.google.com/go/auth/credentials/detect.go
index 6700e33e14..c9d7600e03 100644
--- a/vendor/cloud.google.com/go/auth/credentials/detect.go
+++ b/vendor/cloud.google.com/go/auth/credentials/detect.go
@@ -52,6 +52,44 @@ var (
 	allowOnGCECheck = true
 )
 
+// CredType specifies the type of JSON credentials being provided
+// to a loading function such as [NewCredentialsFromFile] or
+// [NewCredentialsFromJSON].
+type CredType string
+
+const (
+	// ServiceAccount represents a service account file type.
+	ServiceAccount CredType = "service_account"
+	// AuthorizedUser represents a user credentials file type.
+	AuthorizedUser CredType = "authorized_user"
+	// ExternalAccount represents an external account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ExternalAccount CredType = "external_account"
+	// ImpersonatedServiceAccount represents an impersonated service account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ImpersonatedServiceAccount CredType = "impersonated_service_account"
+	// GDCHServiceAccount represents a GDCH service account credentials.
+	GDCHServiceAccount CredType = "gdch_service_account"
+	// ExternalAccountAuthorizedUser represents an external account authorized user credentials.
+	ExternalAccountAuthorizedUser CredType = "external_account_authorized_user"
+)
+
 // TokenBindingType specifies the type of binding used when requesting a token
 // whether to request a hard-bound token using mTLS or an instance identity
 // bound token using ALTS.
@@ -92,6 +130,14 @@ func OnGCE() bool {
 //   - On Google Compute Engine, Google App Engine standard second generation
 //     runtimes, and Google App Engine flexible environment, it fetches
 //     credentials from the metadata server.
+//
+// Important: If you accept a credential configuration (credential
+// JSON/File/Stream) from an external source for authentication to Google
+// Cloud Platform, you must validate it before providing it to any Google
+// API or library. Providing an unvalidated credential configuration to
+// Google APIs can compromise the security of your systems and data. For
+// more information, refer to [Validate credential configurations from
+// external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
 func DetectDefault(opts *DetectOptions) (*auth.Credentials, error) {
 	if err := opts.validate(); err != nil {
 		return nil, err
@@ -189,25 +235,61 @@ type DetectOptions struct {
 	// from the provided filepath. If provided, CredentialsJSON must not be.
 	// Optional.
 	//
-	// Important: If you accept a credential configuration (credential
-	// JSON/File/Stream) from an external source for authentication to Google
-	// Cloud Platform, you must validate it before providing it to any Google
-	// API or library. Providing an unvalidated credential configuration to
-	// Google APIs can compromise the security of your systems and data. For
-	// more information, refer to [Validate credential configurations from
-	// external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
+	// Deprecated: This field is deprecated because of a potential security risk.
+	// It does not validate the credential configuration. The security risk occurs
+	// when a credential configuration is accepted from a source that is not
+	// under your control and used without validation on your side.
+	//
+	// If you know that you will be loading credential configurations of a
+	// specific type, it is recommended to use a credential-type-specific
+	// NewCredentialsFromFile method. This will ensure that an unexpected
+	// credential type with potential for malicious intent is not loaded
+	// unintentionally. You might still have to do validation for certain
+	// credential types. Please follow the recommendation for that method. For
+	// example, if you want to load only service accounts, you can use
+	//
+	//	creds, err := credentials.NewCredentialsFromFile(ctx, credentials.ServiceAccount, filename, opts)
+	//
+	// If you are loading your credential configuration from an untrusted source
+	// and have not mitigated the risks (e.g. by validating the configuration
+	// yourself), make these changes as soon as possible to prevent security
+	// risks to your environment.
+	//
+	// Regardless of the method used, it is always your responsibility to
+	// validate configurations received from external sources.
+	//
+	// For more details see:
+	// https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
 	CredentialsFile string
 	// CredentialsJSON overrides detection logic and uses the JSON bytes as the
 	// source for the credential. If provided, CredentialsFile must not be.
 	// Optional.
 	//
-	// Important: If you accept a credential configuration (credential
-	// JSON/File/Stream) from an external source for authentication to Google
-	// Cloud Platform, you must validate it before providing it to any Google
-	// API or library. Providing an unvalidated credential configuration to
-	// Google APIs can compromise the security of your systems and data. For
-	// more information, refer to [Validate credential configurations from
-	// external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
+	// Deprecated: This field is deprecated because of a potential security risk.
+	// It does not validate the credential configuration. The security risk occurs
+	// when a credential configuration is accepted from a source that is not
+	// under your control and used without validation on your side.
+	//
+	// If you know that you will be loading credential configurations of a
+	// specific type, it is recommended to use a credential-type-specific
+	// NewCredentialsFromJSON method. This will ensure that an unexpected
+	// credential type with potential for malicious intent is not loaded
+	// unintentionally. You might still have to do validation for certain
+	// credential types. Please follow the recommendation for that method. For
+	// example, if you want to load only service accounts, you can use
+	//
+	//	creds, err := credentials.NewCredentialsFromJSON(ctx, credentials.ServiceAccount, json, opts)
+	//
+	// If you are loading your credential configuration from an untrusted source
+	// and have not mitigated the risks (e.g. by validating the configuration
+	// yourself), make these changes as soon as possible to prevent security
+	// risks to your environment.
+	//
+	// Regardless of the method used, it is always your responsibility to
+	// validate configurations received from external sources.
+	//
+	// For more details see:
+	// https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
 	CredentialsJSON []byte
 	// UseSelfSignedJWT directs service account based credentials to create a
 	// self-signed JWT with the private key found in the file, skipping any
@@ -227,6 +309,61 @@ type DetectOptions struct {
 	Logger *slog.Logger
 }
 
+// NewCredentialsFromFile creates a [cloud.google.com/go/auth.Credentials] from
+// the provided file. The credType argument specifies the expected credential
+// type. If the file content does not match the expected type, an error is
+// returned.
+//
+// Important: If you accept a credential configuration (credential
+// JSON/File/Stream) from an external source for authentication to Google
+// Cloud Platform, you must validate it before providing it to any Google
+// API or library. Providing an unvalidated credential configuration to
+// Google APIs can compromise the security of your systems and data. For
+// more information, refer to [Validate credential configurations from
+// external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
+func NewCredentialsFromFile(credType CredType, filename string, opts *DetectOptions) (*auth.Credentials, error) {
+	b, err := os.ReadFile(filename)
+	if err != nil {
+		return nil, err
+	}
+	return NewCredentialsFromJSON(credType, b, opts)
+}
+
+// NewCredentialsFromJSON creates a [cloud.google.com/go/auth.Credentials] from
+// the provided JSON bytes. The credType argument specifies the expected
+// credential type. If the JSON does not match the expected type, an error is
+// returned.
+//
+// Important: If you accept a credential configuration (credential
+// JSON/File/Stream) from an external source for authentication to Google
+// Cloud Platform, you must validate it before providing it to any Google
+// API or library. Providing an unvalidated credential configuration to
+// Google APIs can compromise the security of your systems and data. For
+// more information, refer to [Validate credential configurations from
+// external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
+func NewCredentialsFromJSON(credType CredType, b []byte, opts *DetectOptions) (*auth.Credentials, error) {
+	if err := checkCredentialType(b, credType); err != nil {
+		return nil, err
+	}
+	// We can't use readCredentialsFileJSON because it does auto-detection
+	// for client_credentials.json which we don't support here (no type field).
+	// Instead, we call fileCredentials just as readCredentialsFileJSON does
+	// when it doesn't detect client_credentials.json.
+	return fileCredentials(b, opts)
+}
+
+func checkCredentialType(b []byte, expected CredType) error {
+
+	fileType, err := credsfile.ParseFileType(b)
+	if err != nil {
+		return err
+	}
+	if CredType(fileType) != expected {
+		return fmt.Errorf("credentials: expected type %q, found %q", expected, fileType)
+	}
+	return nil
+}
+
 func (o *DetectOptions) validate() error {
 	if o == nil {
 		return errors.New("credentials: options must be provided")
diff --git a/vendor/cloud.google.com/go/auth/credentials/filetypes.go b/vendor/cloud.google.com/go/auth/credentials/filetypes.go
index d2a0424702..f3737a5e8c 100644
--- a/vendor/cloud.google.com/go/auth/credentials/filetypes.go
+++ b/vendor/cloud.google.com/go/auth/credentials/filetypes.go
@@ -28,18 +28,21 @@ import (
 	"cloud.google.com/go/auth/internal/trustboundary"
 )
 
+const cloudPlatformScope = "https://www.googleapis.com/auth/cloud-platform"
+
 func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 	fileType, err := credsfile.ParseFileType(b)
 	if err != nil {
 		return nil, err
 	}
+	if fileType == "" {
+		return nil, errors.New("credentials: unsupported unidentified file type")
+	}
 
 	var projectID, universeDomain string
 	var tp auth.TokenProvider
-	switch fileType {
-	case credsfile.UnknownCredType:
-		return nil, errors.New("credentials: unsupported unidentified file type")
-	case credsfile.ServiceAccountKey:
+	switch CredType(fileType) {
+	case ServiceAccount:
 		f, err := credsfile.ParseServiceAccount(b)
 		if err != nil {
 			return nil, err
@@ -50,7 +53,7 @@ func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 		}
 		projectID = f.ProjectID
 		universeDomain = resolveUniverseDomain(opts.UniverseDomain, f.UniverseDomain)
-	case credsfile.UserCredentialsKey:
+	case AuthorizedUser:
 		f, err := credsfile.ParseUserCredentials(b)
 		if err != nil {
 			return nil, err
@@ -60,7 +63,7 @@ func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 			return nil, err
 		}
 		universeDomain = f.UniverseDomain
-	case credsfile.ExternalAccountKey:
+	case ExternalAccount:
 		f, err := credsfile.ParseExternalAccount(b)
 		if err != nil {
 			return nil, err
@@ -70,7 +73,7 @@ func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 			return nil, err
 		}
 		universeDomain = resolveUniverseDomain(opts.UniverseDomain, f.UniverseDomain)
-	case credsfile.ExternalAccountAuthorizedUserKey:
+	case ExternalAccountAuthorizedUser:
 		f, err := credsfile.ParseExternalAccountAuthorizedUser(b)
 		if err != nil {
 			return nil, err
@@ -80,7 +83,7 @@ func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 			return nil, err
 		}
 		universeDomain = f.UniverseDomain
-	case credsfile.ImpersonatedServiceAccountKey:
+	case ImpersonatedServiceAccount:
 		f, err := credsfile.ParseImpersonatedServiceAccount(b)
 		if err != nil {
 			return nil, err
@@ -90,7 +93,7 @@ func fileCredentials(b []byte, opts *DetectOptions) (*auth.Credentials, error) {
 			return nil, err
 		}
 		universeDomain = resolveUniverseDomain(opts.UniverseDomain, f.UniverseDomain)
-	case credsfile.GDCHServiceAccountKey:
+	case GDCHServiceAccount:
 		f, err := credsfile.ParseGDCHServiceAccount(b)
 		if err != nil {
 			return nil, err
@@ -275,14 +278,24 @@ func handleImpersonatedServiceAccount(f *credsfile.ImpersonatedServiceAccountFil
 		return nil, errors.New("missing 'source_credentials' field or 'service_account_impersonation_url' in credentials")
 	}
 
-	sourceTP, err := fileCredentials(f.CredSource, opts)
+	sourceOpts := *opts
+
+	// Source credential needs IAM or Cloud Platform scope to call the
+	// iamcredentials endpoint. The scopes provided by the user are for the
+	// impersonated credentials.
+	sourceOpts.Scopes = []string{cloudPlatformScope}
+	sourceTP, err := fileCredentials(f.CredSource, &sourceOpts)
 	if err != nil {
 		return nil, err
 	}
 	ud := resolveUniverseDomain(opts.UniverseDomain, f.UniverseDomain)
+	scopes := opts.scopes()
+	if len(scopes) == 0 {
+		scopes = f.Scopes
+	}
 	impOpts := &impersonate.Options{
 		URL:            f.ServiceAccountImpersonationURL,
-		Scopes:         opts.scopes(),
+		Scopes:         scopes,
 		Tp:             sourceTP,
 		Delegates:      f.Delegates,
 		Client:         opts.client(),
diff --git a/vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go b/vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go
index 9cd4bed61b..84aab8472a 100644
--- a/vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go
+++ b/vendor/cloud.google.com/go/auth/internal/credsfile/credsfile.go
@@ -32,50 +32,6 @@ const (
 	userCredsFilename    = "application_default_credentials.json"
 )
 
-// CredentialType represents different credential filetypes Google credentials
-// can be.
-type CredentialType int
-
-const (
-	// UnknownCredType is an unidentified file type.
-	UnknownCredType CredentialType = iota
-	// UserCredentialsKey represents a user creds file type.
-	UserCredentialsKey
-	// ServiceAccountKey represents a service account file type.
-	ServiceAccountKey
-	// ImpersonatedServiceAccountKey represents a impersonated service account
-	// file type.
-	ImpersonatedServiceAccountKey
-	// ExternalAccountKey represents a external account file type.
-	ExternalAccountKey
-	// GDCHServiceAccountKey represents a GDCH file type.
-	GDCHServiceAccountKey
-	// ExternalAccountAuthorizedUserKey represents a external account authorized
-	// user file type.
-	ExternalAccountAuthorizedUserKey
-)
-
-// parseCredentialType returns the associated filetype based on the parsed
-// typeString provided.
-func parseCredentialType(typeString string) CredentialType {
-	switch typeString {
-	case "service_account":
-		return ServiceAccountKey
-	case "authorized_user":
-		return UserCredentialsKey
-	case "impersonated_service_account":
-		return ImpersonatedServiceAccountKey
-	case "external_account":
-		return ExternalAccountKey
-	case "external_account_authorized_user":
-		return ExternalAccountAuthorizedUserKey
-	case "gdch_service_account":
-		return GDCHServiceAccountKey
-	default:
-		return UnknownCredType
-	}
-}
-
 // GetFileNameFromEnv returns the override if provided or detects a filename
 // from the environment.
 func GetFileNameFromEnv(override string) string {
diff --git a/vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go b/vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go
index 606347304c..cbba2eb977 100644
--- a/vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go
+++ b/vendor/cloud.google.com/go/auth/internal/credsfile/filetype.go
@@ -140,6 +140,7 @@ type ImpersonatedServiceAccountFile struct {
 	Type                           string          `json:"type"`
 	ServiceAccountImpersonationURL string          `json:"service_account_impersonation_url"`
 	Delegates                      []string        `json:"delegates"`
+	Scopes                         []string        `json:"scopes"`
 	CredSource                     json.RawMessage `json:"source_credentials"`
 	UniverseDomain                 string          `json:"universe_domain"`
 }
diff --git a/vendor/cloud.google.com/go/auth/internal/credsfile/parse.go b/vendor/cloud.google.com/go/auth/internal/credsfile/parse.go
index a02b9f5df7..f2cedb731c 100644
--- a/vendor/cloud.google.com/go/auth/internal/credsfile/parse.go
+++ b/vendor/cloud.google.com/go/auth/internal/credsfile/parse.go
@@ -89,10 +89,11 @@ type fileTypeChecker struct {
 }
 
 // ParseFileType determines the [CredentialType] based on bytes provided.
-func ParseFileType(b []byte) (CredentialType, error) {
+// Only returns error for json.Unmarshal.
+func ParseFileType(b []byte) (string, error) {
 	var f fileTypeChecker
 	if err := json.Unmarshal(b, &f); err != nil {
-		return 0, err
+		return "", err
 	}
-	return parseCredentialType(f.Type), nil
+	return f.Type, nil
 }
diff --git a/vendor/cloud.google.com/go/auth/internal/internal.go b/vendor/cloud.google.com/go/auth/internal/internal.go
index 72a8a6b7a5..48e9bd9ece 100644
--- a/vendor/cloud.google.com/go/auth/internal/internal.go
+++ b/vendor/cloud.google.com/go/auth/internal/internal.go
@@ -88,12 +88,13 @@ func ParseKey(key []byte) (crypto.Signer, error) {
 		key = block.Bytes
 	}
 	var parsedKey crypto.PrivateKey
-	var err error
-	parsedKey, err = x509.ParsePKCS8PrivateKey(key)
-	if err != nil {
-		parsedKey, err = x509.ParsePKCS1PrivateKey(key)
-		if err != nil {
-			return nil, fmt.Errorf("private key should be a PEM or plain PKCS1 or PKCS8: %w", err)
+
+	var errPKCS8, errPKCS1, errEC error
+	if parsedKey, errPKCS8 = x509.ParsePKCS8PrivateKey(key); errPKCS8 != nil {
+		if parsedKey, errPKCS1 = x509.ParsePKCS1PrivateKey(key); errPKCS1 != nil {
+			if parsedKey, errEC = x509.ParseECPrivateKey(key); errEC != nil {
+				return nil, fmt.Errorf("failed to parse private key. Tried PKCS8, PKCS1, and EC formats. Errors: [PKCS8: %v], [PKCS1: %v], [EC: %v]", errPKCS8, errPKCS1, errEC)
+			}
 		}
 	}
 	parsed, ok := parsedKey.(crypto.Signer)
diff --git a/vendor/cloud.google.com/go/auth/internal/version.go b/vendor/cloud.google.com/go/auth/internal/version.go
index e2f56cf4d8..702a6840d4 100644
--- a/vendor/cloud.google.com/go/auth/internal/version.go
+++ b/vendor/cloud.google.com/go/auth/internal/version.go
@@ -17,4 +17,4 @@
 package internal
 
 // Version is the current tagged release of the library.
-const Version = "0.17.0"
+const Version = "0.18.0"
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/CHANGELOG.md b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/CHANGELOG.md
index 47d2b85fa8..fa477145fa 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/CHANGELOG.md
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/CHANGELOG.md
@@ -1,5 +1,16 @@
 # Release History
 
+## 1.21.0 (2026-01-12)
+
+### Features Added
+
+* Added `runtime/datetime` package which provides specialized time type wrappers for serializing and deserializing
+time values in various formats used by Azure services.
+
+### Other Changes
+
+* Aligned `cloud.AzureGovernment` and `cloud.AzureChina` audience values with Azure CLI
+
 ## 1.20.0 (2025-11-06)
 
 ### Features Added
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/client.go
index c373cc43fd..d103de88a8 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/doc.go
index 1bdd16a3d0..370754179b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_identifier.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_identifier.go
index 8a40ebe4d2..c602e77d1b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_identifier.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_identifier.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_type.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_type.go
index ca03ac9713..34d09b6d7f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_type.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource/resource_type.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/policy/policy.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/policy/policy.go
index f18caf8489..787c8e5031 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/policy/policy.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/policy/policy.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_identifier.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_identifier.go
index d1c3191f2e..7f7b0f1419 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_identifier.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_identifier.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_type.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_type.go
index fc7fbffd26..270d495e4f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_type.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/resource_type.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/pipeline.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/pipeline.go
index 6a7c916b43..fa0f292060 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/pipeline.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/pipeline.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_register_rp.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_register_rp.go
index 810ac9d9fa..3bfb7d02d9 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_register_rp.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_register_rp.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_trace_namespace.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_trace_namespace.go
index 6cea184240..cc84d542d2 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_trace_namespace.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/policy_trace_namespace.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/runtime.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/runtime.go
index 1400d43799..0b58f542e6 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/runtime.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/runtime/runtime.go
@@ -1,6 +1,3 @@
-//go:build go1.16
-// +build go1.16
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -10,11 +7,11 @@ import "github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud"
 
 func init() {
 	cloud.AzureChina.Services[cloud.ResourceManager] = cloud.ServiceConfiguration{
-		Audience: "https://management.core.chinacloudapi.cn",
+		Audience: "https://management.core.chinacloudapi.cn/",
 		Endpoint: "https://management.chinacloudapi.cn",
 	}
 	cloud.AzureGovernment.Services[cloud.ResourceManager] = cloud.ServiceConfiguration{
-		Audience: "https://management.core.usgovcloudapi.net",
+		Audience: "https://management.core.usgovcloudapi.net/",
 		Endpoint: "https://management.usgovcloudapi.net",
 	}
 	cloud.AzurePublic.Services[cloud.ResourceManager] = cloud.ServiceConfiguration{
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/cloud.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/cloud.go
index 9d077a3e12..4ef739a6c4 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/cloud.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/cloud.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/doc.go
index 985b1bde2f..39d0d489e5 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/cloud/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.16
-// +build go1.16
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/core.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/core.go
index 9d1c2f0c05..c3572985b6 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/core.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/core.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/doc.go
index 654a5f4043..4862a9f688 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/errors.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/errors.go
index 03cb227d0d..66111a403f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/errors.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/errors.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/etag.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/etag.go
index 2b19d01f76..4a5d7462d6 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/etag.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/etag.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/exported.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/exported.go
index 612af11ac6..96be304eb7 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/exported.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/exported.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/pipeline.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/pipeline.go
index e45f831ed2..5d9892a055 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/pipeline.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/pipeline.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/request.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/request.go
index 9b3f5badb5..4bf722630a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/request.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/request.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -115,7 +112,7 @@ func NewRequest(ctx context.Context, httpMethod string, endpoint string) (*Reque
 	if req.URL.Host == "" {
 		return nil, errors.New("no Host in request URL")
 	}
-	if !(req.URL.Scheme == "http" || req.URL.Scheme == "https") {
+	if req.URL.Scheme != "http" && req.URL.Scheme != "https" {
 		return nil, fmt.Errorf("unsupported protocol scheme %s", req.URL.Scheme)
 	}
 	// populate values so that the same instance is propagated across policies
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/response_error.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/response_error.go
index 8aec256bd0..ef0635bb22 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/response_error.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/exported/response_error.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/log/log.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/log/log.go
index 6fc6d1400e..d3e7191f73 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/log/log.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/log/log.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/async/async.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/async/async.go
index a534627605..fcaf6e168f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/async/async.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/async/async.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -128,10 +125,11 @@ func (p *Poller[T]) Result(ctx context.Context, out *T) error {
 	}
 	var req *exported.Request
 	var err error
-	if p.Method == http.MethodPatch || p.Method == http.MethodPut {
+	switch p.Method {
+	case http.MethodPatch, http.MethodPut:
 		// for PATCH and PUT, the final GET is on the original resource URL
 		req, err = exported.NewRequest(ctx, http.MethodGet, p.OrigURL)
-	} else if p.Method == http.MethodPost {
+	case http.MethodPost:
 		if p.FinalState == pollers.FinalStateViaAzureAsyncOp {
 			// no final GET required
 		} else if p.FinalState == pollers.FinalStateViaOriginalURI {
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/body/body.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/body/body.go
index 8751b05147..8eebebf78f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/body/body.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/body/body.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/fake/fake.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/fake/fake.go
index 7f8d11b8ba..3284ea7097 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/fake/fake.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/fake/fake.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/loc/loc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/loc/loc.go
index 048285275d..cbd8e5880b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/loc/loc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/loc/loc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/op/op.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/op/op.go
index f496331893..a89aed378b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/op/op.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/op/op.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/poller.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/poller.go
index 37ed647f4e..2f15bc1de5 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/poller.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/poller.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/util.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/util.go
index 6a7a32e034..de54543190 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/util.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/pollers/util.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -165,7 +162,10 @@ func ResultHelper[T any](resp *http.Response, failed bool, jsonPath string, out
 		return nil
 	}
 
-	defer resp.Body.Close()
+	defer func() {
+		_ = resp.Body.Close()
+	}()
+
 	if !poller.StatusCodeValid(resp) || failed {
 		// the LRO failed.  unmarshall the error and update state
 		return azexported.NewResponseError(resp)
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/constants.go
index f152000913..213202e336 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -40,5 +37,5 @@ const (
 	Module = "azcore"
 
 	// Version is the semantic version (see http://semver.org) of this module.
-	Version = "v1.20.0"
+	Version = "v1.21.0"
 )
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/shared.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/shared.go
index d3da2c5fdf..e82d4f00c9 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/shared.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/internal/shared/shared.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/doc.go
index 2f3901bff3..174bbf99b7 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/log.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/log.go
index f260dac363..6880cd9cd3 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/log.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/log/log.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/doc.go
index fad2579ed6..01d788ad26 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/policy.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/policy.go
index 368a2199e0..074d1a600e 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/policy.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/policy/policy.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/doc.go
index c9cfa438cb..2c169da79c 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/errors.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/errors.go
index c0d56158e2..931d6f862f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/errors.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/errors.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pager.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pager.go
index edb4a3cd44..743513be4b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pager.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pager.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pipeline.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pipeline.go
index 6b1f5c083e..3d95fe30dd 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pipeline.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/pipeline.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_api_version.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_api_version.go
index c3646feb55..21c1430be7 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_api_version.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_api_version.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_body_download.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_body_download.go
index 99dc029f0c..08ce2e4b08 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_body_download.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_body_download.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_header.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_header.go
index c230af0afa..fa6d643f1e 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_header.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_header.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -34,6 +31,7 @@ func httpHeaderPolicy(req *policy.Request) (*http.Response, error) {
 // WithHTTPHeader adds the specified http.Header to the parent context.
 // Use this to specify custom HTTP headers at the API-call level.
 // Any overlapping headers will have their values replaced with the values specified here.
+//
 // Deprecated: use [policy.WithHTTPHeader] instead.
 func WithHTTPHeader(parent context.Context, header http.Header) context.Context {
 	return policy.WithHTTPHeader(parent, header)
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_trace.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_trace.go
index f375195c4b..ddf9ede01e 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_trace.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_http_trace.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_include_response.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_include_response.go
index bb00f6c2fd..eaa6c7375c 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_include_response.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_include_response.go
@@ -1,6 +1,3 @@
-//go:build go1.16
-// +build go1.16
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -29,6 +26,7 @@ func includeResponsePolicy(req *policy.Request) (*http.Response, error) {
 
 // WithCaptureResponse applies the HTTP response retrieval annotation to the parent context.
 // The resp parameter will contain the HTTP response after the request has completed.
+//
 // Deprecated: use [policy.WithCaptureResponse] instead.
 func WithCaptureResponse(parent context.Context, resp **http.Response) context.Context {
 	return policy.WithCaptureResponse(parent, resp)
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_logging.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_logging.go
index f048d7fb53..dd59fbc99b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_logging.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_logging.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_request_id.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_request_id.go
index 360a7f2118..a8f1cbac3f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_request_id.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_request_id.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_retry.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_retry.go
index 4c3a31fea7..696e1d9f49 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_retry.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_retry.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -117,7 +114,10 @@ func (p *retryPolicy) Do(req *policy.Request) (resp *http.Response, err error) {
 		// wrap the body so we control when it's actually closed.
 		// do this outside the for loop so defers don't accumulate.
 		rwbody = &retryableRequestBody{body: req.Body()}
-		defer rwbody.realClose()
+		defer func() {
+			// TODO: https://github.com/Azure/azure-sdk-for-go/issues/25649
+			_ = rwbody.realClose()
+		}()
 	}
 	try := int32(1)
 	for {
@@ -222,6 +222,7 @@ func (p *retryPolicy) Do(req *policy.Request) (resp *http.Response, err error) {
 
 // WithRetryOptions adds the specified RetryOptions to the parent context.
 // Use this to specify custom RetryOptions at the API-call level.
+//
 // Deprecated: use [policy.WithRetryOptions] instead.
 func WithRetryOptions(parent context.Context, options policy.RetryOptions) context.Context {
 	return policy.WithRetryOptions(parent, options)
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_telemetry.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_telemetry.go
index 80a9035461..2c60e9d23a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_telemetry.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/policy_telemetry.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/poller.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/poller.go
index a89ae9b7b9..2e172cdd1d 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/poller.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/poller.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -87,7 +84,10 @@ func NewPoller[T any](resp *http.Response, pl exported.Pipeline, options *NewPol
 		}, nil
 	}
 
-	defer resp.Body.Close()
+	defer func() {
+		_ = resp.Body.Close()
+	}()
+
 	// this is a back-stop in case the swagger is incorrect (i.e. missing one or more status codes for success).
 	// ideally the codegen should return an error if the initial response failed and not even create a poller.
 	if !poller.StatusCodeValid(resp) {
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/request.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/request.go
index 7d34b7803a..df7826b763 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/request.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/request.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/response.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/response.go
index 048566e02c..e95f8c8ecf 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/response.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/response.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -84,8 +81,9 @@ func UnmarshalAsXML(resp *http.Response, v any) error {
 // Drain reads the response body to completion then closes it.  The bytes read are discarded.
 func Drain(resp *http.Response) {
 	if resp != nil && resp.Body != nil {
+		// TODO: this might not be necessary when the bodyDownloadPolicy is in play
 		_, _ = io.Copy(io.Discard, resp.Body)
-		resp.Body.Close()
+		_ = resp.Body.Close()
 	}
 }
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/transport_default_http_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/transport_default_http_client.go
index 2124c1d48b..928e9bf925 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/transport_default_http_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/runtime/transport_default_http_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/doc.go
index cadaef3d58..10d0414861 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/progress.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/progress.go
index 2468540bd7..c93824a661 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/progress.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/streaming/progress.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/doc.go
index faa98c9dc5..13263fbc94 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright 2017 Microsoft Corporation. All rights reserved.
 // Use of this source code is governed by an MIT
 // license that can be found in the LICENSE file.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/to.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/to.go
index e0e4817b90..e434f77956 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/to.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/to/to.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/constants.go
index 80282d4ab0..c00c21a3b3 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/tracing.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/tracing.go
index 1ade7c560f..8f32485608 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/tracing.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/azcore/tracing/tracing.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/CHANGELOG.md b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/CHANGELOG.md
index 78fe312e7e..14a1e24ce2 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/CHANGELOG.md
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/CHANGELOG.md
@@ -1,5 +1,14 @@
 # Release History
 
+## 1.6.4 (2026-01-12)
+
+### Features Added
+* Added support for the StartFrom parameter on `BlobContainerClient.listBlobs()` and `BlobContainerClient.listBlobsByHierarchy()` APIs. 
+* Added support for conditional headers on `BlobClientBase.getTags()` and `BlobClientBase.setTags()` APIs.
+
+### Other Changes
+* Added support for service version 2026-02-06.
+
 ## 1.6.3 (2025-10-16)
 
 ### Other Changes
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/client.go
index 3bf058976a..0b4c60a9ea 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -262,7 +259,10 @@ func (ab *Client) SetLegalHold(ctx context.Context, legalHold bool, options *blo
 }
 
 // SetTier
-// Deprecated: SetTier only works for page blob in premium storage account and block blob in blob storage account.
+//
+// Deprecated:
+//
+// SetTier only works for page blob in premium storage account and block blob in blob storage account.
 func (ab *Client) SetTier(ctx context.Context, tier blob.AccessTier, o *blob.SetTierOptions) (blob.SetTierResponse, error) {
 	return blob.SetTierResponse{}, errors.New("operation will not work on this blob type. SetTier only works for page blob in premium storage account and block blob in blob storage account")
 }
@@ -335,7 +335,10 @@ func (ab *Client) GetTags(ctx context.Context, o *blob.GetTagsOptions) (blob.Get
 }
 
 // CopyFromURL
-// Deprecated: CopyFromURL works only with block blob
+//
+// Deprecated:
+//
+// CopyFromURL works only with block blob
 func (ab *Client) CopyFromURL(ctx context.Context, copySource string, o *blob.CopyFromURLOptions) (blob.CopyFromURLResponse, error) {
 	return blob.CopyFromURLResponse{}, errors.New("operation will not work on this blob type. CopyFromURL works only with block blob")
 }
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/models.go
index 33a6a516ba..bb4e8f13de 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/responses.go
index e6851237c9..326b90c687 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/assets.json b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/assets.json
index 11b07dbbc6..5d5e53abf2 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/assets.json
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/assets.json
@@ -2,5 +2,5 @@
   "AssetsRepo": "Azure/azure-sdk-assets",
   "AssetsRepoPrefixPath": "go",
   "TagPrefix": "go/storage/azblob",
-  "Tag": "go/storage/azblob_db9a368fe4"
+  "Tag": "go/storage/azblob_922762c914"
 }
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/client.go
index 98a624f505..b398569529 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -235,16 +232,16 @@ func (b *Client) AbortCopyFromURL(ctx context.Context, copyID string, options *A
 // https://docs.microsoft.com/en-us/rest/api/storageservices/set-blob-tags
 func (b *Client) SetTags(ctx context.Context, tags map[string]string, options *SetTagsOptions) (SetTagsResponse, error) {
 	serializedTags := shared.SerializeBlobTags(tags)
-	blobSetTagsOptions, modifiedAccessConditions, leaseAccessConditions := options.format()
-	resp, err := b.generated().SetTags(ctx, *serializedTags, blobSetTagsOptions, modifiedAccessConditions, leaseAccessConditions)
+	blobSetTagsOptions, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions := options.format()
+	resp, err := b.generated().SetTags(ctx, *serializedTags, blobSetTagsOptions, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions)
 	return resp, err
 }
 
 // GetTags operation enables users to get tags on a blob or specific blob version, or snapshot.
 // https://docs.microsoft.com/en-us/rest/api/storageservices/get-blob-tags
 func (b *Client) GetTags(ctx context.Context, options *GetTagsOptions) (GetTagsResponse, error) {
-	blobGetTagsOptions, modifiedAccessConditions, leaseAccessConditions := options.format()
-	resp, err := b.generated().GetTags(ctx, blobGetTagsOptions, modifiedAccessConditions, leaseAccessConditions)
+	blobGetTagsOptions, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions := options.format()
+	resp, err := b.generated().GetTags(ctx, blobGetTagsOptions, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions)
 	return resp, err
 
 }
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/constants.go
index eec8e971a2..d257bf5a4b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/models.go
index ce52da0286..42c72d5aa2 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -34,6 +31,9 @@ type LeaseAccessConditions = exported.LeaseAccessConditions
 // ModifiedAccessConditions contains a group of parameters for specifying access conditions.
 type ModifiedAccessConditions = exported.ModifiedAccessConditions
 
+// BlobModifiedAccessConditions contains a group of parameters for specifying blob access conditions.
+type BlobModifiedAccessConditions = exported.BlobModifiedAccessConditions
+
 // CPKInfo contains a group of parameters for client provided encryption key.
 type CPKInfo = generated.CPKInfo
 
@@ -402,11 +402,13 @@ type SetTagsOptions struct {
 	TransactionalContentMD5 []byte
 
 	AccessConditions *AccessConditions
+
+	BlobModifiedAccessConditions *BlobModifiedAccessConditions
 }
 
-func (o *SetTagsOptions) format() (*generated.BlobClientSetTagsOptions, *ModifiedAccessConditions, *generated.LeaseAccessConditions) {
+func (o *SetTagsOptions) format() (*generated.BlobClientSetTagsOptions, *ModifiedAccessConditions, *generated.LeaseAccessConditions, *generated.BlobModifiedAccessConditions) {
 	if o == nil {
-		return nil, nil, nil
+		return nil, nil, nil, nil
 	}
 
 	options := &generated.BlobClientSetTagsOptions{
@@ -416,7 +418,8 @@ func (o *SetTagsOptions) format() (*generated.BlobClientSetTagsOptions, *Modifie
 	}
 
 	leaseAccessConditions, modifiedAccessConditions := exported.FormatBlobAccessConditions(o.AccessConditions)
-	return options, modifiedAccessConditions, leaseAccessConditions
+	blobModifiedAccessConditions := exported.FormatBlobModifiedAccessConditions(o.BlobModifiedAccessConditions)
+	return options, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions
 }
 
 // ---------------------------------------------------------------------------------------------------------------------
@@ -430,11 +433,13 @@ type GetTagsOptions struct {
 	VersionID *string
 
 	BlobAccessConditions *AccessConditions
+
+	BlobModifiedAccessConditions *BlobModifiedAccessConditions
 }
 
-func (o *GetTagsOptions) format() (*generated.BlobClientGetTagsOptions, *generated.ModifiedAccessConditions, *generated.LeaseAccessConditions) {
+func (o *GetTagsOptions) format() (*generated.BlobClientGetTagsOptions, *generated.ModifiedAccessConditions, *generated.LeaseAccessConditions, *generated.BlobModifiedAccessConditions) {
 	if o == nil {
-		return nil, nil, nil
+		return nil, nil, nil, nil
 	}
 
 	options := &generated.BlobClientGetTagsOptions{
@@ -443,7 +448,8 @@ func (o *GetTagsOptions) format() (*generated.BlobClientGetTagsOptions, *generat
 	}
 
 	leaseAccessConditions, modifiedAccessConditions := exported.FormatBlobAccessConditions(o.BlobAccessConditions)
-	return options, modifiedAccessConditions, leaseAccessConditions
+	blobModifiedAccessConditions := exported.FormatBlobModifiedAccessConditions(o.BlobModifiedAccessConditions)
+	return options, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions
 }
 
 // ---------------------------------------------------------------------------------------------------------------------
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/responses.go
index 352d975264..2fc55e6a9c 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/retry_reader.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/retry_reader.go
index a625c99532..86a648e44b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/retry_reader.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/retry_reader.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/utils.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/utils.go
index c2d517d8ad..6de5543eae 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/utils.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob/utils.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/bloberror/error_codes.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/bloberror/error_codes.go
index 07fad60611..39ccf0bde4 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/bloberror/error_codes.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/bloberror/error_codes.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -154,6 +151,8 @@ const (
 
 var (
 	// MissingSharedKeyCredential - Error is returned when SAS URL is being created without SharedKeyCredential.
+	//nolint:staticcheck // ST1012: Renaming errors would be a breaking change, so suppressing linter warning.
 	MissingSharedKeyCredential = errors.New("SAS can only be signed with a SharedKeyCredential")
-	UnsupportedChecksum        = errors.New("for multi-part uploads, user generated checksums cannot be validated")
+	//nolint:staticcheck // ST1012: Renaming errors would be a breaking change, so suppressing linter warning.
+	UnsupportedChecksum = errors.New("for multi-part uploads, user generated checksums cannot be validated")
 )
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/chunkwriting.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/chunkwriting.go
index 24df42c75e..55a6c2206a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/chunkwriting.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/chunkwriting.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/client.go
index 7a3ab3fe8d..602f55fc21 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/constants.go
index ce3a5d8de3..1b061c6469 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/models.go
index bd5ac4d0ef..26dc412b0e 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/responses.go
index 917f718097..7193612e2a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blockblob/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/client.go
index f36a162476..114545b07a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/common.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/common.go
index 48771e8c9c..f6800a26c9 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/common.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/common.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/constants.go
index c42fcdec7f..9ac10bb9a9 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/batch_builder.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/batch_builder.go
index 83edea72b2..569d9bd0a1 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/batch_builder.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/batch_builder.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/client.go
index 0e43ed015e..51b6353fc8 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/constants.go
index 09a8e8ed3f..51ecedd1f9 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/models.go
index ccee90dbc5..83b926d824 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -191,6 +188,9 @@ type ListBlobsFlatOptions struct {
 	MaxResults *int32
 	// Filters the results to return only containers whose name begins with the specified prefix.
 	Prefix *string
+	// Specifies the relative path to list paths from. For non-recursive list, only one entity level is supported; For recursive
+	// list, multiple entity levels are supported. (Inclusive)
+	StartFrom *string
 }
 
 // ---------------------------------------------------------------------------------------------------------------------
@@ -213,6 +213,9 @@ type ListBlobsHierarchyOptions struct {
 	MaxResults *int32
 	// Filters the results to return only containers whose name begins with the specified prefix.
 	Prefix *string
+	// Specifies the relative path to list paths from. For non-recursive list, only one entity level is supported; For recursive
+	// list, multiple entity levels are supported. (Inclusive)
+	StartFrom *string
 }
 
 // ContainerClientListBlobHierarchySegmentOptions contains the optional parameters for the ContainerClient.ListBlobHierarchySegment method.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/responses.go
index 9aaefe277f..9811240428 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/container/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/doc.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/doc.go
index 9a4806c575..a2e2ab872b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/doc.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/doc.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/base/clients.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/base/clients.go
index 073de855b6..3eb0469755 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/base/clients.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/base/clients.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_conditions.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_conditions.go
index 96d188fa56..8c168a7019 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_conditions.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_conditions.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -41,3 +38,18 @@ type LeaseAccessConditions = generated.LeaseAccessConditions
 
 // ModifiedAccessConditions contains a group of parameters for specifying access conditions.
 type ModifiedAccessConditions = generated.ModifiedAccessConditions
+
+type BlobModifiedAccessConditions = generated.BlobModifiedAccessConditions
+
+func FormatBlobModifiedAccessConditions(src *BlobModifiedAccessConditions) *BlobModifiedAccessConditions {
+	if src == nil {
+		return nil
+	}
+
+	return &BlobModifiedAccessConditions{
+		IfMatch:           src.IfMatch,
+		IfModifiedSince:   src.IfModifiedSince,
+		IfNoneMatch:       src.IfNoneMatch,
+		IfUnmodifiedSince: src.IfUnmodifiedSince,
+	}
+}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_policy.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_policy.go
index 14c293cf65..92d17913cf 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_policy.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/access_policy.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/blob_batch.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/blob_batch.go
index c26c62aa88..45f96dd3b8 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/blob_batch.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/blob_batch.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/exported.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/exported.go
index d0355727c9..5f298987cd 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/exported.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/exported.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/log_events.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/log_events.go
index d775fb5c88..1d7f049a63 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/log_events.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/log_events.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/set_expiry.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/set_expiry.go
index 71473decab..b305f0d281 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/set_expiry.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/set_expiry.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/shared_key_credential.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/shared_key_credential.go
index b0be323b7b..72e6fd6939 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/shared_key_credential.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/shared_key_credential.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/transfer_validation_option.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/transfer_validation_option.go
index f3e571fa6a..a9746404ef 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/transfer_validation_option.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/transfer_validation_option.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/user_delegation_credential.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/user_delegation_credential.go
index 2e2dd16e42..6a6ab8ba00 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/user_delegation_credential.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/user_delegation_credential.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/version.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/version.go
index 0e86085ed7..9609697f49 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/version.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/exported/version.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -8,5 +5,5 @@ package exported
 
 const (
 	ModuleName    = "github.com/Azure/azure-sdk-for-go/sdk/storage/azblob"
-	ModuleVersion = "v1.6.3"
+	ModuleVersion = "v1.6.4"
 )
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/appendblob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/appendblob_client.go
index 288df7edda..a2b8794f48 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/appendblob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/appendblob_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 // Code generated by Microsoft (R) AutoRest Code Generator.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/autorest.md b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/autorest.md
index b31e81b9ca..f2a0f1179b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/autorest.md
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/autorest.md
@@ -7,7 +7,7 @@ go: true
 clear-output-folder: false
 version: "^3.0.0"
 license-header: MICROSOFT_MIT_NO_VERSION
-input-file: "https://raw.githubusercontent.com/Azure/azure-rest-api-specs/07c350e6126e53f3a25fe75536c4b3324f91475b/specification/storage/data-plane/Microsoft.BlobStorage/stable/2025-11-05/blob.json"
+input-file: "https://raw.githubusercontent.com/Azure/azure-rest-api-specs/b6472ffd34d5d4a155101b41b4eb1f356abff600/specification/storage/data-plane/Microsoft.BlobStorage/stable/2026-02-06/blob.json"
 credential-scope: "https://storage.azure.com/.default"
 output-folder: ../generated
 file-prefix: "zz_"
@@ -67,7 +67,7 @@ directive:
     $.items.enum.push("permissions");
 ```
 
-### Updating service version to 2025-11-05
+### Updating service version to 2026-02-06
 ```yaml
 directive:
 - from: 
@@ -80,7 +80,7 @@ directive:
   where: $
   transform: >-
     return $.
-      replaceAll(`[]string{"2025-07-05"}`, `[]string{ServiceVersion}`);
+      replaceAll(`[]string{"2025-11-05"}`, `[]string{ServiceVersion}`);
 ```
 
 ### Fix CRC Response Header in PutBlob response
@@ -371,6 +371,8 @@ directive:
       replace(/result\.ETag\s+=\s+&val/g, `result.ETag = (*azcore.ETag)(&val)`).
       replace(/\*modifiedAccessConditions.IfMatch/g, `string(*modifiedAccessConditions.IfMatch)`).
       replace(/\*modifiedAccessConditions.IfNoneMatch/g, `string(*modifiedAccessConditions.IfNoneMatch)`).
+      replace(/\*blobModifiedAccessConditions.IfMatch/g, `string(*blobModifiedAccessConditions.IfMatch)`).
+      replace(/\*blobModifiedAccessConditions.IfNoneMatch/g, `string(*blobModifiedAccessConditions.IfNoneMatch)`).
       replace(/\*sourceModifiedAccessConditions.SourceIfMatch/g, `string(*sourceModifiedAccessConditions.SourceIfMatch)`).
       replace(/\*sourceModifiedAccessConditions.SourceIfNoneMatch/g, `string(*sourceModifiedAccessConditions.SourceIfNoneMatch)`);
 ```
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/blob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/blob_client.go
index 343073b2e6..6df8b281c7 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/blob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/blob_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/block_blob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/block_blob_client.go
index 873d9a419f..91001107f4 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/block_blob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/block_blob_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 // Code generated by Microsoft (R) AutoRest Code Generator.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/build.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/build.go
index 57f112001b..188426a4d3 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/build.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/build.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 //go:generate autorest ./autorest.md
 //go:generate gofmt -w .
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/constants.go
index 858ac83f98..c2c6cad815 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/constants.go
@@ -1,9 +1,6 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
 package generated
 
-const ServiceVersion = "2025-11-05"
+const ServiceVersion = "2026-02-06"
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/container_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/container_client.go
index d43b2c7825..428a3e7dd8 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/container_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/container_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/models.go
index aaef9f53ba..24043b4ae7 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/pageblob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/pageblob_client.go
index a7c76208aa..df33c5ec98 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/pageblob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/pageblob_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/service_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/service_client.go
index 32c15a2b09..50a88c7d2f 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/service_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/service_client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_appendblob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_appendblob_client.go
index 91969efd40..a096eb7c6a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_appendblob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_appendblob_client.go
@@ -29,7 +29,7 @@ type AppendBlobClient struct {
 // AppendBlob. Append Block is supported only on version 2015-02-21 version or later.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - body - Initial data
 //   - options - AppendBlobClientAppendBlockOptions contains the optional parameters for the AppendBlobClient.AppendBlock method.
@@ -122,7 +122,7 @@ func (client *AppendBlobClient) appendBlockCreateRequest(ctx context.Context, co
 	if options != nil && options.StructuredContentLength != nil {
 		req.Raw().Header["x-ms-structured-content-length"] = []string{strconv.FormatInt(*options.StructuredContentLength, 10)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, "application/octet-stream"); err != nil {
 		return nil, err
 	}
@@ -207,7 +207,7 @@ func (client *AppendBlobClient) appendBlockHandleResponse(resp *http.Response) (
 // created with x-ms-blob-type set to AppendBlob. Append Block is supported only on version 2015-02-21 version or later.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - sourceURL - Specify a URL to the copy source.
 //   - contentLength - The length of the request.
 //   - options - AppendBlobClientAppendBlockFromURLOptions contains the optional parameters for the AppendBlobClient.AppendBlockFromURL
@@ -322,7 +322,7 @@ func (client *AppendBlobClient) appendBlockFromURLCreateRequest(ctx context.Cont
 	if options != nil && options.SourceRange != nil {
 		req.Raw().Header["x-ms-source-range"] = []string{*options.SourceRange}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -396,7 +396,7 @@ func (client *AppendBlobClient) appendBlockFromURLHandleResponse(resp *http.Resp
 // Create - The Create Append Blob operation creates a new append blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - options - AppendBlobClientCreateOptions contains the optional parameters for the AppendBlobClient.Create method.
 //   - BlobHTTPHeaders - BlobHTTPHeaders contains a group of parameters for the BlobClient.SetHTTPHeaders method.
@@ -506,7 +506,7 @@ func (client *AppendBlobClient) createCreateRequest(ctx context.Context, content
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -569,7 +569,7 @@ func (client *AppendBlobClient) createHandleResponse(resp *http.Response) (Appen
 // or later.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - AppendBlobClientSealOptions contains the optional parameters for the AppendBlobClient.Seal method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -627,7 +627,7 @@ func (client *AppendBlobClient) sealCreateRequest(ctx context.Context, options *
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blob_client.go
index b0dd56bb7b..bfe414503d 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blob_client.go
@@ -29,7 +29,7 @@ type BlobClient struct {
 // blob with zero length and full metadata.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - copyID - The copy identifier provided in the x-ms-copy-id header of the original Copy Blob operation.
 //   - options - BlobClientAbortCopyFromURLOptions contains the optional parameters for the BlobClient.AbortCopyFromURL method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -72,7 +72,7 @@ func (client *BlobClient) abortCopyFromURLCreateRequest(ctx context.Context, cop
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -101,7 +101,7 @@ func (client *BlobClient) abortCopyFromURLHandleResponse(resp *http.Response) (B
 // AcquireLease - [Update] The Lease Blob operation establishes and manages a lock on a blob for write and delete operations
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - duration - Specifies the duration of the lease, in seconds, or negative one (-1) for a lease that never expires. A non-infinite
 //     lease can be between 15 and 60 seconds. A lease duration cannot be changed using
 //     renew or change.
@@ -161,7 +161,7 @@ func (client *BlobClient) acquireLeaseCreateRequest(ctx context.Context, duratio
 	if options != nil && options.ProposedLeaseID != nil {
 		req.Raw().Header["x-ms-proposed-lease-id"] = []string{*options.ProposedLeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -203,7 +203,7 @@ func (client *BlobClient) acquireLeaseHandleResponse(resp *http.Response) (BlobC
 // BreakLease - [Update] The Lease Blob operation establishes and manages a lock on a blob for write and delete operations
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientBreakLeaseOptions contains the optional parameters for the BlobClient.BreakLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
 func (client *BlobClient) BreakLease(ctx context.Context, options *BlobClientBreakLeaseOptions, modifiedAccessConditions *ModifiedAccessConditions) (BlobClientBreakLeaseResponse, error) {
@@ -259,7 +259,7 @@ func (client *BlobClient) breakLeaseCreateRequest(ctx context.Context, options *
 	if options != nil && options.BreakPeriod != nil {
 		req.Raw().Header["x-ms-lease-break-period"] = []string{strconv.FormatInt(int64(*options.BreakPeriod), 10)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -306,7 +306,7 @@ func (client *BlobClient) breakLeaseHandleResponse(resp *http.Response) (BlobCli
 // ChangeLease - [Update] The Lease Blob operation establishes and manages a lock on a blob for write and delete operations
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - proposedLeaseID - Proposed lease ID, in a GUID string format. The Blob service returns 400 (Invalid request) if the proposed
 //     lease ID is not in the correct format. See Guid Constructor (String) for a list of valid GUID
@@ -365,7 +365,7 @@ func (client *BlobClient) changeLeaseCreateRequest(ctx context.Context, leaseID
 	req.Raw().Header["x-ms-lease-action"] = []string{"change"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
 	req.Raw().Header["x-ms-proposed-lease-id"] = []string{proposedLeaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -408,7 +408,7 @@ func (client *BlobClient) changeLeaseHandleResponse(resp *http.Response) (BlobCl
 // until the copy is complete.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - copySource - Specifies the name of the source page blob snapshot. This value is a URL of up to 2 KB in length that specifies
 //     a page blob snapshot. The value should be URL-encoded as it would appear in a request
 //     URI. The source blob must either be public or must be authenticated via a shared access signature.
@@ -520,7 +520,7 @@ func (client *BlobClient) copyFromURLCreateRequest(ctx context.Context, copySour
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -585,7 +585,7 @@ func (client *BlobClient) copyFromURLHandleResponse(resp *http.Response) (BlobCl
 // CreateSnapshot - The Create Snapshot operation creates a read-only snapshot of a blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientCreateSnapshotOptions contains the optional parameters for the BlobClient.CreateSnapshot method.
 //   - CPKInfo - CPKInfo contains a group of parameters for the BlobClient.Download method.
 //   - CPKScopeInfo - CPKScopeInfo contains a group of parameters for the BlobClient.SetMetadata method.
@@ -662,7 +662,7 @@ func (client *BlobClient) createSnapshotCreateRequest(ctx context.Context, optio
 			}
 		}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -724,7 +724,7 @@ func (client *BlobClient) createSnapshotHandleResponse(resp *http.Response) (Blo
 // return an HTTP status code of 404 (ResourceNotFound).
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientDeleteOptions contains the optional parameters for the BlobClient.Delete method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -791,7 +791,7 @@ func (client *BlobClient) deleteCreateRequest(ctx context.Context, options *Blob
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -820,7 +820,7 @@ func (client *BlobClient) deleteHandleResponse(resp *http.Response) (BlobClientD
 // DeleteImmutabilityPolicy - The Delete Immutability Policy operation deletes the immutability policy on the blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientDeleteImmutabilityPolicyOptions contains the optional parameters for the BlobClient.DeleteImmutabilityPolicy
 //     method.
 func (client *BlobClient) DeleteImmutabilityPolicy(ctx context.Context, options *BlobClientDeleteImmutabilityPolicyOptions) (BlobClientDeleteImmutabilityPolicyResponse, error) {
@@ -863,7 +863,7 @@ func (client *BlobClient) deleteImmutabilityPolicyCreateRequest(ctx context.Cont
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -893,7 +893,7 @@ func (client *BlobClient) deleteImmutabilityPolicyHandleResponse(resp *http.Resp
 // can also call Download to read a snapshot.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientDownloadOptions contains the optional parameters for the BlobClient.Download method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - CPKInfo - CPKInfo contains a group of parameters for the BlobClient.Download method.
@@ -977,7 +977,7 @@ func (client *BlobClient) downloadCreateRequest(ctx context.Context, options *Bl
 	if options != nil && options.StructuredBodyType != nil {
 		req.Raw().Header["x-ms-structured-body"] = []string{*options.StructuredBodyType}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1214,7 +1214,7 @@ func (client *BlobClient) downloadHandleResponse(resp *http.Response) (BlobClien
 // GetAccountInfo - Returns the sku name and account kind
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientGetAccountInfoOptions contains the optional parameters for the BlobClient.GetAccountInfo method.
 func (client *BlobClient) GetAccountInfo(ctx context.Context, options *BlobClientGetAccountInfoOptions) (BlobClientGetAccountInfoResponse, error) {
 	var err error
@@ -1251,7 +1251,7 @@ func (client *BlobClient) getAccountInfoCreateRequest(ctx context.Context, optio
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1294,7 +1294,7 @@ func (client *BlobClient) getAccountInfoHandleResponse(resp *http.Response) (Blo
 // for the blob. It does not return the content of the blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientGetPropertiesOptions contains the optional parameters for the BlobClient.GetProperties method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - CPKInfo - CPKInfo contains a group of parameters for the BlobClient.Download method.
@@ -1365,7 +1365,7 @@ func (client *BlobClient) getPropertiesCreateRequest(ctx context.Context, option
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1612,13 +1612,14 @@ func (client *BlobClient) getPropertiesHandleResponse(resp *http.Response) (Blob
 // GetTags - The Get Tags operation enables users to get the tags associated with a blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientGetTagsOptions contains the optional parameters for the BlobClient.GetTags method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
-func (client *BlobClient) GetTags(ctx context.Context, options *BlobClientGetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions) (BlobClientGetTagsResponse, error) {
+//   - BlobModifiedAccessConditions - BlobModifiedAccessConditions contains a group of parameters for the BlobClient.GetTags method.
+func (client *BlobClient) GetTags(ctx context.Context, options *BlobClientGetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions, blobModifiedAccessConditions *BlobModifiedAccessConditions) (BlobClientGetTagsResponse, error) {
 	var err error
-	req, err := client.getTagsCreateRequest(ctx, options, modifiedAccessConditions, leaseAccessConditions)
+	req, err := client.getTagsCreateRequest(ctx, options, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions)
 	if err != nil {
 		return BlobClientGetTagsResponse{}, err
 	}
@@ -1635,7 +1636,7 @@ func (client *BlobClient) GetTags(ctx context.Context, options *BlobClientGetTag
 }
 
 // getTagsCreateRequest creates the GetTags request.
-func (client *BlobClient) getTagsCreateRequest(ctx context.Context, options *BlobClientGetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions) (*policy.Request, error) {
+func (client *BlobClient) getTagsCreateRequest(ctx context.Context, options *BlobClientGetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions, blobModifiedAccessConditions *BlobModifiedAccessConditions) (*policy.Request, error) {
 	req, err := runtime.NewRequest(ctx, http.MethodGet, client.endpoint)
 	if err != nil {
 		return nil, err
@@ -1653,6 +1654,18 @@ func (client *BlobClient) getTagsCreateRequest(ctx context.Context, options *Blo
 	}
 	req.Raw().URL.RawQuery = reqQP.Encode()
 	req.Raw().Header["Accept"] = []string{"application/xml"}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfMatch != nil {
+		req.Raw().Header["x-ms-blob-if-match"] = []string{string(*blobModifiedAccessConditions.IfMatch)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfModifiedSince != nil {
+		req.Raw().Header["x-ms-blob-if-modified-since"] = []string{blobModifiedAccessConditions.IfModifiedSince.Format(time.RFC1123)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfNoneMatch != nil {
+		req.Raw().Header["x-ms-blob-if-none-match"] = []string{string(*blobModifiedAccessConditions.IfNoneMatch)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfUnmodifiedSince != nil {
+		req.Raw().Header["x-ms-blob-if-unmodified-since"] = []string{blobModifiedAccessConditions.IfUnmodifiedSince.Format(time.RFC1123)}
+	}
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
@@ -1662,7 +1675,7 @@ func (client *BlobClient) getTagsCreateRequest(ctx context.Context, options *Blo
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1694,7 +1707,7 @@ func (client *BlobClient) getTagsHandleResponse(resp *http.Response) (BlobClient
 // Query - The Query operation enables users to select/project on blob data by providing simple query expressions.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientQueryOptions contains the optional parameters for the BlobClient.Query method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - CPKInfo - CPKInfo contains a group of parameters for the BlobClient.Download method.
@@ -1764,7 +1777,7 @@ func (client *BlobClient) queryCreateRequest(ctx context.Context, options *BlobC
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if options != nil && options.QueryRequest != nil {
 		if err := runtime.MarshalAsXML(req, *options.QueryRequest); err != nil {
 			return nil, err
@@ -1928,7 +1941,7 @@ func (client *BlobClient) queryHandleResponse(resp *http.Response) (BlobClientQu
 // ReleaseLease - [Update] The Lease Blob operation establishes and manages a lock on a blob for write and delete operations
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - options - BlobClientReleaseLeaseOptions contains the optional parameters for the BlobClient.ReleaseLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -1983,7 +1996,7 @@ func (client *BlobClient) releaseLeaseCreateRequest(ctx context.Context, leaseID
 	}
 	req.Raw().Header["x-ms-lease-action"] = []string{"release"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2022,7 +2035,7 @@ func (client *BlobClient) releaseLeaseHandleResponse(resp *http.Response) (BlobC
 // RenewLease - [Update] The Lease Blob operation establishes and manages a lock on a blob for write and delete operations
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - options - BlobClientRenewLeaseOptions contains the optional parameters for the BlobClient.RenewLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -2077,7 +2090,7 @@ func (client *BlobClient) renewLeaseCreateRequest(ctx context.Context, leaseID s
 	}
 	req.Raw().Header["x-ms-lease-action"] = []string{"renew"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2119,7 +2132,7 @@ func (client *BlobClient) renewLeaseHandleResponse(resp *http.Response) (BlobCli
 // SetExpiry - Sets the time a blob will expire and be deleted.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - expiryOptions - Required. Indicates mode of the expiry time
 //   - options - BlobClientSetExpiryOptions contains the optional parameters for the BlobClient.SetExpiry method.
 func (client *BlobClient) SetExpiry(ctx context.Context, expiryOptions ExpiryOptions, options *BlobClientSetExpiryOptions) (BlobClientSetExpiryResponse, error) {
@@ -2160,7 +2173,7 @@ func (client *BlobClient) setExpiryCreateRequest(ctx context.Context, expiryOpti
 	if options != nil && options.ExpiresOn != nil {
 		req.Raw().Header["x-ms-expiry-time"] = []string{*options.ExpiresOn}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2199,7 +2212,7 @@ func (client *BlobClient) setExpiryHandleResponse(resp *http.Response) (BlobClie
 // SetHTTPHeaders - The Set HTTP Headers operation sets system properties on the blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientSetHTTPHeadersOptions contains the optional parameters for the BlobClient.SetHTTPHeaders method.
 //   - BlobHTTPHeaders - BlobHTTPHeaders contains a group of parameters for the BlobClient.SetHTTPHeaders method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -2274,7 +2287,7 @@ func (client *BlobClient) setHTTPHeadersCreateRequest(ctx context.Context, optio
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2320,7 +2333,7 @@ func (client *BlobClient) setHTTPHeadersHandleResponse(resp *http.Response) (Blo
 // SetImmutabilityPolicy - The Set Immutability Policy operation sets the immutability policy on the blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientSetImmutabilityPolicyOptions contains the optional parameters for the BlobClient.SetImmutabilityPolicy
 //     method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -2373,7 +2386,7 @@ func (client *BlobClient) setImmutabilityPolicyCreateRequest(ctx context.Context
 	if options != nil && options.ImmutabilityPolicyExpiry != nil {
 		req.Raw().Header["x-ms-immutability-policy-until-date"] = []string{(*options.ImmutabilityPolicyExpiry).In(gmt).Format(time.RFC1123)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2412,7 +2425,7 @@ func (client *BlobClient) setImmutabilityPolicyHandleResponse(resp *http.Respons
 // SetLegalHold - The Set Legal Hold operation sets a legal hold on the blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - legalHold - Specified if a legal hold should be set on the blob.
 //   - options - BlobClientSetLegalHoldOptions contains the optional parameters for the BlobClient.SetLegalHold method.
 func (client *BlobClient) SetLegalHold(ctx context.Context, legalHold bool, options *BlobClientSetLegalHoldOptions) (BlobClientSetLegalHoldResponse, error) {
@@ -2456,7 +2469,7 @@ func (client *BlobClient) setLegalHoldCreateRequest(ctx context.Context, legalHo
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
 	req.Raw().Header["x-ms-legal-hold"] = []string{strconv.FormatBool(legalHold)}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2493,7 +2506,7 @@ func (client *BlobClient) setLegalHoldHandleResponse(resp *http.Response) (BlobC
 // pairs
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientSetMetadataOptions contains the optional parameters for the BlobClient.SetMetadata method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - CPKInfo - CPKInfo contains a group of parameters for the BlobClient.Download method.
@@ -2570,7 +2583,7 @@ func (client *BlobClient) setMetadataCreateRequest(ctx context.Context, options
 			}
 		}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2625,14 +2638,15 @@ func (client *BlobClient) setMetadataHandleResponse(resp *http.Response) (BlobCl
 // SetTags - The Set Tags operation enables users to set tags on a blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - tags - Blob tags
 //   - options - BlobClientSetTagsOptions contains the optional parameters for the BlobClient.SetTags method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
-func (client *BlobClient) SetTags(ctx context.Context, tags BlobTags, options *BlobClientSetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions) (BlobClientSetTagsResponse, error) {
+//   - BlobModifiedAccessConditions - BlobModifiedAccessConditions contains a group of parameters for the BlobClient.GetTags method.
+func (client *BlobClient) SetTags(ctx context.Context, tags BlobTags, options *BlobClientSetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions, blobModifiedAccessConditions *BlobModifiedAccessConditions) (BlobClientSetTagsResponse, error) {
 	var err error
-	req, err := client.setTagsCreateRequest(ctx, tags, options, modifiedAccessConditions, leaseAccessConditions)
+	req, err := client.setTagsCreateRequest(ctx, tags, options, modifiedAccessConditions, leaseAccessConditions, blobModifiedAccessConditions)
 	if err != nil {
 		return BlobClientSetTagsResponse{}, err
 	}
@@ -2649,7 +2663,7 @@ func (client *BlobClient) SetTags(ctx context.Context, tags BlobTags, options *B
 }
 
 // setTagsCreateRequest creates the SetTags request.
-func (client *BlobClient) setTagsCreateRequest(ctx context.Context, tags BlobTags, options *BlobClientSetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions) (*policy.Request, error) {
+func (client *BlobClient) setTagsCreateRequest(ctx context.Context, tags BlobTags, options *BlobClientSetTagsOptions, modifiedAccessConditions *ModifiedAccessConditions, leaseAccessConditions *LeaseAccessConditions, blobModifiedAccessConditions *BlobModifiedAccessConditions) (*policy.Request, error) {
 	req, err := runtime.NewRequest(ctx, http.MethodPut, client.endpoint)
 	if err != nil {
 		return nil, err
@@ -2667,6 +2681,18 @@ func (client *BlobClient) setTagsCreateRequest(ctx context.Context, tags BlobTag
 	if options != nil && options.TransactionalContentMD5 != nil {
 		req.Raw().Header["Content-MD5"] = []string{base64.StdEncoding.EncodeToString(options.TransactionalContentMD5)}
 	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfMatch != nil {
+		req.Raw().Header["x-ms-blob-if-match"] = []string{string(*blobModifiedAccessConditions.IfMatch)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfModifiedSince != nil {
+		req.Raw().Header["x-ms-blob-if-modified-since"] = []string{blobModifiedAccessConditions.IfModifiedSince.Format(time.RFC1123)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfNoneMatch != nil {
+		req.Raw().Header["x-ms-blob-if-none-match"] = []string{string(*blobModifiedAccessConditions.IfNoneMatch)}
+	}
+	if blobModifiedAccessConditions != nil && blobModifiedAccessConditions.IfUnmodifiedSince != nil {
+		req.Raw().Header["x-ms-blob-if-unmodified-since"] = []string{blobModifiedAccessConditions.IfUnmodifiedSince.Format(time.RFC1123)}
+	}
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
@@ -2679,7 +2705,7 @@ func (client *BlobClient) setTagsCreateRequest(ctx context.Context, tags BlobTag
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := runtime.MarshalAsXML(req, tags); err != nil {
 		return nil, err
 	}
@@ -2714,7 +2740,7 @@ func (client *BlobClient) setTagsHandleResponse(resp *http.Response) (BlobClient
 // storage type. This operation does not update the blob's ETag.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - tier - Indicates the tier to be set on the blob.
 //   - options - BlobClientSetTierOptions contains the optional parameters for the BlobClient.SetTier method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -2769,7 +2795,7 @@ func (client *BlobClient) setTierCreateRequest(ctx context.Context, tier AccessT
 	if options != nil && options.RehydratePriority != nil {
 		req.Raw().Header["x-ms-rehydrate-priority"] = []string{string(*options.RehydratePriority)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2791,7 +2817,7 @@ func (client *BlobClient) setTierHandleResponse(resp *http.Response) (BlobClient
 // StartCopyFromURL - The Start Copy From URL operation copies a blob or an internet resource to a new blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - copySource - Specifies the name of the source page blob snapshot. This value is a URL of up to 2 KB in length that specifies
 //     a page blob snapshot. The value should be URL-encoded as it would appear in a request
 //     URI. The source blob must either be public or must be authenticated via a shared access signature.
@@ -2895,7 +2921,7 @@ func (client *BlobClient) startCopyFromURLCreateRequest(ctx context.Context, cop
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -2943,7 +2969,7 @@ func (client *BlobClient) startCopyFromURLHandleResponse(resp *http.Response) (B
 // Undelete - Undelete a blob that was previously soft deleted
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - BlobClientUndeleteOptions contains the optional parameters for the BlobClient.Undelete method.
 func (client *BlobClient) Undelete(ctx context.Context, options *BlobClientUndeleteOptions) (BlobClientUndeleteResponse, error) {
 	var err error
@@ -2979,7 +3005,7 @@ func (client *BlobClient) undeleteCreateRequest(ctx context.Context, options *Bl
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blockblob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blockblob_client.go
index e61d6f55b1..70702f8567 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blockblob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_blockblob_client.go
@@ -33,7 +33,7 @@ type BlockBlobClient struct {
 // belong to.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - blocks - Blob Blocks.
 //   - options - BlockBlobClientCommitBlockListOptions contains the optional parameters for the BlockBlobClient.CommitBlockList
 //     method.
@@ -152,7 +152,7 @@ func (client *BlockBlobClient) commitBlockListCreateRequest(ctx context.Context,
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := runtime.MarshalAsXML(req, blocks); err != nil {
 		return nil, err
 	}
@@ -224,7 +224,7 @@ func (client *BlockBlobClient) commitBlockListHandleResponse(resp *http.Response
 // GetBlockList - The Get Block List operation retrieves the list of blocks that have been uploaded as part of a block blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - listType - Specifies whether to return the list of committed blocks, the list of uncommitted blocks, or both lists together.
 //   - options - BlockBlobClientGetBlockListOptions contains the optional parameters for the BlockBlobClient.GetBlockList method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -273,7 +273,7 @@ func (client *BlockBlobClient) getBlockListCreateRequest(ctx context.Context, li
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -329,7 +329,7 @@ func (client *BlockBlobClient) getBlockListHandleResponse(resp *http.Response) (
 // Block from URL API in conjunction with Put Block List.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - copySource - Specifies the name of the source page blob snapshot. This value is a URL of up to 2 KB in length that specifies
 //     a page blob snapshot. The value should be URL-encoded as it would appear in a request
@@ -473,7 +473,7 @@ func (client *BlockBlobClient) putBlobFromURLCreateRequest(ctx context.Context,
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -535,7 +535,7 @@ func (client *BlockBlobClient) putBlobFromURLHandleResponse(resp *http.Response)
 // StageBlock - The Stage Block operation creates a new block to be committed as part of a blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - blockID - A valid Base64 string value that identifies the block. Prior to encoding, the string must be less than or equal
 //     to 64 bytes in size. For a given blob, the length of the value specified for the blockid
 //     parameter must be the same size for each block.
@@ -608,7 +608,7 @@ func (client *BlockBlobClient) stageBlockCreateRequest(ctx context.Context, bloc
 	if options != nil && options.StructuredContentLength != nil {
 		req.Raw().Header["x-ms-structured-content-length"] = []string{strconv.FormatInt(*options.StructuredContentLength, 10)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, "application/octet-stream"); err != nil {
 		return nil, err
 	}
@@ -671,7 +671,7 @@ func (client *BlockBlobClient) stageBlockHandleResponse(resp *http.Response) (Bl
 // are read from a URL.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - blockID - A valid Base64 string value that identifies the block. Prior to encoding, the string must be less than or equal
 //     to 64 bytes in size. For a given blob, the length of the value specified for the blockid
 //     parameter must be the same size for each block.
@@ -763,7 +763,7 @@ func (client *BlockBlobClient) stageBlockFromURLCreateRequest(ctx context.Contex
 	if options != nil && options.SourceRange != nil {
 		req.Raw().Header["x-ms-source-range"] = []string{*options.SourceRange}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -822,7 +822,7 @@ func (client *BlockBlobClient) stageBlockFromURLHandleResponse(resp *http.Respon
 // the content of a block blob, use the Put Block List operation.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - body - Initial data
 //   - options - BlockBlobClientUploadOptions contains the optional parameters for the BlockBlobClient.Upload method.
@@ -948,7 +948,7 @@ func (client *BlockBlobClient) uploadCreateRequest(ctx context.Context, contentL
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, "application/octet-stream"); err != nil {
 		return nil, err
 	}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_container_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_container_client.go
index 238971dd87..9edddc7449 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_container_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_container_client.go
@@ -31,7 +31,7 @@ type ContainerClient struct {
 // to 60 seconds, or can be infinite
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - duration - Specifies the duration of the lease, in seconds, or negative one (-1) for a lease that never expires. A non-infinite
 //     lease can be between 15 and 60 seconds. A lease duration cannot be changed using
 //     renew or change.
@@ -83,7 +83,7 @@ func (client *ContainerClient) acquireLeaseCreateRequest(ctx context.Context, du
 	if options != nil && options.ProposedLeaseID != nil {
 		req.Raw().Header["x-ms-proposed-lease-id"] = []string{*options.ProposedLeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -126,7 +126,7 @@ func (client *ContainerClient) acquireLeaseHandleResponse(resp *http.Response) (
 // to 60 seconds, or can be infinite
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientBreakLeaseOptions contains the optional parameters for the ContainerClient.BreakLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
 func (client *ContainerClient) BreakLease(ctx context.Context, options *ContainerClientBreakLeaseOptions, modifiedAccessConditions *ModifiedAccessConditions) (ContainerClientBreakLeaseResponse, error) {
@@ -174,7 +174,7 @@ func (client *ContainerClient) breakLeaseCreateRequest(ctx context.Context, opti
 	if options != nil && options.BreakPeriod != nil {
 		req.Raw().Header["x-ms-lease-break-period"] = []string{strconv.FormatInt(int64(*options.BreakPeriod), 10)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -222,7 +222,7 @@ func (client *ContainerClient) breakLeaseHandleResponse(resp *http.Response) (Co
 // to 60 seconds, or can be infinite
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - proposedLeaseID - Proposed lease ID, in a GUID string format. The Blob service returns 400 (Invalid request) if the proposed
 //     lease ID is not in the correct format. See Guid Constructor (String) for a list of valid GUID
@@ -273,7 +273,7 @@ func (client *ContainerClient) changeLeaseCreateRequest(ctx context.Context, lea
 	req.Raw().Header["x-ms-lease-action"] = []string{"change"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
 	req.Raw().Header["x-ms-proposed-lease-id"] = []string{proposedLeaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -316,7 +316,7 @@ func (client *ContainerClient) changeLeaseHandleResponse(resp *http.Response) (C
 // fails
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientCreateOptions contains the optional parameters for the ContainerClient.Create method.
 //   - ContainerCPKScopeInfo - ContainerCPKScopeInfo contains a group of parameters for the ContainerClient.Create method.
 func (client *ContainerClient) Create(ctx context.Context, options *ContainerClientCreateOptions, containerCPKScopeInfo *ContainerCPKScopeInfo) (ContainerClientCreateResponse, error) {
@@ -369,7 +369,7 @@ func (client *ContainerClient) createCreateRequest(ctx context.Context, options
 			}
 		}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -409,7 +409,7 @@ func (client *ContainerClient) createHandleResponse(resp *http.Response) (Contai
 // deleted during garbage collection
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientDeleteOptions contains the optional parameters for the ContainerClient.Delete method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -456,7 +456,7 @@ func (client *ContainerClient) deleteCreateRequest(ctx context.Context, options
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -486,7 +486,7 @@ func (client *ContainerClient) deleteHandleResponse(resp *http.Response) (Contai
 // Filter blobs searches within the given container.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - where - Filters the results to return only to return only blobs whose tags match the specified expression.
 //   - options - ContainerClientFilterBlobsOptions contains the optional parameters for the ContainerClient.FilterBlobs method.
 func (client *ContainerClient) FilterBlobs(ctx context.Context, where string, options *ContainerClientFilterBlobsOptions) (ContainerClientFilterBlobsResponse, error) {
@@ -534,7 +534,7 @@ func (client *ContainerClient) filterBlobsCreateRequest(ctx context.Context, whe
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -567,7 +567,7 @@ func (client *ContainerClient) filterBlobsHandleResponse(resp *http.Response) (C
 // be accessed publicly.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientGetAccessPolicyOptions contains the optional parameters for the ContainerClient.GetAccessPolicy
 //     method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -609,7 +609,7 @@ func (client *ContainerClient) getAccessPolicyCreateRequest(ctx context.Context,
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -654,7 +654,7 @@ func (client *ContainerClient) getAccessPolicyHandleResponse(resp *http.Response
 // GetAccountInfo - Returns the sku name and account kind
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientGetAccountInfoOptions contains the optional parameters for the ContainerClient.GetAccountInfo
 //     method.
 func (client *ContainerClient) GetAccountInfo(ctx context.Context, options *ContainerClientGetAccountInfoOptions) (ContainerClientGetAccountInfoResponse, error) {
@@ -692,7 +692,7 @@ func (client *ContainerClient) getAccountInfoCreateRequest(ctx context.Context,
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -735,7 +735,7 @@ func (client *ContainerClient) getAccountInfoHandleResponse(resp *http.Response)
 // does not include the container's list of blobs
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientGetPropertiesOptions contains the optional parameters for the ContainerClient.GetProperties method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 func (client *ContainerClient) GetProperties(ctx context.Context, options *ContainerClientGetPropertiesOptions, leaseAccessConditions *LeaseAccessConditions) (ContainerClientGetPropertiesResponse, error) {
@@ -775,7 +775,7 @@ func (client *ContainerClient) getPropertiesCreateRequest(ctx context.Context, o
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -864,7 +864,7 @@ func (client *ContainerClient) getPropertiesHandleResponse(resp *http.Response)
 
 // NewListBlobFlatSegmentPager - [Update] The List Blobs operation returns a list of the blobs under the specified container
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientListBlobFlatSegmentOptions contains the optional parameters for the ContainerClient.NewListBlobFlatSegmentPager
 //     method.
 //
@@ -889,6 +889,9 @@ func (client *ContainerClient) ListBlobFlatSegmentCreateRequest(ctx context.Cont
 		reqQP.Set("prefix", *options.Prefix)
 	}
 	reqQP.Set("restype", "container")
+	if options != nil && options.StartFrom != nil {
+		reqQP.Set("startFrom", *options.StartFrom)
+	}
 	if options != nil && options.Timeout != nil {
 		reqQP.Set("timeout", strconv.FormatInt(int64(*options.Timeout), 10))
 	}
@@ -897,7 +900,7 @@ func (client *ContainerClient) ListBlobFlatSegmentCreateRequest(ctx context.Cont
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -931,7 +934,7 @@ func (client *ContainerClient) ListBlobFlatSegmentHandleResponse(resp *http.Resp
 
 // NewListBlobHierarchySegmentPager - [Update] The List Blobs operation returns a list of the blobs under the specified container
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - delimiter - When the request includes this parameter, the operation returns a BlobPrefix element in the response body that
 //     acts as a placeholder for all blobs whose names begin with the same substring up to the
 //     appearance of the delimiter character. The delimiter may be a single character or a string.
@@ -980,6 +983,9 @@ func (client *ContainerClient) ListBlobHierarchySegmentCreateRequest(ctx context
 		reqQP.Set("prefix", *options.Prefix)
 	}
 	reqQP.Set("restype", "container")
+	if options != nil && options.StartFrom != nil {
+		reqQP.Set("startFrom", *options.StartFrom)
+	}
 	if options != nil && options.Timeout != nil {
 		reqQP.Set("timeout", strconv.FormatInt(int64(*options.Timeout), 10))
 	}
@@ -988,7 +994,7 @@ func (client *ContainerClient) ListBlobHierarchySegmentCreateRequest(ctx context
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1024,7 +1030,7 @@ func (client *ContainerClient) ListBlobHierarchySegmentHandleResponse(resp *http
 // to 60 seconds, or can be infinite
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - options - ContainerClientReleaseLeaseOptions contains the optional parameters for the ContainerClient.ReleaseLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -1071,7 +1077,7 @@ func (client *ContainerClient) releaseLeaseCreateRequest(ctx context.Context, le
 	}
 	req.Raw().Header["x-ms-lease-action"] = []string{"release"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1110,7 +1116,7 @@ func (client *ContainerClient) releaseLeaseHandleResponse(resp *http.Response) (
 // Rename - Renames an existing container.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - sourceContainerName - Required. Specifies the name of the container to rename.
 //   - options - ContainerClientRenameOptions contains the optional parameters for the ContainerClient.Rename method.
 func (client *ContainerClient) Rename(ctx context.Context, sourceContainerName string, options *ContainerClientRenameOptions) (ContainerClientRenameResponse, error) {
@@ -1152,7 +1158,7 @@ func (client *ContainerClient) renameCreateRequest(ctx context.Context, sourceCo
 	if options != nil && options.SourceLeaseID != nil {
 		req.Raw().Header["x-ms-source-lease-id"] = []string{*options.SourceLeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1182,7 +1188,7 @@ func (client *ContainerClient) renameHandleResponse(resp *http.Response) (Contai
 // to 60 seconds, or can be infinite
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - leaseID - Specifies the current lease ID on the resource.
 //   - options - ContainerClientRenewLeaseOptions contains the optional parameters for the ContainerClient.RenewLease method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -1229,7 +1235,7 @@ func (client *ContainerClient) renewLeaseCreateRequest(ctx context.Context, leas
 	}
 	req.Raw().Header["x-ms-lease-action"] = []string{"renew"}
 	req.Raw().Header["x-ms-lease-id"] = []string{leaseID}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1271,7 +1277,7 @@ func (client *ContainerClient) renewLeaseHandleResponse(resp *http.Response) (Co
 // Restore - Restores a previously-deleted container.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientRestoreOptions contains the optional parameters for the ContainerClient.Restore method.
 func (client *ContainerClient) Restore(ctx context.Context, options *ContainerClientRestoreOptions) (ContainerClientRestoreResponse, error) {
 	var err error
@@ -1314,7 +1320,7 @@ func (client *ContainerClient) restoreCreateRequest(ctx context.Context, options
 	if options != nil && options.DeletedContainerVersion != nil {
 		req.Raw().Header["x-ms-deleted-container-version"] = []string{*options.DeletedContainerVersion}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1344,7 +1350,7 @@ func (client *ContainerClient) restoreHandleResponse(resp *http.Response) (Conta
 // may be accessed publicly.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - containerACL - the acls for the container
 //   - options - ContainerClientSetAccessPolicyOptions contains the optional parameters for the ContainerClient.SetAccessPolicy
 //     method.
@@ -1397,7 +1403,7 @@ func (client *ContainerClient) setAccessPolicyCreateRequest(ctx context.Context,
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	type wrapper struct {
 		XMLName      xml.Name             `xml:"SignedIdentifiers"`
 		ContainerACL *[]*SignedIdentifier `xml:"SignedIdentifier"`
@@ -1443,7 +1449,7 @@ func (client *ContainerClient) setAccessPolicyHandleResponse(resp *http.Response
 // SetMetadata - operation sets one or more user-defined name-value pairs for the specified container.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ContainerClientSetMetadataOptions contains the optional parameters for the ContainerClient.SetMetadata method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
 //   - ModifiedAccessConditions - ModifiedAccessConditions contains a group of parameters for the ContainerClient.Delete method.
@@ -1495,7 +1501,7 @@ func (client *ContainerClient) setMetadataCreateRequest(ctx context.Context, opt
 			}
 		}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -1534,7 +1540,7 @@ func (client *ContainerClient) setMetadataHandleResponse(resp *http.Response) (C
 // SubmitBatch - The Batch operation allows multiple API calls to be embedded into a single HTTP request.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - multipartContentType - Required. The value of this header must be multipart/mixed with a batch boundary. Example header
 //     value: multipart/mixed; boundary=batch_
@@ -1578,7 +1584,7 @@ func (client *ContainerClient) submitBatchCreateRequest(ctx context.Context, con
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, multipartContentType); err != nil {
 		return nil, err
 	}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models.go
index 803b2858e8..041faeaeaf 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models.go
@@ -490,7 +490,10 @@ type StaticWebsite struct {
 }
 
 type StorageError struct {
-	Message *string
+	CopySourceErrorCode    *string
+	CopySourceErrorMessage *string
+	CopySourceStatusCode   *int32
+	Message                *string
 }
 
 // StorageServiceProperties - Storage Service Properties.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models_serde.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models_serde.go
index e2e64d6fff..b5e95803e2 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models_serde.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_models_serde.go
@@ -392,6 +392,9 @@ func (q QueryRequest) MarshalXML(enc *xml.Encoder, start xml.StartElement) error
 // MarshalJSON implements the json.Marshaller interface for type StorageError.
 func (s StorageError) MarshalJSON() ([]byte, error) {
 	objectMap := make(map[string]any)
+	populate(objectMap, "CopySourceErrorCode", s.CopySourceErrorCode)
+	populate(objectMap, "CopySourceErrorMessage", s.CopySourceErrorMessage)
+	populate(objectMap, "CopySourceStatusCode", s.CopySourceStatusCode)
 	populate(objectMap, "Message", s.Message)
 	return json.Marshal(objectMap)
 }
@@ -405,6 +408,15 @@ func (s *StorageError) UnmarshalJSON(data []byte) error {
 	for key, val := range rawMsg {
 		var err error
 		switch key {
+		case "CopySourceErrorCode":
+			err = unpopulate(val, "CopySourceErrorCode", &s.CopySourceErrorCode)
+			delete(rawMsg, key)
+		case "CopySourceErrorMessage":
+			err = unpopulate(val, "CopySourceErrorMessage", &s.CopySourceErrorMessage)
+			delete(rawMsg, key)
+		case "CopySourceStatusCode":
+			err = unpopulate(val, "CopySourceStatusCode", &s.CopySourceStatusCode)
+			delete(rawMsg, key)
 		case "Message":
 			err = unpopulate(val, "Message", &s.Message)
 			delete(rawMsg, key)
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_options.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_options.go
index 290c9e1cf3..5e7f72253a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_options.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_options.go
@@ -627,6 +627,21 @@ type BlobHTTPHeaders struct {
 	BlobContentType *string
 }
 
+// BlobModifiedAccessConditions contains a group of parameters for the BlobClient.GetTags method.
+type BlobModifiedAccessConditions struct {
+	// Specify an ETag value to operate only on blobs with a matching value.
+	IfMatch *azcore.ETag
+
+	// Specify this header value to operate only on a blob if it has been modified since the specified date/time.
+	IfModifiedSince *time.Time
+
+	// Specify an ETag value to operate only on blobs without a matching value.
+	IfNoneMatch *azcore.ETag
+
+	// Specify this header value to operate only on a blob if it has not been modified since the specified date/time.
+	IfUnmodifiedSince *time.Time
+}
+
 // BlockBlobClientCommitBlockListOptions contains the optional parameters for the BlockBlobClient.CommitBlockList method.
 type BlockBlobClientCommitBlockListOptions struct {
 	// Optional. Used to set blob tags in various blob operations.
@@ -990,6 +1005,10 @@ type ContainerClientListBlobFlatSegmentOptions struct {
 	// analytics logging is enabled.
 	RequestID *string
 
+	// Specifies the relative path to list paths from. For non-recursive list, only one entity level is supported; For recursive
+	// list, multiple entity levels are supported. (Inclusive)
+	StartFrom *string
+
 	// The timeout parameter is expressed in seconds. For more information, see Setting Timeouts for Blob Service Operations.
 	// [https://learn.microsoft.com/rest/api/storageservices/setting-timeouts-for-blob-service-operations]
 	Timeout *int32
@@ -1022,6 +1041,10 @@ type ContainerClientListBlobHierarchySegmentOptions struct {
 	// analytics logging is enabled.
 	RequestID *string
 
+	// Specifies the relative path to list paths from. For non-recursive list, only one entity level is supported; For recursive
+	// list, multiple entity levels are supported. (Inclusive)
+	StartFrom *string
+
 	// The timeout parameter is expressed in seconds. For more information, see Setting Timeouts for Blob Service Operations.
 	// [https://learn.microsoft.com/rest/api/storageservices/setting-timeouts-for-blob-service-operations]
 	Timeout *int32
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_pageblob_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_pageblob_client.go
index 4f2d45213b..077e63efef 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_pageblob_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_pageblob_client.go
@@ -27,7 +27,7 @@ type PageBlobClient struct {
 // ClearPages - The Clear Pages operation clears a set of pages from a page blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - options - PageBlobClientClearPagesOptions contains the optional parameters for the PageBlobClient.ClearPages method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -114,7 +114,7 @@ func (client *PageBlobClient) clearPagesCreateRequest(ctx context.Context, conte
 	if options != nil && options.Range != nil {
 		req.Raw().Header["x-ms-range"] = []string{*options.Range}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -178,7 +178,7 @@ func (client *PageBlobClient) clearPagesHandleResponse(resp *http.Response) (Pag
 // 2016-05-31.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - copySource - Specifies the name of the source page blob snapshot. This value is a URL of up to 2 KB in length that specifies
 //     a page blob snapshot. The value should be URL-encoded as it would appear in a request
 //     URI. The source blob must either be public or must be authenticated via a shared access signature.
@@ -235,7 +235,7 @@ func (client *PageBlobClient) copyIncrementalCreateRequest(ctx context.Context,
 	if modifiedAccessConditions != nil && modifiedAccessConditions.IfTags != nil {
 		req.Raw().Header["x-ms-if-tags"] = []string{*modifiedAccessConditions.IfTags}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -280,7 +280,7 @@ func (client *PageBlobClient) copyIncrementalHandleResponse(resp *http.Response)
 // Create - The Create operation creates a new page blob.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - blobContentLength - This header specifies the maximum size for the page blob, up to 1 TB. The page blob size must be aligned
 //     to a 512-byte boundary.
@@ -399,7 +399,7 @@ func (client *PageBlobClient) createCreateRequest(ctx context.Context, contentLe
 	if options != nil && options.BlobTagsString != nil {
 		req.Raw().Header["x-ms-tags"] = []string{*options.BlobTagsString}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -461,7 +461,7 @@ func (client *PageBlobClient) createHandleResponse(resp *http.Response) (PageBlo
 // NewGetPageRangesPager - The Get Page Ranges operation returns the list of valid page ranges for a page blob or snapshot
 // of a page blob
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - PageBlobClientGetPageRangesOptions contains the optional parameters for the PageBlobClient.NewGetPageRangesPager
 //     method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -533,7 +533,7 @@ func (client *PageBlobClient) GetPageRangesCreateRequest(ctx context.Context, op
 	if options != nil && options.Range != nil {
 		req.Raw().Header["x-ms-range"] = []string{*options.Range}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -582,7 +582,7 @@ func (client *PageBlobClient) GetPageRangesHandleResponse(resp *http.Response) (
 // NewGetPageRangesDiffPager - The Get Page Ranges Diff operation returns the list of valid page ranges for a page blob that
 // were changed between target blob and previous snapshot.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - PageBlobClientGetPageRangesDiffOptions contains the optional parameters for the PageBlobClient.NewGetPageRangesDiffPager
 //     method.
 //   - LeaseAccessConditions - LeaseAccessConditions contains a group of parameters for the ContainerClient.GetProperties method.
@@ -660,7 +660,7 @@ func (client *PageBlobClient) GetPageRangesDiffCreateRequest(ctx context.Context
 	if options != nil && options.Range != nil {
 		req.Raw().Header["x-ms-range"] = []string{*options.Range}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -709,7 +709,7 @@ func (client *PageBlobClient) GetPageRangesDiffHandleResponse(resp *http.Respons
 // Resize - Resize the Blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - blobContentLength - This header specifies the maximum size for the page blob, up to 1 TB. The page blob size must be aligned
 //     to a 512-byte boundary.
 //   - options - PageBlobClientResizeOptions contains the optional parameters for the PageBlobClient.Resize method.
@@ -782,7 +782,7 @@ func (client *PageBlobClient) resizeCreateRequest(ctx context.Context, blobConte
 	if leaseAccessConditions != nil && leaseAccessConditions.LeaseID != nil {
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -828,7 +828,7 @@ func (client *PageBlobClient) resizeHandleResponse(resp *http.Response) (PageBlo
 // UpdateSequenceNumber - Update the sequence number of the blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - sequenceNumberAction - Required if the x-ms-blob-sequence-number header is set for the request. This property applies to
 //     page blobs only. This property indicates how the service should modify the blob's sequence number
 //   - options - PageBlobClientUpdateSequenceNumberOptions contains the optional parameters for the PageBlobClient.UpdateSequenceNumber
@@ -891,7 +891,7 @@ func (client *PageBlobClient) updateSequenceNumberCreateRequest(ctx context.Cont
 		req.Raw().Header["x-ms-lease-id"] = []string{*leaseAccessConditions.LeaseID}
 	}
 	req.Raw().Header["x-ms-sequence-number-action"] = []string{string(sequenceNumberAction)}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -937,7 +937,7 @@ func (client *PageBlobClient) updateSequenceNumberHandleResponse(resp *http.Resp
 // UploadPages - The Upload Pages operation writes a range of pages to a page blob
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - body - Initial data
 //   - options - PageBlobClientUploadPagesOptions contains the optional parameters for the PageBlobClient.UploadPages method.
@@ -1037,7 +1037,7 @@ func (client *PageBlobClient) uploadPagesCreateRequest(ctx context.Context, cont
 	if options != nil && options.StructuredContentLength != nil {
 		req.Raw().Header["x-ms-structured-content-length"] = []string{strconv.FormatInt(*options.StructuredContentLength, 10)}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, "application/octet-stream"); err != nil {
 		return nil, err
 	}
@@ -1117,7 +1117,7 @@ func (client *PageBlobClient) uploadPagesHandleResponse(resp *http.Response) (Pa
 // a URL
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - sourceURL - Specify a URL to the copy source.
 //   - sourceRange - Bytes of source data in the specified range. The length of this range should match the ContentLength header
 //     and x-ms-range/Range destination range header.
@@ -1236,7 +1236,7 @@ func (client *PageBlobClient) uploadPagesFromURLCreateRequest(ctx context.Contex
 		req.Raw().Header["x-ms-source-if-unmodified-since"] = []string{(*sourceModifiedAccessConditions.SourceIfUnmodifiedSince).In(gmt).Format(time.RFC1123)}
 	}
 	req.Raw().Header["x-ms-source-range"] = []string{sourceRange}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_service_client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_service_client.go
index 3a3565e2b4..e0e4f89550 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_service_client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/generated/zz_service_client.go
@@ -30,7 +30,7 @@ type ServiceClient struct {
 // be scoped within the expression to a single container.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - where - Filters the results to return only to return only blobs whose tags match the specified expression.
 //   - options - ServiceClientFilterBlobsOptions contains the optional parameters for the ServiceClient.FilterBlobs method.
 func (client *ServiceClient) FilterBlobs(ctx context.Context, where string, options *ServiceClientFilterBlobsOptions) (ServiceClientFilterBlobsResponse, error) {
@@ -77,7 +77,7 @@ func (client *ServiceClient) filterBlobsCreateRequest(ctx context.Context, where
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -109,7 +109,7 @@ func (client *ServiceClient) filterBlobsHandleResponse(resp *http.Response) (Ser
 // GetAccountInfo - Returns the sku name and account kind
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ServiceClientGetAccountInfoOptions contains the optional parameters for the ServiceClient.GetAccountInfo method.
 func (client *ServiceClient) GetAccountInfo(ctx context.Context, options *ServiceClientGetAccountInfoOptions) (ServiceClientGetAccountInfoResponse, error) {
 	var err error
@@ -146,7 +146,7 @@ func (client *ServiceClient) getAccountInfoCreateRequest(ctx context.Context, op
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -189,7 +189,7 @@ func (client *ServiceClient) getAccountInfoHandleResponse(resp *http.Response) (
 // CORS (Cross-Origin Resource Sharing) rules.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ServiceClientGetPropertiesOptions contains the optional parameters for the ServiceClient.GetProperties method.
 func (client *ServiceClient) GetProperties(ctx context.Context, options *ServiceClientGetPropertiesOptions) (ServiceClientGetPropertiesResponse, error) {
 	var err error
@@ -226,7 +226,7 @@ func (client *ServiceClient) getPropertiesCreateRequest(ctx context.Context, opt
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -252,7 +252,7 @@ func (client *ServiceClient) getPropertiesHandleResponse(resp *http.Response) (S
 // location endpoint when read-access geo-redundant replication is enabled for the storage account.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ServiceClientGetStatisticsOptions contains the optional parameters for the ServiceClient.GetStatistics method.
 func (client *ServiceClient) GetStatistics(ctx context.Context, options *ServiceClientGetStatisticsOptions) (ServiceClientGetStatisticsResponse, error) {
 	var err error
@@ -289,7 +289,7 @@ func (client *ServiceClient) getStatisticsCreateRequest(ctx context.Context, opt
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -322,7 +322,7 @@ func (client *ServiceClient) getStatisticsHandleResponse(resp *http.Response) (S
 // bearer token authentication.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - keyInfo - Key information
 //   - options - ServiceClientGetUserDelegationKeyOptions contains the optional parameters for the ServiceClient.GetUserDelegationKey
 //     method.
@@ -361,7 +361,7 @@ func (client *ServiceClient) getUserDelegationKeyCreateRequest(ctx context.Conte
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := runtime.MarshalAsXML(req, keyInfo); err != nil {
 		return nil, err
 	}
@@ -396,7 +396,7 @@ func (client *ServiceClient) getUserDelegationKeyHandleResponse(resp *http.Respo
 // NewListContainersSegmentPager - The List Containers Segment operation returns a list of the containers under the specified
 // account
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - options - ServiceClientListContainersSegmentOptions contains the optional parameters for the ServiceClient.NewListContainersSegmentPager
 //     method.
 //
@@ -428,7 +428,7 @@ func (client *ServiceClient) ListContainersSegmentCreateRequest(ctx context.Cont
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	return req, nil
 }
 
@@ -454,7 +454,7 @@ func (client *ServiceClient) ListContainersSegmentHandleResponse(resp *http.Resp
 // and CORS (Cross-Origin Resource Sharing) rules
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - storageServiceProperties - The StorageService properties.
 //   - options - ServiceClientSetPropertiesOptions contains the optional parameters for the ServiceClient.SetProperties method.
 func (client *ServiceClient) SetProperties(ctx context.Context, storageServiceProperties StorageServiceProperties, options *ServiceClientSetPropertiesOptions) (ServiceClientSetPropertiesResponse, error) {
@@ -492,7 +492,7 @@ func (client *ServiceClient) setPropertiesCreateRequest(ctx context.Context, sto
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := runtime.MarshalAsXML(req, storageServiceProperties); err != nil {
 		return nil, err
 	}
@@ -517,7 +517,7 @@ func (client *ServiceClient) setPropertiesHandleResponse(resp *http.Response) (S
 // SubmitBatch - The Batch operation allows multiple API calls to be embedded into a single HTTP request.
 // If the operation fails it returns an *azcore.ResponseError type.
 //
-// Generated from API version 2025-11-05
+// Generated from API version 2026-02-06
 //   - contentLength - The length of the request.
 //   - multipartContentType - Required. The value of this header must be multipart/mixed with a batch boundary. Example header
 //     value: multipart/mixed; boundary=batch_
@@ -560,7 +560,7 @@ func (client *ServiceClient) submitBatchCreateRequest(ctx context.Context, conte
 	if options != nil && options.RequestID != nil {
 		req.Raw().Header["x-ms-client-request-id"] = []string{*options.RequestID}
 	}
-	req.Raw().Header["x-ms-version"] = []string{"2025-11-05"}
+	req.Raw().Header["x-ms-version"] = []string{"2026-02-06"}
 	if err := req.SetBody(body, multipartContentType); err != nil {
 		return nil, err
 	}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/batch_transfer.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/batch_transfer.go
index 5c44af34ae..7fc26f543d 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/batch_transfer.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/batch_transfer.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/buffer_manager.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/buffer_manager.go
index e3aa4a4886..706850fedb 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/buffer_manager.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/buffer_manager.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/bytes_writer.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/bytes_writer.go
index 8d4d35bdef..ed0bc2ae97 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/bytes_writer.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/bytes_writer.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/challenge_policy.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/challenge_policy.go
index fff61016c8..9a50f56c4e 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/challenge_policy.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/challenge_policy.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_unix.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_unix.go
index 072fd27b1d..7f878490ca 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_unix.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_unix.go
@@ -1,6 +1,4 @@
-//go:build go1.18 && (linux || darwin || dragonfly || freebsd || openbsd || netbsd || solaris || aix || zos)
-// +build go1.18
-// +build linux darwin dragonfly freebsd openbsd netbsd solaris aix zos
+//go:build linux || darwin || dragonfly || freebsd || openbsd || netbsd || solaris || aix || zos
 
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_windows.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_windows.go
index ef9fdc2a1f..8f1454ba55 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_windows.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/mmf_windows.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -9,7 +6,6 @@ package shared
 import (
 	"fmt"
 	"os"
-	"reflect"
 	"syscall"
 	"unsafe"
 )
@@ -35,11 +31,9 @@ func NewMMB(size int64) (Mmb, error) {
 		return nil, os.NewSyscallError("MapViewOfFile", err)
 	}
 
-	m := Mmb{}
-	h := (*reflect.SliceHeader)(unsafe.Pointer(&m))
-	h.Data = addr
-	h.Len = int(size)
-	h.Cap = h.Len
+	// go vet flags this as a false positive
+	// https://github.com/golang/go/issues/58625
+	m := unsafe.Slice((*byte)(unsafe.Pointer(addr)), int(size))
 	return m, nil
 }
 
@@ -49,8 +43,6 @@ func (m *Mmb) Delete() {
 	*m = Mmb{}
 	err := syscall.UnmapViewOfFile(addr)
 	if err != nil {
-		// if we get here, there is likely memory corruption.
-		// please open an issue https://github.com/Azure/azure-sdk-for-go/issues
 		panic(fmt.Sprintf("UnmapViewOfFile error: %v", err))
 	}
 }
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/section_writer.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/section_writer.go
index c8528a2e3e..df30561cee 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/section_writer.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/section_writer.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/shared.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/shared.go
index c7922076f3..6c22cdb40a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/shared.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/internal/shared/shared.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -231,12 +228,12 @@ func GetClientOptions[T any](o *T) *T {
 // http(s)://IP(:port)/storageaccount/container/...
 // As url's Host property, host could be both host or host:port
 func IsIPEndpointStyle(host string) bool {
-	if host == "" {
-		return false
-	}
 	if h, _, err := net.SplitHostPort(host); err == nil {
 		host = h
 	}
+	if host == "" {
+		return false
+	}
 	// For IPv6, there could be case where SplitHostPort fails for cannot finding port.
 	// In this case, eliminate the '[' and ']' in the URL.
 	// For details about IPv6 URL, please refer to https://tools.ietf.org/html/rfc2732
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/models.go
index 2896788e1f..764bad06ca 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/client.go
index 63ceac9792..ec2bc24fe5 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/constants.go
index 096a7910aa..b416cd306a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/models.go
index f327fae6de..fe2a9489d8 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/responses.go
index 876efbab1d..b7c732beed 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/pageblob/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/responses.go
index 86b05d098f..0d46661ac5 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/account.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/account.go
index 4069bb1320..cac13ebd8a 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/account.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/account.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/query_params.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/query_params.go
index 20f9875a96..831387ddde 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/query_params.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/query_params.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
@@ -117,34 +114,35 @@ func (ipr *IPRange) String() string {
 // This type defines the components used by all Azure Storage resources (Containers, Blobs, Files, & Queues).
 type QueryParameters struct {
 	// All members are immutable or values so copies of this struct are goroutine-safe.
-	version              string    `param:"sv"`
-	services             string    `param:"ss"`
-	resourceTypes        string    `param:"srt"`
-	protocol             Protocol  `param:"spr"`
-	startTime            time.Time `param:"st"`
-	expiryTime           time.Time `param:"se"`
-	snapshotTime         time.Time `param:"snapshot"`
-	ipRange              IPRange   `param:"sip"`
-	identifier           string    `param:"si"`
-	resource             string    `param:"sr"`
-	permissions          string    `param:"sp"`
-	signature            string    `param:"sig"`
-	cacheControl         string    `param:"rscc"`
-	contentDisposition   string    `param:"rscd"`
-	contentEncoding      string    `param:"rsce"`
-	contentLanguage      string    `param:"rscl"`
-	contentType          string    `param:"rsct"`
-	signedOID            string    `param:"skoid"`
-	signedTID            string    `param:"sktid"`
-	signedStart          time.Time `param:"skt"`
-	signedService        string    `param:"sks"`
-	signedExpiry         time.Time `param:"ske"`
-	signedVersion        string    `param:"skv"`
-	signedDirectoryDepth string    `param:"sdd"`
-	authorizedObjectID   string    `param:"saoid"`
-	unauthorizedObjectID string    `param:"suoid"`
-	correlationID        string    `param:"scid"`
-	encryptionScope      string    `param:"ses"`
+	version                     string    `param:"sv"`
+	services                    string    `param:"ss"`
+	resourceTypes               string    `param:"srt"`
+	protocol                    Protocol  `param:"spr"`
+	startTime                   time.Time `param:"st"`
+	expiryTime                  time.Time `param:"se"`
+	snapshotTime                time.Time `param:"snapshot"`
+	ipRange                     IPRange   `param:"sip"`
+	identifier                  string    `param:"si"`
+	resource                    string    `param:"sr"`
+	permissions                 string    `param:"sp"`
+	signature                   string    `param:"sig"`
+	cacheControl                string    `param:"rscc"`
+	contentDisposition          string    `param:"rscd"`
+	contentEncoding             string    `param:"rsce"`
+	contentLanguage             string    `param:"rscl"`
+	contentType                 string    `param:"rsct"`
+	signedOID                   string    `param:"skoid"`
+	signedTID                   string    `param:"sktid"`
+	signedStart                 time.Time `param:"skt"`
+	signedService               string    `param:"sks"`
+	signedExpiry                time.Time `param:"ske"`
+	signedVersion               string    `param:"skv"`
+	signedDirectoryDepth        string    `param:"sdd"`
+	authorizedObjectID          string    `param:"saoid"`
+	unauthorizedObjectID        string    `param:"suoid"`
+	correlationID               string    `param:"scid"`
+	encryptionScope             string    `param:"ses"`
+	signedDelegatedUserObjectID string    `param:"sduoid"`
 	// private member used for startTime and expiryTime formatting.
 	stTimeFormat string
 	seTimeFormat string
@@ -290,6 +288,11 @@ func (p *QueryParameters) SignedDirectoryDepth() string {
 	return p.signedDirectoryDepth
 }
 
+// SignedDelegatedUserObjectID returns SignedDelegatedUserObjectID
+func (p *QueryParameters) SignedDelegatedUserObjectID() string {
+	return p.signedDelegatedUserObjectID
+}
+
 // Encode encodes the SAS query parameters into URL encoded form sorted by key.
 func (p *QueryParameters) Encode() string {
 	v := url.Values{}
@@ -365,6 +368,9 @@ func (p *QueryParameters) Encode() string {
 	if p.encryptionScope != "" {
 		v.Add("ses", p.encryptionScope)
 	}
+	if p.signedDelegatedUserObjectID != "" {
+		v.Add("sduoid", p.signedDelegatedUserObjectID)
+	}
 
 	return v.Encode()
 }
@@ -441,6 +447,8 @@ func NewQueryParameters(values url.Values, deleteSASParametersFromValues bool) Q
 			p.correlationID = val
 		case "ses":
 			p.encryptionScope = val
+		case "sduoid":
+			p.signedDelegatedUserObjectID = val
 		default:
 			isSASKey = false // We didn't recognize the query parameter
 		}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/service.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/service.go
index 64133458d4..e8213faf0d 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/service.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/service.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License.
 
@@ -20,27 +17,28 @@ import (
 // For more information on creating service sas, see https://docs.microsoft.com/rest/api/storageservices/constructing-a-service-sas
 // For more information on creating user delegation sas, see https://docs.microsoft.com/rest/api/storageservices/create-user-delegation-sas
 type BlobSignatureValues struct {
-	Version              string    `param:"sv"`  // If not specified, this defaults to Version
-	Protocol             Protocol  `param:"spr"` // See the Protocol* constants
-	StartTime            time.Time `param:"st"`  // Not specified if IsZero
-	ExpiryTime           time.Time `param:"se"`  // Not specified if IsZero
-	SnapshotTime         time.Time
-	Permissions          string  `param:"sp"` // Create by initializing ContainerPermissions or BlobPermissions and then call String()
-	IPRange              IPRange `param:"sip"`
-	Identifier           string  `param:"si"`
-	ContainerName        string
-	BlobName             string // Use "" to create a Container SAS
-	Directory            string // Not nil for a directory SAS (ie sr=d)
-	CacheControl         string // rscc
-	ContentDisposition   string // rscd
-	ContentEncoding      string // rsce
-	ContentLanguage      string // rscl
-	ContentType          string // rsct
-	BlobVersion          string // sr=bv
-	AuthorizedObjectID   string // saoid
-	UnauthorizedObjectID string // suoid
-	CorrelationID        string // scid
-	EncryptionScope      string `param:"ses"`
+	Version                     string    `param:"sv"`  // If not specified, this defaults to Version
+	Protocol                    Protocol  `param:"spr"` // See the Protocol* constants
+	StartTime                   time.Time `param:"st"`  // Not specified if IsZero
+	ExpiryTime                  time.Time `param:"se"`  // Not specified if IsZero
+	SnapshotTime                time.Time
+	Permissions                 string  `param:"sp"` // Create by initializing ContainerPermissions or BlobPermissions and then call String()
+	IPRange                     IPRange `param:"sip"`
+	Identifier                  string  `param:"si"`
+	ContainerName               string
+	BlobName                    string // Use "" to create a Container SAS
+	Directory                   string // Not nil for a directory SAS (ie sr=d)
+	CacheControl                string // rscc
+	ContentDisposition          string // rscd
+	ContentEncoding             string // rsce
+	ContentLanguage             string // rscl
+	ContentType                 string // rsct
+	BlobVersion                 string // sr=bv
+	AuthorizedObjectID          string // saoid
+	UnauthorizedObjectID        string // suoid
+	CorrelationID               string // scid
+	EncryptionScope             string `param:"ses"`
+	SignedDelegatedUserObjectID string // sduoid
 }
 
 func getDirectoryDepth(path string) string {
@@ -210,8 +208,8 @@ func (v BlobSignatureValues) SignWithUserDelegation(userDelegationCredential *Us
 		v.AuthorizedObjectID,
 		v.UnauthorizedObjectID,
 		v.CorrelationID,
-		"", // Placeholder for SignedKeyDelegatedUserTenantId (future field)
-		"", // Placeholder for SignedDelegatedUserObjectId (future field)
+		"",                            // Placeholder for SignedKeyDelegatedUserTenantId (future field)
+		v.SignedDelegatedUserObjectID, // Placeholder for SignedDelegatedUserObjectID (future field)
 		v.IPRange.String(),
 		string(v.Protocol),
 		v.Version,
@@ -241,18 +239,19 @@ func (v BlobSignatureValues) SignWithUserDelegation(userDelegationCredential *Us
 		encryptionScope: v.EncryptionScope,
 
 		// Container/Blob-specific SAS parameters
-		resource:             resource,
-		identifier:           v.Identifier,
-		cacheControl:         v.CacheControl,
-		contentDisposition:   v.ContentDisposition,
-		contentEncoding:      v.ContentEncoding,
-		contentLanguage:      v.ContentLanguage,
-		contentType:          v.ContentType,
-		snapshotTime:         v.SnapshotTime,
-		signedDirectoryDepth: getDirectoryDepth(v.Directory),
-		authorizedObjectID:   v.AuthorizedObjectID,
-		unauthorizedObjectID: v.UnauthorizedObjectID,
-		correlationID:        v.CorrelationID,
+		resource:                    resource,
+		identifier:                  v.Identifier,
+		cacheControl:                v.CacheControl,
+		contentDisposition:          v.ContentDisposition,
+		contentEncoding:             v.ContentEncoding,
+		contentLanguage:             v.ContentLanguage,
+		contentType:                 v.ContentType,
+		snapshotTime:                v.SnapshotTime,
+		signedDirectoryDepth:        getDirectoryDepth(v.Directory),
+		authorizedObjectID:          v.AuthorizedObjectID,
+		unauthorizedObjectID:        v.UnauthorizedObjectID,
+		correlationID:               v.CorrelationID,
+		signedDelegatedUserObjectID: v.SignedDelegatedUserObjectID,
 		// Calculated SAS signature
 		signature: signature,
 	}
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/url_parts.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/url_parts.go
index 758739cb82..0d87394613 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/url_parts.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/sas/url_parts.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/batch_builder.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/batch_builder.go
index 924fd1081f..f00662f22b 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/batch_builder.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/batch_builder.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/client.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/client.go
index cf39c3d579..153b933548 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/client.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/client.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/constants.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/constants.go
index 20665fc2b7..322c2f8b47 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/constants.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/constants.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/models.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/models.go
index b70724d797..38a5397b60 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/models.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/models.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/responses.go b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/responses.go
index 2dbf971654..27b338aece 100644
--- a/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/responses.go
+++ b/vendor/github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/service/responses.go
@@ -1,6 +1,3 @@
-//go:build go1.18
-// +build go1.18
-
 // Copyright (c) Microsoft Corporation. All rights reserved.
 // Licensed under the MIT License. See License.txt in the project root for license information.
 
diff --git a/vendor/github.com/IBM/ibm-cos-sdk-go/aws/version.go b/vendor/github.com/IBM/ibm-cos-sdk-go/aws/version.go
index 086a32b793..14a44abd81 100644
--- a/vendor/github.com/IBM/ibm-cos-sdk-go/aws/version.go
+++ b/vendor/github.com/IBM/ibm-cos-sdk-go/aws/version.go
@@ -7,6 +7,6 @@ package aws
 const SDKName = "ibm-cos-sdk-go"
 
 // SDKVersion is the version of this SDK
-const SDKVersion = "1.12.4"
+const SDKVersion = "1.13.0"
 
 // IBM COS SDK Code -- END
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/aws/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/aws/go_module_metadata.go
index c9d0bdc4cd..0e6fb65a1e 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/aws/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/aws/go_module_metadata.go
@@ -3,4 +3,4 @@
 package aws
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.41.0"
+const goModuleVersion = "1.41.1"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/config/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/config/CHANGELOG.md
index 0d9b296e1d..9f8511f7eb 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/config/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/config/CHANGELOG.md
@@ -1,3 +1,11 @@
+# v1.32.7 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.32.6 (2025-12-16)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.32.5 (2025-12-09)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/config/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/config/go_module_metadata.go
index bb9399d5f3..79f570a68e 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/config/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/config/go_module_metadata.go
@@ -3,4 +3,4 @@
 package config
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.32.5"
+const goModuleVersion = "1.32.7"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/credentials/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/credentials/CHANGELOG.md
index bf3fa5a1f1..daca9241cb 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/credentials/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/credentials/CHANGELOG.md
@@ -1,3 +1,11 @@
+# v1.19.7 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.19.6 (2025-12-16)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.19.5 (2025-12-09)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/credentials/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/credentials/go_module_metadata.go
index f539719414..5439cb44bd 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/credentials/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/credentials/go_module_metadata.go
@@ -3,4 +3,4 @@
 package credentials
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.19.5"
+const goModuleVersion = "1.19.7"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/CHANGELOG.md
index 5b9f6cc16a..27d5e4d613 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.18.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.18.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/go_module_metadata.go
index 630ccb34d1..0bb72d7b57 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/feature/ec2/imds/go_module_metadata.go
@@ -3,4 +3,4 @@
 package imds
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.18.16"
+const goModuleVersion = "1.18.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/CHANGELOG.md
index 64fc11ce4a..2a12a20209 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/CHANGELOG.md
@@ -1,3 +1,15 @@
+# v1.20.19 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.20.18 (2025-12-23)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.20.17 (2025-12-16)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.20.16 (2025-12-15)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/go_module_metadata.go
index ceb02b8d9a..23eab09206 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/feature/s3/manager/go_module_metadata.go
@@ -3,4 +3,4 @@
 package manager
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.20.16"
+const goModuleVersion = "1.20.19"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/CHANGELOG.md
index 6ffdf06108..552fb90a8b 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.4.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.4.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/go_module_metadata.go
index 72df7b81bf..59dbd389b8 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/configsources/go_module_metadata.go
@@ -3,4 +3,4 @@
 package configsources
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.4.16"
+const goModuleVersion = "1.4.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/CHANGELOG.md
index b2d3477911..cdf46e69d8 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v2.7.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v2.7.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/go_module_metadata.go
index 1a524ae2e5..3d6ed9c6a6 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/endpoints/v2/go_module_metadata.go
@@ -3,4 +3,4 @@
 package endpoints
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "2.7.16"
+const goModuleVersion = "2.7.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/CHANGELOG.md
index 78d3ad8ba8..5bafe8ae3d 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.4.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.4.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/go_module_metadata.go
index 581d9d552b..2bdeddfc40 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/internal/v4a/go_module_metadata.go
@@ -3,4 +3,4 @@
 package v4a
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.4.16"
+const goModuleVersion = "1.4.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/CHANGELOG.md
index 02525678fc..14e708eb08 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/CHANGELOG.md
@@ -1,3 +1,19 @@
+# v1.279.2 (2026-01-15)
+
+* **Documentation**: This release includes documentation updates to support up to four Elastic Volume modifications per Amazon EBS volume within a rolling 24-hour period.
+
+# v1.279.1 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.279.0 (2025-12-22)
+
+* **Feature**: Adds support for linkedGroupId on the CreatePlacementGroup and DescribePlacementGroups APIs. The linkedGroupId parameter is reserved for future use.
+
+# v1.278.0 (2025-12-18)
+
+* **Feature**: This release adds AvailabilityZoneId support for CreateFleet, ModifyFleet, DescribeFleets, RequestSpotFleet, ModifySpotFleetRequests and DescribeSpotFleetRequests APIs.
+
 # v1.277.0 (2025-12-15)
 
 * **Feature**: EC2 Capacity Manager now supports SpotTotalCount, SpotTotalInterruptions and SpotInterruptionRate metrics for both vCPU and instance units.
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_CreatePlacementGroup.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_CreatePlacementGroup.go
index c06dfbe5b6..3ee74ecee8 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_CreatePlacementGroup.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_CreatePlacementGroup.go
@@ -53,6 +53,9 @@ type CreatePlacementGroupInput struct {
 	// Constraints: Up to 255 ASCII characters
 	GroupName *string
 
+	// Reserved for future use.
+	LinkedGroupId *string
+
 	// The number of partitions. Valid only when Strategy is set to partition .
 	PartitionCount *int32
 
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_DescribeInstances.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_DescribeInstances.go
index 74d39afed5..cb062484e2 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_DescribeInstances.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_DescribeInstances.go
@@ -423,8 +423,8 @@ type DescribeInstancesInput struct {
 	//   to the state-reason-code filter.
 	//
 	//   - requester-id - The ID of the entity that launched the instance on your
-	//   behalf (for example, Amazon Web Services Management Console, Amazon EC2 Auto
-	//   Scaling, and so on).
+	//   behalf (for example, Amazon Web Services Management Console, Auto Scaling, and
+	//   so on).
 	//
 	//   - reservation-id - The ID of the instance's reservation. A reservation ID is
 	//   created any time you launch an instance. A reservation ID has a one-to-one
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_GetIpamPolicyOrganizationTargets.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_GetIpamPolicyOrganizationTargets.go
index d9a5366867..72fb803bd0 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_GetIpamPolicyOrganizationTargets.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_GetIpamPolicyOrganizationTargets.go
@@ -70,7 +70,10 @@ type GetIpamPolicyOrganizationTargetsOutput struct {
 	// The token to use to retrieve the next page of results.
 	NextToken *string
 
-	// The Amazon Web Services Organizations targets for an IPAM policy.
+	// The IDs of the Amazon Web Services Organizations targets.
+	//
+	// A target can be an individual Amazon Web Services account or an entity within
+	// an Amazon Web Services Organization to which an IPAM policy can be applied.
 	OrganizationTargets []types.IpamPolicyOrganizationTarget
 
 	// Metadata pertaining to the operation's result.
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_ModifyVolume.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_ModifyVolume.go
index bc3f4a281c..4eecfb917d 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_ModifyVolume.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/api_op_ModifyVolume.go
@@ -26,9 +26,13 @@ import (
 // With previous-generation instance types, resizing an EBS volume might require
 // detaching and reattaching the volume or stopping and restarting the instance.
 //
-// After modifying a volume, you must wait at least six hours and ensure that the
-// volume is in the in-use or available state before you can modify the same
-// volume. This is sometimes referred to as a cooldown period.
+// After you initiate a volume modification, you must wait for that modification
+// to reach the completed state before you can initiate another modification for
+// the same volume. You can modify a volume up to four times within a rolling
+// 24-hour period, as long as the volume is in the in-use or available state, and
+// all previous modifications for that volume are completed . If you exceed this
+// limit, you get an error message that indicates when you can perform your next
+// modification.
 //
 // [Monitor the progress of volume modifications]: https://docs.aws.amazon.com/ebs/latest/userguide/monitoring-volume-modifications.html
 // [Amazon EBS Elastic Volumes]: https://docs.aws.amazon.com/ebs/latest/userguide/ebs-modify-volume.html
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/deserializers.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/deserializers.go
index 16dcc32f9e..8a7d7009c8 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/deserializers.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/deserializers.go
@@ -95300,6 +95300,19 @@ func awsEc2query_deserializeDocumentFleetLaunchTemplateOverrides(v **types.Fleet
 				sv.AvailabilityZone = ptr.String(xtv)
 			}
 
+		case strings.EqualFold("availabilityZoneId", t.Name.Local):
+			val, err := decoder.Value()
+			if err != nil {
+				return err
+			}
+			if val == nil {
+				break
+			}
+			{
+				xtv := string(val)
+				sv.AvailabilityZoneId = ptr.String(xtv)
+			}
+
 		case strings.EqualFold("blockDeviceMappingSet", t.Name.Local):
 			nodeDecoder := smithyxml.WrapNodeDecoder(decoder.Decoder, t)
 			if err := awsEc2query_deserializeDocumentBlockDeviceMappingResponseList(&sv.BlockDeviceMappings, nodeDecoder); err != nil {
@@ -120869,6 +120882,19 @@ func awsEc2query_deserializeDocumentLaunchTemplateOverrides(v **types.LaunchTemp
 				sv.AvailabilityZone = ptr.String(xtv)
 			}
 
+		case strings.EqualFold("availabilityZoneId", t.Name.Local):
+			val, err := decoder.Value()
+			if err != nil {
+				return err
+			}
+			if val == nil {
+				break
+			}
+			{
+				xtv := string(val)
+				sv.AvailabilityZoneId = ptr.String(xtv)
+			}
+
 		case strings.EqualFold("instanceRequirements", t.Name.Local):
 			nodeDecoder := smithyxml.WrapNodeDecoder(decoder.Decoder, t)
 			if err := awsEc2query_deserializeDocumentInstanceRequirements(&sv.InstanceRequirements, nodeDecoder); err != nil {
@@ -133573,6 +133599,19 @@ func awsEc2query_deserializeDocumentPlacementGroup(v **types.PlacementGroup, dec
 				sv.GroupName = ptr.String(xtv)
 			}
 
+		case strings.EqualFold("linkedGroupId", t.Name.Local):
+			val, err := decoder.Value()
+			if err != nil {
+				return err
+			}
+			if val == nil {
+				break
+			}
+			{
+				xtv := string(val)
+				sv.LinkedGroupId = ptr.String(xtv)
+			}
+
 		case strings.EqualFold("partitionCount", t.Name.Local):
 			val, err := decoder.Value()
 			if err != nil {
@@ -150019,6 +150058,19 @@ func awsEc2query_deserializeDocumentSpotPlacement(v **types.SpotPlacement, decod
 				sv.AvailabilityZone = ptr.String(xtv)
 			}
 
+		case strings.EqualFold("availabilityZoneId", t.Name.Local):
+			val, err := decoder.Value()
+			if err != nil {
+				return err
+			}
+			if val == nil {
+				break
+			}
+			{
+				xtv := string(val)
+				sv.AvailabilityZoneId = ptr.String(xtv)
+			}
+
 		case strings.EqualFold("groupName", t.Name.Local):
 			val, err := decoder.Value()
 			if err != nil {
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/go_module_metadata.go
index 36141b42e7..8aa7b0e3b2 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/go_module_metadata.go
@@ -3,4 +3,4 @@
 package ec2
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.277.0"
+const goModuleVersion = "1.279.2"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/serializers.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/serializers.go
index cca51151be..2c340daab4 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/serializers.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/serializers.go
@@ -55105,6 +55105,11 @@ func awsEc2query_serializeDocumentFleetLaunchTemplateOverridesRequest(v *types.F
 		objectKey.String(*v.AvailabilityZone)
 	}
 
+	if v.AvailabilityZoneId != nil {
+		objectKey := object.Key("AvailabilityZoneId")
+		objectKey.String(*v.AvailabilityZoneId)
+	}
+
 	if v.BlockDeviceMappings != nil {
 		objectKey := object.FlatKey("BlockDeviceMapping")
 		if err := awsEc2query_serializeDocumentFleetBlockDeviceMappingRequestList(v.BlockDeviceMappings, objectKey); err != nil {
@@ -57954,6 +57959,11 @@ func awsEc2query_serializeDocumentLaunchTemplateOverrides(v *types.LaunchTemplat
 		objectKey.String(*v.AvailabilityZone)
 	}
 
+	if v.AvailabilityZoneId != nil {
+		objectKey := object.Key("AvailabilityZoneId")
+		objectKey.String(*v.AvailabilityZoneId)
+	}
+
 	if v.InstanceRequirements != nil {
 		objectKey := object.Key("InstanceRequirements")
 		if err := awsEc2query_serializeDocumentInstanceRequirements(v.InstanceRequirements, objectKey); err != nil {
@@ -62443,6 +62453,11 @@ func awsEc2query_serializeDocumentSpotPlacement(v *types.SpotPlacement, value qu
 		objectKey.String(*v.AvailabilityZone)
 	}
 
+	if v.AvailabilityZoneId != nil {
+		objectKey := object.Key("AvailabilityZoneId")
+		objectKey.String(*v.AvailabilityZoneId)
+	}
+
 	if v.GroupName != nil {
 		objectKey := object.Key("GroupName")
 		objectKey.String(*v.GroupName)
@@ -68286,6 +68301,11 @@ func awsEc2query_serializeOpDocumentCreatePlacementGroupInput(v *CreatePlacement
 		objectKey.String(*v.GroupName)
 	}
 
+	if v.LinkedGroupId != nil {
+		objectKey := object.Key("LinkedGroupId")
+		objectKey.String(*v.LinkedGroupId)
+	}
+
 	if v.PartitionCount != nil {
 		objectKey := object.Key("PartitionCount")
 		objectKey.Integer(*v.PartitionCount)
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/types/types.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/types/types.go
index b166608836..04c2f06af5 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/types/types.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ec2/types/types.go
@@ -6254,9 +6254,19 @@ type FleetLaunchTemplateConfigRequest struct {
 // Describes overrides for a launch template.
 type FleetLaunchTemplateOverrides struct {
 
-	// The Availability Zone in which to launch the instances.
+	// The Availability Zone in which to launch the instances. For example, us-east-2a .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
 	AvailabilityZone *string
 
+	// The ID of the Availability Zone in which to launch the instances. For example,
+	// use2-az1 .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
+	AvailabilityZoneId *string
+
 	// The block device mappings, which define the EBS volumes and instance store
 	// volumes to attach to the instance at launch.
 	//
@@ -6369,9 +6379,19 @@ type FleetLaunchTemplateOverrides struct {
 // Describes overrides for a launch template.
 type FleetLaunchTemplateOverridesRequest struct {
 
-	// The Availability Zone in which to launch the instances.
+	// The Availability Zone in which to launch the instances. For example, us-east-2a .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
 	AvailabilityZone *string
 
+	// The ID of the Availability Zone in which to launch the instances. For example,
+	// use2-az1 .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
+	AvailabilityZoneId *string
+
 	// The block device mappings, which define the EBS volumes and instance store
 	// volumes to attach to the instance at launch.
 	//
@@ -11111,7 +11131,10 @@ type IpamPolicyDocument struct {
 // The Amazon Web Services Organizations target for an IPAM policy.
 type IpamPolicyOrganizationTarget struct {
 
-	// The ID of a Amazon Web Services Organizations target for an IPAM policy.
+	// The ID of the Amazon Web Services Organizations target.
+	//
+	// A target can be an individual Amazon Web Services account or an entity within
+	// an Amazon Web Services Organization to which an IPAM policy can be applied.
 	OrganizationTargetId *string
 
 	noSmithyDocumentSerde
@@ -13439,9 +13462,19 @@ type LaunchTemplateNetworkPerformanceOptionsRequest struct {
 // Describes overrides for a launch template.
 type LaunchTemplateOverrides struct {
 
-	// The Availability Zone in which to launch the instances.
+	// The Availability Zone in which to launch the instances. For example, us-east-2a .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
 	AvailabilityZone *string
 
+	// The ID of the Availability Zone in which to launch the instances. For example,
+	// use2-az1 .
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
+	AvailabilityZoneId *string
+
 	// The instance requirements. When you specify instance requirements, Amazon EC2
 	// will identify instance types with the provided requirements, and then use your
 	// On-Demand and Spot allocation strategies to launch instances from these instance
@@ -16702,6 +16735,9 @@ type PlacementGroup struct {
 	// The name of the placement group.
 	GroupName *string
 
+	// Reserved for future use.
+	LinkedGroupId *string
+
 	// The number of partitions. Valid only if strategy is set to partition .
 	PartitionCount *int32
 
@@ -21119,12 +21155,24 @@ type SpotOptionsRequest struct {
 // Describes Spot Instance placement.
 type SpotPlacement struct {
 
-	// The Availability Zone.
+	// The Availability Zone. For example, us-east-2a .
 	//
 	// [Spot Fleet only] To specify multiple Availability Zones, separate them using
-	// commas; for example, "us-west-2a, us-west-2b".
+	// commas; for example, " us-east-2a , us-east-2b ".
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
 	AvailabilityZone *string
 
+	// The ID of the Availability Zone. For example, use2-az1 .
+	//
+	// [Spot Fleet only] To specify multiple Availability Zones, separate them using
+	// commas; for example, " use2-az1 , use2-bz1 ".
+	//
+	// Either AvailabilityZone or AvailabilityZoneId must be specified in the request,
+	// but not both.
+	AvailabilityZoneId *string
+
 	// The name of the placement group.
 	GroupName *string
 
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/iam/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/iam/CHANGELOG.md
index fdf2fc3a98..2aad66d714 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/iam/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/iam/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.53.2 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.53.1 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/iam/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/iam/go_module_metadata.go
index 7d1ebc7668..8ca3520a11 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/iam/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/iam/go_module_metadata.go
@@ -3,4 +3,4 @@
 package iam
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.53.1"
+const goModuleVersion = "1.53.2"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/CHANGELOG.md
index 3b9d0f6849..2f7cf77c32 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.9.8 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.9.7 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/go_module_metadata.go
index 008265e37a..1021b2f0eb 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/checksum/go_module_metadata.go
@@ -3,4 +3,4 @@
 package checksum
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.9.7"
+const goModuleVersion = "1.9.8"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/CHANGELOG.md
index 743183c8df..81fbac09c1 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.13.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.13.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/go_module_metadata.go
index a8a2e692bf..d7c886c139 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/presigned-url/go_module_metadata.go
@@ -3,4 +3,4 @@
 package presignedurl
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.13.16"
+const goModuleVersion = "1.13.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/CHANGELOG.md
index 280be507cb..c44d816bab 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.19.17 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.19.16 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/go_module_metadata.go
index 5e955a2fd4..e4601bb1cb 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/internal/s3shared/go_module_metadata.go
@@ -3,4 +3,4 @@
 package s3shared
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.19.16"
+const goModuleVersion = "1.19.17"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/CHANGELOG.md
index 0b9ad834fc..99b9026565 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/CHANGELOG.md
@@ -1,3 +1,11 @@
+# v1.95.1 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.95.0 (2025-12-23)
+
+* **Feature**: Add additional validation to Outpost bucket names.
+
 # v1.94.0 (2025-12-15)
 
 * **Feature**: This release adds support for the new optional field 'LifecycleExpirationDate' in S3 Inventory configurations.
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/endpoints.go b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/endpoints.go
index 13a5909401..2e0197ec9a 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/endpoints.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/endpoints.go
@@ -5295,253 +5295,256 @@ func (r *resolver) ResolveEndpoint(
 								_ = _regionPartition
 								if _bucketAliasSuffix == "--op-s3" {
 									if rulesfn.IsValidHostLabel(_outpostId, false) {
-										if _hardwareType == "e" {
-											if _regionPrefix == "beta" {
-												if !(params.Endpoint != nil) {
-													return endpoint, fmt.Errorf("endpoint rule error, %s", "Expected a endpoint to be specified but no endpoint was found")
-												}
-												if exprVal := params.Endpoint; exprVal != nil {
-													_Endpoint := *exprVal
-													_ = _Endpoint
-													if exprVal := rulesfn.ParseURL(_Endpoint); exprVal != nil {
-														_url := *exprVal
-														_ = _url
-														uriString := func() string {
-															var out strings.Builder
-															out.WriteString("https://")
-															out.WriteString(_Bucket)
-															out.WriteString(".ec2.")
-															out.WriteString(_url.Authority)
-															return out.String()
-														}()
+										if awsrulesfn.IsVirtualHostableS3Bucket(_Bucket, false) {
+											if _hardwareType == "e" {
+												if _regionPrefix == "beta" {
+													if !(params.Endpoint != nil) {
+														return endpoint, fmt.Errorf("endpoint rule error, %s", "Expected a endpoint to be specified but no endpoint was found")
+													}
+													if exprVal := params.Endpoint; exprVal != nil {
+														_Endpoint := *exprVal
+														_ = _Endpoint
+														if exprVal := rulesfn.ParseURL(_Endpoint); exprVal != nil {
+															_url := *exprVal
+															_ = _url
+															uriString := func() string {
+																var out strings.Builder
+																out.WriteString("https://")
+																out.WriteString(_Bucket)
+																out.WriteString(".ec2.")
+																out.WriteString(_url.Authority)
+																return out.String()
+															}()
 
-														uri, err := url.Parse(uriString)
-														if err != nil {
-															return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
-														}
+															uri, err := url.Parse(uriString)
+															if err != nil {
+																return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
+															}
 
-														return smithyendpoints.Endpoint{
-															URI:     *uri,
-															Headers: http.Header{},
-															Properties: func() smithy.Properties {
-																var out smithy.Properties
-																smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
-																	{
-																		SchemeID: "aws.auth#sigv4a",
-																		SignerProperties: func() smithy.Properties {
-																			var sp smithy.Properties
-																			smithyhttp.SetDisableDoubleEncoding(&sp, true)
+															return smithyendpoints.Endpoint{
+																URI:     *uri,
+																Headers: http.Header{},
+																Properties: func() smithy.Properties {
+																	var out smithy.Properties
+																	smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
+																		{
+																			SchemeID: "aws.auth#sigv4a",
+																			SignerProperties: func() smithy.Properties {
+																				var sp smithy.Properties
+																				smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																			smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																			smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																			smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
-																			return sp
-																		}(),
-																	},
-																	{
-																		SchemeID: "aws.auth#sigv4",
-																		SignerProperties: func() smithy.Properties {
-																			var sp smithy.Properties
-																			smithyhttp.SetDisableDoubleEncoding(&sp, true)
+																				smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
+																				return sp
+																			}(),
+																		},
+																		{
+																			SchemeID: "aws.auth#sigv4",
+																			SignerProperties: func() smithy.Properties {
+																				var sp smithy.Properties
+																				smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																			smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																			smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																			smithyhttp.SetSigV4SigningRegion(&sp, _Region)
-																			return sp
-																		}(),
-																	},
-																})
-																return out
-															}(),
-														}, nil
+																				smithyhttp.SetSigV4SigningRegion(&sp, _Region)
+																				return sp
+																			}(),
+																		},
+																	})
+																	return out
+																}(),
+															}, nil
+														}
 													}
+													return endpoint, fmt.Errorf("Endpoint resolution failed. Invalid operation or environment input.")
 												}
-												return endpoint, fmt.Errorf("Endpoint resolution failed. Invalid operation or environment input.")
-											}
-											uriString := func() string {
-												var out strings.Builder
-												out.WriteString("https://")
-												out.WriteString(_Bucket)
-												out.WriteString(".ec2.s3-outposts.")
-												out.WriteString(_Region)
-												out.WriteString(".")
-												out.WriteString(_regionPartition.DnsSuffix)
-												return out.String()
-											}()
+												uriString := func() string {
+													var out strings.Builder
+													out.WriteString("https://")
+													out.WriteString(_Bucket)
+													out.WriteString(".ec2.s3-outposts.")
+													out.WriteString(_Region)
+													out.WriteString(".")
+													out.WriteString(_regionPartition.DnsSuffix)
+													return out.String()
+												}()
 
-											uri, err := url.Parse(uriString)
-											if err != nil {
-												return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
-											}
+												uri, err := url.Parse(uriString)
+												if err != nil {
+													return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
+												}
 
-											return smithyendpoints.Endpoint{
-												URI:     *uri,
-												Headers: http.Header{},
-												Properties: func() smithy.Properties {
-													var out smithy.Properties
-													smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
-														{
-															SchemeID: "aws.auth#sigv4a",
-															SignerProperties: func() smithy.Properties {
-																var sp smithy.Properties
-																smithyhttp.SetDisableDoubleEncoding(&sp, true)
+												return smithyendpoints.Endpoint{
+													URI:     *uri,
+													Headers: http.Header{},
+													Properties: func() smithy.Properties {
+														var out smithy.Properties
+														smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
+															{
+																SchemeID: "aws.auth#sigv4a",
+																SignerProperties: func() smithy.Properties {
+																	var sp smithy.Properties
+																	smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
-																return sp
-															}(),
-														},
-														{
-															SchemeID: "aws.auth#sigv4",
-															SignerProperties: func() smithy.Properties {
-																var sp smithy.Properties
-																smithyhttp.SetDisableDoubleEncoding(&sp, true)
+																	smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
+																	return sp
+																}(),
+															},
+															{
+																SchemeID: "aws.auth#sigv4",
+																SignerProperties: func() smithy.Properties {
+																	var sp smithy.Properties
+																	smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																smithyhttp.SetSigV4SigningRegion(&sp, _Region)
-																return sp
-															}(),
-														},
-													})
-													return out
-												}(),
-											}, nil
-										}
-										if _hardwareType == "o" {
-											if _regionPrefix == "beta" {
-												if !(params.Endpoint != nil) {
-													return endpoint, fmt.Errorf("endpoint rule error, %s", "Expected a endpoint to be specified but no endpoint was found")
-												}
-												if exprVal := params.Endpoint; exprVal != nil {
-													_Endpoint := *exprVal
-													_ = _Endpoint
-													if exprVal := rulesfn.ParseURL(_Endpoint); exprVal != nil {
-														_url := *exprVal
-														_ = _url
-														uriString := func() string {
-															var out strings.Builder
-															out.WriteString("https://")
-															out.WriteString(_Bucket)
-															out.WriteString(".op-")
-															out.WriteString(_outpostId)
-															out.WriteString(".")
-															out.WriteString(_url.Authority)
-															return out.String()
-														}()
+																	smithyhttp.SetSigV4SigningRegion(&sp, _Region)
+																	return sp
+																}(),
+															},
+														})
+														return out
+													}(),
+												}, nil
+											}
+											if _hardwareType == "o" {
+												if _regionPrefix == "beta" {
+													if !(params.Endpoint != nil) {
+														return endpoint, fmt.Errorf("endpoint rule error, %s", "Expected a endpoint to be specified but no endpoint was found")
+													}
+													if exprVal := params.Endpoint; exprVal != nil {
+														_Endpoint := *exprVal
+														_ = _Endpoint
+														if exprVal := rulesfn.ParseURL(_Endpoint); exprVal != nil {
+															_url := *exprVal
+															_ = _url
+															uriString := func() string {
+																var out strings.Builder
+																out.WriteString("https://")
+																out.WriteString(_Bucket)
+																out.WriteString(".op-")
+																out.WriteString(_outpostId)
+																out.WriteString(".")
+																out.WriteString(_url.Authority)
+																return out.String()
+															}()
 
-														uri, err := url.Parse(uriString)
-														if err != nil {
-															return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
-														}
+															uri, err := url.Parse(uriString)
+															if err != nil {
+																return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
+															}
 
-														return smithyendpoints.Endpoint{
-															URI:     *uri,
-															Headers: http.Header{},
-															Properties: func() smithy.Properties {
-																var out smithy.Properties
-																smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
-																	{
-																		SchemeID: "aws.auth#sigv4a",
-																		SignerProperties: func() smithy.Properties {
-																			var sp smithy.Properties
-																			smithyhttp.SetDisableDoubleEncoding(&sp, true)
+															return smithyendpoints.Endpoint{
+																URI:     *uri,
+																Headers: http.Header{},
+																Properties: func() smithy.Properties {
+																	var out smithy.Properties
+																	smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
+																		{
+																			SchemeID: "aws.auth#sigv4a",
+																			SignerProperties: func() smithy.Properties {
+																				var sp smithy.Properties
+																				smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																			smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																			smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																			smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
-																			return sp
-																		}(),
-																	},
-																	{
-																		SchemeID: "aws.auth#sigv4",
-																		SignerProperties: func() smithy.Properties {
-																			var sp smithy.Properties
-																			smithyhttp.SetDisableDoubleEncoding(&sp, true)
+																				smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
+																				return sp
+																			}(),
+																		},
+																		{
+																			SchemeID: "aws.auth#sigv4",
+																			SignerProperties: func() smithy.Properties {
+																				var sp smithy.Properties
+																				smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																			smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																			smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																				smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																			smithyhttp.SetSigV4SigningRegion(&sp, _Region)
-																			return sp
-																		}(),
-																	},
-																})
-																return out
-															}(),
-														}, nil
+																				smithyhttp.SetSigV4SigningRegion(&sp, _Region)
+																				return sp
+																			}(),
+																		},
+																	})
+																	return out
+																}(),
+															}, nil
+														}
 													}
+													return endpoint, fmt.Errorf("Endpoint resolution failed. Invalid operation or environment input.")
 												}
-												return endpoint, fmt.Errorf("Endpoint resolution failed. Invalid operation or environment input.")
-											}
-											uriString := func() string {
-												var out strings.Builder
-												out.WriteString("https://")
-												out.WriteString(_Bucket)
-												out.WriteString(".op-")
-												out.WriteString(_outpostId)
-												out.WriteString(".s3-outposts.")
-												out.WriteString(_Region)
-												out.WriteString(".")
-												out.WriteString(_regionPartition.DnsSuffix)
-												return out.String()
-											}()
+												uriString := func() string {
+													var out strings.Builder
+													out.WriteString("https://")
+													out.WriteString(_Bucket)
+													out.WriteString(".op-")
+													out.WriteString(_outpostId)
+													out.WriteString(".s3-outposts.")
+													out.WriteString(_Region)
+													out.WriteString(".")
+													out.WriteString(_regionPartition.DnsSuffix)
+													return out.String()
+												}()
 
-											uri, err := url.Parse(uriString)
-											if err != nil {
-												return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
-											}
+												uri, err := url.Parse(uriString)
+												if err != nil {
+													return endpoint, fmt.Errorf("Failed to parse uri: %s", uriString)
+												}
 
-											return smithyendpoints.Endpoint{
-												URI:     *uri,
-												Headers: http.Header{},
-												Properties: func() smithy.Properties {
-													var out smithy.Properties
-													smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
-														{
-															SchemeID: "aws.auth#sigv4a",
-															SignerProperties: func() smithy.Properties {
-																var sp smithy.Properties
-																smithyhttp.SetDisableDoubleEncoding(&sp, true)
+												return smithyendpoints.Endpoint{
+													URI:     *uri,
+													Headers: http.Header{},
+													Properties: func() smithy.Properties {
+														var out smithy.Properties
+														smithyauth.SetAuthOptions(&out, []*smithyauth.Option{
+															{
+																SchemeID: "aws.auth#sigv4a",
+																SignerProperties: func() smithy.Properties {
+																	var sp smithy.Properties
+																	smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
-																return sp
-															}(),
-														},
-														{
-															SchemeID: "aws.auth#sigv4",
-															SignerProperties: func() smithy.Properties {
-																var sp smithy.Properties
-																smithyhttp.SetDisableDoubleEncoding(&sp, true)
+																	smithyhttp.SetSigV4ASigningRegions(&sp, []string{"*"})
+																	return sp
+																}(),
+															},
+															{
+																SchemeID: "aws.auth#sigv4",
+																SignerProperties: func() smithy.Properties {
+																	var sp smithy.Properties
+																	smithyhttp.SetDisableDoubleEncoding(&sp, true)
 
-																smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
-																smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4SigningName(&sp, "s3-outposts")
+																	smithyhttp.SetSigV4ASigningName(&sp, "s3-outposts")
 
-																smithyhttp.SetSigV4SigningRegion(&sp, _Region)
-																return sp
-															}(),
-														},
-													})
-													return out
-												}(),
-											}, nil
+																	smithyhttp.SetSigV4SigningRegion(&sp, _Region)
+																	return sp
+																}(),
+															},
+														})
+														return out
+													}(),
+												}, nil
+											}
+											return endpoint, fmt.Errorf("endpoint rule error, %s", func() string {
+												var out strings.Builder
+												out.WriteString("Unrecognized hardware type: \"Expected hardware type o or e but got ")
+												out.WriteString(_hardwareType)
+												out.WriteString("\"")
+												return out.String()
+											}())
 										}
-										return endpoint, fmt.Errorf("endpoint rule error, %s", func() string {
-											var out strings.Builder
-											out.WriteString("Unrecognized hardware type: \"Expected hardware type o or e but got ")
-											out.WriteString(_hardwareType)
-											out.WriteString("\"")
-											return out.String()
-										}())
+										return endpoint, fmt.Errorf("endpoint rule error, %s", "Invalid Outposts Bucket alias - it must be a valid bucket name.")
 									}
 									return endpoint, fmt.Errorf("endpoint rule error, %s", "Invalid ARN: The outpost Id must only contain a-z, A-Z, 0-9 and `-`.")
 								}
@@ -7710,8 +7713,8 @@ func (r *resolver) ResolveEndpoint(
 									return endpoint, fmt.Errorf("endpoint rule error, %s", "S3 Outposts does not support S3 Accelerate")
 								}
 								if exprVal := _bucketArn.ResourceId.Get(4); exprVal != nil {
-									_var_473 := *exprVal
-									_ = _var_473
+									_var_474 := *exprVal
+									_ = _var_474
 									return endpoint, fmt.Errorf("endpoint rule error, %s", "Invalid Arn: Outpost Access Point ARN contains sub resources")
 								}
 								if exprVal := _bucketArn.ResourceId.Get(1); exprVal != nil {
@@ -7954,8 +7957,8 @@ func (r *resolver) ResolveEndpoint(
 			}
 			if _ForcePathStyle == true {
 				if exprVal := awsrulesfn.ParseARN(_Bucket); exprVal != nil {
-					_var_486 := *exprVal
-					_ = _var_486
+					_var_487 := *exprVal
+					_ = _var_487
 					return endpoint, fmt.Errorf("endpoint rule error, %s", "Path-style addressing cannot be used with ARN buckets")
 				}
 			}
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/go_module_metadata.go
index a1c22e1838..5c7e2dd4d5 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/s3/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/s3/go_module_metadata.go
@@ -3,4 +3,4 @@
 package s3
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.94.0"
+const goModuleVersion = "1.95.1"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/signin/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/signin/CHANGELOG.md
index 4d6c08996e..38c6edd4a8 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/signin/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/signin/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.0.5 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.0.4 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/signin/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/signin/go_module_metadata.go
index 2424c057e8..b10ad4354c 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/signin/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/signin/go_module_metadata.go
@@ -3,4 +3,4 @@
 package signin
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.0.4"
+const goModuleVersion = "1.0.5"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/CHANGELOG.md
index 4ef304c1f7..2954b8f28d 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/CHANGELOG.md
@@ -1,3 +1,11 @@
+# v1.30.9 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
+# v1.30.8 (2025-12-16)
+
+* No change notes available for this release.
+
 # v1.30.7 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/go_module_metadata.go
index 7ad1390e8f..427f36a52e 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/go_module_metadata.go
@@ -3,4 +3,4 @@
 package sso
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.30.7"
+const goModuleVersion = "1.30.9"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/internal/endpoints/endpoints.go b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/internal/endpoints/endpoints.go
index bbac359645..182423b4e6 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/sso/internal/endpoints/endpoints.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/sso/internal/endpoints/endpoints.go
@@ -157,6 +157,9 @@ var defaultPartitions = endpoints.Partitions{
 					Region: "ap-east-1",
 				},
 			},
+			endpoints.EndpointKey{
+				Region: "ap-east-2",
+			}: endpoints.Endpoint{},
 			endpoints.EndpointKey{
 				Region: "ap-northeast-1",
 			}: endpoints.Endpoint{
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/CHANGELOG.md
index 0ac3f8cc4c..a6f5876115 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.35.13 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.35.12 (2025-12-08)
 
 * **Dependency Update**: Updated to the latest SDK module versions
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/go_module_metadata.go
index 1399651002..50d95e9008 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/ssooidc/go_module_metadata.go
@@ -3,4 +3,4 @@
 package ssooidc
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.35.12"
+const goModuleVersion = "1.35.13"
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/sts/CHANGELOG.md b/vendor/github.com/aws/aws-sdk-go-v2/service/sts/CHANGELOG.md
index 42c252ba1f..8f96faa386 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/sts/CHANGELOG.md
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/sts/CHANGELOG.md
@@ -1,3 +1,7 @@
+# v1.41.6 (2026-01-09)
+
+* **Dependency Update**: Updated to the latest SDK module versions
+
 # v1.41.5 (2025-12-09)
 
 * No change notes available for this release.
diff --git a/vendor/github.com/aws/aws-sdk-go-v2/service/sts/go_module_metadata.go b/vendor/github.com/aws/aws-sdk-go-v2/service/sts/go_module_metadata.go
index c081cdeb30..6f29ba1fbf 100644
--- a/vendor/github.com/aws/aws-sdk-go-v2/service/sts/go_module_metadata.go
+++ b/vendor/github.com/aws/aws-sdk-go-v2/service/sts/go_module_metadata.go
@@ -3,4 +3,4 @@
 package sts
 
 // goModuleVersion is the tagged release for this module
-const goModuleVersion = "1.41.5"
+const goModuleVersion = "1.41.6"
diff --git a/vendor/github.com/coreos/butane/base/v0_7_exp/schema.go b/vendor/github.com/coreos/butane/base/v0_7_exp/schema.go
index ecdeff1e48..4f4e05ed3c 100644
--- a/vendor/github.com/coreos/butane/base/v0_7_exp/schema.go
+++ b/vendor/github.com/coreos/butane/base/v0_7_exp/schema.go
@@ -249,8 +249,12 @@ type Timeouts struct {
 }
 
 type Tree struct {
-	Local string  `yaml:"local"`
-	Path  *string `yaml:"path"`
+	Group    NodeGroup `yaml:"group"`
+	Local    string    `yaml:"local"`
+	Path     *string   `yaml:"path"`
+	User     NodeUser  `yaml:"user"`
+	FileMode *int      `yaml:"file_mode"`
+	DirMode  *int      `yaml:"dir_mode"`
 }
 
 type Unit struct {
diff --git a/vendor/github.com/coreos/butane/base/v0_7_exp/translate.go b/vendor/github.com/coreos/butane/base/v0_7_exp/translate.go
index fd95720d4d..2088267525 100644
--- a/vendor/github.com/coreos/butane/base/v0_7_exp/translate.go
+++ b/vendor/github.com/coreos/butane/base/v0_7_exp/translate.go
@@ -333,29 +333,69 @@ func (c Config) processTrees(ret *types.Config, options common.TranslateOptions)
 			destBaseDir = *tree.Path
 		}
 
-		walkTree(yamlPath, &ts, &r, t, srcBaseDir, destBaseDir, options)
+		walkTree(yamlPath, &ts, &r, t, treeWalkOptions{
+			srcBaseDir:       srcBaseDir,
+			destBaseDir:      destBaseDir,
+			TranslateOptions: options,
+			user:             tree.User,
+			group:            tree.Group,
+			fileMode:         tree.FileMode,
+			dirMode:          tree.DirMode,
+		})
 	}
 	return ts, r
 }
 
-func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report.Report, t *nodeTracker, srcBaseDir, destBaseDir string, options common.TranslateOptions) {
+type treeWalkOptions struct {
+	srcBaseDir  string
+	destBaseDir string
+	common.TranslateOptions
+	user     NodeUser
+	group    NodeGroup
+	fileMode *int
+	dirMode  *int
+}
+
+func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report.Report, t *nodeTracker, options treeWalkOptions) {
 	// The strategy for errors within WalkFunc is to add an error to
 	// the report and return nil, so walking continues but translation
 	// will fail afterward.
-	err := filepath.Walk(srcBaseDir, func(srcPath string, info os.FileInfo, err error) error {
+	err := filepath.Walk(options.srcBaseDir, func(srcPath string, info os.FileInfo, err error) error {
 		if err != nil {
 			r.AddOnError(yamlPath, err)
 			return nil
 		}
-		relPath, err := filepath.Rel(srcBaseDir, srcPath)
+		relPath, err := filepath.Rel(options.srcBaseDir, srcPath)
 		if err != nil {
 			r.AddOnError(yamlPath, err)
 			return nil
 		}
-		destPath := slashpath.Join(destBaseDir, filepath.ToSlash(relPath))
+		destPath := slashpath.Join(options.destBaseDir, filepath.ToSlash(relPath))
 
 		if info.Mode().IsDir() {
-			return nil
+			// If nothing custom is required we skip directories generation
+			if options.dirMode == nil && options.user == (NodeUser{}) && options.group == (NodeGroup{}) {
+				return nil
+			}
+
+			if t.Exists(destPath) {
+				r.AddOnError(yamlPath, common.ErrNodeExists)
+				return nil
+			}
+			mode := util.IntToPtr(0755)
+			if options.dirMode != nil {
+				mode = options.dirMode
+			}
+			i, dir := t.AddDir(types.Directory{
+				Node: createNode(destPath, options.user, options.group),
+				DirectoryEmbedded1: types.DirectoryEmbedded1{
+					Mode: mode,
+				},
+			})
+			ts.AddFromCommonSource(yamlPath, path.New("json", "storage", "directories", i), dir)
+			if i == 0 {
+				ts.AddTranslation(yamlPath, path.New("json", "storage", "directories"))
+			}
 		} else if info.Mode().IsRegular() {
 			i, file := t.GetFile(destPath)
 			if file != nil {
@@ -369,9 +409,7 @@ func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report
 					return nil
 				}
 				i, file = t.AddFile(types.File{
-					Node: types.Node{
-						Path: destPath,
-					},
+					Node: createNode(destPath, options.user, options.group),
 				})
 				ts.AddFromCommonSource(yamlPath, path.New("json", "storage", "files", i), file)
 				if i == 0 {
@@ -400,6 +438,9 @@ func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report
 				if info.Mode()&0111 != 0 {
 					mode = 0755
 				}
+				if options.fileMode != nil {
+					mode = *options.fileMode
+				}
 				file.Mode = &mode
 				ts.AddTranslation(yamlPath, path.New("json", "storage", "files", i, "mode"))
 			}
@@ -416,9 +457,7 @@ func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report
 					return nil
 				}
 				i, link = t.AddLink(types.Link{
-					Node: types.Node{
-						Path: destPath,
-					},
+					Node: createNode(destPath, options.user, options.group),
 				})
 				ts.AddFromCommonSource(yamlPath, path.New("json", "storage", "links", i), link)
 				if i == 0 {
@@ -441,6 +480,20 @@ func walkTree(yamlPath path.ContextPath, ts *translate.TranslationSet, r *report
 	r.AddOnError(yamlPath, err)
 }
 
+func createNode(destPath string, user NodeUser, group NodeGroup) types.Node {
+	return types.Node{
+		Path: destPath,
+		User: types.NodeUser{
+			ID:   user.ID,
+			Name: user.Name,
+		},
+		Group: types.NodeGroup{
+			ID:   group.ID,
+			Name: group.Name,
+		},
+	}
+}
+
 func (c Config) addMountUnits(config *types.Config, ts *translate.TranslationSet) {
 	if len(c.Storage.Filesystems) == 0 {
 		return
diff --git a/vendor/github.com/coreos/butane/config/common/errors.go b/vendor/github.com/coreos/butane/config/common/errors.go
index f653815ec0..0f82b4006d 100644
--- a/vendor/github.com/coreos/butane/config/common/errors.go
+++ b/vendor/github.com/coreos/butane/config/common/errors.go
@@ -54,14 +54,16 @@ var (
 	ErrMountPointForbidden = errors.New("path must be under /etc or /var if with_mount_unit is true")
 
 	// boot device
-	ErrUnknownBootDeviceLayout = errors.New("layout must be one of: aarch64, ppc64le, s390x-eckd, s390x-virt, s390x-zfcp, x86_64")
-	ErrTooFewMirrorDevices     = errors.New("mirroring requires at least two devices")
-	ErrNoLuksBootDevice        = errors.New("device is required for layouts: s390x-eckd, s390x-zfcp")
-	ErrMirrorNotSupport        = errors.New("mirroring not supported on layouts: s390x-eckd, s390x-zfcp, s390x-virt")
-	ErrLuksBootDeviceBadName   = errors.New("device name must start with /dev/dasd on s390x-eckd layout or /dev/sd on s390x-zfcp layout")
-	ErrCexArchitectureMismatch = errors.New("when using cex the targeted architecture must match s390x")
-	ErrCexNotSupported         = errors.New("cex is not currently supported on the target platform")
-	ErrNoLuksMethodSpecified   = errors.New("no method specified for luks")
+	ErrUnknownBootDeviceLayout       = errors.New("layout must be one of: aarch64, ppc64le, s390x-eckd, s390x-virt, s390x-zfcp, x86_64")
+	ErrUnknownBootDeviceLayoutLegacy = errors.New("layout must be one of: aarch64, ppc64le, x86_64")
+	ErrTooFewMirrorDevices           = errors.New("mirroring requires at least two devices")
+	ErrMirrorRequiresLayout          = errors.New("boot_device.layout should be specified when boot_device.mirror is specified")
+	ErrNoLuksBootDevice              = errors.New("device is required for layouts: s390x-eckd, s390x-zfcp")
+	ErrMirrorNotSupport              = errors.New("mirroring not supported on layouts: s390x-eckd, s390x-zfcp, s390x-virt")
+	ErrLuksBootDeviceBadName         = errors.New("device name must start with /dev/dasd on s390x-eckd layout or /dev/sd on s390x-zfcp layout")
+	ErrCexArchitectureMismatch       = errors.New("when using cex the targeted architecture must match s390x")
+	ErrCexNotSupported               = errors.New("cex is not currently supported on the target platform")
+	ErrNoLuksMethodSpecified         = errors.New("no method specified for luks")
 
 	// partition
 	ErrReuseByLabel         = errors.New("partitions cannot be reused by label; number must be specified except on boot disk (/dev/disk/by-id/coreos-boot-disk) or when wipe_table is true")
diff --git a/vendor/github.com/coreos/butane/config/config.go b/vendor/github.com/coreos/butane/config/config.go
index 9752781b7a..2bab7bc8e6 100644
--- a/vendor/github.com/coreos/butane/config/config.go
+++ b/vendor/github.com/coreos/butane/config/config.go
@@ -42,7 +42,8 @@ import (
 	openshift4_18 "github.com/coreos/butane/config/openshift/v4_18"
 	openshift4_19 "github.com/coreos/butane/config/openshift/v4_19"
 	openshift4_20 "github.com/coreos/butane/config/openshift/v4_20"
-	openshift4_21_exp "github.com/coreos/butane/config/openshift/v4_21_exp"
+	openshift4_21 "github.com/coreos/butane/config/openshift/v4_21"
+	openshift4_22_exp "github.com/coreos/butane/config/openshift/v4_22_exp"
 	openshift4_8 "github.com/coreos/butane/config/openshift/v4_8"
 	openshift4_9 "github.com/coreos/butane/config/openshift/v4_9"
 	r4e1_0 "github.com/coreos/butane/config/r4e/v1_0"
@@ -89,7 +90,8 @@ func init() {
 	RegisterTranslator("openshift", "4.18.0", openshift4_18.ToConfigBytes)
 	RegisterTranslator("openshift", "4.19.0", openshift4_19.ToConfigBytes)
 	RegisterTranslator("openshift", "4.20.0", openshift4_20.ToConfigBytes)
-	RegisterTranslator("openshift", "4.21.0-experimental", openshift4_21_exp.ToConfigBytes)
+	RegisterTranslator("openshift", "4.21.0", openshift4_21.ToConfigBytes)
+	RegisterTranslator("openshift", "4.22.0-experimental", openshift4_22_exp.ToConfigBytes)
 	RegisterTranslator("r4e", "1.0.0", r4e1_0.ToIgn3_3Bytes)
 	RegisterTranslator("r4e", "1.1.0", r4e1_1.ToIgn3_4Bytes)
 	RegisterTranslator("r4e", "1.2.0-experimental", r4e1_2_exp.ToIgn3_6Bytes)
diff --git a/vendor/github.com/coreos/butane/config/fcos/v1_3/validate.go b/vendor/github.com/coreos/butane/config/fcos/v1_3/validate.go
index 8c206beec4..ce0eb8b9a9 100644
--- a/vendor/github.com/coreos/butane/config/fcos/v1_3/validate.go
+++ b/vendor/github.com/coreos/butane/config/fcos/v1_3/validate.go
@@ -22,11 +22,15 @@ import (
 )
 
 func (d BootDevice) Validate(c path.ContextPath) (r report.Report) {
+	if len(d.Mirror.Devices) > 0 && d.Layout == nil {
+		r.AddOnWarn(c.Append("mirror"), common.ErrMirrorRequiresLayout)
+	}
+
 	if d.Layout != nil {
 		switch *d.Layout {
 		case "aarch64", "ppc64le", "x86_64":
 		default:
-			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayout)
+			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayoutLegacy)
 		}
 	}
 	r.Merge(d.Mirror.Validate(c.Append("mirror")))
diff --git a/vendor/github.com/coreos/butane/config/fcos/v1_4/validate.go b/vendor/github.com/coreos/butane/config/fcos/v1_4/validate.go
index f4be7b145c..5ad45dde77 100644
--- a/vendor/github.com/coreos/butane/config/fcos/v1_4/validate.go
+++ b/vendor/github.com/coreos/butane/config/fcos/v1_4/validate.go
@@ -22,11 +22,15 @@ import (
 )
 
 func (d BootDevice) Validate(c path.ContextPath) (r report.Report) {
+	if len(d.Mirror.Devices) > 0 && d.Layout == nil {
+		r.AddOnWarn(c.Append("mirror"), common.ErrMirrorRequiresLayout)
+	}
+
 	if d.Layout != nil {
 		switch *d.Layout {
 		case "aarch64", "ppc64le", "x86_64":
 		default:
-			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayout)
+			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayoutLegacy)
 		}
 	}
 	r.Merge(d.Mirror.Validate(c.Append("mirror")))
diff --git a/vendor/github.com/coreos/butane/config/fcos/v1_5/validate.go b/vendor/github.com/coreos/butane/config/fcos/v1_5/validate.go
index 368cc1b528..add1056d38 100644
--- a/vendor/github.com/coreos/butane/config/fcos/v1_5/validate.go
+++ b/vendor/github.com/coreos/butane/config/fcos/v1_5/validate.go
@@ -23,11 +23,15 @@ import (
 )
 
 func (d BootDevice) Validate(c path.ContextPath) (r report.Report) {
+	if len(d.Mirror.Devices) > 0 && d.Layout == nil {
+		r.AddOnWarn(c.Append("mirror"), common.ErrMirrorRequiresLayout)
+	}
+
 	if d.Layout != nil {
 		switch *d.Layout {
 		case "aarch64", "ppc64le", "x86_64":
 		default:
-			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayout)
+			r.AddOnError(c.Append("layout"), common.ErrUnknownBootDeviceLayoutLegacy)
 		}
 	}
 	r.Merge(d.Mirror.Validate(c.Append("mirror")))
diff --git a/vendor/github.com/coreos/butane/config/fcos/v1_6/validate.go b/vendor/github.com/coreos/butane/config/fcos/v1_6/validate.go
index 35e5a4c136..2df63e8a29 100644
--- a/vendor/github.com/coreos/butane/config/fcos/v1_6/validate.go
+++ b/vendor/github.com/coreos/butane/config/fcos/v1_6/validate.go
@@ -53,6 +53,10 @@ func (conf Config) Validate(c path.ContextPath) (r report.Report) {
 }
 
 func (d BootDevice) Validate(c path.ContextPath) (r report.Report) {
+	if len(d.Mirror.Devices) > 0 && d.Layout == nil {
+		r.AddOnWarn(c.Append("mirror"), common.ErrMirrorRequiresLayout)
+	}
+
 	if d.Layout != nil {
 		switch *d.Layout {
 		case "aarch64", "ppc64le", "x86_64":
diff --git a/vendor/github.com/coreos/butane/config/fcos/v1_7_exp/validate.go b/vendor/github.com/coreos/butane/config/fcos/v1_7_exp/validate.go
index c49da8dc98..b98935b878 100644
--- a/vendor/github.com/coreos/butane/config/fcos/v1_7_exp/validate.go
+++ b/vendor/github.com/coreos/butane/config/fcos/v1_7_exp/validate.go
@@ -54,6 +54,10 @@ func (conf Config) Validate(c path.ContextPath) (r report.Report) {
 }
 
 func (d BootDevice) Validate(c path.ContextPath) (r report.Report) {
+	if len(d.Mirror.Devices) > 0 && d.Layout == nil {
+		r.AddOnError(c.Append("mirror"), common.ErrMirrorRequiresLayout)
+	}
+
 	if d.Layout != nil {
 		switch *d.Layout {
 		case "aarch64", "ppc64le", "x86_64":
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21/result/schema.go b/vendor/github.com/coreos/butane/config/openshift/v4_21/result/schema.go
new file mode 100644
index 0000000000..62bc2054e2
--- /dev/null
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_21/result/schema.go
@@ -0,0 +1,48 @@
+// Copyright 2021 Red Hat, Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.)
+
+package result
+
+import (
+	"github.com/coreos/ignition/v2/config/v3_5/types"
+)
+
+const (
+	MC_API_VERSION = "machineconfiguration.openshift.io/v1"
+	MC_KIND        = "MachineConfig"
+)
+
+// We round-trip through JSON because Ignition uses `json` struct tags,
+// so all struct tags need to be `json` even though we're ultimately
+// writing YAML.
+
+type MachineConfig struct {
+	ApiVersion string   `json:"apiVersion"`
+	Kind       string   `json:"kind"`
+	Metadata   Metadata `json:"metadata"`
+	Spec       Spec     `json:"spec"`
+}
+
+type Metadata struct {
+	Name   string            `json:"name"`
+	Labels map[string]string `json:"labels,omitempty"`
+}
+
+type Spec struct {
+	Config          types.Config `json:"config"`
+	KernelArguments []string     `json:"kernelArguments,omitempty"`
+	Extensions      []string     `json:"extensions,omitempty"`
+	FIPS            *bool        `json:"fips,omitempty"`
+	KernelType      *string      `json:"kernelType,omitempty"`
+}
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21/schema.go b/vendor/github.com/coreos/butane/config/openshift/v4_21/schema.go
new file mode 100644
index 0000000000..4540d05105
--- /dev/null
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_21/schema.go
@@ -0,0 +1,39 @@
+// Copyright 2020 Red Hat, Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.)
+
+package v4_21
+
+import (
+	fcos "github.com/coreos/butane/config/fcos/v1_6"
+)
+
+const ROLE_LABEL_KEY = "machineconfiguration.openshift.io/role"
+
+type Config struct {
+	fcos.Config `yaml:",inline"`
+	Metadata    Metadata  `yaml:"metadata"`
+	OpenShift   OpenShift `yaml:"openshift"`
+}
+
+type Metadata struct {
+	Name   string            `yaml:"name"`
+	Labels map[string]string `yaml:"labels,omitempty"`
+}
+
+type OpenShift struct {
+	KernelArguments []string `yaml:"kernel_arguments"`
+	Extensions      []string `yaml:"extensions"`
+	FIPS            *bool    `yaml:"fips"`
+	KernelType      *string  `yaml:"kernel_type"`
+}
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21/translate.go b/vendor/github.com/coreos/butane/config/openshift/v4_21/translate.go
new file mode 100644
index 0000000000..1c41dabaea
--- /dev/null
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_21/translate.go
@@ -0,0 +1,261 @@
+// Copyright 2020 Red Hat, Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.)
+
+package v4_21
+
+import (
+	"net/url"
+
+	"github.com/coreos/butane/config/common"
+	"github.com/coreos/butane/config/openshift/v4_21/result"
+	cutil "github.com/coreos/butane/config/util"
+	"github.com/coreos/butane/translate"
+
+	"github.com/coreos/ignition/v2/config/v3_5/types"
+	"github.com/coreos/vcontext/path"
+	"github.com/coreos/vcontext/report"
+)
+
+// Error classes:
+//
+// UNPARSABLE - Cannot be rendered into a config by the MCC.  If present in
+// MC, MCC will mark the pool degraded.  We reject these.
+//
+// FORBIDDEN - Not supported by the MCD.  If present in MC, MCD will mark
+// the node degraded.  We reject these.
+//
+// REDUNDANT - Feature is also provided by a MachineConfig-specific field
+// with different semantics.  To reduce confusion, disable this
+// implementation.
+//
+// IMMUTABLE - Permitted in MC, passed through to Ignition, but not
+// supported by the MCD.  MCD will mark the node degraded if the field
+// changes after the node is provisioned.  We reject these outright to
+// discourage their use.
+//
+// TRIPWIRE - A subset of fields in the containing struct are supported by
+// the MCD.  If the struct contents change after the node is provisioned,
+// and the struct contains unsupported fields, MCD will mark the node
+// degraded, even if the change only affects supported fields.  We reject
+// these.
+
+var (
+	// See also validateRHCOSSupport() and validateMCOSupport()
+	fieldFilters = cutil.NewFilters(result.MachineConfig{}, cutil.FilterMap{
+		// UNPARSABLE, REDUNDANT
+		"spec.config.kernelArguments": common.ErrKernelArgumentSupport,
+		// IMMUTABLE
+		"spec.config.passwd.groups": common.ErrGroupSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.gecos": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.groups": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.homeDir": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.noCreateHome": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.noLogInit": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.noUserGroup": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.primaryGroup": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.shell": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.shouldExist": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.system": common.ErrUserFieldSupport,
+		// TRIPWIRE
+		"spec.config.passwd.users.uid": common.ErrUserFieldSupport,
+		// IMMUTABLE
+		"spec.config.storage.directories": common.ErrDirectorySupport,
+		// FORBIDDEN
+		"spec.config.storage.files.append": common.ErrFileAppendSupport,
+		// redundant with a check from Ignition validation, but ensures we
+		// exclude the section from docs
+		"spec.config.storage.files.contents.httpHeaders": common.ErrFileHeaderSupport,
+		// IMMUTABLE
+		// If you change this to be less restrictive without adding
+		// link support in the MCO, consider what should happen if
+		// the user specifies a storage.tree that includes symlinks.
+		"spec.config.storage.links": common.ErrLinkSupport,
+	})
+)
+
+// Return FieldFilters for this spec.
+func (c Config) FieldFilters() *cutil.FieldFilters {
+	return &fieldFilters
+}
+
+// ToMachineConfig4_21Unvalidated translates the config to a MachineConfig.  It also
+// returns the set of translations it did so paths in the resultant config
+// can be tracked back to their source in the source config.  No config
+// validation is performed on input or output.
+func (c Config) ToMachineConfig4_21Unvalidated(options common.TranslateOptions) (result.MachineConfig, translate.TranslationSet, report.Report) {
+	cfg, ts, r := c.Config.ToIgn3_5Unvalidated(options)
+	if r.IsFatal() {
+		return result.MachineConfig{}, ts, r
+	}
+
+	// wrap
+	ts = ts.PrefixPaths(path.New("yaml"), path.New("json", "spec", "config"))
+	mc := result.MachineConfig{
+		ApiVersion: result.MC_API_VERSION,
+		Kind:       result.MC_KIND,
+		Metadata: result.Metadata{
+			Name:   c.Metadata.Name,
+			Labels: make(map[string]string),
+		},
+		Spec: result.Spec{
+			Config: cfg,
+		},
+	}
+	ts.AddTranslation(path.New("yaml", "version"), path.New("json", "apiVersion"))
+	ts.AddTranslation(path.New("yaml", "version"), path.New("json", "kind"))
+	ts.AddTranslation(path.New("yaml", "metadata"), path.New("json", "metadata"))
+	ts.AddTranslation(path.New("yaml", "metadata", "name"), path.New("json", "metadata", "name"))
+	ts.AddTranslation(path.New("yaml", "metadata", "labels"), path.New("json", "metadata", "labels"))
+	ts.AddTranslation(path.New("yaml", "version"), path.New("json", "spec"))
+	ts.AddTranslation(path.New("yaml"), path.New("json", "spec", "config"))
+	for k, v := range c.Metadata.Labels {
+		mc.Metadata.Labels[k] = v
+		ts.AddTranslation(path.New("yaml", "metadata", "labels", k), path.New("json", "metadata", "labels", k))
+	}
+
+	// translate OpenShift fields
+	tr := translate.NewTranslator("yaml", "json", options)
+	from := &c.OpenShift
+	to := &mc.Spec
+	ts2, r2 := translate.Prefixed(tr, "extensions", &from.Extensions, &to.Extensions)
+	translate.MergeP(tr, ts2, &r2, "fips", &from.FIPS, &to.FIPS)
+	translate.MergeP2(tr, ts2, &r2, "kernel_arguments", &from.KernelArguments, "kernelArguments", &to.KernelArguments)
+	translate.MergeP2(tr, ts2, &r2, "kernel_type", &from.KernelType, "kernelType", &to.KernelType)
+	ts.MergeP2("openshift", "spec", ts2)
+	r.Merge(r2)
+
+	// finally, check the fully desugared config for RHCOS and MCO support
+	r.Merge(validateRHCOSSupport(mc))
+	r.Merge(validateMCOSupport(mc))
+
+	return mc, ts, r
+}
+
+// ToMachineConfig4_21 translates the config to a MachineConfig.  It returns a
+// report of any errors or warnings in the source and resultant config.  If
+// the report has fatal errors or it encounters other problems translating,
+// an error is returned.
+func (c Config) ToMachineConfig4_21(options common.TranslateOptions) (result.MachineConfig, report.Report, error) {
+	cfg, r, err := cutil.Translate(c, "ToMachineConfig4_21Unvalidated", options)
+	return cfg.(result.MachineConfig), r, err
+}
+
+// ToIgn3_5Unvalidated translates the config to an Ignition config.  It also
+// returns the set of translations it did so paths in the resultant config
+// can be tracked back to their source in the source config.  No config
+// validation is performed on input or output.
+func (c Config) ToIgn3_5Unvalidated(options common.TranslateOptions) (types.Config, translate.TranslationSet, report.Report) {
+	mc, ts, r := c.ToMachineConfig4_21Unvalidated(options)
+	cfg := mc.Spec.Config
+
+	// report warnings if there are any non-empty fields in Spec (other
+	// than the Ignition config itself) that we're ignoring
+	mc.Spec.Config = types.Config{}
+	warnings := translate.PrefixReport(cutil.CheckForElidedFields(mc.Spec), "spec")
+	// translate from json space into yaml space, since the caller won't
+	// have enough info to do it
+	r.Merge(cutil.TranslateReportPaths(warnings, ts))
+
+	ts = ts.Descend(path.New("json", "spec", "config"))
+	return cfg, ts, r
+}
+
+// ToIgn3_5 translates the config to an Ignition config.  It returns a
+// report of any errors or warnings in the source and resultant config.  If
+// the report has fatal errors or it encounters other problems translating,
+// an error is returned.
+func (c Config) ToIgn3_5(options common.TranslateOptions) (types.Config, report.Report, error) {
+	cfg, r, err := cutil.Translate(c, "ToIgn3_5Unvalidated", options)
+	return cfg.(types.Config), r, err
+}
+
+// ToConfigBytes translates from a v4.21 Butane config to a v4.21 MachineConfig or a v3.5.0 Ignition config. It returns a report of any errors or
+// warnings in the source and resultant config. If the report has fatal errors or it encounters other problems
+// translating, an error is returned.
+func ToConfigBytes(input []byte, options common.TranslateBytesOptions) ([]byte, report.Report, error) {
+	if options.Raw {
+		return cutil.TranslateBytes(input, &Config{}, "ToIgn3_5", options)
+	} else {
+		return cutil.TranslateBytesYAML(input, &Config{}, "ToMachineConfig4_21", options)
+	}
+}
+
+// Error on fields that are rejected by RHCOS.
+//
+// Some of these fields may have been generated by sugar (e.g.
+// boot_device.luks), so we work in JSON (output) space and then translate
+// paths back to YAML (input) space.  That's also the reason we do these
+// checks after translation, rather than during validation.
+func validateRHCOSSupport(mc result.MachineConfig) report.Report {
+	var r report.Report
+	for i, fs := range mc.Spec.Config.Storage.Filesystems {
+		if fs.Format != nil && *fs.Format == "btrfs" {
+			// we don't ship mkfs.btrfs
+			r.AddOnError(path.New("json", "spec", "config", "storage", "filesystems", i, "format"), common.ErrBtrfsSupport)
+		}
+	}
+	return r
+}
+
+// Error on fields that are rejected outright by the MCO, or that are
+// unsupported by the MCO and we want to discourage.
+//
+// https://github.com/openshift/machine-config-operator/blob/d6dabadeca05/MachineConfigDaemon.md#supported-vs-unsupported-ignition-config-changes
+//
+// Some of these fields may have been generated by sugar (e.g. storage.trees),
+// so we work in JSON (output) space and then translate paths back to YAML
+// (input) space.  That's also the reason we do these checks after
+// translation, rather than during validation.
+func validateMCOSupport(mc result.MachineConfig) report.Report {
+	// See also fieldFilters at the top of this file.
+
+	var r report.Report
+	for i, fs := range mc.Spec.Config.Storage.Filesystems {
+		if fs.Format != nil && *fs.Format == "none" {
+			// UNPARSABLE
+			r.AddOnError(path.New("json", "spec", "config", "storage", "filesystems", i, "format"), common.ErrFilesystemNoneSupport)
+		}
+	}
+	for i, file := range mc.Spec.Config.Storage.Files {
+		if file.Contents.Source != nil {
+			fileSource, err := url.Parse(*file.Contents.Source)
+			// parse errors will be caught by normal config validation
+			if err == nil && fileSource.Scheme != "data" {
+				// FORBIDDEN
+				r.AddOnError(path.New("json", "spec", "config", "storage", "files", i, "contents", "source"), common.ErrFileSchemeSupport)
+			}
+		}
+		if file.Mode != nil && *file.Mode & ^0777 != 0 {
+			// UNPARSABLE
+			r.AddOnError(path.New("json", "spec", "config", "storage", "files", i, "mode"), common.ErrFileSpecialModeSupport)
+		}
+	}
+	for i, user := range mc.Spec.Config.Passwd.Users {
+		if user.Name != "core" {
+			// TRIPWIRE
+			r.AddOnError(path.New("json", "spec", "config", "passwd", "users", i, "name"), common.ErrUserNameSupport)
+		}
+	}
+	return r
+}
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/validate.go b/vendor/github.com/coreos/butane/config/openshift/v4_21/validate.go
similarity index 99%
rename from vendor/github.com/coreos/butane/config/openshift/v4_21_exp/validate.go
rename to vendor/github.com/coreos/butane/config/openshift/v4_21/validate.go
index 98a8b56d9a..33a7db8ff3 100644
--- a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/validate.go
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_21/validate.go
@@ -12,7 +12,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.)
 
-package v4_21_exp
+package v4_21
 
 import (
 	"slices"
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/result/schema.go b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/result/schema.go
similarity index 100%
rename from vendor/github.com/coreos/butane/config/openshift/v4_21_exp/result/schema.go
rename to vendor/github.com/coreos/butane/config/openshift/v4_22_exp/result/schema.go
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/schema.go b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/schema.go
similarity index 98%
rename from vendor/github.com/coreos/butane/config/openshift/v4_21_exp/schema.go
rename to vendor/github.com/coreos/butane/config/openshift/v4_22_exp/schema.go
index c45bc655a9..805f896f7a 100644
--- a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/schema.go
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/schema.go
@@ -12,7 +12,7 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.)
 
-package v4_21_exp
+package v4_22_exp
 
 import (
 	fcos "github.com/coreos/butane/config/fcos/v1_7_exp"
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/translate.go b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/translate.go
similarity index 95%
rename from vendor/github.com/coreos/butane/config/openshift/v4_21_exp/translate.go
rename to vendor/github.com/coreos/butane/config/openshift/v4_22_exp/translate.go
index b6ea610c71..38ff8b06a7 100644
--- a/vendor/github.com/coreos/butane/config/openshift/v4_21_exp/translate.go
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/translate.go
@@ -12,13 +12,13 @@
 // See the License for the specific language governing permissions and
 // limitations under the License.)
 
-package v4_21_exp
+package v4_22_exp
 
 import (
 	"net/url"
 
 	"github.com/coreos/butane/config/common"
-	"github.com/coreos/butane/config/openshift/v4_21_exp/result"
+	"github.com/coreos/butane/config/openshift/v4_22_exp/result"
 	cutil "github.com/coreos/butane/config/util"
 	"github.com/coreos/butane/translate"
 
@@ -99,11 +99,11 @@ func (c Config) FieldFilters() *cutil.FieldFilters {
 	return &fieldFilters
 }
 
-// ToMachineConfig4_21Unvalidated translates the config to a MachineConfig.  It also
+// ToMachineConfig4_22Unvalidated translates the config to a MachineConfig.  It also
 // returns the set of translations it did so paths in the resultant config
 // can be tracked back to their source in the source config.  No config
 // validation is performed on input or output.
-func (c Config) ToMachineConfig4_21Unvalidated(options common.TranslateOptions) (result.MachineConfig, translate.TranslationSet, report.Report) {
+func (c Config) ToMachineConfig4_22Unvalidated(options common.TranslateOptions) (result.MachineConfig, translate.TranslationSet, report.Report) {
 	cfg, ts, r := c.Config.ToIgn3_6Unvalidated(options)
 	if r.IsFatal() {
 		return result.MachineConfig{}, ts, r
@@ -153,12 +153,12 @@ func (c Config) ToMachineConfig4_21Unvalidated(options common.TranslateOptions)
 	return mc, ts, r
 }
 
-// ToMachineConfig4_21 translates the config to a MachineConfig.  It returns a
+// ToMachineConfig4_22 translates the config to a MachineConfig.  It returns a
 // report of any errors or warnings in the source and resultant config.  If
 // the report has fatal errors or it encounters other problems translating,
 // an error is returned.
-func (c Config) ToMachineConfig4_21(options common.TranslateOptions) (result.MachineConfig, report.Report, error) {
-	cfg, r, err := cutil.Translate(c, "ToMachineConfig4_21Unvalidated", options)
+func (c Config) ToMachineConfig4_22(options common.TranslateOptions) (result.MachineConfig, report.Report, error) {
+	cfg, r, err := cutil.Translate(c, "ToMachineConfig4_22Unvalidated", options)
 	return cfg.(result.MachineConfig), r, err
 }
 
@@ -167,7 +167,7 @@ func (c Config) ToMachineConfig4_21(options common.TranslateOptions) (result.Mac
 // can be tracked back to their source in the source config.  No config
 // validation is performed on input or output.
 func (c Config) ToIgn3_6Unvalidated(options common.TranslateOptions) (types.Config, translate.TranslationSet, report.Report) {
-	mc, ts, r := c.ToMachineConfig4_21Unvalidated(options)
+	mc, ts, r := c.ToMachineConfig4_22Unvalidated(options)
 	cfg := mc.Spec.Config
 
 	// report warnings if there are any non-empty fields in Spec (other
@@ -191,14 +191,14 @@ func (c Config) ToIgn3_6(options common.TranslateOptions) (types.Config, report.
 	return cfg.(types.Config), r, err
 }
 
-// ToConfigBytes translates from a v4.21 Butane config to a v4.21 MachineConfig or a v3.6.0-experimental Ignition config. It returns a report of any errors or
+// ToConfigBytes translates from a v4.22 Butane config to a v4.22 MachineConfig or a v3.6.0-experimental Ignition config. It returns a report of any errors or
 // warnings in the source and resultant config. If the report has fatal errors or it encounters other problems
 // translating, an error is returned.
 func ToConfigBytes(input []byte, options common.TranslateBytesOptions) ([]byte, report.Report, error) {
 	if options.Raw {
 		return cutil.TranslateBytes(input, &Config{}, "ToIgn3_6", options)
 	} else {
-		return cutil.TranslateBytesYAML(input, &Config{}, "ToMachineConfig4_21", options)
+		return cutil.TranslateBytesYAML(input, &Config{}, "ToMachineConfig4_22", options)
 	}
 }
 
diff --git a/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/validate.go b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/validate.go
new file mode 100644
index 0000000000..59751441e9
--- /dev/null
+++ b/vendor/github.com/coreos/butane/config/openshift/v4_22_exp/validate.go
@@ -0,0 +1,68 @@
+// Copyright 2021 Red Hat, Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.)
+
+package v4_22_exp
+
+import (
+	"slices"
+
+	"github.com/coreos/butane/config/common"
+	"github.com/coreos/ignition/v2/config/util"
+
+	"github.com/coreos/vcontext/path"
+	"github.com/coreos/vcontext/report"
+)
+
+func (m Metadata) Validate(c path.ContextPath) (r report.Report) {
+	if m.Name == "" {
+		r.AddOnError(c.Append("name"), common.ErrNameRequired)
+	}
+	if m.Labels[ROLE_LABEL_KEY] == "" {
+		r.AddOnError(c.Append("labels"), common.ErrRoleRequired)
+	}
+	return
+}
+
+func (os OpenShift) Validate(c path.ContextPath) (r report.Report) {
+	if os.KernelType != nil {
+		switch *os.KernelType {
+		case "", "default", "realtime":
+		default:
+			r.AddOnError(c.Append("kernel_type"), common.ErrInvalidKernelType)
+		}
+	}
+	return
+}
+
+// Validate that we have the required kernel argument pointing to the key file
+// if we have CEX support enabled. We only do this in the openshift spec as
+// this is implemented differently in the fcos one.
+// See: https://github.com/coreos/butane/issues/611
+// See: https://github.com/coreos/butane/issues/613
+func (conf Config) Validate(c path.ContextPath) (r report.Report) {
+	if util.IsTrue(conf.BootDevice.Luks.Cex.Enabled) && !slices.Contains(conf.OpenShift.KernelArguments, "rd.luks.key=/etc/luks/cex.key") {
+		r.AddOnError(c.Append("openshift", "kernel_arguments"), common.ErrMissingKernelArgumentCex)
+	}
+	cex := false
+	for _, l := range conf.Storage.Luks {
+		if util.IsTrue(l.Cex.Enabled) && l.Name == "root" {
+			cex = true
+		}
+	}
+	if cex && !slices.Contains(conf.OpenShift.KernelArguments, "rd.luks.key=/etc/luks/cex.key") {
+		r.AddOnError(c.Append("openshift", "kernel_arguments"), common.ErrMissingKernelArgumentCex)
+	}
+
+	return
+}
diff --git a/vendor/github.com/digitalocean/godo/CHANGELOG.md b/vendor/github.com/digitalocean/godo/CHANGELOG.md
index 8447899a8f..eb64c895b9 100644
--- a/vendor/github.com/digitalocean/godo/CHANGELOG.md
+++ b/vendor/github.com/digitalocean/godo/CHANGELOG.md
@@ -1,5 +1,15 @@
 # Change Log
 
+## [1.172.0] - 2026-01-13
+
+- #932 - @fumblehool - APPS-12654: Add CancelJobInvocation API
+- #939 - @anup-deka - Rebranding GenAI to Gradient AI
+- #914 - @brianteeman - Typo cannnot/cannot
+
+## [1.171.0] - 2025-12-17
+
+- #936 - @dillonledoux - Add fields to AgentCreateRequest for Gradient Agents
+
 ## [1.170.0] - 2025-12-09
 
 - #933 - @do-joe - Nfs struct exposes Host and MountPath
diff --git a/vendor/github.com/digitalocean/godo/apps.go b/vendor/github.com/digitalocean/godo/apps.go
index 53e78eb90c..e1fa86d56d 100644
--- a/vendor/github.com/digitalocean/godo/apps.go
+++ b/vendor/github.com/digitalocean/godo/apps.go
@@ -80,6 +80,7 @@ type AppsService interface {
 	ListJobInvocations(ctx context.Context, appID string, opts *ListJobInvocationsOptions) ([]*JobInvocation, *Response, error)
 	GetJobInvocation(ctx context.Context, appID string, jobInvocationId string, opts *GetJobInvocationOptions) (*JobInvocation, *Response, error)
 	GetJobInvocationLogs(ctx context.Context, appID, jobInvocationId string, opts *GetJobInvocationLogsOptions) (*AppLogs, *Response, error)
+	CancelJobInvocation(ctx context.Context, appID, jobInvocationID string, opts *CancelJobInvocationOptions) (*JobInvocation, *Response, error)
 }
 
 // AppLogs represent app logs.
@@ -132,6 +133,10 @@ type ListJobInvocationsOptions struct {
 	JobNames []string `url:"job_names,omitempty"`
 }
 
+type CancelJobInvocationOptions struct {
+	JobName string `url:"job_name,omitempty"`
+}
+
 // DeploymentCreateRequest represents a request to create a deployment.
 type DeploymentCreateRequest struct {
 	ForceBuild bool `json:"force_build"`
@@ -519,6 +524,28 @@ func (s *AppsServiceOp) GetJobInvocationLogs(ctx context.Context, appID, jobInvo
 	return logs, resp, nil
 }
 
+// CancelJobInvocation cancels a specific job invocation for a given app.
+func (s *AppsServiceOp) CancelJobInvocation(ctx context.Context, appID string, jobInvocationId string, opts *CancelJobInvocationOptions) (*JobInvocation, *Response, error) {
+	url := fmt.Sprintf("%s/%s/job-invocations/%s/cancel", appsBasePath, appID, jobInvocationId)
+
+	url, err := addOptions(url, opts)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	req, err := s.client.NewRequest(ctx, http.MethodPost, url, nil)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	root := new(jobInvocationRoot)
+	resp, err := s.client.Do(ctx, req, root)
+	if err != nil {
+		return nil, resp, err
+	}
+	return root.JobInvocation, resp, nil
+}
+
 // GetLogs retrieves app logs.
 func (s *AppsServiceOp) GetLogs(ctx context.Context, appID, deploymentID, component string, logType AppLogType, follow bool, tailLines int) (*AppLogs, *Response, error) {
 	var url string
diff --git a/vendor/github.com/digitalocean/godo/godo.go b/vendor/github.com/digitalocean/godo/godo.go
index 663bd6a487..9f69b8a112 100644
--- a/vendor/github.com/digitalocean/godo/godo.go
+++ b/vendor/github.com/digitalocean/godo/godo.go
@@ -21,7 +21,7 @@ import (
 )
 
 const (
-	libraryVersion = "1.170.0"
+	libraryVersion = "1.172.0"
 	defaultBaseURL = "https://api.digitalocean.com/"
 	userAgent      = "godo/" + libraryVersion
 	mediaType      = "application/json"
@@ -98,7 +98,7 @@ type Client struct {
 	UptimeChecks        UptimeChecksService
 	VPCs                VPCsService
 	PartnerAttachment   PartnerAttachmentService
-	GenAI               GenAIService
+	GradientAI          GradientAIService
 	BYOIPPrefixes       BYOIPPrefixesService
 	// Optional function called after every successful request made to the DO APIs
 	onRequestCompleted RequestCompletionCallback
@@ -328,7 +328,7 @@ func NewClient(httpClient *http.Client) *Client {
 	c.UptimeChecks = &UptimeChecksServiceOp{client: c}
 	c.VPCs = &VPCsServiceOp{client: c}
 	c.PartnerAttachment = &PartnerAttachmentServiceOp{client: c}
-	c.GenAI = &GenAIServiceOp{client: c}
+	c.GradientAI = &GradientAIServiceOp{client: c}
 
 	c.headers = make(map[string]string)
 
diff --git a/vendor/github.com/digitalocean/godo/genai.go b/vendor/github.com/digitalocean/godo/gradientai.go
similarity index 72%
rename from vendor/github.com/digitalocean/godo/genai.go
rename to vendor/github.com/digitalocean/godo/gradientai.go
index 415eeb89c3..8b0ee4da82 100644
--- a/vendor/github.com/digitalocean/godo/genai.go
+++ b/vendor/github.com/digitalocean/godo/gradientai.go
@@ -9,12 +9,12 @@ import (
 )
 
 const (
-	genAIBasePath                = "/v2/gen-ai/agents"
+	gradientBasePath             = "/v2/gen-ai/agents"
 	agentModelBasePath           = "/v2/gen-ai/models"
 	datacenterRegionsPath        = "/v2/gen-ai/regions"
-	agentRouteBasePath           = genAIBasePath + "/%s/child_agents/%s"
+	agentRouteBasePath           = gradientBasePath + "/%s/child_agents/%s"
 	KnowledgeBasePath            = "/v2/gen-ai/knowledge_bases"
-	functionRouteBasePath        = genAIBasePath + "/%s/functions"
+	functionRouteBasePath        = gradientBasePath + "/%s/functions"
 	KnowledgeBaseDataSourcesPath = KnowledgeBasePath + "/%s/data_sources"
 	GetKnowledgeBaseByIDPath     = KnowledgeBasePath + "/%s"
 	UpdateKnowledgeBaseByIDPath  = KnowledgeBasePath + "/%s"
@@ -32,10 +32,10 @@ const (
 	DeleteFunctionRoutePath      = functionRouteBasePath + "/%s"
 )
 
-// GenAIService is an interface for interfacing with the Gen AI Agent endpoints
+// GradientAIService is an interface for interfacing with the Gradient AI Agent endpoints
 // of the DigitalOcean API.
-// See https://docs.digitalocean.com/reference/api/digitalocean/#tag/GenAI-Platform-(Public-Preview) for more details.
-type GenAIService interface {
+// See https://docs.digitalocean.com/reference/api/digitalocean/#tag/GradientAI-Platform for more details.
+type GradientAIService interface {
 	ListAgents(context.Context, *ListOptions) ([]*Agent, *Response, error)
 	CreateAgent(context.Context, *AgentCreateRequest) (*Agent, *Response, error)
 	ListAgentAPIKeys(context.Context, string, *ListOptions) ([]*ApiKeyInfo, *Response, error)
@@ -85,24 +85,24 @@ type GenAIService interface {
 	ListDatacenterRegions(context.Context, *bool, *bool) ([]*DatacenterRegions, *Response, error)
 }
 
-var _ GenAIService = &GenAIServiceOp{}
+var _ GradientAIService = &GradientAIServiceOp{}
 
-// GenAIServiceOp interfaces with the Gen AI Service endpoints in the DigitalOcean API.
-type GenAIServiceOp struct {
+// GradientAIServiceOp interfaces with the Gradient AI Service endpoints in the DigitalOcean API.
+type GradientAIServiceOp struct {
 	client *Client
 }
 
-type genAIAgentsRoot struct {
+type gradientAgentsRoot struct {
 	Agents []*Agent `json:"agents"`
 	Links  *Links   `json:"links"`
 	Meta   *Meta    `json:"meta"`
 }
 
-type genAIAgentRoot struct {
+type gradientAgentRoot struct {
 	Agent *Agent `json:"agent"`
 }
 
-type genAIModelsRoot struct {
+type gradientModelsRoot struct {
 	Models []*Model `json:"models"`
 	Links  *Links   `json:"links"`
 	Meta   *Meta    `json:"meta"`
@@ -143,46 +143,52 @@ type openaiAPIKeyRoot struct {
 	OpenAIAPIKey *OpenAiApiKey `json:"api_key_info,omitempty"`
 }
 
-// Agent represents a Gen AI Agent
+// Agent represents a Gradient AI Agent
 type Agent struct {
-	AnthropicApiKey    *AnthropicApiKeyInfo      `json:"anthropic_api_key,omitempty"`
-	ApiKeyInfos        []*ApiKeyInfo             `json:"api_key_infos,omitempty"`
-	ApiKeys            []*ApiKey                 `json:"api_keys,omitempty"`
-	ChatBot            *ChatBot                  `json:"chatbot,omitempty"`
-	ChatbotIdentifiers []*AgentChatbotIdentifier `json:"chatbot_identifiers,omitempty"`
-	CreatedAt          *Timestamp                `json:"created_at,omitempty"`
-	ChildAgents        []*Agent                  `json:"child_agents,omitempty"`
-	Deployment         *AgentDeployment          `json:"deployment,omitempty"`
-	Description        string                    `json:"description,omitempty"`
-	UpdatedAt          *Timestamp                `json:"updated_at,omitempty"`
-	Functions          []*AgentFunction          `json:"functions,omitempty"`
-	Guardrails         []*AgentGuardrail         `json:"guardrails,omitempty"`
-	IfCase             string                    `json:"if_case,omitempty"`
-	Instruction        string                    `json:"instruction,omitempty"`
-	K                  int                       `json:"k,omitempty"`
-	KnowledgeBases     []*KnowledgeBase          `json:"knowledge_bases,omitempty"`
-	MaxTokens          int                       `json:"max_tokens,omitempty"`
-	Model              *Model                    `json:"model,omitempty"`
-	Name               string                    `json:"name,omitempty"`
-	OpenAiApiKey       *OpenAiApiKey             `json:"open_ai_api_key,omitempty"`
-	ParentAgents       []*Agent                  `json:"parent_agents,omitempty"`
-	ProjectId          string                    `json:"project_id,omitempty"`
-	Region             string                    `json:"region,omitempty"`
-	RetrievalMethod    string                    `json:"retrieval_method,omitempty"`
-	RouteCreatedAt     *Timestamp                `json:"route_created_at,omitempty"`
-	RouteCreatedBy     string                    `json:"route_created_by,omitempty"`
-	RouteUuid          string                    `json:"route_uuid,omitempty"`
-	RouteName          string                    `json:"route_name,omitempty"`
-	Tags               []string                  `json:"tags,omitempty"`
-	Template           *AgentTemplate            `json:"template,omitempty"`
-	Temperature        float64                   `json:"temperature,omitempty"`
-	TopP               float64                   `json:"top_p,omitempty"`
-	Url                string                    `json:"url,omitempty"`
-	UserId             string                    `json:"user_id,omitempty"`
-	Uuid               string                    `json:"uuid,omitempty"`
-}
-
-// AgentVersion represents a version of a Gen AI Agent
+	AnthropicApiKey         *AnthropicApiKeyInfo      `json:"anthropic_api_key,omitempty"`
+	ApiKeyInfos             []*ApiKeyInfo             `json:"api_key_infos,omitempty"`
+	ApiKeys                 []*ApiKey                 `json:"api_keys,omitempty"`
+	ChatBot                 *ChatBot                  `json:"chatbot,omitempty"`
+	ChatbotIdentifiers      []*AgentChatbotIdentifier `json:"chatbot_identifiers,omitempty"`
+	CreatedAt               *Timestamp                `json:"created_at,omitempty"`
+	ChildAgents             []*Agent                  `json:"child_agents,omitempty"`
+	ConversationLogsEnabled bool                      `json:"conversation_logs_enabled,omitempty"`
+	Deployment              *AgentDeployment          `json:"deployment,omitempty"`
+	Description             string                    `json:"description,omitempty"`
+	Functions               []*AgentFunction          `json:"functions,omitempty"`
+	Guardrails              []*AgentGuardrail         `json:"guardrails,omitempty"`
+	IfCase                  string                    `json:"if_case,omitempty"`
+	Instruction             string                    `json:"instruction,omitempty"`
+	K                       int                       `json:"k,omitempty"`
+	KnowledgeBases          []*KnowledgeBase          `json:"knowledge_bases,omitempty"`
+	MaxTokens               int                       `json:"max_tokens,omitempty"`
+	Model                   *Model                    `json:"model,omitempty"`
+	Name                    string                    `json:"name,omitempty"`
+	OpenAiApiKey            *OpenAiApiKey             `json:"open_ai_api_key,omitempty"`
+	ParentAgents            []*Agent                  `json:"parent_agents,omitempty"`
+	ProjectId               string                    `json:"project_id,omitempty"`
+	ProvideCitations        bool                      `json:"provide_citations,omitempty"`
+	Region                  string                    `json:"region,omitempty"`
+	RetrievalMethod         string                    `json:"retrieval_method,omitempty"`
+	RouteCreatedAt          *Timestamp                `json:"route_created_at,omitempty"`
+	RouteCreatedBy          string                    `json:"route_created_by,omitempty"`
+	RouteUuid               string                    `json:"route_uuid,omitempty"`
+	RouteName               string                    `json:"route_name,omitempty"`
+	Tags                    []string                  `json:"tags,omitempty"`
+	Template                *AgentTemplate            `json:"template,omitempty"`
+	Temperature             float64                   `json:"temperature,omitempty"`
+	TopP                    float64                   `json:"top_p,omitempty"`
+	UpdatedAt               *Timestamp                `json:"updated_at,omitempty"`
+	Url                     string                    `json:"url,omitempty"`
+	UserId                  string                    `json:"user_id,omitempty"`
+	Uuid                    string                    `json:"uuid,omitempty"`
+	VersionHash             string                    `json:"version_hash,omitempty"`
+	VPCEgressIPs            []string                  `json:"vpc_egress_ips,omitempty"`
+	VPCUuid                 string                    `json:"vpc_uuid,omitempty"`
+	Workspace               Workspace                 `json:"workspace,omitempty"`
+}
+
+// AgentVersion represents a version of a Gradient AI Agent
 type AgentVersion struct {
 	AgentUuid              string                `json:"agent_uuid,omitempty"`
 	AttachedChildAgents    []*AttachedChildAgent `json:"attached_child_agents,omitempty"`
@@ -233,13 +239,13 @@ type AuditHeader struct {
 	UserUUID          string `json:"user_uuid,omitempty"`
 }
 
-// RollbackVersionRequest represents the request to rollback a Gen AI Agent to a previous version
+// RollbackVersionRequest represents the request to rollback a Gradient AI Agent to a previous version
 type RollbackVersionRequest struct {
 	AgentUuid   string `json:"uuid,omitempty"`
 	VersionHash string `json:"version_hash,omitempty"`
 }
 
-// AgentFunction represents a Gen AI Agent Function
+// AgentFunction represents a Gradient AI Agent Function
 type AgentFunction struct {
 	ApiKey        string     `json:"api_key,omitempty"`
 	CreatedAt     *Timestamp `json:"created_at,omitempty"`
@@ -254,7 +260,7 @@ type AgentFunction struct {
 	IsDeleted     bool       `json:"is_deleted,omitempty"`
 }
 
-// AgentGuardrail represents a Guardrail attached to Gen AI Agent
+// AgentGuardrail represents a Guardrail attached to Gradient AI Agent
 type AgentGuardrail struct {
 	AgentUuid       string     `json:"agent_uuid,omitempty"`
 	CreatedAt       *Timestamp `json:"created_at,omitempty"`
@@ -312,7 +318,7 @@ type AgentVisibilityUpdateRequest struct {
 	Visibility string `json:"visibility,omitempty"`
 }
 
-// AgentTemplate represents the template of a Gen AI Agent
+// AgentTemplate represents the template of a Gradient AI Agent
 type AgentTemplate struct {
 	CreatedAt      *Timestamp       `json:"created_at,omitempty"`
 	Instruction    string           `json:"instruction,omitempty"`
@@ -328,7 +334,107 @@ type AgentTemplate struct {
 	Uuid           string           `json:"uuid,omitempty"`
 }
 
-// KnowledgeBase represents a Gen AI Knowledge Base
+// EvaluationMetricType represents the type of evaluation metric.
+type EvaluationMetricType string
+
+const (
+	MetricTypeUnspecified    EvaluationMetricType = "METRIC_TYPE_UNSPECIFIED"
+	MetricTypeGeneralQuality EvaluationMetricType = "METRIC_TYPE_GENERAL_QUALITY"
+	MetricTypeRAGAndTool     EvaluationMetricType = "METRIC_TYPE_RAG_AND_TOOL"
+)
+
+// EvaluationMetricValueType represents the value type of an evaluation metric.
+type EvaluationMetricValueType string
+
+const (
+	MetricValueTypeUnspecified EvaluationMetricValueType = "METRIC_VALUE_TYPE_UNSPECIFIED"
+	MetricValueTypeNumber      EvaluationMetricValueType = "METRIC_VALUE_TYPE_NUMBER"
+	MetricValueTypeString      EvaluationMetricValueType = "METRIC_VALUE_TYPE_STRING"
+	MetricValueTypePercentage  EvaluationMetricValueType = "METRIC_VALUE_TYPE_PERCENTAGE"
+)
+
+// EvaluationMetricCategory represents the category of an evaluation metric.
+type EvaluationMetricCategory string
+
+const (
+	MetricCategoryUnspecified       EvaluationMetricCategory = "METRIC_CATEGORY_UNSPECIFIED"
+	MetricCategoryCorrectness       EvaluationMetricCategory = "METRIC_CATEGORY_CORRECTNESS"
+	MetricCategoryUserOutcomes      EvaluationMetricCategory = "METRIC_CATEGORY_USER_OUTCOMES"
+	MetricCategorySafetyAndSecurity EvaluationMetricCategory = "METRIC_CATEGORY_SAFETY_AND_SECURITY"
+	MetricCategoryContextQuality    EvaluationMetricCategory = "METRIC_CATEGORY_CONTEXT_QUALITY"
+	MetricCategoryModelFit          EvaluationMetricCategory = "METRIC_CATEGORY_MODEL_FIT"
+)
+
+// Workspace represents a workspace containing agents and evaluation test cases.
+type Workspace struct {
+	UUID                string                `json:"uuid,omitempty"`
+	Name                string                `json:"name,omitempty"`
+	Description         string                `json:"description,omitempty"`
+	CreatedByEmail      string                `json:"created_by_email,omitempty"`
+	CreatedBy           uint64                `json:"created_by,omitempty"`
+	CreatedAt           *Timestamp            `json:"created_at,omitempty"`
+	UpdatedAt           *Timestamp            `json:"updated_at,omitempty"`
+	DeletedAt           *Timestamp            `json:"deleted_at,omitempty"`
+	Agents              []*Agent              `json:"agents,omitempty"`
+	EvaluationTestCases []*EvaluationTestCase `json:"evaluation_test_cases,omitempty"`
+}
+
+// EvaluationTestCase represents an evaluation test case configuration.
+type EvaluationTestCase struct {
+	TestCaseUUID              string              `json:"test_case_uuid,omitempty"`
+	Name                      string              `json:"name,omitempty"`
+	Description               string              `json:"description,omitempty"`
+	Version                   uint32              `json:"version,omitempty"`
+	DatasetUUID               string              `json:"dataset_uuid,omitempty"` // Deprecated
+	DatasetName               string              `json:"dataset_name,omitempty"` // Deprecated
+	Metrics                   []*EvaluationMetric `json:"metrics,omitempty"`
+	StarMetric                *StarMetric         `json:"star_metric,omitempty"`
+	TotalRuns                 int32               `json:"total_runs,omitempty"`
+	LatestVersionNumberOfRuns int32               `json:"latest_version_number_of_runs,omitempty"`
+	UpdatedByUserID           uint64              `json:"updated_by_user_id,omitempty"`
+	UpdatedByUserEmail        string              `json:"updated_by_user_email,omitempty"`
+	CreatedByUserEmail        string              `json:"created_by_user_email,omitempty"`
+	CreatedByUserID           uint64              `json:"created_by_user_id,omitempty"`
+	CreatedAt                 *Timestamp          `json:"created_at,omitempty"`
+	UpdatedAt                 *Timestamp          `json:"updated_at,omitempty"`
+	ArchivedAt                *Timestamp          `json:"archived_at,omitempty"`
+	Dataset                   *EvaluationDataset  `json:"dataset,omitempty"`
+}
+
+// EvaluationMetric represents an evaluation metric definition.
+type EvaluationMetric struct {
+	MetricUUID      string                    `json:"metric_uuid,omitempty"`
+	MetricName      string                    `json:"metric_name,omitempty"`
+	Description     string                    `json:"description,omitempty"`
+	MetricType      EvaluationMetricType      `json:"metric_type,omitempty"`
+	MetricValueType EvaluationMetricValueType `json:"metric_value_type,omitempty"`
+	RangeMin        float32                   `json:"range_min,omitempty"`
+	RangeMax        float32                   `json:"range_max,omitempty"`
+	Inverted        bool                      `json:"inverted,omitempty"`
+	Category        EvaluationMetricCategory  `json:"category,omitempty"`
+	IsMetricGoal    bool                      `json:"is_metric_goal,omitempty"`
+	MetricRank      uint32                    `json:"metric_rank,omitempty"`
+}
+
+// EvaluationDataset represents the dataset information for an evaluation.
+type EvaluationDataset struct {
+	DatasetUUID    string     `json:"dataset_uuid,omitempty"`
+	DatasetName    string     `json:"dataset_name,omitempty"`
+	RowCount       uint32     `json:"row_count,omitempty"`
+	HasGroundTruth bool       `json:"has_ground_truth,omitempty"`
+	FileSize       uint64     `json:"file_size,omitempty"`
+	CreatedAt      *Timestamp `json:"created_at,omitempty"`
+}
+
+// StarMetric represents a star metric configuration.
+type StarMetric struct {
+	MetricUUID          string   `json:"metric_uuid,omitempty"`
+	Name                string   `json:"name,omitempty"`
+	SuccessThresholdPct *int32   `json:"success_threshold_pct,omitempty"` // Deprecated
+	SuccessThreshold    *float32 `json:"success_threshold,omitempty"`
+}
+
+// KnowledgeBase represents a Gradient AI Knowledge Base
 type KnowledgeBase struct {
 	AddedToAgentAt     *Timestamp       `json:"added_to_agent_at,omitempty"`
 	CreatedAt          *Timestamp       `json:"created_at,omitempty"`
@@ -346,7 +452,7 @@ type KnowledgeBase struct {
 	IsDeleted          bool             `json:"is_deleted,omitempty"`
 }
 
-// LastIndexingJob represents the last indexing job description of a Gen AI Knowledge Base
+// LastIndexingJob represents the last indexing job description of a Gradient AI Knowledge Base
 type LastIndexingJob struct {
 	CompletedDatasources int        `json:"completed_datasources,omitempty"`
 	CreatedAt            *Timestamp `json:"created_at,omitempty"`
@@ -409,7 +515,7 @@ type AgentChatbotIdentifier struct {
 	AgentChatbotIdentifier string `json:"agent_chatbot_identifier,omitempty"`
 }
 
-// AgentDeployment represents the deployment information of a Gen AI Agent
+// AgentDeployment represents the deployment information of a Gradient AI Agent
 type AgentDeployment struct {
 	CreatedAt  *Timestamp `json:"created_at,omitempty"`
 	Name       string     `json:"name,omitempty"`
@@ -420,7 +526,7 @@ type AgentDeployment struct {
 	Visibility string     `json:"visibility,omitempty"`
 }
 
-// ChatBot represents the chatbot information of a Gen AI Agent
+// ChatBot represents the chatbot information of a Gradient AI Agent
 type ChatBot struct {
 	ButtonBackgroundColor string `json:"button_background_color,omitempty"`
 	Logo                  string `json:"logo,omitempty"`
@@ -430,7 +536,7 @@ type ChatBot struct {
 	StartingMessage       string `json:"starting_message,omitempty"`
 }
 
-// Model represents a Gen AI Model
+// Model represents a Gradient AI Model
 type Model struct {
 	Agreement        *Agreement    `json:"agreement,omitempty"`
 	CreatedAt        *Timestamp    `json:"created_at,omitempty"`
@@ -448,7 +554,7 @@ type Model struct {
 	Version          *ModelVersion `json:"version,omitempty"`
 }
 
-// Agreement represents the agreement information of a Gen AI Model
+// Agreement represents the agreement information of a Gradient AI Model
 type Agreement struct {
 	Description string `json:"description,omitempty"`
 	Name        string `json:"name,omitempty"`
@@ -462,27 +568,29 @@ type ModelVersion struct {
 	Patch int `json:"patch,omitempty"`
 }
 
-// AgentCreateRequest represents the request to create a new Gen AI Agent
+// AgentCreateRequest represents the request to create a new Gradient AI Agent
 type AgentCreateRequest struct {
-	AnthropicKeyUuid  string   `json:"anthropic_key_uuid,omitempty"`
-	Description       string   `json:"description,omitempty"`
-	Instruction       string   `json:"instruction,omitempty"`
-	KnowledgeBaseUuid []string `json:"knowledge_base_uuid,omitempty"`
-	ModelUuid         string   `json:"model_uuid,omitempty"`
-	Name              string   `json:"name,omitempty"`
-	OpenAiKeyUuid     string   `json:"open_ai_key_uuid,omitempty"`
-	ProjectId         string   `json:"project_id,omitempty"`
-	Region            string   `json:"region,omitempty"`
-	Tags              []string `json:"tags,omitempty"`
-}
-
-// AgentAPIKeyCreateRequest represents the request to create a new Gen AI Agent API Key
+	AnthropicKeyUuid     string   `json:"anthropic_key_uuid,omitempty"`
+	Description          string   `json:"description,omitempty"`
+	Instruction          string   `json:"instruction,omitempty"`
+	KnowledgeBaseUuid    []string `json:"knowledge_base_uuid,omitempty"`
+	ModelProviderKeyUuid string   `json:"model_provider_key_uuid,omitempty"`
+	ModelUuid            string   `json:"model_uuid,omitempty"`
+	Name                 string   `json:"name,omitempty"`
+	OpenAiKeyUuid        string   `json:"open_ai_key_uuid,omitempty"`
+	ProjectId            string   `json:"project_id,omitempty"`
+	Region               string   `json:"region,omitempty"`
+	Tags                 []string `json:"tags,omitempty"`
+	WorkspaceUuid        string   `json:"workspace_uuid,omitempty"`
+}
+
+// AgentAPIKeyCreateRequest represents the request to create a new Gradient AI Agent API Key
 type AgentAPIKeyCreateRequest struct {
 	AgentUuid string `json:"agent_uuid,omitempty"`
 	Name      string `json:"name,omitempty"`
 }
 
-// AgentUpdateRequest represents the request to update an existing Gen AI Agent
+// AgentUpdateRequest represents the request to update an existing Gradient AI Agent
 type AgentUpdateRequest struct {
 	AnthropicKeyUuid string   `json:"anthropic_key_uuid,omitempty"`
 	Description      string   `json:"description,omitempty"`
@@ -502,7 +610,7 @@ type AgentUpdateRequest struct {
 	ProvideCitations bool     `json:"provide_citations,omitempty"`
 }
 
-// AgentAPIKeyUpdateRequest represents the request to update an existing Gen AI Agent API Key
+// AgentAPIKeyUpdateRequest represents the request to update an existing Gradient AI Agent API Key
 type AgentAPIKeyUpdateRequest struct {
 	AgentUuid  string `json:"agent_uuid,omitempty"`
 	APIKeyUuid string `json:"api_key_uuid,omitempty"`
@@ -542,7 +650,7 @@ type KnowledgeBaseCreateRequest struct {
 	VPCUuid            string                    `json:"vpc_uuid"`
 }
 
-// KnowledgeBaseDataSource represents a Gen AI Knowledge Base Data Source
+// KnowledgeBaseDataSource represents a Gradient AI Knowledge Base Data Source
 type KnowledgeBaseDataSource struct {
 	CreatedAt            *Timestamp            `json:"created_at,omitempty"`
 	FileUploadDataSource *FileUploadDataSource `json:"file_upload_data_source,omitempty"`
@@ -707,13 +815,13 @@ type datacenterRegionsRoot struct {
 	DatacenterRegions []*DatacenterRegions `json:"regions"`
 }
 
-type genAIAgentKBRoot struct {
+type gradientAgentKBRoot struct {
 	Agent *Agent `json:"agent"`
 }
 
-// ListAgents returns a list of Gen AI Agents
-func (s *GenAIServiceOp) ListAgents(ctx context.Context, opt *ListOptions) ([]*Agent, *Response, error) {
-	path, err := addOptions(genAIBasePath, opt)
+// ListAgents returns a list of Gradient AI Agents
+func (s *GradientAIServiceOp) ListAgents(ctx context.Context, opt *ListOptions) ([]*Agent, *Response, error) {
+	path, err := addOptions(gradientBasePath, opt)
 	if err != nil {
 		return nil, nil, err
 	}
@@ -723,7 +831,7 @@ func (s *GenAIServiceOp) ListAgents(ctx context.Context, opt *ListOptions) ([]*A
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentsRoot)
+	root := new(gradientAgentsRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -737,9 +845,9 @@ func (s *GenAIServiceOp) ListAgents(ctx context.Context, opt *ListOptions) ([]*A
 	return root.Agents, resp, nil
 }
 
-// CreateAgent creates a new Gen AI Agent by providing the AgentCreateRequest object
-func (s *GenAIServiceOp) CreateAgent(ctx context.Context, create *AgentCreateRequest) (*Agent, *Response, error) {
-	path := genAIBasePath
+// CreateAgent creates a new Gradient AI Agent by providing the AgentCreateRequest object
+func (s *GradientAIServiceOp) CreateAgent(ctx context.Context, create *AgentCreateRequest) (*Agent, *Response, error) {
+	path := gradientBasePath
 	if create.ProjectId == "" {
 		return nil, nil, fmt.Errorf("Project ID is required")
 	}
@@ -760,7 +868,7 @@ func (s *GenAIServiceOp) CreateAgent(ctx context.Context, create *AgentCreateReq
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := s.client.Do(ctx, req, root)
 
 	if err != nil {
@@ -770,9 +878,9 @@ func (s *GenAIServiceOp) CreateAgent(ctx context.Context, create *AgentCreateReq
 	return root.Agent, resp, nil
 }
 
-// ListAgentAPIKeys retrieves list of API Keys associated with the specified GenAI agent
-func (s *GenAIServiceOp) ListAgentAPIKeys(ctx context.Context, agentId string, opt *ListOptions) ([]*ApiKeyInfo, *Response, error) {
-	path := fmt.Sprintf("%s/%s/api_keys", genAIBasePath, agentId)
+// ListAgentAPIKeys retrieves list of API Keys associated with the specified Gradient AI agent
+func (s *GradientAIServiceOp) ListAgentAPIKeys(ctx context.Context, agentId string, opt *ListOptions) ([]*ApiKeyInfo, *Response, error) {
+	path := fmt.Sprintf("%s/%s/api_keys", gradientBasePath, agentId)
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
 	if err != nil {
 		return nil, nil, err
@@ -794,9 +902,9 @@ func (s *GenAIServiceOp) ListAgentAPIKeys(ctx context.Context, agentId string, o
 	return root.ApiKeys, resp, nil
 }
 
-// CreateAgentAPIKey creates a new API key for the specified GenAI agent
-func (s *GenAIServiceOp) CreateAgentAPIKey(ctx context.Context, agentId string, createRequest *AgentAPIKeyCreateRequest) (*ApiKeyInfo, *Response, error) {
-	path := fmt.Sprintf("%s/%s/api_keys", genAIBasePath, agentId)
+// CreateAgentAPIKey creates a new API key for the specified Gradient AI agent
+func (s *GradientAIServiceOp) CreateAgentAPIKey(ctx context.Context, agentId string, createRequest *AgentAPIKeyCreateRequest) (*ApiKeyInfo, *Response, error) {
+	path := fmt.Sprintf("%s/%s/api_keys", gradientBasePath, agentId)
 
 	createRequest.AgentUuid = agentId
 
@@ -814,9 +922,9 @@ func (s *GenAIServiceOp) CreateAgentAPIKey(ctx context.Context, agentId string,
 	return root.ApiKey, resp, err
 }
 
-// UpdateAgentAPIKey updates an existing API key for the specified GenAI agent
-func (s *GenAIServiceOp) UpdateAgentAPIKey(ctx context.Context, agentId, apiKeyId string, updateRequest *AgentAPIKeyUpdateRequest) (*ApiKeyInfo, *Response, error) {
-	path := fmt.Sprintf("%s/%s/api_keys/%s", genAIBasePath, agentId, apiKeyId)
+// UpdateAgentAPIKey updates an existing API key for the specified Gradient AI agent
+func (s *GradientAIServiceOp) UpdateAgentAPIKey(ctx context.Context, agentId, apiKeyId string, updateRequest *AgentAPIKeyUpdateRequest) (*ApiKeyInfo, *Response, error) {
+	path := fmt.Sprintf("%s/%s/api_keys/%s", gradientBasePath, agentId, apiKeyId)
 
 	updateRequest.AgentUuid = agentId
 
@@ -834,9 +942,9 @@ func (s *GenAIServiceOp) UpdateAgentAPIKey(ctx context.Context, agentId, apiKeyI
 	return root.ApiKey, resp, nil
 }
 
-// DeleteAgentAPIKey deletes an existing API key for the specified GenAI agent
-func (s *GenAIServiceOp) DeleteAgentAPIKey(ctx context.Context, agentId, apiKeyId string) (*ApiKeyInfo, *Response, error) {
-	path := fmt.Sprintf("%s/%s/api_keys/%s", genAIBasePath, agentId, apiKeyId)
+// DeleteAgentAPIKey deletes an existing API key for the specified Gradient AI agent
+func (s *GradientAIServiceOp) DeleteAgentAPIKey(ctx context.Context, agentId, apiKeyId string) (*ApiKeyInfo, *Response, error) {
+	path := fmt.Sprintf("%s/%s/api_keys/%s", gradientBasePath, agentId, apiKeyId)
 
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
 	if err != nil {
@@ -852,9 +960,9 @@ func (s *GenAIServiceOp) DeleteAgentAPIKey(ctx context.Context, agentId, apiKeyI
 	return root.ApiKey, resp, nil
 }
 
-// RegenerateAgentAPIKey regenerates an API key for the specified GenAI agent
-func (s *GenAIServiceOp) RegenerateAgentAPIKey(ctx context.Context, agentId, apiKeyId string) (*ApiKeyInfo, *Response, error) {
-	path := fmt.Sprintf("%s/%s/api_keys/%s/regenerate", genAIBasePath, agentId, apiKeyId)
+// RegenerateAgentAPIKey regenerates an API key for the specified Gradient AI agent
+func (s *GradientAIServiceOp) RegenerateAgentAPIKey(ctx context.Context, agentId, apiKeyId string) (*ApiKeyInfo, *Response, error) {
+	path := fmt.Sprintf("%s/%s/api_keys/%s/regenerate", gradientBasePath, agentId, apiKeyId)
 
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, nil)
 	if err != nil {
@@ -870,16 +978,16 @@ func (s *GenAIServiceOp) RegenerateAgentAPIKey(ctx context.Context, agentId, api
 	return root.ApiKey, resp, nil
 }
 
-// GetAgent returns the details of a Gen AI Agent based on the Agent UUID
-func (s *GenAIServiceOp) GetAgent(ctx context.Context, id string) (*Agent, *Response, error) {
-	path := fmt.Sprintf("%s/%s", genAIBasePath, id)
+// GetAgent returns the details of a Gradient AI Agent based on the Agent UUID
+func (s *GradientAIServiceOp) GetAgent(ctx context.Context, id string) (*Agent, *Response, error) {
+	path := fmt.Sprintf("%s/%s", gradientBasePath, id)
 
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -888,15 +996,15 @@ func (s *GenAIServiceOp) GetAgent(ctx context.Context, id string) (*Agent, *Resp
 	return root.Agent, resp, nil
 }
 
-// UpdateAgent function updates a Gen AI Agent properties for the given UUID
-func (s *GenAIServiceOp) UpdateAgent(ctx context.Context, id string, update *AgentUpdateRequest) (*Agent, *Response, error) {
-	path := fmt.Sprintf("%s/%s", genAIBasePath, id)
+// UpdateAgent function updates a Gradient AI Agent properties for the given UUID
+func (s *GradientAIServiceOp) UpdateAgent(ctx context.Context, id string, update *AgentUpdateRequest) (*Agent, *Response, error) {
+	path := fmt.Sprintf("%s/%s", gradientBasePath, id)
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, update)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -905,15 +1013,15 @@ func (s *GenAIServiceOp) UpdateAgent(ctx context.Context, id string, update *Age
 	return root.Agent, resp, nil
 }
 
-// DeleteAgent function deletes a Gen AI Agent by its corresponding UUID
-func (s *GenAIServiceOp) DeleteAgent(ctx context.Context, id string) (*Agent, *Response, error) {
-	path := fmt.Sprintf("%s/%s", genAIBasePath, id)
+// DeleteAgent function deletes a Gradient AI Agent by its corresponding UUID
+func (s *GradientAIServiceOp) DeleteAgent(ctx context.Context, id string) (*Agent, *Response, error) {
+	path := fmt.Sprintf("%s/%s", gradientBasePath, id)
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -922,15 +1030,15 @@ func (s *GenAIServiceOp) DeleteAgent(ctx context.Context, id string) (*Agent, *R
 	return root.Agent, resp, nil
 }
 
-// UpdateAgentVisibility function updates a Gen AI Agent status by changing visibility to public or private.
-func (s *GenAIServiceOp) UpdateAgentVisibility(ctx context.Context, id string, update *AgentVisibilityUpdateRequest) (*Agent, *Response, error) {
-	path := fmt.Sprintf("%s/%s/deployment_visibility", genAIBasePath, id)
+// UpdateAgentVisibility function updates a Gradient AI Agent status by changing visibility to public or private.
+func (s *GradientAIServiceOp) UpdateAgentVisibility(ctx context.Context, id string, update *AgentVisibilityUpdateRequest) (*Agent, *Response, error) {
+	path := fmt.Sprintf("%s/%s/deployment_visibility", gradientBasePath, id)
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, update)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -940,7 +1048,7 @@ func (s *GenAIServiceOp) UpdateAgentVisibility(ctx context.Context, id string, u
 }
 
 // List all knowledge bases
-func (s *GenAIServiceOp) ListKnowledgeBases(ctx context.Context, opt *ListOptions) ([]KnowledgeBase, *Response, error) {
+func (s *GradientAIServiceOp) ListKnowledgeBases(ctx context.Context, opt *ListOptions) ([]KnowledgeBase, *Response, error) {
 
 	path := KnowledgeBasePath
 	path, err := addOptions(path, opt)
@@ -968,7 +1076,7 @@ func (s *GenAIServiceOp) ListKnowledgeBases(ctx context.Context, opt *ListOption
 }
 
 // ListIndexingJobs returns a list of all indexing jobs for knowledge bases
-func (s *GenAIServiceOp) ListIndexingJobs(ctx context.Context, opt *ListOptions) (*IndexingJobsResponse, *Response, error) {
+func (s *GradientAIServiceOp) ListIndexingJobs(ctx context.Context, opt *ListOptions) (*IndexingJobsResponse, *Response, error) {
 	path := IndexingJobsPath
 	path, err := addOptions(path, opt)
 	if err != nil {
@@ -1002,7 +1110,7 @@ func (s *GenAIServiceOp) ListIndexingJobs(ctx context.Context, opt *ListOptions)
 }
 
 // ListIndexingJobDataSources returns the data sources for a specific indexing job
-func (s *GenAIServiceOp) ListIndexingJobDataSources(ctx context.Context, indexingJobUUID string) (*IndexingJobDataSourcesResponse, *Response, error) {
+func (s *GradientAIServiceOp) ListIndexingJobDataSources(ctx context.Context, indexingJobUUID string) (*IndexingJobDataSourcesResponse, *Response, error) {
 	path := fmt.Sprintf(IndexingJobDataSourcesPath, indexingJobUUID)
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
 	if err != nil {
@@ -1019,7 +1127,7 @@ func (s *GenAIServiceOp) ListIndexingJobDataSources(ctx context.Context, indexin
 }
 
 // GetIndexingJob retrieves the status of a specific indexing job for a knowledge base
-func (s *GenAIServiceOp) GetIndexingJob(ctx context.Context, indexingJobUUID string) (*IndexingJobResponse, *Response, error) {
+func (s *GradientAIServiceOp) GetIndexingJob(ctx context.Context, indexingJobUUID string) (*IndexingJobResponse, *Response, error) {
 	path := fmt.Sprintf(IndexingJobByIDPath, indexingJobUUID)
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
 	if err != nil {
@@ -1036,7 +1144,7 @@ func (s *GenAIServiceOp) GetIndexingJob(ctx context.Context, indexingJobUUID str
 }
 
 // CancelIndexingJob cancels a specific indexing job for a knowledge base
-func (s *GenAIServiceOp) CancelIndexingJob(ctx context.Context, indexingJobUUID string) (*IndexingJobResponse, *Response, error) {
+func (s *GradientAIServiceOp) CancelIndexingJob(ctx context.Context, indexingJobUUID string) (*IndexingJobResponse, *Response, error) {
 	path := fmt.Sprintf(IndexingJobCancelPath, indexingJobUUID)
 
 	// Create the request payload
@@ -1059,7 +1167,7 @@ func (s *GenAIServiceOp) CancelIndexingJob(ctx context.Context, indexingJobUUID
 }
 
 // Create a knowledge base
-func (s *GenAIServiceOp) CreateKnowledgeBase(ctx context.Context, knowledgeBaseCreate *KnowledgeBaseCreateRequest) (*KnowledgeBase, *Response, error) {
+func (s *GradientAIServiceOp) CreateKnowledgeBase(ctx context.Context, knowledgeBaseCreate *KnowledgeBaseCreateRequest) (*KnowledgeBase, *Response, error) {
 
 	path := KnowledgeBasePath
 
@@ -1101,7 +1209,7 @@ func (s *GenAIServiceOp) CreateKnowledgeBase(ctx context.Context, knowledgeBaseC
 }
 
 // List Data Sources for a Knowledge Base
-func (s *GenAIServiceOp) ListKnowledgeBaseDataSources(ctx context.Context, knowledgeBaseID string, opt *ListOptions) ([]KnowledgeBaseDataSource, *Response, error) {
+func (s *GradientAIServiceOp) ListKnowledgeBaseDataSources(ctx context.Context, knowledgeBaseID string, opt *ListOptions) ([]KnowledgeBaseDataSource, *Response, error) {
 
 	path := fmt.Sprintf(KnowledgeBaseDataSourcesPath, knowledgeBaseID)
 	path, err := addOptions(path, opt)
@@ -1127,7 +1235,7 @@ func (s *GenAIServiceOp) ListKnowledgeBaseDataSources(ctx context.Context, knowl
 }
 
 // Add Data Source to a Knowledge Base
-func (s *GenAIServiceOp) AddKnowledgeBaseDataSource(ctx context.Context, knowledgeBaseID string, addDataSource *AddKnowledgeBaseDataSourceRequest) (*KnowledgeBaseDataSource, *Response, error) {
+func (s *GradientAIServiceOp) AddKnowledgeBaseDataSource(ctx context.Context, knowledgeBaseID string, addDataSource *AddKnowledgeBaseDataSourceRequest) (*KnowledgeBaseDataSource, *Response, error) {
 	path := fmt.Sprintf(KnowledgeBaseDataSourcesPath, knowledgeBaseID)
 	req, err := s.client.NewRequest(ctx, http.MethodPost, path, addDataSource)
 	if err != nil {
@@ -1142,7 +1250,7 @@ func (s *GenAIServiceOp) AddKnowledgeBaseDataSource(ctx context.Context, knowled
 }
 
 // Deletes data source from a knowledge base
-func (s *GenAIServiceOp) DeleteKnowledgeBaseDataSource(ctx context.Context, knowledgeBaseID string, dataSourceID string) (string, string, *Response, error) {
+func (s *GradientAIServiceOp) DeleteKnowledgeBaseDataSource(ctx context.Context, knowledgeBaseID string, dataSourceID string) (string, string, *Response, error) {
 
 	path := fmt.Sprintf(DeleteDataSourcePath, knowledgeBaseID, dataSourceID)
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
@@ -1162,7 +1270,7 @@ func (s *GenAIServiceOp) DeleteKnowledgeBaseDataSource(ctx context.Context, know
 
 // Get information about a KnowledgeBase and its Database status
 // Database status can be "CREATING","ONLINE","POWEROFF","REBUILDING","REBALANCING","DECOMMISSIONED","FORKING","MIGRATING","RESIZING","RESTORING","POWERING_ON","UNHEALTHY"
-func (s *GenAIServiceOp) GetKnowledgeBase(ctx context.Context, knowledgeBaseID string) (*KnowledgeBase, string, *Response, error) {
+func (s *GradientAIServiceOp) GetKnowledgeBase(ctx context.Context, knowledgeBaseID string) (*KnowledgeBase, string, *Response, error) {
 	path := fmt.Sprintf(GetKnowledgeBaseByIDPath, knowledgeBaseID)
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
 
@@ -1179,7 +1287,7 @@ func (s *GenAIServiceOp) GetKnowledgeBase(ctx context.Context, knowledgeBaseID s
 }
 
 // Update a knowledge base
-func (s *GenAIServiceOp) UpdateKnowledgeBase(ctx context.Context, knowledgeBaseID string, update *UpdateKnowledgeBaseRequest) (*KnowledgeBase, *Response, error) {
+func (s *GradientAIServiceOp) UpdateKnowledgeBase(ctx context.Context, knowledgeBaseID string, update *UpdateKnowledgeBaseRequest) (*KnowledgeBase, *Response, error) {
 	path := fmt.Sprintf(UpdateKnowledgeBaseByIDPath, knowledgeBaseID)
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, update)
 	if err != nil {
@@ -1196,7 +1304,7 @@ func (s *GenAIServiceOp) UpdateKnowledgeBase(ctx context.Context, knowledgeBaseI
 }
 
 // Deletes a knowledge base by its corresponding UUID and returns the UUID of the deleted knowledge base
-func (s *GenAIServiceOp) DeleteKnowledgeBase(ctx context.Context, knowledgeBaseID string) (string, *Response, error) {
+func (s *GradientAIServiceOp) DeleteKnowledgeBase(ctx context.Context, knowledgeBaseID string) (string, *Response, error) {
 
 	path := fmt.Sprintf(DeleteKnowledgeBaseByIDPath, knowledgeBaseID)
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
@@ -1214,7 +1322,7 @@ func (s *GenAIServiceOp) DeleteKnowledgeBase(ctx context.Context, knowledgeBaseI
 }
 
 // Attach a knowledge base to an agent
-func (s *GenAIServiceOp) AttachKnowledgeBaseToAgent(ctx context.Context, agentID string, knowledgeBaseID string) (*Agent, *Response, error) {
+func (s *GradientAIServiceOp) AttachKnowledgeBaseToAgent(ctx context.Context, agentID string, knowledgeBaseID string) (*Agent, *Response, error) {
 
 	path := fmt.Sprintf(AgentKnowledgeBasePath, agentID, knowledgeBaseID)
 	req, err := s.client.NewRequest(ctx, http.MethodPost, path, nil)
@@ -1222,7 +1330,7 @@ func (s *GenAIServiceOp) AttachKnowledgeBaseToAgent(ctx context.Context, agentID
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentKBRoot)
+	root := new(gradientAgentKBRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -1232,7 +1340,7 @@ func (s *GenAIServiceOp) AttachKnowledgeBaseToAgent(ctx context.Context, agentID
 }
 
 // Detach a knowledge base from an agent
-func (s *GenAIServiceOp) DetachKnowledgeBaseToAgent(ctx context.Context, agentID string, knowledgeBaseID string) (*Agent, *Response, error) {
+func (s *GradientAIServiceOp) DetachKnowledgeBaseToAgent(ctx context.Context, agentID string, knowledgeBaseID string) (*Agent, *Response, error) {
 
 	path := fmt.Sprintf(AgentKnowledgeBasePath, agentID, knowledgeBaseID)
 
@@ -1240,7 +1348,7 @@ func (s *GenAIServiceOp) DetachKnowledgeBaseToAgent(ctx context.Context, agentID
 	if err != nil {
 		return nil, nil, err
 	}
-	root := new(genAIAgentKBRoot)
+	root := new(gradientAgentKBRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -1249,7 +1357,7 @@ func (s *GenAIServiceOp) DetachKnowledgeBaseToAgent(ctx context.Context, agentID
 }
 
 // AddAgentRoute function adds a route between a parent and child agent.
-func (s *GenAIServiceOp) AddAgentRoute(ctx context.Context, parentId string, childId string, route *AgentRouteCreateRequest) (*AgentRouteResponse, *Response, error) {
+func (s *GradientAIServiceOp) AddAgentRoute(ctx context.Context, parentId string, childId string, route *AgentRouteCreateRequest) (*AgentRouteResponse, *Response, error) {
 	path := fmt.Sprintf(agentRouteBasePath, parentId, childId)
 	req, err := s.client.NewRequest(ctx, http.MethodPost, path, route)
 	if err != nil {
@@ -1266,7 +1374,7 @@ func (s *GenAIServiceOp) AddAgentRoute(ctx context.Context, parentId string, chi
 }
 
 // UpdateAgentRoute function updates a route between a parent and child agent.
-func (s *GenAIServiceOp) UpdateAgentRoute(ctx context.Context, parentId string, childId string, route *AgentRouteUpdateRequest) (*AgentRouteResponse, *Response, error) {
+func (s *GradientAIServiceOp) UpdateAgentRoute(ctx context.Context, parentId string, childId string, route *AgentRouteUpdateRequest) (*AgentRouteResponse, *Response, error) {
 	path := fmt.Sprintf(agentRouteBasePath, parentId, childId)
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, route)
 	if err != nil {
@@ -1283,7 +1391,7 @@ func (s *GenAIServiceOp) UpdateAgentRoute(ctx context.Context, parentId string,
 }
 
 // DeleteAgentRoute function deletes a route between a parent and child agent.
-func (s *GenAIServiceOp) DeleteAgentRoute(ctx context.Context, parentId string, childId string) (*AgentRouteResponse, *Response, error) {
+func (s *GradientAIServiceOp) DeleteAgentRoute(ctx context.Context, parentId string, childId string) (*AgentRouteResponse, *Response, error) {
 	path := fmt.Sprintf(agentRouteBasePath, parentId, childId)
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
 	if err != nil {
@@ -1299,9 +1407,9 @@ func (s *GenAIServiceOp) DeleteAgentRoute(ctx context.Context, parentId string,
 	return root, resp, nil
 }
 
-// ListAgentVersions retrieves a list of versions for the specified GenAI agent
-func (s *GenAIServiceOp) ListAgentVersions(ctx context.Context, agentId string, opt *ListOptions) ([]*AgentVersion, *Response, error) {
-	path := fmt.Sprintf("%s/%s/versions", genAIBasePath, agentId)
+// ListAgentVersions retrieves a list of versions for the specified GradientAI agent
+func (s *GradientAIServiceOp) ListAgentVersions(ctx context.Context, agentId string, opt *ListOptions) ([]*AgentVersion, *Response, error) {
+	path := fmt.Sprintf("%s/%s/versions", gradientBasePath, agentId)
 	path, err := addOptions(path, opt)
 	if err != nil {
 		return nil, nil, err
@@ -1321,8 +1429,8 @@ func (s *GenAIServiceOp) ListAgentVersions(ctx context.Context, agentId string,
 	return root.AgentVersions, resp, nil
 }
 
-func (s *GenAIServiceOp) RollbackAgentVersion(ctx context.Context, agentId string, versionId string) (string, *Response, error) {
-	path := fmt.Sprintf("%s/%s/versions", genAIBasePath, agentId)
+func (s *GradientAIServiceOp) RollbackAgentVersion(ctx context.Context, agentId string, versionId string) (string, *Response, error) {
+	path := fmt.Sprintf("%s/%s/versions", gradientBasePath, agentId)
 	req, err := s.client.NewRequest(ctx, http.MethodPut, path, RollbackVersionRequest{
 		AgentUuid:   agentId,
 		VersionHash: versionId,
@@ -1341,7 +1449,7 @@ func (s *GenAIServiceOp) RollbackAgentVersion(ctx context.Context, agentId strin
 }
 
 // ListAnthropicAPIKeys retrieves a list of Anthropic API Keys
-func (s *GenAIServiceOp) ListAnthropicAPIKeys(ctx context.Context, opt *ListOptions) ([]*AnthropicApiKeyInfo, *Response, error) {
+func (s *GradientAIServiceOp) ListAnthropicAPIKeys(ctx context.Context, opt *ListOptions) ([]*AnthropicApiKeyInfo, *Response, error) {
 	path := AnthropicAPIKeysPath
 	path, err := addOptions(path, opt)
 	if err != nil {
@@ -1366,7 +1474,7 @@ func (s *GenAIServiceOp) ListAnthropicAPIKeys(ctx context.Context, opt *ListOpti
 	return root.AnthropicApiKeys, resp, nil
 }
 
-func (s *GenAIServiceOp) CreateAnthropicAPIKey(ctx context.Context, anthropicAPIKeyCreate *AnthropicAPIKeyCreateRequest) (*AnthropicApiKeyInfo, *Response, error) {
+func (s *GradientAIServiceOp) CreateAnthropicAPIKey(ctx context.Context, anthropicAPIKeyCreate *AnthropicAPIKeyCreateRequest) (*AnthropicApiKeyInfo, *Response, error) {
 	path := AnthropicAPIKeysPath
 
 	if anthropicAPIKeyCreate.Name == "" {
@@ -1390,7 +1498,7 @@ func (s *GenAIServiceOp) CreateAnthropicAPIKey(ctx context.Context, anthropicAPI
 	return root.AnthropicApiKey, resp, nil
 }
 
-func (s *GenAIServiceOp) GetAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string) (*AnthropicApiKeyInfo, *Response, error) {
+func (s *GradientAIServiceOp) GetAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string) (*AnthropicApiKeyInfo, *Response, error) {
 	path := AnthropicAPIKeysPath + "/" + anthropicApiKeyId
 
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
@@ -1407,7 +1515,7 @@ func (s *GenAIServiceOp) GetAnthropicAPIKey(ctx context.Context, anthropicApiKey
 	return root.AnthropicApiKey, resp, nil
 }
 
-func (s *GenAIServiceOp) UpdateAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string, anthropicAPIKeyUpdate *AnthropicAPIKeyUpdateRequest) (*AnthropicApiKeyInfo, *Response, error) {
+func (s *GradientAIServiceOp) UpdateAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string, anthropicAPIKeyUpdate *AnthropicAPIKeyUpdateRequest) (*AnthropicApiKeyInfo, *Response, error) {
 	path := AnthropicAPIKeysPath + "/" + anthropicApiKeyId
 
 	if anthropicAPIKeyUpdate.ApiKeyUuid == "" {
@@ -1431,7 +1539,7 @@ func (s *GenAIServiceOp) UpdateAnthropicAPIKey(ctx context.Context, anthropicApi
 	return root.AnthropicApiKey, resp, nil
 }
 
-func (s *GenAIServiceOp) DeleteAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string) (*AnthropicApiKeyInfo, *Response, error) {
+func (s *GradientAIServiceOp) DeleteAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string) (*AnthropicApiKeyInfo, *Response, error) {
 	path := AnthropicAPIKeysPath + "/" + anthropicApiKeyId
 
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
@@ -1448,7 +1556,7 @@ func (s *GenAIServiceOp) DeleteAnthropicAPIKey(ctx context.Context, anthropicApi
 	return root.AnthropicApiKey, resp, nil
 }
 
-func (s *GenAIServiceOp) ListAgentsByAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string, opt *ListOptions) ([]*Agent, *Response, error) {
+func (s *GradientAIServiceOp) ListAgentsByAnthropicAPIKey(ctx context.Context, anthropicApiKeyId string, opt *ListOptions) ([]*Agent, *Response, error) {
 	path := fmt.Sprintf("%s/%s/agents", AnthropicAPIKeysPath, anthropicApiKeyId)
 	path, err := addOptions(path, opt)
 	if err != nil {
@@ -1459,7 +1567,7 @@ func (s *GenAIServiceOp) ListAgentsByAnthropicAPIKey(ctx context.Context, anthro
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentsRoot)
+	root := new(gradientAgentsRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -1473,7 +1581,7 @@ func (s *GenAIServiceOp) ListAgentsByAnthropicAPIKey(ctx context.Context, anthro
 	return root.Agents, resp, nil
 }
 
-func (s *GenAIServiceOp) ListOpenAIAPIKeys(ctx context.Context, opt *ListOptions) ([]*OpenAiApiKey, *Response, error) {
+func (s *GradientAIServiceOp) ListOpenAIAPIKeys(ctx context.Context, opt *ListOptions) ([]*OpenAiApiKey, *Response, error) {
 	path := OpenAIAPIKeysPath
 	path, err := addOptions(path, opt)
 	if err != nil {
@@ -1499,7 +1607,7 @@ func (s *GenAIServiceOp) ListOpenAIAPIKeys(ctx context.Context, opt *ListOptions
 	return root.OpenAIApiKeys, resp, nil
 }
 
-func (s *GenAIServiceOp) CreateOpenAIAPIKey(ctx context.Context, openaiAPIKeyCreate *OpenAIAPIKeyCreateRequest) (*OpenAiApiKey, *Response, error) {
+func (s *GradientAIServiceOp) CreateOpenAIAPIKey(ctx context.Context, openaiAPIKeyCreate *OpenAIAPIKeyCreateRequest) (*OpenAiApiKey, *Response, error) {
 	path := OpenAIAPIKeysPath
 
 	if openaiAPIKeyCreate.Name == "" {
@@ -1523,7 +1631,7 @@ func (s *GenAIServiceOp) CreateOpenAIAPIKey(ctx context.Context, openaiAPIKeyCre
 	return root.OpenAIAPIKey, resp, nil
 }
 
-func (s *GenAIServiceOp) GetOpenAIAPIKey(ctx context.Context, openaiApiKeyId string) (*OpenAiApiKey, *Response, error) {
+func (s *GradientAIServiceOp) GetOpenAIAPIKey(ctx context.Context, openaiApiKeyId string) (*OpenAiApiKey, *Response, error) {
 	path := OpenAIAPIKeysPath + "/" + openaiApiKeyId
 
 	req, err := s.client.NewRequest(ctx, http.MethodGet, path, nil)
@@ -1540,7 +1648,7 @@ func (s *GenAIServiceOp) GetOpenAIAPIKey(ctx context.Context, openaiApiKeyId str
 	return root.OpenAIAPIKey, resp, nil
 }
 
-func (s *GenAIServiceOp) UpdateOpenAIAPIKey(ctx context.Context, openaiApiKeyId string, openaiAPIKeyUpdate *OpenAIAPIKeyUpdateRequest) (*OpenAiApiKey, *Response, error) {
+func (s *GradientAIServiceOp) UpdateOpenAIAPIKey(ctx context.Context, openaiApiKeyId string, openaiAPIKeyUpdate *OpenAIAPIKeyUpdateRequest) (*OpenAiApiKey, *Response, error) {
 	path := OpenAIAPIKeysPath + "/" + openaiApiKeyId
 
 	if openaiAPIKeyUpdate.ApiKeyUuid == "" {
@@ -1564,7 +1672,7 @@ func (s *GenAIServiceOp) UpdateOpenAIAPIKey(ctx context.Context, openaiApiKeyId
 	return root.OpenAIAPIKey, resp, nil
 }
 
-func (s *GenAIServiceOp) DeleteOpenAIAPIKey(ctx context.Context, openaiApiKeyId string) (*OpenAiApiKey, *Response, error) {
+func (s *GradientAIServiceOp) DeleteOpenAIAPIKey(ctx context.Context, openaiApiKeyId string) (*OpenAiApiKey, *Response, error) {
 	path := OpenAIAPIKeysPath + "/" + openaiApiKeyId
 
 	req, err := s.client.NewRequest(ctx, http.MethodDelete, path, nil)
@@ -1581,7 +1689,7 @@ func (s *GenAIServiceOp) DeleteOpenAIAPIKey(ctx context.Context, openaiApiKeyId
 	return root.OpenAIAPIKey, resp, nil
 }
 
-func (s *GenAIServiceOp) ListAgentsByOpenAIAPIKey(ctx context.Context, openaiApiKeyId string, opt *ListOptions) ([]*Agent, *Response, error) {
+func (s *GradientAIServiceOp) ListAgentsByOpenAIAPIKey(ctx context.Context, openaiApiKeyId string, opt *ListOptions) ([]*Agent, *Response, error) {
 	path := fmt.Sprintf("%s/%s/agents", OpenAIAPIKeysPath, openaiApiKeyId)
 	path, err := addOptions(path, opt)
 	if err != nil {
@@ -1592,7 +1700,7 @@ func (s *GenAIServiceOp) ListAgentsByOpenAIAPIKey(ctx context.Context, openaiApi
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentsRoot)
+	root := new(gradientAgentsRoot)
 	resp, err := s.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -1607,7 +1715,7 @@ func (s *GenAIServiceOp) ListAgentsByOpenAIAPIKey(ctx context.Context, openaiApi
 }
 
 // Attaches a functionroute to an agent.
-func (g *GenAIServiceOp) CreateFunctionRoute(ctx context.Context, id string, create *FunctionRouteCreateRequest) (*Agent, *Response, error) {
+func (g *GradientAIServiceOp) CreateFunctionRoute(ctx context.Context, id string, create *FunctionRouteCreateRequest) (*Agent, *Response, error) {
 	path := fmt.Sprintf(functionRouteBasePath, id)
 
 	if create.AgentUuid == "" {
@@ -1634,7 +1742,7 @@ func (g *GenAIServiceOp) CreateFunctionRoute(ctx context.Context, id string, cre
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := g.client.Do(ctx, req, root)
 
 	if err != nil {
@@ -1645,14 +1753,14 @@ func (g *GenAIServiceOp) CreateFunctionRoute(ctx context.Context, id string, cre
 }
 
 // Deletes a functionroute to an agent.
-func (g *GenAIServiceOp) DeleteFunctionRoute(ctx context.Context, agent_id string, function_id string) (*Agent, *Response, error) {
+func (g *GradientAIServiceOp) DeleteFunctionRoute(ctx context.Context, agent_id string, function_id string) (*Agent, *Response, error) {
 	path := fmt.Sprintf(UpdateFunctionRoutePath, agent_id, function_id)
 	req, err := g.client.NewRequest(ctx, http.MethodDelete, path, nil)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := g.client.Do(ctx, req, root)
 
 	if err != nil {
@@ -1663,14 +1771,14 @@ func (g *GenAIServiceOp) DeleteFunctionRoute(ctx context.Context, agent_id strin
 }
 
 // Updates a functionroute to an agent.
-func (g *GenAIServiceOp) UpdateFunctionRoute(ctx context.Context, agent_id string, function_id string, update *FunctionRouteUpdateRequest) (*Agent, *Response, error) {
+func (g *GradientAIServiceOp) UpdateFunctionRoute(ctx context.Context, agent_id string, function_id string, update *FunctionRouteUpdateRequest) (*Agent, *Response, error) {
 	path := fmt.Sprintf(UpdateFunctionRoutePath, agent_id, function_id)
 	req, err := g.client.NewRequest(ctx, http.MethodPut, path, update)
 	if err != nil {
 		return nil, nil, err
 	}
 
-	root := new(genAIAgentRoot)
+	root := new(gradientAgentRoot)
 	resp, err := g.client.Do(ctx, req, root)
 
 	if err != nil {
@@ -1680,8 +1788,8 @@ func (g *GenAIServiceOp) UpdateFunctionRoute(ctx context.Context, agent_id strin
 	return root.Agent, resp, nil
 }
 
-// ListAvailableModels returns a list of available Gen AI models
-func (g *GenAIServiceOp) ListAvailableModels(ctx context.Context, opt *ListOptions) ([]*Model, *Response, error) {
+// ListAvailableModels returns a list of available Gradient AI models
+func (g *GradientAIServiceOp) ListAvailableModels(ctx context.Context, opt *ListOptions) ([]*Model, *Response, error) {
 	path, err := addOptions(agentModelBasePath, opt)
 	if err != nil {
 		return nil, nil, err
@@ -1692,7 +1800,7 @@ func (g *GenAIServiceOp) ListAvailableModels(ctx context.Context, opt *ListOptio
 		return nil, nil, err
 	}
 
-	root := new(genAIModelsRoot)
+	root := new(gradientModelsRoot)
 	resp, err := g.client.Do(ctx, req, root)
 	if err != nil {
 		return nil, resp, err
@@ -1704,8 +1812,8 @@ func (g *GenAIServiceOp) ListAvailableModels(ctx context.Context, opt *ListOptio
 	return root.Models, resp, nil
 }
 
-// ListDatacenterRegions returns a list of available datacenter regions for Gen AI services
-func (g *GenAIServiceOp) ListDatacenterRegions(ctx context.Context, servesInference, servesBatch *bool) ([]*DatacenterRegions, *Response, error) {
+// ListDatacenterRegions returns a list of available datacenter regions for Gradient AI services
+func (g *GradientAIServiceOp) ListDatacenterRegions(ctx context.Context, servesInference, servesBatch *bool) ([]*DatacenterRegions, *Response, error) {
 	path := datacenterRegionsPath
 
 	var params []string
diff --git a/vendor/github.com/digitalocean/godo/image_actions.go b/vendor/github.com/digitalocean/godo/image_actions.go
index 2ee508c7aa..5a79e914d4 100644
--- a/vendor/github.com/digitalocean/godo/image_actions.go
+++ b/vendor/github.com/digitalocean/godo/image_actions.go
@@ -54,7 +54,7 @@ func (i *ImageActionsServiceOp) Transfer(ctx context.Context, imageID int, trans
 // Convert an image to a snapshot
 func (i *ImageActionsServiceOp) Convert(ctx context.Context, imageID int) (*Action, *Response, error) {
 	if imageID < 1 {
-		return nil, nil, NewArgError("imageID", "cannont be less than 1")
+		return nil, nil, NewArgError("imageID", "cannot be less than 1")
 	}
 
 	path := fmt.Sprintf("v2/images/%d/actions", imageID)
diff --git a/vendor/github.com/googleapis/gax-go/v2/CHANGES.md b/vendor/github.com/googleapis/gax-go/v2/CHANGES.md
index fec6b1da9e..2c3300e0a3 100644
--- a/vendor/github.com/googleapis/gax-go/v2/CHANGES.md
+++ b/vendor/github.com/googleapis/gax-go/v2/CHANGES.md
@@ -1,4 +1,10 @@
-# Changelog
+# Changes
+
+## [2.16.0](https://github.com/googleapis/google-cloud-go/releases/tag/v2.16.0) (2025-12-17)
+
+### Features
+
+* add IsFeatureEnabled (#454) ([2700b8a](https://github.com/googleapis/google-cloud-go/commit/2700b8ab3062c6c6c5a26d0fc6ba1fc064a8fc04))
 
 ## [2.15.0](https://github.com/googleapis/gax-go/compare/v2.14.2...v2.15.0) (2025-07-09)
 
diff --git a/vendor/github.com/googleapis/gax-go/v2/feature.go b/vendor/github.com/googleapis/gax-go/v2/feature.go
new file mode 100644
index 0000000000..32e05a3234
--- /dev/null
+++ b/vendor/github.com/googleapis/gax-go/v2/feature.go
@@ -0,0 +1,75 @@
+// Copyright 2025, Google Inc.
+// All rights reserved.
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//     * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//     * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//     * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+package gax
+
+import (
+	"os"
+	"strings"
+	"sync"
+)
+
+var (
+	// featureEnabledOnce caches results for IsFeatureEnabled.
+	featureEnabledOnce  sync.Once
+	featureEnabledStore map[string]bool
+)
+
+// IsFeatureEnabled checks if an experimental feature is enabled via
+// environment variable. The environment variable must be prefixed with
+// "GOOGLE_SDK_GO_EXPERIMENTAL_". The feature name passed to this
+// function must be the suffix (e.g., "FOO" for "GOOGLE_SDK_GO_EXPERIMENTAL_FOO").
+// To enable the feature, the environment variable's value must be "true",
+// case-insensitive. The result for each name is cached on the first call.
+func IsFeatureEnabled(name string) bool {
+	featureEnabledOnce.Do(func() {
+		featureEnabledStore = make(map[string]bool)
+		for _, env := range os.Environ() {
+			if strings.HasPrefix(env, "GOOGLE_SDK_GO_EXPERIMENTAL_") {
+				// Parse "KEY=VALUE"
+				kv := strings.SplitN(env, "=", 2)
+				if len(kv) == 2 && strings.ToLower(kv[1]) == "true" {
+					key := strings.TrimPrefix(kv[0], "GOOGLE_SDK_GO_EXPERIMENTAL_")
+					featureEnabledStore[key] = true
+				}
+			}
+		}
+	})
+	return featureEnabledStore[name]
+}
+
+// TestOnlyResetIsFeatureEnabled is for testing purposes only. It resets the cached
+// feature flags, allowing environment variables to be re-read on the next call to IsFeatureEnabled.
+// This function is not thread-safe; if another goroutine reads a feature after this
+// function is called but before the `featureEnabledOnce` is re-initialized by IsFeatureEnabled,
+// it may see an inconsistent state.
+func TestOnlyResetIsFeatureEnabled() {
+	featureEnabledOnce = sync.Once{}
+	featureEnabledStore = nil
+}
diff --git a/vendor/github.com/googleapis/gax-go/v2/internal/version.go b/vendor/github.com/googleapis/gax-go/v2/internal/version.go
index 0ab1bce59c..fa0e1007ad 100644
--- a/vendor/github.com/googleapis/gax-go/v2/internal/version.go
+++ b/vendor/github.com/googleapis/gax-go/v2/internal/version.go
@@ -1,33 +1,20 @@
-// Copyright 2022, Google Inc.
-// All rights reserved.
+// Copyright 2025 Google LLC
 //
-// Redistribution and use in source and binary forms, with or without
-// modification, are permitted provided that the following conditions are
-// met:
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
 //
-//     * Redistributions of source code must retain the above copyright
-// notice, this list of conditions and the following disclaimer.
-//     * Redistributions in binary form must reproduce the above
-// copyright notice, this list of conditions and the following disclaimer
-// in the documentation and/or other materials provided with the
-// distribution.
-//     * Neither the name of Google Inc. nor the names of its
-// contributors may be used to endorse or promote products derived from
-// this software without specific prior written permission.
+//      http://www.apache.org/licenses/LICENSE-2.0
 //
-// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
-// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
-// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
-// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
-// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
-// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
-// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
-// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
-// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
-// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
-// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Code generated by gapicgen. DO NOT EDIT.
 
 package internal
 
 // Version is the current tagged release of the library.
-const Version = "2.15.0"
+const Version = "2.16.0"
diff --git a/vendor/github.com/sirupsen/logrus/.golangci.yml b/vendor/github.com/sirupsen/logrus/.golangci.yml
index 65dc285037..792db36181 100644
--- a/vendor/github.com/sirupsen/logrus/.golangci.yml
+++ b/vendor/github.com/sirupsen/logrus/.golangci.yml
@@ -1,40 +1,67 @@
+version: "2"
 run:
-  # do not run on test files yet
   tests: false
-
-# all available settings of specific linters
-linters-settings:
-  errcheck:
-    # report about not checking of errors in type assetions: `a := b.(MyStruct)`;
-    # default is false: such cases aren't reported by default.
-    check-type-assertions: false
-
-    # report about assignment of errors to blank identifier: `num, _ := strconv.Atoi(numStr)`;
-    # default is false: such cases aren't reported by default.
-    check-blank: false
-
-  lll:
-    line-length: 100
-    tab-width: 4
-
-  prealloc:
-    simple: false
-    range-loops: false
-    for-loops: false
-
-  whitespace:
-    multi-if: false   # Enforces newlines (or comments) after every multi-line if statement
-    multi-func: false # Enforces newlines (or comments) after every multi-line function signature
-
 linters:
   enable:
-    - megacheck
-    - govet
+    - asasalint
+    - asciicheck
+    - bidichk
+    - bodyclose
+    - contextcheck
+    - durationcheck
+    - errchkjson
+    - errorlint
+    - exhaustive
+    - gocheckcompilerdirectives
+    - gochecksumtype
+    - gosec
+    - gosmopolitan
+    - loggercheck
+    - makezero
+    - musttag
+    - nilerr
+    - nilnesserr
+    - noctx
+    - protogetter
+    - reassign
+    - recvcheck
+    - rowserrcheck
+    - spancheck
+    - sqlclosecheck
+    - testifylint
+    - unparam
+    - zerologlint
   disable:
-    - maligned
     - prealloc
-  disable-all: false
-  presets:
-    - bugs
-    - unused
-  fast: false
+  settings:
+    errcheck:
+      check-type-assertions: false
+      check-blank: false
+    lll:
+      line-length: 100
+      tab-width: 4
+    prealloc:
+      simple: false
+      range-loops: false
+      for-loops: false
+    whitespace:
+      multi-if: false
+      multi-func: false
+  exclusions:
+    generated: lax
+    presets:
+      - comments
+      - common-false-positives
+      - legacy
+      - std-error-handling
+    paths:
+      - third_party$
+      - builtin$
+      - examples$
+formatters:
+  exclusions:
+    generated: lax
+    paths:
+      - third_party$
+      - builtin$
+      - examples$
diff --git a/vendor/github.com/sirupsen/logrus/CHANGELOG.md b/vendor/github.com/sirupsen/logrus/CHANGELOG.md
index 7567f61289..098608ff4b 100644
--- a/vendor/github.com/sirupsen/logrus/CHANGELOG.md
+++ b/vendor/github.com/sirupsen/logrus/CHANGELOG.md
@@ -37,7 +37,7 @@ Features:
 # 1.6.0
 Fixes:
   * end of line cleanup
-  * revert the entry concurrency bug fix whic leads to deadlock under some circumstances
+  * revert the entry concurrency bug fix which leads to deadlock under some circumstances
   * update dependency on go-windows-terminal-sequences to fix a crash with go 1.14
 
 Features:
@@ -129,7 +129,7 @@ This new release introduces:
     which is mostly useful for logger wrapper
   * a fix reverting the immutability of the entry given as parameter to the hooks
     a new configuration field of the json formatter in order to put all the fields
-    in a nested dictionnary
+    in a nested dictionary
   * a new SetOutput method in the Logger
   * a new configuration of the textformatter to configure the name of the default keys
   * a new configuration of the text formatter to disable the level truncation
diff --git a/vendor/github.com/sirupsen/logrus/README.md b/vendor/github.com/sirupsen/logrus/README.md
index d1d4a85fd7..cc5dab7eb7 100644
--- a/vendor/github.com/sirupsen/logrus/README.md
+++ b/vendor/github.com/sirupsen/logrus/README.md
@@ -1,4 +1,4 @@
-# Logrus <img src="http://i.imgur.com/hTeVwmJ.png" width="40" height="40" alt=":walrus:" class="emoji" title=":walrus:"/> [![Build Status](https://github.com/sirupsen/logrus/workflows/CI/badge.svg)](https://github.com/sirupsen/logrus/actions?query=workflow%3ACI) [![Build Status](https://travis-ci.org/sirupsen/logrus.svg?branch=master)](https://travis-ci.org/sirupsen/logrus) [![Go Reference](https://pkg.go.dev/badge/github.com/sirupsen/logrus.svg)](https://pkg.go.dev/github.com/sirupsen/logrus)
+# Logrus <img src="http://i.imgur.com/hTeVwmJ.png" width="40" height="40" alt=":walrus:" class="emoji" title=":walrus:"/> [![Build Status](https://github.com/sirupsen/logrus/workflows/CI/badge.svg)](https://github.com/sirupsen/logrus/actions?query=workflow%3ACI) [![Go Reference](https://pkg.go.dev/badge/github.com/sirupsen/logrus.svg)](https://pkg.go.dev/github.com/sirupsen/logrus)
 
 Logrus is a structured logger for Go (golang), completely API compatible with
 the standard library logger.
@@ -40,7 +40,7 @@ plain text):
 
 ![Colored](http://i.imgur.com/PY7qMwd.png)
 
-With `log.SetFormatter(&log.JSONFormatter{})`, for easy parsing by logstash
+With `logrus.SetFormatter(&logrus.JSONFormatter{})`, for easy parsing by logstash
 or Splunk:
 
 ```text
@@ -60,9 +60,9 @@ ocean","size":10,"time":"2014-03-10 19:57:38.562264131 -0400 EDT"}
 "time":"2014-03-10 19:57:38.562543128 -0400 EDT"}
 ```
 
-With the default `log.SetFormatter(&log.TextFormatter{})` when a TTY is not
+With the default `logrus.SetFormatter(&logrus.TextFormatter{})` when a TTY is not
 attached, the output is compatible with the
-[logfmt](http://godoc.org/github.com/kr/logfmt) format:
+[logfmt](https://pkg.go.dev/github.com/kr/logfmt) format:
 
 ```text
 time="2015-03-26T01:27:38-04:00" level=debug msg="Started observing beach" animal=walrus number=8
@@ -75,17 +75,18 @@ time="2015-03-26T01:27:38-04:00" level=fatal msg="The ice breaks!" err=&{0x20822
 To ensure this behaviour even if a TTY is attached, set your formatter as follows:
 
 ```go
-	log.SetFormatter(&log.TextFormatter{
-		DisableColors: true,
-		FullTimestamp: true,
-	})
+logrus.SetFormatter(&logrus.TextFormatter{
+    DisableColors: true,
+    FullTimestamp: true,
+})
 ```
 
 #### Logging Method Name
 
 If you wish to add the calling method as a field, instruct the logger via:
+
 ```go
-log.SetReportCaller(true)
+logrus.SetReportCaller(true)
 ```
 This adds the caller as 'method' like so:
 
@@ -100,11 +101,11 @@ time="2015-03-26T01:27:38-04:00" level=fatal method=github.com/sirupsen/arcticcr
 Note that this does add measurable overhead - the cost will depend on the version of Go, but is
 between 20 and 40% in recent tests with 1.6 and 1.7.  You can validate this in your
 environment via benchmarks:
-```
+
+```bash
 go test -bench=.*CallerTracing
 ```
 
-
 #### Case-sensitivity
 
 The organization's name was changed to lower-case--and this will not be changed
@@ -118,12 +119,10 @@ The simplest way to use Logrus is simply the package-level exported logger:
 ```go
 package main
 
-import (
-  log "github.com/sirupsen/logrus"
-)
+import "github.com/sirupsen/logrus"
 
 func main() {
-  log.WithFields(log.Fields{
+  logrus.WithFields(logrus.Fields{
     "animal": "walrus",
   }).Info("A walrus appears")
 }
@@ -139,6 +138,7 @@ package main
 
 import (
   "os"
+
   log "github.com/sirupsen/logrus"
 )
 
@@ -190,26 +190,27 @@ package main
 
 import (
   "os"
+
   "github.com/sirupsen/logrus"
 )
 
 // Create a new instance of the logger. You can have any number of instances.
-var log = logrus.New()
+var logger = logrus.New()
 
 func main() {
   // The API for setting attributes is a little different than the package level
-  // exported logger. See Godoc.
-  log.Out = os.Stdout
+  // exported logger. See Godoc. 
+  logger.Out = os.Stdout
 
   // You could set this to any `io.Writer` such as a file
   // file, err := os.OpenFile("logrus.log", os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0666)
   // if err == nil {
-  //  log.Out = file
+  //  logger.Out = file
   // } else {
-  //  log.Info("Failed to log to file, using default stderr")
+  //  logger.Info("Failed to log to file, using default stderr")
   // }
 
-  log.WithFields(logrus.Fields{
+  logger.WithFields(logrus.Fields{
     "animal": "walrus",
     "size":   10,
   }).Info("A group of walrus emerges from the ocean")
@@ -219,12 +220,12 @@ func main() {
 #### Fields
 
 Logrus encourages careful, structured logging through logging fields instead of
-long, unparseable error messages. For example, instead of: `log.Fatalf("Failed
+long, unparseable error messages. For example, instead of: `logrus.Fatalf("Failed
 to send event %s to topic %s with key %d")`, you should log the much more
 discoverable:
 
 ```go
-log.WithFields(log.Fields{
+logrus.WithFields(logrus.Fields{
   "event": event,
   "topic": topic,
   "key": key,
@@ -245,12 +246,12 @@ seen as a hint you should add a field, however, you can still use the
 Often it's helpful to have fields _always_ attached to log statements in an
 application or parts of one. For example, you may want to always log the
 `request_id` and `user_ip` in the context of a request. Instead of writing
-`log.WithFields(log.Fields{"request_id": request_id, "user_ip": user_ip})` on
+`logger.WithFields(logrus.Fields{"request_id": request_id, "user_ip": user_ip})` on
 every line, you can create a `logrus.Entry` to pass around instead:
 
 ```go
-requestLogger := log.WithFields(log.Fields{"request_id": request_id, "user_ip": user_ip})
-requestLogger.Info("something happened on that request") # will log request_id and user_ip
+requestLogger := logger.WithFields(logrus.Fields{"request_id": request_id, "user_ip": user_ip})
+requestLogger.Info("something happened on that request") // will log request_id and user_ip
 requestLogger.Warn("something not great happened")
 ```
 
@@ -264,28 +265,31 @@ Logrus comes with [built-in hooks](hooks/). Add those, or your custom hook, in
 `init`:
 
 ```go
+package main
+
 import (
-  log "github.com/sirupsen/logrus"
-  "gopkg.in/gemnasium/logrus-airbrake-hook.v2" // the package is named "airbrake"
-  logrus_syslog "github.com/sirupsen/logrus/hooks/syslog"
   "log/syslog"
+
+  "github.com/sirupsen/logrus"
+  airbrake "gopkg.in/gemnasium/logrus-airbrake-hook.v2"
+  logrus_syslog "github.com/sirupsen/logrus/hooks/syslog"
 )
 
 func init() {
 
   // Use the Airbrake hook to report errors that have Error severity or above to
   // an exception tracker. You can create custom hooks, see the Hooks section.
-  log.AddHook(airbrake.NewHook(123, "xyz", "production"))
+  logrus.AddHook(airbrake.NewHook(123, "xyz", "production"))
 
   hook, err := logrus_syslog.NewSyslogHook("udp", "localhost:514", syslog.LOG_INFO, "")
   if err != nil {
-    log.Error("Unable to connect to local syslog daemon")
+    logrus.Error("Unable to connect to local syslog daemon")
   } else {
-    log.AddHook(hook)
+    logrus.AddHook(hook)
   }
 }
 ```
-Note: Syslog hook also support connecting to local syslog (Ex. "/dev/log" or "/var/run/syslog" or "/var/run/log"). For the detail, please check the [syslog hook README](hooks/syslog/README.md).
+Note: Syslog hooks also support connecting to local syslog (Ex. "/dev/log" or "/var/run/syslog" or "/var/run/log"). For the detail, please check the [syslog hook README](hooks/syslog/README.md).
 
 A list of currently known service hooks can be found in this wiki [page](https://github.com/sirupsen/logrus/wiki/Hooks)
 
@@ -295,15 +299,15 @@ A list of currently known service hooks can be found in this wiki [page](https:/
 Logrus has seven logging levels: Trace, Debug, Info, Warning, Error, Fatal and Panic.
 
 ```go
-log.Trace("Something very low level.")
-log.Debug("Useful debugging information.")
-log.Info("Something noteworthy happened!")
-log.Warn("You should probably take a look at this.")
-log.Error("Something failed but I'm not quitting.")
+logrus.Trace("Something very low level.")
+logrus.Debug("Useful debugging information.")
+logrus.Info("Something noteworthy happened!")
+logrus.Warn("You should probably take a look at this.")
+logrus.Error("Something failed but I'm not quitting.")
 // Calls os.Exit(1) after logging
-log.Fatal("Bye.")
+logrus.Fatal("Bye.")
 // Calls panic() after logging
-log.Panic("I'm bailing.")
+logrus.Panic("I'm bailing.")
 ```
 
 You can set the logging level on a `Logger`, then it will only log entries with
@@ -311,13 +315,13 @@ that severity or anything above it:
 
 ```go
 // Will log anything that is info or above (warn, error, fatal, panic). Default.
-log.SetLevel(log.InfoLevel)
+logrus.SetLevel(logrus.InfoLevel)
 ```
 
-It may be useful to set `log.Level = logrus.DebugLevel` in a debug or verbose
+It may be useful to set `logrus.Level = logrus.DebugLevel` in a debug or verbose
 environment if your application has that.
 
-Note: If you want different log levels for global (`log.SetLevel(...)`) and syslog logging, please check the [syslog hook README](hooks/syslog/README.md#different-log-levels-for-local-and-remote-logging).
+Note: If you want different log levels for global (`logrus.SetLevel(...)`) and syslog logging, please check the [syslog hook README](hooks/syslog/README.md#different-log-levels-for-local-and-remote-logging).
 
 #### Entries
 
@@ -340,17 +344,17 @@ could do:
 
 ```go
 import (
-  log "github.com/sirupsen/logrus"
+  "github.com/sirupsen/logrus"
 )
 
 func init() {
   // do something here to set environment depending on an environment variable
   // or command-line flag
   if Environment == "production" {
-    log.SetFormatter(&log.JSONFormatter{})
+    logrus.SetFormatter(&logrus.JSONFormatter{})
   } else {
     // The TextFormatter is default, you don't actually have to do this.
-    log.SetFormatter(&log.TextFormatter{})
+    logrus.SetFormatter(&logrus.TextFormatter{})
   }
 }
 ```
@@ -372,11 +376,11 @@ The built-in logging formatters are:
   * When colors are enabled, levels are truncated to 4 characters by default. To disable
     truncation set the `DisableLevelTruncation` field to `true`.
   * When outputting to a TTY, it's often helpful to visually scan down a column where all the levels are the same width. Setting the `PadLevelText` field to `true` enables this behavior, by adding padding to the level text.
-  * All options are listed in the [generated docs](https://godoc.org/github.com/sirupsen/logrus#TextFormatter).
+  * All options are listed in the [generated docs](https://pkg.go.dev/github.com/sirupsen/logrus#TextFormatter).
 * `logrus.JSONFormatter`. Logs fields as JSON.
-  * All options are listed in the [generated docs](https://godoc.org/github.com/sirupsen/logrus#JSONFormatter).
+  * All options are listed in the [generated docs](https://pkg.go.dev/github.com/sirupsen/logrus#JSONFormatter).
 
-Third party logging formatters:
+Third-party logging formatters:
 
 * [`FluentdFormatter`](https://github.com/joonix/log). Formats entries that can be parsed by Kubernetes and Google Container Engine.
 * [`GELF`](https://github.com/fabienm/go-logrus-formatters). Formats entries so they comply to Graylog's [GELF 1.1 specification](http://docs.graylog.org/en/2.4/pages/gelf.html).
@@ -384,7 +388,7 @@ Third party logging formatters:
 * [`prefixed`](https://github.com/x-cray/logrus-prefixed-formatter). Displays log entry source along with alternative layout.
 * [`zalgo`](https://github.com/aybabtme/logzalgo). Invoking the Power of Zalgo.
 * [`nested-logrus-formatter`](https://github.com/antonfisher/nested-logrus-formatter). Converts logrus fields to a nested structure.
-* [`powerful-logrus-formatter`](https://github.com/zput/zxcTool). get fileName, log's line number and the latest function's name when print log; Sava log to files.
+* [`powerful-logrus-formatter`](https://github.com/zput/zxcTool). get fileName, log's line number and the latest function's name when print log; Save log to files.
 * [`caption-json-formatter`](https://github.com/nolleh/caption_json_formatter). logrus's message json formatter with human-readable caption added.
 
 You can define your formatter by implementing the `Formatter` interface,
@@ -393,10 +397,9 @@ requiring a `Format` method. `Format` takes an `*Entry`. `entry.Data` is a
 default ones (see Entries section above):
 
 ```go
-type MyJSONFormatter struct {
-}
+type MyJSONFormatter struct{}
 
-log.SetFormatter(new(MyJSONFormatter))
+logrus.SetFormatter(new(MyJSONFormatter))
 
 func (f *MyJSONFormatter) Format(entry *Entry) ([]byte, error) {
   // Note this doesn't include Time, Level and Message which are available on
@@ -455,17 +458,18 @@ entries. It should not be a feature of the application-level logger.
 
 #### Testing
 
-Logrus has a built in facility for asserting the presence of log messages. This is implemented through the `test` hook and provides:
+Logrus has a built-in facility for asserting the presence of log messages. This is implemented through the `test` hook and provides:
 
 * decorators for existing logger (`test.NewLocal` and `test.NewGlobal`) which basically just adds the `test` hook
 * a test logger (`test.NewNullLogger`) that just records log messages (and does not output any):
 
 ```go
 import(
+  "testing"
+
   "github.com/sirupsen/logrus"
   "github.com/sirupsen/logrus/hooks/test"
   "github.com/stretchr/testify/assert"
-  "testing"
 )
 
 func TestSomething(t*testing.T){
@@ -486,15 +490,15 @@ func TestSomething(t*testing.T){
 Logrus can register one or more functions that will be called when any `fatal`
 level message is logged. The registered handlers will be executed before
 logrus performs an `os.Exit(1)`. This behavior may be helpful if callers need
-to gracefully shutdown. Unlike a `panic("Something went wrong...")` call which can be intercepted with a deferred `recover` a call to `os.Exit(1)` can not be intercepted.
+to gracefully shut down. Unlike a `panic("Something went wrong...")` call which can be intercepted with a deferred `recover` a call to `os.Exit(1)` can not be intercepted.
 
-```
-...
+```go
+// ...
 handler := func() {
-  // gracefully shutdown something...
+  // gracefully shut down something...
 }
 logrus.RegisterExitHandler(handler)
-...
+// ...
 ```
 
 #### Thread safety
@@ -502,7 +506,7 @@ logrus.RegisterExitHandler(handler)
 By default, Logger is protected by a mutex for concurrent writes. The mutex is held when calling hooks and writing logs.
 If you are sure such locking is not needed, you can call logger.SetNoLock() to disable the locking.
 
-Situation when locking is not needed includes:
+Situations when locking is not needed include:
 
 * You have no hooks registered, or hooks calling is already thread-safe.
 
diff --git a/vendor/github.com/sirupsen/logrus/appveyor.yml b/vendor/github.com/sirupsen/logrus/appveyor.yml
index df9d65c3a5..e90f09ea68 100644
--- a/vendor/github.com/sirupsen/logrus/appveyor.yml
+++ b/vendor/github.com/sirupsen/logrus/appveyor.yml
@@ -1,14 +1,12 @@
-version: "{build}"
+# Minimal stub to satisfy AppVeyor CI
+version: 1.0.{build}
 platform: x64
-clone_folder: c:\gopath\src\github.com\sirupsen\logrus
-environment:
-  GOPATH: c:\gopath
+shallow_clone: true
+
 branches:
   only:
     - master
-install:
-  - set PATH=%GOPATH%\bin;c:\go\bin;%PATH%
-  - go version
+    - main
+
 build_script:
-  - go get -t
-  - go test
+  - echo "No-op build to satisfy AppVeyor CI"
diff --git a/vendor/github.com/sirupsen/logrus/entry.go b/vendor/github.com/sirupsen/logrus/entry.go
index 71cdbbc35d..71d796d0b1 100644
--- a/vendor/github.com/sirupsen/logrus/entry.go
+++ b/vendor/github.com/sirupsen/logrus/entry.go
@@ -34,13 +34,15 @@ func init() {
 	minimumCallerDepth = 1
 }
 
-// Defines the key when adding errors using WithError.
+// ErrorKey defines the key when adding errors using [WithError], [Logger.WithError].
 var ErrorKey = "error"
 
-// An entry is the final or intermediate Logrus logging entry. It contains all
+// Entry is the final or intermediate Logrus logging entry. It contains all
 // the fields passed with WithField{,s}. It's finally logged when Trace, Debug,
 // Info, Warn, Error, Fatal or Panic is called on it. These objects can be
 // reused and passed around as much as you wish to avoid field duplication.
+//
+//nolint:recvcheck // the methods of "Entry" use pointer receiver and non-pointer receiver.
 type Entry struct {
 	Logger *Logger
 
@@ -86,12 +88,12 @@ func (entry *Entry) Dup() *Entry {
 	return &Entry{Logger: entry.Logger, Data: data, Time: entry.Time, Context: entry.Context, err: entry.err}
 }
 
-// Returns the bytes representation of this entry from the formatter.
+// Bytes returns the bytes representation of this entry from the formatter.
 func (entry *Entry) Bytes() ([]byte, error) {
 	return entry.Logger.Formatter.Format(entry)
 }
 
-// Returns the string representation from the reader and ultimately the
+// String returns the string representation from the reader and ultimately the
 // formatter.
 func (entry *Entry) String() (string, error) {
 	serialized, err := entry.Bytes()
@@ -102,12 +104,13 @@ func (entry *Entry) String() (string, error) {
 	return str, nil
 }
 
-// Add an error as single field (using the key defined in ErrorKey) to the Entry.
+// WithError adds an error as single field (using the key defined in [ErrorKey])
+// to the Entry.
 func (entry *Entry) WithError(err error) *Entry {
 	return entry.WithField(ErrorKey, err)
 }
 
-// Add a context to the Entry.
+// WithContext adds a context to the Entry.
 func (entry *Entry) WithContext(ctx context.Context) *Entry {
 	dataCopy := make(Fields, len(entry.Data))
 	for k, v := range entry.Data {
@@ -116,12 +119,12 @@ func (entry *Entry) WithContext(ctx context.Context) *Entry {
 	return &Entry{Logger: entry.Logger, Data: dataCopy, Time: entry.Time, err: entry.err, Context: ctx}
 }
 
-// Add a single field to the Entry.
+// WithField adds a single field to the Entry.
 func (entry *Entry) WithField(key string, value interface{}) *Entry {
 	return entry.WithFields(Fields{key: value})
 }
 
-// Add a map of fields to the Entry.
+// WithFields adds a map of fields to the Entry.
 func (entry *Entry) WithFields(fields Fields) *Entry {
 	data := make(Fields, len(entry.Data)+len(fields))
 	for k, v := range entry.Data {
@@ -150,7 +153,7 @@ func (entry *Entry) WithFields(fields Fields) *Entry {
 	return &Entry{Logger: entry.Logger, Data: data, Time: entry.Time, err: fieldErr, Context: entry.Context}
 }
 
-// Overrides the time of the Entry.
+// WithTime overrides the time of the Entry.
 func (entry *Entry) WithTime(t time.Time) *Entry {
 	dataCopy := make(Fields, len(entry.Data))
 	for k, v := range entry.Data {
@@ -204,7 +207,7 @@ func getCaller() *runtime.Frame {
 
 		// If the caller isn't part of this package, we're done
 		if pkg != logrusPackage {
-			return &f //nolint:scopelint
+			return &f
 		}
 	}
 
@@ -432,7 +435,7 @@ func (entry *Entry) Panicln(args ...interface{}) {
 	entry.Logln(PanicLevel, args...)
 }
 
-// Sprintlnn => Sprint no newline. This is to get the behavior of how
+// sprintlnn => Sprint no newline. This is to get the behavior of how
 // fmt.Sprintln where spaces are always added between operands, regardless of
 // their type. Instead of vendoring the Sprintln implementation to spare a
 // string allocation, we do the simplest thing.
diff --git a/vendor/github.com/sirupsen/logrus/hooks.go b/vendor/github.com/sirupsen/logrus/hooks.go
index 3f151cdc39..9ab978a457 100644
--- a/vendor/github.com/sirupsen/logrus/hooks.go
+++ b/vendor/github.com/sirupsen/logrus/hooks.go
@@ -1,16 +1,16 @@
 package logrus
 
-// A hook to be fired when logging on the logging levels returned from
-// `Levels()` on your implementation of the interface. Note that this is not
+// Hook describes hooks to be fired when logging on the logging levels returned from
+// [Hook.Levels] on your implementation of the interface. Note that this is not
 // fired in a goroutine or a channel with workers, you should handle such
-// functionality yourself if your call is non-blocking and you don't wish for
+// functionality yourself if your call is non-blocking, and you don't wish for
 // the logging calls for levels returned from `Levels()` to block.
 type Hook interface {
 	Levels() []Level
 	Fire(*Entry) error
 }
 
-// Internal type for storing the hooks on a logger instance.
+// LevelHooks is an internal type for storing the hooks on a logger instance.
 type LevelHooks map[Level][]Hook
 
 // Add a hook to an instance of logger. This is called with
diff --git a/vendor/github.com/sirupsen/logrus/logger.go b/vendor/github.com/sirupsen/logrus/logger.go
index 5ff0aef6d3..f5b8c439ee 100644
--- a/vendor/github.com/sirupsen/logrus/logger.go
+++ b/vendor/github.com/sirupsen/logrus/logger.go
@@ -72,16 +72,16 @@ func (mw *MutexWrap) Disable() {
 	mw.disabled = true
 }
 
-// Creates a new logger. Configuration should be set by changing `Formatter`,
-// `Out` and `Hooks` directly on the default logger instance. You can also just
+// New Creates a new logger. Configuration should be set by changing [Formatter],
+// Out and Hooks directly on the default Logger instance. You can also just
 // instantiate your own:
 //
-//    var log = &logrus.Logger{
-//      Out: os.Stderr,
-//      Formatter: new(logrus.TextFormatter),
-//      Hooks: make(logrus.LevelHooks),
-//      Level: logrus.DebugLevel,
-//    }
+//	var log = &logrus.Logger{
+//	  Out:       os.Stderr,
+//	  Formatter: new(logrus.TextFormatter),
+//	  Hooks:     make(logrus.LevelHooks),
+//	  Level:     logrus.DebugLevel,
+//	}
 //
 // It's recommended to make this a global instance called `log`.
 func New() *Logger {
@@ -118,30 +118,30 @@ func (logger *Logger) WithField(key string, value interface{}) *Entry {
 	return entry.WithField(key, value)
 }
 
-// Adds a struct of fields to the log entry. All it does is call `WithField` for
-// each `Field`.
+// WithFields adds a struct of fields to the log entry. It calls [Entry.WithField]
+// for each Field.
 func (logger *Logger) WithFields(fields Fields) *Entry {
 	entry := logger.newEntry()
 	defer logger.releaseEntry(entry)
 	return entry.WithFields(fields)
 }
 
-// Add an error as single field to the log entry.  All it does is call
-// `WithError` for the given `error`.
+// WithError adds an error as single field to the log entry.  It calls
+// [Entry.WithError] for the given error.
 func (logger *Logger) WithError(err error) *Entry {
 	entry := logger.newEntry()
 	defer logger.releaseEntry(entry)
 	return entry.WithError(err)
 }
 
-// Add a context to the log entry.
+// WithContext add a context to the log entry.
 func (logger *Logger) WithContext(ctx context.Context) *Entry {
 	entry := logger.newEntry()
 	defer logger.releaseEntry(entry)
 	return entry.WithContext(ctx)
 }
 
-// Overrides the time of the log entry.
+// WithTime overrides the time of the log entry.
 func (logger *Logger) WithTime(t time.Time) *Entry {
 	entry := logger.newEntry()
 	defer logger.releaseEntry(entry)
@@ -347,9 +347,9 @@ func (logger *Logger) Exit(code int) {
 	logger.ExitFunc(code)
 }
 
-//When file is opened with appending mode, it's safe to
-//write concurrently to a file (within 4k message on Linux).
-//In these cases user can choose to disable the lock.
+// SetNoLock disables the lock for situations where a file is opened with
+// appending mode, and safe for concurrent writes to the file (within 4k
+// message on Linux). In these cases user can choose to disable the lock.
 func (logger *Logger) SetNoLock() {
 	logger.mu.Disable()
 }
diff --git a/vendor/github.com/sirupsen/logrus/logrus.go b/vendor/github.com/sirupsen/logrus/logrus.go
index 2f16224cb9..37fc4fef85 100644
--- a/vendor/github.com/sirupsen/logrus/logrus.go
+++ b/vendor/github.com/sirupsen/logrus/logrus.go
@@ -6,13 +6,15 @@ import (
 	"strings"
 )
 
-// Fields type, used to pass to `WithFields`.
+// Fields type, used to pass to [WithFields].
 type Fields map[string]interface{}
 
 // Level type
+//
+//nolint:recvcheck // the methods of "Entry" use pointer receiver and non-pointer receiver.
 type Level uint32
 
-// Convert the Level to a string. E.g. PanicLevel becomes "panic".
+// Convert the Level to a string. E.g. [PanicLevel] becomes "panic".
 func (level Level) String() string {
 	if b, err := level.MarshalText(); err == nil {
 		return string(b)
@@ -77,7 +79,7 @@ func (level Level) MarshalText() ([]byte, error) {
 	return nil, fmt.Errorf("not a valid logrus level %d", level)
 }
 
-// A constant exposing all logging levels
+// AllLevels exposing all logging levels.
 var AllLevels = []Level{
 	PanicLevel,
 	FatalLevel,
@@ -119,8 +121,8 @@ var (
 )
 
 // StdLogger is what your logrus-enabled library should take, that way
-// it'll accept a stdlib logger and a logrus logger. There's no standard
-// interface, this is the closest we get, unfortunately.
+// it'll accept a stdlib logger ([log.Logger]) and a logrus logger.
+// There's no standard interface, so this is the closest we get, unfortunately.
 type StdLogger interface {
 	Print(...interface{})
 	Printf(string, ...interface{})
@@ -135,7 +137,8 @@ type StdLogger interface {
 	Panicln(...interface{})
 }
 
-// The FieldLogger interface generalizes the Entry and Logger types
+// FieldLogger extends the [StdLogger] interface, generalizing
+// the [Entry] and [Logger] types.
 type FieldLogger interface {
 	WithField(key string, value interface{}) *Entry
 	WithFields(fields Fields) *Entry
@@ -176,8 +179,9 @@ type FieldLogger interface {
 	// IsPanicEnabled() bool
 }
 
-// Ext1FieldLogger (the first extension to FieldLogger) is superfluous, it is
-// here for consistancy. Do not use. Use Logger or Entry instead.
+// Ext1FieldLogger (the first extension to [FieldLogger]) is superfluous, it is
+// here for consistency. Do not use. Use [FieldLogger], [Logger] or [Entry]
+// instead.
 type Ext1FieldLogger interface {
 	FieldLogger
 	Tracef(format string, args ...interface{})
diff --git a/vendor/github.com/sirupsen/logrus/terminal_check_bsd.go b/vendor/github.com/sirupsen/logrus/terminal_check_bsd.go
index 499789984d..69956b425a 100644
--- a/vendor/github.com/sirupsen/logrus/terminal_check_bsd.go
+++ b/vendor/github.com/sirupsen/logrus/terminal_check_bsd.go
@@ -1,4 +1,4 @@
-// +build darwin dragonfly freebsd netbsd openbsd
+// +build darwin dragonfly freebsd netbsd openbsd hurd
 // +build !js
 
 package logrus
diff --git a/vendor/github.com/sirupsen/logrus/terminal_check_unix.go b/vendor/github.com/sirupsen/logrus/terminal_check_unix.go
index 04748b8515..c9aed267a4 100644
--- a/vendor/github.com/sirupsen/logrus/terminal_check_unix.go
+++ b/vendor/github.com/sirupsen/logrus/terminal_check_unix.go
@@ -1,5 +1,7 @@
+//go:build (linux || aix || zos) && !js && !wasi
 // +build linux aix zos
 // +build !js
+// +build !wasi
 
 package logrus
 
diff --git a/vendor/github.com/sirupsen/logrus/terminal_check_wasi.go b/vendor/github.com/sirupsen/logrus/terminal_check_wasi.go
new file mode 100644
index 0000000000..2822b212fb
--- /dev/null
+++ b/vendor/github.com/sirupsen/logrus/terminal_check_wasi.go
@@ -0,0 +1,8 @@
+//go:build wasi
+// +build wasi
+
+package logrus
+
+func isTerminal(fd int) bool {
+	return false
+}
diff --git a/vendor/github.com/sirupsen/logrus/terminal_check_wasip1.go b/vendor/github.com/sirupsen/logrus/terminal_check_wasip1.go
new file mode 100644
index 0000000000..108a6be12b
--- /dev/null
+++ b/vendor/github.com/sirupsen/logrus/terminal_check_wasip1.go
@@ -0,0 +1,8 @@
+//go:build wasip1
+// +build wasip1
+
+package logrus
+
+func isTerminal(fd int) bool {
+	return false
+}
diff --git a/vendor/github.com/sirupsen/logrus/text_formatter.go b/vendor/github.com/sirupsen/logrus/text_formatter.go
index be2c6efe5e..6dfeb18b10 100644
--- a/vendor/github.com/sirupsen/logrus/text_formatter.go
+++ b/vendor/github.com/sirupsen/logrus/text_formatter.go
@@ -306,6 +306,7 @@ func (f *TextFormatter) needsQuoting(text string) bool {
 		return false
 	}
 	for _, ch := range text {
+		//nolint:staticcheck // QF1001: could apply De Morgan's law
 		if !((ch >= 'a' && ch <= 'z') ||
 			(ch >= 'A' && ch <= 'Z') ||
 			(ch >= '0' && ch <= '9') ||
@@ -334,6 +335,6 @@ func (f *TextFormatter) appendValue(b *bytes.Buffer, value interface{}) {
 	if !f.needsQuoting(stringVal) {
 		b.WriteString(stringVal)
 	} else {
-		b.WriteString(fmt.Sprintf("%q", stringVal))
+		fmt.Fprintf(b, "%q", stringVal)
 	}
 }
diff --git a/vendor/golang.org/x/crypto/chacha20poly1305/chacha20poly1305.go b/vendor/golang.org/x/crypto/chacha20poly1305/chacha20poly1305.go
index 8cf5d8112e..956795524f 100644
--- a/vendor/golang.org/x/crypto/chacha20poly1305/chacha20poly1305.go
+++ b/vendor/golang.org/x/crypto/chacha20poly1305/chacha20poly1305.go
@@ -38,6 +38,9 @@ type chacha20poly1305 struct {
 
 // New returns a ChaCha20-Poly1305 AEAD that uses the given 256-bit key.
 func New(key []byte) (cipher.AEAD, error) {
+	if fips140Enforced() {
+		return nil, errors.New("chacha20poly1305: use of ChaCha20Poly1305 is not allowed in FIPS 140-only mode")
+	}
 	if len(key) != KeySize {
 		return nil, errors.New("chacha20poly1305: bad key length")
 	}
diff --git a/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_compat.go b/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_compat.go
new file mode 100644
index 0000000000..9b9d5643ec
--- /dev/null
+++ b/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_compat.go
@@ -0,0 +1,9 @@
+// Copyright 2025 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+//go:build !go1.26
+
+package chacha20poly1305
+
+func fips140Enforced() bool { return false }
diff --git a/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_go1.26.go b/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_go1.26.go
new file mode 100644
index 0000000000..f71089c486
--- /dev/null
+++ b/vendor/golang.org/x/crypto/chacha20poly1305/fips140only_go1.26.go
@@ -0,0 +1,11 @@
+// Copyright 2025 The Go Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+//go:build go1.26
+
+package chacha20poly1305
+
+import "crypto/fips140"
+
+func fips140Enforced() bool { return fips140.Enforced() }
diff --git a/vendor/golang.org/x/crypto/chacha20poly1305/xchacha20poly1305.go b/vendor/golang.org/x/crypto/chacha20poly1305/xchacha20poly1305.go
index 1cebfe946f..b4299b718c 100644
--- a/vendor/golang.org/x/crypto/chacha20poly1305/xchacha20poly1305.go
+++ b/vendor/golang.org/x/crypto/chacha20poly1305/xchacha20poly1305.go
@@ -22,6 +22,9 @@ type xchacha20poly1305 struct {
 // preferred when nonce uniqueness cannot be trivially ensured, or whenever
 // nonces are randomly generated.
 func NewX(key []byte) (cipher.AEAD, error) {
+	if fips140Enforced() {
+		return nil, errors.New("chacha20poly1305: use of ChaCha20Poly1305 is not allowed in FIPS 140-only mode")
+	}
 	if len(key) != KeySize {
 		return nil, errors.New("chacha20poly1305: bad key length")
 	}
diff --git a/vendor/golang.org/x/net/http2/transport.go b/vendor/golang.org/x/net/http2/transport.go
index 1965913e54..ccb87e6da3 100644
--- a/vendor/golang.org/x/net/http2/transport.go
+++ b/vendor/golang.org/x/net/http2/transport.go
@@ -376,11 +376,24 @@ type ClientConn struct {
 	// completely unresponsive connection.
 	pendingResets int
 
+	// readBeforeStreamID is the smallest stream ID that has not been followed by
+	// a frame read from the peer. We use this to determine when a request may
+	// have been sent to a completely unresponsive connection:
+	// If the request ID is less than readBeforeStreamID, then we have had some
+	// indication of life on the connection since sending the request.
+	readBeforeStreamID uint32
+
 	// reqHeaderMu is a 1-element semaphore channel controlling access to sending new requests.
 	// Write to reqHeaderMu to lock it, read from it to unlock.
 	// Lock reqmu BEFORE mu or wmu.
 	reqHeaderMu chan struct{}
 
+	// internalStateHook reports state changes back to the net/http.ClientConn.
+	// Note that this is different from the user state hook registered by
+	// net/http.ClientConn.SetStateHook: The internal hook calls ClientConn,
+	// which calls the user hook.
+	internalStateHook func()
+
 	// wmu is held while writing.
 	// Acquire BEFORE mu when holding both, to avoid blocking mu on network writes.
 	// Only acquire both at the same time when changing peer settings.
@@ -710,7 +723,7 @@ func canRetryError(err error) bool {
 
 func (t *Transport) dialClientConn(ctx context.Context, addr string, singleUse bool) (*ClientConn, error) {
 	if t.transportTestHooks != nil {
-		return t.newClientConn(nil, singleUse)
+		return t.newClientConn(nil, singleUse, nil)
 	}
 	host, _, err := net.SplitHostPort(addr)
 	if err != nil {
@@ -720,7 +733,7 @@ func (t *Transport) dialClientConn(ctx context.Context, addr string, singleUse b
 	if err != nil {
 		return nil, err
 	}
-	return t.newClientConn(tconn, singleUse)
+	return t.newClientConn(tconn, singleUse, nil)
 }
 
 func (t *Transport) newTLSConfig(host string) *tls.Config {
@@ -772,10 +785,10 @@ func (t *Transport) expectContinueTimeout() time.Duration {
 }
 
 func (t *Transport) NewClientConn(c net.Conn) (*ClientConn, error) {
-	return t.newClientConn(c, t.disableKeepAlives())
+	return t.newClientConn(c, t.disableKeepAlives(), nil)
 }
 
-func (t *Transport) newClientConn(c net.Conn, singleUse bool) (*ClientConn, error) {
+func (t *Transport) newClientConn(c net.Conn, singleUse bool, internalStateHook func()) (*ClientConn, error) {
 	conf := configFromTransport(t)
 	cc := &ClientConn{
 		t:                           t,
@@ -797,6 +810,7 @@ func (t *Transport) newClientConn(c net.Conn, singleUse bool) (*ClientConn, erro
 		pings:                       make(map[[8]byte]chan struct{}),
 		reqHeaderMu:                 make(chan struct{}, 1),
 		lastActive:                  time.Now(),
+		internalStateHook:           internalStateHook,
 	}
 	if t.transportTestHooks != nil {
 		t.transportTestHooks.newclientconn(cc)
@@ -1037,10 +1051,7 @@ func (cc *ClientConn) idleStateLocked() (st clientConnIdleState) {
 		maxConcurrentOkay = cc.currentRequestCountLocked() < int(cc.maxConcurrentStreams)
 	}
 
-	st.canTakeNewRequest = cc.goAway == nil && !cc.closed && !cc.closing && maxConcurrentOkay &&
-		!cc.doNotReuse &&
-		int64(cc.nextStreamID)+2*int64(cc.pendingRequests) < math.MaxInt32 &&
-		!cc.tooIdleLocked()
+	st.canTakeNewRequest = maxConcurrentOkay && cc.isUsableLocked()
 
 	// If this connection has never been used for a request and is closed,
 	// then let it take a request (which will fail).
@@ -1056,6 +1067,31 @@ func (cc *ClientConn) idleStateLocked() (st clientConnIdleState) {
 	return
 }
 
+func (cc *ClientConn) isUsableLocked() bool {
+	return cc.goAway == nil &&
+		!cc.closed &&
+		!cc.closing &&
+		!cc.doNotReuse &&
+		int64(cc.nextStreamID)+2*int64(cc.pendingRequests) < math.MaxInt32 &&
+		!cc.tooIdleLocked()
+}
+
+// canReserveLocked reports whether a net/http.ClientConn can reserve a slot on this conn.
+//
+// This follows slightly different rules than clientConnIdleState.canTakeNewRequest.
+// We only permit reservations up to the conn's concurrency limit.
+// This differs from ClientConn.ReserveNewRequest, which permits reservations
+// past the limit when StrictMaxConcurrentStreams is set.
+func (cc *ClientConn) canReserveLocked() bool {
+	if cc.currentRequestCountLocked() >= int(cc.maxConcurrentStreams) {
+		return false
+	}
+	if !cc.isUsableLocked() {
+		return false
+	}
+	return true
+}
+
 // currentRequestCountLocked reports the number of concurrency slots currently in use,
 // including active streams, reserved slots, and reset streams waiting for acknowledgement.
 func (cc *ClientConn) currentRequestCountLocked() int {
@@ -1067,6 +1103,14 @@ func (cc *ClientConn) canTakeNewRequestLocked() bool {
 	return st.canTakeNewRequest
 }
 
+// availableLocked reports the number of concurrency slots available.
+func (cc *ClientConn) availableLocked() int {
+	if !cc.canTakeNewRequestLocked() {
+		return 0
+	}
+	return max(0, int(cc.maxConcurrentStreams)-cc.currentRequestCountLocked())
+}
+
 // tooIdleLocked reports whether this connection has been been sitting idle
 // for too much wall time.
 func (cc *ClientConn) tooIdleLocked() bool {
@@ -1091,6 +1135,7 @@ func (cc *ClientConn) closeConn() {
 	t := time.AfterFunc(250*time.Millisecond, cc.forceCloseConn)
 	defer t.Stop()
 	cc.tconn.Close()
+	cc.maybeCallStateHook()
 }
 
 // A tls.Conn.Close can hang for a long time if the peer is unresponsive.
@@ -1616,6 +1661,8 @@ func (cs *clientStream) cleanupWriteRequest(err error) {
 	}
 	bodyClosed := cs.reqBodyClosed
 	closeOnIdle := cc.singleUse || cc.doNotReuse || cc.t.disableKeepAlives() || cc.goAway != nil
+	// Have we read any frames from the connection since sending this request?
+	readSinceStream := cc.readBeforeStreamID > cs.ID
 	cc.mu.Unlock()
 	if mustCloseBody {
 		cs.reqBody.Close()
@@ -1647,8 +1694,10 @@ func (cs *clientStream) cleanupWriteRequest(err error) {
 				//
 				// This could be due to the server becoming unresponsive.
 				// To avoid sending too many requests on a dead connection,
-				// we let the request continue to consume a concurrency slot
-				// until we can confirm the server is still responding.
+				// if we haven't read any frames from the connection since
+				// sending this request, we let it continue to consume
+				// a concurrency slot until we can confirm the server is
+				// still responding.
 				// We do this by sending a PING frame along with the RST_STREAM
 				// (unless a ping is already in flight).
 				//
@@ -1659,7 +1708,7 @@ func (cs *clientStream) cleanupWriteRequest(err error) {
 				// because it's short lived and will probably be closed before
 				// we get the ping response.
 				ping := false
-				if !closeOnIdle {
+				if !closeOnIdle && !readSinceStream {
 					cc.mu.Lock()
 					// rstStreamPingsBlocked works around a gRPC behavior:
 					// see comment on the field for details.
@@ -1693,6 +1742,7 @@ func (cs *clientStream) cleanupWriteRequest(err error) {
 	}
 
 	close(cs.donec)
+	cc.maybeCallStateHook()
 }
 
 // awaitOpenSlotForStreamLocked waits until len(streams) < maxConcurrentStreams.
@@ -2745,6 +2795,7 @@ func (rl *clientConnReadLoop) streamByID(id uint32, headerOrData bool) *clientSt
 		// See comment on ClientConn.rstStreamPingsBlocked for details.
 		rl.cc.rstStreamPingsBlocked = false
 	}
+	rl.cc.readBeforeStreamID = rl.cc.nextStreamID
 	cs := rl.cc.streams[id]
 	if cs != nil && !cs.readAborted {
 		return cs
@@ -2795,6 +2846,7 @@ func (rl *clientConnReadLoop) processSettings(f *SettingsFrame) error {
 
 func (rl *clientConnReadLoop) processSettingsNoWrite(f *SettingsFrame) error {
 	cc := rl.cc
+	defer cc.maybeCallStateHook()
 	cc.mu.Lock()
 	defer cc.mu.Unlock()
 
@@ -2975,6 +3027,7 @@ func (cc *ClientConn) Ping(ctx context.Context) error {
 func (rl *clientConnReadLoop) processPing(f *PingFrame) error {
 	if f.IsAck() {
 		cc := rl.cc
+		defer cc.maybeCallStateHook()
 		cc.mu.Lock()
 		defer cc.mu.Unlock()
 		// If ack, notify listener if any
@@ -3198,9 +3251,13 @@ func registerHTTPSProtocol(t *http.Transport, rt noDialH2RoundTripper) (err erro
 }
 
 // noDialH2RoundTripper is a RoundTripper which only tries to complete the request
-// if there's already has a cached connection to the host.
+// if there's already a cached connection to the host.
 // (The field is exported so it can be accessed via reflect from net/http; tested
 // by TestNoDialH2RoundTripperType)
+//
+// A noDialH2RoundTripper is registered with http1.Transport.RegisterProtocol,
+// and the http1.Transport can use type assertions to call non-RoundTrip methods on it.
+// This lets us expose, for example, NewClientConn to net/http.
 type noDialH2RoundTripper struct{ *Transport }
 
 func (rt noDialH2RoundTripper) RoundTrip(req *http.Request) (*http.Response, error) {
@@ -3211,6 +3268,85 @@ func (rt noDialH2RoundTripper) RoundTrip(req *http.Request) (*http.Response, err
 	return res, err
 }
 
+func (rt noDialH2RoundTripper) NewClientConn(conn net.Conn, internalStateHook func()) (http.RoundTripper, error) {
+	tr := rt.Transport
+	cc, err := tr.newClientConn(conn, tr.disableKeepAlives(), internalStateHook)
+	if err != nil {
+		return nil, err
+	}
+
+	// RoundTrip should block when the conn is at its concurrency limit,
+	// not return an error. Setting strictMaxConcurrentStreams enables this.
+	cc.strictMaxConcurrentStreams = true
+
+	return netHTTPClientConn{cc}, nil
+}
+
+// netHTTPClientConn wraps ClientConn and implements the interface net/http expects from
+// the RoundTripper returned by NewClientConn.
+type netHTTPClientConn struct {
+	cc *ClientConn
+}
+
+func (cc netHTTPClientConn) RoundTrip(req *http.Request) (*http.Response, error) {
+	return cc.cc.RoundTrip(req)
+}
+
+func (cc netHTTPClientConn) Close() error {
+	return cc.cc.Close()
+}
+
+func (cc netHTTPClientConn) Err() error {
+	cc.cc.mu.Lock()
+	defer cc.cc.mu.Unlock()
+	if cc.cc.closed {
+		return errors.New("connection closed")
+	}
+	return nil
+}
+
+func (cc netHTTPClientConn) Reserve() error {
+	defer cc.cc.maybeCallStateHook()
+	cc.cc.mu.Lock()
+	defer cc.cc.mu.Unlock()
+	if !cc.cc.canReserveLocked() {
+		return errors.New("connection is unavailable")
+	}
+	cc.cc.streamsReserved++
+	return nil
+}
+
+func (cc netHTTPClientConn) Release() {
+	defer cc.cc.maybeCallStateHook()
+	cc.cc.mu.Lock()
+	defer cc.cc.mu.Unlock()
+	// We don't complain if streamsReserved is 0.
+	//
+	// This is consistent with RoundTrip: both Release and RoundTrip will
+	// consume a reservation iff one exists.
+	if cc.cc.streamsReserved > 0 {
+		cc.cc.streamsReserved--
+	}
+}
+
+func (cc netHTTPClientConn) Available() int {
+	cc.cc.mu.Lock()
+	defer cc.cc.mu.Unlock()
+	return cc.cc.availableLocked()
+}
+
+func (cc netHTTPClientConn) InFlight() int {
+	cc.cc.mu.Lock()
+	defer cc.cc.mu.Unlock()
+	return cc.cc.currentRequestCountLocked()
+}
+
+func (cc *ClientConn) maybeCallStateHook() {
+	if cc.internalStateHook != nil {
+		cc.internalStateHook()
+	}
+}
+
 func (t *Transport) idleConnTimeout() time.Duration {
 	// to keep things backwards compatible, we use non-zero values of
 	// IdleConnTimeout, followed by using the IdleConnTimeout on the underlying
diff --git a/vendor/golang.org/x/net/http2/writesched_priority_rfc9218.go b/vendor/golang.org/x/net/http2/writesched_priority_rfc9218.go
index cb4cadc32d..dfbfc1eb34 100644
--- a/vendor/golang.org/x/net/http2/writesched_priority_rfc9218.go
+++ b/vendor/golang.org/x/net/http2/writesched_priority_rfc9218.go
@@ -37,6 +37,15 @@ type priorityWriteSchedulerRFC9218 struct {
 	// incremental streams or not, when urgency is the same in a given Pop()
 	// call.
 	prioritizeIncremental bool
+
+	// priorityUpdateBuf is used to buffer the most recent PRIORITY_UPDATE we
+	// receive per https://www.rfc-editor.org/rfc/rfc9218.html#name-the-priority_update-frame.
+	priorityUpdateBuf struct {
+		// streamID being 0 means that the buffer is empty. This is a safe
+		// assumption as PRIORITY_UPDATE for stream 0 is a PROTOCOL_ERROR.
+		streamID uint32
+		priority PriorityParam
+	}
 }
 
 func newPriorityWriteSchedulerRFC9218() WriteScheduler {
@@ -50,6 +59,10 @@ func (ws *priorityWriteSchedulerRFC9218) OpenStream(streamID uint32, opt OpenStr
 	if ws.streams[streamID].location != nil {
 		panic(fmt.Errorf("stream %d already opened", streamID))
 	}
+	if streamID == ws.priorityUpdateBuf.streamID {
+		ws.priorityUpdateBuf.streamID = 0
+		opt.priority = ws.priorityUpdateBuf.priority
+	}
 	q := ws.queuePool.get()
 	ws.streams[streamID] = streamMetadata{
 		location: q,
@@ -95,6 +108,8 @@ func (ws *priorityWriteSchedulerRFC9218) AdjustStream(streamID uint32, priority
 	metadata := ws.streams[streamID]
 	q, u, i := metadata.location, metadata.priority.urgency, metadata.priority.incremental
 	if q == nil {
+		ws.priorityUpdateBuf.streamID = streamID
+		ws.priorityUpdateBuf.priority = priority
 		return
 	}
 
diff --git a/vendor/golang.org/x/net/trace/events.go b/vendor/golang.org/x/net/trace/events.go
index 3aaffdd1f7..c2b3c00980 100644
--- a/vendor/golang.org/x/net/trace/events.go
+++ b/vendor/golang.org/x/net/trace/events.go
@@ -58,8 +58,8 @@ func RenderEvents(w http.ResponseWriter, req *http.Request, sensitive bool) {
 		Buckets: buckets,
 	}
 
-	data.Families = make([]string, 0, len(families))
 	famMu.RLock()
+	data.Families = make([]string, 0, len(families))
 	for name := range families {
 		data.Families = append(data.Families, name)
 	}
diff --git a/vendor/golang.org/x/net/websocket/hybi.go b/vendor/golang.org/x/net/websocket/hybi.go
index dda7434666..c7e76cd91b 100644
--- a/vendor/golang.org/x/net/websocket/hybi.go
+++ b/vendor/golang.org/x/net/websocket/hybi.go
@@ -440,6 +440,7 @@ func hybiClientHandshake(config *Config, br *bufio.Reader, bw *bufio.Writer) (er
 	if err != nil {
 		return err
 	}
+	defer resp.Body.Close()
 	if resp.StatusCode != 101 {
 		return ErrBadStatus
 	}
diff --git a/vendor/golang.org/x/sys/cpu/cpu_x86.go b/vendor/golang.org/x/sys/cpu/cpu_x86.go
index 1e642f3304..f5723d4f7e 100644
--- a/vendor/golang.org/x/sys/cpu/cpu_x86.go
+++ b/vendor/golang.org/x/sys/cpu/cpu_x86.go
@@ -64,6 +64,80 @@ func initOptions() {
 
 func archInit() {
 
+	// From internal/cpu
+	const (
+		// eax bits
+		cpuid_AVXVNNI = 1 << 4
+
+		// ecx bits
+		cpuid_SSE3            = 1 << 0
+		cpuid_PCLMULQDQ       = 1 << 1
+		cpuid_AVX512VBMI      = 1 << 1
+		cpuid_AVX512VBMI2     = 1 << 6
+		cpuid_SSSE3           = 1 << 9
+		cpuid_AVX512GFNI      = 1 << 8
+		cpuid_AVX512VAES      = 1 << 9
+		cpuid_AVX512VNNI      = 1 << 11
+		cpuid_AVX512BITALG    = 1 << 12
+		cpuid_FMA             = 1 << 12
+		cpuid_AVX512VPOPCNTDQ = 1 << 14
+		cpuid_SSE41           = 1 << 19
+		cpuid_SSE42           = 1 << 20
+		cpuid_POPCNT          = 1 << 23
+		cpuid_AES             = 1 << 25
+		cpuid_OSXSAVE         = 1 << 27
+		cpuid_AVX             = 1 << 28
+
+		// "Extended Feature Flag" bits returned in EBX for CPUID EAX=0x7 ECX=0x0
+		cpuid_BMI1     = 1 << 3
+		cpuid_AVX2     = 1 << 5
+		cpuid_BMI2     = 1 << 8
+		cpuid_ERMS     = 1 << 9
+		cpuid_AVX512F  = 1 << 16
+		cpuid_AVX512DQ = 1 << 17
+		cpuid_ADX      = 1 << 19
+		cpuid_AVX512CD = 1 << 28
+		cpuid_SHA      = 1 << 29
+		cpuid_AVX512BW = 1 << 30
+		cpuid_AVX512VL = 1 << 31
+
+		// "Extended Feature Flag" bits returned in ECX for CPUID EAX=0x7 ECX=0x0
+		cpuid_AVX512_VBMI      = 1 << 1
+		cpuid_AVX512_VBMI2     = 1 << 6
+		cpuid_GFNI             = 1 << 8
+		cpuid_AVX512VPCLMULQDQ = 1 << 10
+		cpuid_AVX512_BITALG    = 1 << 12
+
+		// edx bits
+		cpuid_FSRM = 1 << 4
+		// edx bits for CPUID 0x80000001
+		cpuid_RDTSCP = 1 << 27
+	)
+	// Additional constants not in internal/cpu
+	const (
+		// eax=1: edx
+		cpuid_SSE2 = 1 << 26
+		// eax=1: ecx
+		cpuid_CX16   = 1 << 13
+		cpuid_RDRAND = 1 << 30
+		// eax=7,ecx=0: ebx
+		cpuid_RDSEED     = 1 << 18
+		cpuid_AVX512IFMA = 1 << 21
+		cpuid_AVX512PF   = 1 << 26
+		cpuid_AVX512ER   = 1 << 27
+		// eax=7,ecx=0: edx
+		cpuid_AVX5124VNNIW = 1 << 2
+		cpuid_AVX5124FMAPS = 1 << 3
+		cpuid_AMXBF16      = 1 << 22
+		cpuid_AMXTile      = 1 << 24
+		cpuid_AMXInt8      = 1 << 25
+		// eax=7,ecx=1: eax
+		cpuid_AVX512BF16 = 1 << 5
+		cpuid_AVXIFMA    = 1 << 23
+		// eax=7,ecx=1: edx
+		cpuid_AVXVNNIInt8 = 1 << 4
+	)
+
 	Initialized = true
 
 	maxID, _, _, _ := cpuid(0, 0)
@@ -73,90 +147,90 @@ func archInit() {
 	}
 
 	_, _, ecx1, edx1 := cpuid(1, 0)
-	X86.HasSSE2 = isSet(26, edx1)
-
-	X86.HasSSE3 = isSet(0, ecx1)
-	X86.HasPCLMULQDQ = isSet(1, ecx1)
-	X86.HasSSSE3 = isSet(9, ecx1)
-	X86.HasFMA = isSet(12, ecx1)
-	X86.HasCX16 = isSet(13, ecx1)
-	X86.HasSSE41 = isSet(19, ecx1)
-	X86.HasSSE42 = isSet(20, ecx1)
-	X86.HasPOPCNT = isSet(23, ecx1)
-	X86.HasAES = isSet(25, ecx1)
-	X86.HasOSXSAVE = isSet(27, ecx1)
-	X86.HasRDRAND = isSet(30, ecx1)
+	X86.HasSSE2 = isSet(edx1, cpuid_SSE2)
+
+	X86.HasSSE3 = isSet(ecx1, cpuid_SSE3)
+	X86.HasPCLMULQDQ = isSet(ecx1, cpuid_PCLMULQDQ)
+	X86.HasSSSE3 = isSet(ecx1, cpuid_SSSE3)
+	X86.HasFMA = isSet(ecx1, cpuid_FMA)
+	X86.HasCX16 = isSet(ecx1, cpuid_CX16)
+	X86.HasSSE41 = isSet(ecx1, cpuid_SSE41)
+	X86.HasSSE42 = isSet(ecx1, cpuid_SSE42)
+	X86.HasPOPCNT = isSet(ecx1, cpuid_POPCNT)
+	X86.HasAES = isSet(ecx1, cpuid_AES)
+	X86.HasOSXSAVE = isSet(ecx1, cpuid_OSXSAVE)
+	X86.HasRDRAND = isSet(ecx1, cpuid_RDRAND)
 
 	var osSupportsAVX, osSupportsAVX512 bool
 	// For XGETBV, OSXSAVE bit is required and sufficient.
 	if X86.HasOSXSAVE {
 		eax, _ := xgetbv()
 		// Check if XMM and YMM registers have OS support.
-		osSupportsAVX = isSet(1, eax) && isSet(2, eax)
+		osSupportsAVX = isSet(eax, 1<<1) && isSet(eax, 1<<2)
 
 		if runtime.GOOS == "darwin" {
 			// Darwin requires special AVX512 checks, see cpu_darwin_x86.go
 			osSupportsAVX512 = osSupportsAVX && darwinSupportsAVX512()
 		} else {
 			// Check if OPMASK and ZMM registers have OS support.
-			osSupportsAVX512 = osSupportsAVX && isSet(5, eax) && isSet(6, eax) && isSet(7, eax)
+			osSupportsAVX512 = osSupportsAVX && isSet(eax, 1<<5) && isSet(eax, 1<<6) && isSet(eax, 1<<7)
 		}
 	}
 
-	X86.HasAVX = isSet(28, ecx1) && osSupportsAVX
+	X86.HasAVX = isSet(ecx1, cpuid_AVX) && osSupportsAVX
 
 	if maxID < 7 {
 		return
 	}
 
 	eax7, ebx7, ecx7, edx7 := cpuid(7, 0)
-	X86.HasBMI1 = isSet(3, ebx7)
-	X86.HasAVX2 = isSet(5, ebx7) && osSupportsAVX
-	X86.HasBMI2 = isSet(8, ebx7)
-	X86.HasERMS = isSet(9, ebx7)
-	X86.HasRDSEED = isSet(18, ebx7)
-	X86.HasADX = isSet(19, ebx7)
-
-	X86.HasAVX512 = isSet(16, ebx7) && osSupportsAVX512 // Because avx-512 foundation is the core required extension
+	X86.HasBMI1 = isSet(ebx7, cpuid_BMI1)
+	X86.HasAVX2 = isSet(ebx7, cpuid_AVX2) && osSupportsAVX
+	X86.HasBMI2 = isSet(ebx7, cpuid_BMI2)
+	X86.HasERMS = isSet(ebx7, cpuid_ERMS)
+	X86.HasRDSEED = isSet(ebx7, cpuid_RDSEED)
+	X86.HasADX = isSet(ebx7, cpuid_ADX)
+
+	X86.HasAVX512 = isSet(ebx7, cpuid_AVX512F) && osSupportsAVX512 // Because avx-512 foundation is the core required extension
 	if X86.HasAVX512 {
 		X86.HasAVX512F = true
-		X86.HasAVX512CD = isSet(28, ebx7)
-		X86.HasAVX512ER = isSet(27, ebx7)
-		X86.HasAVX512PF = isSet(26, ebx7)
-		X86.HasAVX512VL = isSet(31, ebx7)
-		X86.HasAVX512BW = isSet(30, ebx7)
-		X86.HasAVX512DQ = isSet(17, ebx7)
-		X86.HasAVX512IFMA = isSet(21, ebx7)
-		X86.HasAVX512VBMI = isSet(1, ecx7)
-		X86.HasAVX5124VNNIW = isSet(2, edx7)
-		X86.HasAVX5124FMAPS = isSet(3, edx7)
-		X86.HasAVX512VPOPCNTDQ = isSet(14, ecx7)
-		X86.HasAVX512VPCLMULQDQ = isSet(10, ecx7)
-		X86.HasAVX512VNNI = isSet(11, ecx7)
-		X86.HasAVX512GFNI = isSet(8, ecx7)
-		X86.HasAVX512VAES = isSet(9, ecx7)
-		X86.HasAVX512VBMI2 = isSet(6, ecx7)
-		X86.HasAVX512BITALG = isSet(12, ecx7)
+		X86.HasAVX512CD = isSet(ebx7, cpuid_AVX512CD)
+		X86.HasAVX512ER = isSet(ebx7, cpuid_AVX512ER)
+		X86.HasAVX512PF = isSet(ebx7, cpuid_AVX512PF)
+		X86.HasAVX512VL = isSet(ebx7, cpuid_AVX512VL)
+		X86.HasAVX512BW = isSet(ebx7, cpuid_AVX512BW)
+		X86.HasAVX512DQ = isSet(ebx7, cpuid_AVX512DQ)
+		X86.HasAVX512IFMA = isSet(ebx7, cpuid_AVX512IFMA)
+		X86.HasAVX512VBMI = isSet(ecx7, cpuid_AVX512_VBMI)
+		X86.HasAVX5124VNNIW = isSet(edx7, cpuid_AVX5124VNNIW)
+		X86.HasAVX5124FMAPS = isSet(edx7, cpuid_AVX5124FMAPS)
+		X86.HasAVX512VPOPCNTDQ = isSet(ecx7, cpuid_AVX512VPOPCNTDQ)
+		X86.HasAVX512VPCLMULQDQ = isSet(ecx7, cpuid_AVX512VPCLMULQDQ)
+		X86.HasAVX512VNNI = isSet(ecx7, cpuid_AVX512VNNI)
+		X86.HasAVX512GFNI = isSet(ecx7, cpuid_AVX512GFNI)
+		X86.HasAVX512VAES = isSet(ecx7, cpuid_AVX512VAES)
+		X86.HasAVX512VBMI2 = isSet(ecx7, cpuid_AVX512VBMI2)
+		X86.HasAVX512BITALG = isSet(ecx7, cpuid_AVX512BITALG)
 	}
 
-	X86.HasAMXTile = isSet(24, edx7)
-	X86.HasAMXInt8 = isSet(25, edx7)
-	X86.HasAMXBF16 = isSet(22, edx7)
+	X86.HasAMXTile = isSet(edx7, cpuid_AMXTile)
+	X86.HasAMXInt8 = isSet(edx7, cpuid_AMXInt8)
+	X86.HasAMXBF16 = isSet(edx7, cpuid_AMXBF16)
 
 	// These features depend on the second level of extended features.
 	if eax7 >= 1 {
 		eax71, _, _, edx71 := cpuid(7, 1)
 		if X86.HasAVX512 {
-			X86.HasAVX512BF16 = isSet(5, eax71)
+			X86.HasAVX512BF16 = isSet(eax71, cpuid_AVX512BF16)
 		}
 		if X86.HasAVX {
-			X86.HasAVXIFMA = isSet(23, eax71)
-			X86.HasAVXVNNI = isSet(4, eax71)
-			X86.HasAVXVNNIInt8 = isSet(4, edx71)
+			X86.HasAVXIFMA = isSet(eax71, cpuid_AVXIFMA)
+			X86.HasAVXVNNI = isSet(eax71, cpuid_AVXVNNI)
+			X86.HasAVXVNNIInt8 = isSet(edx71, cpuid_AVXVNNIInt8)
 		}
 	}
 }
 
-func isSet(bitpos uint, value uint32) bool {
-	return value&(1<<bitpos) != 0
+func isSet(hwc uint32, value uint32) bool {
+	return hwc&value != 0
 }
diff --git a/vendor/golang.org/x/term/terminal.go b/vendor/golang.org/x/term/terminal.go
index 9255449b9b..6ec537cdc1 100644
--- a/vendor/golang.org/x/term/terminal.go
+++ b/vendor/golang.org/x/term/terminal.go
@@ -160,7 +160,9 @@ const (
 	keyEnd
 	keyDeleteWord
 	keyDeleteLine
+	keyDelete
 	keyClearScreen
+	keyTranspose
 	keyPasteStart
 	keyPasteEnd
 )
@@ -194,6 +196,8 @@ func bytesToKey(b []byte, pasteActive bool) (rune, []byte) {
 			return keyDeleteLine, b[1:]
 		case 12: // ^L
 			return keyClearScreen, b[1:]
+		case 20: // ^T
+			return keyTranspose, b[1:]
 		case 23: // ^W
 			return keyDeleteWord, b[1:]
 		case 14: // ^N
@@ -228,6 +232,10 @@ func bytesToKey(b []byte, pasteActive bool) (rune, []byte) {
 		}
 	}
 
+	if !pasteActive && len(b) >= 4 && b[0] == keyEscape && b[1] == '[' && b[2] == '3' && b[3] == '~' {
+		return keyDelete, b[4:]
+	}
+
 	if !pasteActive && len(b) >= 6 && b[0] == keyEscape && b[1] == '[' && b[2] == '1' && b[3] == ';' && b[4] == '3' {
 		switch b[5] {
 		case 'C':
@@ -590,7 +598,7 @@ func (t *Terminal) handleKey(key rune) (line string, ok bool) {
 		}
 		t.line = t.line[:t.pos]
 		t.moveCursorToPos(t.pos)
-	case keyCtrlD:
+	case keyCtrlD, keyDelete:
 		// Erase the character under the current position.
 		// The EOF case when the line is empty is handled in
 		// readLine().
@@ -600,6 +608,24 @@ func (t *Terminal) handleKey(key rune) (line string, ok bool) {
 		}
 	case keyCtrlU:
 		t.eraseNPreviousChars(t.pos)
+	case keyTranspose:
+		// This transposes the two characters around the cursor and advances the cursor. Best-effort.
+		if len(t.line) < 2 || t.pos < 1 {
+			return
+		}
+		swap := t.pos
+		if swap == len(t.line) {
+			swap-- // special: at end of line, swap previous two chars
+		}
+		t.line[swap-1], t.line[swap] = t.line[swap], t.line[swap-1]
+		if t.pos < len(t.line) {
+			t.pos++
+		}
+		if t.echo {
+			t.moveCursorToPos(swap - 1)
+			t.writeLine(t.line[swap-1:])
+			t.moveCursorToPos(t.pos)
+		}
 	case keyClearScreen:
 		// Erases the screen and moves the cursor to the home position.
 		t.queue([]rune("\x1b[2J\x1b[H"))
diff --git a/vendor/google.golang.org/api/compute/v1/compute-api.json b/vendor/google.golang.org/api/compute/v1/compute-api.json
index 8cada53cfa..41d0cc87a4 100644
--- a/vendor/google.golang.org/api/compute/v1/compute-api.json
+++ b/vendor/google.golang.org/api/compute/v1/compute-api.json
@@ -710,6 +710,47 @@
         }
       }
     },
+    "advice": {
+      "methods": {
+        "calendarMode": {
+          "description": "Advise how, where and when to create the requested amount of instances\nwith specified accelerators, within the specified time and location limits.\nThe method recommends creating future reservations for the requested\nresources.",
+          "flatPath": "projects/{project}/regions/{region}/advice/calendarMode",
+          "httpMethod": "POST",
+          "id": "compute.advice.calendarMode",
+          "parameterOrder": [
+            "project",
+            "region"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "region": {
+              "description": "Name of the region for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/regions/{region}/advice/calendarMode",
+          "request": {
+            "$ref": "CalendarModeAdviceRequest"
+          },
+          "response": {
+            "$ref": "CalendarModeAdviceResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute"
+          ]
+        }
+      }
+    },
     "autoscalers": {
       "methods": {
         "aggregatedList": {
@@ -1021,6 +1062,52 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/zones/{zone}/autoscalers/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.autoscalers.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "zone",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            },
+            "zone": {
+              "description": "The name of the zone for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/zones/{zone}/autoscalers/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates an autoscaler in the specified project using the data\nincluded in the request.",
           "flatPath": "projects/{project}/zones/{zone}/autoscalers",
@@ -7265,6 +7352,44 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/healthChecks/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.healthChecks.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/healthChecks/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates a HealthCheck resource in the specified project using the data\nincluded in the request.",
           "flatPath": "projects/{project}/global/healthChecks/{healthCheck}",
@@ -7516,6 +7641,44 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/httpHealthChecks/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.httpHealthChecks.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/httpHealthChecks/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates a HttpHealthCheck resource in the specified project using the data\nincluded in the request.",
           "flatPath": "projects/{project}/global/httpHealthChecks/{httpHealthCheck}",
@@ -7767,6 +7930,44 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/httpsHealthChecks/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.httpsHealthChecks.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/httpsHealthChecks/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates a HttpsHealthCheck resource in the specified project using the data\nincluded in the request.",
           "flatPath": "projects/{project}/global/httpsHealthChecks/{httpsHealthCheck}",
@@ -13139,7 +13340,7 @@
                 "",
                 "No changes can be made to the instance.",
                 "The instance will not restart.",
-                "The instance will restart."
+                "The instance will restart, potentially on a different host."
               ],
               "location": "query",
               "type": "string"
@@ -13156,7 +13357,7 @@
                 "",
                 "No changes can be made to the instance.",
                 "The instance will not restart.",
-                "The instance will restart."
+                "The instance will restart, potentially on a different host."
               ],
               "location": "query",
               "type": "string"
@@ -23062,6 +23263,52 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/regions/{region}/autoscalers/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.regionAutoscalers.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "region",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "region": {
+              "description": "The name of the region for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/regions/{region}/autoscalers/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates an autoscaler in the specified project using\nthe data included in the request.",
           "flatPath": "projects/{project}/regions/{region}/autoscalers",
@@ -25425,6 +25672,52 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/regions/{region}/healthChecks/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.regionHealthChecks.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "region",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "region": {
+              "description": "The name of the region for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/regions/{region}/healthChecks/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates a HealthCheck resource in the specified project using the data\nincluded in the request.",
           "flatPath": "projects/{project}/regions/{region}/healthChecks/{healthCheck}",
@@ -28960,6 +29253,52 @@
             "https://www.googleapis.com/auth/compute",
             "https://www.googleapis.com/auth/compute.readonly"
           ]
+        },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/regions/{region}/notificationEndpoints/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.regionNotificationEndpoints.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "region",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "region": {
+              "description": "The name of the region for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/regions/{region}/notificationEndpoints/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
         }
       }
     },
@@ -34394,6 +34733,44 @@
             "https://www.googleapis.com/auth/compute",
             "https://www.googleapis.com/auth/compute.readonly"
           ]
+        },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/routes/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.routes.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/routes/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
         }
       }
     },
@@ -40134,6 +40511,44 @@
             "https://www.googleapis.com/auth/cloud-platform",
             "https://www.googleapis.com/auth/compute"
           ]
+        },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/targetSslProxies/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.targetSslProxies.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/targetSslProxies/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
         }
       }
     },
@@ -40451,6 +40866,44 @@
             "https://www.googleapis.com/auth/cloud-platform",
             "https://www.googleapis.com/auth/compute"
           ]
+        },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/targetTcpProxies/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.targetTcpProxies.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/targetTcpProxies/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
         }
       }
     },
@@ -41084,6 +41537,44 @@
             "https://www.googleapis.com/auth/compute"
           ]
         },
+        "testIamPermissions": {
+          "description": "Returns permissions that a caller has on the specified resource.",
+          "flatPath": "projects/{project}/global/urlMaps/{resource}/testIamPermissions",
+          "httpMethod": "POST",
+          "id": "compute.urlMaps.testIamPermissions",
+          "parameterOrder": [
+            "project",
+            "resource"
+          ],
+          "parameters": {
+            "project": {
+              "description": "Project ID for this request.",
+              "location": "path",
+              "pattern": "(?:(?:[-a-z0-9]{1,63}\\.)*(?:[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?):)?(?:[0-9]{1,19}|(?:[a-z0-9](?:[-a-z0-9]{0,61}[a-z0-9])?))",
+              "required": true,
+              "type": "string"
+            },
+            "resource": {
+              "description": "Name or id of the resource for this request.",
+              "location": "path",
+              "pattern": "[a-z](?:[-a-z0-9_]{0,61}[a-z0-9])?|[1-9][0-9]{0,19}",
+              "required": true,
+              "type": "string"
+            }
+          },
+          "path": "projects/{project}/global/urlMaps/{resource}/testIamPermissions",
+          "request": {
+            "$ref": "TestPermissionsRequest"
+          },
+          "response": {
+            "$ref": "TestPermissionsResponse"
+          },
+          "scopes": [
+            "https://www.googleapis.com/auth/cloud-platform",
+            "https://www.googleapis.com/auth/compute",
+            "https://www.googleapis.com/auth/compute.readonly"
+          ]
+        },
         "update": {
           "description": "Updates the specified UrlMap resource with the data included in the\nrequest.",
           "flatPath": "projects/{project}/global/urlMaps/{urlMap}",
@@ -42423,7 +42914,7 @@
       }
     }
   },
-  "revision": "20251031",
+  "revision": "20251230",
   "rootUrl": "https://compute.googleapis.com/",
   "schemas": {
     "AWSV4Signature": {
@@ -42510,15 +43001,24 @@
           "description": "The state of the accelerator topology.",
           "enum": [
             "AVAILABLE",
+            "DEGRADED",
             "RUNNING",
             "TOPOLOGY_STATE_UNSPECIFIED",
             "UNHEALTHY"
           ],
+          "enumDeprecated": [
+            false,
+            false,
+            false,
+            false,
+            true
+          ],
           "enumDescriptions": [
             "The accelerator topology is available.",
-            "The accelerator topology is running.",
+            "The accelerator topology is degraded. The underlying capacity is not in a\nhealthy state and is not available.",
+            "The accelerator topology is running. If there are both running and\ndegraded hosts within a topology, DEGRADED state will be returned.",
             "The state of the topology is unspecified.",
-            "The accelerator topology is unhealthy."
+            "This value has been deprecated and is no longer used."
           ],
           "type": "string"
         }
@@ -42548,7 +43048,8 @@
         },
         "kind": {
           "default": "compute#acceleratorType",
-          "description": "[Output Only] The type of the resource. Alwayscompute#acceleratorType for accelerator types.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#acceleratorType for accelerator types.",
+          "readOnly": true,
           "type": "string"
         },
         "maximumCardsPerInstance": {
@@ -42562,7 +43063,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined, fully qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined, fully qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
@@ -42589,7 +43091,8 @@
         },
         "kind": {
           "default": "compute#acceleratorTypeAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#acceleratorTypeAggregatedList for aggregated lists of\naccelerator types.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#acceleratorTypeAggregatedList for aggregated lists of\naccelerator types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -42597,14 +43100,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -42751,7 +43256,8 @@
         },
         "kind": {
           "default": "compute#acceleratorTypeList",
-          "description": "[Output Only] Type of resource. Alwayscompute#acceleratorTypeList for lists of accelerator types.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#acceleratorTypeList for lists of accelerator types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -42759,7 +43265,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -43041,7 +43548,8 @@
         },
         "kind": {
           "default": "compute#accessConfig",
-          "description": "[Output Only] Type of the resource. Alwayscompute#accessConfig for access configs.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#accessConfig for access configs.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -43118,7 +43626,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -43126,8 +43635,13 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "ipCollection": {
+          "description": "Reference to the source of external IPv4 addresses,\nlike a PublicDelegatedPrefix (PDP) for BYOIP.\nThe PDP must support enhanced IPv4 allocations.\n\nUse one of the following formats to specify a PDP when reserving an\nexternal IPv4 address using BYOIP.\n   \n   - \n   Full resource URL, as inhttps://www.googleapis.com/compute/v1/projects/projectId/regions/region/publicDelegatedPrefixes/pdp-name\n   - \n   Partial URL, as in\n     \n      \n          - projects/projectId/regions/region/publicDelegatedPrefixes/pdp-name\n          - regions/region/publicDelegatedPrefixes/pdp-name",
           "type": "string"
         },
         "ipVersion": {
@@ -43158,7 +43672,8 @@
         },
         "kind": {
           "default": "compute#address",
-          "description": "[Output Only] Type of the resource. Always compute#address for\naddresses.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#address for\naddresses.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -43233,7 +43748,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] The URL of the region where a regional address resides.\nFor regional addresses, you must specify the region as a path parameter in\nthe HTTP request URL. *This field is not applicable to global\naddresses.*",
+          "description": "Output only. [Output Only] The URL of the region where a regional address resides.\nFor regional addresses, you must specify the region as a path parameter in\nthe HTTP request URL. *This field is not applicable to global\naddresses.*",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -43241,7 +43757,7 @@
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of the address, which can be one ofRESERVING, RESERVED, or IN_USE.\nAn address that is RESERVING is currently in the process of\nbeing reserved. A RESERVED address is currently reserved and\navailable to use. An IN_USE address is currently being used\nby another resource and is not available.",
+          "description": "Output only. [Output Only] The status of the address, which can be one ofRESERVING, RESERVED, or IN_USE.\nAn address that is RESERVING is currently in the process of\nbeing reserved. A RESERVED address is currently reserved and\navailable to use. An IN_USE address is currently being used\nby another resource and is not available.",
           "enum": [
             "IN_USE",
             "RESERVED",
@@ -43252,6 +43768,7 @@
             "Address is reserved and available to use.",
             "Address is being reserved."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "subnetwork": {
@@ -43285,7 +43802,8 @@
         },
         "kind": {
           "default": "compute#addressAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#addressAggregatedList for aggregated lists of\naddresses.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#addressAggregatedList for aggregated lists of\naddresses.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -43293,14 +43811,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -43447,7 +43967,8 @@
         },
         "kind": {
           "default": "compute#addressList",
-          "description": "[Output Only] Type of resource. Always compute#addressList for\nlists of addresses.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#addressList for\nlists of addresses.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -43455,7 +43976,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -43787,10 +44309,11 @@
       "id": "AllocationAggregateReservation",
       "properties": {
         "inUseResources": {
-          "description": "[Output only] List of resources currently in use.",
+          "description": "Output only. [Output only] List of resources currently in use.",
           "items": {
             "$ref": "AllocationAggregateReservationReservedResourceInfo"
           },
+          "readOnly": true,
           "type": "array"
         },
         "reservedResources": {
@@ -44021,8 +44544,9 @@
       "id": "AllocationSpecificSKUReservation",
       "properties": {
         "assuredCount": {
-          "description": "[Output Only] Indicates how many instances are actually usable currently.",
+          "description": "Output only. [Output Only] Indicates how many instances are actually usable currently.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "count": {
@@ -44031,8 +44555,9 @@
           "type": "string"
         },
         "inUseCount": {
-          "description": "[Output Only] Indicates how many instances are in use.",
+          "description": "Output only. [Output Only] Indicates how many instances are in use.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "instanceProperties": {
@@ -44051,7 +44576,7 @@
       "id": "AttachedDisk",
       "properties": {
         "architecture": {
-          "description": "[Output Only] The architecture of the attached disk. Valid values are ARM64\nor X86_64.",
+          "description": "Output only. [Output Only] The architecture of the attached disk. Valid values are ARM64\nor X86_64.",
           "enum": [
             "ARCHITECTURE_UNSPECIFIED",
             "ARM64",
@@ -44062,6 +44587,7 @@
             "Machines with architecture ARM64",
             "Machines with architecture X86_64"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "autoDelete": {
@@ -44097,8 +44623,9 @@
           "type": "array"
         },
         "index": {
-          "description": "[Output Only] A zero-based index to this disk, where 0 is reserved for the\nboot disk. If you have many disks attached to an instance, each\ndisk would have a unique index number.",
+          "description": "Output only. [Output Only] A zero-based index to this disk, where 0 is reserved for the\nboot disk. If you have many disks attached to an instance, each\ndisk would have a unique index number.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "initializeParams": {
@@ -44119,14 +44646,16 @@
         },
         "kind": {
           "default": "compute#attachedDisk",
-          "description": "[Output Only] Type of the resource. Alwayscompute#attachedDisk for attached disks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#attachedDisk for attached disks.",
+          "readOnly": true,
           "type": "string"
         },
         "licenses": {
-          "description": "[Output Only] Any valid publicly visible licenses.",
+          "description": "Output only. [Output Only] Any valid publicly visible licenses.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "mode": {
@@ -44142,7 +44671,7 @@
           "type": "string"
         },
         "savedState": {
-          "description": "For LocalSSD disks on VM Instances in STOPPED or SUSPENDED state, this\nfield is set to PRESERVED if the LocalSSD data has been saved\nto a persistent location by customer request.  (see the\ndiscard_local_ssd option on Stop/Suspend).\nRead-only in the api.",
+          "description": "Output only. For LocalSSD disks on VM Instances in STOPPED or SUSPENDED state, this\nfield is set to PRESERVED if the LocalSSD data has been saved\nto a persistent location by customer request.  (see the\ndiscard_local_ssd option on Stop/Suspend).\nRead-only in the api.",
           "enum": [
             "DISK_SAVED_STATE_UNSPECIFIED",
             "PRESERVED"
@@ -44151,11 +44680,13 @@
             "*[Default]* Disk state has not been preserved.",
             "Disk state has been preserved."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "shieldedInstanceInitialState": {
           "$ref": "InitialStateConfig",
-          "description": "[Output Only] shielded vm initial state stored on disk"
+          "description": "Output only. [Output Only] shielded vm initial state stored on disk",
+          "readOnly": true
         },
         "source": {
           "description": "Specifies a valid partial or full URL to an existing Persistent Disk\nresource. When creating a new instance boot disk, one ofinitializeParams.sourceImage orinitializeParams.sourceSnapshot or disks.source\nis required.\n\nIf desired, you can also attach existing non-root persistent disks using\nthis property. This field is only applicable for persistent disks.\n\nNote that for InstanceTemplate, specify the disk name for zonal disk,\nand the URL for regional disk.",
@@ -44264,7 +44795,7 @@
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Resource manager tags to be bound to the disk. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and\nvalues are in the format `tagValues/456`. The field is ignored (both PUT\n\u0026 PATCH) when empty.",
+          "description": "Resource manager tags to be bound to the disk. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026 PATCH) when\nempty.",
           "type": "object"
         },
         "resourcePolicies": {
@@ -44354,7 +44885,8 @@
           "description": "The configuration parameters for the autoscaling algorithm. You can define\none or more signals for an autoscaler: cpuUtilization,customMetricUtilizations, andloadBalancingUtilization.\n\nIf none of these are specified, the default will be to autoscale based oncpuUtilization to 0.6 or 60%."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -44362,13 +44894,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#autoscaler",
-          "description": "[Output Only] Type of the resource. Always compute#autoscaler\nfor autoscalers.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#autoscaler\nfor autoscalers.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -44382,19 +44916,22 @@
           "type": "string"
         },
         "recommendedSize": {
-          "description": "[Output Only] Target recommended MIG size (number of instances) computed by\nautoscaler. Autoscaler calculates the recommended MIG size even when the\nautoscaling policy mode is different from ON. This field is empty when\nautoscaler is not connected to an existing managed instance group or\nautoscaler did not generate its prediction.",
+          "description": "Output only. [Output Only] Target recommended MIG size (number of instances) computed by\nautoscaler. Autoscaler calculates the recommended MIG size even when the\nautoscaling policy mode is different from ON. This field is empty when\nautoscaler is not connected to an existing managed instance group or\nautoscaler did not generate its prediction.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "region": {
-          "description": "[Output Only] URL of theregion\nwhere the instance group resides (for autoscalers living in regional\nscope).",
+          "description": "Output only. [Output Only] URL of theregion\nwhere the instance group resides (for autoscalers living in regional\nscope).",
+          "readOnly": true,
           "type": "string"
         },
         "scalingScheduleStatus": {
           "additionalProperties": {
             "$ref": "ScalingScheduleStatus"
           },
-          "description": "[Output Only] Status information of existing scaling schedules.",
+          "description": "Output only. [Output Only] Status information of existing scaling schedules.",
+          "readOnly": true,
           "type": "object"
         },
         "selfLink": {
@@ -44429,7 +44966,8 @@
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] URL of thezone\nwhere the instance group resides (for autoscalers living in zonal scope).",
+          "description": "Output only. [Output Only] URL of thezone\nwhere the instance group resides (for autoscalers living in zonal scope).",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -44452,7 +44990,8 @@
         },
         "kind": {
           "default": "compute#autoscalerAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#autoscalerAggregatedList for aggregated lists of\nautoscalers.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#autoscalerAggregatedList for aggregated lists of\nautoscalers.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -44460,14 +44999,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -44614,7 +45155,8 @@
         },
         "kind": {
           "default": "compute#autoscalerList",
-          "description": "[Output Only] Type of resource. Always compute#autoscalerList\nfor lists of autoscalers.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#autoscalerList\nfor lists of autoscalers.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -44622,7 +45164,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -45284,7 +45827,8 @@
         },
         "kind": {
           "default": "compute#backendBucket",
-          "description": "Type of the resource.",
+          "description": "Output only. Type of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "loadBalancingScheme": {
@@ -45311,10 +45855,11 @@
           "type": "string"
         },
         "usedBy": {
-          "description": "[Output Only] List of resources referencing that backend bucket.",
+          "description": "Output only. [Output Only] List of resources referencing that backend bucket.",
           "items": {
             "$ref": "BackendBucketUsedBy"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -45467,7 +46012,8 @@
         },
         "kind": {
           "default": "compute#backendBucketList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -45475,7 +46021,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -45623,7 +46170,8 @@
       "id": "BackendBucketUsedBy",
       "properties": {
         "reference": {
-          "description": "[Output Only] Server-defined URL for UrlMaps referencing that\nBackendBucket.",
+          "description": "Output only. [Output Only] Server-defined URL for UrlMaps referencing that\nBackendBucket.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -45697,7 +46245,8 @@
           "description": "Consistent Hash-based load balancing can be used to provide soft session\naffinity based on HTTP headers, cookies or other properties. This load\nbalancing policy is applicable only for HTTP connections. The affinity to a\nparticular destination host will be lost when one or more hosts are\nadded/removed from the destination service. This field specifies parameters\nthat control consistent hashing. This field is only applicable whenlocalityLbPolicy is set to MAGLEV orRING_HASH.\n\nThis field is applicable to either:\n   \n   - A regional backend service with the service_protocol set to HTTP,\n   HTTPS, HTTP2 or H2C, and load_balancing_scheme set to\n   INTERNAL_MANAGED. \n   - A global backend service with the\n   load_balancing_scheme set to INTERNAL_SELF_MANAGED."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "customMetrics": {
@@ -45799,7 +46348,8 @@
         },
         "kind": {
           "default": "compute#backendService",
-          "description": "[Output Only] Type of resource. Always compute#backendService\nfor backend services.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#backendService\nfor backend services.",
+          "readOnly": true,
           "type": "string"
         },
         "loadBalancingScheme": {
@@ -45881,6 +46431,10 @@
           "description": "The URL of the network to which this backend service belongs.\n\nThis field must be set for Internal Passthrough Network Load Balancers when\nthe haPolicy is enabled, and for External Passthrough Network Load\nBalancers when the haPolicy fastIpMove is enabled.\n\nThis field can only be specified when the load balancing scheme is set toINTERNAL, or when the load balancing scheme is set toEXTERNAL and haPolicy fastIpMove is enabled.",
           "type": "string"
         },
+        "networkPassThroughLbTrafficPolicy": {
+          "$ref": "BackendServiceNetworkPassThroughLbTrafficPolicy",
+          "description": "Configures traffic steering properties of internal passthrough Network\nLoad Balancers.\n\nnetworkPassThroughLbTrafficPolicy cannot be specified with haPolicy."
+        },
         "outlierDetection": {
           "$ref": "OutlierDetection",
           "description": "Settings controlling the ejection of unhealthy backend endpoints from the\nload balancing pool of each individual proxy instance that processes the\ntraffic for the given backend service. If not set, this feature is\nconsidered disabled.\n\nResults of the outlier detection algorithm (ejection of endpoints from the\nload balancing pool and returning them back to the pool) are executed\nindependently by each proxy instance of the load balancer. In most cases,\nmore than one proxy instance handles the traffic received by a backend\nservice. Thus, it is possible that an unhealthy endpoint is detected and\nejected by only some of the proxies, and while this happens, other proxies\nmay continue to send requests to the same unhealthy endpoint until they\ndetect and eject the unhealthy endpoint.\n\nApplicable backend endpoints can be:\n   \n   - VM instances in an Instance Group\n   - Endpoints in a Zonal NEG (GCE_VM_IP, GCE_VM_IP_PORT)\n   - Endpoints in a Hybrid Connectivity NEG (NON_GCP_PRIVATE_IP_PORT)\n   - Serverless NEGs, that resolve to Cloud Run, App Engine, or Cloud\n   Functions Services \n   - Private Service Connect NEGs, that resolve to\n   Google-managed regional API endpoints or managed services published using\n   Private Service Connect\n\n\n\nApplicable backend service types can be:\n   \n   - A global backend service with the loadBalancingScheme set to\n   INTERNAL_SELF_MANAGED or EXTERNAL_MANAGED. \n   - A regional backend\n   service with the serviceProtocol set to HTTP, HTTPS, HTTP2 or H2C, and\n   loadBalancingScheme set to INTERNAL_MANAGED or EXTERNAL_MANAGED. Not\n   supported for Serverless NEGs.\n\n\n\nNot supported when the backend service is referenced by a URL map that is\nbound to target gRPC proxy that has validateForProxyless field set to true."
@@ -45926,7 +46480,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional backend service\nresides. This field is not applicable to global backend services.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the regional backend service\nresides. This field is not applicable to global backend services.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "securityPolicy": {
@@ -45996,10 +46551,11 @@
           "description": "Configuration for Backend Authenticated TLS and mTLS. May only be specified\nwhen the backend protocol is SSL, HTTPS or HTTP2."
         },
         "usedBy": {
-          "description": "[Output Only] List of resources referencing given backend service.",
+          "description": "Output only. [Output Only] List of resources referencing given backend service.",
           "items": {
             "$ref": "BackendServiceUsedBy"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -46023,7 +46579,8 @@
         },
         "kind": {
           "default": "compute#backendServiceAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -46031,14 +46588,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -46375,7 +46934,8 @@
         },
         "kind": {
           "default": "compute#backendServiceGroupHealth",
-          "description": "[Output Only] Type of resource. Alwayscompute#backendServiceGroupHealth for the health of backend\nservices.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#backendServiceGroupHealth for the health of backend\nservices.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -46463,7 +47023,8 @@
           "type": "string"
         },
         "oauth2ClientSecretSha256": {
-          "description": "[Output Only] SHA256 hash value for the field oauth2_client_secret above.",
+          "description": "Output only. [Output Only] SHA256 hash value for the field oauth2_client_secret above.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -46486,7 +47047,8 @@
         },
         "kind": {
           "default": "compute#backendServiceList",
-          "description": "[Output Only] Type of resource. Alwayscompute#backendServiceList for lists of backend services.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#backendServiceList for lists of backend services.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -46494,7 +47056,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -46641,7 +47204,8 @@
         },
         "kind": {
           "default": "compute#usableBackendServiceList",
-          "description": "[Output Only] Type of resource. Alwayscompute#usableBackendServiceList for lists of usable backend\nservices.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#usableBackendServiceList for lists of usable backend\nservices.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -46649,7 +47213,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -46879,6 +47444,41 @@
       },
       "type": "object"
     },
+    "BackendServiceNetworkPassThroughLbTrafficPolicy": {
+      "id": "BackendServiceNetworkPassThroughLbTrafficPolicy",
+      "properties": {
+        "zonalAffinity": {
+          "$ref": "BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity",
+          "description": "When configured, new connections are load balanced across healthy backend\nendpoints in the local zone."
+        }
+      },
+      "type": "object"
+    },
+    "BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity": {
+      "id": "BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity",
+      "properties": {
+        "spillover": {
+          "description": "This field indicates whether zonal affinity is enabled or not. The\npossible values are:\n   \n   - ZONAL_AFFINITY_DISABLED: Default Value. Zonal Affinity\n   is disabled. The load balancer distributes new connections to all\n   healthy backend endpoints across all zones.\n   - ZONAL_AFFINITY_STAY_WITHIN_ZONE: Zonal Affinity is\n   enabled. The load balancer distributes new connections to all healthy\n   backend endpoints in the local zone only. If there are no healthy\n   backend endpoints in the local zone, the load balancer distributes\n   new connections to all backend endpoints in the local zone.\n   - ZONAL_AFFINITY_SPILL_CROSS_ZONE: Zonal Affinity is\n   enabled. The load balancer distributes new connections to all healthy\n   backend endpoints in the local zone only. If there aren't enough\n   healthy backend endpoints in the local zone, the load balancer\n   distributes new connections to all healthy backend endpoints across all\n   zones.",
+          "enum": [
+            "ZONAL_AFFINITY_DISABLED",
+            "ZONAL_AFFINITY_SPILL_CROSS_ZONE",
+            "ZONAL_AFFINITY_STAY_WITHIN_ZONE"
+          ],
+          "enumDescriptions": [
+            "",
+            "",
+            ""
+          ],
+          "type": "string"
+        },
+        "spilloverRatio": {
+          "description": "The value of the field must be in [0, 1]. When the ratio of the count\nof healthy backend endpoints in a zone to the count of backend\nendpoints in that same zone is equal to or above this threshold, the\nload balancer distributes new connections to all healthy endpoints in\nthe local zone only. When the ratio of the count of healthy backend\nendpoints in a zone to the count of backend endpoints in that same\nzone is below this threshold, the load balancer distributes all new\nconnections to all healthy endpoints across all zones.",
+          "format": "float",
+          "type": "number"
+        }
+      },
+      "type": "object"
+    },
     "BackendServiceParams": {
       "description": "Additional Backend Service parameters.",
       "id": "BackendServiceParams",
@@ -46942,7 +47542,8 @@
       "id": "BackendServiceUsedBy",
       "properties": {
         "reference": {
-          "description": "[Output Only] Server-defined URL for resources referencing given\nBackendService like UrlMaps, TargetTcpProxies, TargetSslProxies\nand ForwardingRule.",
+          "description": "Output only. [Output Only] Server-defined URL for resources referencing given\nBackendService like UrlMaps, TargetTcpProxies, TargetSslProxies\nand ForwardingRule.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -47332,30 +47933,34 @@
       "id": "BgpRoute",
       "properties": {
         "asPaths": {
-          "description": "[Output only] AS-PATH for the route",
+          "description": "Output only. [Output only] AS-PATH for the route",
           "items": {
             "$ref": "BgpRouteAsPath"
           },
+          "readOnly": true,
           "type": "array"
         },
         "communities": {
-          "description": "[Output only] BGP communities in human-readable A:B format.",
+          "description": "Output only. [Output only] BGP communities in human-readable A:B format.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "destination": {
           "$ref": "BgpRouteNetworkLayerReachabilityInformation",
-          "description": "[Output only] Destination IP range for the route, in human-readable CIDR\nformat"
+          "description": "Output only. [Output only] Destination IP range for the route, in human-readable CIDR\nformat",
+          "readOnly": true
         },
         "med": {
-          "description": "[Output only] BGP multi-exit discriminator",
+          "description": "Output only. [Output only] BGP multi-exit discriminator",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "origin": {
-          "description": "[Output only] BGP origin (EGP, IGP or INCOMPLETE)",
+          "description": "Output only. [Output only] BGP origin (EGP, IGP or INCOMPLETE)",
           "enum": [
             "BGP_ORIGIN_EGP",
             "BGP_ORIGIN_IGP",
@@ -47366,6 +47971,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -47375,23 +47981,25 @@
       "id": "BgpRouteAsPath",
       "properties": {
         "asns": {
-          "description": "[Output only] ASNs in the path segment. When type is SEQUENCE, these are\nordered.",
+          "description": "Output only. [Output only] ASNs in the path segment. When type is SEQUENCE, these are\nordered.",
           "items": {
             "format": "int32",
             "type": "integer"
           },
+          "readOnly": true,
           "type": "array"
         },
         "asns32": {
-          "description": "[Output only] ASNs in the path segment. This field is for better\nsupport of 32 bit ASNs as the other asns field suffers from overflow when\nthe ASN is larger. When type is SEQUENCE, these are ordered.",
+          "description": "Output only. [Output only] ASNs in the path segment. This field is for better\nsupport of 32 bit ASNs as the other asns field suffers from overflow when\nthe ASN is larger. When type is SEQUENCE, these are ordered.",
           "items": {
             "format": "uint32",
             "type": "integer"
           },
+          "readOnly": true,
           "type": "array"
         },
         "type": {
-          "description": "[Output only] Type of AS-PATH segment (SEQUENCE or SET)",
+          "description": "Output only. [Output only] Type of AS-PATH segment (SEQUENCE or SET)",
           "enum": [
             "AS_PATH_TYPE_SEQUENCE",
             "AS_PATH_TYPE_SET"
@@ -47400,6 +48008,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -47503,7 +48112,8 @@
           "type": "string"
         },
         "name": {
-          "description": "This field is only temporary. It will be removed. Do not use it.",
+          "description": "Output only. This field is only temporary. It will be removed. Do not use it.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -47648,6 +48258,48 @@
       },
       "type": "object"
     },
+    "CalendarModeAdviceRequest": {
+      "description": "A request to recommend the best way to consume the specified resources in the\nfuture.",
+      "id": "CalendarModeAdviceRequest",
+      "properties": {
+        "futureResourcesSpecs": {
+          "additionalProperties": {
+            "$ref": "FutureResourcesSpec"
+          },
+          "description": "Specification of resources to create in the future.\nThe key of the map is an arbitrary string specified by the caller.\nValue of the map is a specification of required resources and their\nconstraints. Currently only one value is allowed in this map.",
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
+    "CalendarModeAdviceResponse": {
+      "description": "A response containing the recommended way of creating the specified resources\nin the future. It contains (will contain) multiple recommendations that can\nbe analyzed by the customer and the best one can be picked.",
+      "id": "CalendarModeAdviceResponse",
+      "properties": {
+        "recommendations": {
+          "description": "Recommendations where, how and when to create the requested resources\nin order to maximize their obtainability and minimize cost.",
+          "items": {
+            "$ref": "CalendarModeRecommendation"
+          },
+          "type": "array"
+        }
+      },
+      "type": "object"
+    },
+    "CalendarModeRecommendation": {
+      "description": "A single recommendation to create requested resources. Contains detailed\nrecommendations for every future resources specification specified in\nCalendarModeAdviceRequest.",
+      "id": "CalendarModeRecommendation",
+      "properties": {
+        "recommendationsPerSpec": {
+          "additionalProperties": {
+            "$ref": "FutureResourcesRecommendation"
+          },
+          "description": "Recommendations for every future resource specification passed in\nCalendarModeAdviceRequest. Keys of the map correspond to keys\nspecified in the request.",
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
     "CircuitBreakers": {
       "description": "Settings controlling the volume of requests, connections and retries to this\nbackend service.",
       "id": "CircuitBreakers",
@@ -47703,7 +48355,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "customEndTimestamp": {
@@ -47715,7 +48368,8 @@
           "type": "string"
         },
         "endTimestamp": {
-          "description": "[Output Only] Commitment end time inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Commitment end time inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "existingReservations": {
@@ -47725,13 +48379,15 @@
           "type": "array"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#commitment",
-          "description": "[Output Only] Type of the resource. Always compute#commitment\nfor commitments.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#commitment\nfor commitments.",
+          "readOnly": true,
           "type": "string"
         },
         "licenseResource": {
@@ -47765,7 +48421,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the commitment and committed\nresources are located.",
+          "description": "Output only. [Output Only] URL of the region where the commitment and committed\nresources are located.",
+          "readOnly": true,
           "type": "string"
         },
         "reservations": {
@@ -47777,7 +48434,8 @@
         },
         "resourceStatus": {
           "$ref": "CommitmentResourceStatus",
-          "description": "[Output Only] Status information for Commitment resource."
+          "description": "Output only. [Output Only] Status information for Commitment resource.",
+          "readOnly": true
         },
         "resources": {
           "description": "The list of all the hardware resources, with their types and amounts, that\nyou want to commit to. Specify as a separate entry in the list for each\nindividual resource type.",
@@ -47787,7 +48445,8 @@
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "splitSourceCommitment": {
@@ -47795,11 +48454,12 @@
           "type": "string"
         },
         "startTimestamp": {
-          "description": "[Output Only] Commitment start time inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Commitment start time inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] Status of the commitment with regards to eventual expiration\n(each commitment has an end date defined). Status can be one of the\nfollowing values: NOT_YET_ACTIVE, ACTIVE, orEXPIRED.",
+          "description": "Output only. [Output Only] Status of the commitment with regards to eventual expiration\n(each commitment has an end date defined). Status can be one of the\nfollowing values: NOT_YET_ACTIVE, ACTIVE, orEXPIRED.",
           "enum": [
             "ACTIVE",
             "CANCELLED",
@@ -47814,14 +48474,16 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "statusMessage": {
-          "description": "[Output Only] An optional, human-readable explanation of the status.",
+          "description": "Output only. [Output Only] An optional, human-readable explanation of the status.",
+          "readOnly": true,
           "type": "string"
         },
         "type": {
-          "description": "The type of commitment; specifies the\nmachine series for which you want to commit to purchasing resources.\nThe choice of machine series affects the discount rate and the eligible\nresource types.\n\n The type must be one of the following:ACCELERATOR_OPTIMIZED, ACCELERATOR_OPTIMIZED_A3,ACCELERATOR_OPTIMIZED_A3_MEGA,COMPUTE_OPTIMIZED, COMPUTE_OPTIMIZED_C2D,\n COMPUTE_OPTIMIZED_C3, COMPUTE_OPTIMIZED_C3D,COMPUTE_OPTIMIZED_H3, GENERAL_PURPOSE,GENERAL_PURPOSE_C4, GENERAL_PURPOSE_E2,GENERAL_PURPOSE_N2, GENERAL_PURPOSE_N2D,GENERAL_PURPOSE_N4, GENERAL_PURPOSE_T2D,GRAPHICS_OPTIMIZED, MEMORY_OPTIMIZED,MEMORY_OPTIMIZED_M3, MEMORY_OPTIMIZED_X4,STORAGE_OPTIMIZED_Z3.\nFor example, type MEMORY_OPTIMIZED specifies a commitment\nthat applies only to eligible resources of memory optimized M1 and M2\nmachine series. Type GENERAL_PURPOSE specifies a commitment\nthat applies only to eligible resources of general purpose N1 machine\nseries.",
+          "description": "The type of commitment; specifies the\nmachine series for which you want to commit to purchasing resources.\nThe choice of machine series affects the discount rate and the eligible\nresource types.\n\n The type must be one of the following:ACCELERATOR_OPTIMIZED, ACCELERATOR_OPTIMIZED_A3,ACCELERATOR_OPTIMIZED_A3_MEGA,COMPUTE_OPTIMIZED, COMPUTE_OPTIMIZED_C2D,\n COMPUTE_OPTIMIZED_C3, COMPUTE_OPTIMIZED_C3D,COMPUTE_OPTIMIZED_H3, GENERAL_PURPOSE,GENERAL_PURPOSE_C4, GENERAL_PURPOSE_E2,GENERAL_PURPOSE_N2, GENERAL_PURPOSE_N2D,GENERAL_PURPOSE_N4, GENERAL_PURPOSE_T2D,GRAPHICS_OPTIMIZED, GRAPHICS_OPTIMIZED_G4,MEMORY_OPTIMIZED, MEMORY_OPTIMIZED_M3,MEMORY_OPTIMIZED_X4, STORAGE_OPTIMIZED_Z3. For\nexample, type MEMORY_OPTIMIZED specifies a commitment that\napplies only to eligible resources of memory optimized M1 and M2 machine\nseries. Type GENERAL_PURPOSE specifies a commitment that\napplies only to eligible resources of general purpose N1 machine series.",
           "enum": [
             "ACCELERATOR_OPTIMIZED",
             "ACCELERATOR_OPTIMIZED_A3",
@@ -47845,13 +48507,20 @@
             "GENERAL_PURPOSE_N4D",
             "GENERAL_PURPOSE_T2D",
             "GRAPHICS_OPTIMIZED",
+            "GRAPHICS_OPTIMIZED_G4",
             "MEMORY_OPTIMIZED",
             "MEMORY_OPTIMIZED_M3",
             "MEMORY_OPTIMIZED_M4",
             "MEMORY_OPTIMIZED_M4_6TB",
+            "MEMORY_OPTIMIZED_X4_1440_24T",
             "MEMORY_OPTIMIZED_X4_16TB",
+            "MEMORY_OPTIMIZED_X4_1920_32T",
             "MEMORY_OPTIMIZED_X4_24TB",
             "MEMORY_OPTIMIZED_X4_32TB",
+            "MEMORY_OPTIMIZED_X4_480_6T",
+            "MEMORY_OPTIMIZED_X4_480_8T",
+            "MEMORY_OPTIMIZED_X4_960_12T",
+            "MEMORY_OPTIMIZED_X4_960_16T",
             "STORAGE_OPTIMIZED_Z3",
             "TYPE_UNSPECIFIED"
           ],
@@ -47883,9 +48552,16 @@
             "",
             "",
             "",
+            "CUD bucket for X4 machine with 1440 vCPUs and 24TB of memory.",
             "",
+            "CUD bucket for X4 machine with 1920 vCPUs and 32TB of memory.",
             "",
             "",
+            "CUD bucket for X4 machine with 480 vCPUs and 6TB of memory.",
+            "CUD bucket for X4 machine with 480 vCPUs and 8TB of memory.",
+            "CUD bucket for X4 machine with 960 vCPUs and 12TB of memory.",
+            "CUD bucket for X4 machine with 960 vCPUs and 16TB of memory.",
+            "",
             "Note for internal users: When adding a new enum Type for v1, make sure\nto also add it in the comment for the `optional Type type` definition.\nThis ensures that the public documentation displays the new enum Type."
           ],
           "type": "string"
@@ -47910,7 +48586,8 @@
         },
         "kind": {
           "default": "compute#commitmentAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#commitmentAggregatedList for aggregated lists of\ncommitments.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#commitmentAggregatedList for aggregated lists of\ncommitments.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -47918,14 +48595,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -48072,7 +48751,8 @@
         },
         "kind": {
           "default": "compute#commitmentList",
-          "description": "[Output Only] Type of resource. Always compute#commitmentList\nfor lists of commitments.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#commitmentList\nfor lists of commitments.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -48080,7 +48760,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -48215,7 +48896,8 @@
       "id": "CommitmentResourceStatus",
       "properties": {
         "customTermEligibilityEndTimestamp": {
-          "description": "[Output Only] Indicates the end time of customer's eligibility to send\ncustom term requests in RFC3339 text format. Term extension requests that\n(not the end time in the request) after this time will be rejected.",
+          "description": "Output only. [Output Only] Indicates the end time of customer's eligibility to send\ncustom term requests in RFC3339 text format. Term extension requests that\n(not the end time in the request) after this time will be rejected.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -48496,7 +49178,8 @@
       "id": "CrossSiteNetwork",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -48504,13 +49187,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#crossSiteNetwork",
-          "description": "[Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for cross-site networks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for cross-site networks.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -48519,7 +49204,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -48545,7 +49231,8 @@
         },
         "kind": {
           "default": "compute#crossSiteNetwork",
-          "description": "[Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for cross-site networks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for cross-site networks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -48557,10 +49244,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -48872,11 +49560,13 @@
           "additionalProperties": {
             "$ref": "DiskAsyncReplicationList"
           },
-          "description": "[Output Only] A list of disks this disk is asynchronously replicated to.",
+          "description": "Output only. [Output Only] A list of disks this disk is asynchronously replicated to.",
+          "readOnly": true,
           "type": "object"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -48899,13 +49589,15 @@
           "type": "array"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#disk",
-          "description": "[Output Only] Type of the resource. Always compute#disk for\ndisks.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#disk for\ndisks.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -48921,11 +49613,13 @@
           "type": "object"
         },
         "lastAttachTimestamp": {
-          "description": "[Output Only] Last attach timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Last attach timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "lastDetachTimestamp": {
-          "description": "[Output Only] Last detach timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Last detach timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "licenseCodes": {
@@ -48981,7 +49675,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the disk resides. Only applicable for\nregional resources.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the disk resides. Only applicable for\nregional resources.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "replicaZones": {
@@ -49000,7 +49695,8 @@
         },
         "resourceStatus": {
           "$ref": "DiskResourceStatus",
-          "description": "[Output Only] Status information for the disk resource."
+          "description": "Output only. [Output Only] Status information for the disk resource.",
+          "readOnly": true
         },
         "satisfiesPzi": {
           "description": "Output only. Reserved for future use.",
@@ -49008,11 +49704,13 @@
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "sizeGb": {
@@ -49021,11 +49719,13 @@
           "type": "string"
         },
         "sourceConsistencyGroupPolicy": {
-          "description": "[Output Only] URL of the DiskConsistencyGroupPolicy for a secondary disk\nthat was created using a consistency group.",
+          "description": "Output only. [Output Only] URL of the DiskConsistencyGroupPolicy for a secondary disk\nthat was created using a consistency group.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceConsistencyGroupPolicyId": {
-          "description": "[Output Only] ID of the DiskConsistencyGroupPolicy for a secondary disk\nthat was created using a consistency group.",
+          "description": "Output only. [Output Only] ID of the DiskConsistencyGroupPolicy for a secondary disk\nthat was created using a consistency group.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceDisk": {
@@ -49033,7 +49733,8 @@
           "type": "string"
         },
         "sourceDiskId": {
-          "description": "[Output Only] The unique ID of the disk used to create this disk. This\nvalue identifies the exact disk that was used to create this persistent\ndisk. For example, if you created the persistent disk from a disk that\nwas later deleted and recreated under the same name, the source disk ID\nwould identify the exact version of the disk that was used.",
+          "description": "Output only. [Output Only] The unique ID of the disk used to create this disk. This\nvalue identifies the exact disk that was used to create this persistent\ndisk. For example, if you created the persistent disk from a disk that\nwas later deleted and recreated under the same name, the source disk ID\nwould identify the exact version of the disk that was used.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceImage": {
@@ -49045,7 +49746,8 @@
           "description": "Thecustomer-supplied\nencryption key of the source image. Required if the source image is\nprotected by a customer-supplied encryption key."
         },
         "sourceImageId": {
-          "description": "[Output Only] The ID value of the image used to create this disk. This\nvalue identifies the exact image that was used to create this persistent\ndisk. For example, if you created the persistent disk from an image that\nwas later deleted and recreated under the same name, the source image ID\nwould identify the exact version of the image that was used.",
+          "description": "Output only. [Output Only] The ID value of the image used to create this disk. This\nvalue identifies the exact image that was used to create this persistent\ndisk. For example, if you created the persistent disk from an image that\nwas later deleted and recreated under the same name, the source image ID\nwould identify the exact version of the image that was used.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceInstantSnapshot": {
@@ -49053,7 +49755,8 @@
           "type": "string"
         },
         "sourceInstantSnapshotId": {
-          "description": "[Output Only] The unique ID of the instant snapshot used to create this\ndisk. This value identifies the exact instant snapshot that was used to\ncreate this persistent disk. For example, if you created the persistent\ndisk from an instant snapshot that was later deleted and recreated under\nthe same name, the source instant snapshot ID would identify the exact\nversion of the instant snapshot that was used.",
+          "description": "Output only. [Output Only] The unique ID of the instant snapshot used to create this\ndisk. This value identifies the exact instant snapshot that was used to\ncreate this persistent disk. For example, if you created the persistent\ndisk from an instant snapshot that was later deleted and recreated under\nthe same name, the source instant snapshot ID would identify the exact\nversion of the instant snapshot that was used.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceSnapshot": {
@@ -49065,7 +49768,8 @@
           "description": "Thecustomer-supplied\nencryption key of the source snapshot. Required if the source snapshot\nis protected by a customer-supplied encryption key."
         },
         "sourceSnapshotId": {
-          "description": "[Output Only] The unique ID of the snapshot used to create this disk. This\nvalue identifies the exact snapshot that was used to create this persistent\ndisk. For example, if you created the persistent disk from a snapshot that\nwas later deleted and recreated under the same name, the source snapshot ID\nwould identify the exact version of the snapshot that was used.",
+          "description": "Output only. [Output Only] The unique ID of the snapshot used to create this disk. This\nvalue identifies the exact snapshot that was used to create this persistent\ndisk. For example, if you created the persistent disk from a snapshot that\nwas later deleted and recreated under the same name, the source snapshot ID\nwould identify the exact version of the snapshot that was used.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceStorageObject": {
@@ -49073,7 +49777,7 @@
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of disk creation.\n   \n   \n     - CREATING: Disk is provisioning.\n     - RESTORING: Source data is being copied into the\n     disk.\n     - FAILED: Disk creation failed.\n     - READY: Disk is ready for use.\n     - DELETING: Disk is deleting.",
+          "description": "Output only. [Output Only] The status of disk creation.\n   \n   \n     - CREATING: Disk is provisioning.\n     - RESTORING: Source data is being copied into the\n     disk.\n     - FAILED: Disk creation failed.\n     - READY: Disk is ready for use.\n     - DELETING: Disk is deleting.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -49090,6 +49794,7 @@
             "Source data is being copied into the disk.",
             "Disk is currently unavailable and cannot be accessed, attached or\ndetached."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "storagePool": {
@@ -49101,14 +49806,16 @@
           "type": "string"
         },
         "users": {
-          "description": "[Output Only] Links to the users of the disk (attached instances)\nin form:projects/project/zones/zone/instances/instance",
+          "description": "Output only. [Output Only] Links to the users of the disk (attached instances)\nin form:projects/project/zones/zone/instances/instance",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the disk resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the disk resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -49131,7 +49838,8 @@
         },
         "kind": {
           "default": "compute#diskAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#diskAggregatedList for aggregated lists of persistent\ndisks.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#diskAggregatedList for aggregated lists of persistent\ndisks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -49139,14 +49847,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -49280,11 +49990,13 @@
       "id": "DiskAsyncReplication",
       "properties": {
         "consistencyGroupPolicy": {
-          "description": "[Output Only] URL of the DiskConsistencyGroupPolicy if replication was\nstarted on the disk as a member of a group.",
+          "description": "Output only. [Output Only] URL of the DiskConsistencyGroupPolicy if replication was\nstarted on the disk as a member of a group.",
+          "readOnly": true,
           "type": "string"
         },
         "consistencyGroupPolicyId": {
-          "description": "[Output Only] ID of the DiskConsistencyGroupPolicy if replication was\nstarted on the disk as a member of a group.",
+          "description": "Output only. [Output Only] ID of the DiskConsistencyGroupPolicy if replication was\nstarted on the disk as a member of a group.",
+          "readOnly": true,
           "type": "string"
         },
         "disk": {
@@ -49292,7 +50004,8 @@
           "type": "string"
         },
         "diskId": {
-          "description": "[Output Only] The unique ID of the other disk asynchronously replicated\nto or from the current disk. This value identifies the exact disk that\nwas used to create this replication. For example, if you started\nreplicating the persistent disk from a disk that was later deleted and\nrecreated under the same name, the disk ID would identify the exact\nversion of the disk that was used.",
+          "description": "Output only. [Output Only] The unique ID of the other disk asynchronously replicated\nto or from the current disk. This value identifies the exact disk that\nwas used to create this replication. For example, if you started\nreplicating the persistent disk from a disk that was later deleted and\nrecreated under the same name, the disk ID would identify the exact\nversion of the disk that was used.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -49365,7 +50078,8 @@
         },
         "kind": {
           "default": "compute#diskList",
-          "description": "[Output Only] Type of resource. Always compute#diskList for\nlists of disks.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#diskList for\nlists of disks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -49373,7 +50087,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -49525,7 +50240,7 @@
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Resource manager tags to be bound to the disk. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and\nvalues are in the format `tagValues/456`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
+          "description": "Resource manager tags to be bound to the disk. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
           "type": "object"
         }
       },
@@ -49600,7 +50315,8 @@
         },
         "kind": {
           "default": "compute#diskType",
-          "description": "[Output Only] Type of the resource. Always compute#diskType\nfor disk types.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#diskType\nfor disk types.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -49644,7 +50360,8 @@
         },
         "kind": {
           "default": "compute#diskTypeAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#diskTypeAggregatedList.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#diskTypeAggregatedList.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -49652,14 +50369,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -49806,7 +50525,8 @@
         },
         "kind": {
           "default": "compute#diskTypeList",
-          "description": "[Output Only] Type of resource. Always compute#diskTypeList\nfor disk types.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#diskTypeList\nfor disk types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -49814,7 +50534,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -50423,7 +51144,8 @@
         },
         "kind": {
           "default": "compute#exchangedPeeringRoutesList",
-          "description": "[Output Only] Type of resource. Alwayscompute#exchangedPeeringRoutesList for exchanged peering\nroutes lists.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#exchangedPeeringRoutesList for exchanged peering\nroutes lists.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -50431,7 +51153,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -50589,7 +51312,8 @@
       "id": "ExternalVpnGateway",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -50597,8 +51321,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "interfaces": {
@@ -50610,7 +51335,8 @@
         },
         "kind": {
           "default": "compute#externalVpnGateway",
-          "description": "[Output Only] Type of the resource. Alwayscompute#externalVpnGateway for externalVpnGateways.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#externalVpnGateway for externalVpnGateways.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -50650,7 +51376,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -50696,7 +51423,8 @@
         },
         "kind": {
           "default": "compute#externalVpnGatewayList",
-          "description": "[Output Only] Type of resource. Always compute#externalVpnGatewayList for lists of externalVpnGateways.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#externalVpnGatewayList for lists of externalVpnGateways.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -50704,7 +51432,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -50884,7 +51613,8 @@
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "denied": {
@@ -50935,13 +51665,15 @@
           "type": "boolean"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#firewall",
-          "description": "[Output Only] Type of the resource. Always compute#firewall\nfor firewall rules.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#firewall\nfor firewall rules.",
+          "readOnly": true,
           "type": "string"
         },
         "logConfig": {
@@ -51031,7 +51763,8 @@
         },
         "kind": {
           "default": "compute#firewallList",
-          "description": "[Output Only] Type of resource. Always compute#firewallList\nfor lists of firewalls.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#firewallList\nfor lists of firewalls.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -51039,7 +51772,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -51218,7 +51952,8 @@
         },
         "kind": {
           "default": "compute#firewallPoliciesListAssociationsResponse",
-          "description": "[Output Only] Type of firewallPolicy associations. Alwayscompute#FirewallPoliciesListAssociations for lists of\nfirewallPolicy associations.",
+          "description": "Output only. [Output Only] Type of firewallPolicy associations. Alwayscompute#FirewallPoliciesListAssociations for lists of\nfirewallPolicy associations.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -51373,7 +52108,8 @@
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -51398,7 +52134,8 @@
         },
         "kind": {
           "default": "compute#firewallPolicy",
-          "description": "[Output only] Type of the resource. Alwayscompute#firewallPolicyfor firewall policies",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#firewallPolicyfor firewall policies",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -51413,7 +52150,8 @@
           "type": "array"
         },
         "parent": {
-          "description": "[Output Only] The parent of the firewall policy.\nThis field is not applicable to network firewall policies.",
+          "description": "Output only. [Output Only] The parent of the firewall policy.\nThis field is not applicable to network firewall policies.",
+          "readOnly": true,
           "type": "string"
         },
         "policyType": {
@@ -51429,12 +52167,14 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional firewall policy resides.\nThis field is not applicable to global firewall policies.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the regional firewall policy resides.\nThis field is not applicable to global firewall policies.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "ruleTupleCount": {
-          "description": "[Output Only] Total count of all firewall policy rule tuples. A firewall\npolicy can not exceed a set number of tuples.",
+          "description": "Output only. [Output Only] Total count of all firewall policy rule tuples. A firewall\npolicy can not exceed a set number of tuples.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "rules": {
@@ -51449,7 +52189,8 @@
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "shortName": {
@@ -51473,7 +52214,8 @@
           "type": "string"
         },
         "firewallPolicyId": {
-          "description": "[Output Only] The firewall policy ID of the association.",
+          "description": "Output only. [Output Only] The firewall policy ID of the association.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -51481,7 +52223,8 @@
           "type": "string"
         },
         "shortName": {
-          "description": "[Output Only] The short name of the firewall policy of the association.",
+          "description": "Output only. [Output Only] The short name of the firewall policy of the association.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -51503,7 +52246,8 @@
         },
         "kind": {
           "default": "compute#firewallPolicyList",
-          "description": "[Output Only] Type of resource. Alwayscompute#firewallPolicyList for listsof FirewallPolicies",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#firewallPolicyList for listsof FirewallPolicies",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -51671,7 +52415,8 @@
         },
         "kind": {
           "default": "compute#firewallPolicyRule",
-          "description": "[Output only] Type of the resource. Returnscompute#firewallPolicyRule for firewall rules andcompute#packetMirroringRule for packet mirroring rules.",
+          "description": "Output only. [Output only] Type of the resource. Returnscompute#firewallPolicyRule for firewall rules andcompute#packetMirroringRule for packet mirroring rules.",
+          "readOnly": true,
           "type": "string"
         },
         "match": {
@@ -51688,8 +52433,9 @@
           "type": "string"
         },
         "ruleTupleCount": {
-          "description": "[Output Only] Calculation of the complexity of a single firewall policy\nrule.",
+          "description": "Output only. [Output Only] Calculation of the complexity of a single firewall policy\nrule.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "securityProfileGroup": {
@@ -51749,6 +52495,24 @@
           },
           "type": "array"
         },
+        "destNetworkContext": {
+          "description": "Network context of the traffic destination. Allowed values are:\n   \n   \n     - UNSPECIFIED\n     - INTERNET\n     - NON_INTERNET",
+          "enum": [
+            "INTERNET",
+            "INTRA_VPC",
+            "NON_INTERNET",
+            "UNSPECIFIED",
+            "VPC_NETWORKS"
+          ],
+          "enumDescriptions": [
+            "",
+            "",
+            "",
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "destNetworkType": {
           "description": "Network type of the traffic destination. Allowed values are:\n   \n   \n     - UNSPECIFIED\n     - INTERNET\n     - NON_INTERNET",
           "enum": [
@@ -51809,6 +52573,24 @@
           },
           "type": "array"
         },
+        "srcNetworkContext": {
+          "description": "Network context of the traffic source. Allowed values are:\n   \n   \n     - UNSPECIFIED\n     - INTERNET\n     - INTRA_VPC\n     - NON_INTERNET\n     - VPC_NETWORKS",
+          "enum": [
+            "INTERNET",
+            "INTRA_VPC",
+            "NON_INTERNET",
+            "UNSPECIFIED",
+            "VPC_NETWORKS"
+          ],
+          "enumDescriptions": [
+            "",
+            "",
+            "",
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "srcNetworkType": {
           "description": "Network type of the traffic source. Allowed values are:\n   \n   \n     - UNSPECIFIED\n     - INTERNET\n     - INTRA_VPC\n     - NON_INTERNET\n     - VPC_NETWORKS",
           "enum": [
@@ -51884,7 +52666,7 @@
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] State of the secure tag, either `EFFECTIVE` or\n`INEFFECTIVE`. A secure tag is `INEFFECTIVE` when it is deleted\nor its network is deleted.",
+          "description": "Output only. [Output Only] State of the secure tag, either `EFFECTIVE` or\n`INEFFECTIVE`. A secure tag is `INEFFECTIVE` when it is deleted\nor its network is deleted.",
           "enum": [
             "EFFECTIVE",
             "INEFFECTIVE"
@@ -51893,6 +52675,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -51903,8 +52686,9 @@
       "id": "FixedOrPercent",
       "properties": {
         "calculated": {
-          "description": "[Output Only] Absolute value of VM instances calculated based on the\nspecific mode.\n\n   \n   \n    - If the value is fixed, then the calculated\n     value is equal to the fixed value.\n    - If the value is a percent, then the\n    calculated\n     value is percent/100 * targetSize. For example,\n     the calculated value of a 80% of a managed instance group\n     with 150 instances would be (80/100 * 150) = 120 VM instances. If there\n     is a remainder, the number is rounded.",
+          "description": "Output only. [Output Only] Absolute value of VM instances calculated based on the\nspecific mode.\n\n   \n   \n    - If the value is fixed, then the calculated\n     value is equal to the fixed value.\n    - If the value is a percent, then the\n    calculated\n     value is percent/100 * targetSize. For example,\n     the calculated value of a 80% of a managed instance group\n     with 150 instances would be (80/100 * 150) = 120 VM instances. If there\n     is a remainder, the number is rounded.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "fixed": {
@@ -51920,6 +52704,29 @@
       },
       "type": "object"
     },
+    "FlexibleTimeRange": {
+      "description": "A flexible specification of a time range that has 3 points of\nflexibility: (1) a flexible start time, (2) a flexible end time, (3) a\nflexible duration.\n\nIt is possible to specify a contradictory time range that cannot be matched\nby any Interval. This causes a validation error.",
+      "id": "FlexibleTimeRange",
+      "properties": {
+        "maxDuration": {
+          "format": "google-duration",
+          "type": "string"
+        },
+        "minDuration": {
+          "format": "google-duration",
+          "type": "string"
+        },
+        "startTimeNotEarlierThan": {
+          "format": "google-datetime",
+          "type": "string"
+        },
+        "startTimeNotLaterThan": {
+          "format": "google-datetime",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "ForwardingRule": {
       "description": "Represents a Forwarding Rule resource.\n\nForwarding rule resources in Google Cloud can be either regional or global in\nscope:\n\n* [Global](https://cloud.google.com/compute/docs/reference/rest/v1/globalForwardingRules)\n* [Regional](https://cloud.google.com/compute/docs/reference/rest/v1/forwardingRules)\n\nA forwarding rule and its corresponding IP address represent the frontend\nconfiguration of a Google Cloud load balancer.\nForwarding rules can also reference target instances and Cloud VPN Classic\ngateways (targetVpnGateway).\n\nFor more information, read\nForwarding rule concepts and\nUsing protocol forwarding.",
       "id": "ForwardingRule",
@@ -51967,11 +52774,13 @@
           "type": "string"
         },
         "baseForwardingRule": {
-          "description": "[Output Only] The URL for the corresponding base forwarding rule. By base\nforwarding rule, we mean the forwarding rule that has the same IP address,\nprotocol, and port settings with the current forwarding rule, but without\nsourceIPRanges specified.\nAlways empty if the current forwarding rule does not have sourceIPRanges\nspecified.",
+          "description": "Output only. [Output Only] The URL for the corresponding base forwarding rule. By base\nforwarding rule, we mean the forwarding rule that has the same IP address,\nprotocol, and port settings with the current forwarding rule, but without\nsourceIPRanges specified.\nAlways empty if the current forwarding rule does not have sourceIPRanges\nspecified.",
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -52031,7 +52840,8 @@
         },
         "kind": {
           "default": "compute#forwardingRule",
-          "description": "[Output Only] Type of the resource. Alwayscompute#forwardingRule for forwarding rule resources.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#forwardingRule for forwarding rule resources.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -52135,10 +52945,12 @@
             "The connection has been rejected by the producer.",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional forwarding rule resides.\nThis field is not applicable to global forwarding rules.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the regional forwarding rule resides.\nThis field is not applicable to global forwarding rules.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -52146,7 +52958,8 @@
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "serviceDirectoryRegistrations": {
@@ -52200,7 +53013,8 @@
         },
         "kind": {
           "default": "compute#forwardingRuleAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#forwardingRuleAggregatedList for lists of forwarding rules.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#forwardingRuleAggregatedList for lists of forwarding rules.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -52208,14 +53022,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -52362,7 +53178,8 @@
         },
         "kind": {
           "default": "compute#forwardingRuleList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -52370,7 +53187,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -52689,7 +53507,8 @@
           "description": "If not present, then FR will not deliver a new commitment or update an\nexisting commitment."
         },
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this future reservation inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this future reservation inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "deploymentType": {
@@ -52713,13 +53532,15 @@
           "type": "boolean"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this future reservation. The server\ndefines this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this future reservation. The server\ndefines this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#futureReservation",
-          "description": "[Output Only] Type of the resource. Alwayscompute#futureReservation for future reservations.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#futureReservation for future reservations.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -52783,11 +53604,13 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "shareSettings": {
@@ -52804,14 +53627,16 @@
         },
         "status": {
           "$ref": "FutureReservationStatus",
-          "description": "[Output only] Status of the Future Reservation"
+          "description": "Output only. [Output only] Status of the Future Reservation",
+          "readOnly": true
         },
         "timeWindow": {
           "$ref": "FutureReservationTimeWindow",
           "description": "Time window for this Future Reservation."
         },
         "zone": {
-          "description": "[Output Only] URL of the Zone where this future reservation resides.",
+          "description": "Output only. [Output Only] URL of the Zone where this future reservation resides.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -52877,7 +53702,7 @@
       "id": "FutureReservationStatus",
       "properties": {
         "amendmentStatus": {
-          "description": "[Output Only] The current status of the requested amendment.",
+          "description": "Output only. [Output Only] The current status of the requested amendment.",
           "enum": [
             "AMENDMENT_APPROVED",
             "AMENDMENT_DECLINED",
@@ -52890,34 +53715,40 @@
             "The requested amendment to the Future Reservation is currently being\nreviewd by GCP.",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "autoCreatedReservations": {
-          "description": "Fully qualified urls of the automatically created reservations at\nstart_time.",
+          "description": "Output only. Fully qualified urls of the automatically created reservations at\nstart_time.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "existingMatchingUsageInfo": {
           "$ref": "FutureReservationStatusExistingMatchingUsageInfo",
-          "description": "[Output Only] Represents the existing matching usage for the future\nreservation."
+          "description": "Output only. [Output Only] Represents the existing matching usage for the future\nreservation.",
+          "readOnly": true
         },
         "fulfilledCount": {
-          "description": "This count indicates the fulfilled capacity so far. This is set during\n\"PROVISIONING\" state. This count also includes capacity delivered as part\nof existing matching reservations.",
+          "description": "Output only. This count indicates the fulfilled capacity so far. This is set during\n\"PROVISIONING\" state. This count also includes capacity delivered as part\nof existing matching reservations.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "lastKnownGoodState": {
           "$ref": "FutureReservationStatusLastKnownGoodState",
-          "description": "[Output Only] This field represents the future reservation before an\namendment was requested. If the amendment is declined, the Future\nReservation will be reverted to the last known good state. The last known\ngood state is not set when updating a future reservation whose\nProcurement Status is DRAFTING."
+          "description": "Output only. [Output Only] This field represents the future reservation before an\namendment was requested. If the amendment is declined, the Future\nReservation will be reverted to the last known good state. The last known\ngood state is not set when updating a future reservation whose\nProcurement Status is DRAFTING.",
+          "readOnly": true
         },
         "lockTime": {
-          "description": "Time when Future Reservation would become LOCKED, after which no\nmodifications to Future Reservation will be allowed. Applicable only\nafter the Future Reservation is in the APPROVED state. The lock_time is\nan RFC3339 string. The procurement_status will transition to PROCURING\nstate at this time.",
+          "description": "Output only. Time when Future Reservation would become LOCKED, after which no\nmodifications to Future Reservation will be allowed. Applicable only\nafter the Future Reservation is in the APPROVED state. The lock_time is\nan RFC3339 string. The procurement_status will transition to PROCURING\nstate at this time.",
+          "readOnly": true,
           "type": "string"
         },
         "procurementStatus": {
-          "description": "Current state of this Future Reservation",
+          "description": "Output only. Current state of this Future Reservation",
           "enum": [
             "APPROVED",
             "CANCELLED",
@@ -52948,6 +53779,7 @@
             "Future reservation is being procured by GCP. Beyond this point, Future\nreservation is locked and no further modifications are allowed.",
             "Future reservation capacity is being provisioned. This state will be\nentered after start_time, while reservations are being created to\nprovide total_count reserved instance slots. This state will not\npersist past start_time + 24h."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "specificSkuProperties": {
@@ -52961,12 +53793,14 @@
       "id": "FutureReservationStatusExistingMatchingUsageInfo",
       "properties": {
         "count": {
-          "description": "Count to represent min(FR total_count,\nmatching_reserved_capacity+matching_unreserved_instances)",
+          "description": "Output only. Count to represent min(FR total_count,\nmatching_reserved_capacity+matching_unreserved_instances)",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "timestamp": {
-          "description": "Timestamp when the matching usage was calculated",
+          "description": "Output only. Timestamp when the matching usage was calculated",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -52977,26 +53811,31 @@
       "id": "FutureReservationStatusLastKnownGoodState",
       "properties": {
         "description": {
-          "description": "[Output Only] The description of the FutureReservation before an\namendment was requested.",
+          "description": "Output only. [Output Only] The description of the FutureReservation before an\namendment was requested.",
+          "readOnly": true,
           "type": "string"
         },
         "existingMatchingUsageInfo": {
           "$ref": "FutureReservationStatusExistingMatchingUsageInfo",
-          "description": "[Output Only] Represents the matching usage for the future\nreservation before an amendment was requested."
+          "description": "Output only. [Output Only] Represents the matching usage for the future\nreservation before an amendment was requested.",
+          "readOnly": true
         },
         "futureReservationSpecs": {
-          "$ref": "FutureReservationStatusLastKnownGoodStateFutureReservationSpecs"
+          "$ref": "FutureReservationStatusLastKnownGoodStateFutureReservationSpecs",
+          "readOnly": true
         },
         "lockTime": {
-          "description": "[Output Only] The lock time of the FutureReservation before an\namendment was requested.",
+          "description": "Output only. [Output Only] The lock time of the FutureReservation before an\namendment was requested.",
+          "readOnly": true,
           "type": "string"
         },
         "namePrefix": {
-          "description": "[Output Only] The name prefix of the Future Reservation before an\namendment was requested.",
+          "description": "Output only. [Output Only] The name prefix of the Future Reservation before an\namendment was requested.",
+          "readOnly": true,
           "type": "string"
         },
         "procurementStatus": {
-          "description": "[Output Only] The status of the last known good state for the Future\nReservation.",
+          "description": "Output only. [Output Only] The status of the last known good state for the Future\nReservation.",
           "enum": [
             "APPROVED",
             "CANCELLED",
@@ -53027,6 +53866,7 @@
             "Future reservation is being procured by GCP. Beyond this point, Future\nreservation is locked and no further modifications are allowed.",
             "Future reservation capacity is being provisioned. This state will be\nentered after start_time, while reservations are being created to\nprovide total_count reserved instance slots. This state will not\npersist past start_time + 24h."
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -53038,15 +53878,18 @@
       "properties": {
         "shareSettings": {
           "$ref": "ShareSettings",
-          "description": "[Output Only] The previous share settings of the Future Reservation."
+          "description": "Output only. [Output Only] The previous share settings of the Future Reservation.",
+          "readOnly": true
         },
         "specificSkuProperties": {
           "$ref": "FutureReservationSpecificSKUProperties",
-          "description": "[Output Only] The previous instance related properties of the\nFuture Reservation."
+          "description": "Output only. [Output Only] The previous instance related properties of the\nFuture Reservation.",
+          "readOnly": true
         },
         "timeWindow": {
           "$ref": "FutureReservationTimeWindow",
-          "description": "[Output Only] The previous time window of the Future Reservation."
+          "description": "Output only. [Output Only] The previous time window of the Future Reservation.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -53099,7 +53942,8 @@
         },
         "kind": {
           "default": "compute#futureReservationsAggregatedListResponse",
-          "description": "[Output Only] Type of resource. Alwayscompute#futureReservationsAggregatedListResponse for future\nresevation aggregated list response.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#futureReservationsAggregatedListResponse for future\nresevation aggregated list response.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -53107,14 +53951,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -53263,7 +54109,8 @@
         },
         "kind": {
           "default": "compute#futureReservationsListResponse",
-          "description": "[Output Only] Type of resource.Alwayscompute#FutureReservationsListResponse for lists of\nreservations",
+          "description": "Output only. [Output Only] Type of resource.Alwayscompute#FutureReservationsListResponse for lists of\nreservations",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -53271,14 +54118,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -53545,6 +54394,250 @@
       },
       "type": "object"
     },
+    "FutureResourcesRecommendation": {
+      "description": "Recommendation for single resources specification, to be created in the\nfuture.",
+      "id": "FutureResourcesRecommendation",
+      "properties": {
+        "endTime": {
+          "format": "google-datetime",
+          "type": "string"
+        },
+        "location": {
+          "description": "The advised location for resource usage. When a zone, in format\n'zones/'.\nIf not set, it means that no location is recommended - see\nother_locations for details.",
+          "type": "string"
+        },
+        "otherLocations": {
+          "additionalProperties": {
+            "$ref": "FutureResourcesRecommendationOtherLocation"
+          },
+          "description": "List of locations in the request scope that were not\nrecommended. Keys of the map are zones, in format 'zones/'.\nThe values are status information indicating the recommendation status.",
+          "type": "object"
+        },
+        "recommendationId": {
+          "description": "Unique id of the recommendation, a UUID string generated by the API.",
+          "type": "string"
+        },
+        "recommendationType": {
+          "description": "Type of recommendation. Currently only FUTURE_RESERVATION is supported.",
+          "enum": [
+            "FUTURE_RESERVATION",
+            "RECOMMENDATION_TYPE_UNSPECIFIED"
+          ],
+          "enumDescriptions": [
+            "A Future Reservation is recommended.",
+            "Default value, unused."
+          ],
+          "type": "string"
+        },
+        "startTime": {
+          "format": "google-datetime",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesRecommendationOtherLocation": {
+      "description": "Information about recommendation status for locations\nthat were allowed but not used by the response.",
+      "id": "FutureResourcesRecommendationOtherLocation",
+      "properties": {
+        "details": {
+          "description": "Details (human readable) describing the situation.\nFor example, if status is CONDITION_NOT_MET, then\ndetails contain information about the parameters of the time window\nthat did not meet the required conditions.",
+          "type": "string"
+        },
+        "status": {
+          "description": "Status of recommendation in this location.",
+          "enum": [
+            "CONDITIONS_NOT_MET",
+            "NOT_SUPPORTED",
+            "NO_CAPACITY",
+            "OTHER_LOCATION_STATUS_UNDEFINED",
+            "RECOMMENDED"
+          ],
+          "enumDescriptions": [
+            "The requested resources are offered in this location\nbut the requested time window is does not meet the required conditions.",
+            "The requested resources are not offered in this location.\nRetrying the request will not change this status.",
+            "The requested resources are offered in this location\nand the requested time window is accepted\nbut there is no capacity within the requested time window.",
+            "Default value, unused.",
+            "The requested resources are offered in this location\nand it is possible to request them. However, another location\nwas better and was recommended."
+          ],
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpec": {
+      "description": "Specification of resources to be created at some time in the future within an\noptionally specified set of locations, and within the specified time range.",
+      "id": "FutureResourcesSpec",
+      "properties": {
+        "deploymentType": {
+          "description": "Indicates if the reservation allocation strategy is static (DENSE) or\ndynamic (STANDARD). Defaults to DENSE.",
+          "enum": [
+            "DENSE",
+            "DEPLOYMENT_TYPE_UNSPECIFIED"
+          ],
+          "enumDescriptions": [
+            "The reserved capacity is made up of densely deployed reservation blocks.",
+            ""
+          ],
+          "type": "string"
+        },
+        "locationPolicy": {
+          "$ref": "FutureResourcesSpecLocationPolicy",
+          "description": "Optional location policy allowing to exclude some zone(s) in which\nthe resources must not be created."
+        },
+        "targetResources": {
+          "$ref": "FutureResourcesSpecTargetResources",
+          "description": "Specification of the reserved resources."
+        },
+        "timeRangeSpec": {
+          "$ref": "FlexibleTimeRange",
+          "description": "Specification of a time range in which the resources may be created.\nThe time range specifies start of resource use and planned end of resource\nuse."
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecAggregateResources": {
+      "id": "FutureResourcesSpecAggregateResources",
+      "properties": {
+        "acceleratorCount": {
+          "description": "Size of the request, in accelerator (chip) count.",
+          "format": "int64",
+          "type": "string"
+        },
+        "vmFamily": {
+          "description": "The VM family that all instances scheduled against this reservation\nmust belong to. Use for TPU reservations.",
+          "enum": [
+            "VM_FAMILY_CLOUD_TPU_DEVICE_CT3",
+            "VM_FAMILY_CLOUD_TPU_LITE_DEVICE_CT5L",
+            "VM_FAMILY_CLOUD_TPU_LITE_POD_SLICE_CT5LP",
+            "VM_FAMILY_CLOUD_TPU_LITE_POD_SLICE_CT6E",
+            "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT3P",
+            "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT4P",
+            "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT5P",
+            "VM_FAMILY_CLOUD_TPU_POD_SLICE_TPU7X"
+          ],
+          "enumDescriptions": [
+            "",
+            "",
+            "",
+            "",
+            "",
+            "",
+            "",
+            ""
+          ],
+          "type": "string"
+        },
+        "workloadType": {
+          "description": "Workload type. Use for TPU reservations.",
+          "enum": [
+            "BATCH",
+            "SERVING",
+            "UNSPECIFIED"
+          ],
+          "enumDescriptions": [
+            "Reserved resources will be optimized for BATCH workloads, such as ML\ntraining.",
+            "Reserved resources will be optimized for SERVING workloads, such as ML\ninference.",
+            ""
+          ],
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecLocalSsdPartition": {
+      "id": "FutureResourcesSpecLocalSsdPartition",
+      "properties": {
+        "diskInterface": {
+          "description": "Disk interface. Defaults to SCSI.",
+          "enum": [
+            "NVME",
+            "SCSI"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
+        "diskSizeGb": {
+          "description": "The size of the disk in GB.",
+          "format": "int64",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecLocationPolicy": {
+      "description": "Specification of locations to create resources in.",
+      "id": "FutureResourcesSpecLocationPolicy",
+      "properties": {
+        "locations": {
+          "additionalProperties": {
+            "$ref": "FutureResourcesSpecLocationPolicyLocation"
+          },
+          "description": "Preferences for specified locations.\nKeys of the map are locations - zones, in format of 'zones/'.\nValues are preferences for the zones.\nIf a zone is not specified in this map, it is ALLOWed.",
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecLocationPolicyLocation": {
+      "description": "Preference for a single specified location.",
+      "id": "FutureResourcesSpecLocationPolicyLocation",
+      "properties": {
+        "preference": {
+          "description": "Preference for this location.",
+          "enum": [
+            "ALLOW",
+            "DENY",
+            "PREFERENCE_UNSPECIFIED"
+          ],
+          "enumDescriptions": [
+            "Location is allowed for use.",
+            "Location is prohibited.",
+            "Default value, unused."
+          ],
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecSpecificSKUResources": {
+      "id": "FutureResourcesSpecSpecificSKUResources",
+      "properties": {
+        "instanceCount": {
+          "description": "Size of the request, in instance count.",
+          "format": "int64",
+          "type": "string"
+        },
+        "localSsdPartitions": {
+          "description": "Local SSD partitions. You do not have to include SSD partitions that\nare built in the machine type.",
+          "items": {
+            "$ref": "FutureResourcesSpecLocalSsdPartition"
+          },
+          "type": "array"
+        },
+        "machineType": {
+          "description": "The machine type to use for instances that will use the reservation.\nThis field only accepts machine type names. e.g. n2-standard-4\nand does not accept machine type full or partial url. e.g.\nprojects/my-l7ilb-project/zones/us-central1-a/machineTypes/n2-standard-4.\nUse for GPU reservations.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "FutureResourcesSpecTargetResources": {
+      "description": "Specification of reserved resources.",
+      "id": "FutureResourcesSpecTargetResources",
+      "properties": {
+        "aggregateResources": {
+          "$ref": "FutureResourcesSpecAggregateResources"
+        },
+        "specificSkuResources": {
+          "$ref": "FutureResourcesSpecSpecificSKUResources"
+        }
+      },
+      "type": "object"
+    },
     "GRPCHealthCheck": {
       "id": "GRPCHealthCheck",
       "properties": {
@@ -53770,7 +54863,8 @@
       "properties": {
         "kind": {
           "default": "compute#guestAttributes",
-          "description": "[Output Only] Type of the resource. Alwayscompute#guestAttributes for guest attributes entry.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#guestAttributes for guest attributes entry.",
+          "readOnly": true,
           "type": "string"
         },
         "queryPath": {
@@ -53779,10 +54873,12 @@
         },
         "queryValue": {
           "$ref": "GuestAttributesValue",
-          "description": "[Output Only] The value of the requested queried path."
+          "description": "Output only. [Output Only] The value of the requested queried path.",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "variableKey": {
@@ -53790,7 +54886,8 @@
           "type": "string"
         },
         "variableValue": {
-          "description": "[Output Only] The value found for the requested key.",
+          "description": "Output only. [Output Only] The value found for the requested key.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -54042,7 +55139,8 @@
           "type": "integer"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp in3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp in3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -54076,7 +55174,8 @@
         },
         "kind": {
           "default": "compute#healthCheck",
-          "description": "Type of the resource.",
+          "description": "Output only. Type of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "logConfig": {
@@ -54089,7 +55188,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] Region where the health check resides.  Not applicable to\nglobal health checks.",
+          "description": "Output only. [Output Only] Region where the health check resides.  Not applicable to\nglobal health checks.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -54163,7 +55263,8 @@
         },
         "kind": {
           "default": "compute#healthCheckList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -54171,7 +55272,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -54327,7 +55429,8 @@
       "id": "HealthCheckService",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -54359,13 +55462,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#healthCheckService",
-          "description": "[Output only] Type of the resource. Alwayscompute#healthCheckServicefor health check services.",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#healthCheckServicefor health check services.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -54388,11 +55493,13 @@
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the health check service\nresides. This field is not applicable to global health check services.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the health check service\nresides. This field is not applicable to global health check services.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -54412,27 +55519,32 @@
       "id": "HealthCheckServicesList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
-          "description": "A list of HealthCheckService resources.",
+          "description": "Output only. A list of HealthCheckService resources.",
           "items": {
             "$ref": "HealthCheckService"
           },
+          "readOnly": true,
           "type": "array"
         },
         "kind": {
           "default": "compute#healthCheckServicesList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#healthCheckServicesList for lists of\nHealthCheckServices.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#healthCheckServicesList for lists of\nHealthCheckServices.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -54579,7 +55691,8 @@
         },
         "kind": {
           "default": "compute#healthChecksAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -54587,14 +55700,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -55157,7 +56272,7 @@
           "description": "The header value must be an integer and its value must be in the range\nspecified in rangeMatch. If the header does not contain an\ninteger, number or is empty, the match fails.\n\nFor example for a range [-5, 0]\n   \n   \n      - -3 will match.\n      - 0 will not match.\n      - 0.25 will not match.\n      - -3someString will not match.\n\nOnly one of exactMatch, prefixMatch,suffixMatch, regexMatch,presentMatch or rangeMatch must be set.\n\nrangeMatch is not supported for load balancers\nthat have loadBalancingScheme set to EXTERNAL."
         },
         "regexMatch": {
-          "description": "The value of the header must match the regular expression specified inregexMatch.\nFor more information about regular expression syntax, see Syntax.\n\nFor matching against a port specified in the HTTP request, use a\nheaderMatch with headerName set to PORT and a regular expression that\nsatisfies the RFC2616 Host header's port specifier.\n\nOnly one of exactMatch, prefixMatch,suffixMatch, regexMatch,presentMatch or rangeMatch must be set.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.",
+          "description": "The value of the header must match the regular expression specified inregexMatch.\nFor more information about regular expression syntax, see Syntax.\n\nFor matching against a port specified in the HTTP request, use a\nheaderMatch with headerName set to PORT and a regular expression that\nsatisfies the RFC2616 Host header's port specifier.\n\nOnly one of exactMatch, prefixMatch,suffixMatch, regexMatch,presentMatch or rangeMatch must be set.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED\n(regional scope) or INTERNAL_MANAGED.",
           "type": "string"
         },
         "suffixMatch": {
@@ -55219,7 +56334,8 @@
         },
         "kind": {
           "default": "compute#httpHealthCheck",
-          "description": "[Output Only] Type of the resource. Alwayscompute#httpHealthCheck for HTTP health checks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#httpHealthCheck for HTTP health checks.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -55270,7 +56386,8 @@
         },
         "kind": {
           "default": "compute#httpHealthCheckList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -55278,7 +56395,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -55425,7 +56543,7 @@
           "type": "boolean"
         },
         "regexMatch": {
-          "description": "The queryParameterMatch matches if the value of the\nparameter matches the regular expression specified byregexMatch. For\nmore information about regular expression syntax, see Syntax.\n\nOnly one of presentMatch, exactMatch, orregexMatch must be set.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.",
+          "description": "The queryParameterMatch matches if the value of the\nparameter matches the regular expression specified byregexMatch. For\nmore information about regular expression syntax, see Syntax.\n\nOnly one of presentMatch, exactMatch, orregexMatch must be set.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED\n(regional scope) or INTERNAL_MANAGED.",
           "type": "string"
         }
       },
@@ -55610,11 +56728,11 @@
           "type": "array"
         },
         "pathTemplateMatch": {
-          "description": "If specified, the route is a pattern match expression that must match the\n:path header once the query string is removed.\n\n A pattern match allows you to match\n   \n   \n      - The value must be between 1 and 1024 characters\n      - The pattern must start with a leading slash (\"/\")\n      - There may be no more than 5 operators in pattern\n\n Precisely one ofprefix_match, full_path_match,regex_match or path_template_match must be set.",
+          "description": "If specified, this field defines a path template pattern that must match\nthe :path header after the query string is removed.\n\nA path template pattern can include variables and wildcards.\nVariables are enclosed in curly braces, for example{variable_name}. Wildcards include * that\nmatches a single path segment, and ** that matches zero or\nmore path segments. The pattern must follow these rules:\n\n   \n      - The value must be between 1 and 1024 characters.\n      - The pattern must start with a leading slash (\"/\").\n      - No more than 5 operators (variables or wildcards) may appear in\n      the pattern.\n\nPrecisely one ofprefixMatch, fullPathMatch,regexMatch, or pathTemplateMatch must be\nset.",
           "type": "string"
         },
         "prefixMatch": {
-          "description": "For satisfying the matchRule condition, the request's\npath must begin with the specified prefixMatch.prefixMatch must begin with a /.\n\nThe value must be from 1 to 1024 characters.\n\nOnly one of prefixMatch, fullPathMatch,regexMatch or path_template_match must be\nspecified.\nspecified.",
+          "description": "For satisfying the matchRule condition, the request's\npath must begin with the specified prefixMatch.prefixMatch must begin with a /.\n\nThe value must be from 1 to 1024 characters.\n\nThe * character inside a prefix match is\ntreated as a literal character, not as a wildcard.\n\nOnly one of prefixMatch, fullPathMatch,regexMatch or path_template_match can be\nused within a matchRule.",
           "type": "string"
         },
         "queryParameterMatches": {
@@ -55625,7 +56743,7 @@
           "type": "array"
         },
         "regexMatch": {
-          "description": "For satisfying the matchRule condition, the path of the\nrequest must satisfy the regular expression specified inregexMatch after removing any query parameters and anchor\nsupplied with the original URL. For\nmore information about regular expression syntax, see Syntax.\n\nOnly one of prefixMatch, fullPathMatch,regexMatch or path_template_match must be\nspecified.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.",
+          "description": "For satisfying the matchRule condition, the path of the\nrequest must satisfy the regular expression specified inregexMatch after removing any query parameters and anchor\nsupplied with the original URL. For\nmore information about regular expression syntax, see Syntax.\n\nOnly one of prefixMatch, fullPathMatch,regexMatch or path_template_match must be\nspecified.\n\nRegular expressions can only be used when the loadBalancingScheme is\nset to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED\n(regional scope) or INTERNAL_MANAGED.",
           "type": "string"
         }
       },
@@ -55664,7 +56782,8 @@
         },
         "kind": {
           "default": "compute#httpsHealthCheck",
-          "description": "Type of the resource.",
+          "description": "Output only. Type of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -55715,7 +56834,8 @@
         },
         "kind": {
           "default": "compute#httpsHealthCheckList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -55723,7 +56843,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -55877,12 +56998,14 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "deprecated": {
           "$ref": "DeprecationStatus",
-          "description": "The deprecation status associated with this image."
+          "description": "Output only. The deprecation status associated with this image.",
+          "readOnly": true
         },
         "description": {
           "description": "An optional description of this resource. Provide this property when you\ncreate the resource.",
@@ -55894,7 +57017,8 @@
           "type": "string"
         },
         "enableConfidentialCompute": {
-          "description": "Whether this image is created from a confidential compute mode disk.\n[Output Only]: This field is not set by user, but from source disk.",
+          "description": "Output only. Whether this image is created from a confidential compute mode disk.\n[Output Only]: This field is not set by user, but from source disk.",
+          "readOnly": true,
           "type": "boolean"
         },
         "family": {
@@ -55909,8 +57033,9 @@
           "type": "array"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "imageEncryptionKey": {
@@ -55919,7 +57044,8 @@
         },
         "kind": {
           "default": "compute#image",
-          "description": "[Output Only] Type of the resource. Always compute#image for\nimages.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#image for\nimages.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -55995,11 +57121,13 @@
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "shieldedInstanceInitialState": {
@@ -56015,7 +57143,8 @@
           "description": "Thecustomer-supplied\nencryption key of the source disk. Required if the source disk is\nprotected by a customer-supplied encryption key."
         },
         "sourceDiskId": {
-          "description": "[Output Only]\nThe ID value of the disk used to create this image. This value may be used\nto determine whether the image was taken from the current or a previous\ninstance of a given disk name.",
+          "description": "Output only. [Output Only]\nThe ID value of the disk used to create this image. This value may be used\nto determine whether the image was taken from the current or a previous\ninstance of a given disk name.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceImage": {
@@ -56027,7 +57156,8 @@
           "description": "The customer-supplied encryption key of the source image. Required if the\nsource image is protected by a customer-supplied encryption key."
         },
         "sourceImageId": {
-          "description": "[Output Only]\nThe ID value of the image used to create this image. This value may be used\nto determine whether the image was taken from the current or a previous\ninstance of a given image name.",
+          "description": "Output only. [Output Only]\nThe ID value of the image used to create this image. This value may be used\nto determine whether the image was taken from the current or a previous\ninstance of a given image name.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceSnapshot": {
@@ -56039,7 +57169,8 @@
           "description": "The customer-supplied encryption key of the source snapshot. Required if\nthe source snapshot is protected by a customer-supplied encryption key."
         },
         "sourceSnapshotId": {
-          "description": "[Output Only]\nThe ID value of the snapshot used to create this image. This value may be\nused to determine whether the snapshot was taken from the current or a\nprevious instance of a given snapshot name.",
+          "description": "Output only. [Output Only]\nThe ID value of the snapshot used to create this image. This value may be\nused to determine whether the snapshot was taken from the current or a\nprevious instance of a given snapshot name.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceType": {
@@ -56054,7 +57185,7 @@
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of the image. An image can be used to create other\nresources, such as instances, only after the image has been successfully\ncreated and the status is set to READY. Possible\nvalues are FAILED, PENDING, orREADY.",
+          "description": "Output only. [Output Only] The status of the image. An image can be used to create other\nresources, such as instances, only after the image has been successfully\ncreated and the status is set to READY. Possible\nvalues are FAILED, PENDING, orREADY.",
           "enum": [
             "DELETING",
             "FAILED",
@@ -56067,6 +57198,7 @@
             "Image hasn't been created as yet.",
             "Image has been successfully created."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "storageLocations": {
@@ -56106,7 +57238,8 @@
         },
         "kind": {
           "default": "compute#imageList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -56114,7 +57247,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -56252,7 +57386,7 @@
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Resource manager tags to be bound to the image. Tag keys and values have\nthe same definition as resource\nmanager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and\nvalues are in the format `tagValues/456`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
+          "description": "Resource manager tags to be bound to the image. Tag keys and values have\nthe same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
           "type": "object"
         }
       },
@@ -56306,11 +57440,13 @@
           "$ref": "ConfidentialInstanceConfig"
         },
         "cpuPlatform": {
-          "description": "[Output Only] The CPU platform used by this instance.",
+          "description": "Output only. [Output Only] The CPU platform used by this instance.",
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "deletionProtection": {
@@ -56349,8 +57485,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "instanceEncryptionKey": {
@@ -56373,7 +57510,8 @@
         },
         "kind": {
           "default": "compute#instance",
-          "description": "[Output Only] Type of the resource. Always compute#instance\nfor instances.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#instance\nfor instances.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -56389,15 +57527,18 @@
           "type": "object"
         },
         "lastStartTimestamp": {
-          "description": "[Output Only] Last start timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Last start timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "lastStopTimestamp": {
-          "description": "[Output Only] Last stop timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Last stop timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "lastSuspendedTimestamp": {
-          "description": "[Output Only] Last suspended timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Last suspended timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "machineType": {
@@ -56463,14 +57604,17 @@
         },
         "resourceStatus": {
           "$ref": "ResourceStatus",
-          "description": "[Output Only] Specifies values set for instance attributes as\ncompared to the values requested by user in the corresponding input only\nfield."
+          "description": "Output only. [Output Only] Specifies values set for instance attributes as\ncompared to the values requested by user in the corresponding input only\nfield.",
+          "readOnly": true
         },
         "satisfiesPzi": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "scheduling": {
@@ -56478,7 +57622,8 @@
           "description": "Sets the scheduling options for this instance."
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "serviceAccounts": {
@@ -56503,11 +57648,12 @@
           "description": "Source machine image encryption key when creating an instance from a\nmachine image."
         },
         "startRestricted": {
-          "description": "[Output Only] Whether a VM has been restricted for start because Compute\nEngine has detected suspicious activity.",
+          "description": "Output only. [Output Only] Whether a VM has been restricted for start because Compute\nEngine has detected suspicious activity.",
+          "readOnly": true,
           "type": "boolean"
         },
         "status": {
-          "description": "[Output Only] The status of the instance. One of the\nfollowing values: PROVISIONING, STAGING,RUNNING, STOPPING, SUSPENDING,SUSPENDED, REPAIRING, andTERMINATED. For more information about the status of the\ninstance, see \nInstance life cycle.",
+          "description": "Output only. [Output Only] The status of the instance. One of the\nfollowing values: PROVISIONING, STAGING,RUNNING, STOPPING, SUSPENDING,SUSPENDED, REPAIRING, andTERMINATED. For more information about the status of the\ninstance, see \nInstance life cycle.",
           "enum": [
             "DEPROVISIONING",
             "PENDING",
@@ -56534,10 +57680,12 @@
             "The instance is suspending.",
             "The instance has stopped (either by explicit action or underlying\nfailure)."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "statusMessage": {
-          "description": "[Output Only] An optional, human-readable explanation of the status.",
+          "description": "Output only. [Output Only] An optional, human-readable explanation of the status.",
+          "readOnly": true,
           "type": "string"
         },
         "tags": {
@@ -56545,7 +57693,8 @@
           "description": "Tags to apply to this instance. Tags are used to identify valid\nsources or targets for network firewalls and are specified by the client\nduring instance creation. The tags can be later modified by the setTags\nmethod. Each tag within the list must comply withRFC1035.\nMultiple tags can be specified via the 'tags.items' field."
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the instance resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the instance resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -56568,7 +57717,8 @@
         },
         "kind": {
           "default": "compute#instanceAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#instanceAggregatedList for aggregated lists of\nInstance resources.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#instanceAggregatedList for aggregated lists of\nInstance resources.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -56576,14 +57726,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -56718,10 +57870,12 @@
       "properties": {
         "consumptionInfo": {
           "$ref": "InstanceConsumptionInfo",
-          "description": "Resources consumed by the instance."
+          "description": "Output only. Resources consumed by the instance.",
+          "readOnly": true
         },
         "instance": {
-          "description": "Server-defined URL for the instance.",
+          "description": "Output only. Server-defined URL for the instance.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -56731,23 +57885,27 @@
       "id": "InstanceConsumptionInfo",
       "properties": {
         "guestCpus": {
-          "description": "The number of virtual CPUs that are available to the instance.",
+          "description": "Output only. The number of virtual CPUs that are available to the instance.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "localSsdGb": {
-          "description": "The amount of local SSD storage available to the instance,\ndefined in GiB.",
+          "description": "Output only. The amount of local SSD storage available to the instance,\ndefined in GiB.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "memoryMb": {
-          "description": "The amount of physical memory available to the instance,\ndefined in MiB.",
+          "description": "Output only. The amount of physical memory available to the instance,\ndefined in MiB.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "minNodeCpus": {
-          "description": "The minimal guaranteed number of virtual CPUs that are reserved.",
+          "description": "Output only. The minimal guaranteed number of virtual CPUs that are reserved.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         }
       },
@@ -56758,7 +57916,8 @@
       "id": "InstanceGroup",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this instance group inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this instance group inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -56766,18 +57925,21 @@
           "type": "string"
         },
         "fingerprint": {
-          "description": "[Output Only] The fingerprint of the named ports. The system\nuses this fingerprint to detect conflicts when multiple users change the\nnamed ports concurrently.",
+          "description": "Output only. [Output Only] The fingerprint of the named ports. The system\nuses this fingerprint to detect conflicts when multiple users change the\nnamed ports concurrently.",
           "format": "byte",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this instance group, generated\nby the server.",
+          "description": "Output only. [Output Only] A unique identifier for this instance group, generated\nby the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#instanceGroup",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroup for instance groups.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroup for instance groups.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -56802,24 +57964,29 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] The URL of theregion\nwhere the instance group is located (for regional resources).",
+          "description": "Output only. [Output Only] The URL of theregion\nwhere the instance group is located (for regional resources).",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] The URL for this instance group. The server generates\nthis URL.",
+          "description": "Output only. [Output Only] The URL for this instance group. The server generates\nthis URL.",
+          "readOnly": true,
           "type": "string"
         },
         "size": {
-          "description": "[Output Only] The total number of instances in the instance group.",
+          "description": "Output only. [Output Only] The total number of instances in the instance group.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "subnetwork": {
-          "description": "[Output Only] The URL of the subnetwork to which all instances in the\ninstance group belong. If your instance has multiple network interfaces,\nthen the network and subnetwork fields only refer to the\nnetwork and subnet used by your primary interface (nic0).",
+          "description": "Output only. [Output Only] The URL of the subnetwork to which all instances in the\ninstance group belong. If your instance has multiple network interfaces,\nthen the network and subnetwork fields only refer to the\nnetwork and subnet used by your primary interface (nic0).",
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] The URL of thezone\nwhere the instance group is located (for zonal resources).",
+          "description": "Output only. [Output Only] The URL of thezone\nwhere the instance group is located (for zonal resources).",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -56829,7 +57996,8 @@
       "id": "InstanceGroupAggregatedList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -56842,26 +58010,30 @@
         },
         "kind": {
           "default": "compute#instanceGroupAggregatedList",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupAggregatedList for aggregated lists of\ninstance groups.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupAggregatedList for aggregated lists of\ninstance groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -56982,6 +58154,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -56992,7 +58165,8 @@
       "id": "InstanceGroupList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -57004,19 +58178,22 @@
         },
         "kind": {
           "default": "compute#instanceGroupList",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupList for instance group lists.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupList for instance group lists.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -57137,6 +58314,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -57162,12 +58340,14 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this managed instance group inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this managed instance group inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "currentActions": {
           "$ref": "InstanceGroupManagerActionsSummary",
-          "description": "[Output Only] The list of instance actions and the number of instances\nin this managed instance group that are scheduled for each of those\nactions."
+          "description": "Output only. [Output Only] The list of instance actions and the number of instances\nin this managed instance group that are scheduled for each of those\nactions.",
+          "readOnly": true
         },
         "description": {
           "description": "An optional description of this resource.",
@@ -57183,8 +58363,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "instanceFlexibilityPolicy": {
@@ -57192,7 +58373,8 @@
           "description": "Instance flexibility allowing MIG to create VMs from multiple\ntypes of machines.\nInstance flexibility configuration on MIG overrides instance\ntemplate configuration."
         },
         "instanceGroup": {
-          "description": "[Output Only] The URL of the Instance Group resource.",
+          "description": "Output only. [Output Only] The URL of the Instance Group resource.",
+          "readOnly": true,
           "type": "string"
         },
         "instanceLifecyclePolicy": {
@@ -57205,7 +58387,8 @@
         },
         "kind": {
           "default": "compute#instanceGroupManager",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupManager for managed instance groups.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupManager for managed instance groups.",
+          "readOnly": true,
           "type": "string"
         },
         "listManagedInstancesResults": {
@@ -57239,7 +58422,8 @@
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] The URL of theregion\nwhere the managed instance group resides (for regional resources).",
+          "description": "Output only. [Output Only] The URL of theregion\nwhere the managed instance group resides (for regional resources).",
+          "readOnly": true,
           "type": "string"
         },
         "resourcePolicies": {
@@ -57247,15 +58431,18 @@
           "description": "Resource policies for this managed instance group."
         },
         "satisfiesPzi": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] The URL for this managed instance group. The server defines\nthis URL.",
+          "description": "Output only. [Output Only] The URL for this managed instance group. The server defines\nthis URL.",
+          "readOnly": true,
           "type": "string"
         },
         "standbyPolicy": {
@@ -57268,7 +58455,8 @@
         },
         "status": {
           "$ref": "InstanceGroupManagerStatus",
-          "description": "[Output Only] The status of this managed instance group."
+          "description": "Output only. [Output Only] The status of this managed instance group.",
+          "readOnly": true
         },
         "targetPools": {
           "description": "The URLs for all TargetPool resources to which instances in theinstanceGroup field are added. The target pools automatically\napply to all of the instances in the managed instance group.",
@@ -57310,7 +58498,8 @@
           "type": "array"
         },
         "zone": {
-          "description": "[Output Only] The URL of azone\nwhere the managed instance group is located (for zonal resources).",
+          "description": "Output only. [Output Only] The URL of azone\nwhere the managed instance group is located (for zonal resources).",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -57320,68 +58509,81 @@
       "id": "InstanceGroupManagerActionsSummary",
       "properties": {
         "abandoning": {
-          "description": "[Output Only] The total number of instances in the managed instance group\nthat are scheduled to be abandoned. Abandoning an instance removes it\nfrom the managed instance group without deleting it.",
+          "description": "Output only. [Output Only] The total number of instances in the managed instance group\nthat are scheduled to be abandoned. Abandoning an instance removes it\nfrom the managed instance group without deleting it.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "creating": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be created or are currently being created. If the group\nfails to create any of these instances, it tries again until it creates\nthe instance successfully.\n\nIf you have disabled creation retries, this field will not be populated;\ninstead, the creatingWithoutRetries field will be populated.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be created or are currently being created. If the group\nfails to create any of these instances, it tries again until it creates\nthe instance successfully.\n\nIf you have disabled creation retries, this field will not be populated;\ninstead, the creatingWithoutRetries field will be populated.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "creatingWithoutRetries": {
-          "description": "[Output Only] The number of instances that the managed instance group\nwill attempt to create. The group attempts to create each instance\nonly once. If the group fails to create any of these instances, it\ndecreases the group's targetSize value accordingly.",
+          "description": "Output only. [Output Only] The number of instances that the managed instance group\nwill attempt to create. The group attempts to create each instance\nonly once. If the group fails to create any of these instances, it\ndecreases the group's targetSize value accordingly.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "deleting": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be deleted or are currently being deleted.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be deleted or are currently being deleted.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "none": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare running and have no scheduled actions.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare running and have no scheduled actions.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "recreating": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be recreated or are currently being being recreated.\nRecreating an instance deletes the existing root persistent disk\nand creates a new disk from the image that is defined in the\ninstance template.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be recreated or are currently being being recreated.\nRecreating an instance deletes the existing root persistent disk\nand creates a new disk from the image that is defined in the\ninstance template.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "refreshing": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare being reconfigured with properties that do not require a restart\nor a recreate action. For example, setting or removing target\npools for the instance.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare being reconfigured with properties that do not require a restart\nor a recreate action. For example, setting or removing target\npools for the instance.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "restarting": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be restarted or are currently being restarted.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be restarted or are currently being restarted.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "resuming": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be resumed or are currently being resumed.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be resumed or are currently being resumed.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "starting": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be started or are currently being started.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be started or are currently being started.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "stopping": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be stopped or are currently being stopped.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be stopped or are currently being stopped.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "suspending": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare scheduled to be suspended or are currently being suspended.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare scheduled to be suspended or are currently being suspended.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "verifying": {
-          "description": "[Output Only] The number of instances in the managed instance group that\nare being verified. See the managedInstances[].currentAction\nproperty in the listManagedInstances method documentation.",
+          "description": "Output only. [Output Only] The number of instances in the managed instance group that\nare being verified. See the managedInstances[].currentAction\nproperty in the listManagedInstances method documentation.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         }
       },
@@ -57391,39 +58593,44 @@
       "id": "InstanceGroupManagerAggregatedList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
           "additionalProperties": {
             "$ref": "InstanceGroupManagersScopedList",
-            "description": "[Output Only] The name of the scope that contains this set of managed\ninstance groups."
+            "description": "Output only. [Output Only] The name of the scope that contains this set of managed\ninstance groups."
           },
           "description": "A list of InstanceGroupManagersScopedList resources.",
           "type": "object"
         },
         "kind": {
           "default": "compute#instanceGroupManagerAggregatedList",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupManagerAggregatedList for an aggregated\nlist of managed instance groups.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupManagerAggregatedList for an aggregated\nlist of managed instance groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -57544,6 +58751,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -57640,7 +58848,8 @@
       "id": "InstanceGroupManagerList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -57652,19 +58861,22 @@
         },
         "kind": {
           "default": "compute#instanceGroupManagerList",
-          "description": "[Output Only] The resource type, which is always\ncompute#instanceGroupManagerList for a list of managed instance groups.",
+          "description": "Output only. [Output Only] The resource type, which is always\ncompute#instanceGroupManagerList for a list of managed instance groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -57785,6 +58997,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -57795,7 +59008,8 @@
       "id": "InstanceGroupManagerResizeRequest",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this resize request inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this resize request inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -57803,13 +59017,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#instanceGroupManagerResizeRequest",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupManagerResizeRequest for\nresize requests.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupManagerResizeRequest for\nresize requests.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -57832,15 +59048,17 @@
           "type": "integer"
         },
         "selfLink": {
-          "description": "[Output Only] The URL for this resize request. The server defines\nthis URL.",
+          "description": "Output only. [Output Only] The URL for this resize request. The server defines\nthis URL.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
-          "description": "[Output only] Current state of the request.",
+          "description": "Output only. [Output only] Current state of the request.",
           "enum": [
             "ACCEPTED",
             "CANCELLED",
@@ -57857,14 +59075,17 @@
             "Default value. This value should never be returned.",
             "The request succeeded."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "status": {
           "$ref": "InstanceGroupManagerResizeRequestStatus",
-          "description": "[Output only] Status of the request."
+          "description": "Output only. [Output only] Status of the request.",
+          "readOnly": true
         },
         "zone": {
-          "description": "[Output Only] The URL of azone\nwhere the resize request is located. Populated only for zonal resize\nrequests.",
+          "description": "Output only. [Output Only] The URL of azone\nwhere the resize request is located. Populated only for zonal resize\nrequests.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -57874,7 +59095,7 @@
       "id": "InstanceGroupManagerResizeRequestStatus",
       "properties": {
         "error": {
-          "description": "[Output only] Fatal errors encountered during the queueing or\nprovisioning phases of the ResizeRequest that caused the transition to\nthe FAILED state. Contrary to the last_attempt errors, this field is\nfinal and errors are never removed from here, as the ResizeRequest is not\ngoing to retry.",
+          "description": "Output only. [Output only] Fatal errors encountered during the queueing or\nprovisioning phases of the ResizeRequest that caused the transition to\nthe FAILED state. Contrary to the last_attempt errors, this field is\nfinal and errors are never removed from here, as the ResizeRequest is not\ngoing to retry.",
           "properties": {
             "errors": {
               "description": "[Output Only] The array of errors encountered while processing this\noperation.",
@@ -57919,11 +59140,13 @@
               "type": "array"
             }
           },
+          "readOnly": true,
           "type": "object"
         },
         "lastAttempt": {
           "$ref": "InstanceGroupManagerResizeRequestStatusLastAttempt",
-          "description": "[Output only] Information about the last attempt to fulfill the request.\nThe value is temporary since the ResizeRequest can retry, as long as it's\nstill active and the last attempt value can either be cleared or replaced\nwith a different error. Since ResizeRequest retries infrequently, the\nvalue may be stale and no longer show an active problem. The value is\ncleared when ResizeRequest transitions to the final state (becomes\ninactive). If the final state is FAILED the error describing it will be\nstorred in the \"error\" field only."
+          "description": "Output only. [Output only] Information about the last attempt to fulfill the request.\nThe value is temporary since the ResizeRequest can retry, as long as it's\nstill active and the last attempt value can either be cleared or replaced\nwith a different error. Since ResizeRequest retries infrequently, the\nvalue may be stale and no longer show an active problem. The value is\ncleared when ResizeRequest transitions to the final state (becomes\ninactive). If the final state is FAILED the error describing it will be\nstorred in the \"error\" field only.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -57932,7 +59155,7 @@
       "id": "InstanceGroupManagerResizeRequestStatusLastAttempt",
       "properties": {
         "error": {
-          "description": "Errors that prevented the ResizeRequest to be fulfilled.",
+          "description": "Output only. Errors that prevented the ResizeRequest to be fulfilled.",
           "properties": {
             "errors": {
               "description": "[Output Only] The array of errors encountered while processing this\noperation.",
@@ -57977,6 +59200,7 @@
               "type": "array"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -57987,7 +59211,8 @@
       "id": "InstanceGroupManagerResizeRequestsListResponse",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -57999,19 +59224,22 @@
         },
         "kind": {
           "default": "compute#instanceGroupManagerResizeRequestList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#instanceGroupManagerResizeRequestList for\na list of resize requests.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#instanceGroupManagerResizeRequestList for\na list of resize requests.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -58132,6 +59360,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -58175,23 +59404,28 @@
       "properties": {
         "allInstancesConfig": {
           "$ref": "InstanceGroupManagerStatusAllInstancesConfig",
-          "description": "[Output only] Status of all-instances configuration on the group."
+          "description": "Output only. [Output only] Status of all-instances configuration on the group.",
+          "readOnly": true
         },
         "autoscaler": {
-          "description": "[Output Only] The URL of theAutoscaler\nthat targets this instance group manager.",
+          "description": "Output only. [Output Only] The URL of theAutoscaler\nthat targets this instance group manager.",
+          "readOnly": true,
           "type": "string"
         },
         "isStable": {
-          "description": "[Output Only] A bit indicating whether the managed instance group is in a\nstable state. A stable state means that: none of the instances in the\nmanaged instance group is currently undergoing any type of change (for\nexample, creation, restart, or deletion); no future changes are scheduled\nfor instances in the managed instance group; and the managed instance\ngroup itself is not being modified.",
+          "description": "Output only. [Output Only] A bit indicating whether the managed instance group is in a\nstable state. A stable state means that: none of the instances in the\nmanaged instance group is currently undergoing any type of change (for\nexample, creation, restart, or deletion); no future changes are scheduled\nfor instances in the managed instance group; and the managed instance\ngroup itself is not being modified.",
+          "readOnly": true,
           "type": "boolean"
         },
         "stateful": {
           "$ref": "InstanceGroupManagerStatusStateful",
-          "description": "[Output Only] Stateful status of the given Instance Group Manager."
+          "description": "Output only. [Output Only] Stateful status of the given Instance Group Manager.",
+          "readOnly": true
         },
         "versionTarget": {
           "$ref": "InstanceGroupManagerStatusVersionTarget",
-          "description": "[Output Only] A status of consistency of Instances' versions with their\ntarget version specified by version field on Instance Group\nManager."
+          "description": "Output only. [Output Only] A status of consistency of Instances' versions with their\ntarget version specified by version field on Instance Group\nManager.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -58200,11 +59434,13 @@
       "id": "InstanceGroupManagerStatusAllInstancesConfig",
       "properties": {
         "currentRevision": {
-          "description": "[Output Only] Current all-instances configuration revision.\nThis value is in RFC3339 text format.",
+          "description": "Output only. [Output Only] Current all-instances configuration revision.\nThis value is in RFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "effective": {
-          "description": "[Output Only] A bit indicating whether this configuration has\nbeen applied to all managed instances in the group.",
+          "description": "Output only. [Output Only] A bit indicating whether this configuration has\nbeen applied to all managed instances in the group.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -58214,12 +59450,14 @@
       "id": "InstanceGroupManagerStatusStateful",
       "properties": {
         "hasStatefulConfig": {
-          "description": "[Output Only] A bit indicating whether the managed instance group\nhas stateful configuration, that is, if you have configured any items\nin a stateful policy or in per-instance configs.\nThe group might report that it has no stateful configuration even when\nthere is still some preserved state on a managed instance, for example,\nif you have deleted all PICs but not yet applied those deletions.",
+          "description": "Output only. [Output Only] A bit indicating whether the managed instance group\nhas stateful configuration, that is, if you have configured any items\nin a stateful policy or in per-instance configs.\nThe group might report that it has no stateful configuration even when\nthere is still some preserved state on a managed instance, for example,\nif you have deleted all PICs but not yet applied those deletions.",
+          "readOnly": true,
           "type": "boolean"
         },
         "perInstanceConfigs": {
           "$ref": "InstanceGroupManagerStatusStatefulPerInstanceConfigs",
-          "description": "[Output Only] Status of per-instance configurations on the instances."
+          "description": "Output only. [Output Only] Status of per-instance configurations on the instances.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -58228,7 +59466,8 @@
       "id": "InstanceGroupManagerStatusStatefulPerInstanceConfigs",
       "properties": {
         "allEffective": {
-          "description": "A bit indicating if all of the group's per-instance configurations\n(listed in the output of a listPerInstanceConfigs API call) have\nstatus EFFECTIVE or there are no per-instance-configs.",
+          "description": "Output only. A bit indicating if all of the group's per-instance configurations\n(listed in the output of a listPerInstanceConfigs API call) have\nstatus EFFECTIVE or there are no per-instance-configs.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -58238,7 +59477,8 @@
       "id": "InstanceGroupManagerStatusVersionTarget",
       "properties": {
         "isReached": {
-          "description": "[Output Only] A bit indicating whether version target has been reached\nin this managed instance group, i.e. all instances are in their target\nversion. Instances' target version are specified byversion field on Instance Group Manager.",
+          "description": "Output only. [Output Only] A bit indicating whether version target has been reached\nin this managed instance group, i.e. all instances are in their target\nversion. Instances' target version are specified byversion field on Instance Group Manager.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -58456,14 +59696,16 @@
       "id": "InstanceGroupManagersListErrorsResponse",
       "properties": {
         "items": {
-          "description": "[Output Only] The list of errors of the managed instance group.",
+          "description": "Output only. [Output Only] The list of errors of the managed instance group.",
           "items": {
             "$ref": "InstanceManagedByIgmError"
           },
+          "readOnly": true,
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -58473,14 +59715,16 @@
       "id": "InstanceGroupManagersListManagedInstancesResponse",
       "properties": {
         "managedInstances": {
-          "description": "[Output Only] The list of instances in the managed instance group.",
+          "description": "Output only. [Output Only] The list of instances in the managed instance group.",
           "items": {
             "$ref": "ManagedInstance"
           },
+          "readOnly": true,
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -58490,18 +59734,20 @@
       "id": "InstanceGroupManagersListPerInstanceConfigsResp",
       "properties": {
         "items": {
-          "description": "[Output Only] The list of PerInstanceConfig.",
+          "description": "Output only. [Output Only] The list of PerInstanceConfig.",
           "items": {
             "$ref": "PerInstanceConfig"
           },
+          "readOnly": true,
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -58622,6 +59868,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -58671,14 +59918,15 @@
       "id": "InstanceGroupManagersScopedList",
       "properties": {
         "instanceGroupManagers": {
-          "description": "[Output Only] The list of managed instance groups that are contained in\nthe specified project and zone.",
+          "description": "Output only. [Output Only] The list of managed instance groups that are contained in\nthe specified project and zone.",
           "items": {
             "$ref": "InstanceGroupManager"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] The warning that replaces the list of managed instance\ngroups when the list is empty.",
+          "description": "Output only. [Output Only] The warning that replaces the list of managed instance\ngroups when the list is empty.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -58799,6 +60047,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -58910,7 +60159,8 @@
       "id": "InstanceGroupsListInstances",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -58922,19 +60172,22 @@
         },
         "kind": {
           "default": "compute#instanceGroupsListInstances",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceGroupsListInstances for the list of instances\nin the specified instance group.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceGroupsListInstances for the list of instances\nin the specified instance group.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -59055,6 +60308,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -59095,14 +60349,15 @@
       "id": "InstanceGroupsScopedList",
       "properties": {
         "instanceGroups": {
-          "description": "[Output Only] The list ofinstance\ngroups that are contained in this scope.",
+          "description": "Output only. [Output Only] The list ofinstance\ngroups that are contained in this scope.",
           "items": {
             "$ref": "InstanceGroup"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] An informational warning that replaces the list of\ninstance groups when the list is empty.",
+          "description": "Output only. [Output Only] An informational warning that replaces the list of\ninstance groups when the list is empty.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -59223,6 +60478,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -59263,7 +60519,8 @@
         },
         "kind": {
           "default": "compute#instanceList",
-          "description": "[Output Only] Type of resource. Always compute#instanceList\nfor lists of Instance resources.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#instanceList\nfor lists of Instance resources.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -59271,7 +60528,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -59418,7 +60676,8 @@
         },
         "kind": {
           "default": "compute#instanceListReferrers",
-          "description": "[Output Only] Type of resource. Alwayscompute#instanceListReferrers for lists of Instance referrers.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#instanceListReferrers for lists of Instance referrers.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -59426,7 +60685,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -59561,14 +60821,17 @@
       "properties": {
         "error": {
           "$ref": "InstanceManagedByIgmErrorManagedInstanceError",
-          "description": "[Output Only] Contents of the error."
+          "description": "Output only. [Output Only] Contents of the error.",
+          "readOnly": true
         },
         "instanceActionDetails": {
           "$ref": "InstanceManagedByIgmErrorInstanceActionDetails",
-          "description": "[Output Only] Details of the instance action that triggered this error.\nMay be null, if the error was not caused by an action on an instance.\nThis field is optional."
+          "description": "Output only. [Output Only] Details of the instance action that triggered this error.\nMay be null, if the error was not caused by an action on an instance.\nThis field is optional.",
+          "readOnly": true
         },
         "timestamp": {
-          "description": "[Output Only] The time that this error occurred.\nThis value is in RFC3339 text format.",
+          "description": "Output only. [Output Only] The time that this error occurred.\nThis value is in RFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -59578,7 +60841,7 @@
       "id": "InstanceManagedByIgmErrorInstanceActionDetails",
       "properties": {
         "action": {
-          "description": "[Output Only] Action that managed instance group was executing on\nthe instance when the error occurred. Possible values:",
+          "description": "Output only. [Output Only] Action that managed instance group was executing on\nthe instance when the error occurred. Possible values:",
           "enum": [
             "ABANDONING",
             "CREATING",
@@ -59609,15 +60872,18 @@
             "The managed instance group is suspending this instance.",
             "The managed instance group is verifying this already created instance.\nVerification happens every time the instance is (re)created or restarted\nand consists of:\n 1. Waiting until health check specified as part of this managed instance\n    group's autohealing policy reports HEALTHY.\n    Note: Applies only if autohealing policy has a health check specified\n 2. Waiting for addition verification steps performed as post-instance\n    creation (subject to future extensions)."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "instance": {
-          "description": "[Output Only] The URL of the instance.\nThe URL can be set even if the instance has not yet been created.",
+          "description": "Output only. [Output Only] The URL of the instance.\nThe URL can be set even if the instance has not yet been created.",
+          "readOnly": true,
           "type": "string"
         },
         "version": {
           "$ref": "ManagedInstanceVersion",
-          "description": "[Output Only] Version this instance was created from, or was being\ncreated from, but the creation failed. Corresponds to one of the versions\nthat were set on the Instance Group Manager resource at the time this\ninstance was being created."
+          "description": "Output only. [Output Only] Version this instance was created from, or was being\ncreated from, but the creation failed. Corresponds to one of the versions\nthat were set on the Instance Group Manager resource at the time this\ninstance was being created.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -59626,11 +60892,13 @@
       "id": "InstanceManagedByIgmErrorManagedInstanceError",
       "properties": {
         "code": {
-          "description": "[Output Only] Error code.",
+          "description": "Output only. [Output Only] Error code.",
+          "readOnly": true,
           "type": "string"
         },
         "message": {
-          "description": "[Output Only] Error message.",
+          "description": "Output only. [Output Only] Error message.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -59662,7 +60930,7 @@
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Resource manager tags to be bound to the instance. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and\nvalues are in the format `tagValues/456`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
+          "description": "Resource manager tags to be bound to the instance. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
           "type": "object"
         }
       },
@@ -59846,7 +61114,8 @@
         },
         "kind": {
           "default": "compute#instanceSettings",
-          "description": "[Output Only] Type of the resource. Alwayscompute#instance_settings for instance settings.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#instance_settings for instance settings.",
+          "readOnly": true,
           "type": "string"
         },
         "metadata": {
@@ -59854,7 +61123,8 @@
           "description": "The metadata key/value pairs assigned to all the instances in the\ncorresponding scope."
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the resource resides\nYou must specify this field as part of the HTTP request URL. It is not\nsettable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the resource resides\nYou must specify this field as part of the HTTP request URL. It is not\nsettable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -59872,7 +61142,8 @@
         },
         "kind": {
           "default": "compute#metadata",
-          "description": "[Output Only] Type of the resource. Always compute#metadata\nfor metadata.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#metadata\nfor metadata.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -59883,7 +61154,8 @@
       "id": "InstanceTemplate",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this instance template inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this instance template inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -59891,13 +61163,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this instance template. The server\ndefines this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this instance template. The server\ndefines this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#instanceTemplate",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceTemplate for instance templates.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceTemplate for instance templates.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -59915,11 +61189,13 @@
           "description": "The instance properties for this instance template."
         },
         "region": {
-          "description": "[Output Only] URL of the region where the instance template resides. Only\napplicable for regional resources.",
+          "description": "Output only. [Output Only] URL of the region where the instance template resides. Only\napplicable for regional resources.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] The URL for this instance template. The server defines this\nURL.",
+          "description": "Output only. [Output Only] The URL for this instance template. The server defines this\nURL.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceInstance": {
@@ -59951,7 +61227,8 @@
         },
         "kind": {
           "default": "compute#instanceTemplateAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -59959,7 +61236,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -60106,7 +61384,8 @@
         },
         "kind": {
           "default": "compute#instanceTemplateList",
-          "description": "[Output Only] The resource type, which is alwayscompute#instanceTemplatesListResponse for instance template\nlists.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#instanceTemplatesListResponse for instance template\nlists.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -60114,7 +61393,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -60385,18 +61665,20 @@
       "id": "InstanceWithNamedPorts",
       "properties": {
         "instance": {
-          "description": "[Output Only] The URL of the instance.",
+          "description": "Output only. [Output Only] The URL of the instance.",
+          "readOnly": true,
           "type": "string"
         },
         "namedPorts": {
-          "description": "[Output Only] The named ports that belong to this instance group.",
+          "description": "Output only. [Output Only] The named ports that belong to this instance group.",
           "items": {
             "$ref": "NamedPort"
           },
+          "readOnly": true,
           "type": "array"
         },
         "status": {
-          "description": "[Output Only] The status of the instance.",
+          "description": "Output only. [Output Only] The status of the instance.",
           "enum": [
             "DEPROVISIONING",
             "PENDING",
@@ -60423,6 +61705,7 @@
             "The instance is suspending.",
             "The instance has stopped (either by explicit action or underlying\nfailure)."
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -60479,23 +61762,27 @@
       "properties": {
         "displayName": {
           "deprecated": true,
-          "description": "[Output Only] Deprecated, please use short name instead. The display name\nof the firewall policy.",
+          "description": "Output only. [Output Only] Deprecated, please use short name instead. The display name\nof the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of the firewall policy.",
+          "description": "Output only. [Output Only] The name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "packetMirroringRules": {
-          "description": "[Output Only] The packet mirroring rules that apply to the instance.",
+          "description": "Output only. [Output Only] The packet mirroring rules that apply to the instance.",
           "items": {
             "$ref": "FirewallPolicyRule"
           },
+          "readOnly": true,
           "type": "array"
         },
         "priority": {
-          "description": "[Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
+          "description": "Output only. [Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "rules": {
@@ -60506,11 +61793,12 @@
           "type": "array"
         },
         "shortName": {
-          "description": "[Output Only] The short name of the firewall policy.",
+          "description": "Output only. [Output Only] The short name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "type": {
-          "description": "[Output Only] The type of the firewall policy. Can be one of HIERARCHY,\nNETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.",
+          "description": "Output only. [Output Only] The type of the firewall policy. Can be one of HIERARCHY,\nNETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.",
           "enum": [
             "HIERARCHY",
             "NETWORK",
@@ -60527,6 +61815,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -60848,7 +62137,7 @@
       "id": "InstantSnapshot",
       "properties": {
         "architecture": {
-          "description": "[Output Only] The architecture of the instant snapshot. Valid values are\nARM64 or X86_64.",
+          "description": "Output only. [Output Only] The architecture of the instant snapshot. Valid values are\nARM64 or X86_64.",
           "enum": [
             "ARCHITECTURE_UNSPECIFIED",
             "ARM64",
@@ -60859,10 +62148,12 @@
             "Machines with architecture ARM64",
             "Machines with architecture X86_64"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -60870,18 +62161,21 @@
           "type": "string"
         },
         "diskSizeGb": {
-          "description": "[Output Only] Size of the source disk, specified in GB.",
+          "description": "Output only. [Output Only] Size of the source disk, specified in GB.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#instantSnapshot",
-          "description": "[Output Only] Type of the resource. Alwayscompute#instantSnapshot for InstantSnapshot resources.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#instantSnapshot for InstantSnapshot resources.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -60902,12 +62196,14 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the instant snapshot resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the instant snapshot resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "resourceStatus": {
           "$ref": "InstantSnapshotResourceStatus",
-          "description": "[Output Only] Status information for the instant snapshot resource."
+          "description": "Output only. [Output Only] Status information for the instant snapshot resource.",
+          "readOnly": true
         },
         "satisfiesPzi": {
           "description": "Output only. Reserved for future use.",
@@ -60915,15 +62211,18 @@
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource's resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource's resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceDisk": {
@@ -60931,11 +62230,12 @@
           "type": "string"
         },
         "sourceDiskId": {
-          "description": "[Output Only] The ID value of the disk used to create this InstantSnapshot.\nThis value may be used to determine whether the InstantSnapshot\nwas taken from the current or a previous instance of a given disk name.",
+          "description": "Output only. [Output Only] The ID value of the disk used to create this InstantSnapshot.\nThis value may be used to determine whether the InstantSnapshot\nwas taken from the current or a previous instance of a given disk name.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of the instantSnapshot. This can beCREATING, DELETING, FAILED, orREADY.",
+          "description": "Output only. [Output Only] The status of the instantSnapshot. This can beCREATING, DELETING, FAILED, orREADY.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -60950,10 +62250,12 @@
             "InstantSnapshot has been created successfully.",
             "InstantSnapshot is currently unavailable and cannot be used for\nDisk restoration"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the instant snapshot resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the instant snapshot resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -60976,7 +62278,8 @@
         },
         "kind": {
           "default": "compute#instantSnapshotAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#instantSnapshotAggregatedList for aggregated lists of\ninstantSnapshots.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#instantSnapshotAggregatedList for aggregated lists of\ninstantSnapshots.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -60984,14 +62287,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -61138,7 +62443,8 @@
         },
         "kind": {
           "default": "compute#instantSnapshotList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -61146,7 +62452,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -61475,14 +62782,16 @@
           "type": "array"
         },
         "circuitInfos": {
-          "description": "[Output Only] A list of CircuitInfo objects, that describe the individual\ncircuits in this LAG.",
+          "description": "Output only. [Output Only] A list of CircuitInfo objects, that describe the individual\ncircuits in this LAG.",
           "items": {
             "$ref": "InterconnectCircuitInfo"
           },
+          "readOnly": true,
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "customerName": {
@@ -61494,37 +62803,43 @@
           "type": "string"
         },
         "expectedOutages": {
-          "description": "[Output Only] A list of outages expected for this Interconnect.",
+          "description": "Output only. [Output Only] A list of outages expected for this Interconnect.",
           "items": {
             "$ref": "InterconnectOutageNotification"
           },
+          "readOnly": true,
           "type": "array"
         },
         "googleIpAddress": {
-          "description": "[Output Only] IP address configured on the Google side of the Interconnect\nlink. This can be used only for ping tests.",
+          "description": "Output only. [Output Only] IP address configured on the Google side of the Interconnect\nlink. This can be used only for ping tests.",
+          "readOnly": true,
           "type": "string"
         },
         "googleReferenceId": {
-          "description": "[Output Only] Google reference ID to be used when raising support tickets\nwith Google or otherwise to debug backend connectivity issues.",
+          "description": "Output only. [Output Only] Google reference ID to be used when raising support tickets\nwith Google or otherwise to debug backend connectivity issues.",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "interconnectAttachments": {
-          "description": "[Output Only] A list of the URLs of all InterconnectAttachments configured\nto use  this Interconnect.",
+          "description": "Output only. [Output Only] A list of the URLs of all InterconnectAttachments configured\nto use  this Interconnect.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "interconnectGroups": {
-          "description": "[Output Only] URLs of InterconnectGroups that include this Interconnect.\nOrder is arbitrary and items are unique.",
+          "description": "Output only. [Output Only] URLs of InterconnectGroups that include this Interconnect.\nOrder is arbitrary and items are unique.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "interconnectType": {
@@ -61543,7 +62858,8 @@
         },
         "kind": {
           "default": "compute#interconnect",
-          "description": "[Output Only] Type of the resource. Alwayscompute#interconnect for interconnects.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#interconnect for interconnects.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -61599,7 +62915,7 @@
           "type": "string"
         },
         "operationalStatus": {
-          "description": "[Output Only] The current status of this Interconnect's functionality,\nwhich can take one of the following values:\n   \n   - OS_ACTIVE: A valid Interconnect, which is turned up and is ready to\n   use. Attachments may be provisioned on this Interconnect.\n\n- OS_UNPROVISIONED: An Interconnect that has not completed turnup. No\nattachments may be provisioned on this Interconnect.\n- OS_UNDER_MAINTENANCE: An Interconnect that is undergoing internal\nmaintenance. No attachments may be provisioned or updated on this\nInterconnect.",
+          "description": "Output only. [Output Only] The current status of this Interconnect's functionality,\nwhich can take one of the following values:\n   \n   - OS_ACTIVE: A valid Interconnect, which is turned up and is ready to\n   use. Attachments may be provisioned on this Interconnect.\n\n- OS_UNPROVISIONED: An Interconnect that has not completed turnup. No\nattachments may be provisioned on this Interconnect.\n- OS_UNDER_MAINTENANCE: An Interconnect that is undergoing internal\nmaintenance. No attachments may be provisioned or updated on this\nInterconnect.",
           "enum": [
             "OS_ACTIVE",
             "OS_UNPROVISIONED"
@@ -61608,6 +62924,7 @@
             "The interconnect is valid, turned up, and ready to use. Attachments may\nbe provisioned on this interconnect.",
             "The interconnect has not completed turnup. No attachments may be\nprovisioned on this interconnect."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "params": {
@@ -61615,12 +62932,14 @@
           "description": "Input only. [Input Only] Additional params passed with the request, but not persisted\nas part of resource payload."
         },
         "peerIpAddress": {
-          "description": "[Output Only] IP address configured on the customer side of the\nInterconnect link. The customer should configure this IP address during\nturnup when prompted by Google NOC. This can be used only for ping tests.",
+          "description": "Output only. [Output Only] IP address configured on the customer side of the\nInterconnect link. The customer should configure this IP address during\nturnup when prompted by Google NOC. This can be used only for ping tests.",
+          "readOnly": true,
           "type": "string"
         },
         "provisionedLinkCount": {
-          "description": "[Output Only] Number of links actually provisioned in this interconnect.",
+          "description": "Output only. [Output Only] Number of links actually provisioned in this interconnect.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "remoteLocation": {
@@ -61650,15 +62969,17 @@
           "type": "integer"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] The current state of Interconnect functionality, which can\ntake one of the following values:\n   \n   - ACTIVE: The Interconnect is valid, turned up and ready to use.\n   Attachments may be provisioned on this Interconnect.\n   - UNPROVISIONED: The Interconnect has not completed turnup. No\n   attachments may be provisioned on this Interconnect.\n   - UNDER_MAINTENANCE: The Interconnect is undergoing internal maintenance.\n   No attachments may be provisioned or updated on this\n   Interconnect.",
+          "description": "Output only. [Output Only] The current state of Interconnect functionality, which can\ntake one of the following values:\n   \n   - ACTIVE: The Interconnect is valid, turned up and ready to use.\n   Attachments may be provisioned on this Interconnect.\n   - UNPROVISIONED: The Interconnect has not completed turnup. No\n   attachments may be provisioned on this Interconnect.\n   - UNDER_MAINTENANCE: The Interconnect is undergoing internal maintenance.\n   No attachments may be provisioned or updated on this\n   Interconnect.",
           "enum": [
             "ACTIVE",
             "UNPROVISIONED"
@@ -61667,6 +62988,7 @@
             "The interconnect is valid, turned up, and ready to use. Attachments may\nbe provisioned on this interconnect.",
             "The interconnect has not completed turnup. No attachments may be\nprovisioned on this interconnect."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "subzone": {
@@ -61682,10 +63004,11 @@
           "type": "string"
         },
         "wireGroups": {
-          "description": "[Output Only] A list of the URLs of all CrossSiteNetwork WireGroups\nconfigured to use this Interconnect. The Interconnect cannot be deleted if\nthis list is non-empty.",
+          "description": "Output only. [Output Only] A list of the URLs of all CrossSiteNetwork WireGroups\nconfigured to use this Interconnect. The Interconnect cannot be deleted if\nthis list is non-empty.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -61775,7 +63098,8 @@
           "type": "boolean"
         },
         "attachmentGroup": {
-          "description": "[Output Only] URL of the AttachmentGroup that includes this Attachment.",
+          "description": "Output only. [Output Only] URL of the AttachmentGroup that includes this Attachment.",
+          "readOnly": true,
           "type": "string"
         },
         "bandwidth": {
@@ -61812,6 +63136,22 @@
           ],
           "type": "string"
         },
+        "candidateCloudRouterIpAddress": {
+          "description": "Single IPv4 address + prefix length to be configured on the cloud router\ninterface for this interconnect attachment.\n   \n   - Both candidate_cloud_router_ip_address and\n   candidate_customer_router_ip_address fields must be set or both must be\n   unset.\n   - Prefix length of both candidate_cloud_router_ip_address and\n   candidate_customer_router_ip_address must be the same.\n   - Max prefix length is 31.",
+          "type": "string"
+        },
+        "candidateCloudRouterIpv6Address": {
+          "description": "Single IPv6 address + prefix length to be configured on the cloud router\ninterface for this interconnect attachment.\n   \n   - Both candidate_cloud_router_ipv6_address and\n   candidate_customer_router_ipv6_address fields must be set or both must be\n   unset.\n   - Prefix length of both candidate_cloud_router_ipv6_address and\n   candidate_customer_router_ipv6_address must be the same.\n   - Max prefix length is 126.",
+          "type": "string"
+        },
+        "candidateCustomerRouterIpAddress": {
+          "description": "Single IPv4 address + prefix length to be configured on the customer router\ninterface for this interconnect attachment.",
+          "type": "string"
+        },
+        "candidateCustomerRouterIpv6Address": {
+          "description": "Single IPv6 address + prefix length to be configured on the customer router\ninterface for this interconnect attachment.",
+          "type": "string"
+        },
         "candidateIpv6Subnets": {
           "description": "This field is not available.",
           "items": {
@@ -61827,11 +63167,13 @@
           "type": "array"
         },
         "cloudRouterIpAddress": {
-          "description": "[Output Only] IPv4 address + prefix length to be configured on Cloud Router\nInterface for this interconnect attachment.",
+          "description": "Output only. [Output Only] IPv4 address + prefix length to be configured on Cloud Router\nInterface for this interconnect attachment.",
+          "readOnly": true,
           "type": "string"
         },
         "cloudRouterIpv6Address": {
-          "description": "[Output Only] IPv6 address + prefix length to be configured on Cloud\nRouter Interface for this interconnect attachment.",
+          "description": "Output only. [Output Only] IPv6 address + prefix length to be configured on Cloud\nRouter Interface for this interconnect attachment.",
+          "readOnly": true,
           "type": "string"
         },
         "cloudRouterIpv6InterfaceId": {
@@ -61840,18 +63182,22 @@
         },
         "configurationConstraints": {
           "$ref": "InterconnectAttachmentConfigurationConstraints",
-          "description": "[Output Only] Constraints for this attachment, if any. The attachment does\nnot work if these constraints are not met."
+          "description": "Output only. [Output Only] Constraints for this attachment, if any. The attachment does\nnot work if these constraints are not met.",
+          "readOnly": true
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "customerRouterIpAddress": {
-          "description": "[Output Only] IPv4 address + prefix length to be configured on the customer\nrouter subinterface for this interconnect attachment.",
+          "description": "Output only. [Output Only] IPv4 address + prefix length to be configured on the customer\nrouter subinterface for this interconnect attachment.",
+          "readOnly": true,
           "type": "string"
         },
         "customerRouterIpv6Address": {
-          "description": "[Output Only] IPv6 address + prefix length to be configured on the\ncustomer router subinterface for this interconnect attachment.",
+          "description": "Output only. [Output Only] IPv6 address + prefix length to be configured on the\ncustomer router subinterface for this interconnect attachment.",
+          "readOnly": true,
           "type": "string"
         },
         "customerRouterIpv6InterfaceId": {
@@ -61859,8 +63205,9 @@
           "type": "string"
         },
         "dataplaneVersion": {
-          "description": "[Output Only] Dataplane version for this InterconnectAttachment. This\nfield is only present for Dataplane version 2 and higher. Absence of this\nfield in the API output indicates that the Dataplane is version 1.",
+          "description": "Output only. [Output Only] Dataplane version for this InterconnectAttachment. This\nfield is only present for Dataplane version 2 and higher. Absence of this\nfield in the API output indicates that the Dataplane is version 1.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "description": {
@@ -61895,12 +63242,14 @@
         },
         "googleReferenceId": {
           "deprecated": true,
-          "description": "[Output Only] Google reference ID, to be used when raising support tickets\nwith Google or otherwise to debug backend connectivity issues.\n[Deprecated] This field is not used.",
+          "description": "Output only. [Output Only] Google reference ID, to be used when raising support tickets\nwith Google or otherwise to debug backend connectivity issues.\n[Deprecated] This field is not used.",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "interconnect": {
@@ -61916,7 +63265,8 @@
         },
         "kind": {
           "default": "compute#interconnectAttachment",
-          "description": "[Output Only] Type of the resource. Alwayscompute#interconnectAttachment for interconnect attachments.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#interconnectAttachment for interconnect attachments.",
+          "readOnly": true,
           "type": "string"
         },
         "l2Forwarding": {
@@ -61946,7 +63296,7 @@
           "type": "string"
         },
         "operationalStatus": {
-          "description": "[Output Only] The current status of whether or not this interconnect\nattachment is functional, which can take one of the following values:\n   \n   - OS_ACTIVE: The attachment has been turned up and is ready to\n   use. \n   - OS_UNPROVISIONED: The attachment is not ready to use yet,\n   because turnup is not complete.",
+          "description": "Output only. [Output Only] The current status of whether or not this interconnect\nattachment is functional, which can take one of the following values:\n   \n   - OS_ACTIVE: The attachment has been turned up and is ready to\n   use. \n   - OS_UNPROVISIONED: The attachment is not ready to use yet,\n   because turnup is not complete.",
           "enum": [
             "OS_ACTIVE",
             "OS_UNPROVISIONED"
@@ -61955,6 +63305,7 @@
             "Indicates that attachment has been turned up and is ready to\nuse.",
             "Indicates that attachment is not ready to use yet, because\nturnup is not complete."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "pairingKey": {
@@ -61976,14 +63327,17 @@
         },
         "privateInterconnectInfo": {
           "$ref": "InterconnectAttachmentPrivateInfo",
-          "description": "[Output Only] Information specific to an InterconnectAttachment.\nThis property is populated if the interconnect that\nthis is attached to is of type DEDICATED."
+          "description": "Output only. [Output Only] Information specific to an InterconnectAttachment.\nThis property is populated if the interconnect that\nthis is attached to is of type DEDICATED.",
+          "readOnly": true
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional interconnect attachment\nresides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the regional interconnect attachment\nresides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "remoteService": {
-          "description": "[Output Only]\nIf the attachment is on a Cross-Cloud Interconnect connection, this field\ncontains the interconnect's remote location service provider. Example\nvalues: \"Amazon Web Services\" \"Microsoft Azure\".\n\nThe field is set only for attachments on Cross-Cloud Interconnect\nconnections. Its value is copied from the InterconnectRemoteLocation\nremoteService field.",
+          "description": "Output only. [Output Only]\nIf the attachment is on a Cross-Cloud Interconnect connection, this field\ncontains the interconnect's remote location service provider. Example\nvalues: \"Amazon Web Services\" \"Microsoft Azure\".\n\nThe field is set only for attachments on Cross-Cloud Interconnect\nconnections. Its value is copied from the InterconnectRemoteLocation\nremoteService field.",
+          "readOnly": true,
           "type": "string"
         },
         "router": {
@@ -61991,11 +63345,13 @@
           "type": "string"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "stackType": {
@@ -62011,7 +63367,7 @@
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] The current state of this attachment's functionality.\nEnum values ACTIVE and UNPROVISIONED are shared by DEDICATED/PRIVATE,\nPARTNER, and PARTNER_PROVIDER interconnect attachments, while enum values\nPENDING_PARTNER, PARTNER_REQUEST_RECEIVED, and PENDING_CUSTOMER are used\nfor only PARTNER and PARTNER_PROVIDER interconnect attachments.\nThis state can take one of the following values:\n   \n   - ACTIVE: The attachment has been turned up and is ready to use.\n   - UNPROVISIONED: The attachment is not ready to use yet, because turnup\n   is not complete.\n   - PENDING_PARTNER: A newly-created PARTNER attachment that has not yet\n   been configured on the Partner side.\n   - PARTNER_REQUEST_RECEIVED: A PARTNER attachment is in the process of\n   provisioning after a PARTNER_PROVIDER attachment was created that\n   references it. \n   - PENDING_CUSTOMER: A PARTNER or PARTNER_PROVIDER\n   attachment that is waiting for a customer to activate it. \n   - DEFUNCT:\n   The attachment was deleted externally and is no longer functional. This\n   could be because the associated Interconnect was removed, or because the\n   other side of a Partner attachment was deleted.",
+          "description": "Output only. [Output Only] The current state of this attachment's functionality.\nEnum values ACTIVE and UNPROVISIONED are shared by DEDICATED/PRIVATE,\nPARTNER, and PARTNER_PROVIDER interconnect attachments, while enum values\nPENDING_PARTNER, PARTNER_REQUEST_RECEIVED, and PENDING_CUSTOMER are used\nfor only PARTNER and PARTNER_PROVIDER interconnect attachments.\nThis state can take one of the following values:\n   \n   - ACTIVE: The attachment has been turned up and is ready to use.\n   - UNPROVISIONED: The attachment is not ready to use yet, because turnup\n   is not complete.\n   - PENDING_PARTNER: A newly-created PARTNER attachment that has not yet\n   been configured on the Partner side.\n   - PARTNER_REQUEST_RECEIVED: A PARTNER attachment is in the process of\n   provisioning after a PARTNER_PROVIDER attachment was created that\n   references it. \n   - PENDING_CUSTOMER: A PARTNER or PARTNER_PROVIDER\n   attachment that is waiting for a customer to activate it. \n   - DEFUNCT:\n   The attachment was deleted externally and is no longer functional. This\n   could be because the associated Interconnect was removed, or because the\n   other side of a Partner attachment was deleted.",
           "enum": [
             "ACTIVE",
             "DEFUNCT",
@@ -62030,6 +63386,7 @@
             "",
             "Indicates that attachment is not ready to use yet, because turnup is not\ncomplete."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "subnetLength": {
@@ -62078,7 +63435,8 @@
         },
         "kind": {
           "default": "compute#interconnectAttachmentAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#interconnectAttachmentAggregatedList for aggregated\nlists of interconnect attachments.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#interconnectAttachmentAggregatedList for aggregated\nlists of interconnect attachments.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -62086,14 +63444,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -62227,7 +63587,7 @@
       "id": "InterconnectAttachmentConfigurationConstraints",
       "properties": {
         "bgpMd5": {
-          "description": "[Output Only] Whether the attachment's BGP session\nrequires/allows/disallows BGP MD5 authentication. This can take one of\nthe following values: MD5_OPTIONAL, MD5_REQUIRED, MD5_UNSUPPORTED.\n\nFor example, a Cross-Cloud Interconnect connection to a remote cloud\nprovider that requires BGP MD5 authentication has the\ninterconnectRemoteLocation attachment_configuration_constraints.bgp_md5\nfield set to MD5_REQUIRED, and that property is propagated to the\nattachment. Similarly, if BGP MD5 is MD5_UNSUPPORTED, an error is\nreturned if MD5 is requested.",
+          "description": "Output only. [Output Only] Whether the attachment's BGP session\nrequires/allows/disallows BGP MD5 authentication. This can take one of\nthe following values: MD5_OPTIONAL, MD5_REQUIRED, MD5_UNSUPPORTED.\n\nFor example, a Cross-Cloud Interconnect connection to a remote cloud\nprovider that requires BGP MD5 authentication has the\ninterconnectRemoteLocation attachment_configuration_constraints.bgp_md5\nfield set to MD5_REQUIRED, and that property is propagated to the\nattachment. Similarly, if BGP MD5 is MD5_UNSUPPORTED, an error is\nreturned if MD5 is requested.",
           "enum": [
             "MD5_OPTIONAL",
             "MD5_REQUIRED",
@@ -62238,13 +63598,15 @@
             "MD5_REQUIRED: BGP MD5 authentication must be configured.",
             "MD5_UNSUPPORTED: BGP MD5 authentication must not be configured"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "bgpPeerAsnRanges": {
-          "description": "[Output Only] List of ASN ranges that the remote location is known to\nsupport. Formatted as an array of inclusive ranges {min: min-value, max:\nmax-value}. For example, [{min: 123, max: 123}, {min: 64512, max: 65534}]\nallows the peer ASN to be 123 or anything in the range 64512-65534.\n\nThis field is only advisory. Although the API accepts other ranges, these\nare the ranges that we recommend.",
+          "description": "Output only. [Output Only] List of ASN ranges that the remote location is known to\nsupport. Formatted as an array of inclusive ranges {min: min-value, max:\nmax-value}. For example, [{min: 123, max: 123}, {min: 64512, max: 65534}]\nallows the peer ASN to be 123 or anything in the range 64512-65534.\n\nThis field is only advisory. Although the API accepts other ranges, these\nare the ranges that we recommend.",
           "items": {
             "$ref": "InterconnectAttachmentConfigurationConstraintsBgpPeerASNRange"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -62276,10 +63638,12 @@
           "type": "object"
         },
         "configured": {
-          "$ref": "InterconnectAttachmentGroupConfigured"
+          "$ref": "InterconnectAttachmentGroupConfigured",
+          "readOnly": true
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -62291,8 +63655,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "intent": {
@@ -62304,11 +63669,13 @@
         },
         "kind": {
           "default": "compute#interconnectAttachmentGroup",
-          "description": "[Output Only] Type of the resource. Always\ncompute#interconnectAttachmentGroup.",
+          "description": "Output only. [Output Only] Type of the resource. Always\ncompute#interconnectAttachmentGroup.",
+          "readOnly": true,
           "type": "string"
         },
         "logicalStructure": {
-          "$ref": "InterconnectAttachmentGroupLogicalStructure"
+          "$ref": "InterconnectAttachmentGroupLogicalStructure",
+          "readOnly": true
         },
         "name": {
           "description": "Name of the resource. Provided by the client when the resource is created.\nThe name must be 1-63 characters long, and comply withRFC1035.\nSpecifically, the name must be 1-63 characters long and match the regular\nexpression `[a-z]([-a-z0-9]*[a-z0-9])?` which means the first\ncharacter must be a lowercase letter, and all following characters must\nbe a dash, lowercase letter, or digit, except the last character, which\ncannot be a dash.",
@@ -62316,7 +63683,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -62337,7 +63705,8 @@
       "id": "InterconnectAttachmentGroupConfigured",
       "properties": {
         "availabilitySla": {
-          "$ref": "InterconnectAttachmentGroupConfiguredAvailabilitySLA"
+          "$ref": "InterconnectAttachmentGroupConfiguredAvailabilitySLA",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -62359,12 +63728,14 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "intendedSlaBlockers": {
           "items": {
             "$ref": "InterconnectAttachmentGroupConfiguredAvailabilitySLAIntendedSlaBlockers"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -62375,10 +63746,11 @@
       "id": "InterconnectAttachmentGroupConfiguredAvailabilitySLAIntendedSlaBlockers",
       "properties": {
         "attachments": {
-          "description": "[Output Only] URLs of any particular Attachments to explain this\nblocker in more detail.",
+          "description": "Output only. [Output Only] URLs of any particular Attachments to explain this\nblocker in more detail.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "blockerType": {
@@ -62400,35 +63772,41 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "documentationLink": {
-          "description": "[Output Only] The url of Google Cloud public documentation explaining\nthis requirement. This is set for every type of requirement.",
+          "description": "Output only. [Output Only] The url of Google Cloud public documentation explaining\nthis requirement. This is set for every type of requirement.",
+          "readOnly": true,
           "type": "string"
         },
         "explanation": {
-          "description": "[Output Only] A human-readable explanation of this requirement and\nwhy it's not met. This is set for every type of requirement.",
+          "description": "Output only. [Output Only] A human-readable explanation of this requirement and\nwhy it's not met. This is set for every type of requirement.",
+          "readOnly": true,
           "type": "string"
         },
         "metros": {
-          "description": "[Output Only] Metros used to explain this blocker in more detail.\nThese are three-letter lowercase strings like \"iad\". This will be set\nfor some blockers (like NO_ATTACHMENTS_IN_METRO_AND_ZONE) but does\nnot apply to others.",
+          "description": "Output only. [Output Only] Metros used to explain this blocker in more detail.\nThese are three-letter lowercase strings like \"iad\". This will be set\nfor some blockers (like NO_ATTACHMENTS_IN_METRO_AND_ZONE) but does\nnot apply to others.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "regions": {
-          "description": "[Output Only] Regions used to explain this blocker in more\ndetail. These are region names formatted like \"us-central1\". This\nwill be set for some blockers (like INCOMPATIBLE_REGIONS) but does\nnot apply to others.",
+          "description": "Output only. [Output Only] Regions used to explain this blocker in more\ndetail. These are region names formatted like \"us-central1\". This\nwill be set for some blockers (like INCOMPATIBLE_REGIONS) but does\nnot apply to others.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "zones": {
-          "description": "[Output Only] Zones used to explain this blocker in more detail.\nFormat is \"zone1\" and/or \"zone2\". This will be set for some blockers\n(like  MISSING_ZONE) but does not apply to others.",
+          "description": "Output only. [Output Only] Zones used to explain this blocker in more detail.\nFormat is \"zone1\" and/or \"zone2\". This will be set for some blockers\n(like  MISSING_ZONE) but does not apply to others.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -62464,6 +63842,7 @@
           "items": {
             "$ref": "InterconnectAttachmentGroupLogicalStructureRegion"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -62477,10 +63856,12 @@
           "items": {
             "$ref": "InterconnectAttachmentGroupLogicalStructureRegionMetro"
           },
+          "readOnly": true,
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] The name of a region, like \"us-central1\".",
+          "description": "Output only. [Output Only] The name of a region, like \"us-central1\".",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -62494,10 +63875,12 @@
           "items": {
             "$ref": "InterconnectAttachmentGroupLogicalStructureRegionMetroFacility"
           },
+          "readOnly": true,
           "type": "array"
         },
         "metro": {
-          "description": "[Output Only] The name of the metro, as a three-letter lowercase\nstring like \"iad\". This is the first component of the location of an\nInterconnect.",
+          "description": "Output only. [Output Only] The name of the metro, as a three-letter lowercase\nstring like \"iad\". This is the first component of the location of an\nInterconnect.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -62508,13 +63891,15 @@
       "id": "InterconnectAttachmentGroupLogicalStructureRegionMetroFacility",
       "properties": {
         "facility": {
-          "description": "[Output Only] The name of a facility, like \"iad-1234\".",
+          "description": "Output only. [Output Only] The name of a facility, like \"iad-1234\".",
+          "readOnly": true,
           "type": "string"
         },
         "zones": {
           "items": {
             "$ref": "InterconnectAttachmentGroupLogicalStructureRegionMetroFacilityZone"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -62525,14 +63910,16 @@
       "id": "InterconnectAttachmentGroupLogicalStructureRegionMetroFacilityZone",
       "properties": {
         "attachments": {
-          "description": "[Output Only] URLs of Attachments in the given zone, to the given\nregion, on Interconnects in the given facility and metro. Every\nAttachment in the AG has such an entry.",
+          "description": "Output only. [Output Only] URLs of Attachments in the given zone, to the given\nregion, on Interconnects in the given facility and metro. Every\nAttachment in the AG has such an entry.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "zone": {
-          "description": "[Output Only] The name of a zone, either \"zone1\" or \"zone2\".",
+          "description": "Output only. [Output Only] The name of a zone, either \"zone1\" or \"zone2\".",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -62570,6 +63957,7 @@
         },
         "kind": {
           "default": "compute#interconnectAttachmentGroup",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -62581,10 +63969,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface:\nMixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface:\nMixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -62721,13 +64110,15 @@
           "items": {
             "$ref": "InterconnectAttachmentGroupsOperationalStatusAttachmentStatus"
           },
+          "readOnly": true,
           "type": "array"
         },
         "configured": {
-          "$ref": "InterconnectAttachmentGroupConfigured"
+          "$ref": "InterconnectAttachmentGroupConfigured",
+          "readOnly": true
         },
         "groupStatus": {
-          "description": "Summarizes the status of the group.",
+          "description": "Output only. Summarizes the status of the group.",
           "enum": [
             "DEGRADED",
             "FULLY_DOWN",
@@ -62740,14 +64131,17 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "intent": {
-          "$ref": "InterconnectAttachmentGroupIntent"
+          "$ref": "InterconnectAttachmentGroupIntent",
+          "readOnly": true
         },
         "operational": {
           "$ref": "InterconnectAttachmentGroupConfigured",
-          "description": "The operational state of the group, including only active Attachments."
+          "description": "Output only. The operational state of the group, including only active Attachments.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -62757,15 +64151,17 @@
       "id": "InterconnectAttachmentGroupsOperationalStatusAttachmentStatus",
       "properties": {
         "adminEnabled": {
-          "description": "Whether this Attachment is enabled. This becomes false when the customer\ndrains their Attachment.",
+          "description": "Output only. Whether this Attachment is enabled. This becomes false when the customer\ndrains their Attachment.",
+          "readOnly": true,
           "type": "boolean"
         },
         "attachment": {
-          "description": "The URL of the Attachment being described.",
+          "description": "Output only. The URL of the Attachment being described.",
+          "readOnly": true,
           "type": "string"
         },
         "isActive": {
-          "description": "Whether this Attachment is participating in the redundant configuration.\nThis will be ACTIVE if and only if the status below is CONNECTION_UP.\nAny INACTIVE Attachments are excluded from the analysis that generates\noperational.availabilitySLA.",
+          "description": "Output only. Whether this Attachment is participating in the redundant configuration.\nThis will be ACTIVE if and only if the status below is CONNECTION_UP.\nAny INACTIVE Attachments are excluded from the analysis that generates\noperational.availabilitySLA.",
           "enum": [
             "ACTIVE",
             "INACTIVE",
@@ -62776,10 +64172,11 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "Whether this Attachment is active, and if so, whether BGP is up.",
+          "description": "Output only. Whether this Attachment is active, and if so, whether BGP is up.",
           "enum": [
             "ATTACHMENT_STATUS_UNKNOWN",
             "CONNECTION_DISABLED",
@@ -62814,6 +64211,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -62918,7 +64316,8 @@
         },
         "kind": {
           "default": "compute#interconnectAttachmentList",
-          "description": "[Output Only] Type of resource. Alwayscompute#interconnectAttachmentList for lists of interconnect\nattachments.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#interconnectAttachmentList for lists of interconnect\nattachments.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -62926,7 +64325,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -63444,10 +64844,12 @@
       "id": "InterconnectGroup",
       "properties": {
         "configured": {
-          "$ref": "InterconnectGroupConfigured"
+          "$ref": "InterconnectGroupConfigured",
+          "readOnly": true
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -63459,8 +64861,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "intent": {
@@ -63475,7 +64878,8 @@
         },
         "kind": {
           "default": "compute#InterconnectGroup",
-          "description": "[Output Only] Type of the resource. Always compute#InterconnectGroup",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#InterconnectGroup",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -63489,10 +64893,12 @@
           "type": "string"
         },
         "physicalStructure": {
-          "$ref": "InterconnectGroupPhysicalStructure"
+          "$ref": "InterconnectGroupPhysicalStructure",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -63503,7 +64909,8 @@
       "id": "InterconnectGroupConfigured",
       "properties": {
         "topologyCapability": {
-          "$ref": "InterconnectGroupConfiguredTopologyCapability"
+          "$ref": "InterconnectGroupConfiguredTopologyCapability",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -63516,6 +64923,7 @@
           "items": {
             "$ref": "InterconnectGroupConfiguredTopologyCapabilityIntendedCapabilityBlockers"
           },
+          "readOnly": true,
           "type": "array"
         },
         "supportedSla": {
@@ -63531,6 +64939,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -63557,42 +64966,49 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "documentationLink": {
-          "description": "[Output Only] The url of Google Cloud public documentation explaining\nthis requirement. This is set for every type of requirement.",
+          "description": "Output only. [Output Only] The url of Google Cloud public documentation explaining\nthis requirement. This is set for every type of requirement.",
+          "readOnly": true,
           "type": "string"
         },
         "explanation": {
-          "description": "[Output Only] A human-readable explanation of this requirement and\nwhy it's not met. This is set for every type of requirement.",
+          "description": "Output only. [Output Only] A human-readable explanation of this requirement and\nwhy it's not met. This is set for every type of requirement.",
+          "readOnly": true,
           "type": "string"
         },
         "facilities": {
-          "description": "[Output Only] Facilities used to explain this blocker in more detail.\nLike physicalStructure.metros.facilities.facility, this is a numeric\nstring like \"5467\".",
+          "description": "Output only. [Output Only] Facilities used to explain this blocker in more detail.\nLike physicalStructure.metros.facilities.facility, this is a numeric\nstring like \"5467\".",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "interconnects": {
-          "description": "[Output Only] Interconnects used to explain this blocker in more\ndetail.",
+          "description": "Output only. [Output Only] Interconnects used to explain this blocker in more\ndetail.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "metros": {
-          "description": "[Output Only] Metros used to explain this blocker in more detail.\nThese are three-letter lowercase strings like \"iad\". A blocker like\nINCOMPATIBLE_METROS will specify the problematic metros in this\nfield.",
+          "description": "Output only. [Output Only] Metros used to explain this blocker in more detail.\nThese are three-letter lowercase strings like \"iad\". A blocker like\nINCOMPATIBLE_METROS will specify the problematic metros in this\nfield.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "zones": {
-          "description": "[Output Only] Zones used to explain this blocker in more detail.\nZone names are \"zone1\" and/or \"zone2\".",
+          "description": "Output only. [Output Only] Zones used to explain this blocker in more detail.\nZone names are \"zone1\" and/or \"zone2\".",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -63639,6 +65055,7 @@
           "items": {
             "$ref": "InterconnectGroupPhysicalStructureMetros"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -63652,10 +65069,12 @@
           "items": {
             "$ref": "InterconnectGroupPhysicalStructureMetrosFacilities"
           },
+          "readOnly": true,
           "type": "array"
         },
         "metro": {
-          "description": "[Output Only] The name of the metro, as a three-letter lowercase string\nlike \"iad\". This is the first component of the location of\nInterconnects underneath this.",
+          "description": "Output only. [Output Only] The name of the metro, as a three-letter lowercase string\nlike \"iad\". This is the first component of the location of\nInterconnects underneath this.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -63666,13 +65085,15 @@
       "id": "InterconnectGroupPhysicalStructureMetrosFacilities",
       "properties": {
         "facility": {
-          "description": "[Output Only] The ID of this facility, as a numeric string like\n\"5467\". This is the third component of the location of Interconnects\nin this facility.",
+          "description": "Output only. [Output Only] The ID of this facility, as a numeric string like\n\"5467\". This is the third component of the location of Interconnects\nin this facility.",
+          "readOnly": true,
           "type": "string"
         },
         "zones": {
           "items": {
             "$ref": "InterconnectGroupPhysicalStructureMetrosFacilitiesZones"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -63683,14 +65104,16 @@
       "id": "InterconnectGroupPhysicalStructureMetrosFacilitiesZones",
       "properties": {
         "interconnects": {
-          "description": "[Output Only] URLs of Interconnects in this redundancy group in the\ngiven metro, facility, and zone.",
+          "description": "Output only. [Output Only] URLs of Interconnects in this redundancy group in the\ngiven metro, facility, and zone.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "zone": {
-          "description": "[Output Only] The name of the zone, either \"zone1\" or \"zone2\".\nThis is the second component of the location of Interconnects in\nthis facility.",
+          "description": "Output only. [Output Only] The name of the zone, either \"zone1\" or \"zone2\".\nThis is the second component of the location of Interconnects in\nthis facility.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -63852,6 +65275,7 @@
         },
         "kind": {
           "default": "compute#InterconnectGroup",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -63863,10 +65287,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -64002,10 +65427,11 @@
       "properties": {
         "configured": {
           "$ref": "InterconnectGroupConfigured",
-          "description": "The configuration analysis, as returned by Get."
+          "description": "Output only. The configuration analysis, as returned by Get.",
+          "readOnly": true
         },
         "groupStatus": {
-          "description": "Summarizes the status of the group.",
+          "description": "Output only. Summarizes the status of the group.",
           "enum": [
             "DEGRADED",
             "FULLY_DOWN",
@@ -64018,21 +65444,25 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "intent": {
           "$ref": "InterconnectGroupIntent",
-          "description": "The intent of the resource, as returned by Get."
+          "description": "Output only. The intent of the resource, as returned by Get.",
+          "readOnly": true
         },
         "interconnectStatuses": {
           "items": {
             "$ref": "InterconnectGroupsOperationalStatusInterconnectStatus"
           },
+          "readOnly": true,
           "type": "array"
         },
         "operational": {
           "$ref": "InterconnectGroupConfigured",
-          "description": "The operational state of the group, including only active Interconnects."
+          "description": "Output only. The operational state of the group, including only active Interconnects.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -64042,19 +65472,22 @@
       "id": "InterconnectGroupsOperationalStatusInterconnectStatus",
       "properties": {
         "adminEnabled": {
-          "description": "Whether the Interconnect is enabled.",
+          "description": "Output only. Whether the Interconnect is enabled.",
+          "readOnly": true,
           "type": "boolean"
         },
         "diagnostics": {
           "$ref": "InterconnectDiagnostics",
-          "description": "The diagnostics of the Interconnect, as returned by the existing\nget-diagnostics method."
+          "description": "Output only. The diagnostics of the Interconnect, as returned by the existing\nget-diagnostics method.",
+          "readOnly": true
         },
         "interconnect": {
-          "description": "The URL of the Interconnect being described.",
+          "description": "Output only. The URL of the Interconnect being described.",
+          "readOnly": true,
           "type": "string"
         },
         "isActive": {
-          "description": "Whether this interconnect is participating in the redundant\nconfiguration.",
+          "description": "Output only. Whether this interconnect is participating in the redundant\nconfiguration.",
           "enum": [
             "ACTIVE",
             "INACTIVE",
@@ -64065,6 +65498,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -64087,7 +65521,8 @@
         },
         "kind": {
           "default": "compute#interconnectList",
-          "description": "[Output Only] Type of resource. Alwayscompute#interconnectList for lists of interconnects.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#interconnectList for lists of interconnects.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -64095,7 +65530,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -64230,7 +65666,8 @@
       "id": "InterconnectLocation",
       "properties": {
         "address": {
-          "description": "[Output Only] The postal address of the Point of Presence, each line in\nthe address is separated by a newline character.",
+          "description": "Output only. [Output Only] The postal address of the Point of Presence, each line in\nthe address is separated by a newline character.",
+          "readOnly": true,
           "type": "string"
         },
         "availabilityZone": {
@@ -64304,7 +65741,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "crossSiteInterconnectInfos": {
@@ -64315,51 +65753,61 @@
           "type": "array"
         },
         "description": {
-          "description": "[Output Only] An optional description of the resource.",
+          "description": "Output only. [Output Only] An optional description of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "facilityProvider": {
-          "description": "[Output Only] The name of the provider for this facility (e.g., EQUINIX).",
+          "description": "Output only. [Output Only] The name of the provider for this facility (e.g., EQUINIX).",
+          "readOnly": true,
           "type": "string"
         },
         "facilityProviderFacilityId": {
-          "description": "[Output Only] A provider-assigned Identifier for this facility (e.g.,\nAshburn-DC1).",
+          "description": "Output only. [Output Only] A provider-assigned Identifier for this facility (e.g.,\nAshburn-DC1).",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#interconnectLocation",
-          "description": "[Output Only] Type of the resource. Alwayscompute#interconnectLocation for interconnect locations.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#interconnectLocation for interconnect locations.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] Name of the resource.",
+          "description": "Output only. [Output Only] Name of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "peeringdbFacilityId": {
-          "description": "[Output Only] The peeringdb identifier for this facility (corresponding\nwith a netfac type in peeringdb).",
+          "description": "Output only. [Output Only] The peeringdb identifier for this facility (corresponding\nwith a netfac type in peeringdb).",
+          "readOnly": true,
           "type": "string"
         },
         "regionInfos": {
-          "description": "[Output Only] A list of InterconnectLocation.RegionInfo objects, that\ndescribe parameters pertaining to the relation between this\nInterconnectLocation and various Google Cloud regions.",
+          "description": "Output only. [Output Only] A list of InterconnectLocation.RegionInfo objects, that\ndescribe parameters pertaining to the relation between this\nInterconnectLocation and various Google Cloud regions.",
           "items": {
             "$ref": "InterconnectLocationRegionInfo"
           },
+          "readOnly": true,
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "singleRegionProductionCriticalPeerLocations": {
-          "description": "[Output Only] URLs of the other locations that can pair up with this\nlocation to support Single-Region 99.99% SLA. E.g. iad-zone1-1 and\niad-zone2-5467 are Single-Region 99.99% peer locations of each other.",
+          "description": "Output only. [Output Only] URLs of the other locations that can pair up with this\nlocation to support Single-Region 99.99% SLA. E.g. iad-zone1-1 and\niad-zone2-5467 are Single-Region 99.99% peer locations of each other.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "status": {
@@ -64375,7 +65823,8 @@
           "type": "string"
         },
         "supportsPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -64386,7 +65835,8 @@
       "id": "InterconnectLocationCrossSiteInterconnectInfo",
       "properties": {
         "city": {
-          "description": "The remote location for Cross-Site Interconnect wires. This specifies an\nInterconnectLocation city (metropolitan area designator), which itself\nmay match multiple InterconnectLocations.",
+          "description": "Output only. The remote location for Cross-Site Interconnect wires. This specifies an\nInterconnectLocation city (metropolitan area designator), which itself\nmay match multiple InterconnectLocations.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -64409,7 +65859,8 @@
         },
         "kind": {
           "default": "compute#interconnectLocationList",
-          "description": "[Output Only] Type of resource. Alwayscompute#interconnectLocationList for lists of interconnect\nlocations.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#interconnectLocationList for lists of interconnect\nlocations.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -64417,7 +65868,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -64552,16 +66004,18 @@
       "id": "InterconnectLocationRegionInfo",
       "properties": {
         "expectedRttMs": {
-          "description": "Expected round-trip time in milliseconds, from this InterconnectLocation\nto a VM in this region.",
+          "description": "Output only. Expected round-trip time in milliseconds, from this InterconnectLocation\nto a VM in this region.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "l2ForwardingEnabled": {
-          "description": "Identifies whether L2 Interconnect Attachments can be created in this\nregion for interconnects that are in this location.",
+          "description": "Output only. Identifies whether L2 Interconnect Attachments can be created in this\nregion for interconnects that are in this location.",
+          "readOnly": true,
           "type": "boolean"
         },
         "locationPresence": {
-          "description": "Identifies the network presence of this location.",
+          "description": "Output only. Identifies the network presence of this location.",
           "enum": [
             "GLOBAL",
             "LOCAL_REGION",
@@ -64574,10 +66028,12 @@
             "[Deprecated] This region is not in any common network presence with\nthis InterconnectLocation.",
             "[Deprecated] This region shares the same regional network presence as\nthis InterconnectLocation."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "region": {
-          "description": "URL for the region of this location.",
+          "description": "Output only. URL for the region of this location.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -64750,23 +66206,27 @@
       "id": "InterconnectRemoteLocation",
       "properties": {
         "address": {
-          "description": "[Output Only] The postal address of the Point of Presence, each line in\nthe address is separated by a newline character.",
+          "description": "Output only. [Output Only] The postal address of the Point of Presence, each line in\nthe address is separated by a newline character.",
+          "readOnly": true,
           "type": "string"
         },
         "attachmentConfigurationConstraints": {
           "$ref": "InterconnectAttachmentConfigurationConstraints",
-          "description": "[Output Only] Subset of fields from InterconnectAttachment's\n|configurationConstraints| field that apply to all attachments for this\nremote location."
+          "description": "Output only. [Output Only] Subset of fields from InterconnectAttachment's\n|configurationConstraints| field that apply to all attachments for this\nremote location.",
+          "readOnly": true
         },
         "city": {
-          "description": "[Output Only] Metropolitan area designator that indicates which city an\ninterconnect is located.\nFor example: \"Chicago, IL\", \"Amsterdam, Netherlands\".",
+          "description": "Output only. [Output Only] Metropolitan area designator that indicates which city an\ninterconnect is located.\nFor example: \"Chicago, IL\", \"Amsterdam, Netherlands\".",
+          "readOnly": true,
           "type": "string"
         },
         "constraints": {
           "$ref": "InterconnectRemoteLocationConstraints",
-          "description": "[Output Only] Constraints on the parameters for creating Cross-Cloud\nInterconnect and associated InterconnectAttachments."
+          "description": "Output only. [Output Only] Constraints on the parameters for creating Cross-Cloud\nInterconnect and associated InterconnectAttachments.",
+          "readOnly": true
         },
         "continent": {
-          "description": "[Output Only] Continent for this location, which can take one of the\nfollowing values:\n   \n   - AFRICA\n   - ASIA_PAC\n   - EUROPE\n   - NORTH_AMERICA\n   - SOUTH_AMERICA",
+          "description": "Output only. [Output Only] Continent for this location, which can take one of the\nfollowing values:\n   \n   - AFRICA\n   - ASIA_PAC\n   - EUROPE\n   - NORTH_AMERICA\n   - SOUTH_AMERICA",
           "enum": [
             "AFRICA",
             "ASIA_PAC",
@@ -64781,36 +66241,43 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
-          "description": "[Output Only] An optional description of the resource.",
+          "description": "Output only. [Output Only] An optional description of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "facilityProvider": {
-          "description": "[Output Only] The name of the provider for this facility (e.g., EQUINIX).",
+          "description": "Output only. [Output Only] The name of the provider for this facility (e.g., EQUINIX).",
+          "readOnly": true,
           "type": "string"
         },
         "facilityProviderFacilityId": {
-          "description": "[Output Only] A provider-assigned Identifier for this facility (e.g.,\nAshburn-DC1).",
+          "description": "Output only. [Output Only] A provider-assigned Identifier for this facility (e.g.,\nAshburn-DC1).",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#interconnectRemoteLocation",
-          "description": "[Output Only] Type of the resource. Alwayscompute#interconnectRemoteLocation for interconnect remote\nlocations.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#interconnectRemoteLocation for interconnect remote\nlocations.",
+          "readOnly": true,
           "type": "string"
         },
         "lacp": {
-          "description": "[Output Only] Link Aggregation Control Protocol (LACP) constraints, which\ncan take one of the following values: LACP_SUPPORTED, LACP_UNSUPPORTED",
+          "description": "Output only. [Output Only] Link Aggregation Control Protocol (LACP) constraints, which\ncan take one of the following values: LACP_SUPPORTED, LACP_UNSUPPORTED",
           "enum": [
             "LACP_SUPPORTED",
             "LACP_UNSUPPORTED"
@@ -64819,48 +66286,57 @@
             "LACP_SUPPORTED: LACP is supported, and enabled by default on\nthe Cross-Cloud Interconnect.",
             "LACP_UNSUPPORTED: LACP is not supported and is not be enabled on this\nport. GetDiagnostics shows bundleAggregationType as \"static\". GCP does\nnot support LAGs without LACP, so requestedLinkCount must be 1."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "maxLagSize100Gbps": {
-          "description": "[Output Only]\nThe maximum number of 100 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 100 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_100_gbps.",
+          "description": "Output only. [Output Only]\nThe maximum number of 100 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 100 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_100_gbps.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "maxLagSize10Gbps": {
-          "description": "[Output Only]\nThe maximum number of 10 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 10 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_10_gbps.",
+          "description": "Output only. [Output Only]\nThe maximum number of 10 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 10 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_10_gbps.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "maxLagSize400Gbps": {
-          "description": "[Output Only]\nThe maximum number of 400 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 400 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_400_gbps.",
+          "description": "Output only. [Output Only]\nThe maximum number of 400 Gbps ports supported in a link aggregation group\n(LAG). When linkType is 400 Gbps, requestedLinkCount cannot exceed\nmax_lag_size_400_gbps.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "name": {
-          "description": "[Output Only] Name of the resource.",
+          "description": "Output only. [Output Only] Name of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "peeringdbFacilityId": {
-          "description": "[Output Only] The peeringdb identifier for this facility (corresponding\nwith a netfac type in peeringdb).",
+          "description": "Output only. [Output Only] The peeringdb identifier for this facility (corresponding\nwith a netfac type in peeringdb).",
+          "readOnly": true,
           "type": "string"
         },
         "permittedConnections": {
-          "description": "[Output Only] Permitted connections.",
+          "description": "Output only. [Output Only] Permitted connections.",
           "items": {
             "$ref": "InterconnectRemoteLocationPermittedConnections"
           },
+          "readOnly": true,
           "type": "array"
         },
         "remoteService": {
-          "description": "[Output Only] Indicates the service provider present at the remote\nlocation. Example values: \"Amazon Web Services\", \"Microsoft Azure\".",
+          "description": "Output only. [Output Only] Indicates the service provider present at the remote\nlocation. Example values: \"Amazon Web Services\", \"Microsoft Azure\".",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of this InterconnectRemoteLocation, which can take\none of the following values:\n   \n   - CLOSED: The InterconnectRemoteLocation is closed and is unavailable\n   for provisioning new Cross-Cloud Interconnects. \n   - AVAILABLE: The\n   InterconnectRemoteLocation is available for provisioning new\n   Cross-Cloud Interconnects.",
+          "description": "Output only. [Output Only] The status of this InterconnectRemoteLocation, which can take\none of the following values:\n   \n   - CLOSED: The InterconnectRemoteLocation is closed and is unavailable\n   for provisioning new Cross-Cloud Interconnects. \n   - AVAILABLE: The\n   InterconnectRemoteLocation is available for provisioning new\n   Cross-Cloud Interconnects.",
           "enum": [
             "AVAILABLE",
             "CLOSED"
@@ -64869,6 +66345,7 @@
             "The InterconnectRemoteLocation is available for provisioning new\nCross-Cloud Interconnects.",
             "The InterconnectRemoteLocation is closed for provisioning new\nCross-Cloud Interconnects."
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -64878,7 +66355,7 @@
       "id": "InterconnectRemoteLocationConstraints",
       "properties": {
         "portPairRemoteLocation": {
-          "description": "[Output Only] Port pair remote location constraints, which can take one\nof the following values: PORT_PAIR_UNCONSTRAINED_REMOTE_LOCATION,\nPORT_PAIR_MATCHING_REMOTE_LOCATION.\n\nGoogle Cloud API refers only to individual ports, but the UI uses this\nfield when ordering a pair of ports, to prevent users from accidentally\nordering something that is incompatible with their cloud provider.\nSpecifically, when ordering a redundant pair of Cross-Cloud Interconnect\nports, and one of them uses a remote location with\nportPairMatchingRemoteLocation set to matching, the UI requires that\nboth ports use the same remote location.",
+          "description": "Output only. [Output Only] Port pair remote location constraints, which can take one\nof the following values: PORT_PAIR_UNCONSTRAINED_REMOTE_LOCATION,\nPORT_PAIR_MATCHING_REMOTE_LOCATION.\n\nGoogle Cloud API refers only to individual ports, but the UI uses this\nfield when ordering a pair of ports, to prevent users from accidentally\nordering something that is incompatible with their cloud provider.\nSpecifically, when ordering a redundant pair of Cross-Cloud Interconnect\nports, and one of them uses a remote location with\nportPairMatchingRemoteLocation set to matching, the UI requires that\nboth ports use the same remote location.",
           "enum": [
             "PORT_PAIR_MATCHING_REMOTE_LOCATION",
             "PORT_PAIR_UNCONSTRAINED_REMOTE_LOCATION"
@@ -64887,10 +66364,11 @@
             "If PORT_PAIR_MATCHING_REMOTE_LOCATION, the remote cloud provider\nallocates ports in pairs, and the user should choose the same remote\nlocation for both ports.",
             "If PORT_PAIR_UNCONSTRAINED_REMOTE_LOCATION, a user may opt to provision\na redundant pair of Cross-Cloud Interconnects using two different\nremote locations in the same city."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "portPairVlan": {
-          "description": "[Output Only] Port pair VLAN constraints, which can take one of the\nfollowing values: PORT_PAIR_UNCONSTRAINED_VLAN, PORT_PAIR_MATCHING_VLAN",
+          "description": "Output only. [Output Only] Port pair VLAN constraints, which can take one of the\nfollowing values: PORT_PAIR_UNCONSTRAINED_VLAN, PORT_PAIR_MATCHING_VLAN",
           "enum": [
             "PORT_PAIR_MATCHING_VLAN",
             "PORT_PAIR_UNCONSTRAINED_VLAN"
@@ -64899,11 +66377,13 @@
             "If PORT_PAIR_MATCHING_VLAN, the Interconnect for this attachment is\npart of a pair of ports that should have matching VLAN allocations.\nThis occurs with Cross-Cloud Interconnect to Azure remote locations.\nWhile GCP's API does not explicitly group pairs of ports, the UI uses\nthis field to ensure matching VLAN ids when configuring a redundant\nVLAN pair.",
             "PORT_PAIR_UNCONSTRAINED_VLAN means there is no constraint."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "subnetLengthRange": {
           "$ref": "InterconnectRemoteLocationConstraintsSubnetLengthRange",
-          "description": "[Output Only]\n\n[min-length, max-length] \n\nThe minimum and maximum value (inclusive) for the IPv4 subnet\nlength.\n\n For example, an  interconnectRemoteLocation for Azure has {min: 30,\nmax:\n30} because Azure requires /30 subnets. \n\nThis range specifies the values supported by both cloud providers.\nInterconnect currently supports /29 and /30 IPv4 subnet lengths. If a\nremote cloud has no constraint on IPv4 subnet length, the range would\nthus be {min: 29, max: 30}."
+          "description": "Output only. [Output Only]\n\n[min-length, max-length] \n\nThe minimum and maximum value (inclusive) for the IPv4 subnet\nlength.\n\n For example, an  interconnectRemoteLocation for Azure has {min: 30,\nmax:\n30} because Azure requires /30 subnets. \n\nThis range specifies the values supported by both cloud providers.\nInterconnect currently supports /29 and /30 IPv4 subnet lengths. If a\nremote cloud has no constraint on IPv4 subnet length, the range would\nthus be {min: 29, max: 30}.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -64939,7 +66419,8 @@
         },
         "kind": {
           "default": "compute#interconnectRemoteLocationList",
-          "description": "[Output Only] Type of resource. Alwayscompute#interconnectRemoteLocationList for lists of\ninterconnect remote locations.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#interconnectRemoteLocationList for lists of\ninterconnect remote locations.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -64947,7 +66428,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -65081,7 +66563,8 @@
       "id": "InterconnectRemoteLocationPermittedConnections",
       "properties": {
         "interconnectLocation": {
-          "description": "[Output Only] URL of an Interconnect location that is permitted to\nconnect to this Interconnect remote location.",
+          "description": "Output only. [Output Only] URL of an Interconnect location that is permitted to\nconnect to this Interconnect remote location.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -65131,7 +66614,8 @@
           "type": "boolean"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -65152,7 +66636,8 @@
         },
         "kind": {
           "default": "compute#license",
-          "description": "[Output Only] Type of resource. Always compute#license for\nlicenses.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#license for\nlicenses.",
+          "readOnly": true,
           "type": "string"
         },
         "licenseCode": {
@@ -65182,6 +66667,10 @@
           "description": "If true, indicates this is an OS license. Only one OS license can be\nattached to a disk or image at a time.",
           "type": "boolean"
         },
+        "params": {
+          "$ref": "LicenseParams",
+          "description": "Input only. Additional params passed with the request, but not persisted\nas part of resource payload."
+        },
         "removableFromDisk": {
           "description": "If true, this license can be removed from a disk's set of licenses, with no\nreplacement license needed.",
           "type": "boolean"
@@ -65198,11 +66687,13 @@
           "description": "[Input Only] Deprecated."
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "soleTenantOnly": {
@@ -65214,7 +66705,8 @@
           "type": "boolean"
         },
         "updateTimestamp": {
-          "description": "[Output Only] Last update timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Last update timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -65225,21 +66717,25 @@
       "id": "LicenseCode",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
-          "description": "[Output Only] Description of this License Code.",
+          "description": "Output only. [Output Only] Description of this License Code.",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#licenseCode",
-          "description": "[Output Only] Type of resource. Always compute#licenseCode for\nlicenses.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#licenseCode for\nlicenses.",
+          "readOnly": true,
           "type": "string"
         },
         "licenseAlias": {
@@ -65255,16 +66751,18 @@
               "compute.licenses.insert"
             ]
           },
-          "description": "[Output Only] Name of the resource. The name is 1-20 characters long and\nmust be a valid 64 bit integer.",
+          "description": "Output only. [Output Only] Name of the resource. The name is 1-20 characters long and\nmust be a valid 64 bit integer.",
           "pattern": "[0-9]{0,20}?",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] Current state of this License Code.",
+          "description": "Output only. [Output Only] Current state of this License Code.",
           "enum": [
             "DISABLED",
             "ENABLED",
@@ -65279,10 +66777,12 @@
             "",
             "Reserved state."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "transferable": {
-          "description": "[Output Only] If true, the license will remain attached when creating\nimages or snapshots from disks. Otherwise, the license is not transferred.",
+          "description": "Output only. [Output Only] If true, the license will remain attached when creating\nimages or snapshots from disks. Otherwise, the license is not transferred.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -65292,16 +66792,32 @@
       "id": "LicenseCodeLicenseAlias",
       "properties": {
         "description": {
-          "description": "[Output Only] Description of this License Code.",
+          "description": "Output only. [Output Only] Description of this License Code.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] URL of license corresponding to this License Code.",
+          "description": "Output only. [Output Only] URL of license corresponding to this License Code.",
+          "readOnly": true,
           "type": "string"
         }
       },
       "type": "object"
     },
+    "LicenseParams": {
+      "description": "Additional license params.",
+      "id": "LicenseParams",
+      "properties": {
+        "resourceManagerTags": {
+          "additionalProperties": {
+            "type": "string"
+          },
+          "description": "Input only. Resource manager tags to be bound to the license. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
     "LicenseResourceCommitment": {
       "description": "Commitment for a particular license resource.",
       "id": "LicenseResourceCommitment",
@@ -65357,7 +66873,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -65591,7 +67108,8 @@
       "id": "MachineImage",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] The creation timestamp for this machine image inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] The creation timestamp for this machine image inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -65603,8 +67121,9 @@
           "type": "boolean"
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this machine image. The server\ndefines this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this machine image. The server\ndefines this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "instanceProperties": {
@@ -65613,7 +67132,8 @@
         },
         "kind": {
           "default": "compute#machineImage",
-          "description": "[Output Only] The resource type, which is alwayscompute#machineImage for machine image.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#machineImage for machine image.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -65648,18 +67168,21 @@
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "savedDisks": {
-          "description": "An array of Machine Image specific properties for disks attached to the\nsource instance",
+          "description": "Output only. An array of Machine Image specific properties for disks attached to the\nsource instance",
           "items": {
             "$ref": "SavedDisk"
           },
+          "readOnly": true,
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] The URL for this machine image. The server defines this URL.",
+          "description": "Output only. [Output Only] The URL for this machine image. The server defines this URL.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceDiskEncryptionKeys": {
@@ -65675,10 +67198,11 @@
         },
         "sourceInstanceProperties": {
           "$ref": "SourceInstanceProperties",
-          "description": "[Output Only] DEPRECATED: Please use instance_properties\ninstead for source instance related properties. New properties will not be\nadded to this field."
+          "description": "Output only. [Output Only] DEPRECATED: Please use instance_properties\ninstead for source instance related properties. New properties will not be\nadded to this field.",
+          "readOnly": true
         },
         "status": {
-          "description": "[Output Only] The status of the machine image. One of the following values:INVALID, CREATING, READY,DELETING, and UPLOADING.",
+          "description": "Output only. [Output Only] The status of the machine image. One of the following values:INVALID, CREATING, READY,DELETING, and UPLOADING.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -65693,6 +67217,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "storageLocations": {
@@ -65703,8 +67228,9 @@
           "type": "array"
         },
         "totalStorageBytes": {
-          "description": "[Output Only] Total size of the storage used by the machine image.",
+          "description": "Output only. [Output Only] Total size of the storage used by the machine image.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -65727,7 +67253,8 @@
         },
         "kind": {
           "default": "compute#machineImageList",
-          "description": "[Output Only] The resource type, which is alwayscompute#machineImagesListResponse for machine image lists.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#machineImagesListResponse for machine image lists.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -65735,7 +67262,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -65934,7 +67462,8 @@
         },
         "kind": {
           "default": "compute#machineType",
-          "description": "[Output Only] The type of the resource. Alwayscompute#machineType for machine types.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#machineType for machine types.",
+          "readOnly": true,
           "type": "string"
         },
         "maximumPersistentDisks": {
@@ -65985,7 +67514,8 @@
         },
         "kind": {
           "default": "compute#machineTypeAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#machineTypeAggregatedList for aggregated lists of\nmachine types.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#machineTypeAggregatedList for aggregated lists of\nmachine types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -65993,14 +67523,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -66147,7 +67679,8 @@
         },
         "kind": {
           "default": "compute#machineTypeList",
-          "description": "[Output Only] Type of resource. Always compute#machineTypeList\nfor lists of machine types.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#machineTypeList\nfor lists of machine types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -66155,7 +67688,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -66427,7 +67961,7 @@
       "id": "ManagedInstance",
       "properties": {
         "currentAction": {
-          "description": "[Output Only] The current action that the managed instance group has\nscheduled for the instance. Possible values:\n   \n   - NONE The instance is running, and the managed\n   instance group does not have any scheduled actions for this instance.\n   - CREATING The managed instance group is creating this\n   instance. If the group fails to create this instance, it will try again\n   until it is successful.\n   - CREATING_WITHOUT_RETRIES The managed instance group\n   is attempting to create this instance only once. If the group fails\n   to create this instance, it does not try again and the group'stargetSize value is decreased instead.\n   - RECREATING The managed instance group is recreating\n   this instance.\n   - DELETING The managed instance group is permanently\n   deleting this instance.\n   - ABANDONING The managed instance group is abandoning\n   this instance. The instance will be removed from the instance group\n   and from any target pools that are associated with this group.\n   - RESTARTING The managed instance group is restarting\n   the instance.\n   - REFRESHING The managed instance group is applying\n   configuration changes to the instance without stopping it. For example,\n   the group can update the target pool list for an instance without\n   stopping that instance.\n   - VERIFYING The managed instance group has created the\n   instance and it is in the process of being verified.",
+          "description": "Output only. [Output Only] The current action that the managed instance group has\nscheduled for the instance. Possible values:\n   \n   - NONE The instance is running, and the managed\n   instance group does not have any scheduled actions for this instance.\n   - CREATING The managed instance group is creating this\n   instance. If the group fails to create this instance, it will try again\n   until it is successful.\n   - CREATING_WITHOUT_RETRIES The managed instance group\n   is attempting to create this instance only once. If the group fails\n   to create this instance, it does not try again and the group'stargetSize value is decreased instead.\n   - RECREATING The managed instance group is recreating\n   this instance.\n   - DELETING The managed instance group is permanently\n   deleting this instance.\n   - ABANDONING The managed instance group is abandoning\n   this instance. The instance will be removed from the instance group\n   and from any target pools that are associated with this group.\n   - RESTARTING The managed instance group is restarting\n   the instance.\n   - REFRESHING The managed instance group is applying\n   configuration changes to the instance without stopping it. For example,\n   the group can update the target pool list for an instance without\n   stopping that instance.\n   - VERIFYING The managed instance group has created the\n   instance and it is in the process of being verified.",
           "enum": [
             "ABANDONING",
             "CREATING",
@@ -66458,26 +67992,30 @@
             "The managed instance group is suspending this instance.",
             "The managed instance group is verifying this already created instance.\nVerification happens every time the instance is (re)created or restarted\nand consists of:\n 1. Waiting until health check specified as part of this managed instance\n    group's autohealing policy reports HEALTHY.\n    Note: Applies only if autohealing policy has a health check specified\n 2. Waiting for addition verification steps performed as post-instance\n    creation (subject to future extensions)."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output only] The unique identifier for this resource. This field is empty\nwhen instance does not exist.",
+          "description": "Output only. [Output only] The unique identifier for this resource. This field is empty\nwhen instance does not exist.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "instance": {
-          "description": "[Output Only] The URL of the instance. The URL can exist even if the\ninstance has not yet been created.",
+          "description": "Output only. [Output Only] The URL of the instance. The URL can exist even if the\ninstance has not yet been created.",
+          "readOnly": true,
           "type": "string"
         },
         "instanceHealth": {
-          "description": "[Output Only] Health state of the instance per health-check.",
+          "description": "Output only. [Output Only] Health state of the instance per health-check.",
           "items": {
             "$ref": "ManagedInstanceInstanceHealth"
           },
+          "readOnly": true,
           "type": "array"
         },
         "instanceStatus": {
-          "description": "[Output Only] The status of the instance. This field is empty when\nthe instance does not exist.",
+          "description": "Output only. [Output Only] The status of the instance. This field is empty when\nthe instance does not exist.",
           "enum": [
             "DEPROVISIONING",
             "PENDING",
@@ -66504,31 +68042,38 @@
             "The instance is suspending.",
             "The instance has stopped (either by explicit action or underlying\nfailure)."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "lastAttempt": {
           "$ref": "ManagedInstanceLastAttempt",
-          "description": "[Output Only] Information about the last attempt to create or delete\nthe instance."
+          "description": "Output only. [Output Only] Information about the last attempt to create or delete\nthe instance.",
+          "readOnly": true
         },
         "name": {
-          "description": "[Output Only] The name of the instance. The name always exists even if the\ninstance has not yet been created.",
+          "description": "Output only. [Output Only] The name of the instance. The name always exists even if the\ninstance has not yet been created.",
+          "readOnly": true,
           "type": "string"
         },
         "preservedStateFromConfig": {
           "$ref": "PreservedState",
-          "description": "[Output Only] Preserved state applied from per-instance config\nfor this instance."
+          "description": "Output only. [Output Only] Preserved state applied from per-instance config\nfor this instance.",
+          "readOnly": true
         },
         "preservedStateFromPolicy": {
           "$ref": "PreservedState",
-          "description": "[Output Only] Preserved state generated based on stateful policy\nfor this instance."
+          "description": "Output only. [Output Only] Preserved state generated based on stateful policy\nfor this instance.",
+          "readOnly": true
         },
         "propertiesFromFlexibilityPolicy": {
           "$ref": "ManagedInstancePropertiesFromFlexibilityPolicy",
-          "description": "[Output Only] Instance properties selected for this instance resulting from\nInstanceFlexibilityPolicy."
+          "description": "Output only. [Output Only] Instance properties selected for this instance resulting from\nInstanceFlexibilityPolicy.",
+          "readOnly": true
         },
         "version": {
           "$ref": "ManagedInstanceVersion",
-          "description": "[Output Only] Intended version of this instance."
+          "description": "Output only. [Output Only] Intended version of this instance.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -66537,7 +68082,7 @@
       "id": "ManagedInstanceInstanceHealth",
       "properties": {
         "detailedHealthState": {
-          "description": "[Output Only] The current detailed instance health state.",
+          "description": "Output only. [Output Only] The current detailed instance health state.",
           "enum": [
             "DRAINING",
             "HEALTHY",
@@ -66552,10 +68097,12 @@
             "The instance is reachable, but does not conform to the requirements\ndefined by the health check.",
             "The health checking system is aware of the instance but its health is\nnot known at the moment."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "healthCheck": {
-          "description": "[Output Only] The URL for the health check that verifies whether the\ninstance is healthy.",
+          "description": "Output only. [Output Only] The URL for the health check that verifies whether the\ninstance is healthy.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66565,7 +68112,7 @@
       "id": "ManagedInstanceLastAttempt",
       "properties": {
         "errors": {
-          "description": "[Output Only] Encountered errors during the last attempt to create or\ndelete the instance.",
+          "description": "Output only. [Output Only] Encountered errors during the last attempt to create or\ndelete the instance.",
           "properties": {
             "errors": {
               "description": "[Output Only] The array of errors encountered while processing this\noperation.",
@@ -66610,6 +68157,7 @@
               "type": "array"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -66619,7 +68167,8 @@
       "id": "ManagedInstancePropertiesFromFlexibilityPolicy",
       "properties": {
         "machineType": {
-          "description": "The machine type to be used for this instance.",
+          "description": "Output only. The machine type to be used for this instance.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66629,11 +68178,13 @@
       "id": "ManagedInstanceVersion",
       "properties": {
         "instanceTemplate": {
-          "description": "[Output Only] The intended template of the instance. This field is empty\nwhen current_action is one of { DELETING, ABANDONING }.",
+          "description": "Output only. [Output Only] The intended template of the instance. This field is empty\nwhen current_action is one of { DELETING, ABANDONING }.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] Name of the version.",
+          "description": "Output only. [Output Only] Name of the version.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66681,7 +68232,8 @@
         },
         "kind": {
           "default": "compute#metadata",
-          "description": "[Output Only] Type of the resource. Always compute#metadata\nfor metadata.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#metadata\nfor metadata.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66751,14 +68303,16 @@
       "id": "NatIpInfo",
       "properties": {
         "natIpInfoMappings": {
-          "description": "A list of all NAT IPs assigned to this NAT config.",
+          "description": "Output only. A list of all NAT IPs assigned to this NAT config.",
           "items": {
             "$ref": "NatIpInfoNatIpInfoMapping"
           },
+          "readOnly": true,
           "type": "array"
         },
         "natName": {
-          "description": "Name of the NAT config which the NAT IP belongs to.",
+          "description": "Output only. Name of the NAT config which the NAT IP belongs to.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66769,7 +68323,7 @@
       "id": "NatIpInfoNatIpInfoMapping",
       "properties": {
         "mode": {
-          "description": "Specifies whether NAT IP is auto or manual.",
+          "description": "Output only. Specifies whether NAT IP is auto or manual.",
           "enum": [
             "AUTO",
             "MANUAL"
@@ -66778,14 +68332,16 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "natIp": {
-          "description": "NAT IP address. For example: 203.0.113.11.",
+          "description": "Output only. NAT IP address. For example: 203.0.113.11.",
+          "readOnly": true,
           "type": "string"
         },
         "usage": {
-          "description": "Specifies whether NAT IP is currently serving at least one endpoint or\nnot.",
+          "description": "Output only. Specifies whether NAT IP is currently serving at least one endpoint or\nnot.",
           "enum": [
             "IN_USE",
             "UNUSED"
@@ -66794,6 +68350,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -66827,7 +68384,8 @@
           "type": "boolean"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -66839,7 +68397,8 @@
           "type": "boolean"
         },
         "firewallPolicy": {
-          "description": "[Output Only] URL of the firewall policy the network is associated with.",
+          "description": "Output only. [Output Only] URL of the firewall policy the network is associated with.",
+          "readOnly": true,
           "type": "string"
         },
         "gatewayIPv4": {
@@ -66848,8 +68407,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "internalIpv6Range": {
@@ -66858,7 +68418,8 @@
         },
         "kind": {
           "default": "compute#network",
-          "description": "[Output Only] Type of the resource. Always compute#network for\nnetworks.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#network for\nnetworks.",
+          "readOnly": true,
           "type": "string"
         },
         "mtu": {
@@ -66897,10 +68458,11 @@
           "description": "Input only. [Input Only] Additional params passed with the request, but not persisted\nas part of resource payload."
         },
         "peerings": {
-          "description": "[Output Only] A list of network peerings for the resource.",
+          "description": "Output only. [Output Only] A list of network peerings for the resource.",
           "items": {
             "$ref": "NetworkPeering"
           },
+          "readOnly": true,
           "type": "array"
         },
         "routingConfig": {
@@ -66912,7 +68474,8 @@
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "subnetworks": {
@@ -66930,10 +68493,11 @@
       "id": "NetworkAttachment",
       "properties": {
         "connectionEndpoints": {
-          "description": "[Output Only] An array of connections for all the producers connected\nto this network attachment.",
+          "description": "Output only. [Output Only] An array of connections for all the producers connected\nto this network attachment.",
           "items": {
             "$ref": "NetworkAttachmentConnectedEndpoint"
           },
+          "readOnly": true,
           "type": "array"
         },
         "connectionPreference": {
@@ -66950,7 +68514,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -66963,13 +68528,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#networkAttachment",
-          "description": "[Output Only] Type of the resource.",
+          "description": "Output only. [Output Only] Type of the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -66983,7 +68550,8 @@
           "type": "string"
         },
         "network": {
-          "description": "[Output Only] The URL of the network which the Network Attachment\nbelongs to. Practically it is inferred by fetching the network of the first\nsubnetwork associated. Because it is required that all the subnetworks must\nbe from the same network, it is assured that the Network Attachment belongs\nto the same network as all the subnetworks.",
+          "description": "Output only. [Output Only] The URL of the network which the Network Attachment\nbelongs to. Practically it is inferred by fetching the network of the first\nsubnetwork associated. Because it is required that all the subnetworks must\nbe from the same network, it is assured that the Network Attachment belongs\nto the same network as all the subnetworks.",
+          "readOnly": true,
           "type": "string"
         },
         "producerAcceptLists": {
@@ -67001,15 +68569,18 @@
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the network attachment resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "description": "Output only. [Output Only] URL of the region where the network attachment resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource's resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource's resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "subnetworks": {
@@ -67040,6 +68611,7 @@
         },
         "kind": {
           "default": "compute#networkAttachmentAggregatedList",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -67225,7 +68797,8 @@
           "type": "string"
         },
         "subnetworkCidrRange": {
-          "description": "[Output Only] The CIDR range of the subnet from which the IPv4 internal\nIP was allocated from.",
+          "description": "Output only. [Output Only] The CIDR range of the subnet from which the IPv4 internal\nIP was allocated from.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -67247,6 +68820,7 @@
         },
         "kind": {
           "default": "compute#networkAttachmentList",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -67526,7 +69100,8 @@
       "id": "NetworkEdgeSecurityService",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -67539,13 +69114,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#networkEdgeSecurityService",
-          "description": "[Output only] Type of the resource. Alwayscompute#networkEdgeSecurityService for\nNetworkEdgeSecurityServices",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#networkEdgeSecurityService for\nNetworkEdgeSecurityServices",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -67554,7 +69131,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the resource resides. You must\nspecify this field as part of the HTTP request URL. It is not settable as a\nfield in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the resource resides. You must\nspecify this field as part of the HTTP request URL. It is not settable as a\nfield in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "securityPolicy": {
@@ -67562,11 +69140,13 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -67592,7 +69172,8 @@
         },
         "kind": {
           "default": "compute#networkEdgeSecurityServiceAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#networkEdgeSecurityServiceAggregatedList for lists of\nNetwork Edge Security Services.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#networkEdgeSecurityServiceAggregatedList for lists of\nNetwork Edge Security Services.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -67600,14 +69181,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -67938,7 +69521,8 @@
           "description": "Optional. Only valid when networkEndpointType isSERVERLESS. Only one of cloudRun,appEngine or cloudFunction may be set."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "defaultPort": {
@@ -67951,13 +69535,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#networkEndpointGroup",
-          "description": "[Output Only] Type of the resource. Alwayscompute#networkEndpointGroup for network endpoint group.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#networkEndpointGroup for network endpoint group.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -68001,16 +69587,19 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] The URL of theregion\nwhere the network endpoint group is located.",
+          "description": "Output only. [Output Only] The URL of theregion\nwhere the network endpoint group is located.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "size": {
-          "description": "[Output only] Number of network endpoints in the network endpoint group.",
+          "description": "Output only. [Output only] Number of network endpoints in the network endpoint group.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "subnetwork": {
@@ -68018,7 +69607,8 @@
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] The URL of thezone\nwhere the network endpoint group is located.",
+          "description": "Output only. [Output Only] The URL of thezone\nwhere the network endpoint group is located.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -68041,7 +69631,8 @@
         },
         "kind": {
           "default": "compute#networkEndpointGroupAggregatedList",
-          "description": "[Output Only] The resource type, which is alwayscompute#networkEndpointGroupAggregatedList for aggregated\nlists of network endpoint groups.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#networkEndpointGroupAggregatedList for aggregated\nlists of network endpoint groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -68049,14 +69640,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -68255,7 +69848,8 @@
         },
         "kind": {
           "default": "compute#networkEndpointGroupList",
-          "description": "[Output Only] The resource type, which is alwayscompute#networkEndpointGroupList for network endpoint group\nlists.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#networkEndpointGroupList for network endpoint group\nlists.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -68263,7 +69857,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -68398,7 +69993,8 @@
       "id": "NetworkEndpointGroupPscData",
       "properties": {
         "consumerPscAddress": {
-          "description": "[Output Only] Address allocated from given subnetwork for PSC. This IP\naddress acts as a VIP for a PSC NEG, allowing it to act as an endpoint in\nL7 PSC-XLB.",
+          "description": "Output only. [Output Only] Address allocated from given subnetwork for PSC. This IP\naddress acts as a VIP for a PSC NEG, allowing it to act as an endpoint in\nL7 PSC-XLB.",
+          "readOnly": true,
           "type": "string"
         },
         "producerPort": {
@@ -68407,12 +70003,13 @@
           "type": "integer"
         },
         "pscConnectionId": {
-          "description": "[Output Only] The PSC connection id of the PSC Network Endpoint Group\nConsumer.",
+          "description": "Output only. [Output Only] The PSC connection id of the PSC Network Endpoint Group\nConsumer.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "pscConnectionStatus": {
-          "description": "[Output Only] The connection status of the PSC Forwarding Rule.",
+          "description": "Output only. [Output Only] The connection status of the PSC Forwarding Rule.",
           "enum": [
             "ACCEPTED",
             "CLOSED",
@@ -68429,6 +70026,7 @@
             "The connection has been rejected by the producer.",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -68494,7 +70092,8 @@
         },
         "kind": {
           "default": "compute#networkEndpointGroupsListNetworkEndpoints",
-          "description": "[Output Only] The resource type, which is alwayscompute#networkEndpointGroupsListNetworkEndpoints for the list\nof network endpoints in the specified network endpoint group.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute#networkEndpointGroupsListNetworkEndpoints for the list\nof network endpoints in the specified network endpoint group.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -68632,14 +70231,15 @@
       "id": "NetworkEndpointGroupsScopedList",
       "properties": {
         "networkEndpointGroups": {
-          "description": "[Output Only] The list ofnetwork\nendpoint groups that are contained in this scope.",
+          "description": "Output only. [Output Only] The list ofnetwork\nendpoint groups that are contained in this scope.",
           "items": {
             "$ref": "NetworkEndpointGroup"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] An informational warning that replaces the list of network\nendpoint groups when the list is empty.",
+          "description": "Output only. [Output Only] An informational warning that replaces the list of network\nendpoint groups when the list is empty.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -68760,6 +70360,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -68769,15 +70370,17 @@
       "id": "NetworkEndpointWithHealthStatus",
       "properties": {
         "healths": {
-          "description": "[Output only] The health status of network endpoint.\n\nOptional. Displayed only if the network endpoint has centralized health\nchecking configured.",
+          "description": "Output only. [Output only] The health status of network endpoint.\n\nOptional. Displayed only if the network endpoint has centralized health\nchecking configured.",
           "items": {
             "$ref": "HealthStatusForNetworkEndpoint"
           },
+          "readOnly": true,
           "type": "array"
         },
         "networkEndpoint": {
           "$ref": "NetworkEndpoint",
-          "description": "[Output only] The network endpoint."
+          "description": "Output only. [Output only] The network endpoint.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -68799,7 +70402,8 @@
         },
         "kind": {
           "default": "compute#networkFirewallPolicyAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#networkFirewallPoliciesAggregatedList for lists of\nnetwork firewall policies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#networkFirewallPoliciesAggregatedList for lists of\nnetwork firewall policies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -68807,14 +70411,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -68992,7 +70598,7 @@
           "type": "array"
         },
         "ipv6AccessType": {
-          "description": "[Output Only] One of EXTERNAL, INTERNAL to indicate whether the IP can be\naccessed from the Internet. This field is always inherited from its\nsubnetwork.\n\nValid only if stackType is IPV4_IPV6.",
+          "description": "Output only. [Output Only] One of EXTERNAL, INTERNAL to indicate whether the IP can be\naccessed from the Internet. This field is always inherited from its\nsubnetwork.\n\nValid only if stackType is IPV4_IPV6.",
           "enum": [
             "EXTERNAL",
             "INTERNAL"
@@ -69001,6 +70607,7 @@
             "This network interface can have external IPv6.",
             "This network interface can have internal IPv6."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "ipv6Address": {
@@ -69009,7 +70616,8 @@
         },
         "kind": {
           "default": "compute#networkInterface",
-          "description": "[Output Only] Type of the resource. Alwayscompute#networkInterface for network interfaces.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#networkInterface for network interfaces.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -69100,7 +70708,8 @@
         },
         "kind": {
           "default": "compute#networkList",
-          "description": "[Output Only] Type of resource. Always compute#networkList for\nlists of networks.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#networkList for\nlists of networks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -69108,7 +70717,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -69262,7 +70872,8 @@
         },
         "connectionStatus": {
           "$ref": "NetworkPeeringConnectionStatus",
-          "description": "[Output Only] The effective state of the peering connection\nas a whole."
+          "description": "Output only. [Output Only] The effective state of the peering connection\nas a whole.",
+          "readOnly": true
         },
         "exchangeSubnetRoutes": {
           "description": "Indicates whether full mesh connectivity is created and managed\nautomatically between peered networks. Currently this field should always\nbe true since Google Compute Engine will automatically create and manage\nsubnetwork routes between two networks when peering state isACTIVE.",
@@ -69293,8 +70904,9 @@
           "type": "string"
         },
         "peerMtu": {
-          "description": "[Output Only] Maximum Transmission Unit in bytes of the peer network.",
+          "description": "Output only. [Output Only] Maximum Transmission Unit in bytes of the peer network.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "stackType": {
@@ -69310,7 +70922,7 @@
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] State for the peering, either `ACTIVE` or `INACTIVE`. The\npeering is `ACTIVE` when there's a matching configuration in the peer\nnetwork.",
+          "description": "Output only. [Output Only] State for the peering, either `ACTIVE` or `INACTIVE`. The\npeering is `ACTIVE` when there's a matching configuration in the peer\nnetwork.",
           "enum": [
             "ACTIVE",
             "INACTIVE"
@@ -69319,10 +70931,12 @@
             "Matching configuration exists on the peer.",
             "There is no matching configuration on the peer, including the case when\npeer does not exist."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "stateDetails": {
-          "description": "[Output Only] Details about the current state of the peering.",
+          "description": "Output only. [Output Only] Details about the current state of the peering.",
+          "readOnly": true,
           "type": "string"
         },
         "updateStrategy": {
@@ -69466,46 +71080,56 @@
       "id": "NetworkProfile",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
-          "description": "[Output Only] An optional description of this resource.",
+          "description": "Output only. [Output Only] An optional description of this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "features": {
           "$ref": "NetworkProfileNetworkFeatures",
-          "description": "[Output Only] Features supported by the network."
+          "description": "Output only. [Output Only] Features supported by the network.",
+          "readOnly": true
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#networkProfile",
-          "description": "[Output Only] Type of the resource. Alwayscompute#networkProfile for network profiles.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#networkProfile for network profiles.",
+          "readOnly": true,
           "type": "string"
         },
         "location": {
           "$ref": "NetworkProfileLocation",
-          "description": "[Output Only] Location to which the network is restricted."
+          "description": "Output only. [Output Only] Location to which the network is restricted.",
+          "readOnly": true
         },
         "name": {
-          "description": "[Output Only] Name of the resource.",
+          "description": "Output only. [Output Only] Name of the resource.",
           "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+          "readOnly": true,
           "type": "string"
         },
         "profileType": {
           "$ref": "NetworkProfileProfileType",
-          "description": "[Output Only] Type of the network profile."
+          "description": "Output only. [Output Only] Type of the network profile.",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -69561,6 +71185,18 @@
           },
           "type": "array"
         },
+        "allowAddressCreation": {
+          "description": "Specifies whether address creation is allowed.",
+          "enum": [
+            "ADDRESS_CREATION_ALLOWED",
+            "ADDRESS_CREATION_BLOCKED"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "allowAliasIpRanges": {
           "description": "Specifies whether alias IP ranges (and secondary address ranges) are\nallowed.",
           "enum": [
@@ -69645,6 +71281,18 @@
           ],
           "type": "string"
         },
+        "allowFirewallPolicy": {
+          "description": "Specifies whether firewall policy can be attached to the network.",
+          "enum": [
+            "FIREWALL_POLICY_ALLOWED",
+            "FIREWALL_POLICY_BLOCKED"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "allowInterconnect": {
           "description": "Specifies whether Cloud Interconnect creation is allowed.",
           "enum": [
@@ -69693,6 +71341,18 @@
           ],
           "type": "string"
         },
+        "allowMultiNicInSameSubnetwork": {
+          "description": "Specifies whether multi-nic in the same subnetwork is allowed.",
+          "enum": [
+            "MULTI_NIC_IN_SAME_SUBNETWORK_ALLOWED",
+            "MULTI_NIC_IN_SAME_SUBNETWORK_BLOCKED"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "allowMulticast": {
           "description": "Specifies whether multicast is allowed.",
           "enum": [
@@ -69801,6 +71461,30 @@
           ],
           "type": "string"
         },
+        "allowSubnetworkCreation": {
+          "description": "Specifies whether subnetwork creation is allowed.",
+          "enum": [
+            "SUBNETWORK_CREATION_ALLOWED",
+            "SUBNETWORK_CREATION_BLOCKED"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
+        "allowVpcFirewallRules": {
+          "description": "Specifies whether VPC firewall rules can be created under the network.",
+          "enum": [
+            "VPC_FIREWALL_RULES_ALLOWED",
+            "VPC_FIREWALL_RULES_BLOCKED"
+          ],
+          "enumDescriptions": [
+            "",
+            ""
+          ],
+          "type": "string"
+        },
         "allowVpcPeering": {
           "description": "Specifies whether VPC peering is allowed.",
           "enum": [
@@ -69825,6 +71509,20 @@
           ],
           "type": "string"
         },
+        "firewallPolicyTypes": {
+          "items": {
+            "enum": [
+              "RDMA_ROCE_POLICY",
+              "VPC_POLICY"
+            ],
+            "enumDescriptions": [
+              "",
+              ""
+            ],
+            "type": "string"
+          },
+          "type": "array"
+        },
         "interfaceTypes": {
           "description": "If set, limits the interface types that the network supports. If\nempty, all interface types are supported.",
           "items": {
@@ -69860,6 +71558,17 @@
           ],
           "type": "string"
         },
+        "predefinedNetworkInternalIpv6Range": {
+          "description": "Specifies a predefined internal IPv6 range for the network.",
+          "type": "string"
+        },
+        "predefinedSubnetworkRanges": {
+          "description": "Predefined subnetwork ranges for the network.",
+          "items": {
+            "$ref": "NetworkProfileNetworkFeaturesPredefinedSubnetworkRange"
+          },
+          "type": "array"
+        },
         "subnetPurposes": {
           "description": "Specifies which subnetwork purposes are supported.",
           "items": {
@@ -69893,7 +71602,7 @@
           "type": "array"
         },
         "subnetworkPurposes": {
-          "description": "Specifies which subnetwork purposes are supported.",
+          "description": "Output only. Specifies which subnetwork purposes are supported.",
           "items": {
             "enum": [
               "GLOBAL_MANAGED_PROXY",
@@ -69917,10 +71626,11 @@
             ],
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "subnetworkStackTypes": {
-          "description": "Specifies which subnetwork stack types are supported.",
+          "description": "Output only. Specifies which subnetwork stack types are supported.",
           "items": {
             "enum": [
               "IPV4_IPV6",
@@ -69934,6 +71644,7 @@
             ],
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "unicast": {
@@ -69951,6 +71662,20 @@
       },
       "type": "object"
     },
+    "NetworkProfileNetworkFeaturesPredefinedSubnetworkRange": {
+      "id": "NetworkProfileNetworkFeaturesPredefinedSubnetworkRange",
+      "properties": {
+        "ipv6Range": {
+          "description": "The IPv6 range of the predefined subnetwork.",
+          "type": "string"
+        },
+        "namePrefix": {
+          "description": "The naming prefix of the predefined subnetwork.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "NetworkProfileProfileType": {
       "id": "NetworkProfileProfileType",
       "properties": {
@@ -69970,11 +71695,13 @@
         "rdmaSubtype": {
           "enum": [
             "FALCON",
-            "ROCE"
+            "ROCE",
+            "ROCE_METAL"
           ],
           "enumDescriptions": [
             "RDMA over Falcon.",
-            "RDMA over Converged Ethernet (RoCE)."
+            "RDMA over Converged Ethernet (RoCE).",
+            "RDMA over Converged Ethernet (RoCE) for Bare Metal."
           ],
           "type": "string"
         },
@@ -70021,7 +71748,8 @@
         },
         "kind": {
           "default": "compute#networkProfileList",
-          "description": "[Output Only] Type of resource. Alwayscompute#networkProfileList for network profiles.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#networkProfileList for network profiles.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -70029,14 +71757,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -70199,11 +71929,12 @@
           "type": "string"
         },
         "effectiveBgpAlwaysCompareMed": {
-          "description": "[Output Only] Effective value of the bgp_always_compare_med\nfield.",
+          "description": "Output only. [Output Only] Effective value of the bgp_always_compare_med\nfield.",
+          "readOnly": true,
           "type": "boolean"
         },
         "effectiveBgpInterRegionCost": {
-          "description": "[Output Only] Effective value of the bgp_inter_region_cost\nfield.",
+          "description": "Output only. [Output Only] Effective value of the bgp_inter_region_cost\nfield.",
           "enum": [
             "ADD_COST_TO_MED",
             "DEFAULT"
@@ -70212,6 +71943,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "routingMode": {
@@ -70281,23 +72013,27 @@
       "properties": {
         "displayName": {
           "deprecated": true,
-          "description": "[Output Only] Deprecated, please use short name instead. The display name\nof the firewall policy.",
+          "description": "Output only. [Output Only] Deprecated, please use short name instead. The display name\nof the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of the firewall policy.",
+          "description": "Output only. [Output Only] The name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "packetMirroringRules": {
-          "description": "[Output Only] The packet mirroring rules that apply to the network.",
+          "description": "Output only. [Output Only] The packet mirroring rules that apply to the network.",
           "items": {
             "$ref": "FirewallPolicyRule"
           },
+          "readOnly": true,
           "type": "array"
         },
         "priority": {
-          "description": "[Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
+          "description": "Output only. [Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "rules": {
@@ -70308,11 +72044,12 @@
           "type": "array"
         },
         "shortName": {
-          "description": "[Output Only] The short name of the firewall policy.",
+          "description": "Output only. [Output Only] The short name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "type": {
-          "description": "[Output Only] The type of the firewall policy.",
+          "description": "Output only. [Output Only] The type of the firewall policy.",
           "enum": [
             "HIERARCHY",
             "NETWORK",
@@ -70325,6 +72062,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -70368,7 +72106,8 @@
           "description": "Specifies how autoscaling should behave."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -70380,13 +72119,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#nodeGroup",
-          "description": "[Output Only] The type of the resource. Alwayscompute#nodeGroup for node group.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#nodeGroup for node group.",
+          "readOnly": true,
           "type": "string"
         },
         "locationHint": {
@@ -70433,7 +72174,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "shareSettings": {
@@ -70441,8 +72183,9 @@
           "description": "Share-settings for the node group"
         },
         "size": {
-          "description": "[Output Only] The total number of nodes in the node group.",
+          "description": "Output only. [Output Only] The total number of nodes in the node group.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "status": {
@@ -70458,10 +72201,12 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] The name of the zone where the node group resides,\nsuch as us-central1-a.",
+          "description": "Output only. [Output Only] The name of the zone where the node group resides,\nsuch as us-central1-a.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -70484,7 +72229,8 @@
         },
         "kind": {
           "default": "compute#nodeGroupAggregatedList",
-          "description": "[Output Only] Type of resource.Alwayscompute#nodeGroupAggregatedList for aggregated lists of node\ngroups.",
+          "description": "Output only. [Output Only] Type of resource.Alwayscompute#nodeGroupAggregatedList for aggregated lists of node\ngroups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -70492,14 +72238,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -70678,7 +72426,8 @@
         },
         "kind": {
           "default": "compute#nodeGroupList",
-          "description": "[Output Only] Type of resource.Always compute#nodeGroupList\nfor lists of node groups.",
+          "description": "Output only. [Output Only] Type of resource.Always compute#nodeGroupList\nfor lists of node groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -70686,7 +72435,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -70822,7 +72572,8 @@
       "properties": {
         "maintenanceDuration": {
           "$ref": "Duration",
-          "description": "[Output only] A predetermined duration for the window, automatically\nchosen to be the smallest possible in the given scenario."
+          "description": "Output only. [Output only] A predetermined duration for the window, automatically\nchosen to be the smallest possible in the given scenario.",
+          "readOnly": true
         },
         "startTime": {
           "description": "Start time of the window. This must be in UTC format that resolves to one\nof 00:00, 04:00, 08:00,12:00, 16:00, or 20:00. For\nexample, both 13:00-5 and 08:00 are valid.",
@@ -70843,7 +72594,8 @@
         },
         "consumedResources": {
           "$ref": "InstanceConsumptionInfo",
-          "description": "Node resources that are reserved by all instances."
+          "description": "Output only. Node resources that are reserved by all instances.",
+          "readOnly": true
         },
         "cpuOvercommitType": {
           "description": "CPU overcommit.",
@@ -70867,10 +72619,11 @@
           "type": "array"
         },
         "instanceConsumptionData": {
-          "description": "Instance data that shows consumed resources on the node.",
+          "description": "Output only. Instance data that shows consumed resources on the node.",
           "items": {
             "$ref": "InstanceConsumptionData"
           },
+          "readOnly": true,
           "type": "array"
         },
         "instances": {
@@ -70889,7 +72642,8 @@
           "type": "string"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "serverBinding": {
@@ -70919,11 +72673,13 @@
         },
         "totalResources": {
           "$ref": "InstanceConsumptionInfo",
-          "description": "Total amount of available resources on the node."
+          "description": "Output only. Total amount of available resources on the node.",
+          "readOnly": true
         },
         "upcomingMaintenance": {
           "$ref": "UpcomingMaintenance",
-          "description": "[Output Only] The information about an upcoming maintenance event."
+          "description": "Output only. [Output Only] The information about an upcoming maintenance event.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -70956,7 +72712,8 @@
       "id": "NodeGroupsListNodes",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -70968,19 +72725,22 @@
         },
         "kind": {
           "default": "compute#nodeGroupsListNodes",
-          "description": "[Output Only] The resource type, which is alwayscompute.nodeGroupsListNodes for the list of nodes in the\nspecified node group.",
+          "description": "Output only. [Output Only] The resource type, which is alwayscompute.nodeGroupsListNodes for the list of nodes in the\nspecified node group.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -71101,6 +72861,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -71308,7 +73069,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -71322,13 +73084,15 @@
           "type": "array"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#nodeTemplate",
-          "description": "[Output Only] The type of the resource. Alwayscompute#nodeTemplate for node templates.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#nodeTemplate for node templates.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -71351,11 +73115,13 @@
           "description": "Do not use. Instead, use the node_type property."
         },
         "region": {
-          "description": "[Output Only] The name of the region where the node template resides,\nsuch as us-central1.",
+          "description": "Output only. [Output Only] The name of the region where the node template resides,\nsuch as us-central1.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "serverBinding": {
@@ -71363,7 +73129,7 @@
           "description": "Sets the binding properties for the physical server. Valid values include:\n   \n   - *[Default]* RESTART_NODE_ON_ANY_SERVER:\n   Restarts VMs on any available\n   physical server\n   - RESTART_NODE_ON_MINIMAL_SERVER: Restarts VMs on the same\n   physical server whenever possible\n\n\n\nSee Sole-tenant\nnode options for more information."
         },
         "status": {
-          "description": "[Output Only] The status of the node template. One of the following values:CREATING, READY, and DELETING.",
+          "description": "Output only. [Output Only] The status of the node template. One of the following values:CREATING, READY, and DELETING.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -71376,10 +73142,12 @@
             "Invalid status.",
             "The node template is ready."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "statusMessage": {
-          "description": "[Output Only] An optional, human-readable explanation of the status.",
+          "description": "Output only. [Output Only] An optional, human-readable explanation of the status.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -71402,7 +73170,8 @@
         },
         "kind": {
           "default": "compute#nodeTemplateAggregatedList",
-          "description": "[Output Only] Type of resource.Alwayscompute#nodeTemplateAggregatedList for aggregated lists of\nnode templates.",
+          "description": "Output only. [Output Only] Type of resource.Alwayscompute#nodeTemplateAggregatedList for aggregated lists of\nnode templates.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -71410,14 +73179,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -71564,7 +73335,8 @@
         },
         "kind": {
           "default": "compute#nodeTemplateList",
-          "description": "[Output Only] Type of resource.Always compute#nodeTemplateList\nfor lists of node templates.",
+          "description": "Output only. [Output Only] Type of resource.Always compute#nodeTemplateList\nfor lists of node templates.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -71572,7 +73344,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -71886,7 +73659,8 @@
         },
         "kind": {
           "default": "compute#nodeType",
-          "description": "[Output Only] The type of the resource. Alwayscompute#nodeType for node types.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#nodeType for node types.",
+          "readOnly": true,
           "type": "string"
         },
         "localSsdGb": {
@@ -71895,8 +73669,9 @@
           "type": "integer"
         },
         "maxVms": {
-          "description": "[Output Only] Maximum number of VMs that can be created for this node type.",
+          "description": "Output only. [Output Only] Maximum number of VMs that can be created for this node type.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "memoryMb": {
@@ -71910,11 +73685,13 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] The name of the zone where the node type resides,\nsuch as us-central1-a.",
+          "description": "Output only. [Output Only] The name of the zone where the node type resides,\nsuch as us-central1-a.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -71937,7 +73714,8 @@
         },
         "kind": {
           "default": "compute#nodeTypeAggregatedList",
-          "description": "[Output Only] Type of resource.Alwayscompute#nodeTypeAggregatedList for aggregated lists of node\ntypes.",
+          "description": "Output only. [Output Only] Type of resource.Alwayscompute#nodeTypeAggregatedList for aggregated lists of node\ntypes.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -71945,14 +73723,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -72099,7 +73879,8 @@
         },
         "kind": {
           "default": "compute#nodeTypeList",
-          "description": "[Output Only] Type of resource.Always compute#nodeTypeList for\nlists of node types.",
+          "description": "Output only. [Output Only] Type of resource.Always compute#nodeTypeList for\nlists of node types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -72107,7 +73888,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -72379,7 +74161,8 @@
       "id": "NotificationEndpoint",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -72391,13 +74174,15 @@
           "description": "Settings of the gRPC notification endpoint including the endpoint URL and\nthe retry duration."
         },
         "id": {
-          "description": "[Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] A unique identifier for this resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#notificationEndpoint",
-          "description": "[Output Only] Type of the resource. Alwayscompute#notificationEndpoint for notification endpoints.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#notificationEndpoint for notification endpoints.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -72406,11 +74191,13 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the notification endpoint resides.\nThis field applies only to the regional resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "description": "Output only. [Output Only] URL of the region where the notification endpoint resides.\nThis field applies only to the regional resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -72460,7 +74247,8 @@
         },
         "kind": {
           "default": "compute#notificationEndpointList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#notificationEndpoint for notification endpoints.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#notificationEndpoint for notification endpoints.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -72689,7 +74477,8 @@
         },
         "kind": {
           "default": "compute#operation",
-          "description": "[Output Only] Type of the resource. Always `compute#operation` for\nOperation resources.",
+          "description": "Output only. [Output Only] Type of the resource. Always `compute#operation` for\nOperation resources.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -72697,7 +74486,8 @@
           "type": "string"
         },
         "operationGroupId": {
-          "description": "[Output Only] An ID that represents a group of operations, such as when a\ngroup of operations results from a `bulkInsert` API request.",
+          "description": "Output only. [Output Only] An ID that represents a group of operations, such as when a\ngroup of operations results from a `bulkInsert` API request.",
+          "readOnly": true,
           "type": "string"
         },
         "operationType": {
@@ -72719,7 +74509,8 @@
         },
         "setCommonInstanceMetadataOperationMetadata": {
           "$ref": "SetCommonInstanceMetadataOperationMetadata",
-          "description": "[Output Only] If the operation is for projects.setCommonInstanceMetadata,\nthis field will contain information on all underlying zonal actions and\ntheir state."
+          "description": "Output only. [Output Only] If the operation is for projects.setCommonInstanceMetadata,\nthis field will contain information on all underlying zonal actions and\ntheir state.",
+          "readOnly": true
         },
         "startTime": {
           "description": "[Output Only] The time that this operation was started by the server.\nThis value is inRFC3339\ntext format.",
@@ -72907,7 +74698,8 @@
         },
         "kind": {
           "default": "compute#operationAggregatedList",
-          "description": "[Output Only] Type of resource. Always `compute#operationAggregatedList`\nfor aggregated lists of operations.",
+          "description": "Output only. [Output Only] Type of resource. Always `compute#operationAggregatedList`\nfor aggregated lists of operations.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -72919,10 +74711,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -73069,7 +74862,8 @@
         },
         "kind": {
           "default": "compute#operationList",
-          "description": "[Output Only] Type of resource. Always `compute#operations` for Operations\nresource.",
+          "description": "Output only. [Output Only] Type of resource. Always `compute#operations` for Operations\nresource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -73356,7 +75150,8 @@
         },
         "kind": {
           "default": "compute#organizationSecurityPoliciesListAssociationsResponse",
-          "description": "[Output Only] Type of securityPolicy associations. Alwayscompute#organizationSecurityPoliciesListAssociations for lists\nof securityPolicy associations.",
+          "description": "Output only. [Output Only] Type of securityPolicy associations. Alwayscompute#organizationSecurityPoliciesListAssociations for lists\nof securityPolicy associations.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -73490,7 +75285,8 @@
           "description": "The Forwarding Rule resource of typeloadBalancingScheme=INTERNAL that will be used as collector\nfor mirrored traffic.\nThe specified forwarding rule must have isMirroringCollector\nset to true."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -73514,13 +75310,15 @@
           "description": "Filter for mirrored traffic. If unspecified, all IPv4 traffic is mirrored."
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#packetMirroring",
-          "description": "[Output Only] Type of the resource. Alwayscompute#packetMirroring for packet mirrorings.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#packetMirroring for packet mirrorings.",
+          "readOnly": true,
           "type": "string"
         },
         "mirroredResources": {
@@ -73556,7 +75354,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -73580,7 +75379,8 @@
         },
         "kind": {
           "default": "compute#packetMirroringAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -73588,14 +75388,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -73763,7 +75565,8 @@
       "id": "PacketMirroringForwardingRuleInfo",
       "properties": {
         "canonicalUrl": {
-          "description": "[Output Only] Unique identifier for the forwarding rule; defined by the\nserver.",
+          "description": "Output only. [Output Only] Unique identifier for the forwarding rule; defined by the\nserver.",
+          "readOnly": true,
           "type": "string"
         },
         "url": {
@@ -73790,7 +75593,8 @@
         },
         "kind": {
           "default": "compute#packetMirroringList",
-          "description": "[Output Only] Type of resource. Always compute#packetMirroring\nfor packetMirrorings.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#packetMirroring\nfor packetMirrorings.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -73798,7 +75602,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -73959,7 +75764,8 @@
       "id": "PacketMirroringMirroredResourceInfoInstanceInfo",
       "properties": {
         "canonicalUrl": {
-          "description": "[Output Only] Unique identifier for the instance; defined by the\nserver.",
+          "description": "Output only. [Output Only] Unique identifier for the instance; defined by the\nserver.",
+          "readOnly": true,
           "type": "string"
         },
         "url": {
@@ -73973,7 +75779,8 @@
       "id": "PacketMirroringMirroredResourceInfoSubnetInfo",
       "properties": {
         "canonicalUrl": {
-          "description": "[Output Only] Unique identifier for the subnetwork; defined by the\nserver.",
+          "description": "Output only. [Output Only] Unique identifier for the subnetwork; defined by the\nserver.",
+          "readOnly": true,
           "type": "string"
         },
         "url": {
@@ -73987,7 +75794,8 @@
       "id": "PacketMirroringNetworkInfo",
       "properties": {
         "canonicalUrl": {
-          "description": "[Output Only] Unique identifier for the network; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the network; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "url": {
@@ -74167,7 +75975,7 @@
           "type": "string"
         },
         "pathRules": {
-          "description": "The list of path rules. Use this list instead of routeRules\nwhen routing based on simple path matching is all that's required. The\norder by which path rules are specified does not matter. Matches are always\ndone on the longest-path-first basis.\n\nFor example: a pathRule with a path /a/b/c/* will match\nbefore /a/b/* irrespective of the order in which those paths appear in this\nlist.\n\nWithin a given pathMatcher, only one ofpathRules or routeRules must be set.",
+          "description": "The list of path rules. Use this list instead of routeRules\nwhen routing based on simple path matching is all that's required. A path\nrule can only include a wildcard character (*) after a\nforward slash character (\"/\").\n\nThe order by which path rules are specified does not matter.\nMatches are always done on the longest-path-first basis.\n\nFor example: a pathRule with a path /a/b/c/* will match\nbefore /a/b/* irrespective of the order in which those paths appear in this\nlist.\n\nWithin a given pathMatcher, only one ofpathRules or routeRules must be set.",
           "items": {
             "$ref": "PathRule"
           },
@@ -74420,21 +76228,25 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
-          "description": "[Output Only] Description of the feature.",
+          "description": "Output only. [Output Only] Description of the feature.",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#previewFeature",
-          "description": "[Output only] The type of the feature. Always \"compute#previewFeature\" for\npreview features.",
+          "description": "Output only. [Output only] The type of the feature. Always \"compute#previewFeature\" for\npreview features.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -74446,12 +76258,14 @@
           "description": "Rollout operation of the feature."
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
           "$ref": "PreviewFeatureStatus",
-          "description": "[Output only] Status of the feature."
+          "description": "Output only. [Output only] Status of the feature.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -74478,14 +76292,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -74656,11 +76472,13 @@
       "id": "PreviewFeatureStatus",
       "properties": {
         "description": {
-          "description": "[Output Only] The description of the feature.",
+          "description": "Output only. [Output Only] The description of the feature.",
+          "readOnly": true,
           "type": "string"
         },
         "helpLink": {
-          "description": "[Output Only] Link to the public documentation for the feature.",
+          "description": "Output only. [Output Only] Link to the public documentation for the feature.",
+          "readOnly": true,
           "type": "string"
         },
         "releaseStatus": {
@@ -74674,7 +76492,7 @@
       "id": "PreviewFeatureStatusReleaseStatus",
       "properties": {
         "stage": {
-          "description": "[Output Only] The stage of the feature.",
+          "description": "Output only. [Output Only] The stage of the feature.",
           "enum": [
             "DEPRECATED",
             "GA",
@@ -74687,6 +76505,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "updateDate": {
@@ -74702,7 +76521,7 @@
       "id": "Project",
       "properties": {
         "cloudArmorTier": {
-          "description": "[Output Only] The Cloud Armor tier for this project. It can be one of the\nfollowing values: CA_STANDARD,CA_ENTERPRISE_PAYGO.\n\nIf this field is not specified, it is assumed to beCA_STANDARD.",
+          "description": "Output only. [Output Only] The Cloud Armor tier for this project. It can be one of the\nfollowing values: CA_STANDARD,CA_ENTERPRISE_PAYGO.\n\nIf this field is not specified, it is assumed to beCA_STANDARD.",
           "enum": [
             "CA_ENTERPRISE_ANNUAL",
             "CA_ENTERPRISE_PAYGO",
@@ -74713,6 +76532,7 @@
             "Enterprise tier protection billed monthly.",
             "Standard protection."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "commonInstanceMetadata": {
@@ -74761,7 +76581,8 @@
         },
         "kind": {
           "default": "compute#project",
-          "description": "[Output Only] Type of the resource. Always compute#project for\nprojects.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#project for\nprojects.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -74784,7 +76605,7 @@
           "description": "An optional naming prefix for daily usage reports and the Google Cloud\nStorage bucket where they are stored."
         },
         "vmDnsSetting": {
-          "description": "[Output Only] Default internal DNS setting used by VMs running in\nthis project.",
+          "description": "Output only. [Output Only] Default internal DNS setting used by VMs running in\nthis project.",
           "enum": [
             "GLOBAL_DEFAULT",
             "UNSPECIFIED_VM_DNS_SETTING",
@@ -74797,6 +76618,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "xpnProjectStatus": {
@@ -74839,11 +76661,13 @@
       "properties": {
         "kind": {
           "default": "compute#projectsGetXpnResources",
-          "description": "[Output Only] Type of resource. Alwayscompute#projectsGetXpnResources for lists of service resources\n(a.k.a service projects)",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#projectsGetXpnResources for lists of service resources\n(a.k.a service projects)",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "resources": {
@@ -74913,7 +76737,7 @@
       "id": "PublicAdvertisedPrefix",
       "properties": {
         "byoipApiVersion": {
-          "description": "[Output Only] The version of BYOIP API.",
+          "description": "Output only. [Output Only] The version of BYOIP API.",
           "enum": [
             "V1",
             "V2"
@@ -74922,10 +76746,12 @@
             "This public advertised prefix can be used to create both regional and\nglobal public delegated prefixes. It usually takes 4 weeks to create or\ndelete a public delegated prefix. The BGP status cannot be changed.",
             "This public advertised prefix can only be used to create regional public\ndelegated prefixes. Public delegated prefix creation and deletion takes\nminutes and the BGP status can be modified."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -74942,8 +76768,9 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "ipCidrRange": {
@@ -74964,7 +76791,8 @@
         },
         "kind": {
           "default": "compute#publicAdvertisedPrefix",
-          "description": "[Output Only] Type of the resource. Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -74992,14 +76820,16 @@
           "type": "string"
         },
         "publicDelegatedPrefixs": {
-          "description": "[Output Only] The list of public delegated prefixes that exist for this\npublic advertised prefix.",
+          "description": "Output only. [Output Only] The list of public delegated prefixes that exist for this\npublic advertised prefix.",
           "items": {
             "$ref": "PublicAdvertisedPrefixPublicDelegatedPrefix"
           },
+          "readOnly": true,
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "sharedSecret": {
@@ -75051,7 +76881,8 @@
         },
         "kind": {
           "default": "compute#publicAdvertisedPrefixList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -75226,7 +77057,7 @@
           "type": "integer"
         },
         "byoipApiVersion": {
-          "description": "[Output Only] The version of BYOIP API.",
+          "description": "Output only. [Output Only] The version of BYOIP API.",
           "enum": [
             "V1",
             "V2"
@@ -75235,24 +77066,32 @@
             "This public delegated prefix usually takes 4 weeks to delete, and the BGP\nstatus cannot be changed. Announce and Withdraw APIs can not be used on\nthis prefix.",
             "This public delegated prefix takes minutes to delete. Announce and\nWithdraw APIs can be used on this prefix to change the BGP status."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
           "description": "An optional description of this resource. Provide this property when you\ncreate the resource.",
           "type": "string"
         },
+        "enableEnhancedIpv4Allocation": {
+          "description": "Output only. [Output Only] Whether this PDP supports enhanced IPv4 allocations.\nApplicable for IPv4 PDPs only.",
+          "readOnly": true,
+          "type": "boolean"
+        },
         "fingerprint": {
           "description": "Fingerprint of this resource. A hash of the contents stored in this object.\nThis field is used in optimistic locking. This field will be ignored when\ninserting a new PublicDelegatedPrefix. An up-to-date\nfingerprint must be provided in order to update thePublicDelegatedPrefix, otherwise the request will fail with\nerror 412 conditionNotMet.\n\nTo see the latest fingerprint, make a get() request to\nretrieve a PublicDelegatedPrefix.",
           "format": "byte",
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "ipCidrRange": {
@@ -75260,7 +77099,7 @@
           "type": "string"
         },
         "ipv6AccessType": {
-          "description": "[Output Only] The internet access type for IPv6 Public Delegated Prefixes.\nInherited from parent prefix.",
+          "description": "Output only. [Output Only] The internet access type for IPv6 Public Delegated Prefixes.\nInherited from parent prefix.",
           "enum": [
             "EXTERNAL",
             "INTERNAL"
@@ -75269,6 +77108,7 @@
             "The parent public advertised prefix will be announced to the internet.\nAll children public delegated prefixes will have IPv6 access type as\nEXTERNAL.",
             "The parent public advertised prefix will not be announced to the\ninternet. Prefix will be used privately within Cloud. All children\npublic delegated prefixes will have IPv6 access type as INTERNAL."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "isLiveMigration": {
@@ -75277,7 +77117,8 @@
         },
         "kind": {
           "default": "compute#publicDelegatedPrefix",
-          "description": "[Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefix for public delegated prefixes.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefix for public delegated prefixes.",
+          "readOnly": true,
           "type": "string"
         },
         "mode": {
@@ -75318,11 +77159,13 @@
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the public delegated prefix resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "description": "Output only. [Output Only] URL of the region where the public delegated prefix resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
@@ -75367,7 +77210,8 @@
         },
         "kind": {
           "default": "compute#publicDelegatedPrefixAggregatedList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefixAggregatedList for aggregated\nlists of public delegated prefixes.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefixAggregatedList for aggregated\nlists of public delegated prefixes.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -75379,10 +77223,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -75528,7 +77373,8 @@
         },
         "kind": {
           "default": "compute#publicDelegatedPrefixList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefixList for public delegated\nprefixes.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#publicDelegatedPrefixList for public delegated\nprefixes.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -75683,12 +77529,17 @@
           "description": "An optional description of this resource. Provide this property when you\ncreate the resource.",
           "type": "string"
         },
+        "enableEnhancedIpv4Allocation": {
+          "description": "Output only. [Output Only] Whether this PDP supports enhanced IPv4 allocations.\nApplicable for IPv4 PDPs only.",
+          "readOnly": true,
+          "type": "boolean"
+        },
         "ipCidrRange": {
           "description": "The IP address range, in CIDR format, represented by this sub public\ndelegated prefix.",
           "type": "string"
         },
         "ipv6AccessType": {
-          "description": "[Output Only] The internet access type for IPv6 Public Delegated Sub\nPrefixes. Inherited from parent prefix.",
+          "description": "Output only. [Output Only] The internet access type for IPv6 Public Delegated Sub\nPrefixes. Inherited from parent prefix.",
           "enum": [
             "EXTERNAL",
             "INTERNAL"
@@ -75697,6 +77548,7 @@
             "The parent public advertised prefix will be announced to the internet.\nAll children public delegated prefixes will have IPv6 access type as\nEXTERNAL.",
             "The parent public advertised prefix will not be announced to the\ninternet. Prefix will be used privately within Cloud. All children\npublic delegated prefixes will have IPv6 access type as INTERNAL."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "isAddress": {
@@ -75724,11 +77576,12 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] The region of the sub public delegated prefix if it is\nregional. If absent, the sub prefix is global.",
+          "description": "Output only. [Output Only] The region of the sub public delegated prefix if it is\nregional. If absent, the sub prefix is global.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of the sub public delegated prefix.",
+          "description": "Output only. [Output Only] The status of the sub public delegated prefix.",
           "enum": [
             "ACTIVE",
             "INACTIVE"
@@ -75737,6 +77590,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -76286,7 +78140,8 @@
       "properties": {
         "kind": {
           "default": "compute#reference",
-          "description": "[Output Only] Type of the resource. Always compute#reference\nfor references.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#reference\nfor references.",
+          "readOnly": true,
           "type": "string"
         },
         "referenceType": {
@@ -76327,7 +78182,8 @@
         },
         "kind": {
           "default": "compute#region",
-          "description": "[Output Only] Type of the resource. Always compute#region for\nregions.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#region for\nregions.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -76335,7 +78191,7 @@
           "type": "string"
         },
         "quotaStatusWarning": {
-          "description": "[Output Only] Warning of fetching the `quotas` field for this region. This\nfield is populated only if fetching of the `quotas` field fails.",
+          "description": "Output only. [Output Only] Warning of fetching the `quotas` field for this region. This\nfield is populated only if fetching of the `quotas` field fails.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -76456,6 +78312,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         },
         "quotas": {
@@ -76482,7 +78339,8 @@
           "type": "string"
         },
         "supportsPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "zones": {
@@ -76526,7 +78384,8 @@
         },
         "kind": {
           "default": "compute#regionAutoscalerList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -76534,7 +78393,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -76680,7 +78540,8 @@
         },
         "kind": {
           "default": "compute#regionDiskTypeList",
-          "description": "[Output Only] Type of resource. Alwayscompute#regionDiskTypeList for region disk types.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#regionDiskTypeList for region disk types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -76688,7 +78549,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -76870,7 +78732,8 @@
       "id": "RegionInstanceGroupList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -76882,19 +78745,22 @@
         },
         "kind": {
           "default": "compute#regionInstanceGroupList",
-          "description": "The resource type.",
+          "description": "Output only. The resource type.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -77015,6 +78881,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -77039,7 +78906,8 @@
       "id": "RegionInstanceGroupManagerList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -77051,19 +78919,22 @@
         },
         "kind": {
           "default": "compute#regionInstanceGroupManagerList",
-          "description": "[Output Only] The resource type, which is always\ncompute#instanceGroupManagerList for a list of managed instance groups that\nexist in th regional scope.",
+          "description": "Output only. [Output Only] The resource type, which is always\ncompute#instanceGroupManagerList for a list of managed instance groups that\nexist in th regional scope.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -77184,6 +79055,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -77322,7 +79194,8 @@
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -77332,18 +79205,20 @@
       "id": "RegionInstanceGroupManagersListInstanceConfigsResp",
       "properties": {
         "items": {
-          "description": "[Output Only] The list of PerInstanceConfig.",
+          "description": "Output only. [Output Only] The list of PerInstanceConfig.",
           "items": {
             "$ref": "PerInstanceConfig"
           },
+          "readOnly": true,
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -77464,6 +79339,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -77480,7 +79356,8 @@
           "type": "array"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -77591,7 +79468,8 @@
       "id": "RegionInstanceGroupsListInstances",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -77603,19 +79481,22 @@
         },
         "kind": {
           "default": "compute#regionInstanceGroupsListInstances",
-          "description": "The resource type.",
+          "description": "Output only. The resource type.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -77736,6 +79617,7 @@
               "type": "string"
             }
           },
+          "readOnly": true,
           "type": "object"
         }
       },
@@ -77799,7 +79681,8 @@
         },
         "kind": {
           "default": "compute#regionList",
-          "description": "[Output Only] Type of resource. Always compute#regionList for\nlists of regions.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#regionList for\nlists of regions.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -77807,7 +79690,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -77967,10 +79851,11 @@
       "id": "RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponse",
       "properties": {
         "firewallPolicys": {
-          "description": "[Output only] Effective firewalls from firewall policy. It applies to\nRegional Network Firewall Policies in the specified region, Global Network\nFirewall Policies and Hierachial Firewall Policies which are associated\nwith the network.",
+          "description": "Output only. [Output only] Effective firewalls from firewall policy. It applies to\nRegional Network Firewall Policies in the specified region, Global Network\nFirewall Policies and Hierachial Firewall Policies which are associated\nwith the network.",
           "items": {
             "$ref": "RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponseEffectiveFirewallPolicy"
           },
+          "readOnly": true,
           "type": "array"
         },
         "firewalls": {
@@ -77987,34 +79872,39 @@
       "id": "RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponseEffectiveFirewallPolicy",
       "properties": {
         "displayName": {
-          "description": "[Output Only] The display name of the firewall policy.",
+          "description": "Output only. [Output Only] The display name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of the firewall policy.",
+          "description": "Output only. [Output Only] The name of the firewall policy.",
+          "readOnly": true,
           "type": "string"
         },
         "packetMirroringRules": {
-          "description": "[Output only] The packet mirroring rules that apply to the network.",
+          "description": "Output only. [Output only] The packet mirroring rules that apply to the network.",
           "items": {
             "$ref": "FirewallPolicyRule"
           },
+          "readOnly": true,
           "type": "array"
         },
         "priority": {
-          "description": "[Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
+          "description": "Output only. [Output only] Priority of firewall policy association. Not applicable for\ntype=HIERARCHY.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "rules": {
-          "description": "[Output only] The rules that apply to the network.",
+          "description": "Output only. [Output only] The rules that apply to the network.",
           "items": {
             "$ref": "FirewallPolicyRule"
           },
+          "readOnly": true,
           "type": "array"
         },
         "type": {
-          "description": "[Output Only] The type of the firewall policy. Can be one of HIERARCHY,\nNETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.",
+          "description": "Output only. [Output Only] The type of the firewall policy. Can be one of HIERARCHY,\nNETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.",
           "enum": [
             "HIERARCHY",
             "NETWORK",
@@ -78031,6 +79921,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -78128,11 +80019,13 @@
           "description": "Reservation for aggregated resources, providing shape flexibility."
         },
         "commitment": {
-          "description": "[Output Only] Full or partial URL to a parent commitment. This field\ndisplays for reservations that are tied to a commitment.",
+          "description": "Output only. [Output Only] Full or partial URL to a parent commitment. This field\ndisplays for reservations that are tied to a commitment.",
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "deleteAfterDuration": {
@@ -78164,20 +80057,23 @@
           "type": "boolean"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#reservation",
-          "description": "[Output Only] Type of the resource. Alwayscompute#reservations for reservations.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#reservations for reservations.",
+          "readOnly": true,
           "type": "string"
         },
         "linkedCommitments": {
-          "description": "[Output Only] Full or partial URL to parent commitments. This field\ndisplays for reservations that are tied to multiple commitments.",
+          "description": "Output only. [Output Only] Full or partial URL to parent commitments. This field\ndisplays for reservations that are tied to multiple commitments.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "name": {
@@ -78217,10 +80113,12 @@
         },
         "resourceStatus": {
           "$ref": "AllocationResourceStatus",
-          "description": "[Output Only] Status information for Reservation resource."
+          "description": "Output only. [Output Only] Status information for Reservation resource.",
+          "readOnly": true
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "schedulingType": {
@@ -78238,7 +80136,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "shareSettings": {
@@ -78254,7 +80153,7 @@
           "type": "boolean"
         },
         "status": {
-          "description": "[Output Only] The status of the reservation.\n   \n   \n     - CREATING: Reservation resources are being\n       allocated.\n     - READY: Reservation resources have been allocated,\n       and the reservation is ready for use.\n     - DELETING: Reservation deletion is in progress.\n     - UPDATING: Reservation update is in progress.",
+          "description": "Output only. [Output Only] The status of the reservation.\n   \n   \n     - CREATING: Reservation resources are being\n       allocated.\n     - READY: Reservation resources have been allocated,\n       and the reservation is ready for use.\n     - DELETING: Reservation deletion is in progress.\n     - UPDATING: Reservation update is in progress.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -78269,6 +80168,7 @@
             "Reservation resources have been allocated, and the reservation is ready\nfor use.",
             "Reservation update is in progress."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
@@ -78351,7 +80251,8 @@
         },
         "kind": {
           "default": "compute#reservationAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -78359,14 +80260,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -78501,65 +80404,84 @@
       "id": "ReservationBlock",
       "properties": {
         "count": {
-          "description": "[Output Only] The number of resources that are allocated in this\nreservation block.",
+          "description": "Output only. [Output Only] The number of resources that are allocated in this\nreservation block.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "healthInfo": {
           "$ref": "ReservationBlockHealthInfo",
-          "description": "[Output Only] Health information for the reservation block."
+          "description": "Output only. [Output Only] Health information for the reservation block.",
+          "readOnly": true
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "inUseCount": {
-          "description": "[Output Only] The number of instances that are currently in use on this\nreservation block.",
+          "description": "Output only. [Output Only] The number of instances that are currently in use on this\nreservation block.",
+          "format": "int32",
+          "readOnly": true,
+          "type": "integer"
+        },
+        "inUseHostCount": {
+          "description": "Output only. Number of hosts currently in use. If there is one or more Instances running\non the host, it is considered in use.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "kind": {
           "default": "compute#reservationBlock",
-          "description": "[Output Only] Type of the resource. Alwayscompute#reservationBlock for reservation blocks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#reservationBlock for reservation blocks.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of this reservation block generated by Google\nCompute Engine. The name must be 1-63 characters long, and comply with\nRFC1035 @pattern [a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+          "description": "Output only. [Output Only] The name of this reservation block generated by Google\nCompute Engine. The name must be 1-63 characters long, and comply with\nRFC1035 @pattern [a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+          "readOnly": true,
           "type": "string"
         },
         "physicalTopology": {
           "$ref": "ReservationBlockPhysicalTopology",
-          "description": "[Output Only] The physical topology of the reservation block."
+          "description": "Output only. [Output Only] The physical topology of the reservation block.",
+          "readOnly": true
         },
         "reservationMaintenance": {
           "$ref": "GroupMaintenanceInfo",
-          "description": "[Output Only] Maintenance information for this reservation block."
+          "description": "Output only. [Output Only] Maintenance information for this reservation block.",
+          "readOnly": true
         },
         "reservationSubBlockCount": {
-          "description": "[Output Only] The number of reservation subBlocks associated with this\nreservation block.",
+          "description": "Output only. [Output Only] The number of reservation subBlocks associated with this\nreservation block.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "reservationSubBlockInUseCount": {
-          "description": "[Output Only] The number of in-use reservation subBlocks associated with\nthis reservation block. If at least one VM is running on a subBlock, it is\nconsidered in-use.",
+          "description": "Output only. [Output Only] The number of in-use reservation subBlocks associated with\nthis reservation block. If at least one VM is running on a subBlock, it is\nconsidered in-use.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] Status of the reservation block.",
+          "description": "Output only. [Output Only] Status of the reservation block.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -78572,10 +80494,12 @@
             "",
             "Reservation block has allocated all its resources."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] Zone in which the reservation block resides.",
+          "description": "Output only. [Output Only] Zone in which the reservation block resides.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -78624,10 +80548,11 @@
           "type": "string"
         },
         "instances": {
-          "description": "The detailed instances information for a given Block",
+          "description": "Output only. The detailed instances information for a given Block",
           "items": {
             "$ref": "ReservationBlockPhysicalTopologyInstance"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -78644,7 +80569,8 @@
         },
         "physicalHostTopology": {
           "$ref": "ReservationBlockPhysicalTopologyInstancePhysicalHostTopology",
-          "description": "The PhysicalHostTopology of instances within a Block resource."
+          "description": "Output only. The PhysicalHostTopology of instances within a Block resource.",
+          "readOnly": true
         },
         "projectId": {
           "description": "Project where the instance lives",
@@ -78849,7 +80775,8 @@
         },
         "kind": {
           "default": "compute#reservationList",
-          "description": "[Output Only] Type of resource.Always compute#reservationsList\nfor listsof reservations",
+          "description": "Output only. [Output Only] Type of resource.Always compute#reservationsList\nfor listsof reservations",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -78857,7 +80784,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -78993,58 +80921,76 @@
       "properties": {
         "acceleratorTopologiesInfo": {
           "$ref": "AcceleratorTopologiesInfo",
-          "description": "[Output Only] Slice info for the reservation subBlock."
+          "description": "Output only. [Output Only] Slice info for the reservation subBlock.",
+          "readOnly": true
         },
         "count": {
-          "description": "[Output Only] The number of hosts that are allocated in this\nreservation subBlock.",
+          "description": "Output only. [Output Only] The number of hosts that are allocated in this\nreservation subBlock.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339 text format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "healthInfo": {
           "$ref": "ReservationSubBlockHealthInfo",
-          "description": "[Output Only] Health information for the reservation subBlock."
+          "description": "Output only. [Output Only] Health information for the reservation subBlock.",
+          "readOnly": true
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "inUseCount": {
-          "description": "[Output Only] The number of instances that are currently in use on this\nreservation subBlock.",
+          "description": "Output only. [Output Only] The number of instances that are currently in use on this\nreservation subBlock.",
           "format": "int32",
+          "readOnly": true,
+          "type": "integer"
+        },
+        "inUseHostCount": {
+          "description": "Output only. Number of hosts currently in use. If there is one or more Instances running\non the host, it is considered in use.",
+          "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "kind": {
           "default": "compute#reservationSubBlock",
-          "description": "[Output Only] Type of the resource. Alwayscompute#reservationSubBlock for reservation subBlocks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#reservationSubBlock for reservation subBlocks.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of this reservation subBlock generated by Google\nCompute Engine. The name must be 1-63 characters long, and comply with\nRFC1035 @pattern [a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+          "description": "Output only. [Output Only] The name of this reservation subBlock generated by Google\nCompute Engine. The name must be 1-63 characters long, and comply with\nRFC1035 @pattern [a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
+          "readOnly": true,
           "type": "string"
         },
         "physicalTopology": {
           "$ref": "ReservationSubBlockPhysicalTopology",
-          "description": "[Output Only] The physical topology of the reservation subBlock."
+          "description": "Output only. [Output Only] The physical topology of the reservation subBlock.",
+          "readOnly": true
         },
         "reservationSubBlockMaintenance": {
           "$ref": "GroupMaintenanceInfo",
-          "description": "Maintenance information for this reservation subBlock."
+          "description": "Output only. Maintenance information for this reservation subBlock.",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] Status of the reservation subBlock.",
+          "description": "Output only. [Output Only] Status of the reservation subBlock.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -79057,10 +81003,12 @@
             "",
             "Reservation subBlock has allocated all its resources."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] Zone in which the reservation subBlock resides.",
+          "description": "Output only. [Output Only] Zone in which the reservation subBlock resides.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -79735,7 +81683,8 @@
       "id": "ResourcePolicy",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -79750,8 +81699,9 @@
           "description": "Resource policy for instances for placement configuration."
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "instanceSchedulePolicy": {
@@ -79760,7 +81710,8 @@
         },
         "kind": {
           "default": "compute#resourcePolicy",
-          "description": "[Output Only] Type of the resource. Alwayscompute#resource_policies for resource policies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#resource_policies for resource policies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -79774,14 +81725,17 @@
           "type": "string"
         },
         "region": {
+          "readOnly": true,
           "type": "string"
         },
         "resourceStatus": {
           "$ref": "ResourcePolicyResourceStatus",
-          "description": "[Output Only] The system status of the resource policy."
+          "description": "Output only. [Output Only] The system status of the resource policy.",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "snapshotSchedulePolicy": {
@@ -79789,7 +81743,7 @@
           "description": "Resource policy for persistent disks for creating snapshots."
         },
         "status": {
-          "description": "[Output Only] The status of resource policy creation.",
+          "description": "Output only. [Output Only] The status of resource policy creation.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -79804,6 +81758,7 @@
             "",
             "Resource policy is ready to be used."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "workloadPolicy": {
@@ -79834,7 +81789,8 @@
         },
         "kind": {
           "default": "compute#resourcePolicyAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -79842,14 +81798,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -79989,7 +81947,8 @@
           "type": "integer"
         },
         "duration": {
-          "description": "[Output only] A predetermined duration for the window, automatically\nchosen to be the smallest possible in the given scenario.",
+          "description": "Output only. [Output only] A predetermined duration for the window, automatically\nchosen to be the smallest possible in the given scenario.",
+          "readOnly": true,
           "type": "string"
         },
         "startTime": {
@@ -80043,7 +82002,8 @@
       "id": "ResourcePolicyHourlyCycle",
       "properties": {
         "duration": {
-          "description": "[Output only] Duration of the time window, automatically chosen to be\nsmallest possible in the given scenario.",
+          "description": "Output only. [Output only] Duration of the time window, automatically chosen to be\nsmallest possible in the given scenario.",
+          "readOnly": true,
           "type": "string"
         },
         "hoursInCycle": {
@@ -80115,7 +82075,8 @@
         },
         "kind": {
           "default": "compute#resourcePolicyList",
-          "description": "[Output Only] Type of resource.Alwayscompute#resourcePoliciesList for listsof resourcePolicies",
+          "description": "Output only. [Output Only] Type of resource.Alwayscompute#resourcePoliciesList for listsof resourcePolicies",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -80123,7 +82084,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -80259,7 +82221,8 @@
       "properties": {
         "instanceSchedulePolicy": {
           "$ref": "ResourcePolicyResourceStatusInstanceSchedulePolicyStatus",
-          "description": "[Output Only] Specifies a set of output values reffering to\nthe instance_schedule_policy system status.\nThis field should have the same name as corresponding policy field."
+          "description": "Output only. [Output Only] Specifies a set of output values reffering to\nthe instance_schedule_policy system status.\nThis field should have the same name as corresponding policy field.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -80268,11 +82231,13 @@
       "id": "ResourcePolicyResourceStatusInstanceSchedulePolicyStatus",
       "properties": {
         "lastRunStartTime": {
-          "description": "[Output Only] The last time the schedule successfully ran.\nThe timestamp is an RFC3339 string.",
+          "description": "Output only. [Output Only] The last time the schedule successfully ran.\nThe timestamp is an RFC3339 string.",
+          "readOnly": true,
           "type": "string"
         },
         "nextRunStartTime": {
-          "description": "[Output Only] The next time the schedule is planned to run.\nThe actual time might be slightly different.\nThe timestamp is an RFC3339 string.",
+          "description": "Output only. [Output Only] The next time the schedule is planned to run.\nThe actual time might be slightly different.\nThe timestamp is an RFC3339 string.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -80410,7 +82375,8 @@
           "type": "string"
         },
         "duration": {
-          "description": "[Output only] Duration of the time window, automatically chosen to be\nsmallest possible in the given scenario.",
+          "description": "Output only. [Output only] Duration of the time window, automatically chosen to be\nsmallest possible in the given scenario.",
+          "readOnly": true,
           "type": "string"
         },
         "startTime": {
@@ -80463,25 +82429,30 @@
       "properties": {
         "effectiveInstanceMetadata": {
           "$ref": "ResourceStatusEffectiveInstanceMetadata",
-          "description": "[Output Only] Effective metadata is a field that consolidates project,\nzonal instance settings, and instance-level predefined metadata keys to\nprovide the overridden value for those metadata keys at the instance level."
+          "description": "Output only. [Output Only] Effective metadata is a field that consolidates project,\nzonal instance settings, and instance-level predefined metadata keys to\nprovide the overridden value for those metadata keys at the instance level.",
+          "readOnly": true
         },
         "physicalHost": {
-          "description": "[Output Only] The precise location of your instance within the zone's data\ncenter, including the block, sub-block, and host. The field is formatted as\nfollows: blockId/subBlockId/hostId.",
+          "description": "Output only. [Output Only] The precise location of your instance within the zone's data\ncenter, including the block, sub-block, and host. The field is formatted as\nfollows: blockId/subBlockId/hostId.",
+          "readOnly": true,
           "type": "string"
         },
         "physicalHostTopology": {
           "$ref": "ResourceStatusPhysicalHostTopology",
-          "description": "[Output Only] A series of fields containing the global name of the Compute\nEngine cluster, as well as the ID of the block, sub-block, and host on\nwhich the running instance is located."
+          "description": "Output only. [Output Only] A series of fields containing the global name of the Compute\nEngine cluster, as well as the ID of the block, sub-block, and host on\nwhich the running instance is located.",
+          "readOnly": true
         },
         "reservationConsumptionInfo": {
           "$ref": "ResourceStatusReservationConsumptionInfo",
-          "description": "[Output Only] Reservation information that the instance is consuming from."
+          "description": "Output only. [Output Only] Reservation information that the instance is consuming from.",
+          "readOnly": true
         },
         "scheduling": {
           "$ref": "ResourceStatusScheduling"
         },
         "upcomingMaintenance": {
-          "$ref": "UpcomingMaintenance"
+          "$ref": "UpcomingMaintenance",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -80553,7 +82524,8 @@
       "id": "ResourceStatusReservationConsumptionInfo",
       "properties": {
         "consumedReservation": {
-          "description": "[Output Only] The full resource name of the reservation that this\ninstance is consuming from.",
+          "description": "Output only. [Output Only] The full resource name of the reservation that this\ninstance is consuming from.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -80575,14 +82547,16 @@
       "id": "Route",
       "properties": {
         "asPaths": {
-          "description": "[Output Only] AS path.",
+          "description": "Output only. [Output Only] AS path.",
           "items": {
             "$ref": "RouteAsPath"
           },
+          "readOnly": true,
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -80599,13 +82573,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#route",
-          "description": "[Output Only] Type of this resource. Always compute#routes for\nRoute resources.",
+          "description": "Output only. [Output Only] Type of this resource. Always compute#routes for\nRoute resources.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -80632,7 +82608,8 @@
           "type": "string"
         },
         "nextHopHub": {
-          "description": "[Output Only] The full resource name of the Network Connectivity Center hub\nthat will handle matching packets.",
+          "description": "Output only. [Output Only] The full resource name of the Network Connectivity Center hub\nthat will handle matching packets.",
+          "readOnly": true,
           "type": "string"
         },
         "nextHopIlb": {
@@ -80644,17 +82621,24 @@
           "type": "string"
         },
         "nextHopInterRegionCost": {
-          "description": "[Output only] Internal fixed region-to-region cost that Google Cloud\ncalculates based on factors such as network performance, distance, and\navailable bandwidth between regions.",
+          "description": "Output only. [Output only] Internal fixed region-to-region cost that Google Cloud\ncalculates based on factors such as network performance, distance, and\navailable bandwidth between regions.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
+        "nextHopInterconnectAttachment": {
+          "description": "Output only. [Output Only] The URL to an InterconnectAttachment which is the next hop\nfor the route.\nThis field will only be populated for dynamic routes generated by\nCloud Router with a linked interconnectAttachment or the static route\ngenerated by each L2 Interconnect Attachment.",
+          "readOnly": true,
+          "type": "string"
+        },
         "nextHopIp": {
           "description": "The network IP address of an instance that should handle matching packets.\nBoth IPv6 address and IPv4 addresses are supported.\nMust specify an IPv4 address in dot-decimal notation (e.g. 192.0.2.99) or\nan IPv6 address in RFC 4291 format (e.g. 2001:db8::2d9:51:0:0 or\n2001:db8:0:0:2d9:51:0:0). IPv6 addresses will be displayed using RFC 5952\ncompressed format (e.g. 2001:db8::2d9:51:0:0). Should never be an\nIPv4-mapped IPv6 address.",
           "type": "string"
         },
         "nextHopMed": {
-          "description": "[Output Only] Multi-Exit Discriminator, a BGP route metric that indicates\nthe desirability of a particular route in a network.",
+          "description": "Output only. [Output Only] Multi-Exit Discriminator, a BGP route metric that indicates\nthe desirability of a particular route in a network.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "nextHopNetwork": {
@@ -80662,7 +82646,7 @@
           "type": "string"
         },
         "nextHopOrigin": {
-          "description": "[Output Only] Indicates the origin of the route. Can be IGP\n(Interior Gateway Protocol), EGP (Exterior Gateway Protocol),\nor INCOMPLETE.",
+          "description": "Output only. [Output Only] Indicates the origin of the route. Can be IGP\n(Interior Gateway Protocol), EGP (Exterior Gateway Protocol),\nor INCOMPLETE.",
           "enum": [
             "EGP",
             "IGP",
@@ -80673,10 +82657,12 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "nextHopPeering": {
-          "description": "[Output Only] The network peering name that should handle matching packets,\nwhich should conform to RFC1035.",
+          "description": "Output only. [Output Only] The network peering name that should handle matching packets,\nwhich should conform to RFC1035.",
+          "readOnly": true,
           "type": "string"
         },
         "nextHopVpnTunnel": {
@@ -80698,7 +82684,7 @@
           "type": "integer"
         },
         "routeStatus": {
-          "description": "[Output only] The status of the route. This status only applies to\ndynamic routes learned by Cloud Routers. This status is not applicable\nto static routes.",
+          "description": "[Output only] The status of the route. This status applies to\ndynamic routes learned by Cloud Routers. It is also applicable to routes\nundergoing migration.",
           "enum": [
             "ACTIVE",
             "DROPPED",
@@ -80714,7 +82700,7 @@
           "type": "string"
         },
         "routeType": {
-          "description": "[Output Only] The type of this route, which can be one of the following\nvalues:\n- 'TRANSIT' for a transit route that this router learned from\nanother Cloud Router and will readvertise to one of its BGP peers \n- 'SUBNET' for a route from a subnet of the VPC \n- 'BGP' for a route learned from a BGP peer of this router \n- 'STATIC' for a static route",
+          "description": "Output only. [Output Only] The type of this route, which can be one of the following\nvalues:\n- 'TRANSIT' for a transit route that this router learned from\nanother Cloud Router and will readvertise to one of its BGP peers \n- 'SUBNET' for a route from a subnet of the VPC \n- 'BGP' for a route learned from a BGP peer of this router \n- 'STATIC' for a static route",
           "enum": [
             "BGP",
             "STATIC",
@@ -80727,6 +82713,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -80741,7 +82728,7 @@
           "type": "array"
         },
         "warnings": {
-          "description": "[Output Only] If potential misconfigurations are detected for this\nroute, this field will be populated with warning messages.",
+          "description": "Output only. [Output Only] If potential misconfigurations are detected for this\nroute, this field will be populated with warning messages.",
           "items": {
             "properties": {
               "code": {
@@ -80865,6 +82852,7 @@
             },
             "type": "object"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -80917,7 +82905,8 @@
         },
         "kind": {
           "default": "compute#routeList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -80925,7 +82914,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -81144,7 +83134,8 @@
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -81169,7 +83160,8 @@
         },
         "kind": {
           "default": "compute#router",
-          "description": "[Output Only] Type of resource. Always compute#router for\nrouters.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#router for\nrouters.",
+          "readOnly": true,
           "type": "string"
         },
         "md5AuthenticationKeys": {
@@ -81254,7 +83246,8 @@
         },
         "kind": {
           "default": "compute#routerAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -81262,14 +83255,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -81558,7 +83553,7 @@
           "type": "string"
         },
         "managementType": {
-          "description": "[Output Only] The resource that configures and manages this BGP peer.\n   \n   -  MANAGED_BY_USER is the default value and can be managed by you\n   or other users\n   - MANAGED_BY_ATTACHMENT is a BGP peer that is configured and managed\n   by Cloud Interconnect, specifically by an InterconnectAttachment of type\n   PARTNER. Google automatically creates, updates, and deletes this type of\n   BGP peer when the PARTNER InterconnectAttachment is created, updated,\n   or deleted.",
+          "description": "Output only. [Output Only] The resource that configures and manages this BGP peer.\n   \n   -  MANAGED_BY_USER is the default value and can be managed by you\n   or other users\n   - MANAGED_BY_ATTACHMENT is a BGP peer that is configured and managed\n   by Cloud Interconnect, specifically by an InterconnectAttachment of type\n   PARTNER. Google automatically creates, updates, and deletes this type of\n   BGP peer when the PARTNER InterconnectAttachment is created, updated,\n   or deleted.",
           "enum": [
             "MANAGED_BY_ATTACHMENT",
             "MANAGED_BY_USER"
@@ -81567,6 +83562,7 @@
             "The BGP peer is automatically created for PARTNER type\nInterconnectAttachment; Google will automatically create/delete\nthis BGP peer when the PARTNER InterconnectAttachment is\ncreated/deleted, and Google will update the ipAddress and\npeerIpAddress when the PARTNER InterconnectAttachment is provisioned.\nThis type of BGP peer cannot be created or deleted, but can be\nmodified for all fields except for name, ipAddress and peerIpAddress.",
             "Default value, the BGP peer is manually created and managed by user."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "md5AuthenticationKeyName": {
@@ -81685,7 +83681,7 @@
           "type": "string"
         },
         "managementType": {
-          "description": "[Output Only] The resource that configures and manages this interface.\n   \n   - MANAGED_BY_USER is the default value and can be managed directly\n   by users.\n   - MANAGED_BY_ATTACHMENT is an interface that is configured and\n   managed by Cloud Interconnect, specifically, by an InterconnectAttachment\n   of type PARTNER. Google automatically creates, updates, and deletes\n   this type of interface when the PARTNER InterconnectAttachment is\n   created, updated, or deleted.",
+          "description": "Output only. [Output Only] The resource that configures and manages this interface.\n   \n   - MANAGED_BY_USER is the default value and can be managed directly\n   by users.\n   - MANAGED_BY_ATTACHMENT is an interface that is configured and\n   managed by Cloud Interconnect, specifically, by an InterconnectAttachment\n   of type PARTNER. Google automatically creates, updates, and deletes\n   this type of interface when the PARTNER InterconnectAttachment is\n   created, updated, or deleted.",
           "enum": [
             "MANAGED_BY_ATTACHMENT",
             "MANAGED_BY_USER"
@@ -81694,6 +83690,7 @@
             "The interface is automatically created for PARTNER type\nInterconnectAttachment, Google will automatically create/update/delete\nthis interface when the PARTNER InterconnectAttachment is\ncreated/provisioned/deleted.\nThis type of interface cannot be manually managed by user.",
             "Default value, the interface is manually created and managed by user."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -81739,7 +83736,8 @@
         },
         "kind": {
           "default": "compute#routerList",
-          "description": "[Output Only] Type of resource. Always compute#router for\nrouters.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#router for\nrouters.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -81747,7 +83745,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -82270,27 +84269,33 @@
           "$ref": "BfdStatus"
         },
         "enableIpv4": {
-          "description": "Enable IPv4 traffic over BGP Peer.\nIt is enabled by default if the peerIpAddress is version 4.",
+          "description": "Output only. Enable IPv4 traffic over BGP Peer.\nIt is enabled by default if the peerIpAddress is version 4.",
+          "readOnly": true,
           "type": "boolean"
         },
         "enableIpv6": {
-          "description": "Enable IPv6 traffic over BGP Peer.\nIt is enabled by default if the peerIpAddress is version 6.",
+          "description": "Output only. Enable IPv6 traffic over BGP Peer.\nIt is enabled by default if the peerIpAddress is version 6.",
+          "readOnly": true,
           "type": "boolean"
         },
         "ipAddress": {
-          "description": "IP address of the local BGP interface.",
+          "description": "Output only. IP address of the local BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "ipv4NexthopAddress": {
-          "description": "IPv4 address of the local BGP interface.",
+          "description": "Output only. IPv4 address of the local BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "ipv6NexthopAddress": {
-          "description": "IPv6 address of the local BGP interface.",
+          "description": "Output only. IPv6 address of the local BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "linkedVpnTunnel": {
-          "description": "URL of the VPN tunnel that this BGP peer controls.",
+          "description": "Output only. URL of the VPN tunnel that this BGP peer controls.",
+          "readOnly": true,
           "type": "string"
         },
         "md5AuthEnabled": {
@@ -82298,36 +84303,43 @@
           "type": "boolean"
         },
         "name": {
-          "description": "Name of this BGP peer. Unique within the Routers resource.",
+          "description": "Output only. Name of this BGP peer. Unique within the Routers resource.",
+          "readOnly": true,
           "type": "string"
         },
         "numLearnedRoutes": {
-          "description": "Number of routes learned from the remote BGP Peer.",
+          "description": "Output only. Number of routes learned from the remote BGP Peer.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "peerIpAddress": {
-          "description": "IP address of the remote BGP interface.",
+          "description": "Output only. IP address of the remote BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "peerIpv4NexthopAddress": {
-          "description": "IPv4 address of the remote BGP interface.",
+          "description": "Output only. IPv4 address of the remote BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "peerIpv6NexthopAddress": {
-          "description": "IPv6 address of the remote BGP interface.",
+          "description": "Output only. IPv6 address of the remote BGP interface.",
+          "readOnly": true,
           "type": "string"
         },
         "routerApplianceInstance": {
-          "description": "[Output only] URI of the VM instance that is used as third-party router\nappliances such as Next Gen Firewalls, Virtual Routers, or Router\nAppliances.\nThe VM instance is the peer side of the BGP session.",
+          "description": "Output only. [Output only] URI of the VM instance that is used as third-party router\nappliances such as Next Gen Firewalls, Virtual Routers, or Router\nAppliances.\nThe VM instance is the peer side of the BGP session.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
-          "description": "The state of the BGP session. For a list of possible values for this\nfield, seeBGP session states.",
+          "description": "Output only. The state of the BGP session. For a list of possible values for this\nfield, seeBGP session states.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "Status of the BGP peer: {UP, DOWN}",
+          "description": "Output only. Status of the BGP peer: {UP, DOWN}",
           "enum": [
             "DOWN",
             "UNKNOWN",
@@ -82338,6 +84350,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "statusReason": {
@@ -82357,11 +84370,13 @@
           "type": "string"
         },
         "uptime": {
-          "description": "Time this session has been up.\nFormat:\n 14 years, 51 weeks, 6 days, 23 hours, 59 minutes, 59 seconds",
+          "description": "Output only. Time this session has been up.\nFormat:\n 14 years, 51 weeks, 6 days, 23 hours, 59 minutes, 59 seconds",
+          "readOnly": true,
           "type": "string"
         },
         "uptimeSeconds": {
-          "description": "Time this session has been up, in seconds.\nFormat:\n 145",
+          "description": "Output only. Time this session has been up, in seconds.\nFormat:\n 145",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -82372,38 +84387,44 @@
       "id": "RouterStatusNatStatus",
       "properties": {
         "autoAllocatedNatIps": {
-          "description": "A list of IPs auto-allocated for NAT. Example: [\"1.1.1.1\", \"129.2.16.89\"]",
+          "description": "Output only. A list of IPs auto-allocated for NAT. Example: [\"1.1.1.1\", \"129.2.16.89\"]",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "drainAutoAllocatedNatIps": {
-          "description": "A list of IPs auto-allocated for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
+          "description": "Output only. A list of IPs auto-allocated for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "drainUserAllocatedNatIps": {
-          "description": "A list of IPs user-allocated for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
+          "description": "Output only. A list of IPs user-allocated for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "minExtraNatIpsNeeded": {
-          "description": "The number of extra IPs to allocate. This will be greater than 0 only if\nuser-specified IPs are NOT enough to allow all configured VMs to use NAT.\nThis value is meaningful only when auto-allocation of NAT IPs is *not*\nused.",
+          "description": "Output only. The number of extra IPs to allocate. This will be greater than 0 only if\nuser-specified IPs are NOT enough to allow all configured VMs to use NAT.\nThis value is meaningful only when auto-allocation of NAT IPs is *not*\nused.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "name": {
-          "description": "Unique name of this NAT.",
+          "description": "Output only. Unique name of this NAT.",
+          "readOnly": true,
           "type": "string"
         },
         "numVmEndpointsWithNatMappings": {
-          "description": "Number of VM endpoints (i.e., Nics) that can use NAT.",
+          "description": "Output only. Number of VM endpoints (i.e., Nics) that can use NAT.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "ruleStatus": {
@@ -82414,17 +84435,19 @@
           "type": "array"
         },
         "userAllocatedNatIpResources": {
-          "description": "A list of fully qualified URLs of reserved IP address resources.",
+          "description": "Output only. A list of fully qualified URLs of reserved IP address resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "userAllocatedNatIps": {
-          "description": "A list of IPs user-allocated for NAT.\nThey will be raw IP strings like \"179.12.26.133\".",
+          "description": "Output only. A list of IPs user-allocated for NAT.\nThey will be raw IP strings like \"179.12.26.133\".",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -82435,32 +84458,37 @@
       "id": "RouterStatusNatStatusNatRuleStatus",
       "properties": {
         "activeNatIps": {
-          "description": "A list of active IPs for NAT.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
+          "description": "Output only. A list of active IPs for NAT.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "drainNatIps": {
-          "description": "A list of IPs for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
+          "description": "Output only. A list of IPs for NAT that are in drain mode.\nExample: [\"1.1.1.1\", \"179.12.26.133\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "minExtraIpsNeeded": {
-          "description": "The number of extra IPs to allocate. This will be greater than 0 only\nif the existing IPs in this NAT Rule are NOT enough to allow all\nconfigured VMs to use NAT.",
+          "description": "Output only. The number of extra IPs to allocate. This will be greater than 0 only\nif the existing IPs in this NAT Rule are NOT enough to allow all\nconfigured VMs to use NAT.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "numVmEndpointsWithNatMappings": {
-          "description": "Number of VM endpoints (i.e., NICs) that have NAT Mappings from this\nNAT Rule.",
+          "description": "Output only. Number of VM endpoints (i.e., NICs) that have NAT Mappings from this\nNAT Rule.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "ruleNumber": {
-          "description": "Rule number of the rule.",
+          "description": "Output only. Rule number of the rule.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         }
       },
@@ -82471,7 +84499,8 @@
       "properties": {
         "kind": {
           "default": "compute#routerStatusResponse",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "result": {
@@ -82501,7 +84530,8 @@
         },
         "kind": {
           "default": "compute#routersListBgpRoutes",
-          "description": "[Output Only] Type of resource. Alwayscompute#routersListBgpRoutes for lists of bgp routes.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#routersListBgpRoutes for lists of bgp routes.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -82516,14 +84546,16 @@
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -82665,7 +84697,8 @@
         },
         "kind": {
           "default": "compute#routersListRoutePolicies",
-          "description": "[Output Only] Type of resource. Alwayscompute#routersListRoutePolicies for lists of route policies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#routersListRoutePolicies for lists of route policies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -82680,14 +84713,16 @@
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -83039,7 +85074,8 @@
           "type": "string"
         },
         "diskType": {
-          "description": "[Output Only] URL of the disk type resource. For example:projects/project/zones/zone/diskTypes/pd-standard or\npd-ssd",
+          "description": "Output only. [Output Only] URL of the disk type resource. For example:projects/project/zones/zone/diskTypes/pd-standard or\npd-ssd",
+          "readOnly": true,
           "type": "string"
         },
         "guestOsFeatures": {
@@ -83050,8 +85086,9 @@
           "type": "array"
         },
         "index": {
-          "description": "Specifies zero-based index of the disk that is attached to the source\ninstance.",
+          "description": "Output only. Specifies zero-based index of the disk that is attached to the source\ninstance.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "interface": {
@@ -83068,14 +85105,16 @@
         },
         "kind": {
           "default": "compute#savedAttachedDisk",
-          "description": "[Output Only] Type of the resource. Alwayscompute#attachedDisk for attached disks.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#attachedDisk for attached disks.",
+          "readOnly": true,
           "type": "string"
         },
         "licenses": {
-          "description": "[Output Only] Any valid publicly visible licenses.",
+          "description": "Output only. [Output Only] Any valid publicly visible licenses.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "mode": {
@@ -83095,12 +85134,13 @@
           "type": "string"
         },
         "storageBytes": {
-          "description": "[Output Only] A size of the storage used by the disk's snapshot by this\nmachine image.",
+          "description": "Output only. [Output Only] A size of the storage used by the disk's snapshot by this\nmachine image.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "storageBytesStatus": {
-          "description": "[Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
+          "description": "Output only. [Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
           "enum": [
             "UPDATING",
             "UP_TO_DATE"
@@ -83109,6 +85149,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "type": {
@@ -83131,7 +85172,7 @@
       "id": "SavedDisk",
       "properties": {
         "architecture": {
-          "description": "[Output Only] The architecture of the attached disk.",
+          "description": "Output only. [Output Only] The architecture of the attached disk.",
           "enum": [
             "ARCHITECTURE_UNSPECIFIED",
             "ARM64",
@@ -83142,24 +85183,28 @@
             "Machines with architecture ARM64",
             "Machines with architecture X86_64"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#savedDisk",
-          "description": "[Output Only] Type of the resource. Always compute#savedDisk\nfor attached disks.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#savedDisk\nfor attached disks.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceDisk": {
-          "description": "Specifies a URL of the disk attached to the source instance.",
+          "description": "Output only. Specifies a URL of the disk attached to the source instance.",
+          "readOnly": true,
           "type": "string"
         },
         "storageBytes": {
-          "description": "[Output Only] Size of the individual disk snapshot used by this machine\nimage.",
+          "description": "Output only. [Output Only] Size of the individual disk snapshot used by this machine\nimage.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "storageBytesStatus": {
-          "description": "[Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
+          "description": "Output only. [Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
           "enum": [
             "UPDATING",
             "UP_TO_DATE"
@@ -83168,6 +85213,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -83358,7 +85404,8 @@
         },
         "kind": {
           "default": "compute#screenshot",
-          "description": "[Output Only] Type of the resource. Always compute#screenshot\nfor the screenshots.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#screenshot\nfor the screenshots.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -83384,7 +85431,8 @@
         },
         "kind": {
           "default": "compute#securityPoliciesAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#securityPolicyAggregatedList for lists of Security\nPolicies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#securityPolicyAggregatedList for lists of Security\nPolicies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -83392,14 +85440,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -83702,7 +85752,8 @@
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "ddosProtectionConfig": {
@@ -83718,13 +85769,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#securityPolicy",
-          "description": "[Output only] Type of the resource. Alwayscompute#securityPolicyfor security policies",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#securityPolicyfor security policies",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -83745,14 +85798,16 @@
           "type": "string"
         },
         "parent": {
-          "description": "[Output Only] The parent of the security policy.",
+          "description": "Output only. [Output Only] The parent of the security policy.",
+          "readOnly": true,
           "type": "string"
         },
         "recaptchaOptionsConfig": {
           "$ref": "SecurityPolicyRecaptchaOptionsConfig"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional security policy\nresides. This field is not applicable to global security policies.",
+          "description": "Output only. [Output Only] URL of the region where the regional security policy\nresides. This field is not applicable to global security policies.",
+          "readOnly": true,
           "type": "string"
         },
         "rules": {
@@ -83763,7 +85818,8 @@
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "shortName": {
@@ -83942,6 +85998,10 @@
           ],
           "type": "string"
         },
+        "requestBodyInspectionSize": {
+          "description": "The maximum request size chosen by the customer with Waf enabled.\nValues supported are \"8KB\", \"16KB, \"32KB\", \"48KB\" and \"64KB\".\nValues are case insensitive.",
+          "type": "string"
+        },
         "userIpRequestHeaders": {
           "description": "An optional list of case-insensitive request header names to use for\nresolving the callers client IP address.",
           "items": {
@@ -83974,7 +86034,8 @@
         },
         "displayName": {
           "deprecated": true,
-          "description": "[Output Only] The display name of the security policy of the association.",
+          "description": "Output only. [Output Only] The display name of the security policy of the association.",
+          "readOnly": true,
           "type": "string"
         },
         "excludedFolders": {
@@ -83996,11 +86057,13 @@
           "type": "string"
         },
         "securityPolicyId": {
-          "description": "[Output Only] The security policy ID of the association.",
+          "description": "Output only. [Output Only] The security policy ID of the association.",
+          "readOnly": true,
           "type": "string"
         },
         "shortName": {
-          "description": "[Output Only] The short name of the security policy of the association.",
+          "description": "Output only. [Output Only] The short name of the security policy of the association.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -84041,7 +86104,8 @@
         },
         "kind": {
           "default": "compute#securityPolicyList",
-          "description": "[Output Only] Type of resource. Alwayscompute#securityPolicyList for listsof securityPolicies",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#securityPolicyList for listsof securityPolicies",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -84212,7 +86276,8 @@
         },
         "kind": {
           "default": "compute#securityPolicyRule",
-          "description": "[Output only] Type of the resource. Alwayscompute#securityPolicyRule for security policy rules",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#securityPolicyRule for security policy rules",
+          "readOnly": true,
           "type": "string"
         },
         "match": {
@@ -84735,7 +86800,8 @@
         },
         "kind": {
           "default": "compute#serialPortOutput",
-          "description": "[Output Only] Type of the resource. Alwayscompute#serialPortOutput for serial port output.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#serialPortOutput for serial port output.",
+          "readOnly": true,
           "type": "string"
         },
         "next": {
@@ -84744,7 +86810,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "start": {
@@ -84797,10 +86864,11 @@
       "id": "ServiceAttachment",
       "properties": {
         "connectedEndpoints": {
-          "description": "[Output Only] An array of connections for all the consumers connected to\nthis service attachment.",
+          "description": "Output only. [Output Only] An array of connections for all the consumers connected to\nthis service attachment.",
           "items": {
             "$ref": "ServiceAttachmentConnectedEndpoint"
           },
+          "readOnly": true,
           "type": "array"
         },
         "connectionPreference": {
@@ -84832,7 +86900,8 @@
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -84856,13 +86925,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#serviceAttachment",
-          "description": "[Output Only] Type of the resource. Alwayscompute#serviceAttachment for service attachments.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#serviceAttachment for service attachments.",
+          "readOnly": true,
           "type": "string"
         },
         "metadata": {
@@ -84901,18 +86972,21 @@
         },
         "pscServiceAttachmentId": {
           "$ref": "Uint128",
-          "description": "[Output Only] An 128-bit global unique ID of the PSC service attachment."
+          "description": "Output only. [Output Only] An 128-bit global unique ID of the PSC service attachment.",
+          "readOnly": true
         },
         "reconcileConnections": {
           "description": "This flag determines whether a consumer accept/reject list change can\nreconcile the statuses of existing ACCEPTED or REJECTED PSC endpoints.\n   \n   \n    -  If false, connection policy update will only affect existing PENDING\n    PSC endpoints. Existing ACCEPTED/REJECTED endpoints will remain untouched\n    regardless how the connection policy is modified . \n   -  If true,\n    update will affect both PENDING and ACCEPTED/REJECTED PSC endpoints. For\n    example, an ACCEPTED PSC endpoint will be moved to REJECTED if its project\n    is added to the reject list.\n\n\nFor newly created service attachment, this boolean defaults to false.",
           "type": "boolean"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the service attachment resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "description": "Output only. [Output Only] URL of the region where the service attachment resides.\nThis field applies only to the region resource. You must specify this\nfield as part of the HTTP request URL. It is not settable as a field in\nthe request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "targetService": {
@@ -84940,7 +87014,8 @@
         },
         "kind": {
           "default": "compute#serviceAttachmentAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -84948,14 +87023,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -85172,7 +87249,8 @@
         },
         "kind": {
           "default": "compute#serviceAttachmentList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#serviceAttachment for service attachments.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#serviceAttachment for service attachments.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -85572,7 +87650,8 @@
         },
         "kind": {
           "default": "compute#shieldedInstanceIdentity",
-          "description": "[Output Only] Type of the resource. Alwayscompute#shieldedInstanceIdentity for shielded Instance\nidentity entry.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#shieldedInstanceIdentity for shielded Instance\nidentity entry.",
+          "readOnly": true,
           "type": "string"
         },
         "signingKey": {
@@ -85629,7 +87708,7 @@
       "id": "Snapshot",
       "properties": {
         "architecture": {
-          "description": "[Output Only] The architecture of the snapshot. Valid values are\nARM64 or X86_64.",
+          "description": "Output only. [Output Only] The architecture of the snapshot. Valid values are\nARM64 or X86_64.",
           "enum": [
             "ARCHITECTURE_UNSPECIFIED",
             "ARM64",
@@ -85640,10 +87719,12 @@
             "Machines with architecture ARM64",
             "Machines with architecture X86_64"
           ],
+          "readOnly": true,
           "type": "string"
         },
         "autoCreated": {
-          "description": "[Output Only] Set to true if snapshots are automatically created by\napplying resource policy on the target disk.",
+          "description": "Output only. [Output Only] Set to true if snapshots are automatically created by\napplying resource policy on the target disk.",
+          "readOnly": true,
           "type": "boolean"
         },
         "chainName": {
@@ -85651,12 +87732,14 @@
           "type": "string"
         },
         "creationSizeBytes": {
-          "description": "[Output Only] Size in bytes of the snapshot at creation time.",
+          "description": "Output only. [Output Only] Size in bytes of the snapshot at creation time.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -85664,17 +87747,20 @@
           "type": "string"
         },
         "diskSizeGb": {
-          "description": "[Output Only] Size of the source disk, specified in GB.",
+          "description": "Output only. [Output Only] Size of the source disk, specified in GB.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "downloadBytes": {
-          "description": "[Output Only] Number of bytes downloaded to restore a snapshot to a disk.",
+          "description": "Output only. [Output Only] Number of bytes downloaded to restore a snapshot to a disk.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "enableConfidentialCompute": {
-          "description": "Whether this snapshot is created from a confidential compute mode disk.\n[Output Only]: This field is not set by user, but from source disk.",
+          "description": "Output only. Whether this snapshot is created from a confidential compute mode disk.\n[Output Only]: This field is not set by user, but from source disk.",
+          "readOnly": true,
           "type": "boolean"
         },
         "guestFlush": {
@@ -85682,20 +87768,23 @@
           "type": "boolean"
         },
         "guestOsFeatures": {
-          "description": "[Output Only] A list of features to enable on the guest operating system.\nApplicable only for bootable images. Read \nEnabling guest operating system features to see a list of available\noptions.",
+          "description": "Output only. [Output Only] A list of features to enable on the guest operating system.\nApplicable only for bootable images. Read \nEnabling guest operating system features to see a list of available\noptions.",
           "items": {
             "$ref": "GuestOsFeature"
           },
+          "readOnly": true,
           "type": "array"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#snapshot",
-          "description": "[Output Only] Type of the resource. Always compute#snapshot\nfor Snapshot resources.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#snapshot\nfor Snapshot resources.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -85711,18 +87800,20 @@
           "type": "object"
         },
         "licenseCodes": {
-          "description": "[Output Only] Integer license codes indicating which licenses are attached\nto this snapshot.",
+          "description": "Output only. [Output Only] Integer license codes indicating which licenses are attached\nto this snapshot.",
           "items": {
             "format": "int64",
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "licenses": {
-          "description": "[Output Only] A list of public visible licenses that apply to this\nsnapshot. This can be because the original image had licenses attached\n(such as a Windows image).",
+          "description": "Output only. [Output Only] A list of public visible licenses that apply to this\nsnapshot. This can be because the original image had licenses attached\n(such as a Windows image).",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "locationHint": {
@@ -85750,11 +87841,13 @@
           "type": "boolean"
         },
         "satisfiesPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "snapshotEncryptionKey": {
@@ -85786,7 +87879,8 @@
           "type": "string"
         },
         "sourceDiskId": {
-          "description": "[Output Only] The ID value of the disk used to create this snapshot. This\nvalue may be used to determine whether the snapshot was taken from the\ncurrent or a previous instance of a given disk name.",
+          "description": "Output only. [Output Only] The ID value of the disk used to create this snapshot. This\nvalue may be used to determine whether the snapshot was taken from the\ncurrent or a previous instance of a given disk name.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceInstantSnapshot": {
@@ -85798,19 +87892,22 @@
           "description": "Customer provided encryption key when creating Snapshot from Instant\nSnapshot."
         },
         "sourceInstantSnapshotId": {
-          "description": "[Output Only] The unique ID of the instant snapshot used to create this\nsnapshot. This value identifies the exact instant snapshot that was used to\ncreate this snapshot. For example, if you created the snapshot from an\ninstant snapshot that was later deleted and recreated under the same name,\nthe source instant snapshot ID would identify the exact instant snapshot\nthat was used.",
+          "description": "Output only. [Output Only] The unique ID of the instant snapshot used to create this\nsnapshot. This value identifies the exact instant snapshot that was used to\ncreate this snapshot. For example, if you created the snapshot from an\ninstant snapshot that was later deleted and recreated under the same name,\nthe source instant snapshot ID would identify the exact instant snapshot\nthat was used.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceSnapshotSchedulePolicy": {
-          "description": "[Output Only] URL of the resource policy which created this\nscheduled snapshot.",
+          "description": "Output only. [Output Only] URL of the resource policy which created this\nscheduled snapshot.",
+          "readOnly": true,
           "type": "string"
         },
         "sourceSnapshotSchedulePolicyId": {
-          "description": "[Output Only] ID of the resource policy which created this\nscheduled snapshot.",
+          "description": "Output only. [Output Only] ID of the resource policy which created this\nscheduled snapshot.",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The status of the snapshot. This can beCREATING, DELETING, FAILED,READY, or UPLOADING.",
+          "description": "Output only. [Output Only] The status of the snapshot. This can beCREATING, DELETING, FAILED,READY, or UPLOADING.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -85825,15 +87922,17 @@
             "Snapshot has been created successfully.",
             "Snapshot is being uploaded."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "storageBytes": {
-          "description": "[Output Only] A size of the storage used by the snapshot. As snapshots\nshare storage, this number is expected to change with snapshot\ncreation/deletion.",
+          "description": "Output only. [Output Only] A size of the storage used by the snapshot. As snapshots\nshare storage, this number is expected to change with snapshot\ncreation/deletion.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "storageBytesStatus": {
-          "description": "[Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
+          "description": "Output only. [Output Only] An indicator whether storageBytes is in a\nstable state or it is being adjusted as a result of shared storage\nreallocation. This status can either be UPDATING, meaning\nthe size of the snapshot is being updated, or UP_TO_DATE,\nmeaning the size of the snapshot is up-to-date.",
           "enum": [
             "UPDATING",
             "UP_TO_DATE"
@@ -85842,6 +87941,7 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "storageLocations": {
@@ -85871,7 +87971,8 @@
         },
         "kind": {
           "default": "compute#snapshotList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -85879,7 +87980,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -86017,7 +88119,7 @@
           "additionalProperties": {
             "type": "string"
           },
-          "description": "Resource manager tags to be bound to the snapshot. Tag keys and values have\nthe same definition as resource\nmanager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and\nvalues are in the format `tagValues/456`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
+          "description": "Resource manager tags to be bound to the snapshot. Tag keys and values have\nthe same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
           "type": "object"
         }
       },
@@ -86171,6 +88273,20 @@
           },
           "type": "array"
         },
+        "postKeyRevocationActionType": {
+          "description": "PostKeyRevocationActionType of the instance.",
+          "enum": [
+            "NOOP",
+            "POST_KEY_REVOCATION_ACTION_TYPE_UNSPECIFIED",
+            "SHUTDOWN"
+          ],
+          "enumDescriptions": [
+            "Indicates user chose no operation.",
+            "Default value. This value is unused.",
+            "Indicates user chose to opt for VM shutdown on key revocation."
+          ],
+          "type": "string"
+        },
         "scheduling": {
           "$ref": "Scheduling",
           "description": "Specifies the scheduling options for the instances that are created from\nthis machine image."
@@ -86206,7 +88322,8 @@
           "type": "string"
         },
         "expireTime": {
-          "description": "[Output Only] Expire time of the certificate. RFC3339",
+          "description": "Output only. [Output Only] Expire time of the certificate. RFC3339",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
@@ -86216,7 +88333,8 @@
         },
         "kind": {
           "default": "compute#sslCertificate",
-          "description": "[Output Only] Type of the resource. Alwayscompute#sslCertificate for SSL certificates.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#sslCertificate for SSL certificates.",
+          "readOnly": true,
           "type": "string"
         },
         "managed": {
@@ -86233,7 +88351,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional SSL Certificate\nresides. This field is not applicable to global SSL Certificate.",
+          "description": "Output only. [Output Only] URL of the region where the regional SSL Certificate\nresides. This field is not applicable to global SSL Certificate.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -86245,10 +88364,11 @@
           "description": "Configuration and status of a self-managed SSL certificate."
         },
         "subjectAlternativeNames": {
-          "description": "[Output Only] Domains associated with the certificate via Subject\nAlternative Name.",
+          "description": "Output only. [Output Only] Domains associated with the certificate via Subject\nAlternative Name.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "type": {
@@ -86285,7 +88405,8 @@
         },
         "kind": {
           "default": "compute#sslCertificateAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#sslCertificateAggregatedList for lists of SSL\nCertificates.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#sslCertificateAggregatedList for lists of SSL\nCertificates.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -86293,14 +88414,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -86447,7 +88570,8 @@
         },
         "kind": {
           "default": "compute#sslCertificateList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -86455,7 +88579,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -86611,7 +88736,8 @@
             ],
             "type": "string"
           },
-          "description": "[Output only] Detailed statuses of the domains specified for managed\ncertificate resource.",
+          "description": "Output only. [Output only] Detailed statuses of the domains specified for managed\ncertificate resource.",
+          "readOnly": true,
           "type": "object"
         },
         "domains": {
@@ -86622,7 +88748,7 @@
           "type": "array"
         },
         "status": {
-          "description": "[Output only] Status of the managed certificate resource.",
+          "description": "Output only. [Output only] Status of the managed certificate resource.",
           "enum": [
             "ACTIVE",
             "MANAGED_CERTIFICATE_STATUS_UNSPECIFIED",
@@ -86639,6 +88765,7 @@
             "Certificate provisioning failed due to an issue with the DNS\nor load balancing configuration. It won't be retried. To try again\ndelete and create a new managed SslCertificate resource.\nFor details of which domain failed, consult domain_status field.",
             "Renewal of the certificate has failed due to an issue with the DNS\nor load balancing configuration. The existing cert is still serving;\nhowever, it will expire shortly. To provision a renewed certificate,\ndelete and create a new managed SslCertificate resource.\nFor details on which domain failed, consult domain_status field."
           ],
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -86816,7 +88943,8 @@
         },
         "kind": {
           "default": "compute#sslPoliciesAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#sslPolicyAggregatedList for lists of SSL Policies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#sslPolicyAggregatedList for lists of SSL Policies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -86824,14 +88952,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -86965,27 +89095,32 @@
       "id": "SslPoliciesList",
       "properties": {
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
-          "description": "A list of SslPolicy resources.",
+          "description": "Output only. A list of SslPolicy resources.",
           "items": {
             "$ref": "SslPolicy"
           },
+          "readOnly": true,
           "type": "array"
         },
         "kind": {
           "default": "compute#sslPoliciesList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#sslPoliciesList for lists of sslPolicies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#sslPoliciesList for lists of sslPolicies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -87269,7 +89404,8 @@
       "id": "SslPolicy",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "customFeatures": {
@@ -87284,10 +89420,11 @@
           "type": "string"
         },
         "enabledFeatures": {
-          "description": "[Output Only] The list of features enabled in the SSL policy.",
+          "description": "Output only. [Output Only] The list of features enabled in the SSL policy.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "fingerprint": {
@@ -87296,13 +89433,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#sslPolicy",
-          "description": "[Output only] Type of the resource. Alwayscompute#sslPolicyfor SSL policies.",
+          "description": "Output only. [Output only] Type of the resource. Alwayscompute#sslPolicyfor SSL policies.",
+          "readOnly": true,
           "type": "string"
         },
         "minTlsVersion": {
@@ -87345,15 +89484,17 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional SSL policy\nresides. This field is not applicable to global SSL policies.",
+          "description": "Output only. [Output Only] URL of the region where the regional SSL policy\nresides. This field is not applicable to global SSL policies.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warnings": {
-          "description": "[Output Only] If potential misconfigurations are detected for this\nSSL policy, this field will be populated with warning messages.",
+          "description": "Output only. [Output Only] If potential misconfigurations are detected for this\nSSL policy, this field will be populated with warning messages.",
           "items": {
             "properties": {
               "code": {
@@ -87477,6 +89618,7 @@
             },
             "type": "object"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -87612,21 +89754,29 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
           "description": "An optional description of this resource. Provide this property when you\ncreate the resource.",
           "type": "string"
         },
+        "exapoolProvisionedCapacityGb": {
+          "$ref": "StoragePoolExapoolProvisionedCapacityGb",
+          "description": "Output only. [Output Only] Provisioned capacities for each SKU for this Exapool in GiB",
+          "readOnly": true
+        },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#storagePool",
-          "description": "[Output Only] Type of the resource. Always compute#storagePool\nfor storage pools.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#storagePool\nfor storage pools.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -87651,6 +89801,10 @@
           "pattern": "[a-z](?:[-a-z0-9]{0,61}[a-z0-9])?",
           "type": "string"
         },
+        "params": {
+          "$ref": "StoragePoolParams",
+          "description": "Input only. Additional params passed with the request, but not persisted\nas part of resource payload."
+        },
         "performanceProvisioningType": {
           "description": "Provisioning type of the performance-related parameters of the pool,\nsuch as throughput and IOPS.",
           "enum": [
@@ -87687,18 +89841,21 @@
         },
         "resourceStatus": {
           "$ref": "StoragePoolResourceStatus",
-          "description": "[Output Only] Status information for the storage pool resource."
+          "description": "Output only. [Output Only] Status information for the storage pool resource.",
+          "readOnly": true
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined fully-qualified URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined fully-qualified URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource's resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource's resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] The status of storage pool creation.\n   \n   \n     - CREATING: Storage pool is provisioning.\n     storagePool.\n     - FAILED: Storage pool creation failed.\n     - READY: Storage pool is ready for use.\n     - DELETING: Storage pool is deleting.",
+          "description": "Output only. [Output Only] The status of storage pool creation.\n   \n   \n     - CREATING: Storage pool is provisioning.\n     storagePool.\n     - FAILED: Storage pool creation failed.\n     - READY: Storage pool is ready for use.\n     - DELETING: Storage pool is deleting.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -87711,18 +89868,21 @@
             "StoragePool creation failed.",
             "StoragePool is ready for use."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "status": {
           "$ref": "StoragePoolResourceStatus",
-          "description": "[Output Only] Status information for the storage pool resource."
+          "description": "Output only. [Output Only] Status information for the storage pool resource.",
+          "readOnly": true
         },
         "storagePoolType": {
           "description": "Type of the storage pool.",
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the storage pool resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the storage pool resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -87748,7 +89908,8 @@
         },
         "kind": {
           "default": "compute#storagePoolAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#storagePoolAggregatedList for aggregated lists of\nstorage pools.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#storagePoolAggregatedList for aggregated lists of\nstorage pools.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -87756,14 +89917,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -87897,48 +90060,56 @@
       "id": "StoragePoolDisk",
       "properties": {
         "attachedInstances": {
-          "description": "[Output Only] Instances this disk is attached to.",
+          "description": "Output only. [Output Only] Instances this disk is attached to.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "disk": {
-          "description": "[Output Only] The URL of the disk.",
+          "description": "Output only. [Output Only] The URL of the disk.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
-          "description": "[Output Only] The name of the disk.",
+          "description": "Output only. [Output Only] The name of the disk.",
+          "readOnly": true,
           "type": "string"
         },
         "provisionedIops": {
-          "description": "[Output Only] The number of IOPS provisioned for the disk.",
+          "description": "Output only. [Output Only] The number of IOPS provisioned for the disk.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "provisionedThroughput": {
-          "description": "[Output Only] The throughput provisioned for the disk.",
+          "description": "Output only. [Output Only] The throughput provisioned for the disk.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "resourcePolicies": {
-          "description": "[Output Only] Resource policies applied to disk for automatic snapshot\ncreations.",
+          "description": "Output only. [Output Only] Resource policies applied to disk for automatic snapshot\ncreations.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "sizeGb": {
-          "description": "[Output Only] The disk size, in GB.",
+          "description": "Output only. [Output Only] The disk size, in GB.",
           "format": "int64",
+          "readOnly": true,
           "type": "string"
         },
         "status": {
-          "description": "[Output Only] The disk status.",
+          "description": "Output only. [Output Only] The disk status.",
           "enum": [
             "CREATING",
             "DELETING",
@@ -87955,15 +90126,43 @@
             "Source data is being copied into the disk.",
             "Disk is currently unavailable and cannot be accessed, attached or\ndetached."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "type": {
-          "description": "[Output Only] The disk type.",
+          "description": "Output only. [Output Only] The disk type.",
+          "readOnly": true,
           "type": "string"
         },
         "usedBytes": {
-          "description": "[Output Only] Amount of disk space used.",
+          "description": "Output only. [Output Only] Amount of disk space used.",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
+    "StoragePoolExapoolProvisionedCapacityGb": {
+      "description": "Exapool provisioned capacities for each SKU type",
+      "id": "StoragePoolExapoolProvisionedCapacityGb",
+      "properties": {
+        "capacityOptimized": {
+          "description": "Output only. Size, in GiB, of provisioned capacity-optimized capacity for this Exapool",
           "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "readOptimized": {
+          "description": "Output only. Size, in GiB, of provisioned read-optimized capacity for this Exapool",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "writeOptimized": {
+          "description": "Output only. Size, in GiB, of provisioned write-optimized capacity for this Exapool",
+          "format": "int64",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -87989,7 +90188,8 @@
         },
         "kind": {
           "default": "compute#storagePoolList",
-          "description": "[Output Only] Type of resource. Always compute#storagePoolList\nfor lists of storagePools.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#storagePoolList\nfor lists of storagePools.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -87997,14 +90197,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -88141,7 +90343,8 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] Unique identifier for the resource; defined by the server.",
+          "description": "Output only. [Output Only] Unique identifier for the resource; defined by the server.",
+          "readOnly": true,
           "type": "string"
         },
         "items": {
@@ -88153,26 +90356,30 @@
         },
         "kind": {
           "default": "compute#storagePoolListDisks",
-          "description": "[Output Only] Type of resource. Alwayscompute#storagePoolListDisks for lists of disks in a\nstoragePool.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#storagePoolListDisks for lists of disks in a\nstoragePool.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
-          "description": "[Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "description": "Output only. [Output Only] This token allows you to get the next page of results for\nlist requests. If the number of results is larger thanmaxResults, use the nextPageToken as a value for\nthe query parameter pageToken in the next list request.\nSubsequent list requests will have their own nextPageToken to\ncontinue paging through the results.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
-          "description": "[Output Only] Informational warning message.",
+          "description": "Output only. [Output Only] Informational warning message.",
           "properties": {
             "code": {
               "description": "[Output Only] A warning code, if applicable. For example, Compute\nEngine returns NO_RESULTS_ON_PAGE if there\nare no results in the response.",
@@ -88293,6 +90500,21 @@
               "type": "string"
             }
           },
+          "readOnly": true,
+          "type": "object"
+        }
+      },
+      "type": "object"
+    },
+    "StoragePoolParams": {
+      "description": "Additional storage pool params.",
+      "id": "StoragePoolParams",
+      "properties": {
+        "resourceManagerTags": {
+          "additionalProperties": {
+            "type": "string"
+          },
+          "description": "Input only. Resource manager tags to be bound to the storage pool. Tag keys and values\nhave the same definition as resource\nmanager tags. Keys and values can be either in numeric format,\nsuch as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced\nformat such as `{org_id|project_id}/{tag_key_short_name}` and\n`{tag_value_short_name}`. The field is ignored (both PUT \u0026\nPATCH) when empty.",
           "type": "object"
         }
       },
@@ -88307,8 +90529,33 @@
           "format": "int64",
           "type": "string"
         },
+        "exapoolMaxReadIops": {
+          "description": "Output only. [Output Only] Maximum allowed read IOPS for this Exapool.",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "exapoolMaxReadThroughput": {
+          "description": "Output only. [Output Only] Maximum allowed read throughput in MiB/s for\nthis Exapool.",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "exapoolMaxWriteIops": {
+          "description": "Output only. [Output Only] Maximum allowed write IOPS for this Exapool.",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
+        "exapoolMaxWriteThroughput": {
+          "description": "Output only. [Output Only] Maximum allowed write throughput in MiB/s\nfor this Exapool.",
+          "format": "int64",
+          "readOnly": true,
+          "type": "string"
+        },
         "lastResizeTimestamp": {
-          "description": "[Output Only] Timestamp of the last successful resize inRFC3339 text format.",
+          "description": "Output only. [Output Only] Timestamp of the last successful resize inRFC3339 text format.",
+          "readOnly": true,
           "type": "string"
         },
         "maxTotalProvisionedDiskCapacityGb": {
@@ -88376,7 +90623,8 @@
         },
         "kind": {
           "default": "compute#storagePoolType",
-          "description": "[Output Only] Type of the resource. Alwayscompute#storagePoolType for storage pool types.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#storagePoolType for storage pool types.",
+          "readOnly": true,
           "type": "string"
         },
         "maxPoolProvisionedCapacityGb": {
@@ -88424,7 +90672,8 @@
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL for this resource with the resource id.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource with the resource id.",
+          "readOnly": true,
           "type": "string"
         },
         "supportedDiskTypes": {
@@ -88458,7 +90707,8 @@
         },
         "kind": {
           "default": "compute#storagePoolTypeAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#storagePoolTypeAggregatedList.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#storagePoolTypeAggregatedList.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -88466,7 +90716,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -88613,7 +90864,8 @@
         },
         "kind": {
           "default": "compute#storagePoolTypeList",
-          "description": "[Output Only] Type of resource. Alwayscompute#storagePoolTypeList for storage pool types.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#storagePoolTypeList for storage pool types.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -88621,7 +90873,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -89029,8 +91282,13 @@
       "description": "Represents a Subnetwork resource.\n\nA subnetwork (also known as a subnet) is a logical partition of a Virtual\nPrivate Cloud network with one primary IP range and zero or more secondary\nIP ranges. For more information, read\nVirtual Private Cloud (VPC) Network.",
       "id": "Subnetwork",
       "properties": {
+        "allowSubnetCidrRoutesOverlap": {
+          "description": "Whether this subnetwork's ranges can conflict with existing static routes.\nSetting this to true allows this subnetwork's primary and secondary ranges\nto overlap with (and contain) static routes that have already been\nconfigured on the corresponding network.\n\nFor example if a static route has range 10.1.0.0/16, a subnet\nrange 10.0.0.0/8 could only be created if allow_conflicting_routes=true.\n\nOverlapping is only allowed on subnetwork operations; routes\nwhose ranges conflict with this subnetwork's ranges won't be allowed unless\nroute.allow_conflicting_subnetworks is set to true.\n\nTypically packets destined to IPs within the subnetwork (which may contain\nprivate/sensitive data) are prevented from leaving the virtual network.\nSetting this field to true will disable this feature.\n\nThe default value is false and applies to all existing subnetworks and\nautomatically created subnetworks.\n\nThis field cannot be set to true at resource creation time.",
+          "type": "boolean"
+        },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -89038,7 +91296,7 @@
           "type": "string"
         },
         "enableFlowLogs": {
-          "description": "Whether to enable flow logging for this subnetwork. If this field is not\nexplicitly set, it will not appear in get listings. If not set\nthe default behavior is determined by the org policy, if there is no org\npolicy specified, then it will default to disabled. This field isn't\nsupported if the subnet purpose field is set toREGIONAL_MANAGED_PROXY.",
+          "description": "Whether to enable flow logging for this subnetwork. If this field is not\nexplicitly set, it will not appear in get listings. If not set\nthe default behavior is determined by the org policy, if there is no org\npolicy specified, then it will default to disabled. This field isn't\nsupported if the subnet purpose field is set toREGIONAL_MANAGED_PROXY. It is recommended to uselogConfig.enable field instead.",
           "type": "boolean"
         },
         "externalIpv6Prefix": {
@@ -89051,12 +91309,14 @@
           "type": "string"
         },
         "gatewayAddress": {
-          "description": "[Output Only] The gateway address for default routes to reach destination\naddresses outside this subnetwork.",
+          "description": "Output only. [Output Only] The gateway address for default routes to reach destination\naddresses outside this subnetwork.",
+          "readOnly": true,
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "internalIpv6Prefix": {
@@ -89084,11 +91344,12 @@
           "type": "string"
         },
         "ipv6CidrRange": {
-          "description": "[Output Only] This field is for internal use.",
+          "description": "Output only. [Output Only] This field is for internal use.",
+          "readOnly": true,
           "type": "string"
         },
         "ipv6GceEndpoint": {
-          "description": "[Output Only] Possible endpoints of this subnetwork. It can be one of the\nfollowing:\n   \n   - VM_ONLY: The subnetwork can be used for creating instances and\n   IPv6 addresses with VM endpoint type. Such a subnetwork gets external IPv6\n   ranges from a public delegated prefix and cannot be used to create NetLb.\n   - VM_AND_FR: The subnetwork can be used for creating both VM\n   instances and Forwarding Rules. It can also be used to reserve IPv6\n   addresses with both VM and FR endpoint types. Such a subnetwork gets its\n   IPv6 range from Google IP Pool directly.",
+          "description": "Output only. [Output Only] Possible endpoints of this subnetwork. It can be one of the\nfollowing:\n   \n   - VM_ONLY: The subnetwork can be used for creating instances and\n   IPv6 addresses with VM endpoint type. Such a subnetwork gets external IPv6\n   ranges from a public delegated prefix and cannot be used to create NetLb.\n   - VM_AND_FR: The subnetwork can be used for creating both VM\n   instances and Forwarding Rules. It can also be used to reserve IPv6\n   addresses with both VM and FR endpoint types. Such a subnetwork gets its\n   IPv6 range from Google IP Pool directly.",
           "enum": [
             "VM_AND_FR",
             "VM_ONLY"
@@ -89097,11 +91358,13 @@
             "",
             ""
           ],
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#subnetwork",
-          "description": "[Output Only] Type of the resource. Always compute#subnetwork\nfor Subnetwork resources.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#subnetwork\nfor Subnetwork resources.",
+          "readOnly": true,
           "type": "string"
         },
         "logConfig": {
@@ -89208,7 +91471,7 @@
           "type": "string"
         },
         "state": {
-          "description": "[Output Only] The state of the subnetwork, which can be one of the\nfollowing values:READY: Subnetwork is created and ready to useDRAINING: only applicable to subnetworks that have the\npurpose set to INTERNAL_HTTPS_LOAD_BALANCER and indicates that\nconnections to the load balancer are being drained. A subnetwork that is\ndraining cannot be used or modified until it reaches a status ofREADY",
+          "description": "Output only. [Output Only] The state of the subnetwork, which can be one of the\nfollowing values:READY: Subnetwork is created and ready to useDRAINING: only applicable to subnetworks that have the\npurpose set to INTERNAL_HTTPS_LOAD_BALANCER and indicates that\nconnections to the load balancer are being drained. A subnetwork that is\ndraining cannot be used or modified until it reaches a status ofREADY",
           "enum": [
             "DRAINING",
             "READY"
@@ -89217,6 +91480,7 @@
             "Subnetwork is being drained.",
             "Subnetwork is ready for use."
           ],
+          "readOnly": true,
           "type": "string"
         },
         "systemReservedExternalIpv6Ranges": {
@@ -89260,7 +91524,8 @@
         },
         "kind": {
           "default": "compute#subnetworkAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#subnetworkAggregatedList for aggregated lists of\nsubnetworks.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#subnetworkAggregatedList for aggregated lists of\nsubnetworks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -89268,14 +91533,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -89422,7 +91689,8 @@
         },
         "kind": {
           "default": "compute#subnetworkList",
-          "description": "[Output Only] Type of resource. Always compute#subnetworkList\nfor lists of subnetworks.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#subnetworkList\nfor lists of subnetworks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -89430,7 +91698,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -90094,7 +92363,8 @@
       "id": "TargetGrpcProxy",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -90107,13 +92377,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#targetGrpcProxy",
-          "description": "[Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for target grpc proxies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for target grpc proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -90127,11 +92399,13 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLinkWithId": {
-          "description": "[Output Only] Server-defined URL with id for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL with id for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "urlMap": {
@@ -90161,7 +92435,8 @@
         },
         "kind": {
           "default": "compute#targetGrpcProxyList",
-          "description": "[Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for target grpc proxies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for target grpc proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -90441,7 +92716,8 @@
       "id": "TargetHttpProxy",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -90465,7 +92741,8 @@
         },
         "kind": {
           "default": "compute#targetHttpProxy",
-          "description": "[Output Only] Type of resource. Always compute#targetHttpProxy\nfor target HTTP proxies.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#targetHttpProxy\nfor target HTTP proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -90478,7 +92755,8 @@
           "type": "boolean"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional Target HTTP Proxy\nresides. This field is not applicable to global Target HTTP Proxies.",
+          "description": "Output only. [Output Only] URL of the region where the regional Target HTTP Proxy\nresides. This field is not applicable to global Target HTTP Proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -90509,7 +92787,8 @@
         },
         "kind": {
           "default": "compute#targetHttpProxyAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetHttpProxyAggregatedList for lists of Target HTTP\nProxies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetHttpProxyAggregatedList for lists of Target HTTP\nProxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -90517,14 +92796,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -90547,7 +92828,8 @@
         },
         "kind": {
           "default": "compute#targetHttpProxyList",
-          "description": "Type of resource. Always compute#targetHttpProxyList for lists\nof target HTTP proxies.",
+          "description": "Output only. Type of resource. Always compute#targetHttpProxyList for lists\nof target HTTP proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -90555,7 +92837,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -90878,7 +93161,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -90902,7 +93186,8 @@
         },
         "kind": {
           "default": "compute#targetHttpsProxy",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetHttpsProxy for target HTTPS proxies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetHttpsProxy for target HTTPS proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -90929,7 +93214,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional TargetHttpsProxy\nresides. This field is not applicable to global TargetHttpsProxies.",
+          "description": "Output only. [Output Only] URL of the region where the regional TargetHttpsProxy\nresides. This field is not applicable to global TargetHttpsProxies.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -90991,7 +93277,8 @@
         },
         "kind": {
           "default": "compute#targetHttpsProxyAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetHttpsProxyAggregatedList for lists of Target\nHTTP Proxies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetHttpsProxyAggregatedList for lists of Target\nHTTP Proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -90999,14 +93286,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -91153,7 +93442,8 @@
         },
         "kind": {
           "default": "compute#targetHttpsProxyList",
-          "description": "Type of resource. Always compute#targetHttpsProxyList for\nlists of target HTTPS proxies.",
+          "description": "Output only. Type of resource. Always compute#targetHttpsProxyList for\nlists of target HTTPS proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -91161,7 +93451,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -91296,7 +93587,8 @@
       "id": "TargetInstance",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -91314,7 +93606,8 @@
         },
         "kind": {
           "default": "compute#targetInstance",
-          "description": "[Output Only] The type of the resource. Alwayscompute#targetInstance for target instances.",
+          "description": "Output only. [Output Only] The type of the resource. Alwayscompute#targetInstance for target instances.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -91345,7 +93638,8 @@
           "type": "string"
         },
         "zone": {
-          "description": "[Output Only] URL of the zone where the target instance resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the zone where the target instance resides.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -91368,7 +93662,8 @@
         },
         "kind": {
           "default": "compute#targetInstanceAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -91376,14 +93671,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -91530,7 +93827,8 @@
         },
         "kind": {
           "default": "compute#targetInstanceList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -91538,7 +93836,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -91814,7 +94113,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -91847,7 +94147,8 @@
         },
         "kind": {
           "default": "compute#targetPool",
-          "description": "[Output Only] Type of the resource. Always compute#targetPool\nfor target pools.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#targetPool\nfor target pools.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -91856,7 +94157,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the target pool resides.",
+          "description": "Output only. [Output Only] URL of the region where the target pool resides.",
+          "readOnly": true,
           "type": "string"
         },
         "securityPolicy": {
@@ -91913,7 +94215,8 @@
         },
         "kind": {
           "default": "compute#targetPoolAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetPoolAggregatedList for aggregated lists of\ntarget pools.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetPoolAggregatedList for aggregated lists of\ntarget pools.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -91921,14 +94224,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -92069,7 +94374,8 @@
         },
         "kind": {
           "default": "compute#targetPoolInstanceHealth",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetPoolInstanceHealth when checking the health of\nan instance.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetPoolInstanceHealth when checking the health of\nan instance.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -92092,7 +94398,8 @@
         },
         "kind": {
           "default": "compute#targetPoolList",
-          "description": "[Output Only] Type of resource. Always compute#targetPoolList\nfor lists of target pools.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#targetPoolList\nfor lists of target pools.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -92100,7 +94407,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -92488,7 +94796,8 @@
           "type": "string"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -92502,7 +94811,8 @@
         },
         "kind": {
           "default": "compute#targetSslProxy",
-          "description": "[Output Only] Type of the resource. Alwayscompute#targetSslProxy for target SSL proxies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#targetSslProxy for target SSL proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -92561,7 +94871,8 @@
         },
         "kind": {
           "default": "compute#targetSslProxyList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -92569,7 +94880,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -92869,7 +95181,8 @@
       "id": "TargetTcpProxy",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -92883,7 +95196,8 @@
         },
         "kind": {
           "default": "compute#targetTcpProxy",
-          "description": "[Output Only] Type of the resource. Alwayscompute#targetTcpProxy for target TCP proxies.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#targetTcpProxy for target TCP proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -92908,7 +95222,8 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional TCP proxy resides.\nThis field is not applicable to global TCP proxy.",
+          "description": "Output only. [Output Only] URL of the region where the regional TCP proxy resides.\nThis field is not applicable to global TCP proxy.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -92939,7 +95254,8 @@
         },
         "kind": {
           "default": "compute#targetTcpProxyAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetTcpProxyAggregatedList for lists of Target\nTCP Proxies.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetTcpProxyAggregatedList for lists of Target\nTCP Proxies.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -92947,14 +95263,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -93101,7 +95419,8 @@
         },
         "kind": {
           "default": "compute#targetTcpProxyList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -93109,7 +95428,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -93244,7 +95564,8 @@
       "id": "TargetVpnGateway",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -93265,7 +95586,8 @@
         },
         "kind": {
           "default": "compute#targetVpnGateway",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -93350,7 +95672,8 @@
         },
         "kind": {
           "default": "compute#targetVpnGatewayAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -93358,14 +95681,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -93512,7 +95837,8 @@
         },
         "kind": {
           "default": "compute#targetVpnGatewayList",
-          "description": "[Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#targetVpnGateway for target VPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -93520,7 +95846,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -93980,7 +96307,8 @@
       "id": "UrlMap",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "defaultCustomErrorResponsePolicy": {
@@ -94026,7 +96354,8 @@
         },
         "kind": {
           "default": "compute#urlMap",
-          "description": "[Output Only] Type of the resource. Always compute#urlMaps for\nurl maps.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#urlMaps for\nurl maps.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -94042,7 +96371,8 @@
           "type": "array"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the regional URL map resides.\nThis field is not applicable to global URL maps.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "description": "Output only. [Output Only] URL of the region where the regional URL map resides.\nThis field is not applicable to global URL maps.\nYou must specify this field as part of the HTTP request URL. It is\nnot settable as a field in the request body.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
@@ -94076,7 +96406,8 @@
         },
         "kind": {
           "default": "compute#urlMapList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -94084,7 +96415,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -94321,7 +96653,8 @@
         },
         "kind": {
           "default": "compute#urlMapsAggregatedList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -94329,14 +96662,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -94663,11 +96998,13 @@
       "id": "UsableSubnetwork",
       "properties": {
         "externalIpv6Prefix": {
-          "description": "[Output Only] The external IPv6 address range that is assigned to this\nsubnetwork.",
+          "description": "Output only. [Output Only] The external IPv6 address range that is assigned to this\nsubnetwork.",
+          "readOnly": true,
           "type": "string"
         },
         "internalIpv6Prefix": {
-          "description": "[Output Only] The internal IPv6 address range that is assigned to this\nsubnetwork.",
+          "description": "Output only. [Output Only] The internal IPv6 address range that is assigned to this\nsubnetwork.",
+          "readOnly": true,
           "type": "string"
         },
         "ipCidrRange": {
@@ -94784,7 +97121,8 @@
         },
         "kind": {
           "default": "compute#usableSubnetworksAggregatedList",
-          "description": "[Output Only] Type of resource. Alwayscompute#usableSubnetworksAggregatedList for aggregated lists\nof usable subnetworks.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#usableSubnetworksAggregatedList for aggregated lists\nof usable subnetworks.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -94792,21 +97130,24 @@
           "type": "string"
         },
         "scopedWarnings": {
-          "description": "[Output Only] Informational warning messages for failures encountered from\nscopes.",
+          "description": "Output only. [Output Only] Informational warning messages for failures encountered from\nscopes.",
           "items": {
             "$ref": "SubnetworksScopedWarning"
           },
+          "readOnly": true,
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -94956,13 +97297,15 @@
       "id": "VmEndpointNatMappings",
       "properties": {
         "instanceName": {
-          "description": "Name of the VM instance which the endpoint belongs to",
+          "description": "Output only. Name of the VM instance which the endpoint belongs to",
+          "readOnly": true,
           "type": "string"
         },
         "interfaceNatMappings": {
           "items": {
             "$ref": "VmEndpointNatMappingsInterfaceNatMappings"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -94973,42 +97316,49 @@
       "id": "VmEndpointNatMappingsInterfaceNatMappings",
       "properties": {
         "drainNatIpPortRanges": {
-          "description": "List of all drain IP:port-range mappings assigned to this interface.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
+          "description": "Output only. List of all drain IP:port-range mappings assigned to this interface.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "natIpPortRanges": {
-          "description": "A list of all IP:port-range mappings assigned to this interface.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
+          "description": "Output only. A list of all IP:port-range mappings assigned to this interface.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "numTotalDrainNatPorts": {
-          "description": "Total number of drain ports across all NAT IPs allocated to this\ninterface. It equals to the aggregated port number in the field\ndrain_nat_ip_port_ranges.",
+          "description": "Output only. Total number of drain ports across all NAT IPs allocated to this\ninterface. It equals to the aggregated port number in the field\ndrain_nat_ip_port_ranges.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "numTotalNatPorts": {
-          "description": "Total number of ports across all NAT IPs allocated to this interface.\nIt equals to the aggregated port number in the field nat_ip_port_ranges.",
+          "description": "Output only. Total number of ports across all NAT IPs allocated to this interface.\nIt equals to the aggregated port number in the field nat_ip_port_ranges.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "ruleMappings": {
-          "description": "Information about mappings provided by rules in this NAT.",
+          "description": "Output only. Information about mappings provided by rules in this NAT.",
           "items": {
             "$ref": "VmEndpointNatMappingsInterfaceNatMappingsNatRuleMappings"
           },
+          "readOnly": true,
           "type": "array"
         },
         "sourceAliasIpRange": {
-          "description": "Alias IP range for this interface endpoint.\nIt will be a private (RFC 1918) IP range.\nExamples: \"10.33.4.55/32\", or \"192.168.5.0/24\".",
+          "description": "Output only. Alias IP range for this interface endpoint.\nIt will be a private (RFC 1918) IP range.\nExamples: \"10.33.4.55/32\", or \"192.168.5.0/24\".",
+          "readOnly": true,
           "type": "string"
         },
         "sourceVirtualIp": {
-          "description": "Primary IP of the VM for this NIC.",
+          "description": "Output only. Primary IP of the VM for this NIC.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -95019,32 +97369,37 @@
       "id": "VmEndpointNatMappingsInterfaceNatMappingsNatRuleMappings",
       "properties": {
         "drainNatIpPortRanges": {
-          "description": "List of all drain IP:port-range mappings assigned to this interface\nby this rule.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
+          "description": "Output only. List of all drain IP:port-range mappings assigned to this interface\nby this rule.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "natIpPortRanges": {
-          "description": "A list of all IP:port-range mappings assigned to this interface by this\nrule.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
+          "description": "Output only. A list of all IP:port-range mappings assigned to this interface by this\nrule.\nThese ranges are inclusive, that is, both the first and the last\nports can be used for NAT. Example: [\"2.2.2.2:12345-12355\",\n\"1.1.1.1:2234-2234\"].",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "numTotalDrainNatPorts": {
-          "description": "Total number of drain ports across all NAT IPs allocated to this\ninterface by this rule.\nIt equals the aggregated port number in the field\ndrain_nat_ip_port_ranges.",
+          "description": "Output only. Total number of drain ports across all NAT IPs allocated to this\ninterface by this rule.\nIt equals the aggregated port number in the field\ndrain_nat_ip_port_ranges.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "numTotalNatPorts": {
-          "description": "Total number of ports across all NAT IPs allocated to this interface\nby this rule.\nIt equals the aggregated port number in the field nat_ip_port_ranges.",
+          "description": "Output only. Total number of ports across all NAT IPs allocated to this interface\nby this rule.\nIt equals the aggregated port number in the field nat_ip_port_ranges.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         },
         "ruleNumber": {
-          "description": "Rule number of the NAT Rule.",
+          "description": "Output only. Rule number of the NAT Rule.",
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         }
       },
@@ -95060,7 +97415,8 @@
         },
         "kind": {
           "default": "compute#vmEndpointNatMappingsList",
-          "description": "[Output Only] Type of resource. Alwayscompute#vmEndpointNatMappingsList for lists of Nat mappings of\nVM endpoints.",
+          "description": "Output only. [Output Only] Type of resource. Alwayscompute#vmEndpointNatMappingsList for lists of Nat mappings of\nVM endpoints.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -95075,7 +97431,8 @@
           "type": "array"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -95210,7 +97567,8 @@
       "id": "VpnGateway",
       "properties": {
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -95230,13 +97588,15 @@
           "type": "string"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
+          "description": "Output only. [Output Only] The unique identifier for the resource. This identifier is\ndefined by the server.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#vpnGateway",
-          "description": "[Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -95271,11 +97631,13 @@
           "type": "string"
         },
         "region": {
-          "description": "[Output Only] URL of the region where the VPN gateway resides.",
+          "description": "Output only. [Output Only] URL of the region where the VPN gateway resides.",
+          "readOnly": true,
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "stackType": {
@@ -95319,7 +97681,8 @@
         },
         "kind": {
           "default": "compute#vpnGatewayAggregatedList",
-          "description": "[Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -95327,14 +97690,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -95481,7 +97846,8 @@
         },
         "kind": {
           "default": "compute#vpnGatewayList",
-          "description": "[Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnGateway for\nVPN gateways.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -95489,7 +97855,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -95623,10 +97990,11 @@
       "id": "VpnGatewayStatus",
       "properties": {
         "vpnConnections": {
-          "description": "List of VPN connection for this VpnGateway.",
+          "description": "Output only. List of VPN connection for this VpnGateway.",
           "items": {
             "$ref": "VpnGatewayStatusVpnConnection"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -95666,17 +98034,20 @@
       "id": "VpnGatewayStatusTunnel",
       "properties": {
         "localGatewayInterface": {
-          "description": "The VPN gateway interface this VPN tunnel is associated with.",
+          "description": "Output only. The VPN gateway interface this VPN tunnel is associated with.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "peerGatewayInterface": {
-          "description": "The peer gateway interface this VPN tunnel is connected to, the peer\ngateway could either be an external VPN gateway or a Google Cloud\nVPN gateway.",
+          "description": "Output only. The peer gateway interface this VPN tunnel is connected to, the peer\ngateway could either be an external VPN gateway or a Google Cloud\nVPN gateway.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "tunnelUrl": {
-          "description": "URL reference to the VPN tunnel.",
+          "description": "Output only. URL reference to the VPN tunnel.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -95687,11 +98058,13 @@
       "id": "VpnGatewayStatusVpnConnection",
       "properties": {
         "peerExternalGateway": {
-          "description": "URL reference to the peer external VPN gateways to which the VPN tunnels\nin this VPN connection are connected.\nThis field is mutually exclusive with peer_gcp_gateway.",
+          "description": "Output only. URL reference to the peer external VPN gateways to which the VPN tunnels\nin this VPN connection are connected.\nThis field is mutually exclusive with peer_gcp_gateway.",
+          "readOnly": true,
           "type": "string"
         },
         "peerGcpGateway": {
-          "description": "URL reference to the peer side VPN gateways to which the VPN tunnels in\nthis VPN connection are connected.\nThis field is mutually exclusive with peer_gcp_gateway.",
+          "description": "Output only. URL reference to the peer side VPN gateways to which the VPN tunnels in\nthis VPN connection are connected.\nThis field is mutually exclusive with peer_gcp_gateway.",
+          "readOnly": true,
           "type": "string"
         },
         "state": {
@@ -95713,8 +98086,9 @@
       "id": "VpnGatewayVpnGatewayInterface",
       "properties": {
         "id": {
-          "description": "[Output Only] Numeric identifier for this VPN interface associated with\nthe VPN gateway.",
+          "description": "Output only. [Output Only] Numeric identifier for this VPN interface associated with\nthe VPN gateway.",
           "format": "uint32",
+          "readOnly": true,
           "type": "integer"
         },
         "interconnectAttachment": {
@@ -95722,11 +98096,13 @@
           "type": "string"
         },
         "ipAddress": {
-          "description": "[Output Only] IP address for this VPN interface associated with the VPN\ngateway.\nThe IP address could be either a regional external IP address or\na regional internal IP address. The two IP addresses for a VPN gateway\nmust be all regional external or regional internal IP addresses. There\ncannot be a mix of regional external IP addresses and regional internal\nIP addresses. For HA VPN over Cloud Interconnect, the IP addresses\nfor both interfaces could either be regional internal IP addresses or\nregional external IP addresses. For regular (non HA VPN over Cloud\nInterconnect) HA VPN tunnels, the IP address must be a regional external\nIP address.",
+          "description": "Output only. [Output Only] IP address for this VPN interface associated with the VPN\ngateway.\nThe IP address could be either a regional external IP address or\na regional internal IP address. The two IP addresses for a VPN gateway\nmust be all regional external or regional internal IP addresses. There\ncannot be a mix of regional external IP addresses and regional internal\nIP addresses. For HA VPN over Cloud Interconnect, the IP addresses\nfor both interfaces could either be regional internal IP addresses or\nregional external IP addresses. For regular (non HA VPN over Cloud\nInterconnect) HA VPN tunnels, the IP address must be a regional external\nIP address.",
+          "readOnly": true,
           "type": "string"
         },
         "ipv6Address": {
-          "description": "[Output Only] IPv6 address for this VPN interface associated with the VPN\ngateway.\nThe IPv6 address must be a regional external IPv6 address. The format is\nRFC 5952 format (e.g. 2001:db8::2d9:51:0:0).",
+          "description": "Output only. [Output Only] IPv6 address for this VPN interface associated with the VPN\ngateway.\nThe IPv6 address must be a regional external IPv6 address. The format is\nRFC 5952 format (e.g. 2001:db8::2d9:51:0:0).",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -95887,7 +98263,8 @@
           "description": "User specified list of ciphers to use for the phase 1 and phase 2 of the\nIKE protocol."
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -95910,7 +98287,8 @@
         },
         "kind": {
           "default": "compute#vpnTunnel",
-          "description": "[Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "readOnly": true,
           "type": "string"
         },
         "labelFingerprint": {
@@ -96053,7 +98431,8 @@
         },
         "kind": {
           "default": "compute#vpnTunnelAggregatedList",
-          "description": "[Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -96061,14 +98440,16 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.",
+          "description": "Output only. [Output Only] Unreachable resources.",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -96227,7 +98608,8 @@
         },
         "kind": {
           "default": "compute#vpnTunnelList",
-          "description": "[Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#vpnTunnel for\nVPN tunnels.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -96235,7 +98617,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -96620,23 +99003,27 @@
       "id": "Wire",
       "properties": {
         "adminEnabled": {
-          "description": "[Output Only] Indicates whether the wire is enabled.\nWhen false, the wire is disabled. When true and when the wire group of\nthe wire is also enabled, the wire is enabled. Defaults to true.",
+          "description": "Output only. [Output Only] Indicates whether the wire is enabled.\nWhen false, the wire is disabled. When true and when the wire group of\nthe wire is also enabled, the wire is enabled. Defaults to true.",
+          "readOnly": true,
           "type": "boolean"
         },
         "endpoints": {
-          "description": "Wire endpoints are specific Interconnect connections.",
+          "description": "Output only. Wire endpoints are specific Interconnect connections.",
           "items": {
             "$ref": "WireEndpoint"
           },
+          "readOnly": true,
           "type": "array"
         },
         "label": {
-          "description": "[Output Only] A label that identifies the wire. The format of this label\ncombines the existing labels of the wire group endpoints and Interconnect\nconnections used by this wire in alphabetical order as follows:\n`ENDPOINT_A+CONNECTION_A1,ENDPOINT_B+CONNECTION_B1`, where:\n   \n   - ENDPOINT_A and ENDPOINT_B: are the labels\n   that you entered as map keys when you specified the wire group endpoint\n   objects.\n   - CONNECTION_A1 and CONNECTION_B1: are the\n   labels that you entered as map keys when you specified the wire group\n   Interconnect objects.",
+          "description": "Output only. [Output Only] A label that identifies the wire. The format of this label\ncombines the existing labels of the wire group endpoints and Interconnect\nconnections used by this wire in alphabetical order as follows:\n`ENDPOINT_A+CONNECTION_A1,ENDPOINT_B+CONNECTION_B1`, where:\n   \n   - ENDPOINT_A and ENDPOINT_B: are the labels\n   that you entered as map keys when you specified the wire group endpoint\n   objects.\n   - CONNECTION_A1 and CONNECTION_B1: are the\n   labels that you entered as map keys when you specified the wire group\n   Interconnect objects.",
+          "readOnly": true,
           "type": "string"
         },
         "wireProperties": {
           "$ref": "WireProperties",
-          "description": "[Output Only] Properties of the wire."
+          "description": "Output only. [Output Only] Properties of the wire.",
+          "readOnly": true
         }
       },
       "type": "object"
@@ -96646,10 +99033,12 @@
       "id": "WireEndpoint",
       "properties": {
         "interconnect": {
+          "readOnly": true,
           "type": "string"
         },
         "vlanTag": {
           "format": "int32",
+          "readOnly": true,
           "type": "integer"
         }
       },
@@ -96664,7 +99053,8 @@
           "type": "boolean"
         },
         "creationTimestamp": {
-          "description": "[Output Only] Creation timestamp inRFC3339\ntext format.",
+          "description": "Output only. [Output Only] Creation timestamp inRFC3339\ntext format.",
+          "readOnly": true,
           "type": "string"
         },
         "description": {
@@ -96679,13 +99069,15 @@
           "type": "object"
         },
         "id": {
-          "description": "[Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
+          "description": "Output only. [Output Only] The unique identifier for the resource type. The server\ngenerates this identifier.",
           "format": "uint64",
+          "readOnly": true,
           "type": "string"
         },
         "kind": {
           "default": "compute#wireGroup",
-          "description": "[Output Only] Type of the resource. Alwayscompute#wireGroups for wire groups.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#wireGroups for wire groups.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -96694,26 +99086,30 @@
           "type": "string"
         },
         "reconciling": {
-          "description": "[Output Only] Indicates whether there are wire changes yet to be processed.",
+          "description": "Output only. [Output Only] Indicates whether there are wire changes yet to be processed.",
+          "readOnly": true,
           "type": "boolean"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for the resource.",
+          "description": "Output only. [Output Only] Server-defined URL for the resource.",
+          "readOnly": true,
           "type": "string"
         },
         "topology": {
           "$ref": "WireGroupTopology",
-          "description": "Topology details for the wire group configuration."
+          "description": "Output only. Topology details for the wire group configuration.",
+          "readOnly": true
         },
         "wireProperties": {
           "$ref": "WireProperties",
           "description": "Properties for all wires in the wire group."
         },
         "wires": {
-          "description": "The single/redundant wire(s) managed by the wire group.",
+          "description": "Output only. The single/redundant wire(s) managed by the wire group.",
           "items": {
             "$ref": "Wire"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -96772,7 +99168,8 @@
         },
         "kind": {
           "default": "compute#wireGroup",
-          "description": "[Output Only] Type of the resource. Alwayscompute#wireGroups for wire groups.",
+          "description": "Output only. [Output Only] Type of the resource. Alwayscompute#wireGroups for wire groups.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -96784,10 +99181,11 @@
           "type": "string"
         },
         "unreachables": {
-          "description": "[Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
+          "description": "Output only. [Output Only] Unreachable resources.\nend_interface: MixerListResponseWithEtagBuilder",
           "items": {
             "type": "string"
           },
+          "readOnly": true,
           "type": "array"
         },
         "warning": {
@@ -96922,10 +99320,11 @@
       "id": "WireGroupTopology",
       "properties": {
         "endpoints": {
-          "description": "Topology details for all endpoints in the wire group.",
+          "description": "Output only. Topology details for all endpoints in the wire group.",
           "items": {
             "$ref": "WireGroupTopologyEndpoint"
           },
+          "readOnly": true,
           "type": "array"
         }
       },
@@ -96936,11 +99335,13 @@
       "id": "WireGroupTopologyEndpoint",
       "properties": {
         "city": {
-          "description": "The InterconnectLocation.city (metropolitan area designator) that all\ninterconnects are located in.",
+          "description": "Output only. The InterconnectLocation.city (metropolitan area designator) that all\ninterconnects are located in.",
+          "readOnly": true,
           "type": "string"
         },
         "label": {
-          "description": "Endpoint label from the wire group.",
+          "description": "Output only. Endpoint label from the wire group.",
+          "readOnly": true,
           "type": "string"
         }
       },
@@ -96998,7 +99399,8 @@
         },
         "kind": {
           "default": "compute#xpnHostList",
-          "description": "[Output Only] Type of resource. Always compute#xpnHostList for\nlists of shared VPC hosts.",
+          "description": "Output only. [Output Only] Type of resource. Always compute#xpnHostList for\nlists of shared VPC hosts.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -97006,7 +99408,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
@@ -97189,7 +99592,8 @@
         },
         "kind": {
           "default": "compute#zone",
-          "description": "[Output Only] Type of the resource. Always compute#zone for\nzones.",
+          "description": "Output only. [Output Only] Type of the resource. Always compute#zone for\nzones.",
+          "readOnly": true,
           "type": "string"
         },
         "name": {
@@ -97217,7 +99621,8 @@
           "type": "string"
         },
         "supportsPzs": {
-          "description": "[Output Only] Reserved for future use.",
+          "description": "Output only. [Output Only] Reserved for future use.",
+          "readOnly": true,
           "type": "boolean"
         }
       },
@@ -97240,7 +99645,8 @@
         },
         "kind": {
           "default": "compute#zoneList",
-          "description": "Type of resource.",
+          "description": "Output only. Type of resource.",
+          "readOnly": true,
           "type": "string"
         },
         "nextPageToken": {
@@ -97248,7 +99654,8 @@
           "type": "string"
         },
         "selfLink": {
-          "description": "[Output Only] Server-defined URL for this resource.",
+          "description": "Output only. [Output Only] Server-defined URL for this resource.",
+          "readOnly": true,
           "type": "string"
         },
         "warning": {
diff --git a/vendor/google.golang.org/api/compute/v1/compute-gen.go b/vendor/google.golang.org/api/compute/v1/compute-gen.go
index d436b84f7a..cb104ff176 100644
--- a/vendor/google.golang.org/api/compute/v1/compute-gen.go
+++ b/vendor/google.golang.org/api/compute/v1/compute-gen.go
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC.
+// Copyright 2026 Google LLC.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
@@ -148,6 +148,7 @@ func NewService(ctx context.Context, opts ...option.ClientOption) (*Service, err
 	s := &Service{client: client, BasePath: basePath, logger: internaloption.GetLogger(opts)}
 	s.AcceleratorTypes = NewAcceleratorTypesService(s)
 	s.Addresses = NewAddressesService(s)
+	s.Advice = NewAdviceService(s)
 	s.Autoscalers = NewAutoscalersService(s)
 	s.BackendBuckets = NewBackendBucketsService(s)
 	s.BackendServices = NewBackendServicesService(s)
@@ -284,6 +285,8 @@ type Service struct {
 
 	Addresses *AddressesService
 
+	Advice *AdviceService
+
 	Autoscalers *AutoscalersService
 
 	BackendBuckets *BackendBucketsService
@@ -526,6 +529,15 @@ type AddressesService struct {
 	s *Service
 }
 
+func NewAdviceService(s *Service) *AdviceService {
+	rs := &AdviceService{s: s}
+	return rs
+}
+
+type AdviceService struct {
+	s *Service
+}
+
 func NewAutoscalersService(s *Service) *AutoscalersService {
 	rs := &AutoscalersService{s: s}
 	return rs
@@ -1639,9 +1651,14 @@ type AcceleratorTopologiesInfoAcceleratorTopologyInfoInfoPerTopologyState struct
 	//
 	// Possible values:
 	//   "AVAILABLE" - The accelerator topology is available.
-	//   "RUNNING" - The accelerator topology is running.
+	//   "DEGRADED" - The accelerator topology is degraded. The underlying capacity
+	// is not in a
+	// healthy state and is not available.
+	//   "RUNNING" - The accelerator topology is running. If there are both running
+	// and
+	// degraded hosts within a topology, DEGRADED state will be returned.
 	//   "TOPOLOGY_STATE_UNSPECIFIED" - The state of the topology is unspecified.
-	//   "UNHEALTHY" - The accelerator topology is unhealthy.
+	//   "UNHEALTHY" - This value has been deprecated and is no longer used.
 	State string `json:"state,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Count") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -1680,16 +1697,16 @@ type AcceleratorType struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#acceleratorType
-	// for accelerator types.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#acceleratorType for accelerator types.
 	Kind string `json:"kind,omitempty"`
 	// MaximumCardsPerInstance: [Output Only] Maximum number of accelerator cards
 	// allowed per instance.
 	MaximumCardsPerInstance int64 `json:"maximumCardsPerInstance,omitempty"`
 	// Name: [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined, fully qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined, fully qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Zone: [Output Only] The name of the zone where the accelerator type
 	// resides,
@@ -1723,7 +1740,7 @@ type AcceleratorTypeAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of AcceleratorTypesScopedList resources.
 	Items map[string]AcceleratorTypesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#acceleratorTypeAggregatedList for aggregated lists
 	// of
 	// accelerator types.
@@ -1736,9 +1753,9 @@ type AcceleratorTypeAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *AcceleratorTypeAggregatedListWarning `json:"warning,omitempty"`
@@ -1909,8 +1926,8 @@ type AcceleratorTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of AcceleratorType resources.
 	Items []*AcceleratorType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#acceleratorTypeList for
-	// lists of accelerator types.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#acceleratorTypeList for lists of accelerator types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -1920,7 +1937,7 @@ type AcceleratorTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *AcceleratorTypeListWarning `json:"warning,omitempty"`
@@ -2269,8 +2286,8 @@ type AccessConfig struct {
 	// length of the
 	// external IPv6 range.
 	ExternalIpv6PrefixLength int64 `json:"externalIpv6PrefixLength,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#accessConfig for
-	// access configs.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#accessConfig for access configs.
 	Kind string `json:"kind,omitempty"`
 	// Name: The name of this access configuration. In accessConfigs
 	// (IPv4), the default and recommended name is External NAT, but
@@ -2384,17 +2401,37 @@ type Address struct {
 	// Balancer forwarding rule.
 	//   "UNSPECIFIED_TYPE"
 	AddressType string `json:"addressType,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this field
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
+	// IpCollection: Reference to the source of external IPv4 addresses,
+	// like a PublicDelegatedPrefix (PDP) for BYOIP.
+	// The PDP must support enhanced IPv4 allocations.
+	//
+	// Use one of the following formats to specify a PDP when reserving an
+	// external IPv4 address using BYOIP.
+	//
+	//    -
+	//    Full resource URL, as
+	// inhttps://www.googleapis.com/compute/v1/projects/projectId/regions/region/pub
+	// licDelegatedPrefixes/pdp-name
+	//    -
+	//    Partial URL, as in
+	//
+	//
+	//           -
+	// projects/projectId/regions/region/publicDelegatedPrefixes/pdp-name
+	//           - regions/region/publicDelegatedPrefixes/pdp-name
+	IpCollection string `json:"ipCollection,omitempty"`
 	// IpVersion: The IP version that will be used by this address. Valid options
 	// areIPV4 or IPV6.
 	//
@@ -2411,8 +2448,8 @@ type Address struct {
 	//   "NETLB" - Reserved IPv6 address can be used on network load balancer.
 	//   "VM" - Reserved IPv6 address can be used on VM.
 	Ipv6EndpointType string `json:"ipv6EndpointType,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#address
-	// for
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#address for
 	// addresses.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
@@ -2525,8 +2562,8 @@ type Address struct {
 	// Load Balancer forwarding rules.
 	//   "VPC_PEERING" - IP range for peer networks.
 	Purpose string `json:"purpose,omitempty"`
-	// Region: [Output Only] The URL of the region where a regional address
-	// resides.
+	// Region: Output only. [Output Only] The URL of the region where a regional
+	// address resides.
 	// For regional addresses, you must specify the region as a path parameter
 	// in
 	// the HTTP request URL. *This field is not applicable to global
@@ -2534,8 +2571,8 @@ type Address struct {
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Status: [Output Only] The status of the address, which can be one
-	// ofRESERVING, RESERVED, or IN_USE.
+	// Status: Output only. [Output Only] The status of the address, which can be
+	// one ofRESERVING, RESERVED, or IN_USE.
 	// An address that is RESERVING is currently in the process of
 	// being reserved. A RESERVED address is currently reserved and
 	// available to use. An IN_USE address is currently being used
@@ -2580,8 +2617,8 @@ type AddressAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of AddressesScopedList resources.
 	Items map[string]AddressesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#addressAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#addressAggregatedList for aggregated lists of
 	// addresses.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -2592,9 +2629,9 @@ type AddressAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *AddressAggregatedListWarning `json:"warning,omitempty"`
@@ -2764,7 +2801,8 @@ type AddressList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Address resources.
 	Items []*Address `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#addressList for
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#addressList for
 	// lists of addresses.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -2775,7 +2813,7 @@ type AddressList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *AddressListWarning `json:"warning,omitempty"`
@@ -3206,7 +3244,8 @@ func (s AliasIpRange) MarshalJSON() ([]byte, error) {
 // words,
 // one can create instances of varying shapes against this reservation.
 type AllocationAggregateReservation struct {
-	// InUseResources: [Output only] List of resources currently in use.
+	// InUseResources: Output only. [Output only] List of resources currently in
+	// use.
 	InUseResources []*AllocationAggregateReservationReservedResourceInfo `json:"inUseResources,omitempty"`
 	// ReservedResources: List of reserved resources (CPUs, memory, accelerators).
 	ReservedResources []*AllocationAggregateReservationReservedResourceInfo `json:"reservedResources,omitempty"`
@@ -3492,12 +3531,13 @@ func (s AllocationSpecificSKUAllocationReservedInstanceProperties) MarshalJSON()
 //
 //	configuration.
 type AllocationSpecificSKUReservation struct {
-	// AssuredCount: [Output Only] Indicates how many instances are actually usable
-	// currently.
+	// AssuredCount: Output only. [Output Only] Indicates how many instances are
+	// actually usable currently.
 	AssuredCount int64 `json:"assuredCount,omitempty,string"`
 	// Count: Specifies the number of resources that are allocated.
 	Count int64 `json:"count,omitempty,string"`
-	// InUseCount: [Output Only] Indicates how many instances are in use.
+	// InUseCount: Output only. [Output Only] Indicates how many instances are in
+	// use.
 	InUseCount int64 `json:"inUseCount,omitempty,string"`
 	// InstanceProperties: The instance properties for the reservation.
 	InstanceProperties *AllocationSpecificSKUAllocationReservedInstanceProperties `json:"instanceProperties,omitempty"`
@@ -3535,8 +3575,8 @@ func (s AllocationSpecificSKUReservation) MarshalJSON() ([]byte, error) {
 
 // AttachedDisk: An instance-attached disk resource.
 type AttachedDisk struct {
-	// Architecture: [Output Only] The architecture of the attached disk. Valid
-	// values are ARM64
+	// Architecture: Output only. [Output Only] The architecture of the attached
+	// disk. Valid values are ARM64
 	// or X86_64.
 	//
 	// Possible values:
@@ -3612,8 +3652,8 @@ type AttachedDisk struct {
 	// Enabling guest operating system features to see a list of available
 	// options.
 	GuestOsFeatures []*GuestOsFeature `json:"guestOsFeatures,omitempty"`
-	// Index: [Output Only] A zero-based index to this disk, where 0 is reserved
-	// for the
+	// Index: Output only. [Output Only] A zero-based index to this disk, where 0
+	// is reserved for the
 	// boot disk. If you have many disks attached to an instance, each
 	// disk would have a unique index number.
 	Index int64 `json:"index,omitempty"`
@@ -3639,10 +3679,10 @@ type AttachedDisk struct {
 	//   "NVME"
 	//   "SCSI"
 	Interface string `json:"interface,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#attachedDisk for
-	// attached disks.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#attachedDisk for attached disks.
 	Kind string `json:"kind,omitempty"`
-	// Licenses: [Output Only] Any valid publicly visible licenses.
+	// Licenses: Output only. [Output Only] Any valid publicly visible licenses.
 	Licenses []string `json:"licenses,omitempty"`
 	// Mode: The mode in which to attach this disk, either READ_WRITE orREAD_ONLY.
 	// If not specified, the default is to attach the disk
@@ -3656,8 +3696,8 @@ type AttachedDisk struct {
 	// one
 	// virtual machine at a time can be attached to a disk in read-write mode.
 	Mode string `json:"mode,omitempty"`
-	// SavedState: For LocalSSD disks on VM Instances in STOPPED or SUSPENDED
-	// state, this
+	// SavedState: Output only. For LocalSSD disks on VM Instances in STOPPED or
+	// SUSPENDED state, this
 	// field is set to PRESERVED if the LocalSSD data has been saved
 	// to a persistent location by customer request.  (see the
 	// discard_local_ssd option on Stop/Suspend).
@@ -3668,8 +3708,8 @@ type AttachedDisk struct {
 	// preserved.
 	//   "PRESERVED" - Disk state has been preserved.
 	SavedState string `json:"savedState,omitempty"`
-	// ShieldedInstanceInitialState: [Output Only] shielded vm initial state stored
-	// on disk
+	// ShieldedInstanceInitialState: Output only. [Output Only] shielded vm initial
+	// state stored on disk
 	ShieldedInstanceInitialState *InitialStateConfig `json:"shieldedInstanceInitialState,omitempty"`
 	// Source: Specifies a valid partial or full URL to an existing Persistent
 	// Disk
@@ -3819,9 +3859,13 @@ type AttachedDiskInitializeParams struct {
 	// ResourceManagerTags: Resource manager tags to be bound to the disk. Tag keys
 	// and values
 	// have the same definition as resource
-	// manager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and
-	// values are in the format `tagValues/456`. The field is ignored (both PUT
-	// & PATCH) when empty.
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT & PATCH)
+	// when
+	// empty.
 	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
 	// ResourcePolicies: Resource policies applied to this disk for automatic
 	// snapshot creations.
@@ -4086,18 +4130,20 @@ type Autoscaler struct {
 	// If none of these are specified, the default will be to autoscale based
 	// oncpuUtilization to 0.6 or 60%.
 	AutoscalingPolicy *AutoscalingPolicy `json:"autoscalingPolicy,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#autoscaler
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#autoscaler
 	// for autoscalers.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -4111,8 +4157,8 @@ type Autoscaler struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// RecommendedSize: [Output Only] Target recommended MIG size (number of
-	// instances) computed by
+	// RecommendedSize: Output only. [Output Only] Target recommended MIG size
+	// (number of instances) computed by
 	// autoscaler. Autoscaler calculates the recommended MIG size even when
 	// the
 	// autoscaling policy mode is different from ON. This field is empty
@@ -4121,12 +4167,12 @@ type Autoscaler struct {
 	// or
 	// autoscaler did not generate its prediction.
 	RecommendedSize int64 `json:"recommendedSize,omitempty"`
-	// Region: [Output Only] URL of theregion
+	// Region: Output only. [Output Only] URL of theregion
 	// where the instance group resides (for autoscalers living in regional
 	// scope).
 	Region string `json:"region,omitempty"`
-	// ScalingScheduleStatus: [Output Only] Status information of existing scaling
-	// schedules.
+	// ScalingScheduleStatus: Output only. [Output Only] Status information of
+	// existing scaling schedules.
 	ScalingScheduleStatus map[string]ScalingScheduleStatus `json:"scalingScheduleStatus,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
@@ -4165,7 +4211,7 @@ type Autoscaler struct {
 	// This
 	// field is required when creating an autoscaler.
 	Target string `json:"target,omitempty"`
-	// Zone: [Output Only] URL of thezone
+	// Zone: Output only. [Output Only] URL of thezone
 	// where the instance group resides (for autoscalers living in zonal scope).
 	Zone string `json:"zone,omitempty"`
 
@@ -4194,8 +4240,8 @@ type AutoscalerAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of AutoscalersScopedList resources.
 	Items map[string]AutoscalersScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#autoscalerAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#autoscalerAggregatedList for aggregated lists of
 	// autoscalers.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -4206,9 +4252,10 @@ type AutoscalerAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -4380,7 +4427,8 @@ type AutoscalerList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Autoscaler resources.
 	Items []*Autoscaler `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#autoscalerList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#autoscalerList
 	// for lists of autoscalers.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -4391,7 +4439,7 @@ type AutoscalerList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *AutoscalerListWarning `json:"warning,omitempty"`
@@ -5518,7 +5566,7 @@ type BackendBucket struct {
 	EnableCdn bool `json:"enableCdn,omitempty"`
 	// Id: [Output Only] Unique identifier for the resource; defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: Type of the resource.
+	// Kind: Output only. Type of the resource.
 	Kind string `json:"kind,omitempty"`
 	// LoadBalancingScheme: The value can only be INTERNAL_MANAGED for cross-region
 	// internal layer 7
@@ -5551,7 +5599,8 @@ type BackendBucket struct {
 	Params *BackendBucketParams `json:"params,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// UsedBy: [Output Only] List of resources referencing that backend bucket.
+	// UsedBy: Output only. [Output Only] List of resources referencing that
+	// backend bucket.
 	UsedBy []*BackendBucketUsedBy `json:"usedBy,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -5851,7 +5900,7 @@ type BackendBucketList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of BackendBucket resources.
 	Items []*BackendBucket `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -5861,7 +5910,7 @@ type BackendBucketList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *BackendBucketListWarning `json:"warning,omitempty"`
@@ -6059,8 +6108,8 @@ func (s BackendBucketParams) MarshalJSON() ([]byte, error) {
 }
 
 type BackendBucketUsedBy struct {
-	// Reference: [Output Only] Server-defined URL for UrlMaps referencing
-	// that
+	// Reference: Output only. [Output Only] Server-defined URL for UrlMaps
+	// referencing that
 	// BackendBucket.
 	Reference string `json:"reference,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Reference") to
@@ -6230,7 +6279,8 @@ type BackendService struct {
 	//    - A global backend service with the
 	//    load_balancing_scheme set to INTERNAL_SELF_MANAGED.
 	ConsistentHash *ConsistentHashLoadBalancerSettings `json:"consistentHash,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// CustomMetrics: List of custom metrics that are used for
@@ -6444,7 +6494,8 @@ type BackendService struct {
 	// address
 	// over its IPv4 address (provided there is a healthy IPv6 address).
 	IpAddressSelectionPolicy string `json:"ipAddressSelectionPolicy,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#backendService
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#backendService
 	// for backend services.
 	Kind string `json:"kind,omitempty"`
 	// LoadBalancingScheme: Specifies the load balancer type. A backend
@@ -6651,6 +6702,12 @@ type BackendService struct {
 	// toINTERNAL, or when the load balancing scheme is set toEXTERNAL and haPolicy
 	// fastIpMove is enabled.
 	Network string `json:"network,omitempty"`
+	// NetworkPassThroughLbTrafficPolicy: Configures traffic steering properties of
+	// internal passthrough Network
+	// Load Balancers.
+	//
+	// networkPassThroughLbTrafficPolicy cannot be specified with haPolicy.
+	NetworkPassThroughLbTrafficPolicy *BackendServiceNetworkPassThroughLbTrafficPolicy `json:"networkPassThroughLbTrafficPolicy,omitempty"`
 	// OutlierDetection: Settings controlling the ejection of unhealthy backend
 	// endpoints from the
 	// load balancing pool of each individual proxy instance that processes
@@ -6753,8 +6810,8 @@ type BackendService struct {
 	// can be used with
 	// any L3/L4 Forwarding Rules.
 	Protocol string `json:"protocol,omitempty"`
-	// Region: [Output Only] URL of the region where the regional backend
-	// service
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// backend service
 	// resides. This field is not applicable to global backend services.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
@@ -6866,7 +6923,8 @@ type BackendService struct {
 	// be specified
 	// when the backend protocol is SSL, HTTPS or HTTP2.
 	TlsSettings *BackendServiceTlsSettings `json:"tlsSettings,omitempty"`
-	// UsedBy: [Output Only] List of resources referencing given backend service.
+	// UsedBy: Output only. [Output Only] List of resources referencing given
+	// backend service.
 	UsedBy []*BackendServiceUsedBy `json:"usedBy,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -6909,7 +6967,7 @@ type BackendServiceAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of BackendServicesScopedList resources.
 	Items map[string]BackendServicesScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -6919,9 +6977,9 @@ type BackendServiceAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *BackendServiceAggregatedListWarning `json:"warning,omitempty"`
@@ -7568,7 +7626,7 @@ type BackendServiceGroupHealth struct {
 	// requested instance or
 	// network endpoint group, determined based on configured health checks.
 	HealthStatus []*HealthStatus `json:"healthStatus,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#backendServiceGroupHealth for the health of backend
 	// services.
 	Kind string `json:"kind,omitempty"`
@@ -7819,8 +7877,8 @@ type BackendServiceIAP struct {
 	//
 	// @InputOnly
 	Oauth2ClientSecret string `json:"oauth2ClientSecret,omitempty"`
-	// Oauth2ClientSecretSha256: [Output Only] SHA256 hash value for the field
-	// oauth2_client_secret above.
+	// Oauth2ClientSecretSha256: Output only. [Output Only] SHA256 hash value for
+	// the field oauth2_client_secret above.
 	Oauth2ClientSecretSha256 string `json:"oauth2ClientSecretSha256,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Enabled") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -7846,8 +7904,8 @@ type BackendServiceList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of BackendService resources.
 	Items []*BackendService `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#backendServiceList for
-	// lists of backend services.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#backendServiceList for lists of backend services.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -7857,7 +7915,7 @@ type BackendServiceList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *BackendServiceListWarning `json:"warning,omitempty"`
@@ -8028,8 +8086,8 @@ type BackendServiceListUsable struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of BackendService resources.
 	Items []*BackendService `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#usableBackendServiceList
-	// for lists of usable backend
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#usableBackendServiceList for lists of usable backend
 	// services.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -8040,7 +8098,7 @@ type BackendServiceListUsable struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *BackendServiceListUsableWarning `json:"warning,omitempty"`
@@ -8423,6 +8481,98 @@ func (s *BackendServiceLogConfig) UnmarshalJSON(data []byte) error {
 	return nil
 }
 
+type BackendServiceNetworkPassThroughLbTrafficPolicy struct {
+	// ZonalAffinity: When configured, new connections are load balanced across
+	// healthy backend
+	// endpoints in the local zone.
+	ZonalAffinity *BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity `json:"zonalAffinity,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "ZonalAffinity") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "ZonalAffinity") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s BackendServiceNetworkPassThroughLbTrafficPolicy) MarshalJSON() ([]byte, error) {
+	type NoMethod BackendServiceNetworkPassThroughLbTrafficPolicy
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+type BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity struct {
+	// Spillover: This field indicates whether zonal affinity is enabled or not.
+	// The
+	// possible values are:
+	//
+	//    - ZONAL_AFFINITY_DISABLED: Default Value. Zonal Affinity
+	//    is disabled. The load balancer distributes new connections to all
+	//    healthy backend endpoints across all zones.
+	//    - ZONAL_AFFINITY_STAY_WITHIN_ZONE: Zonal Affinity is
+	//    enabled. The load balancer distributes new connections to all healthy
+	//    backend endpoints in the local zone only. If there are no healthy
+	//    backend endpoints in the local zone, the load balancer distributes
+	//    new connections to all backend endpoints in the local zone.
+	//    - ZONAL_AFFINITY_SPILL_CROSS_ZONE: Zonal Affinity is
+	//    enabled. The load balancer distributes new connections to all healthy
+	//    backend endpoints in the local zone only. If there aren't enough
+	//    healthy backend endpoints in the local zone, the load balancer
+	//    distributes new connections to all healthy backend endpoints across all
+	//    zones.
+	//
+	// Possible values:
+	//   "ZONAL_AFFINITY_DISABLED"
+	//   "ZONAL_AFFINITY_SPILL_CROSS_ZONE"
+	//   "ZONAL_AFFINITY_STAY_WITHIN_ZONE"
+	Spillover string `json:"spillover,omitempty"`
+	// SpilloverRatio: The value of the field must be in [0, 1]. When the ratio of
+	// the count
+	// of healthy backend endpoints in a zone to the count of backend
+	// endpoints in that same zone is equal to or above this threshold, the
+	// load balancer distributes new connections to all healthy endpoints in
+	// the local zone only. When the ratio of the count of healthy
+	// backend
+	// endpoints in a zone to the count of backend endpoints in that same
+	// zone is below this threshold, the load balancer distributes all
+	// new
+	// connections to all healthy endpoints across all zones.
+	SpilloverRatio float64 `json:"spilloverRatio,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "Spillover") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Spillover") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity) MarshalJSON() ([]byte, error) {
+	type NoMethod BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+func (s *BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity) UnmarshalJSON(data []byte) error {
+	type NoMethod BackendServiceNetworkPassThroughLbTrafficPolicyZonalAffinity
+	var s1 struct {
+		SpilloverRatio gensupport.JSONFloat64 `json:"spilloverRatio"`
+		*NoMethod
+	}
+	s1.NoMethod = (*NoMethod)(s)
+	if err := json.Unmarshal(data, &s1); err != nil {
+		return err
+	}
+	s.SpilloverRatio = float64(s1.SpilloverRatio)
+	return nil
+}
+
 // BackendServiceParams: Additional Backend Service parameters.
 type BackendServiceParams struct {
 	// ResourceManagerTags: Tag keys/values directly bound to this resource.
@@ -8556,8 +8706,8 @@ func (s BackendServiceTlsSettingsSubjectAltName) MarshalJSON() ([]byte, error) {
 }
 
 type BackendServiceUsedBy struct {
-	// Reference: [Output Only] Server-defined URL for resources referencing
-	// given
+	// Reference: Output only. [Output Only] Server-defined URL for resources
+	// referencing given
 	// BackendService like UrlMaps, TargetTcpProxies, TargetSslProxies
 	// and ForwardingRule.
 	Reference string `json:"reference,omitempty"`
@@ -8963,17 +9113,18 @@ func (s BfdStatusPacketCounts) MarshalJSON() ([]byte, error) {
 }
 
 type BgpRoute struct {
-	// AsPaths: [Output only] AS-PATH for the route
+	// AsPaths: Output only. [Output only] AS-PATH for the route
 	AsPaths []*BgpRouteAsPath `json:"asPaths,omitempty"`
-	// Communities: [Output only] BGP communities in human-readable A:B format.
+	// Communities: Output only. [Output only] BGP communities in human-readable
+	// A:B format.
 	Communities []string `json:"communities,omitempty"`
-	// Destination: [Output only] Destination IP range for the route, in
-	// human-readable CIDR
+	// Destination: Output only. [Output only] Destination IP range for the route,
+	// in human-readable CIDR
 	// format
 	Destination *BgpRouteNetworkLayerReachabilityInformation `json:"destination,omitempty"`
-	// Med: [Output only] BGP multi-exit discriminator
+	// Med: Output only. [Output only] BGP multi-exit discriminator
 	Med int64 `json:"med,omitempty"`
-	// Origin: [Output only] BGP origin (EGP, IGP or INCOMPLETE)
+	// Origin: Output only. [Output only] BGP origin (EGP, IGP or INCOMPLETE)
 	//
 	// Possible values:
 	//   "BGP_ORIGIN_EGP"
@@ -8999,17 +9150,17 @@ func (s BgpRoute) MarshalJSON() ([]byte, error) {
 }
 
 type BgpRouteAsPath struct {
-	// Asns: [Output only] ASNs in the path segment. When type is SEQUENCE, these
-	// are
+	// Asns: Output only. [Output only] ASNs in the path segment. When type is
+	// SEQUENCE, these are
 	// ordered.
 	Asns []int64 `json:"asns,omitempty"`
-	// Asns32: [Output only] ASNs in the path segment. This field is for
-	// better
+	// Asns32: Output only. [Output only] ASNs in the path segment. This field is
+	// for better
 	// support of 32 bit ASNs as the other asns field suffers from overflow
 	// when
 	// the ASN is larger. When type is SEQUENCE, these are ordered.
 	Asns32 []int64 `json:"asns32,omitempty"`
-	// Type: [Output only] Type of AS-PATH segment (SEQUENCE or SET)
+	// Type: Output only. [Output only] Type of AS-PATH segment (SEQUENCE or SET)
 	//
 	// Possible values:
 	//   "AS_PATH_TYPE_SEQUENCE"
@@ -9340,7 +9491,8 @@ type BulkInsertInstanceResourcePerInstanceProperties struct {
 	// in:
 	// https://cloud.google.com/compute/docs/instances/custom-hostname-vm#naming_convention
 	Hostname string `json:"hostname,omitempty"`
-	// Name: This field is only temporary. It will be removed. Do not use it.
+	// Name: Output only. This field is only temporary. It will be removed. Do not
+	// use it.
 	Name string `json:"name,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Hostname") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -9545,6 +9697,95 @@ func (s CacheKeyPolicy) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// CalendarModeAdviceRequest: A request to recommend the best way to consume
+// the specified resources in the
+// future.
+type CalendarModeAdviceRequest struct {
+	// FutureResourcesSpecs: Specification of resources to create in the
+	// future.
+	// The key of the map is an arbitrary string specified by the caller.
+	// Value of the map is a specification of required resources and
+	// their
+	// constraints. Currently only one value is allowed in this map.
+	FutureResourcesSpecs map[string]FutureResourcesSpec `json:"futureResourcesSpecs,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "FutureResourcesSpecs") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "FutureResourcesSpecs") to include
+	// in API requests with the JSON null value. By default, fields with empty
+	// values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s CalendarModeAdviceRequest) MarshalJSON() ([]byte, error) {
+	type NoMethod CalendarModeAdviceRequest
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// CalendarModeAdviceResponse: A response containing the recommended way of
+// creating the specified resources
+// in the future. It contains (will contain) multiple recommendations that
+// can
+// be analyzed by the customer and the best one can be picked.
+type CalendarModeAdviceResponse struct {
+	// Recommendations: Recommendations where, how and when to create the requested
+	// resources
+	// in order to maximize their obtainability and minimize cost.
+	Recommendations []*CalendarModeRecommendation `json:"recommendations,omitempty"`
+
+	// ServerResponse contains the HTTP response code and headers from the server.
+	googleapi.ServerResponse `json:"-"`
+	// ForceSendFields is a list of field names (e.g. "Recommendations") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Recommendations") to include in
+	// API requests with the JSON null value. By default, fields with empty values
+	// are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s CalendarModeAdviceResponse) MarshalJSON() ([]byte, error) {
+	type NoMethod CalendarModeAdviceResponse
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// CalendarModeRecommendation: A single recommendation to create requested
+// resources. Contains detailed
+// recommendations for every future resources specification specified
+// in
+// CalendarModeAdviceRequest.
+type CalendarModeRecommendation struct {
+	// RecommendationsPerSpec: Recommendations for every future resource
+	// specification passed in
+	// CalendarModeAdviceRequest. Keys of the map correspond to keys
+	// specified in the request.
+	RecommendationsPerSpec map[string]FutureResourcesRecommendation `json:"recommendationsPerSpec,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "RecommendationsPerSpec") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "RecommendationsPerSpec") to
+	// include in API requests with the JSON null value. By default, fields with
+	// empty values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s CalendarModeRecommendation) MarshalJSON() ([]byte, error) {
+	type NoMethod CalendarModeRecommendation
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 // CircuitBreakers: Settings controlling the volume of requests, connections
 // and retries to this
 // backend service.
@@ -9644,7 +9885,8 @@ type Commitment struct {
 	//   "LICENSE"
 	//   "MACHINE"
 	Category string `json:"category,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// CustomEndTimestamp: [Input Only] Optional, specifies the requested
@@ -9656,15 +9898,16 @@ type Commitment struct {
 	// property
 	// when you create the resource.
 	Description string `json:"description,omitempty"`
-	// EndTimestamp: [Output Only] Commitment end time inRFC3339
+	// EndTimestamp: Output only. [Output Only] Commitment end time inRFC3339
 	// text format.
 	EndTimestamp         string   `json:"endTimestamp,omitempty"`
 	ExistingReservations []string `json:"existingReservations,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#commitment
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#commitment
 	// for commitments.
 	Kind string `json:"kind,omitempty"`
 	// LicenseResource: The license specification required as part of a license
@@ -9702,8 +9945,8 @@ type Commitment struct {
 	//   "THIRTY_SIX_MONTH"
 	//   "TWELVE_MONTH"
 	Plan string `json:"plan,omitempty"`
-	// Region: [Output Only] URL of the region where the commitment and
-	// committed
+	// Region: Output only. [Output Only] URL of the region where the commitment
+	// and committed
 	// resources are located.
 	Region string `json:"region,omitempty"`
 	// Reservations: The list of new reservations that you want to create and
@@ -9718,7 +9961,8 @@ type Commitment struct {
 	// reservations to attach. To attach existing reservations, specify
 	// theexistingReservations property instead.
 	Reservations []*Reservation `json:"reservations,omitempty"`
-	// ResourceStatus: [Output Only] Status information for Commitment resource.
+	// ResourceStatus: Output only. [Output Only] Status information for Commitment
+	// resource.
 	ResourceStatus *CommitmentResourceStatus `json:"resourceStatus,omitempty"`
 	// Resources: The list of all the hardware resources, with their types and
 	// amounts, that
@@ -9726,18 +9970,19 @@ type Commitment struct {
 	// each
 	// individual resource type.
 	Resources []*ResourceCommitment `json:"resources,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SplitSourceCommitment: The source commitment from which you are transferring
 	// resources to create
 	// the new split commitment. For more information, see
 	// Split commitments.
 	SplitSourceCommitment string `json:"splitSourceCommitment,omitempty"`
-	// StartTimestamp: [Output Only] Commitment start time inRFC3339
+	// StartTimestamp: Output only. [Output Only] Commitment start time
+	// inRFC3339
 	// text format.
 	StartTimestamp string `json:"startTimestamp,omitempty"`
-	// Status: [Output Only] Status of the commitment with regards to eventual
-	// expiration
+	// Status: Output only. [Output Only] Status of the commitment with regards to
+	// eventual expiration
 	// (each commitment has an end date defined). Status can be one of
 	// the
 	// following values: NOT_YET_ACTIVE, ACTIVE, orEXPIRED.
@@ -9751,8 +9996,8 @@ type Commitment struct {
 	//   "EXPIRED"
 	//   "NOT_YET_ACTIVE"
 	Status string `json:"status,omitempty"`
-	// StatusMessage: [Output Only] An optional, human-readable explanation of the
-	// status.
+	// StatusMessage: Output only. [Output Only] An optional, human-readable
+	// explanation of the status.
 	StatusMessage string `json:"statusMessage,omitempty"`
 	// Type: The type of commitment; specifies the
 	// machine series for which you want to commit to purchasing resources.
@@ -9767,15 +10012,13 @@ type Commitment struct {
 	// GENERAL_PURPOSE,GENERAL_PURPOSE_C4, GENERAL_PURPOSE_E2,GENERAL_PURPOSE_N2,
 	// GENERAL_PURPOSE_N2D,GENERAL_PURPOSE_N4,
 	// GENERAL_PURPOSE_T2D,GRAPHICS_OPTIMIZED,
-	// MEMORY_OPTIMIZED,MEMORY_OPTIMIZED_M3,
-	// MEMORY_OPTIMIZED_X4,STORAGE_OPTIMIZED_Z3.
-	// For example, type MEMORY_OPTIMIZED specifies a commitment
-	// that applies only to eligible resources of memory optimized M1 and
-	// M2
-	// machine series. Type GENERAL_PURPOSE specifies a commitment
-	// that applies only to eligible resources of general purpose N1
+	// GRAPHICS_OPTIMIZED_G4,MEMORY_OPTIMIZED,
+	// MEMORY_OPTIMIZED_M3,MEMORY_OPTIMIZED_X4, STORAGE_OPTIMIZED_Z3. For
+	// example, type MEMORY_OPTIMIZED specifies a commitment that
+	// applies only to eligible resources of memory optimized M1 and M2
 	// machine
-	// series.
+	// series. Type GENERAL_PURPOSE specifies a commitment that
+	// applies only to eligible resources of general purpose N1 machine series.
 	//
 	// Possible values:
 	//   "ACCELERATOR_OPTIMIZED"
@@ -9800,13 +10043,26 @@ type Commitment struct {
 	//   "GENERAL_PURPOSE_N4D"
 	//   "GENERAL_PURPOSE_T2D"
 	//   "GRAPHICS_OPTIMIZED"
+	//   "GRAPHICS_OPTIMIZED_G4"
 	//   "MEMORY_OPTIMIZED"
 	//   "MEMORY_OPTIMIZED_M3"
 	//   "MEMORY_OPTIMIZED_M4"
 	//   "MEMORY_OPTIMIZED_M4_6TB"
+	//   "MEMORY_OPTIMIZED_X4_1440_24T" - CUD bucket for X4 machine with 1440 vCPUs
+	// and 24TB of memory.
 	//   "MEMORY_OPTIMIZED_X4_16TB"
+	//   "MEMORY_OPTIMIZED_X4_1920_32T" - CUD bucket for X4 machine with 1920 vCPUs
+	// and 32TB of memory.
 	//   "MEMORY_OPTIMIZED_X4_24TB"
 	//   "MEMORY_OPTIMIZED_X4_32TB"
+	//   "MEMORY_OPTIMIZED_X4_480_6T" - CUD bucket for X4 machine with 480 vCPUs
+	// and 6TB of memory.
+	//   "MEMORY_OPTIMIZED_X4_480_8T" - CUD bucket for X4 machine with 480 vCPUs
+	// and 8TB of memory.
+	//   "MEMORY_OPTIMIZED_X4_960_12T" - CUD bucket for X4 machine with 960 vCPUs
+	// and 12TB of memory.
+	//   "MEMORY_OPTIMIZED_X4_960_16T" - CUD bucket for X4 machine with 960 vCPUs
+	// and 16TB of memory.
 	//   "STORAGE_OPTIMIZED_Z3"
 	//   "TYPE_UNSPECIFIED" - Note for internal users: When adding a new enum Type
 	// for v1, make sure
@@ -9839,8 +10095,8 @@ type CommitmentAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of CommitmentsScopedList resources.
 	Items map[string]CommitmentsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#commitmentAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#commitmentAggregatedList for aggregated lists of
 	// commitments.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -9851,9 +10107,9 @@ type CommitmentAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *CommitmentAggregatedListWarning `json:"warning,omitempty"`
@@ -10024,7 +10280,8 @@ type CommitmentList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Commitment resources.
 	Items []*Commitment `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#commitmentList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#commitmentList
 	// for lists of commitments.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -10035,7 +10292,7 @@ type CommitmentList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *CommitmentListWarning `json:"warning,omitempty"`
@@ -10201,8 +10458,8 @@ func (s CommitmentListWarningData) MarshalJSON() ([]byte, error) {
 
 // CommitmentResourceStatus: [Output Only] Contains output only fields.
 type CommitmentResourceStatus struct {
-	// CustomTermEligibilityEndTimestamp: [Output Only] Indicates the end time of
-	// customer's eligibility to send
+	// CustomTermEligibilityEndTimestamp: Output only. [Output Only] Indicates the
+	// end time of customer's eligibility to send
 	// custom term requests in RFC3339 text format. Term extension requests
 	// that
 	// (not the end time in the request) after this time will be rejected.
@@ -10599,17 +10856,18 @@ func (s CorsPolicy) MarshalJSON() ([]byte, error) {
 // You can use cross-site networks to connect your on-premises networks to
 // each other through Interconnect connections.
 type CrossSiteNetwork struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of the cross-site network.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for
-	// cross-site networks.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#crossSiteNetwork for cross-site networks.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -10622,7 +10880,7 @@ type CrossSiteNetwork struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -10653,8 +10911,8 @@ type CrossSiteNetworkList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of CrossSiteNetwork resources.
 	Items []*CrossSiteNetwork `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#crossSiteNetwork for
-	// cross-site networks.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#crossSiteNetwork for cross-site networks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -10666,7 +10924,8 @@ type CrossSiteNetworkList struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -11234,10 +11493,11 @@ type Disk struct {
 	Architecture string `json:"architecture,omitempty"`
 	// AsyncPrimaryDisk: Disk asynchronously replicated into this disk.
 	AsyncPrimaryDisk *DiskAsyncReplication `json:"asyncPrimaryDisk,omitempty"`
-	// AsyncSecondaryDisks: [Output Only] A list of disks this disk is
+	// AsyncSecondaryDisks: Output only. [Output Only] A list of disks this disk is
 	// asynchronously replicated to.
 	AsyncSecondaryDisks map[string]DiskAsyncReplicationList `json:"asyncSecondaryDisks,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -11286,11 +11546,12 @@ type Disk struct {
 	// Enabling guest operating system features to see a list of available
 	// options.
 	GuestOsFeatures []*GuestOsFeature `json:"guestOsFeatures,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#disk for
+	// Kind: Output only. [Output Only] Type of the resource. Always compute#disk
+	// for
 	// disks.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this disk,
@@ -11309,10 +11570,12 @@ type Disk struct {
 	// Labels: Labels to apply to this disk. These can be later modified by
 	// the setLabels method.
 	Labels map[string]string `json:"labels,omitempty"`
-	// LastAttachTimestamp: [Output Only] Last attach timestamp inRFC3339
+	// LastAttachTimestamp: Output only. [Output Only] Last attach timestamp
+	// inRFC3339
 	// text format.
 	LastAttachTimestamp string `json:"lastAttachTimestamp,omitempty"`
-	// LastDetachTimestamp: [Output Only] Last detach timestamp inRFC3339
+	// LastDetachTimestamp: Output only. [Output Only] Last detach timestamp
+	// inRFC3339
 	// text format.
 	LastDetachTimestamp string `json:"lastDetachTimestamp,omitempty"`
 	// LicenseCodes: Integer license codes indicating which licenses are attached
@@ -11362,8 +11625,8 @@ type Disk struct {
 	// be
 	// greater than or equal to 1.
 	ProvisionedThroughput int64 `json:"provisionedThroughput,omitempty,string"`
-	// Region: [Output Only] URL of the region where the disk resides. Only
-	// applicable for
+	// Region: Output only. [Output Only] URL of the region where the disk resides.
+	// Only applicable for
 	// regional resources.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
@@ -11375,14 +11638,15 @@ type Disk struct {
 	// ResourcePolicies: Resource policies applied to this disk for automatic
 	// snapshot creations.
 	ResourcePolicies []string `json:"resourcePolicies,omitempty"`
-	// ResourceStatus: [Output Only] Status information for the disk resource.
+	// ResourceStatus: Output only. [Output Only] Status information for the disk
+	// resource.
 	ResourceStatus *DiskResourceStatus `json:"resourceStatus,omitempty"`
 	// SatisfiesPzi: Output only. Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SizeGb: Size, in GB, of the persistent disk. You can specify
 	// this field when creating a persistent disk using thesourceImage,
@@ -11395,11 +11659,11 @@ type Disk struct {
 	// source.
 	// Acceptable values are greater than 0.
 	SizeGb int64 `json:"sizeGb,omitempty,string"`
-	// SourceConsistencyGroupPolicy: [Output Only] URL of the
+	// SourceConsistencyGroupPolicy: Output only. [Output Only] URL of the
 	// DiskConsistencyGroupPolicy for a secondary disk
 	// that was created using a consistency group.
 	SourceConsistencyGroupPolicy string `json:"sourceConsistencyGroupPolicy,omitempty"`
-	// SourceConsistencyGroupPolicyId: [Output Only] ID of the
+	// SourceConsistencyGroupPolicyId: Output only. [Output Only] ID of the
 	// DiskConsistencyGroupPolicy for a secondary disk
 	// that was created using a consistency group.
 	SourceConsistencyGroupPolicyId string `json:"sourceConsistencyGroupPolicyId,omitempty"`
@@ -11430,8 +11694,8 @@ type Disk struct {
 	//      -
 	//        regions/region/disks/disk
 	SourceDisk string `json:"sourceDisk,omitempty"`
-	// SourceDiskId: [Output Only] The unique ID of the disk used to create this
-	// disk. This
+	// SourceDiskId: Output only. [Output Only] The unique ID of the disk used to
+	// create this disk. This
 	// value identifies the exact disk that was used to create this
 	// persistent
 	// disk. For example, if you created the persistent disk from a disk that
@@ -11474,8 +11738,8 @@ type Disk struct {
 	// is
 	// protected by a customer-supplied encryption key.
 	SourceImageEncryptionKey *CustomerEncryptionKey `json:"sourceImageEncryptionKey,omitempty"`
-	// SourceImageId: [Output Only] The ID value of the image used to create this
-	// disk. This
+	// SourceImageId: Output only. [Output Only] The ID value of the image used to
+	// create this disk. This
 	// value identifies the exact image that was used to create this
 	// persistent
 	// disk. For example, if you created the persistent disk from an image that
@@ -11495,8 +11759,8 @@ type Disk struct {
 	//      - projects/project/zones/zone/instantSnapshots/instantSnapshot
 	//    - zones/zone/instantSnapshots/instantSnapshot
 	SourceInstantSnapshot string `json:"sourceInstantSnapshot,omitempty"`
-	// SourceInstantSnapshotId: [Output Only] The unique ID of the instant snapshot
-	// used to create this
+	// SourceInstantSnapshotId: Output only. [Output Only] The unique ID of the
+	// instant snapshot used to create this
 	// disk. This value identifies the exact instant snapshot that was used
 	// to
 	// create this persistent disk. For example, if you created the persistent
@@ -11522,8 +11786,8 @@ type Disk struct {
 	// encryption key of the source snapshot. Required if the source snapshot
 	// is protected by a customer-supplied encryption key.
 	SourceSnapshotEncryptionKey *CustomerEncryptionKey `json:"sourceSnapshotEncryptionKey,omitempty"`
-	// SourceSnapshotId: [Output Only] The unique ID of the snapshot used to create
-	// this disk. This
+	// SourceSnapshotId: Output only. [Output Only] The unique ID of the snapshot
+	// used to create this disk. This
 	// value identifies the exact snapshot that was used to create this
 	// persistent
 	// disk. For example, if you created the persistent disk from a snapshot
@@ -11545,7 +11809,7 @@ type Disk struct {
 	// source storage object, use gcloud compute images
 	// import instead.
 	SourceStorageObject string `json:"sourceStorageObject,omitempty"`
-	// Status: [Output Only] The status of disk creation.
+	// Status: Output only. [Output Only] The status of disk creation.
 	//
 	//
 	//      - CREATING: Disk is provisioning.
@@ -11584,10 +11848,11 @@ type Disk struct {
 	// disk
 	// types.
 	Type string `json:"type,omitempty"`
-	// Users: [Output Only] Links to the users of the disk (attached instances)
+	// Users: Output only. [Output Only] Links to the users of the disk (attached
+	// instances)
 	// in form:projects/project/zones/zone/instances/instance
 	Users []string `json:"users,omitempty"`
-	// Zone: [Output Only] URL of the zone where the disk resides.
+	// Zone: Output only. [Output Only] URL of the zone where the disk resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Zone string `json:"zone,omitempty"`
@@ -11617,8 +11882,8 @@ type DiskAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of DisksScopedList resources.
 	Items map[string]DisksScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#diskAggregatedList for
-	// aggregated lists of persistent
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#diskAggregatedList for aggregated lists of persistent
 	// disks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -11629,9 +11894,9 @@ type DiskAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *DiskAggregatedListWarning `json:"warning,omitempty"`
@@ -11796,12 +12061,12 @@ func (s DiskAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type DiskAsyncReplication struct {
-	// ConsistencyGroupPolicy: [Output Only] URL of the DiskConsistencyGroupPolicy
-	// if replication was
+	// ConsistencyGroupPolicy: Output only. [Output Only] URL of the
+	// DiskConsistencyGroupPolicy if replication was
 	// started on the disk as a member of a group.
 	ConsistencyGroupPolicy string `json:"consistencyGroupPolicy,omitempty"`
-	// ConsistencyGroupPolicyId: [Output Only] ID of the DiskConsistencyGroupPolicy
-	// if replication was
+	// ConsistencyGroupPolicyId: Output only. [Output Only] ID of the
+	// DiskConsistencyGroupPolicy if replication was
 	// started on the disk as a member of a group.
 	ConsistencyGroupPolicyId string `json:"consistencyGroupPolicyId,omitempty"`
 	// Disk: The other disk asynchronously replicated to or from the current
@@ -11816,8 +12081,8 @@ type DiskAsyncReplication struct {
 	//    - projects/project/zones/zone/disks/disk
 	//    - zones/zone/disks/disk
 	Disk string `json:"disk,omitempty"`
-	// DiskId: [Output Only] The unique ID of the other disk asynchronously
-	// replicated
+	// DiskId: Output only. [Output Only] The unique ID of the other disk
+	// asynchronously replicated
 	// to or from the current disk. This value identifies the exact disk that
 	// was used to create this replication. For example, if you started
 	// replicating the persistent disk from a disk that was later deleted
@@ -11958,7 +12223,8 @@ type DiskList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Disk resources.
 	Items []*Disk `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#diskList for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#diskList
+	// for
 	// lists of disks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -11969,7 +12235,7 @@ type DiskList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *DiskListWarning `json:"warning,omitempty"`
@@ -12175,9 +12441,11 @@ type DiskParams struct {
 	// ResourceManagerTags: Resource manager tags to be bound to the disk. Tag keys
 	// and values
 	// have the same definition as resource
-	// manager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and
-	// values are in the format `tagValues/456`. The field is ignored (both PUT
-	// &
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
 	// PATCH) when empty.
 	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ResourceManagerTags") to
@@ -12280,7 +12548,8 @@ type DiskType struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#diskType
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#diskType
 	// for disk types.
 	Kind string `json:"kind,omitempty"`
 	// Name: [Output Only] Name of the resource.
@@ -12327,7 +12596,8 @@ type DiskTypeAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of DiskTypesScopedList resources.
 	Items map[string]DiskTypesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#diskTypeAggregatedList.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#diskTypeAggregatedList.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -12337,9 +12607,9 @@ type DiskTypeAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *DiskTypeAggregatedListWarning `json:"warning,omitempty"`
@@ -12509,7 +12779,8 @@ type DiskTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of DiskType resources.
 	Items []*DiskType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#diskTypeList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#diskTypeList
 	// for disk types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -12520,7 +12791,7 @@ type DiskTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *DiskTypeListWarning `json:"warning,omitempty"`
@@ -13431,7 +13702,7 @@ type ExchangedPeeringRoutesList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ExchangedPeeringRoute resources.
 	Items []*ExchangedPeeringRoute `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#exchangedPeeringRoutesList for exchanged peering
 	// routes lists.
 	Kind string `json:"kind,omitempty"`
@@ -13443,7 +13714,7 @@ type ExchangedPeeringRoutesList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ExchangedPeeringRoutesListWarning `json:"warning,omitempty"`
@@ -13701,15 +13972,16 @@ func (s Expr) MarshalJSON() ([]byte, error) {
 // For more information about using external VPN gateways, see
 // Creating an HA VPN gateway and tunnel pair to a peer VPN.
 type ExternalVpnGateway struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id *uint64 `json:"id,omitempty,string"`
 	// Interfaces: A list of interfaces for this external VPN gateway.
@@ -13722,8 +13994,8 @@ type ExternalVpnGateway struct {
 	// four
 	// interfaces should be provided for an external VPN gateway.
 	Interfaces []*ExternalVpnGatewayInterface `json:"interfaces,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#externalVpnGateway
-	// for externalVpnGateways.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#externalVpnGateway for externalVpnGateways.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// ExternalVpnGateway,
@@ -13790,7 +14062,7 @@ type ExternalVpnGateway struct {
 	// (2) A single on-premise gateway with two public IP addresses that are
 	//     redundant with eatch other.
 	RedundancyType string `json:"redundancyType,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -13868,8 +14140,8 @@ type ExternalVpnGatewayList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ExternalVpnGateway resources.
 	Items []*ExternalVpnGateway `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#externalVpnGatewayList
-	// for lists of externalVpnGateways.
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#externalVpnGatewayList for lists of externalVpnGateways.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -13879,7 +14151,7 @@ type ExternalVpnGatewayList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ExternalVpnGatewayListWarning `json:"warning,omitempty"`
@@ -14081,7 +14353,8 @@ type Firewall struct {
 	// specifies a
 	// protocol and port-range tuple that describes a permitted connection.
 	Allowed []*FirewallAllowed `json:"allowed,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Denied: The list of DENY rules specified by this firewall. Each rule
@@ -14113,11 +14386,12 @@ type Firewall struct {
 	// not
 	// exist. If this is unspecified, the firewall rule will be enabled.
 	Disabled bool `json:"disabled,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#firewall
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#firewall
 	// for firewall rules.
 	Kind string `json:"kind,omitempty"`
 	// LogConfig: This field denotes the logging options for a particular firewall
@@ -14336,7 +14610,8 @@ type FirewallList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Firewall resources.
 	Items []*Firewall `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#firewallList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#firewallList
 	// for lists of firewalls.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -14347,7 +14622,7 @@ type FirewallList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *FirewallListWarning `json:"warning,omitempty"`
@@ -14580,7 +14855,7 @@ func (s FirewallParams) MarshalJSON() ([]byte, error) {
 type FirewallPoliciesListAssociationsResponse struct {
 	// Associations: A list of associations.
 	Associations []*FirewallPolicyAssociation `json:"associations,omitempty"`
-	// Kind: [Output Only] Type of firewallPolicy associations.
+	// Kind: Output only. [Output Only] Type of firewallPolicy associations.
 	// Alwayscompute#FirewallPoliciesListAssociations for lists of
 	// firewallPolicy associations.
 	Kind string `json:"kind,omitempty"`
@@ -14775,7 +15050,8 @@ func (s FirewallPoliciesScopedListWarningData) MarshalJSON() ([]byte, error) {
 type FirewallPolicy struct {
 	// Associations: A list of associations that belong to this firewall policy.
 	Associations []*FirewallPolicyAssociation `json:"associations,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -14815,8 +15091,8 @@ type FirewallPolicy struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] Type of the resource. Alwayscompute#firewallPolicyfor
-	// firewall policies
+	// Kind: Output only. [Output only] Type of the resource.
+	// Alwayscompute#firewallPolicyfor firewall policies
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. For Organization Firewall Policies it's
 	// a
@@ -14826,7 +15102,7 @@ type FirewallPolicy struct {
 	// PacketMirroringRules: A list of packet mirroring rules that belong to this
 	// policy.
 	PacketMirroringRules []*FirewallPolicyRule `json:"packetMirroringRules,omitempty"`
-	// Parent: [Output Only] The parent of the firewall policy.
+	// Parent: Output only. [Output Only] The parent of the firewall policy.
 	// This field is not applicable to network firewall policies.
 	Parent string `json:"parent,omitempty"`
 	// PolicyType: The type of the firewall policy. This field can be
@@ -14838,14 +15114,14 @@ type FirewallPolicy struct {
 	//   "RDMA_ROCE_POLICY"
 	//   "VPC_POLICY"
 	PolicyType string `json:"policyType,omitempty"`
-	// Region: [Output Only] URL of the region where the regional firewall policy
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// firewall policy resides.
 	// This field is not applicable to global firewall policies.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Region string `json:"region,omitempty"`
-	// RuleTupleCount: [Output Only] Total count of all firewall policy rule
-	// tuples. A firewall
+	// RuleTupleCount: Output only. [Output Only] Total count of all firewall
+	// policy rule tuples. A firewall
 	// policy can not exceed a set number of tuples.
 	RuleTupleCount int64 `json:"ruleTupleCount,omitempty"`
 	// Rules: A list of rules that belong to this policy.
@@ -14856,8 +15132,8 @@ type FirewallPolicy struct {
 	Rules []*FirewallPolicyRule `json:"rules,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// ShortName: User-provided name of the Organization firewall policy. The name
 	// should be
@@ -14902,12 +15178,13 @@ type FirewallPolicyAssociation struct {
 	// display name
 	// of the firewall policy of the association.
 	DisplayName string `json:"displayName,omitempty"`
-	// FirewallPolicyId: [Output Only] The firewall policy ID of the association.
+	// FirewallPolicyId: Output only. [Output Only] The firewall policy ID of the
+	// association.
 	FirewallPolicyId string `json:"firewallPolicyId,omitempty"`
 	// Name: The name for an association.
 	Name string `json:"name,omitempty"`
-	// ShortName: [Output Only] The short name of the firewall policy of the
-	// association.
+	// ShortName: Output only. [Output Only] The short name of the firewall policy
+	// of the association.
 	ShortName string `json:"shortName,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -14935,8 +15212,8 @@ type FirewallPolicyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of FirewallPolicy resources.
 	Items []*FirewallPolicy `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#firewallPolicyList for
-	// listsof FirewallPolicies
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#firewallPolicyList for listsof FirewallPolicies
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -15142,9 +15419,9 @@ type FirewallPolicyRule struct {
 	// Stackdriver. Logs may be exported to BigQuery or Pub/Sub. Note: you
 	// cannot enable logging on "goto_next" rules.
 	EnableLogging bool `json:"enableLogging,omitempty"`
-	// Kind: [Output only] Type of the resource. Returnscompute#firewallPolicyRule
-	// for firewall rules andcompute#packetMirroringRule for packet mirroring
-	// rules.
+	// Kind: Output only. [Output only] Type of the resource.
+	// Returnscompute#firewallPolicyRule for firewall rules
+	// andcompute#packetMirroringRule for packet mirroring rules.
 	Kind string `json:"kind,omitempty"`
 	// Match: A match condition that incoming traffic is evaluated against.
 	// If it evaluates to true, the corresponding 'action' is enforced.
@@ -15159,8 +15436,8 @@ type FirewallPolicyRule struct {
 	// identifier
 	// and can be updated.
 	RuleName string `json:"ruleName,omitempty"`
-	// RuleTupleCount: [Output Only] Calculation of the complexity of a single
-	// firewall policy
+	// RuleTupleCount: Output only. [Output Only] Calculation of the complexity of
+	// a single firewall policy
 	// rule.
 	RuleTupleCount int64 `json:"ruleTupleCount,omitempty"`
 	// SecurityProfileGroup: A fully-qualified URL of a SecurityProfile resource
@@ -15235,6 +15512,21 @@ type FirewallPolicyRuleMatcher struct {
 	// DestIpRanges: CIDR IP address range.
 	// Maximum number of destination CIDR IP ranges allowed is 5000.
 	DestIpRanges []string `json:"destIpRanges,omitempty"`
+	// DestNetworkContext: Network context of the traffic destination. Allowed
+	// values are:
+	//
+	//
+	//      - UNSPECIFIED
+	//      - INTERNET
+	//      - NON_INTERNET
+	//
+	// Possible values:
+	//   "INTERNET"
+	//   "INTRA_VPC"
+	//   "NON_INTERNET"
+	//   "UNSPECIFIED"
+	//   "VPC_NETWORKS"
+	DestNetworkContext string `json:"destNetworkContext,omitempty"`
 	// DestNetworkType: Network type of the traffic destination. Allowed values
 	// are:
 	//
@@ -15273,6 +15565,23 @@ type FirewallPolicyRuleMatcher struct {
 	// SrcIpRanges: CIDR IP address range.
 	// Maximum number of source CIDR IP ranges allowed is 5000.
 	SrcIpRanges []string `json:"srcIpRanges,omitempty"`
+	// SrcNetworkContext: Network context of the traffic source. Allowed values
+	// are:
+	//
+	//
+	//      - UNSPECIFIED
+	//      - INTERNET
+	//      - INTRA_VPC
+	//      - NON_INTERNET
+	//      - VPC_NETWORKS
+	//
+	// Possible values:
+	//   "INTERNET"
+	//   "INTRA_VPC"
+	//   "NON_INTERNET"
+	//   "UNSPECIFIED"
+	//   "VPC_NETWORKS"
+	SrcNetworkContext string `json:"srcNetworkContext,omitempty"`
 	// SrcNetworkType: Network type of the traffic source. Allowed values are:
 	//
 	//
@@ -15363,8 +15672,8 @@ func (s FirewallPolicyRuleMatcherLayer4Config) MarshalJSON() ([]byte, error) {
 type FirewallPolicyRuleSecureTag struct {
 	// Name: Name of the secure tag, created with TagManager's TagValue API.
 	Name string `json:"name,omitempty"`
-	// State: [Output Only] State of the secure tag, either `EFFECTIVE`
-	// or
+	// State: Output only. [Output Only] State of the secure tag, either
+	// `EFFECTIVE` or
 	// `INEFFECTIVE`. A secure tag is `INEFFECTIVE` when it is deleted
 	// or its network is deleted.
 	//
@@ -15393,8 +15702,8 @@ func (s FirewallPolicyRuleSecureTag) MarshalJSON() ([]byte, error) {
 // FixedOrPercent: Encapsulates numeric value that can be either absolute or
 // relative.
 type FixedOrPercent struct {
-	// Calculated: [Output Only] Absolute value of VM instances calculated based on
-	// the
+	// Calculated: Output only. [Output Only] Absolute value of VM instances
+	// calculated based on the
 	// specific mode.
 	//
 	//
@@ -15434,6 +15743,38 @@ func (s FixedOrPercent) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// FlexibleTimeRange: A flexible specification of a time range that has 3
+// points of
+// flexibility: (1) a flexible start time, (2) a flexible end time, (3)
+// a
+// flexible duration.
+//
+// It is possible to specify a contradictory time range that cannot be
+// matched
+// by any Interval. This causes a validation error.
+type FlexibleTimeRange struct {
+	MaxDuration             string `json:"maxDuration,omitempty"`
+	MinDuration             string `json:"minDuration,omitempty"`
+	StartTimeNotEarlierThan string `json:"startTimeNotEarlierThan,omitempty"`
+	StartTimeNotLaterThan   string `json:"startTimeNotLaterThan,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "MaxDuration") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "MaxDuration") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FlexibleTimeRange) MarshalJSON() ([]byte, error) {
+	type NoMethod FlexibleTimeRange
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 // ForwardingRule: Represents a Forwarding Rule resource.
 //
 // Forwarding rule resources in Google Cloud can be either regional or global
@@ -15565,8 +15906,8 @@ type ForwardingRule struct {
 	// Required for internal and external passthrough Network Load Balancers;
 	// must be omitted for all other load balancer types.
 	BackendService string `json:"backendService,omitempty"`
-	// BaseForwardingRule: [Output Only] The URL for the corresponding base
-	// forwarding rule. By base
+	// BaseForwardingRule: Output only. [Output Only] The URL for the corresponding
+	// base forwarding rule. By base
 	// forwarding rule, we mean the forwarding rule that has the same IP
 	// address,
 	// protocol, and port settings with the current forwarding rule, but
@@ -15576,7 +15917,8 @@ type ForwardingRule struct {
 	// sourceIPRanges
 	// specified.
 	BaseForwardingRule string `json:"baseForwardingRule,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -15676,8 +16018,8 @@ type ForwardingRule struct {
 	// This can only be set to true for load balancers that have
 	// theirloadBalancingScheme set to INTERNAL.
 	IsMirroringCollector bool `json:"isMirroringCollector,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#forwardingRule for
-	// forwarding rule resources.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#forwardingRule for forwarding rule resources.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// resource, which is
@@ -15881,16 +16223,16 @@ type ForwardingRule struct {
 	//   "REJECTED" - The connection has been rejected by the producer.
 	//   "STATUS_UNSPECIFIED"
 	PscConnectionStatus string `json:"pscConnectionStatus,omitempty"`
-	// Region: [Output Only] URL of the region where the regional forwarding rule
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// forwarding rule resides.
 	// This field is not applicable to global forwarding rules.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// ServiceDirectoryRegistrations: Service Directory resources to register this
 	// forwarding rule with.
@@ -16007,7 +16349,7 @@ type ForwardingRuleAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ForwardingRulesScopedList resources.
 	Items map[string]ForwardingRulesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#forwardingRuleAggregatedList for lists of forwarding rules.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -16018,9 +16360,9 @@ type ForwardingRuleAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ForwardingRuleAggregatedListWarning `json:"warning,omitempty"`
@@ -16191,7 +16533,7 @@ type ForwardingRuleList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ForwardingRule resources.
 	Items []*ForwardingRule `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -16201,7 +16543,7 @@ type ForwardingRuleList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ForwardingRuleListWarning `json:"warning,omitempty"`
@@ -16620,8 +16962,8 @@ type FutureReservation struct {
 	// update an
 	// existing commitment.
 	CommitmentInfo *FutureReservationCommitmentInfo `json:"commitmentInfo,omitempty"`
-	// CreationTimestamp: [Output Only] The creation timestamp for this future
-	// reservation inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this future reservation inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// DeploymentType: Type of the deployment requested as part of future
@@ -16639,12 +16981,12 @@ type FutureReservation struct {
 	// EnableEmergentMaintenance: Indicates if this group of VMs have emergent
 	// maintenance enabled.
 	EnableEmergentMaintenance bool `json:"enableEmergentMaintenance,omitempty"`
-	// Id: [Output Only] A unique identifier for this future reservation. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this future
+	// reservation. The server
 	// defines this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#futureReservation
-	// for future reservations.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#futureReservation for future reservations.
 	Kind string `json:"kind,omitempty"`
 	// Name: The name of the resource, provided by the client when initially
 	// creating
@@ -16707,11 +17049,11 @@ type FutureReservation struct {
 	// Instead, each
 	// instance has its own maintenance window.
 	SchedulingType string `json:"schedulingType,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// ShareSettings: List of Projects/Folders to share with.
 	ShareSettings *ShareSettings `json:"shareSettings,omitempty"`
@@ -16725,11 +17067,12 @@ type FutureReservation struct {
 	// properties and
 	// total count.
 	SpecificSkuProperties *FutureReservationSpecificSKUProperties `json:"specificSkuProperties,omitempty"`
-	// Status: [Output only] Status of the Future Reservation
+	// Status: Output only. [Output only] Status of the Future Reservation
 	Status *FutureReservationStatus `json:"status,omitempty"`
 	// TimeWindow: Time window for this Future Reservation.
 	TimeWindow *FutureReservationTimeWindow `json:"timeWindow,omitempty"`
-	// Zone: [Output Only] URL of the Zone where this future reservation resides.
+	// Zone: Output only. [Output Only] URL of the Zone where this future
+	// reservation resides.
 	Zone string `json:"zone,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -16829,8 +17172,8 @@ func (s FutureReservationSpecificSKUProperties) MarshalJSON() ([]byte, error) {
 // FutureReservationStatus: [Output only] Represents status related to the
 // future reservation.
 type FutureReservationStatus struct {
-	// AmendmentStatus: [Output Only] The current status of the requested
-	// amendment.
+	// AmendmentStatus: Output only. [Output Only] The current status of the
+	// requested amendment.
 	//
 	// Possible values:
 	//   "AMENDMENT_APPROVED" - The requested amendment to the Future Resevation
@@ -16844,21 +17187,21 @@ type FutureReservationStatus struct {
 	// reviewd by GCP.
 	//   "AMENDMENT_STATUS_UNSPECIFIED"
 	AmendmentStatus string `json:"amendmentStatus,omitempty"`
-	// AutoCreatedReservations: Fully qualified urls of the automatically created
-	// reservations at
+	// AutoCreatedReservations: Output only. Fully qualified urls of the
+	// automatically created reservations at
 	// start_time.
 	AutoCreatedReservations []string `json:"autoCreatedReservations,omitempty"`
-	// ExistingMatchingUsageInfo: [Output Only] Represents the existing matching
-	// usage for the future
+	// ExistingMatchingUsageInfo: Output only. [Output Only] Represents the
+	// existing matching usage for the future
 	// reservation.
 	ExistingMatchingUsageInfo *FutureReservationStatusExistingMatchingUsageInfo `json:"existingMatchingUsageInfo,omitempty"`
-	// FulfilledCount: This count indicates the fulfilled capacity so far. This is
-	// set during
+	// FulfilledCount: Output only. This count indicates the fulfilled capacity so
+	// far. This is set during
 	// "PROVISIONING" state. This count also includes capacity delivered as part
 	// of existing matching reservations.
 	FulfilledCount int64 `json:"fulfilledCount,omitempty,string"`
-	// LastKnownGoodState: [Output Only] This field represents the future
-	// reservation before an
+	// LastKnownGoodState: Output only. [Output Only] This field represents the
+	// future reservation before an
 	// amendment was requested. If the amendment is declined, the
 	// Future
 	// Reservation will be reverted to the last known good state. The last
@@ -16866,14 +17209,14 @@ type FutureReservationStatus struct {
 	// good state is not set when updating a future reservation whose
 	// Procurement Status is DRAFTING.
 	LastKnownGoodState *FutureReservationStatusLastKnownGoodState `json:"lastKnownGoodState,omitempty"`
-	// LockTime: Time when Future Reservation would become LOCKED, after which
-	// no
+	// LockTime: Output only. Time when Future Reservation would become LOCKED,
+	// after which no
 	// modifications to Future Reservation will be allowed. Applicable only
 	// after the Future Reservation is in the APPROVED state. The lock_time is
 	// an RFC3339 string. The procurement_status will transition to PROCURING
 	// state at this time.
 	LockTime string `json:"lockTime,omitempty"`
-	// ProcurementStatus: Current state of this Future Reservation
+	// ProcurementStatus: Output only. Current state of this Future Reservation
 	//
 	// Possible values:
 	//   "APPROVED" - Future reservation is approved by GCP.
@@ -16927,11 +17270,11 @@ func (s FutureReservationStatus) MarshalJSON() ([]byte, error) {
 // the existing matching usage for the future
 // reservation.
 type FutureReservationStatusExistingMatchingUsageInfo struct {
-	// Count: Count to represent min(FR
+	// Count: Output only. Count to represent min(FR
 	// total_count,
 	// matching_reserved_capacity+matching_unreserved_instances)
 	Count int64 `json:"count,omitempty,string"`
-	// Timestamp: Timestamp when the matching usage was calculated
+	// Timestamp: Output only. Timestamp when the matching usage was calculated
 	Timestamp string `json:"timestamp,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Count") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -16955,25 +17298,25 @@ func (s FutureReservationStatusExistingMatchingUsageInfo) MarshalJSON() ([]byte,
 // reservation will be reverted to should the
 // amendment be declined.
 type FutureReservationStatusLastKnownGoodState struct {
-	// Description: [Output Only] The description of the FutureReservation before
-	// an
+	// Description: Output only. [Output Only] The description of the
+	// FutureReservation before an
 	// amendment was requested.
 	Description string `json:"description,omitempty"`
-	// ExistingMatchingUsageInfo: [Output Only] Represents the matching usage for
-	// the future
+	// ExistingMatchingUsageInfo: Output only. [Output Only] Represents the
+	// matching usage for the future
 	// reservation before an amendment was requested.
 	ExistingMatchingUsageInfo *FutureReservationStatusExistingMatchingUsageInfo                `json:"existingMatchingUsageInfo,omitempty"`
 	FutureReservationSpecs    *FutureReservationStatusLastKnownGoodStateFutureReservationSpecs `json:"futureReservationSpecs,omitempty"`
-	// LockTime: [Output Only] The lock time of the FutureReservation before
-	// an
+	// LockTime: Output only. [Output Only] The lock time of the FutureReservation
+	// before an
 	// amendment was requested.
 	LockTime string `json:"lockTime,omitempty"`
-	// NamePrefix: [Output Only] The name prefix of the Future Reservation before
-	// an
+	// NamePrefix: Output only. [Output Only] The name prefix of the Future
+	// Reservation before an
 	// amendment was requested.
 	NamePrefix string `json:"namePrefix,omitempty"`
-	// ProcurementStatus: [Output Only] The status of the last known good state for
-	// the Future
+	// ProcurementStatus: Output only. [Output Only] The status of the last known
+	// good state for the Future
 	// Reservation.
 	//
 	// Possible values:
@@ -17026,15 +17369,15 @@ func (s FutureReservationStatusLastKnownGoodState) MarshalJSON() ([]byte, error)
 // FutureReservationStatusLastKnownGoodStateFutureReservationSpecs: The
 // properties of the last known good state for the Future Reservation.
 type FutureReservationStatusLastKnownGoodStateFutureReservationSpecs struct {
-	// ShareSettings: [Output Only] The previous share settings of the Future
-	// Reservation.
+	// ShareSettings: Output only. [Output Only] The previous share settings of the
+	// Future Reservation.
 	ShareSettings *ShareSettings `json:"shareSettings,omitempty"`
-	// SpecificSkuProperties: [Output Only] The previous instance related
-	// properties of the
+	// SpecificSkuProperties: Output only. [Output Only] The previous instance
+	// related properties of the
 	// Future Reservation.
 	SpecificSkuProperties *FutureReservationSpecificSKUProperties `json:"specificSkuProperties,omitempty"`
-	// TimeWindow: [Output Only] The previous time window of the Future
-	// Reservation.
+	// TimeWindow: Output only. [Output Only] The previous time window of the
+	// Future Reservation.
 	TimeWindow *FutureReservationTimeWindow `json:"timeWindow,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ShareSettings") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -17112,7 +17455,7 @@ type FutureReservationsAggregatedListResponse struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Future reservation resources.
 	Items map[string]FutureReservationsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#futureReservationsAggregatedListResponse for future
 	// resevation aggregated list response.
 	Kind string `json:"kind,omitempty"`
@@ -17124,9 +17467,9 @@ type FutureReservationsAggregatedListResponse struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *FutureReservationsAggregatedListResponseWarning `json:"warning,omitempty"`
@@ -17299,7 +17642,7 @@ type FutureReservationsListResponse struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A list of future reservation resources.
 	Items []*FutureReservation `json:"items,omitempty"`
-	// Kind: [Output Only] Type of
+	// Kind: Output only. [Output Only] Type of
 	// resource.Alwayscompute#FutureReservationsListResponse for lists
 	// of
 	// reservations
@@ -17312,9 +17655,9 @@ type FutureReservationsListResponse struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *FutureReservationsListResponseWarning `json:"warning,omitempty"`
@@ -17645,6 +17988,320 @@ func (s FutureReservationsScopedListWarningData) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// FutureResourcesRecommendation: Recommendation for single resources
+// specification, to be created in the
+// future.
+type FutureResourcesRecommendation struct {
+	EndTime string `json:"endTime,omitempty"`
+	// Location: The advised location for resource usage. When a zone, in
+	// format
+	// 'zones/'.
+	// If not set, it means that no location is recommended - see
+	// other_locations for details.
+	Location string `json:"location,omitempty"`
+	// OtherLocations: List of locations in the request scope that were
+	// not
+	// recommended. Keys of the map are zones, in format 'zones/'.
+	// The values are status information indicating the recommendation status.
+	OtherLocations map[string]FutureResourcesRecommendationOtherLocation `json:"otherLocations,omitempty"`
+	// RecommendationId: Unique id of the recommendation, a UUID string generated
+	// by the API.
+	RecommendationId string `json:"recommendationId,omitempty"`
+	// RecommendationType: Type of recommendation. Currently only
+	// FUTURE_RESERVATION is supported.
+	//
+	// Possible values:
+	//   "FUTURE_RESERVATION" - A Future Reservation is recommended.
+	//   "RECOMMENDATION_TYPE_UNSPECIFIED" - Default value, unused.
+	RecommendationType string `json:"recommendationType,omitempty"`
+	StartTime          string `json:"startTime,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "EndTime") to unconditionally
+	// include in API requests. By default, fields with empty or default values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "EndTime") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesRecommendation) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesRecommendation
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// FutureResourcesRecommendationOtherLocation: Information about recommendation
+// status for locations
+// that were allowed but not used by the response.
+type FutureResourcesRecommendationOtherLocation struct {
+	// Details: Details (human readable) describing the situation.
+	// For example, if status is CONDITION_NOT_MET, then
+	// details contain information about the parameters of the time window
+	// that did not meet the required conditions.
+	Details string `json:"details,omitempty"`
+	// Status: Status of recommendation in this location.
+	//
+	// Possible values:
+	//   "CONDITIONS_NOT_MET" - The requested resources are offered in this
+	// location
+	// but the requested time window is does not meet the required conditions.
+	//   "NOT_SUPPORTED" - The requested resources are not offered in this
+	// location.
+	// Retrying the request will not change this status.
+	//   "NO_CAPACITY" - The requested resources are offered in this location
+	// and the requested time window is accepted
+	// but there is no capacity within the requested time window.
+	//   "OTHER_LOCATION_STATUS_UNDEFINED" - Default value, unused.
+	//   "RECOMMENDED" - The requested resources are offered in this location
+	// and it is possible to request them. However, another location
+	// was better and was recommended.
+	Status string `json:"status,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "Details") to unconditionally
+	// include in API requests. By default, fields with empty or default values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Details") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesRecommendationOtherLocation) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesRecommendationOtherLocation
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// FutureResourcesSpec: Specification of resources to be created at some time
+// in the future within an
+// optionally specified set of locations, and within the specified time range.
+type FutureResourcesSpec struct {
+	// DeploymentType: Indicates if the reservation allocation strategy is static
+	// (DENSE) or
+	// dynamic (STANDARD). Defaults to DENSE.
+	//
+	// Possible values:
+	//   "DENSE" - The reserved capacity is made up of densely deployed reservation
+	// blocks.
+	//   "DEPLOYMENT_TYPE_UNSPECIFIED"
+	DeploymentType string `json:"deploymentType,omitempty"`
+	// LocationPolicy: Optional location policy allowing to exclude some zone(s) in
+	// which
+	// the resources must not be created.
+	LocationPolicy *FutureResourcesSpecLocationPolicy `json:"locationPolicy,omitempty"`
+	// TargetResources: Specification of the reserved resources.
+	TargetResources *FutureResourcesSpecTargetResources `json:"targetResources,omitempty"`
+	// TimeRangeSpec: Specification of a time range in which the resources may be
+	// created.
+	// The time range specifies start of resource use and planned end of
+	// resource
+	// use.
+	TimeRangeSpec *FlexibleTimeRange `json:"timeRangeSpec,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "DeploymentType") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "DeploymentType") to include in
+	// API requests with the JSON null value. By default, fields with empty values
+	// are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpec) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpec
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+type FutureResourcesSpecAggregateResources struct {
+	// AcceleratorCount: Size of the request, in accelerator (chip) count.
+	AcceleratorCount int64 `json:"acceleratorCount,omitempty,string"`
+	// VmFamily: The VM family that all instances scheduled against this
+	// reservation
+	// must belong to. Use for TPU reservations.
+	//
+	// Possible values:
+	//   "VM_FAMILY_CLOUD_TPU_DEVICE_CT3"
+	//   "VM_FAMILY_CLOUD_TPU_LITE_DEVICE_CT5L"
+	//   "VM_FAMILY_CLOUD_TPU_LITE_POD_SLICE_CT5LP"
+	//   "VM_FAMILY_CLOUD_TPU_LITE_POD_SLICE_CT6E"
+	//   "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT3P"
+	//   "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT4P"
+	//   "VM_FAMILY_CLOUD_TPU_POD_SLICE_CT5P"
+	//   "VM_FAMILY_CLOUD_TPU_POD_SLICE_TPU7X"
+	VmFamily string `json:"vmFamily,omitempty"`
+	// WorkloadType: Workload type. Use for TPU reservations.
+	//
+	// Possible values:
+	//   "BATCH" - Reserved resources will be optimized for BATCH workloads, such
+	// as ML
+	// training.
+	//   "SERVING" - Reserved resources will be optimized for SERVING workloads,
+	// such as ML
+	// inference.
+	//   "UNSPECIFIED"
+	WorkloadType string `json:"workloadType,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "AcceleratorCount") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "AcceleratorCount") to include in
+	// API requests with the JSON null value. By default, fields with empty values
+	// are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecAggregateResources) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecAggregateResources
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+type FutureResourcesSpecLocalSsdPartition struct {
+	// DiskInterface: Disk interface. Defaults to SCSI.
+	//
+	// Possible values:
+	//   "NVME"
+	//   "SCSI"
+	DiskInterface string `json:"diskInterface,omitempty"`
+	// DiskSizeGb: The size of the disk in GB.
+	DiskSizeGb int64 `json:"diskSizeGb,omitempty,string"`
+	// ForceSendFields is a list of field names (e.g. "DiskInterface") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "DiskInterface") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecLocalSsdPartition) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecLocalSsdPartition
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// FutureResourcesSpecLocationPolicy: Specification of locations to create
+// resources in.
+type FutureResourcesSpecLocationPolicy struct {
+	// Locations: Preferences for specified locations.
+	// Keys of the map are locations - zones, in format of 'zones/'.
+	// Values are preferences for the zones.
+	// If a zone is not specified in this map, it is ALLOWed.
+	Locations map[string]FutureResourcesSpecLocationPolicyLocation `json:"locations,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "Locations") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Locations") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecLocationPolicy) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecLocationPolicy
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// FutureResourcesSpecLocationPolicyLocation: Preference for a single specified
+// location.
+type FutureResourcesSpecLocationPolicyLocation struct {
+	// Preference: Preference for this location.
+	//
+	// Possible values:
+	//   "ALLOW" - Location is allowed for use.
+	//   "DENY" - Location is prohibited.
+	//   "PREFERENCE_UNSPECIFIED" - Default value, unused.
+	Preference string `json:"preference,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "Preference") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Preference") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecLocationPolicyLocation) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecLocationPolicyLocation
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+type FutureResourcesSpecSpecificSKUResources struct {
+	// InstanceCount: Size of the request, in instance count.
+	InstanceCount int64 `json:"instanceCount,omitempty,string"`
+	// LocalSsdPartitions: Local SSD partitions. You do not have to include SSD
+	// partitions that
+	// are built in the machine type.
+	LocalSsdPartitions []*FutureResourcesSpecLocalSsdPartition `json:"localSsdPartitions,omitempty"`
+	// MachineType: The machine type to use for instances that will use the
+	// reservation.
+	// This field only accepts machine type names. e.g. n2-standard-4
+	// and does not accept machine type full or partial url.
+	// e.g.
+	// projects/my-l7ilb-project/zones/us-central1-a/machineTypes/n2-standard-4.
+	// Use for GPU reservations.
+	MachineType string `json:"machineType,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "InstanceCount") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "InstanceCount") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecSpecificSKUResources) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecSpecificSKUResources
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
+// FutureResourcesSpecTargetResources: Specification of reserved resources.
+type FutureResourcesSpecTargetResources struct {
+	AggregateResources   *FutureResourcesSpecAggregateResources   `json:"aggregateResources,omitempty"`
+	SpecificSkuResources *FutureResourcesSpecSpecificSKUResources `json:"specificSkuResources,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "AggregateResources") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "AggregateResources") to include
+	// in API requests with the JSON null value. By default, fields with empty
+	// values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s FutureResourcesSpecTargetResources) MarshalJSON() ([]byte, error) {
+	type NoMethod FutureResourcesSpecTargetResources
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 type GRPCHealthCheck struct {
 	// GrpcServiceName: The gRPC service name for the health check. This field is
 	// optional. The
@@ -18050,21 +18707,23 @@ func (s GroupMaintenanceInfo) MarshalJSON() ([]byte, error) {
 
 // GuestAttributes: A guest attributes entry.
 type GuestAttributes struct {
-	// Kind: [Output Only] Type of the resource. Alwayscompute#guestAttributes for
-	// guest attributes entry.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#guestAttributes for guest attributes entry.
 	Kind string `json:"kind,omitempty"`
 	// QueryPath: The path to be queried. This can be the default namespace ('') or
 	// a
 	// nested namespace ('\/') or a specified key
 	// ('\/\').
 	QueryPath string `json:"queryPath,omitempty"`
-	// QueryValue: [Output Only] The value of the requested queried path.
+	// QueryValue: Output only. [Output Only] The value of the requested queried
+	// path.
 	QueryValue *GuestAttributesValue `json:"queryValue,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// VariableKey: The key to search for.
 	VariableKey string `json:"variableKey,omitempty"`
-	// VariableValue: [Output Only] The value found for the requested key.
+	// VariableValue: Output only. [Output Only] The value found for the requested
+	// key.
 	VariableValue string `json:"variableValue,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -18523,7 +19182,7 @@ type HealthCheck struct {
 	// value is 5
 	// seconds.
 	CheckIntervalSec int64 `json:"checkIntervalSec,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp in3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp in3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -18543,7 +19202,7 @@ type HealthCheck struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: Type of the resource.
+	// Kind: Output only. Type of the resource.
 	Kind string `json:"kind,omitempty"`
 	// LogConfig: Configure logging on this health check.
 	LogConfig *HealthCheckLogConfig `json:"logConfig,omitempty"`
@@ -18559,8 +19218,8 @@ type HealthCheck struct {
 	// dash,
 	// lowercase letter, or digit, except the last character, which isn't a dash.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] Region where the health check resides.  Not applicable
-	// to
+	// Region: Output only. [Output Only] Region where the health check resides.
+	// Not applicable to
 	// global health checks.
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
@@ -18636,7 +19295,7 @@ type HealthCheckList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of HealthCheck resources.
 	Items []*HealthCheck `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -18646,7 +19305,7 @@ type HealthCheckList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *HealthCheckListWarning `json:"warning,omitempty"`
@@ -18867,7 +19526,8 @@ func (s HealthCheckReference) MarshalJSON() ([]byte, error) {
 
 // HealthCheckService: Represents a Health-Check as a Service resource.
 type HealthCheckService struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -18926,11 +19586,11 @@ type HealthCheckService struct {
 	//   "NO_AGGREGATION" - An EndpointHealth message is returned for each
 	// backend in the health check service.
 	HealthStatusAggregationPolicy string `json:"healthStatusAggregationPolicy,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] Type of the resource.
+	// Kind: Output only. [Output only] Type of the resource.
 	// Alwayscompute#healthCheckServicefor health check services.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. The name must be 1-63 characters long, and
@@ -18959,13 +19619,13 @@ type HealthCheckService struct {
 	// same region. For global HealthCheckService,NotificationEndpoint must be
 	// global.
 	NotificationEndpoints []string `json:"notificationEndpoints,omitempty"`
-	// Region: [Output Only] URL of the region where the health check
+	// Region: Output only. [Output Only] URL of the region where the health check
 	// service
 	// resides. This field is not applicable to global health check services.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -19022,23 +19682,24 @@ func (s HealthCheckServiceReference) MarshalJSON() ([]byte, error) {
 }
 
 type HealthCheckServicesList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
-	// Items: A list of HealthCheckService resources.
+	// Items: Output only. A list of HealthCheckService resources.
 	Items []*HealthCheckService `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#healthCheckServicesList for lists of
 	// HealthCheckServices.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *HealthCheckServicesListWarning `json:"warning,omitempty"`
@@ -19207,7 +19868,7 @@ type HealthChecksAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of HealthChecksScopedList resources.
 	Items map[string]HealthChecksScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -19217,9 +19878,9 @@ type HealthChecksAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *HealthChecksAggregatedListWarning `json:"warning,omitempty"`
@@ -20029,7 +20690,8 @@ type HttpHeaderMatch struct {
 	// rangeMatch must be set.
 	//
 	// Regular expressions can only be used when the loadBalancingScheme is
-	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.
+	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED
+	// (regional scope) or INTERNAL_MANAGED.
 	RegexMatch string `json:"regexMatch,omitempty"`
 	// SuffixMatch: The value of the header must end with the contents
 	// ofsuffixMatch.
@@ -20126,8 +20788,8 @@ type HttpHealthCheck struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#httpHealthCheck for
-	// HTTP health checks.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#httpHealthCheck for HTTP health checks.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -20184,7 +20846,7 @@ type HttpHealthCheckList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of HttpHealthCheck resources.
 	Items []*HttpHealthCheck `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -20194,7 +20856,7 @@ type HttpHealthCheckList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *HttpHealthCheckListWarning `json:"warning,omitempty"`
@@ -20383,7 +21045,8 @@ type HttpQueryParameterMatch struct {
 	// Only one of presentMatch, exactMatch, orregexMatch must be set.
 	//
 	// Regular expressions can only be used when the loadBalancingScheme is
-	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.
+	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED
+	// (regional scope) or INTERNAL_MANAGED.
 	RegexMatch string `json:"regexMatch,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ExactMatch") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -20896,19 +21559,25 @@ type HttpRouteRuleMatch struct {
 	// Not supported when the URL map is bound to a target gRPC proxy that
 	// has validateForProxyless field set to true.
 	MetadataFilters []*MetadataFilter `json:"metadataFilters,omitempty"`
-	// PathTemplateMatch: If specified, the route is a pattern match expression
-	// that must match the
-	// :path header once the query string is removed.
+	// PathTemplateMatch: If specified, this field defines a path template pattern
+	// that must match
+	// the :path header after the query string is removed.
 	//
-	//  A pattern match allows you to match
+	// A path template pattern can include variables and wildcards.
+	// Variables are enclosed in curly braces, for example{variable_name}.
+	// Wildcards include * that
+	// matches a single path segment, and ** that matches zero or
+	// more path segments. The pattern must follow these rules:
 	//
 	//
-	//       - The value must be between 1 and 1024 characters
-	//       - The pattern must start with a leading slash ("/")
-	//       - There may be no more than 5 operators in pattern
+	//       - The value must be between 1 and 1024 characters.
+	//       - The pattern must start with a leading slash ("/").
+	//       - No more than 5 operators (variables or wildcards) may appear in
+	//       the pattern.
 	//
-	//  Precisely one ofprefix_match, full_path_match,regex_match or
-	// path_template_match must be set.
+	// Precisely one ofprefixMatch, fullPathMatch,regexMatch, or pathTemplateMatch
+	// must be
+	// set.
 	PathTemplateMatch string `json:"pathTemplateMatch,omitempty"`
 	// PrefixMatch: For satisfying the matchRule condition, the request's
 	// path must begin with the specified prefixMatch.prefixMatch must begin with a
@@ -20916,10 +21585,12 @@ type HttpRouteRuleMatch struct {
 	//
 	// The value must be from 1 to 1024 characters.
 	//
-	// Only one of prefixMatch, fullPathMatch,regexMatch or path_template_match
-	// must be
-	// specified.
-	// specified.
+	// The * character inside a prefix match is
+	// treated as a literal character, not as a wildcard.
+	//
+	// Only one of prefixMatch, fullPathMatch,regexMatch or path_template_match can
+	// be
+	// used within a matchRule.
 	PrefixMatch string `json:"prefixMatch,omitempty"`
 	// QueryParameterMatches: Specifies a list of query parameter match criteria,
 	// all of which must
@@ -20938,7 +21609,8 @@ type HttpRouteRuleMatch struct {
 	// specified.
 	//
 	// Regular expressions can only be used when the loadBalancingScheme is
-	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED orINTERNAL_MANAGED.
+	// set to INTERNAL_SELF_MANAGED, EXTERNAL_MANAGED
+	// (regional scope) or INTERNAL_MANAGED.
 	RegexMatch string `json:"regexMatch,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "FullPathMatch") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -20997,7 +21669,7 @@ type HttpsHealthCheck struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: Type of the resource.
+	// Kind: Output only. Type of the resource.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -21057,7 +21729,7 @@ type HttpsHealthCheckList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of HttpsHealthCheck resources.
 	Items []*HttpsHealthCheck `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -21067,7 +21739,7 @@ type HttpsHealthCheckList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *HttpsHealthCheckListWarning `json:"warning,omitempty"`
@@ -21249,10 +21921,12 @@ type Image struct {
 	// Cloud
 	// Storage (in bytes).
 	ArchiveSizeBytes int64 `json:"archiveSizeBytes,omitempty,string"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Deprecated -- The deprecation status associated with this image.
+	// Deprecated -- Output only. The deprecation status associated with this
+	// image.
 	Deprecated *DeprecationStatus `json:"deprecated,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
@@ -21260,8 +21934,8 @@ type Image struct {
 	Description string `json:"description,omitempty"`
 	// DiskSizeGb: Size of the image when restored onto a persistent disk (in GB).
 	DiskSizeGb int64 `json:"diskSizeGb,omitempty,string"`
-	// EnableConfidentialCompute: Whether this image is created from a confidential
-	// compute mode disk.
+	// EnableConfidentialCompute: Output only. Whether this image is created from a
+	// confidential compute mode disk.
 	// [Output Only]: This field is not set by user, but from source disk.
 	EnableConfidentialCompute bool `json:"enableConfidentialCompute,omitempty"`
 	// Family: The name of the image family to which this image belongs. The
@@ -21283,8 +21957,8 @@ type Image struct {
 	// only for bootable images. To see a list of available options, see
 	// theguestOSfeatures[].type parameter.
 	GuestOsFeatures []*GuestOsFeature `json:"guestOsFeatures,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// ImageEncryptionKey: Encrypts the image using acustomer-supplied
@@ -21304,7 +21978,8 @@ type Image struct {
 	// not
 	// need to provide a key to use the image later.
 	ImageEncryptionKey *CustomerEncryptionKey `json:"imageEncryptionKey,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#image for
+	// Kind: Output only. [Output Only] Type of the resource. Always compute#image
+	// for
 	// images.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this image,
@@ -21347,9 +22022,9 @@ type Image struct {
 	RawDisk *ImageRawDisk `json:"rawDisk,omitempty"`
 	// SatisfiesPzi: Output only. Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ShieldedInstanceInitialState: Set the secure boot keys of shielded instance.
 	ShieldedInstanceInitialState *InitialStateConfig `json:"shieldedInstanceInitialState,omitempty"`
@@ -21376,7 +22051,7 @@ type Image struct {
 	// encryption key of the source disk. Required if the source disk is
 	// protected by a customer-supplied encryption key.
 	SourceDiskEncryptionKey *CustomerEncryptionKey `json:"sourceDiskEncryptionKey,omitempty"`
-	// SourceDiskId: [Output Only]
+	// SourceDiskId: Output only. [Output Only]
 	// The ID value of the disk used to create this image. This value may be
 	// used
 	// to determine whether the image was taken from the current or a
@@ -21404,7 +22079,7 @@ type Image struct {
 	// image. Required if the
 	// source image is protected by a customer-supplied encryption key.
 	SourceImageEncryptionKey *CustomerEncryptionKey `json:"sourceImageEncryptionKey,omitempty"`
-	// SourceImageId: [Output Only]
+	// SourceImageId: Output only. [Output Only]
 	// The ID value of the image used to create this image. This value may be
 	// used
 	// to determine whether the image was taken from the current or a
@@ -21432,7 +22107,7 @@ type Image struct {
 	// source snapshot. Required if
 	// the source snapshot is protected by a customer-supplied encryption key.
 	SourceSnapshotEncryptionKey *CustomerEncryptionKey `json:"sourceSnapshotEncryptionKey,omitempty"`
-	// SourceSnapshotId: [Output Only]
+	// SourceSnapshotId: Output only. [Output Only]
 	// The ID value of the snapshot used to create this image. This value may
 	// be
 	// used to determine whether the snapshot was taken from the current or
@@ -21445,8 +22120,8 @@ type Image struct {
 	// Possible values:
 	//   "RAW" (default)
 	SourceType string `json:"sourceType,omitempty"`
-	// Status: [Output Only] The status of the image. An image can be used to
-	// create other
+	// Status: Output only. [Output Only] The status of the image. An image can be
+	// used to create other
 	// resources, such as instances, only after the image has been
 	// successfully
 	// created and the status is set to READY. Possible
@@ -21566,7 +22241,7 @@ type ImageList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Image resources.
 	Items []*Image `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -21576,7 +22251,7 @@ type ImageList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ImageListWarning `json:"warning,omitempty"`
@@ -21745,9 +22420,11 @@ type ImageParams struct {
 	// ResourceManagerTags: Resource manager tags to be bound to the image. Tag
 	// keys and values have
 	// the same definition as resource
-	// manager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and
-	// values are in the format `tagValues/456`. The field is ignored (both PUT
-	// &
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
 	// PATCH) when empty.
 	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ResourceManagerTags") to
@@ -21812,9 +22489,11 @@ type Instance struct {
 	// instance to forward routes. For more information, seeEnabling IP Forwarding.
 	CanIpForward               bool                        `json:"canIpForward,omitempty"`
 	ConfidentialInstanceConfig *ConfidentialInstanceConfig `json:"confidentialInstanceConfig,omitempty"`
-	// CpuPlatform: [Output Only] The CPU platform used by this instance.
+	// CpuPlatform: Output only. [Output Only] The CPU platform used by this
+	// instance.
 	CpuPlatform string `json:"cpuPlatform,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339 text format.
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp inRFC3339
+	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// DeletionProtection: Whether the resource should be protected against
 	// deletion.
@@ -21851,8 +22530,8 @@ type Instance struct {
 	// and
 	// [INSTANCE_NAME].[ZONE].c.[PROJECT_ID].internal when using zonal DNS.
 	Hostname string `json:"hostname,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// InstanceEncryptionKey: Encrypts suspended data for an instance with
@@ -21877,7 +22556,8 @@ type Instance struct {
 	//   "NONE" - Indicates user chose no operation.
 	//   "STOP" - Indicates user chose to opt for VM shutdown on key revocation.
 	KeyRevocationActionType string `json:"keyRevocationActionType,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#instance
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#instance
 	// for instances.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for this request, which is essentially a
@@ -21894,13 +22574,14 @@ type Instance struct {
 	// Labels: Labels to apply to this instance. These can be later modified by
 	// the setLabels method.
 	Labels map[string]string `json:"labels,omitempty"`
-	// LastStartTimestamp: [Output Only] Last start timestamp inRFC3339 text
-	// format.
+	// LastStartTimestamp: Output only. [Output Only] Last start timestamp
+	// inRFC3339 text format.
 	LastStartTimestamp string `json:"lastStartTimestamp,omitempty"`
-	// LastStopTimestamp: [Output Only] Last stop timestamp inRFC3339 text format.
-	LastStopTimestamp string `json:"lastStopTimestamp,omitempty"`
-	// LastSuspendedTimestamp: [Output Only] Last suspended timestamp inRFC3339
+	// LastStopTimestamp: Output only. [Output Only] Last stop timestamp inRFC3339
 	// text format.
+	LastStopTimestamp string `json:"lastStopTimestamp,omitempty"`
+	// LastSuspendedTimestamp: Output only. [Output Only] Last suspended timestamp
+	// inRFC3339 text format.
 	LastSuspendedTimestamp string `json:"lastSuspendedTimestamp,omitempty"`
 	// MachineType: Full or partial URL of the machine type resource to use for
 	// this instance,
@@ -21992,19 +22673,19 @@ type Instance struct {
 	ReservationAffinity *ReservationAffinity `json:"reservationAffinity,omitempty"`
 	// ResourcePolicies: Resource policies applied to this instance.
 	ResourcePolicies []string `json:"resourcePolicies,omitempty"`
-	// ResourceStatus: [Output Only] Specifies values set for instance attributes
-	// as
+	// ResourceStatus: Output only. [Output Only] Specifies values set for instance
+	// attributes as
 	// compared to the values requested by user in the corresponding input
 	// only
 	// field.
 	ResourceStatus *ResourceStatus `json:"resourceStatus,omitempty"`
-	// SatisfiesPzi: [Output Only] Reserved for future use.
+	// SatisfiesPzi: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
 	// Scheduling: Sets the scheduling options for this instance.
 	Scheduling *Scheduling `json:"scheduling,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ServiceAccounts: A list of service accounts, with their specified scopes,
 	// authorized for
@@ -22025,11 +22706,12 @@ type Instance struct {
 	// creating an instance from a
 	// machine image.
 	SourceMachineImageEncryptionKey *CustomerEncryptionKey `json:"sourceMachineImageEncryptionKey,omitempty"`
-	// StartRestricted: [Output Only] Whether a VM has been restricted for start
-	// because Compute
+	// StartRestricted: Output only. [Output Only] Whether a VM has been restricted
+	// for start because Compute
 	// Engine has detected suspicious activity.
 	StartRestricted bool `json:"startRestricted,omitempty"`
-	// Status: [Output Only] The status of the instance. One of the
+	// Status: Output only. [Output Only] The status of the instance. One of
+	// the
 	// following values: PROVISIONING, STAGING,RUNNING, STOPPING,
 	// SUSPENDING,SUSPENDED, REPAIRING, andTERMINATED. For more information about
 	// the status of the
@@ -22057,8 +22739,8 @@ type Instance struct {
 	// underlying
 	// failure).
 	Status string `json:"status,omitempty"`
-	// StatusMessage: [Output Only] An optional, human-readable explanation of the
-	// status.
+	// StatusMessage: Output only. [Output Only] An optional, human-readable
+	// explanation of the status.
 	StatusMessage string `json:"statusMessage,omitempty"`
 	// Tags: Tags to apply to this instance. Tags are used to identify
 	// valid
@@ -22069,7 +22751,8 @@ type Instance struct {
 	// method. Each tag within the list must comply withRFC1035.
 	// Multiple tags can be specified via the 'tags.items' field.
 	Tags *Tags `json:"tags,omitempty"`
-	// Zone: [Output Only] URL of the zone where the instance resides.
+	// Zone: Output only. [Output Only] URL of the zone where the instance
+	// resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Zone string `json:"zone,omitempty"`
@@ -22099,8 +22782,8 @@ type InstanceAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: An object that contains a list of instances scoped by zone.
 	Items map[string]InstancesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#instanceAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#instanceAggregatedList for aggregated lists of
 	// Instance resources.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -22111,9 +22794,9 @@ type InstanceAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstanceAggregatedListWarning `json:"warning,omitempty"`
@@ -22278,9 +22961,9 @@ func (s InstanceAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceConsumptionData struct {
-	// ConsumptionInfo: Resources consumed by the instance.
+	// ConsumptionInfo: Output only. Resources consumed by the instance.
 	ConsumptionInfo *InstanceConsumptionInfo `json:"consumptionInfo,omitempty"`
-	// Instance: Server-defined URL for the instance.
+	// Instance: Output only. Server-defined URL for the instance.
 	Instance string `json:"instance,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ConsumptionInfo") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -22301,17 +22984,19 @@ func (s InstanceConsumptionData) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceConsumptionInfo struct {
-	// GuestCpus: The number of virtual CPUs that are available to the instance.
+	// GuestCpus: Output only. The number of virtual CPUs that are available to the
+	// instance.
 	GuestCpus int64 `json:"guestCpus,omitempty"`
-	// LocalSsdGb: The amount of local SSD storage available to the
+	// LocalSsdGb: Output only. The amount of local SSD storage available to the
 	// instance,
 	// defined in GiB.
 	LocalSsdGb int64 `json:"localSsdGb,omitempty"`
-	// MemoryMb: The amount of physical memory available to the instance,
+	// MemoryMb: Output only. The amount of physical memory available to the
+	// instance,
 	// defined in MiB.
 	MemoryMb int64 `json:"memoryMb,omitempty"`
-	// MinNodeCpus: The minimal guaranteed number of virtual CPUs that are
-	// reserved.
+	// MinNodeCpus: Output only. The minimal guaranteed number of virtual CPUs that
+	// are reserved.
 	MinNodeCpus int64 `json:"minNodeCpus,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "GuestCpus") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -22351,25 +23036,26 @@ func (s InstanceConsumptionInfo) MarshalJSON() ([]byte, error) {
 // For more information, readInstance
 // groups.
 type InstanceGroup struct {
-	// CreationTimestamp: [Output Only] The creation timestamp for this instance
-	// group inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this instance group inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Fingerprint: [Output Only] The fingerprint of the named ports. The
-	// system
+	// Fingerprint: Output only. [Output Only] The fingerprint of the named ports.
+	// The system
 	// uses this fingerprint to detect conflicts when multiple users change
 	// the
 	// named ports concurrently.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] A unique identifier for this instance group, generated
+	// Id: Output only. [Output Only] A unique identifier for this instance group,
+	// generated
 	// by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The resource type, which is alwayscompute#instanceGroup
-	// for instance groups.
+	// Kind: Output only. [Output Only] The resource type, which is
+	// alwayscompute#instanceGroup for instance groups.
 	Kind string `json:"kind,omitempty"`
 	// Name: The name of the instance group. The name must be 1-63 characters
 	// long, and comply withRFC1035.
@@ -22393,23 +23079,24 @@ type InstanceGroup struct {
 	// then the network and subnetwork fields only refer to the
 	// network and subnet used by your primary interface (nic0).
 	Network string `json:"network,omitempty"`
-	// Region: [Output Only] The URL of theregion
+	// Region: Output only. [Output Only] The URL of theregion
 	// where the instance group is located (for regional resources).
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] The URL for this instance group. The server
-	// generates
+	// SelfLink: Output only. [Output Only] The URL for this instance group. The
+	// server generates
 	// this URL.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Size: [Output Only] The total number of instances in the instance group.
+	// Size: Output only. [Output Only] The total number of instances in the
+	// instance group.
 	Size int64 `json:"size,omitempty"`
-	// Subnetwork: [Output Only] The URL of the subnetwork to which all instances
-	// in the
+	// Subnetwork: Output only. [Output Only] The URL of the subnetwork to which
+	// all instances in the
 	// instance group belong. If your instance has multiple network
 	// interfaces,
 	// then the network and subnetwork fields only refer to the
 	// network and subnet used by your primary interface (nic0).
 	Subnetwork string `json:"subnetwork,omitempty"`
-	// Zone: [Output Only] The URL of thezone
+	// Zone: Output only. [Output Only] The URL of thezone
 	// where the instance group is located (for zonal resources).
 	Zone string `json:"zone,omitempty"`
 
@@ -22434,27 +23121,28 @@ func (s InstanceGroup) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupAggregatedList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroupsScopedList resources.
 	Items map[string]InstanceGroupsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupAggregatedList for aggregated lists of
 	// instance groups.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupAggregatedListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -22477,8 +23165,8 @@ func (s InstanceGroupAggregatedList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupAggregatedListWarning: [Output Only] Informational warning
-// message.
+// InstanceGroupAggregatedListWarning: Output only. [Output Only] Informational
+// warning message.
 type InstanceGroupAggregatedListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -22619,24 +23307,25 @@ func (s InstanceGroupAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 
 // InstanceGroupList: A list of InstanceGroup resources.
 type InstanceGroupList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroup resources.
 	Items []*InstanceGroup `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupList for instance group lists.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -22659,7 +23348,8 @@ func (s InstanceGroupList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupListWarning: [Output Only] Informational warning message.
+// InstanceGroupListWarning: Output only. [Output Only] Informational warning
+// message.
 type InstanceGroupListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -22839,12 +23529,12 @@ type InstanceGroupManager struct {
 	// @pattern
 	// a-z (([-a-z0-9]{0,57})|([-a-z0-9]{0,51}-#{1,10}(\\[[0-9]{1,10}\\])?))
 	BaseInstanceName string `json:"baseInstanceName,omitempty"`
-	// CreationTimestamp: [Output Only] The creation timestamp for this managed
-	// instance group inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this managed instance group inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// CurrentActions: [Output Only] The list of instance actions and the number of
-	// instances
+	// CurrentActions: Output only. [Output Only] The list of instance actions and
+	// the number of instances
 	// in this managed instance group that are scheduled for each of those
 	// actions.
 	CurrentActions *InstanceGroupManagerActionsSummary `json:"currentActions,omitempty"`
@@ -22865,8 +23555,8 @@ type InstanceGroupManager struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve an InstanceGroupManager.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] A unique identifier for this resource type. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
 	// InstanceFlexibilityPolicy: Instance flexibility allowing MIG to create VMs
@@ -22875,7 +23565,8 @@ type InstanceGroupManager struct {
 	// Instance flexibility configuration on MIG overrides instance
 	// template configuration.
 	InstanceFlexibilityPolicy *InstanceGroupManagerInstanceFlexibilityPolicy `json:"instanceFlexibilityPolicy,omitempty"`
-	// InstanceGroup: [Output Only] The URL of the Instance Group resource.
+	// InstanceGroup: Output only. [Output Only] The URL of the Instance Group
+	// resource.
 	InstanceGroup string `json:"instanceGroup,omitempty"`
 	// InstanceLifecyclePolicy: The repair policy for this managed instance group.
 	InstanceLifecyclePolicy *InstanceGroupManagerInstanceLifecyclePolicy `json:"instanceLifecyclePolicy,omitempty"`
@@ -22888,7 +23579,7 @@ type InstanceGroupManager struct {
 	// runapplyUpdatesToInstances, or set the group'supdatePolicy.type to
 	// PROACTIVE.
 	InstanceTemplate string `json:"instanceTemplate,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupManager for managed instance groups.
 	Kind string `json:"kind,omitempty"`
 	// ListManagedInstancesResults: Pagination behavior of the listManagedInstances
@@ -22913,24 +23604,25 @@ type InstanceGroupManager struct {
 	// complementary
 	// to this Instance Group Manager.
 	NamedPorts []*NamedPort `json:"namedPorts,omitempty"`
-	// Region: [Output Only] The URL of theregion
+	// Region: Output only. [Output Only] The URL of theregion
 	// where the managed instance group resides (for regional resources).
 	Region string `json:"region,omitempty"`
 	// ResourcePolicies: Resource policies for this managed instance group.
 	ResourcePolicies *InstanceGroupManagerResourcePolicies `json:"resourcePolicies,omitempty"`
-	// SatisfiesPzi: [Output Only] Reserved for future use.
+	// SatisfiesPzi: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] The URL for this managed instance group. The server
-	// defines
+	// SelfLink: Output only. [Output Only] The URL for this managed instance
+	// group. The server defines
 	// this URL.
 	SelfLink string `json:"selfLink,omitempty"`
 	// StandbyPolicy: Standby policy for stopped and suspended instances.
 	StandbyPolicy *InstanceGroupManagerStandbyPolicy `json:"standbyPolicy,omitempty"`
 	// StatefulPolicy: Stateful configuration for this Instanced Group Manager
 	StatefulPolicy *StatefulPolicy `json:"statefulPolicy,omitempty"`
-	// Status: [Output Only] The status of this managed instance group.
+	// Status: Output only. [Output Only] The status of this managed instance
+	// group.
 	Status *InstanceGroupManagerStatus `json:"status,omitempty"`
 	// TargetPools: The URLs for all TargetPool resources to which instances in
 	// theinstanceGroup field are added. The target pools automatically
@@ -22977,7 +23669,7 @@ type InstanceGroupManager struct {
 	// remaining instances. For more information, read aboutcanary
 	// updates.
 	Versions []*InstanceGroupManagerVersion `json:"versions,omitempty"`
-	// Zone: [Output Only] The URL of azone
+	// Zone: Output only. [Output Only] The URL of azone
 	// where the managed instance group is located (for zonal resources).
 	Zone string `json:"zone,omitempty"`
 
@@ -23002,13 +23694,13 @@ func (s InstanceGroupManager) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerActionsSummary struct {
-	// Abandoning: [Output Only] The total number of instances in the managed
-	// instance group
+	// Abandoning: Output only. [Output Only] The total number of instances in the
+	// managed instance group
 	// that are scheduled to be abandoned. Abandoning an instance removes it
 	// from the managed instance group without deleting it.
 	Abandoning int64 `json:"abandoning,omitempty"`
-	// Creating: [Output Only] The number of instances in the managed instance
-	// group that
+	// Creating: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are scheduled to be created or are currently being created. If the
 	// group
 	// fails to create any of these instances, it tries again until it creates
@@ -23018,56 +23710,56 @@ type InstanceGroupManagerActionsSummary struct {
 	// populated;
 	// instead, the creatingWithoutRetries field will be populated.
 	Creating int64 `json:"creating,omitempty"`
-	// CreatingWithoutRetries: [Output Only] The number of instances that the
-	// managed instance group
+	// CreatingWithoutRetries: Output only. [Output Only] The number of instances
+	// that the managed instance group
 	// will attempt to create. The group attempts to create each instance
 	// only once. If the group fails to create any of these instances, it
 	// decreases the group's targetSize value accordingly.
 	CreatingWithoutRetries int64 `json:"creatingWithoutRetries,omitempty"`
-	// Deleting: [Output Only] The number of instances in the managed instance
-	// group that
+	// Deleting: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are scheduled to be deleted or are currently being deleted.
 	Deleting int64 `json:"deleting,omitempty"`
-	// None: [Output Only] The number of instances in the managed instance group
-	// that
+	// None: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are running and have no scheduled actions.
 	None int64 `json:"none,omitempty"`
-	// Recreating: [Output Only] The number of instances in the managed instance
-	// group that
+	// Recreating: Output only. [Output Only] The number of instances in the
+	// managed instance group that
 	// are scheduled to be recreated or are currently being being
 	// recreated.
 	// Recreating an instance deletes the existing root persistent disk
 	// and creates a new disk from the image that is defined in the
 	// instance template.
 	Recreating int64 `json:"recreating,omitempty"`
-	// Refreshing: [Output Only] The number of instances in the managed instance
-	// group that
+	// Refreshing: Output only. [Output Only] The number of instances in the
+	// managed instance group that
 	// are being reconfigured with properties that do not require a restart
 	// or a recreate action. For example, setting or removing target
 	// pools for the instance.
 	Refreshing int64 `json:"refreshing,omitempty"`
-	// Restarting: [Output Only] The number of instances in the managed instance
-	// group that
+	// Restarting: Output only. [Output Only] The number of instances in the
+	// managed instance group that
 	// are scheduled to be restarted or are currently being restarted.
 	Restarting int64 `json:"restarting,omitempty"`
-	// Resuming: [Output Only] The number of instances in the managed instance
-	// group that
+	// Resuming: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are scheduled to be resumed or are currently being resumed.
 	Resuming int64 `json:"resuming,omitempty"`
-	// Starting: [Output Only] The number of instances in the managed instance
-	// group that
+	// Starting: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are scheduled to be started or are currently being started.
 	Starting int64 `json:"starting,omitempty"`
-	// Stopping: [Output Only] The number of instances in the managed instance
-	// group that
+	// Stopping: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are scheduled to be stopped or are currently being stopped.
 	Stopping int64 `json:"stopping,omitempty"`
-	// Suspending: [Output Only] The number of instances in the managed instance
-	// group that
+	// Suspending: Output only. [Output Only] The number of instances in the
+	// managed instance group that
 	// are scheduled to be suspended or are currently being suspended.
 	Suspending int64 `json:"suspending,omitempty"`
-	// Verifying: [Output Only] The number of instances in the managed instance
-	// group that
+	// Verifying: Output only. [Output Only] The number of instances in the managed
+	// instance group that
 	// are being verified. See the managedInstances[].currentAction
 	// property in the listManagedInstances method documentation.
 	Verifying int64 `json:"verifying,omitempty"`
@@ -23090,27 +23782,28 @@ func (s InstanceGroupManagerActionsSummary) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerAggregatedList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroupManagersScopedList resources.
 	Items map[string]InstanceGroupManagersScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupManagerAggregatedList for an aggregated
 	// list of managed instance groups.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupManagerAggregatedListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -23133,8 +23826,8 @@ func (s InstanceGroupManagerAggregatedList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagerAggregatedListWarning: [Output Only] Informational
-// warning message.
+// InstanceGroupManagerAggregatedListWarning: Output only. [Output Only]
+// Informational warning message.
 type InstanceGroupManagerAggregatedListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -23442,25 +24135,26 @@ func (s InstanceGroupManagerInstanceLifecyclePolicy) MarshalJSON() ([]byte, erro
 
 // InstanceGroupManagerList: [Output Only] A list of managed instance groups.
 type InstanceGroupManagerList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroupManager resources.
 	Items []*InstanceGroupManager `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// always
 	// compute#instanceGroupManagerList for a list of managed instance groups.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupManagerListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -23483,8 +24177,8 @@ func (s InstanceGroupManagerList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagerListWarning: [Output Only] Informational warning
-// message.
+// InstanceGroupManagerListWarning: Output only. [Output Only] Informational
+// warning message.
 type InstanceGroupManagerListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -23632,17 +24326,17 @@ func (s InstanceGroupManagerListWarningData) MarshalJSON() ([]byte, error) {
 // owning
 // InstanceGroupManager.
 type InstanceGroupManagerResizeRequest struct {
-	// CreationTimestamp: [Output Only] The creation timestamp for this resize
-	// request inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this resize request inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] A unique identifier for this resource type. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupManagerResizeRequest for
 	// resize requests.
 	Kind string `json:"kind,omitempty"`
@@ -23660,14 +24354,14 @@ type InstanceGroupManagerResizeRequest struct {
 	// used
 	// together with 'instances'.
 	ResizeBy int64 `json:"resizeBy,omitempty"`
-	// SelfLink: [Output Only] The URL for this resize request. The server
-	// defines
+	// SelfLink: Output only. [Output Only] The URL for this resize request. The
+	// server defines
 	// this URL.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
-	// State: [Output only] Current state of the request.
+	// State: Output only. [Output only] Current state of the request.
 	//
 	// Possible values:
 	//   "ACCEPTED" - The request was created successfully and was accepted for
@@ -23683,9 +24377,9 @@ type InstanceGroupManagerResizeRequest struct {
 	//   "STATE_UNSPECIFIED" - Default value. This value should never be returned.
 	//   "SUCCEEDED" - The request succeeded.
 	State string `json:"state,omitempty"`
-	// Status: [Output only] Status of the request.
+	// Status: Output only. [Output only] Status of the request.
 	Status *InstanceGroupManagerResizeRequestStatus `json:"status,omitempty"`
-	// Zone: [Output Only] The URL of azone
+	// Zone: Output only. [Output Only] The URL of azone
 	// where the resize request is located. Populated only for zonal
 	// resize
 	// requests.
@@ -23712,16 +24406,16 @@ func (s InstanceGroupManagerResizeRequest) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerResizeRequestStatus struct {
-	// Error: [Output only] Fatal errors encountered during the queueing
-	// or
+	// Error: Output only. [Output only] Fatal errors encountered during the
+	// queueing or
 	// provisioning phases of the ResizeRequest that caused the transition to
 	// the FAILED state. Contrary to the last_attempt errors, this field is
 	// final and errors are never removed from here, as the ResizeRequest is
 	// not
 	// going to retry.
 	Error *InstanceGroupManagerResizeRequestStatusError `json:"error,omitempty"`
-	// LastAttempt: [Output only] Information about the last attempt to fulfill the
-	// request.
+	// LastAttempt: Output only. [Output only] Information about the last attempt
+	// to fulfill the request.
 	// The value is temporary since the ResizeRequest can retry, as long as
 	// it's
 	// still active and the last attempt value can either be cleared or
@@ -23753,8 +24447,8 @@ func (s InstanceGroupManagerResizeRequestStatus) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagerResizeRequestStatusError: [Output only] Fatal errors
-// encountered during the queueing or
+// InstanceGroupManagerResizeRequestStatusError: Output only. [Output only]
+// Fatal errors encountered during the queueing or
 // provisioning phases of the ResizeRequest that caused the transition to
 // the FAILED state. Contrary to the last_attempt errors, this field is
 // final and errors are never removed from here, as the ResizeRequest is
@@ -23842,7 +24536,7 @@ func (s InstanceGroupManagerResizeRequestStatusErrorErrorsErrorDetails) MarshalJ
 }
 
 type InstanceGroupManagerResizeRequestStatusLastAttempt struct {
-	// Error: Errors that prevented the ResizeRequest to be fulfilled.
+	// Error: Output only. Errors that prevented the ResizeRequest to be fulfilled.
 	Error *InstanceGroupManagerResizeRequestStatusLastAttemptError `json:"error,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Error") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -23862,8 +24556,8 @@ func (s InstanceGroupManagerResizeRequestStatusLastAttempt) MarshalJSON() ([]byt
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagerResizeRequestStatusLastAttemptError: Errors that
-// prevented the ResizeRequest to be fulfilled.
+// InstanceGroupManagerResizeRequestStatusLastAttemptError: Output only. Errors
+// that prevented the ResizeRequest to be fulfilled.
 type InstanceGroupManagerResizeRequestStatusLastAttemptError struct {
 	// Errors: [Output Only] The array of errors encountered while processing
 	// this
@@ -23948,25 +24642,26 @@ func (s InstanceGroupManagerResizeRequestStatusLastAttemptErrorErrorsErrorDetail
 // InstanceGroupManagerResizeRequestsListResponse: [Output Only] A list of
 // resize requests.
 type InstanceGroupManagerResizeRequestsListResponse struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of resize request resources.
 	Items []*InstanceGroupManagerResizeRequest `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#instanceGroupManagerResizeRequestList for
 	// a list of resize requests.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupManagerResizeRequestsListResponseWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -23989,8 +24684,8 @@ func (s InstanceGroupManagerResizeRequestsListResponse) MarshalJSON() ([]byte, e
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagerResizeRequestsListResponseWarning: [Output Only]
-// Informational warning message.
+// InstanceGroupManagerResizeRequestsListResponseWarning: Output only. [Output
+// Only] Informational warning message.
 type InstanceGroupManagerResizeRequestsListResponseWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -24200,14 +24895,14 @@ func (s InstanceGroupManagerStandbyPolicy) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerStatus struct {
-	// AllInstancesConfig: [Output only] Status of all-instances configuration on
-	// the group.
+	// AllInstancesConfig: Output only. [Output only] Status of all-instances
+	// configuration on the group.
 	AllInstancesConfig *InstanceGroupManagerStatusAllInstancesConfig `json:"allInstancesConfig,omitempty"`
-	// Autoscaler: [Output Only] The URL of theAutoscaler
+	// Autoscaler: Output only. [Output Only] The URL of theAutoscaler
 	// that targets this instance group manager.
 	Autoscaler string `json:"autoscaler,omitempty"`
-	// IsStable: [Output Only] A bit indicating whether the managed instance group
-	// is in a
+	// IsStable: Output only. [Output Only] A bit indicating whether the managed
+	// instance group is in a
 	// stable state. A stable state means that: none of the instances in
 	// the
 	// managed instance group is currently undergoing any type of change
@@ -24217,10 +24912,11 @@ type InstanceGroupManagerStatus struct {
 	// for instances in the managed instance group; and the managed instance
 	// group itself is not being modified.
 	IsStable bool `json:"isStable,omitempty"`
-	// Stateful: [Output Only] Stateful status of the given Instance Group Manager.
+	// Stateful: Output only. [Output Only] Stateful status of the given Instance
+	// Group Manager.
 	Stateful *InstanceGroupManagerStatusStateful `json:"stateful,omitempty"`
-	// VersionTarget: [Output Only] A status of consistency of Instances' versions
-	// with their
+	// VersionTarget: Output only. [Output Only] A status of consistency of
+	// Instances' versions with their
 	// target version specified by version field on Instance Group
 	// Manager.
 	VersionTarget *InstanceGroupManagerStatusVersionTarget `json:"versionTarget,omitempty"`
@@ -24243,12 +24939,12 @@ func (s InstanceGroupManagerStatus) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerStatusAllInstancesConfig struct {
-	// CurrentRevision: [Output Only] Current all-instances configuration
-	// revision.
+	// CurrentRevision: Output only. [Output Only] Current all-instances
+	// configuration revision.
 	// This value is in RFC3339 text format.
 	CurrentRevision string `json:"currentRevision,omitempty"`
-	// Effective: [Output Only] A bit indicating whether this configuration
-	// has
+	// Effective: Output only. [Output Only] A bit indicating whether this
+	// configuration has
 	// been applied to all managed instances in the group.
 	Effective bool `json:"effective,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "CurrentRevision") to
@@ -24270,16 +24966,16 @@ func (s InstanceGroupManagerStatusAllInstancesConfig) MarshalJSON() ([]byte, err
 }
 
 type InstanceGroupManagerStatusStateful struct {
-	// HasStatefulConfig: [Output Only] A bit indicating whether the managed
-	// instance group
+	// HasStatefulConfig: Output only. [Output Only] A bit indicating whether the
+	// managed instance group
 	// has stateful configuration, that is, if you have configured any items
 	// in a stateful policy or in per-instance configs.
 	// The group might report that it has no stateful configuration even when
 	// there is still some preserved state on a managed instance, for example,
 	// if you have deleted all PICs but not yet applied those deletions.
 	HasStatefulConfig bool `json:"hasStatefulConfig,omitempty"`
-	// PerInstanceConfigs: [Output Only] Status of per-instance configurations on
-	// the instances.
+	// PerInstanceConfigs: Output only. [Output Only] Status of per-instance
+	// configurations on the instances.
 	PerInstanceConfigs *InstanceGroupManagerStatusStatefulPerInstanceConfigs `json:"perInstanceConfigs,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "HasStatefulConfig") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -24300,8 +24996,8 @@ func (s InstanceGroupManagerStatusStateful) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagerStatusStatefulPerInstanceConfigs struct {
-	// AllEffective: A bit indicating if all of the group's per-instance
-	// configurations
+	// AllEffective: Output only. A bit indicating if all of the group's
+	// per-instance configurations
 	// (listed in the output of a listPerInstanceConfigs API call) have
 	// status EFFECTIVE or there are no per-instance-configs.
 	AllEffective bool `json:"allEffective,omitempty"`
@@ -24324,8 +25020,8 @@ func (s InstanceGroupManagerStatusStatefulPerInstanceConfigs) MarshalJSON() ([]b
 }
 
 type InstanceGroupManagerStatusVersionTarget struct {
-	// IsReached: [Output Only] A bit indicating whether version target has been
-	// reached
+	// IsReached: Output only. [Output Only] A bit indicating whether version
+	// target has been reached
 	// in this managed instance group, i.e. all instances are in their
 	// target
 	// version. Instances' target version are specified byversion field on Instance
@@ -24735,10 +25431,11 @@ func (s InstanceGroupManagersDeletePerInstanceConfigsReq) MarshalJSON() ([]byte,
 }
 
 type InstanceGroupManagersListErrorsResponse struct {
-	// Items: [Output Only] The list of errors of the managed instance group.
+	// Items: Output only. [Output Only] The list of errors of the managed instance
+	// group.
 	Items []*InstanceManagedByIgmError `json:"items,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
@@ -24767,11 +25464,11 @@ func (s InstanceGroupManagersListErrorsResponse) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupManagersListManagedInstancesResponse struct {
-	// ManagedInstances: [Output Only] The list of instances in the managed
-	// instance group.
+	// ManagedInstances: Output only. [Output Only] The list of instances in the
+	// managed instance group.
 	ManagedInstances []*ManagedInstance `json:"managedInstances,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
@@ -24800,17 +25497,17 @@ func (s InstanceGroupManagersListManagedInstancesResponse) MarshalJSON() ([]byte
 }
 
 type InstanceGroupManagersListPerInstanceConfigsResp struct {
-	// Items: [Output Only] The list of PerInstanceConfig.
+	// Items: Output only. [Output Only] The list of PerInstanceConfig.
 	Items []*PerInstanceConfig `json:"items,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupManagersListPerInstanceConfigsRespWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -24833,8 +25530,8 @@ func (s InstanceGroupManagersListPerInstanceConfigsResp) MarshalJSON() ([]byte,
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagersListPerInstanceConfigsRespWarning: [Output Only]
-// Informational warning message.
+// InstanceGroupManagersListPerInstanceConfigsRespWarning: Output only. [Output
+// Only] Informational warning message.
 type InstanceGroupManagersListPerInstanceConfigsRespWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -25045,12 +25742,12 @@ func (s InstanceGroupManagersResumeInstancesRequest) MarshalJSON() ([]byte, erro
 }
 
 type InstanceGroupManagersScopedList struct {
-	// InstanceGroupManagers: [Output Only] The list of managed instance groups
-	// that are contained in
+	// InstanceGroupManagers: Output only. [Output Only] The list of managed
+	// instance groups that are contained in
 	// the specified project and zone.
 	InstanceGroupManagers []*InstanceGroupManager `json:"instanceGroupManagers,omitempty"`
-	// Warning: [Output Only] The warning that replaces the list of managed
-	// instance
+	// Warning: Output only. [Output Only] The warning that replaces the list of
+	// managed instance
 	// groups when the list is empty.
 	Warning *InstanceGroupManagersScopedListWarning `json:"warning,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "InstanceGroupManagers") to
@@ -25071,8 +25768,8 @@ func (s InstanceGroupManagersScopedList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupManagersScopedListWarning: [Output Only] The warning that
-// replaces the list of managed instance
+// InstanceGroupManagersScopedListWarning: Output only. [Output Only] The
+// warning that replaces the list of managed instance
 // groups when the list is empty.
 type InstanceGroupManagersScopedListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
@@ -25400,25 +26097,26 @@ func (s InstanceGroupsAddInstancesRequest) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupsListInstances struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceWithNamedPorts resources.
 	Items []*InstanceWithNamedPorts `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceGroupsListInstances for the list of instances
 	// in the specified instance group.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *InstanceGroupsListInstancesWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -25441,8 +26139,8 @@ func (s InstanceGroupsListInstances) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupsListInstancesWarning: [Output Only] Informational warning
-// message.
+// InstanceGroupsListInstancesWarning: Output only. [Output Only] Informational
+// warning message.
 type InstanceGroupsListInstancesWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -25634,11 +26332,11 @@ func (s InstanceGroupsRemoveInstancesRequest) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceGroupsScopedList struct {
-	// InstanceGroups: [Output Only] The list ofinstance
+	// InstanceGroups: Output only. [Output Only] The list ofinstance
 	// groups that are contained in this scope.
 	InstanceGroups []*InstanceGroup `json:"instanceGroups,omitempty"`
-	// Warning: [Output Only] An informational warning that replaces the list
-	// of
+	// Warning: Output only. [Output Only] An informational warning that replaces
+	// the list of
 	// instance groups when the list is empty.
 	Warning *InstanceGroupsScopedListWarning `json:"warning,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "InstanceGroups") to
@@ -25659,8 +26357,8 @@ func (s InstanceGroupsScopedList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// InstanceGroupsScopedListWarning: [Output Only] An informational warning that
-// replaces the list of
+// InstanceGroupsScopedListWarning: Output only. [Output Only] An informational
+// warning that replaces the list of
 // instance groups when the list is empty.
 type InstanceGroupsScopedListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
@@ -25839,7 +26537,8 @@ type InstanceList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Instance resources.
 	Items []*Instance `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#instanceList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#instanceList
 	// for lists of Instance resources.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -25850,7 +26549,7 @@ type InstanceList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstanceListWarning `json:"warning,omitempty"`
@@ -26020,8 +26719,8 @@ type InstanceListReferrers struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Reference resources.
 	Items []*Reference `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#instanceListReferrers
-	// for lists of Instance referrers.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#instanceListReferrers for lists of Instance referrers.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -26031,7 +26730,7 @@ type InstanceListReferrers struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstanceListReferrersWarning `json:"warning,omitempty"`
@@ -26196,14 +26895,15 @@ func (s InstanceListReferrersWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceManagedByIgmError struct {
-	// Error: [Output Only] Contents of the error.
+	// Error: Output only. [Output Only] Contents of the error.
 	Error *InstanceManagedByIgmErrorManagedInstanceError `json:"error,omitempty"`
-	// InstanceActionDetails: [Output Only] Details of the instance action that
-	// triggered this error.
+	// InstanceActionDetails: Output only. [Output Only] Details of the instance
+	// action that triggered this error.
 	// May be null, if the error was not caused by an action on an instance.
 	// This field is optional.
 	InstanceActionDetails *InstanceManagedByIgmErrorInstanceActionDetails `json:"instanceActionDetails,omitempty"`
-	// Timestamp: [Output Only] The time that this error occurred.
+	// Timestamp: Output only. [Output Only] The time that this error
+	// occurred.
 	// This value is in RFC3339 text format.
 	Timestamp string `json:"timestamp,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Error") to unconditionally
@@ -26225,8 +26925,8 @@ func (s InstanceManagedByIgmError) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceManagedByIgmErrorInstanceActionDetails struct {
-	// Action: [Output Only] Action that managed instance group was executing
-	// on
+	// Action: Output only. [Output Only] Action that managed instance group was
+	// executing on
 	// the instance when the error occurred. Possible values:
 	//
 	// Possible values:
@@ -26268,11 +26968,11 @@ type InstanceManagedByIgmErrorInstanceActionDetails struct {
 	//  2. Waiting for addition verification steps performed as post-instance
 	//     creation (subject to future extensions).
 	Action string `json:"action,omitempty"`
-	// Instance: [Output Only] The URL of the instance.
+	// Instance: Output only. [Output Only] The URL of the instance.
 	// The URL can be set even if the instance has not yet been created.
 	Instance string `json:"instance,omitempty"`
-	// Version: [Output Only] Version this instance was created from, or was
-	// being
+	// Version: Output only. [Output Only] Version this instance was created from,
+	// or was being
 	// created from, but the creation failed. Corresponds to one of the
 	// versions
 	// that were set on the Instance Group Manager resource at the time
@@ -26298,9 +26998,9 @@ func (s InstanceManagedByIgmErrorInstanceActionDetails) MarshalJSON() ([]byte, e
 }
 
 type InstanceManagedByIgmErrorManagedInstanceError struct {
-	// Code: [Output Only] Error code.
+	// Code: Output only. [Output Only] Error code.
 	Code string `json:"code,omitempty"`
-	// Message: [Output Only] Error message.
+	// Message: Output only. [Output Only] Error message.
 	Message string `json:"message,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Code") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -26366,9 +27066,11 @@ type InstanceParams struct {
 	// ResourceManagerTags: Resource manager tags to be bound to the instance. Tag
 	// keys and values
 	// have the same definition as resource
-	// manager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and
-	// values are in the format `tagValues/456`. The field is ignored (both PUT
-	// &
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
 	// PATCH) when empty.
 	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "RequestValidForDuration") to
@@ -26614,14 +27316,15 @@ type InstanceSettings struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve the resource.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#instance_settings
-	// for instance settings.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#instance_settings for instance settings.
 	Kind string `json:"kind,omitempty"`
 	// Metadata: The metadata key/value pairs assigned to all the instances in
 	// the
 	// corresponding scope.
 	Metadata *InstanceSettingsMetadata `json:"metadata,omitempty"`
-	// Zone: [Output Only] URL of the zone where the resource resides
+	// Zone: Output only. [Output Only] URL of the zone where the resource
+	// resides
 	// You must specify this field as part of the HTTP request URL. It is
 	// not
 	// settable as a field in the request body.
@@ -26651,7 +27354,8 @@ type InstanceSettingsMetadata struct {
 	// Items: A metadata key/value items map.
 	// The total size of all keys and values must be less than 512KB.
 	Items map[string]string `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#metadata
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#metadata
 	// for metadata.
 	Kind string `json:"kind,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Items") to unconditionally
@@ -26692,19 +27396,19 @@ func (s InstanceSettingsMetadata) MarshalJSON() ([]byte, error) {
 //
 // For more information, readInstance Templates.
 type InstanceTemplate struct {
-	// CreationTimestamp: [Output Only] The creation timestamp for this instance
-	// template inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this instance template inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] A unique identifier for this instance template. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this instance
+	// template. The server
 	// defines this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceTemplate for instance templates.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource; provided by the client when the resource is
@@ -26720,12 +27424,12 @@ type InstanceTemplate struct {
 	Name string `json:"name,omitempty"`
 	// Properties: The instance properties for this instance template.
 	Properties *InstanceProperties `json:"properties,omitempty"`
-	// Region: [Output Only] URL of the region where the instance template resides.
-	// Only
+	// Region: Output only. [Output Only] URL of the region where the instance
+	// template resides. Only
 	// applicable for regional resources.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] The URL for this instance template. The server
-	// defines this
+	// SelfLink: Output only. [Output Only] The URL for this instance template. The
+	// server defines this
 	// URL.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SourceInstance: The source instance used to create the template. You can
@@ -26771,7 +27475,7 @@ type InstanceTemplateAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceTemplatesScopedList resources.
 	Items map[string]InstanceTemplatesScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -26781,7 +27485,7 @@ type InstanceTemplateAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstanceTemplateAggregatedListWarning `json:"warning,omitempty"`
@@ -26952,7 +27656,7 @@ type InstanceTemplateList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceTemplate resources.
 	Items []*InstanceTemplate `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#instanceTemplatesListResponse for instance template
 	// lists.
 	Kind string `json:"kind,omitempty"`
@@ -26964,7 +27668,7 @@ type InstanceTemplateList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstanceTemplateListWarning `json:"warning,omitempty"`
@@ -27297,12 +28001,12 @@ func (s InstanceTemplatesScopedListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type InstanceWithNamedPorts struct {
-	// Instance: [Output Only] The URL of the instance.
+	// Instance: Output only. [Output Only] The URL of the instance.
 	Instance string `json:"instance,omitempty"`
-	// NamedPorts: [Output Only] The named ports that belong to this instance
-	// group.
+	// NamedPorts: Output only. [Output Only] The named ports that belong to this
+	// instance group.
 	NamedPorts []*NamedPort `json:"namedPorts,omitempty"`
-	// Status: [Output Only] The status of the instance.
+	// Status: Output only. [Output Only] The status of the instance.
 	//
 	// Possible values:
 	//   "DEPROVISIONING" - The instance is halted and we are performing tear down
@@ -27414,17 +28118,17 @@ func (s InstancesGetEffectiveFirewallsResponse) MarshalJSON() ([]byte, error) {
 }
 
 type InstancesGetEffectiveFirewallsResponseEffectiveFirewallPolicy struct {
-	// DisplayName: [Output Only] Deprecated, please use short name instead. The
-	// display name
+	// DisplayName: Output only. [Output Only] Deprecated, please use short name
+	// instead. The display name
 	// of the firewall policy.
 	DisplayName string `json:"displayName,omitempty"`
-	// Name: [Output Only] The name of the firewall policy.
+	// Name: Output only. [Output Only] The name of the firewall policy.
 	Name string `json:"name,omitempty"`
-	// PacketMirroringRules: [Output Only] The packet mirroring rules that apply to
-	// the instance.
+	// PacketMirroringRules: Output only. [Output Only] The packet mirroring rules
+	// that apply to the instance.
 	PacketMirroringRules []*FirewallPolicyRule `json:"packetMirroringRules,omitempty"`
-	// Priority: [Output only] Priority of firewall policy association. Not
-	// applicable for
+	// Priority: Output only. [Output only] Priority of firewall policy
+	// association. Not applicable for
 	// type=HIERARCHY.
 	Priority int64 `json:"priority,omitempty"`
 	// Rules: [Output Only] The rules that apply to the instance. Only rules
@@ -27432,10 +28136,10 @@ type InstancesGetEffectiveFirewallsResponseEffectiveFirewallPolicy struct {
 	// target the specific VM instance are returned if target service accounts
 	// or target secure tags are specified in the rules.
 	Rules []*FirewallPolicyRule `json:"rules,omitempty"`
-	// ShortName: [Output Only] The short name of the firewall policy.
+	// ShortName: Output only. [Output Only] The short name of the firewall policy.
 	ShortName string `json:"shortName,omitempty"`
-	// Type: [Output Only] The type of the firewall policy. Can be one of
-	// HIERARCHY,
+	// Type: Output only. [Output Only] The type of the firewall policy. Can be one
+	// of HIERARCHY,
 	// NETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.
 	//
 	// Possible values:
@@ -27911,8 +28615,8 @@ func (s InstancesStartWithEncryptionKeyRequest) MarshalJSON() ([]byte, error) {
 //
 // You can use instant snapshots to create disk rollback points quickly..
 type InstantSnapshot struct {
-	// Architecture: [Output Only] The architecture of the instant snapshot. Valid
-	// values are
+	// Architecture: Output only. [Output Only] The architecture of the instant
+	// snapshot. Valid values are
 	// ARM64 or X86_64.
 	//
 	// Possible values:
@@ -27921,21 +28625,23 @@ type InstantSnapshot struct {
 	//   "ARM64" - Machines with architecture ARM64
 	//   "X86_64" - Machines with architecture X86_64
 	Architecture string `json:"architecture,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// DiskSizeGb: [Output Only] Size of the source disk, specified in GB.
+	// DiskSizeGb: Output only. [Output Only] Size of the source disk, specified in
+	// GB.
 	DiskSizeGb int64 `json:"diskSizeGb,omitempty,string"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#instantSnapshot for
-	// InstantSnapshot resources.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#instantSnapshot for InstantSnapshot resources.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// InstantSnapshot, which
@@ -27966,22 +28672,22 @@ type InstantSnapshot struct {
 	// cannot
 	// be a dash.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] URL of the region where the instant snapshot
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the instant
+	// snapshot resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Region string `json:"region,omitempty"`
-	// ResourceStatus: [Output Only] Status information for the instant snapshot
-	// resource.
+	// ResourceStatus: Output only. [Output Only] Status information for the
+	// instant snapshot resource.
 	ResourceStatus *InstantSnapshotResourceStatus `json:"resourceStatus,omitempty"`
 	// SatisfiesPzi: Output only. Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource's
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource's resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// SourceDisk: URL of the source disk used to create this instant
 	// snapshot.
@@ -28010,13 +28716,13 @@ type InstantSnapshot struct {
 	//      -
 	//        regions/region/disks/disk
 	SourceDisk string `json:"sourceDisk,omitempty"`
-	// SourceDiskId: [Output Only] The ID value of the disk used to create this
-	// InstantSnapshot.
+	// SourceDiskId: Output only. [Output Only] The ID value of the disk used to
+	// create this InstantSnapshot.
 	// This value may be used to determine whether the InstantSnapshot
 	// was taken from the current or a previous instance of a given disk name.
 	SourceDiskId string `json:"sourceDiskId,omitempty"`
-	// Status: [Output Only] The status of the instantSnapshot. This can
-	// beCREATING, DELETING, FAILED, orREADY.
+	// Status: Output only. [Output Only] The status of the instantSnapshot. This
+	// can beCREATING, DELETING, FAILED, orREADY.
 	//
 	// Possible values:
 	//   "CREATING" - InstantSnapshot creation is in progress.
@@ -28027,7 +28733,8 @@ type InstantSnapshot struct {
 	// used for
 	// Disk restoration
 	Status string `json:"status,omitempty"`
-	// Zone: [Output Only] URL of the zone where the instant snapshot resides.
+	// Zone: Output only. [Output Only] URL of the zone where the instant snapshot
+	// resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Zone string `json:"zone,omitempty"`
@@ -28057,7 +28764,7 @@ type InstantSnapshotAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstantSnapshotsScopedList resources.
 	Items map[string]InstantSnapshotsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#instantSnapshotAggregatedList for aggregated lists
 	// of
 	// instantSnapshots.
@@ -28070,9 +28777,9 @@ type InstantSnapshotAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstantSnapshotAggregatedListWarning `json:"warning,omitempty"`
@@ -28243,7 +28950,7 @@ type InstantSnapshotList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstantSnapshot resources.
 	Items []*InstantSnapshot `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -28253,7 +28960,7 @@ type InstantSnapshotList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InstantSnapshotListWarning `json:"warning,omitempty"`
@@ -28674,11 +29381,12 @@ type Interconnect struct {
 	//   "IF_L2_FORWARDING" - L2 Interconnect Attachment Forwarding
 	//   "IF_MACSEC" - Media Access Control security (MACsec)
 	AvailableFeatures []string `json:"availableFeatures,omitempty"`
-	// CircuitInfos: [Output Only] A list of CircuitInfo objects, that describe the
-	// individual
+	// CircuitInfos: Output only. [Output Only] A list of CircuitInfo objects, that
+	// describe the individual
 	// circuits in this LAG.
 	CircuitInfos []*InterconnectCircuitInfo `json:"circuitInfos,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// CustomerName: Customer name, to put in the Letter of Authorization as the
@@ -28689,27 +29397,27 @@ type Interconnect struct {
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// ExpectedOutages: [Output Only] A list of outages expected for this
-	// Interconnect.
+	// ExpectedOutages: Output only. [Output Only] A list of outages expected for
+	// this Interconnect.
 	ExpectedOutages []*InterconnectOutageNotification `json:"expectedOutages,omitempty"`
-	// GoogleIpAddress: [Output Only] IP address configured on the Google side of
-	// the Interconnect
+	// GoogleIpAddress: Output only. [Output Only] IP address configured on the
+	// Google side of the Interconnect
 	// link. This can be used only for ping tests.
 	GoogleIpAddress string `json:"googleIpAddress,omitempty"`
-	// GoogleReferenceId: [Output Only] Google reference ID to be used when raising
-	// support tickets
+	// GoogleReferenceId: Output only. [Output Only] Google reference ID to be used
+	// when raising support tickets
 	// with Google or otherwise to debug backend connectivity issues.
 	GoogleReferenceId string `json:"googleReferenceId,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// InterconnectAttachments: [Output Only] A list of the URLs of all
-	// InterconnectAttachments configured
+	// InterconnectAttachments: Output only. [Output Only] A list of the URLs of
+	// all InterconnectAttachments configured
 	// to use  this Interconnect.
 	InterconnectAttachments []string `json:"interconnectAttachments,omitempty"`
-	// InterconnectGroups: [Output Only] URLs of InterconnectGroups that include
-	// this Interconnect.
+	// InterconnectGroups: Output only. [Output Only] URLs of InterconnectGroups
+	// that include this Interconnect.
 	// Order is arbitrary and items are unique.
 	InterconnectGroups []string `json:"interconnectGroups,omitempty"`
 	// InterconnectType: Type of interconnect, which can take one of the following
@@ -28730,8 +29438,8 @@ type Interconnect struct {
 	//   "PARTNER" - A partner-managed interconnection shared between customers via
 	// partner.
 	InterconnectType string `json:"interconnectType,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#interconnect for
-	// interconnects.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#interconnect for interconnects.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// Interconnect, which
@@ -28801,8 +29509,8 @@ type Interconnect struct {
 	// required for users who sign up for Cloud Interconnect using
 	// workforce identity federation.
 	NocContactEmail string `json:"nocContactEmail,omitempty"`
-	// OperationalStatus: [Output Only] The current status of this Interconnect's
-	// functionality,
+	// OperationalStatus: Output only. [Output Only] The current status of this
+	// Interconnect's functionality,
 	// which can take one of the following values:
 	//
 	//    - OS_ACTIVE: A valid Interconnect, which is turned up and is ready to
@@ -28829,14 +29537,14 @@ type Interconnect struct {
 	// but not persisted
 	// as part of resource payload.
 	Params *InterconnectParams `json:"params,omitempty"`
-	// PeerIpAddress: [Output Only] IP address configured on the customer side of
-	// the
+	// PeerIpAddress: Output only. [Output Only] IP address configured on the
+	// customer side of the
 	// Interconnect link. The customer should configure this IP address
 	// during
 	// turnup when prompted by Google NOC. This can be used only for ping tests.
 	PeerIpAddress string `json:"peerIpAddress,omitempty"`
-	// ProvisionedLinkCount: [Output Only] Number of links actually provisioned in
-	// this interconnect.
+	// ProvisionedLinkCount: Output only. [Output Only] Number of links actually
+	// provisioned in this interconnect.
 	ProvisionedLinkCount int64 `json:"provisionedLinkCount,omitempty"`
 	// RemoteLocation: Indicates that this is a Cross-Cloud Interconnect. This
 	// field specifies the
@@ -28865,12 +29573,12 @@ type Interconnect struct {
 	// requested by the
 	// customer.
 	RequestedLinkCount int64 `json:"requestedLinkCount,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// State: [Output Only] The current state of Interconnect functionality, which
-	// can
+	// State: Output only. [Output Only] The current state of Interconnect
+	// functionality, which can
 	// take one of the following values:
 	//
 	//    - ACTIVE: The Interconnect is valid, turned up and ready to use.
@@ -28898,8 +29606,8 @@ type Interconnect struct {
 	//   "SUBZONE_A" - Subzone A.
 	//   "SUBZONE_B" - Subzone B.
 	Subzone string `json:"subzone,omitempty"`
-	// WireGroups: [Output Only] A list of the URLs of all CrossSiteNetwork
-	// WireGroups
+	// WireGroups: Output only. [Output Only] A list of the URLs of all
+	// CrossSiteNetwork WireGroups
 	// configured to use this Interconnect. The Interconnect cannot be deleted
 	// if
 	// this list is non-empty.
@@ -29035,8 +29743,8 @@ type InterconnectAttachment struct {
 	// AdminEnabled: Determines whether this Attachment will carry packets.
 	// Not present for PARTNER_PROVIDER.
 	AdminEnabled bool `json:"adminEnabled,omitempty"`
-	// AttachmentGroup: [Output Only] URL of the AttachmentGroup that includes this
-	// Attachment.
+	// AttachmentGroup: Output only. [Output Only] URL of the AttachmentGroup that
+	// includes this Attachment.
 	AttachmentGroup string `json:"attachmentGroup,omitempty"`
 	// Bandwidth: Provisioned bandwidth capacity for the interconnect attachment.
 	// For
@@ -29076,6 +29784,37 @@ type InterconnectAttachment struct {
 	//   "BPS_50M" - 50 Mbit/s
 	//   "BPS_5G" - 5 Gbit/s
 	Bandwidth string `json:"bandwidth,omitempty"`
+	// CandidateCloudRouterIpAddress: Single IPv4 address + prefix length to be
+	// configured on the cloud router
+	// interface for this interconnect attachment.
+	//
+	//    - Both candidate_cloud_router_ip_address and
+	//    candidate_customer_router_ip_address fields must be set or both must be
+	//    unset.
+	//    - Prefix length of both candidate_cloud_router_ip_address and
+	//    candidate_customer_router_ip_address must be the same.
+	//    - Max prefix length is 31.
+	CandidateCloudRouterIpAddress string `json:"candidateCloudRouterIpAddress,omitempty"`
+	// CandidateCloudRouterIpv6Address: Single IPv6 address + prefix length to be
+	// configured on the cloud router
+	// interface for this interconnect attachment.
+	//
+	//    - Both candidate_cloud_router_ipv6_address and
+	//    candidate_customer_router_ipv6_address fields must be set or both must
+	// be
+	//    unset.
+	//    - Prefix length of both candidate_cloud_router_ipv6_address and
+	//    candidate_customer_router_ipv6_address must be the same.
+	//    - Max prefix length is 126.
+	CandidateCloudRouterIpv6Address string `json:"candidateCloudRouterIpv6Address,omitempty"`
+	// CandidateCustomerRouterIpAddress: Single IPv4 address + prefix length to be
+	// configured on the customer router
+	// interface for this interconnect attachment.
+	CandidateCustomerRouterIpAddress string `json:"candidateCustomerRouterIpAddress,omitempty"`
+	// CandidateCustomerRouterIpv6Address: Single IPv6 address + prefix length to
+	// be configured on the customer router
+	// interface for this interconnect attachment.
+	CandidateCustomerRouterIpv6Address string `json:"candidateCustomerRouterIpv6Address,omitempty"`
 	// CandidateIpv6Subnets: This field is not available.
 	CandidateIpv6Subnets []string `json:"candidateIpv6Subnets,omitempty"`
 	// CandidateSubnets: Input only. Up to 16 candidate prefixes that can be used
@@ -29091,34 +29830,35 @@ type InterconnectAttachment struct {
 	// will
 	// randomly select an unused /29 from all of link-local space.
 	CandidateSubnets []string `json:"candidateSubnets,omitempty"`
-	// CloudRouterIpAddress: [Output Only] IPv4 address + prefix length to be
-	// configured on Cloud Router
+	// CloudRouterIpAddress: Output only. [Output Only] IPv4 address + prefix
+	// length to be configured on Cloud Router
 	// Interface for this interconnect attachment.
 	CloudRouterIpAddress string `json:"cloudRouterIpAddress,omitempty"`
-	// CloudRouterIpv6Address: [Output Only] IPv6 address + prefix length to be
-	// configured on Cloud
+	// CloudRouterIpv6Address: Output only. [Output Only] IPv6 address + prefix
+	// length to be configured on Cloud
 	// Router Interface for this interconnect attachment.
 	CloudRouterIpv6Address string `json:"cloudRouterIpv6Address,omitempty"`
 	// CloudRouterIpv6InterfaceId: This field is not available.
 	CloudRouterIpv6InterfaceId string `json:"cloudRouterIpv6InterfaceId,omitempty"`
-	// ConfigurationConstraints: [Output Only] Constraints for this attachment, if
-	// any. The attachment does
+	// ConfigurationConstraints: Output only. [Output Only] Constraints for this
+	// attachment, if any. The attachment does
 	// not work if these constraints are not met.
 	ConfigurationConstraints *InterconnectAttachmentConfigurationConstraints `json:"configurationConstraints,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// CustomerRouterIpAddress: [Output Only] IPv4 address + prefix length to be
-	// configured on the customer
+	// CustomerRouterIpAddress: Output only. [Output Only] IPv4 address + prefix
+	// length to be configured on the customer
 	// router subinterface for this interconnect attachment.
 	CustomerRouterIpAddress string `json:"customerRouterIpAddress,omitempty"`
-	// CustomerRouterIpv6Address: [Output Only] IPv6 address + prefix length to be
-	// configured on the
+	// CustomerRouterIpv6Address: Output only. [Output Only] IPv6 address + prefix
+	// length to be configured on the
 	// customer router subinterface for this interconnect attachment.
 	CustomerRouterIpv6Address string `json:"customerRouterIpv6Address,omitempty"`
 	// CustomerRouterIpv6InterfaceId: This field is not available.
 	CustomerRouterIpv6InterfaceId string `json:"customerRouterIpv6InterfaceId,omitempty"`
-	// DataplaneVersion: [Output Only] Dataplane version for this
+	// DataplaneVersion: Output only. [Output Only] Dataplane version for this
 	// InterconnectAttachment. This
 	// field is only present for Dataplane version 2 and higher. Absence of
 	// this
@@ -29180,13 +29920,13 @@ type InterconnectAttachment struct {
 	// receive
 	// traffic from such interconnect attachment.
 	Encryption string `json:"encryption,omitempty"`
-	// GoogleReferenceId: [Output Only] Google reference ID, to be used when
-	// raising support tickets
+	// GoogleReferenceId: Output only. [Output Only] Google reference ID, to be
+	// used when raising support tickets
 	// with Google or otherwise to debug backend connectivity issues.
 	// [Deprecated] This field is not used.
 	GoogleReferenceId string `json:"googleReferenceId,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// Interconnect: URL of the underlying Interconnect object that this
@@ -29216,7 +29956,7 @@ type InterconnectAttachment struct {
 	// address
 	// pool.
 	IpsecInternalAddresses []string `json:"ipsecInternalAddresses,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#interconnectAttachment for interconnect attachments.
 	Kind string `json:"kind,omitempty"`
 	// L2Forwarding: L2 Interconnect Attachment related config. This field is
@@ -29266,8 +30006,8 @@ type InterconnectAttachment struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// OperationalStatus: [Output Only] The current status of whether or not this
-	// interconnect
+	// OperationalStatus: Output only. [Output Only] The current status of whether
+	// or not this interconnect
 	// attachment is functional, which can take one of the following values:
 	//
 	//    - OS_ACTIVE: The attachment has been turned up and is ready to
@@ -29306,18 +30046,18 @@ type InterconnectAttachment struct {
 	// Output only for PARTNER type, mutable for PARTNER_PROVIDER, not
 	// available for DEDICATED.
 	PartnerMetadata *InterconnectAttachmentPartnerMetadata `json:"partnerMetadata,omitempty"`
-	// PrivateInterconnectInfo: [Output Only] Information specific to an
-	// InterconnectAttachment.
+	// PrivateInterconnectInfo: Output only. [Output Only] Information specific to
+	// an InterconnectAttachment.
 	// This property is populated if the interconnect that
 	// this is attached to is of type DEDICATED.
 	PrivateInterconnectInfo *InterconnectAttachmentPrivateInfo `json:"privateInterconnectInfo,omitempty"`
-	// Region: [Output Only] URL of the region where the regional interconnect
-	// attachment
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// interconnect attachment
 	// resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Region string `json:"region,omitempty"`
-	// RemoteService: [Output Only]
+	// RemoteService: Output only. [Output Only]
 	// If the attachment is on a Cross-Cloud Interconnect connection, this
 	// field
 	// contains the interconnect's remote location service provider.
@@ -29338,9 +30078,9 @@ type InterconnectAttachment struct {
 	// the
 	// network & region within which the Cloud Router is configured.
 	Router string `json:"router,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// StackType: The stack type for this interconnect attachment to identify
 	// whether the
@@ -29356,7 +30096,7 @@ type InterconnectAttachment struct {
 	//   "IPV4_ONLY" - The interconnect attachment will only be assigned IPv4
 	// addresses.
 	StackType string `json:"stackType,omitempty"`
-	// State: [Output Only] The current state of this attachment's
+	// State: Output only. [Output Only] The current state of this attachment's
 	// functionality.
 	// Enum values ACTIVE and UNPROVISIONED are shared by
 	// DEDICATED/PRIVATE,
@@ -29470,7 +30210,7 @@ type InterconnectAttachmentAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InterconnectAttachmentsScopedList resources.
 	Items map[string]InterconnectAttachmentsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#interconnectAttachmentAggregatedList for aggregated
 	// lists of interconnect attachments.
 	Kind string `json:"kind,omitempty"`
@@ -29482,9 +30222,9 @@ type InterconnectAttachmentAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InterconnectAttachmentAggregatedListWarning `json:"warning,omitempty"`
@@ -29650,7 +30390,7 @@ func (s InterconnectAttachmentAggregatedListWarningData) MarshalJSON() ([]byte,
 }
 
 type InterconnectAttachmentConfigurationConstraints struct {
-	// BgpMd5: [Output Only] Whether the attachment's BGP
+	// BgpMd5: Output only. [Output Only] Whether the attachment's BGP
 	// session
 	// requires/allows/disallows BGP MD5 authentication. This can take one of
 	// the following values: MD5_OPTIONAL, MD5_REQUIRED, MD5_UNSUPPORTED.
@@ -29674,8 +30414,8 @@ type InterconnectAttachmentConfigurationConstraints struct {
 	//   "MD5_UNSUPPORTED" - MD5_UNSUPPORTED: BGP MD5 authentication must not be
 	// configured
 	BgpMd5 string `json:"bgpMd5,omitempty"`
-	// BgpPeerAsnRanges: [Output Only] List of ASN ranges that the remote location
-	// is known to
+	// BgpPeerAsnRanges: Output only. [Output Only] List of ASN ranges that the
+	// remote location is known to
 	// support. Formatted as an array of inclusive ranges {min: min-value,
 	// max:
 	// max-value}. For example, [{min: 123, max: 123}, {min: 64512, max:
@@ -29738,7 +30478,8 @@ type InterconnectAttachmentGroup struct {
 	// The size of this map is limited by an "Attachments per group" quota.
 	Attachments map[string]InterconnectAttachmentGroupAttachment `json:"attachments,omitempty"`
 	Configured  *InterconnectAttachmentGroupConfigured           `json:"configured,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -29754,8 +30495,8 @@ type InterconnectAttachmentGroup struct {
 	// as
 	// described byAIP 154.
 	Etag string `json:"etag,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id     uint64                             `json:"id,omitempty,string"`
 	Intent *InterconnectAttachmentGroupIntent `json:"intent,omitempty"`
@@ -29764,7 +30505,7 @@ type InterconnectAttachmentGroup struct {
 	// Interconnects. Customers do not need to set this unless directed by
 	// Google Support.
 	InterconnectGroup string `json:"interconnectGroup,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Always
 	// compute#interconnectAttachmentGroup.
 	Kind             string                                       `json:"kind,omitempty"`
@@ -29780,7 +30521,7 @@ type InterconnectAttachmentGroup struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -29886,8 +30627,8 @@ func (s InterconnectAttachmentGroupConfiguredAvailabilitySLA) MarshalJSON() ([]b
 // the
 // same.
 type InterconnectAttachmentGroupConfiguredAvailabilitySLAIntendedSlaBlockers struct {
-	// Attachments: [Output Only] URLs of any particular Attachments to explain
-	// this
+	// Attachments: Output only. [Output Only] URLs of any particular Attachments
+	// to explain this
 	// blocker in more detail.
 	Attachments []string `json:"attachments,omitempty"`
 	// Possible values:
@@ -29899,26 +30640,27 @@ type InterconnectAttachmentGroupConfiguredAvailabilitySLAIntendedSlaBlockers str
 	//   "NO_ATTACHMENTS_IN_METRO_AND_ZONE"
 	//   "OTHER"
 	BlockerType string `json:"blockerType,omitempty"`
-	// DocumentationLink: [Output Only] The url of Google Cloud public
+	// DocumentationLink: Output only. [Output Only] The url of Google Cloud public
 	// documentation explaining
 	// this requirement. This is set for every type of requirement.
 	DocumentationLink string `json:"documentationLink,omitempty"`
-	// Explanation: [Output Only] A human-readable explanation of this requirement
-	// and
+	// Explanation: Output only. [Output Only] A human-readable explanation of this
+	// requirement and
 	// why it's not met. This is set for every type of requirement.
 	Explanation string `json:"explanation,omitempty"`
-	// Metros: [Output Only] Metros used to explain this blocker in more
-	// detail.
+	// Metros: Output only. [Output Only] Metros used to explain this blocker in
+	// more detail.
 	// These are three-letter lowercase strings like "iad". This will be set
 	// for some blockers (like NO_ATTACHMENTS_IN_METRO_AND_ZONE) but does
 	// not apply to others.
 	Metros []string `json:"metros,omitempty"`
-	// Regions: [Output Only] Regions used to explain this blocker in more
+	// Regions: Output only. [Output Only] Regions used to explain this blocker in
+	// more
 	// detail. These are region names formatted like "us-central1". This
 	// will be set for some blockers (like INCOMPATIBLE_REGIONS) but does
 	// not apply to others.
 	Regions []string `json:"regions,omitempty"`
-	// Zones: [Output Only] Zones used to explain this blocker in more
+	// Zones: Output only. [Output Only] Zones used to explain this blocker in more
 	// detail.
 	// Format is "zone1" and/or "zone2". This will be set for some blockers
 	// (like  MISSING_ZONE) but does not apply to others.
@@ -29996,7 +30738,7 @@ func (s InterconnectAttachmentGroupLogicalStructure) MarshalJSON() ([]byte, erro
 // Attachments in this group are in.
 type InterconnectAttachmentGroupLogicalStructureRegion struct {
 	Metros []*InterconnectAttachmentGroupLogicalStructureRegionMetro `json:"metros,omitempty"`
-	// Region: [Output Only] The name of a region, like "us-central1".
+	// Region: Output only. [Output Only] The name of a region, like "us-central1".
 	Region string `json:"region,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Metros") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -30020,7 +30762,7 @@ func (s InterconnectAttachmentGroupLogicalStructureRegion) MarshalJSON() ([]byte
 // metros of Attachments in this group in this region.
 type InterconnectAttachmentGroupLogicalStructureRegionMetro struct {
 	Facilities []*InterconnectAttachmentGroupLogicalStructureRegionMetroFacility `json:"facilities,omitempty"`
-	// Metro: [Output Only] The name of the metro, as a three-letter
+	// Metro: Output only. [Output Only] The name of the metro, as a three-letter
 	// lowercase
 	// string like "iad". This is the first component of the location of
 	// an
@@ -30048,7 +30790,8 @@ func (s InterconnectAttachmentGroupLogicalStructureRegionMetro) MarshalJSON() ([
 // Only] The facilities used for this group's Attachments'
 // Interconnects.
 type InterconnectAttachmentGroupLogicalStructureRegionMetroFacility struct {
-	// Facility: [Output Only] The name of a facility, like "iad-1234".
+	// Facility: Output only. [Output Only] The name of a facility, like
+	// "iad-1234".
 	Facility string                                                                `json:"facility,omitempty"`
 	Zones    []*InterconnectAttachmentGroupLogicalStructureRegionMetroFacilityZone `json:"zones,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Facility") to
@@ -30074,12 +30817,13 @@ func (s InterconnectAttachmentGroupLogicalStructureRegionMetroFacility) MarshalJ
 // in, in the given facilities.  This is inherited from their
 // Interconnects.
 type InterconnectAttachmentGroupLogicalStructureRegionMetroFacilityZone struct {
-	// Attachments: [Output Only] URLs of Attachments in the given zone, to the
-	// given
+	// Attachments: Output only. [Output Only] URLs of Attachments in the given
+	// zone, to the given
 	// region, on Interconnects in the given facility and metro. Every
 	// Attachment in the AG has such an entry.
 	Attachments []string `json:"attachments,omitempty"`
-	// Zone: [Output Only] The name of a zone, either "zone1" or "zone2".
+	// Zone: Output only. [Output Only] The name of a zone, either "zone1" or
+	// "zone2".
 	Zone string `json:"zone,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Attachments") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -30142,7 +30886,7 @@ type InterconnectAttachmentGroupsListResponse struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable
+	// Unreachables: Output only. [Output Only] Unreachable
 	// resources.
 	// end_interface:
 	// MixerListResponseWithEtagBuilder
@@ -30313,7 +31057,7 @@ func (s InterconnectAttachmentGroupsListResponseWarningData) MarshalJSON() ([]by
 type InterconnectAttachmentGroupsOperationalStatus struct {
 	AttachmentStatuses []*InterconnectAttachmentGroupsOperationalStatusAttachmentStatus `json:"attachmentStatuses,omitempty"`
 	Configured         *InterconnectAttachmentGroupConfigured                           `json:"configured,omitempty"`
-	// GroupStatus: Summarizes the status of the group.
+	// GroupStatus: Output only. Summarizes the status of the group.
 	//
 	// Possible values:
 	//   "DEGRADED"
@@ -30322,8 +31066,8 @@ type InterconnectAttachmentGroupsOperationalStatus struct {
 	//   "UNSPECIFIED"
 	GroupStatus string                             `json:"groupStatus,omitempty"`
 	Intent      *InterconnectAttachmentGroupIntent `json:"intent,omitempty"`
-	// Operational: The operational state of the group, including only active
-	// Attachments.
+	// Operational: Output only. The operational state of the group, including only
+	// active Attachments.
 	Operational *InterconnectAttachmentGroupConfigured `json:"operational,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "AttachmentStatuses") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -30346,14 +31090,14 @@ func (s InterconnectAttachmentGroupsOperationalStatus) MarshalJSON() ([]byte, er
 // InterconnectAttachmentGroupsOperationalStatusAttachmentStatus: The status of
 // one Attachment in the group. List order is arbitrary.
 type InterconnectAttachmentGroupsOperationalStatusAttachmentStatus struct {
-	// AdminEnabled: Whether this Attachment is enabled. This becomes false when
-	// the customer
+	// AdminEnabled: Output only. Whether this Attachment is enabled. This becomes
+	// false when the customer
 	// drains their Attachment.
 	AdminEnabled bool `json:"adminEnabled,omitempty"`
-	// Attachment: The URL of the Attachment being described.
+	// Attachment: Output only. The URL of the Attachment being described.
 	Attachment string `json:"attachment,omitempty"`
-	// IsActive: Whether this Attachment is participating in the redundant
-	// configuration.
+	// IsActive: Output only. Whether this Attachment is participating in the
+	// redundant configuration.
 	// This will be ACTIVE if and only if the status below is CONNECTION_UP.
 	// Any INACTIVE Attachments are excluded from the analysis that
 	// generates
@@ -30364,7 +31108,8 @@ type InterconnectAttachmentGroupsOperationalStatusAttachmentStatus struct {
 	//   "INACTIVE"
 	//   "UNSPECIFIED"
 	IsActive string `json:"isActive,omitempty"`
-	// Status: Whether this Attachment is active, and if so, whether BGP is up.
+	// Status: Output only. Whether this Attachment is active, and if so, whether
+	// BGP is up.
 	//
 	// Possible values:
 	//   "ATTACHMENT_STATUS_UNKNOWN"
@@ -30569,7 +31314,7 @@ type InterconnectAttachmentList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InterconnectAttachment resources.
 	Items []*InterconnectAttachment `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#interconnectAttachmentList for lists of
 	// interconnect
 	// attachments.
@@ -30582,7 +31327,7 @@ type InterconnectAttachmentList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InterconnectAttachmentListWarning `json:"warning,omitempty"`
@@ -31307,7 +32052,8 @@ func (s InterconnectDiagnosticsMacsecStatus) MarshalJSON() ([]byte, error) {
 // expand their redundant connections.
 type InterconnectGroup struct {
 	Configured *InterconnectGroupConfigured `json:"configured,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -31323,8 +32069,8 @@ type InterconnectGroup struct {
 	// as
 	// described by AIP 154.
 	Etag string `json:"etag,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id     uint64                   `json:"id,omitempty,string"`
 	Intent *InterconnectGroupIntent `json:"intent,omitempty"`
@@ -31336,7 +32082,8 @@ type InterconnectGroup struct {
 	// Note that there are add-members and remove-members methods in gcloud.
 	// The size of this map is limited by an "Interconnects per group" quota.
 	Interconnects map[string]InterconnectGroupInterconnect `json:"interconnects,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#InterconnectGroup
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#InterconnectGroup
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -31350,7 +32097,7 @@ type InterconnectGroup struct {
 	// cannot be a dash.
 	Name              string                              `json:"name,omitempty"`
 	PhysicalStructure *InterconnectGroupPhysicalStructure `json:"physicalStructure,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -31443,31 +32190,32 @@ type InterconnectGroupConfiguredTopologyCapabilityIntendedCapabilityBlockers str
 	//   "OTHER"
 	//   "UNSPECIFIED"
 	BlockerType string `json:"blockerType,omitempty"`
-	// DocumentationLink: [Output Only] The url of Google Cloud public
+	// DocumentationLink: Output only. [Output Only] The url of Google Cloud public
 	// documentation explaining
 	// this requirement. This is set for every type of requirement.
 	DocumentationLink string `json:"documentationLink,omitempty"`
-	// Explanation: [Output Only] A human-readable explanation of this requirement
-	// and
+	// Explanation: Output only. [Output Only] A human-readable explanation of this
+	// requirement and
 	// why it's not met. This is set for every type of requirement.
 	Explanation string `json:"explanation,omitempty"`
-	// Facilities: [Output Only] Facilities used to explain this blocker in more
-	// detail.
+	// Facilities: Output only. [Output Only] Facilities used to explain this
+	// blocker in more detail.
 	// Like physicalStructure.metros.facilities.facility, this is a numeric
 	// string like "5467".
 	Facilities []string `json:"facilities,omitempty"`
-	// Interconnects: [Output Only] Interconnects used to explain this blocker in
-	// more
+	// Interconnects: Output only. [Output Only] Interconnects used to explain this
+	// blocker in more
 	// detail.
 	Interconnects []string `json:"interconnects,omitempty"`
-	// Metros: [Output Only] Metros used to explain this blocker in more
-	// detail.
+	// Metros: Output only. [Output Only] Metros used to explain this blocker in
+	// more detail.
 	// These are three-letter lowercase strings like "iad". A blocker
 	// like
 	// INCOMPATIBLE_METROS will specify the problematic metros in this
 	// field.
 	Metros []string `json:"metros,omitempty"`
-	// Zones: [Output Only] Zones used to explain this blocker in more detail.
+	// Zones: Output only. [Output Only] Zones used to explain this blocker in more
+	// detail.
 	// Zone names are "zone1" and/or "zone2".
 	Zones []string `json:"zones,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "BlockerType") to
@@ -31567,8 +32315,8 @@ func (s InterconnectGroupPhysicalStructure) MarshalJSON() ([]byte, error) {
 // Interconnects in this group are in.
 type InterconnectGroupPhysicalStructureMetros struct {
 	Facilities []*InterconnectGroupPhysicalStructureMetrosFacilities `json:"facilities,omitempty"`
-	// Metro: [Output Only] The name of the metro, as a three-letter lowercase
-	// string
+	// Metro: Output only. [Output Only] The name of the metro, as a three-letter
+	// lowercase string
 	// like "iad". This is the first component of the location of
 	// Interconnects underneath this.
 	Metro string `json:"metro,omitempty"`
@@ -31594,8 +32342,8 @@ func (s InterconnectGroupPhysicalStructureMetros) MarshalJSON() ([]byte, error)
 // facilities Interconnects in this metro are present
 // in.
 type InterconnectGroupPhysicalStructureMetrosFacilities struct {
-	// Facility: [Output Only] The ID of this facility, as a numeric string
-	// like
+	// Facility: Output only. [Output Only] The ID of this facility, as a numeric
+	// string like
 	// "5467". This is the third component of the location of Interconnects
 	// in this facility.
 	Facility string                                                     `json:"facility,omitempty"`
@@ -31622,11 +32370,12 @@ func (s InterconnectGroupPhysicalStructureMetrosFacilities) MarshalJSON() ([]byt
 // zones that Interconnects in this facility are
 // present in.
 type InterconnectGroupPhysicalStructureMetrosFacilitiesZones struct {
-	// Interconnects: [Output Only] URLs of Interconnects in this redundancy group
-	// in the
+	// Interconnects: Output only. [Output Only] URLs of Interconnects in this
+	// redundancy group in the
 	// given metro, facility, and zone.
 	Interconnects []string `json:"interconnects,omitempty"`
-	// Zone: [Output Only] The name of the zone, either "zone1" or "zone2".
+	// Zone: Output only. [Output Only] The name of the zone, either "zone1" or
+	// "zone2".
 	// This is the second component of the location of Interconnects in
 	// this facility.
 	Zone string `json:"zone,omitempty"`
@@ -31865,7 +32614,8 @@ type InterconnectGroupsListResponse struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -32034,9 +32784,9 @@ func (s InterconnectGroupsListResponseWarningData) MarshalJSON() ([]byte, error)
 // InterconnectGroupsOperationalStatus: Request to get the status of the
 // interconnect group with extra detail.
 type InterconnectGroupsOperationalStatus struct {
-	// Configured: The configuration analysis, as returned by Get.
+	// Configured: Output only. The configuration analysis, as returned by Get.
 	Configured *InterconnectGroupConfigured `json:"configured,omitempty"`
-	// GroupStatus: Summarizes the status of the group.
+	// GroupStatus: Output only. Summarizes the status of the group.
 	//
 	// Possible values:
 	//   "DEGRADED"
@@ -32044,11 +32794,11 @@ type InterconnectGroupsOperationalStatus struct {
 	//   "FULLY_UP"
 	//   "GROUPS_STATUS_UNSPECIFIED"
 	GroupStatus string `json:"groupStatus,omitempty"`
-	// Intent: The intent of the resource, as returned by Get.
+	// Intent: Output only. The intent of the resource, as returned by Get.
 	Intent               *InterconnectGroupIntent                                 `json:"intent,omitempty"`
 	InterconnectStatuses []*InterconnectGroupsOperationalStatusInterconnectStatus `json:"interconnectStatuses,omitempty"`
-	// Operational: The operational state of the group, including only active
-	// Interconnects.
+	// Operational: Output only. The operational state of the group, including only
+	// active Interconnects.
 	Operational *InterconnectGroupConfigured `json:"operational,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Configured") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -32071,15 +32821,15 @@ func (s InterconnectGroupsOperationalStatus) MarshalJSON() ([]byte, error) {
 // InterconnectGroupsOperationalStatusInterconnectStatus: The status of one
 // Interconnect in the group. The order is arbitrary.
 type InterconnectGroupsOperationalStatusInterconnectStatus struct {
-	// AdminEnabled: Whether the Interconnect is enabled.
+	// AdminEnabled: Output only. Whether the Interconnect is enabled.
 	AdminEnabled bool `json:"adminEnabled,omitempty"`
-	// Diagnostics: The diagnostics of the Interconnect, as returned by the
-	// existing
+	// Diagnostics: Output only. The diagnostics of the Interconnect, as returned
+	// by the existing
 	// get-diagnostics method.
 	Diagnostics *InterconnectDiagnostics `json:"diagnostics,omitempty"`
-	// Interconnect: The URL of the Interconnect being described.
+	// Interconnect: Output only. The URL of the Interconnect being described.
 	Interconnect string `json:"interconnect,omitempty"`
-	// IsActive: Whether this interconnect is participating in the
+	// IsActive: Output only. Whether this interconnect is participating in the
 	// redundant
 	// configuration.
 	//
@@ -32113,8 +32863,8 @@ type InterconnectList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Interconnect resources.
 	Items []*Interconnect `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#interconnectList for
-	// lists of interconnects.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#interconnectList for lists of interconnects.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -32124,7 +32874,7 @@ type InterconnectList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InterconnectListWarning `json:"warning,omitempty"`
@@ -32297,8 +33047,8 @@ func (s InterconnectListWarningData) MarshalJSON() ([]byte, error) {
 // read
 // Creating VLAN Attachments.
 type InterconnectLocation struct {
-	// Address: [Output Only] The postal address of the Point of Presence, each
-	// line in
+	// Address: Output only. [Output Only] The postal address of the Point of
+	// Presence, each line in
 	// the address is separated by a newline character.
 	Address string `json:"address,omitempty"`
 	// AvailabilityZone: [Output Only] Availability zone for this
@@ -32360,7 +33110,8 @@ type InterconnectLocation struct {
 	//   "NORTH_AMERICA"
 	//   "SOUTH_AMERICA"
 	Continent string `json:"continent,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// CrossSiteInterconnectInfos: [Output Only] A list of
@@ -32371,38 +33122,39 @@ type InterconnectLocation struct {
 	// Cross-Site
 	// Interconnect isn't allowed to locations which are not listed.
 	CrossSiteInterconnectInfos []*InterconnectLocationCrossSiteInterconnectInfo `json:"crossSiteInterconnectInfos,omitempty"`
-	// Description: [Output Only] An optional description of the resource.
+	// Description: Output only. [Output Only] An optional description of the
+	// resource.
 	Description string `json:"description,omitempty"`
-	// FacilityProvider: [Output Only] The name of the provider for this facility
-	// (e.g., EQUINIX).
+	// FacilityProvider: Output only. [Output Only] The name of the provider for
+	// this facility (e.g., EQUINIX).
 	FacilityProvider string `json:"facilityProvider,omitempty"`
-	// FacilityProviderFacilityId: [Output Only] A provider-assigned Identifier for
-	// this facility (e.g.,
+	// FacilityProviderFacilityId: Output only. [Output Only] A provider-assigned
+	// Identifier for this facility (e.g.,
 	// Ashburn-DC1).
 	FacilityProviderFacilityId string `json:"facilityProviderFacilityId,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#interconnectLocation
-	// for interconnect locations.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#interconnectLocation for interconnect locations.
 	Kind string `json:"kind,omitempty"`
-	// Name: [Output Only] Name of the resource.
+	// Name: Output only. [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// PeeringdbFacilityId: [Output Only] The peeringdb identifier for this
-	// facility (corresponding
+	// PeeringdbFacilityId: Output only. [Output Only] The peeringdb identifier for
+	// this facility (corresponding
 	// with a netfac type in peeringdb).
 	PeeringdbFacilityId string `json:"peeringdbFacilityId,omitempty"`
-	// RegionInfos: [Output Only] A list of InterconnectLocation.RegionInfo
-	// objects, that
+	// RegionInfos: Output only. [Output Only] A list of
+	// InterconnectLocation.RegionInfo objects, that
 	// describe parameters pertaining to the relation between
 	// this
 	// InterconnectLocation and various Google Cloud regions.
 	RegionInfos []*InterconnectLocationRegionInfo `json:"regionInfos,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SingleRegionProductionCriticalPeerLocations: [Output Only] URLs of the other
-	// locations that can pair up with this
+	// SingleRegionProductionCriticalPeerLocations: Output only. [Output Only] URLs
+	// of the other locations that can pair up with this
 	// location to support Single-Region 99.99% SLA. E.g. iad-zone1-1
 	// and
 	// iad-zone2-5467 are Single-Region 99.99% peer locations of each other.
@@ -32422,7 +33174,7 @@ type InterconnectLocation struct {
 	//   "CLOSED" - The InterconnectLocation is closed for provisioning new
 	// Interconnects.
 	Status string `json:"status,omitempty"`
-	// SupportsPzs: [Output Only] Reserved for future use.
+	// SupportsPzs: Output only. [Output Only] Reserved for future use.
 	SupportsPzs bool `json:"supportsPzs,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -32449,8 +33201,8 @@ func (s InterconnectLocation) MarshalJSON() ([]byte, error) {
 // Interconnect wires which may be created
 // between the containing location and another remote location.
 type InterconnectLocationCrossSiteInterconnectInfo struct {
-	// City: The remote location for Cross-Site Interconnect wires. This specifies
-	// an
+	// City: Output only. The remote location for Cross-Site Interconnect wires.
+	// This specifies an
 	// InterconnectLocation city (metropolitan area designator), which itself
 	// may match multiple InterconnectLocations.
 	City string `json:"city,omitempty"`
@@ -32479,8 +33231,8 @@ type InterconnectLocationList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InterconnectLocation resources.
 	Items []*InterconnectLocation `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#interconnectLocationList
-	// for lists of interconnect
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#interconnectLocationList for lists of interconnect
 	// locations.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -32491,7 +33243,7 @@ type InterconnectLocationList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InterconnectLocationListWarning `json:"warning,omitempty"`
@@ -32662,15 +33414,16 @@ func (s InterconnectLocationListWarningData) MarshalJSON() ([]byte, error) {
 // Cloud
 // Region.
 type InterconnectLocationRegionInfo struct {
-	// ExpectedRttMs: Expected round-trip time in milliseconds, from this
-	// InterconnectLocation
+	// ExpectedRttMs: Output only. Expected round-trip time in milliseconds, from
+	// this InterconnectLocation
 	// to a VM in this region.
 	ExpectedRttMs int64 `json:"expectedRttMs,omitempty,string"`
-	// L2ForwardingEnabled: Identifies whether L2 Interconnect Attachments can be
-	// created in this
+	// L2ForwardingEnabled: Output only. Identifies whether L2 Interconnect
+	// Attachments can be created in this
 	// region for interconnects that are in this location.
 	L2ForwardingEnabled bool `json:"l2ForwardingEnabled,omitempty"`
-	// LocationPresence: Identifies the network presence of this location.
+	// LocationPresence: Output only. Identifies the network presence of this
+	// location.
 	//
 	// Possible values:
 	//   "GLOBAL" - This region is not in any common network presence with
@@ -32686,7 +33439,7 @@ type InterconnectLocationRegionInfo struct {
 	// network presence as
 	// this InterconnectLocation.
 	LocationPresence string `json:"locationPresence,omitempty"`
-	// Region: URL for the region of this location.
+	// Region: Output only. URL for the region of this location.
 	Region string `json:"region,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ExpectedRttMs") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -33002,27 +33755,27 @@ func (s InterconnectParams) MarshalJSON() ([]byte, error) {
 // an
 // Interconnect attachment (VLAN).
 type InterconnectRemoteLocation struct {
-	// Address: [Output Only] The postal address of the Point of Presence, each
-	// line in
+	// Address: Output only. [Output Only] The postal address of the Point of
+	// Presence, each line in
 	// the address is separated by a newline character.
 	Address string `json:"address,omitempty"`
-	// AttachmentConfigurationConstraints: [Output Only] Subset of fields from
-	// InterconnectAttachment's
+	// AttachmentConfigurationConstraints: Output only. [Output Only] Subset of
+	// fields from InterconnectAttachment's
 	// |configurationConstraints| field that apply to all attachments for
 	// this
 	// remote location.
 	AttachmentConfigurationConstraints *InterconnectAttachmentConfigurationConstraints `json:"attachmentConfigurationConstraints,omitempty"`
-	// City: [Output Only] Metropolitan area designator that indicates which city
-	// an
+	// City: Output only. [Output Only] Metropolitan area designator that indicates
+	// which city an
 	// interconnect is located.
 	// For example: "Chicago, IL", "Amsterdam, Netherlands".
 	City string `json:"city,omitempty"`
-	// Constraints: [Output Only] Constraints on the parameters for creating
-	// Cross-Cloud
+	// Constraints: Output only. [Output Only] Constraints on the parameters for
+	// creating Cross-Cloud
 	// Interconnect and associated InterconnectAttachments.
 	Constraints *InterconnectRemoteLocationConstraints `json:"constraints,omitempty"`
-	// Continent: [Output Only] Continent for this location, which can take one of
-	// the
+	// Continent: Output only. [Output Only] Continent for this location, which can
+	// take one of the
 	// following values:
 	//
 	//    - AFRICA
@@ -33038,28 +33791,30 @@ type InterconnectRemoteLocation struct {
 	//   "NORTH_AMERICA"
 	//   "SOUTH_AMERICA"
 	Continent string `json:"continent,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Description: [Output Only] An optional description of the resource.
+	// Description: Output only. [Output Only] An optional description of the
+	// resource.
 	Description string `json:"description,omitempty"`
-	// FacilityProvider: [Output Only] The name of the provider for this facility
-	// (e.g., EQUINIX).
+	// FacilityProvider: Output only. [Output Only] The name of the provider for
+	// this facility (e.g., EQUINIX).
 	FacilityProvider string `json:"facilityProvider,omitempty"`
-	// FacilityProviderFacilityId: [Output Only] A provider-assigned Identifier for
-	// this facility (e.g.,
+	// FacilityProviderFacilityId: Output only. [Output Only] A provider-assigned
+	// Identifier for this facility (e.g.,
 	// Ashburn-DC1).
 	FacilityProviderFacilityId string `json:"facilityProviderFacilityId,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#interconnectRemoteLocation for interconnect remote
 	// locations.
 	Kind string `json:"kind,omitempty"`
-	// Lacp: [Output Only] Link Aggregation Control Protocol (LACP) constraints,
-	// which
+	// Lacp: Output only. [Output Only] Link Aggregation Control Protocol (LACP)
+	// constraints, which
 	// can take one of the following values: LACP_SUPPORTED, LACP_UNSUPPORTED
 	//
 	// Possible values:
@@ -33071,43 +33826,43 @@ type InterconnectRemoteLocation struct {
 	// port. GetDiagnostics shows bundleAggregationType as "static". GCP does
 	// not support LAGs without LACP, so requestedLinkCount must be 1.
 	Lacp string `json:"lacp,omitempty"`
-	// MaxLagSize100Gbps: [Output Only]
+	// MaxLagSize100Gbps: Output only. [Output Only]
 	// The maximum number of 100 Gbps ports supported in a link aggregation
 	// group
 	// (LAG). When linkType is 100 Gbps, requestedLinkCount cannot
 	// exceed
 	// max_lag_size_100_gbps.
 	MaxLagSize100Gbps int64 `json:"maxLagSize100Gbps,omitempty"`
-	// MaxLagSize10Gbps: [Output Only]
+	// MaxLagSize10Gbps: Output only. [Output Only]
 	// The maximum number of 10 Gbps ports supported in a link aggregation
 	// group
 	// (LAG). When linkType is 10 Gbps, requestedLinkCount cannot
 	// exceed
 	// max_lag_size_10_gbps.
 	MaxLagSize10Gbps int64 `json:"maxLagSize10Gbps,omitempty"`
-	// MaxLagSize400Gbps: [Output Only]
+	// MaxLagSize400Gbps: Output only. [Output Only]
 	// The maximum number of 400 Gbps ports supported in a link aggregation
 	// group
 	// (LAG). When linkType is 400 Gbps, requestedLinkCount cannot
 	// exceed
 	// max_lag_size_400_gbps.
 	MaxLagSize400Gbps int64 `json:"maxLagSize400Gbps,omitempty"`
-	// Name: [Output Only] Name of the resource.
+	// Name: Output only. [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// PeeringdbFacilityId: [Output Only] The peeringdb identifier for this
-	// facility (corresponding
+	// PeeringdbFacilityId: Output only. [Output Only] The peeringdb identifier for
+	// this facility (corresponding
 	// with a netfac type in peeringdb).
 	PeeringdbFacilityId string `json:"peeringdbFacilityId,omitempty"`
-	// PermittedConnections: [Output Only] Permitted connections.
+	// PermittedConnections: Output only. [Output Only] Permitted connections.
 	PermittedConnections []*InterconnectRemoteLocationPermittedConnections `json:"permittedConnections,omitempty"`
-	// RemoteService: [Output Only] Indicates the service provider present at the
-	// remote
+	// RemoteService: Output only. [Output Only] Indicates the service provider
+	// present at the remote
 	// location. Example values: "Amazon Web Services", "Microsoft Azure".
 	RemoteService string `json:"remoteService,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Status: [Output Only] The status of this InterconnectRemoteLocation, which
-	// can take
+	// Status: Output only. [Output Only] The status of this
+	// InterconnectRemoteLocation, which can take
 	// one of the following values:
 	//
 	//    - CLOSED: The InterconnectRemoteLocation is closed and is unavailable
@@ -33146,8 +33901,8 @@ func (s InterconnectRemoteLocation) MarshalJSON() ([]byte, error) {
 }
 
 type InterconnectRemoteLocationConstraints struct {
-	// PortPairRemoteLocation: [Output Only] Port pair remote location constraints,
-	// which can take one
+	// PortPairRemoteLocation: Output only. [Output Only] Port pair remote location
+	// constraints, which can take one
 	// of the following values:
 	// PORT_PAIR_UNCONSTRAINED_REMOTE_LOCATION,
 	// PORT_PAIR_MATCHING_REMOTE_LOCATION.
@@ -33175,8 +33930,8 @@ type InterconnectRemoteLocationConstraints struct {
 	// a redundant pair of Cross-Cloud Interconnects using two different
 	// remote locations in the same city.
 	PortPairRemoteLocation string `json:"portPairRemoteLocation,omitempty"`
-	// PortPairVlan: [Output Only] Port pair VLAN constraints, which can take one
-	// of the
+	// PortPairVlan: Output only. [Output Only] Port pair VLAN constraints, which
+	// can take one of the
 	// following values: PORT_PAIR_UNCONSTRAINED_VLAN, PORT_PAIR_MATCHING_VLAN
 	//
 	// Possible values:
@@ -33190,7 +33945,7 @@ type InterconnectRemoteLocationConstraints struct {
 	//   "PORT_PAIR_UNCONSTRAINED_VLAN" - PORT_PAIR_UNCONSTRAINED_VLAN means there
 	// is no constraint.
 	PortPairVlan string `json:"portPairVlan,omitempty"`
-	// SubnetLengthRange: [Output Only]
+	// SubnetLengthRange: Output only. [Output Only]
 	//
 	// [min-length, max-length]
 	//
@@ -33255,7 +34010,7 @@ type InterconnectRemoteLocationList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of InterconnectRemoteLocation resources.
 	Items []*InterconnectRemoteLocation `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#interconnectRemoteLocationList for lists of
 	// interconnect remote locations.
 	Kind string `json:"kind,omitempty"`
@@ -33267,7 +34022,7 @@ type InterconnectRemoteLocationList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *InterconnectRemoteLocationListWarning `json:"warning,omitempty"`
@@ -33433,8 +34188,8 @@ func (s InterconnectRemoteLocationListWarningData) MarshalJSON() ([]byte, error)
 }
 
 type InterconnectRemoteLocationPermittedConnections struct {
-	// InterconnectLocation: [Output Only] URL of an Interconnect location that is
-	// permitted to
+	// InterconnectLocation: Output only. [Output Only] URL of an Interconnect
+	// location that is permitted to
 	// connect to this Interconnect remote location.
 	InterconnectLocation string `json:"interconnectLocation,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "InterconnectLocation") to
@@ -33529,7 +34284,8 @@ type License struct {
 	// whether a license
 	// charges a usage fee.
 	ChargesUseFee bool `json:"chargesUseFee,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional textual description of the resource; provided by
@@ -33545,7 +34301,8 @@ type License struct {
 	// If a license is incompatible with this license, it cannot be attached to
 	// the same disk or image.
 	IncompatibleLicenses []string `json:"incompatibleLicenses,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#license for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#license
+	// for
 	// licenses.
 	Kind string `json:"kind,omitempty"`
 	// LicenseCode: [Output Only] The unique code used to attach this license to
@@ -33566,6 +34323,10 @@ type License struct {
 	// be
 	// attached to a disk or image at a time.
 	OsLicense bool `json:"osLicense,omitempty"`
+	// Params: Input only. Additional params passed with the request, but not
+	// persisted
+	// as part of resource payload.
+	Params *LicenseParams `json:"params,omitempty"`
 	// RemovableFromDisk: If true, this license can be removed from a disk's set of
 	// licenses, with no
 	// replacement license needed.
@@ -33578,10 +34339,10 @@ type License struct {
 	RequiredCoattachedLicenses []string `json:"requiredCoattachedLicenses,omitempty"`
 	// ResourceRequirements: [Input Only] Deprecated.
 	ResourceRequirements *LicenseResourceRequirements `json:"resourceRequirements,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// SoleTenantOnly: If true, this license can only be used on VMs on sole tenant
 	// nodes.
@@ -33590,7 +34351,8 @@ type License struct {
 	// when
 	// creating an image from a disk, disk from snapshot, or snapshot from disk.
 	Transferable bool `json:"transferable,omitempty"`
-	// UpdateTimestamp: [Output Only] Last update timestamp inRFC3339
+	// UpdateTimestamp: Output only. [Output Only] Last update timestamp
+	// inRFC3339
 	// text format.
 	UpdateTimestamp string `json:"updateTimestamp,omitempty"`
 
@@ -33624,30 +34386,31 @@ func (s License) MarshalJSON() ([]byte, error) {
 // use only by third-party partners who are creatingCloud Marketplace
 // images.
 type LicenseCode struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Description: [Output Only] Description of this License Code.
+	// Description: Output only. [Output Only] Description of this License Code.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of resource. Always compute#licenseCode
-	// for
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#licenseCode for
 	// licenses.
 	Kind string `json:"kind,omitempty"`
 	// LicenseAlias: [Output Only] URL and description aliases of Licenses with the
 	// same
 	// License Code.
 	LicenseAlias []*LicenseCodeLicenseAlias `json:"licenseAlias,omitempty"`
-	// Name: [Output Only] Name of the resource. The name is 1-20 characters long
-	// and
+	// Name: Output only. [Output Only] Name of the resource. The name is 1-20
+	// characters long and
 	// must be a valid 64 bit integer.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// State: [Output Only] Current state of this License Code.
+	// State: Output only. [Output Only] Current state of this License Code.
 	//
 	// Possible values:
 	//   "DISABLED" - Machines are not allowed to attach boot disks with this
@@ -33659,8 +34422,8 @@ type LicenseCode struct {
 	//   "STATE_UNSPECIFIED"
 	//   "TERMINATED" - Reserved state.
 	State string `json:"state,omitempty"`
-	// Transferable: [Output Only] If true, the license will remain attached when
-	// creating
+	// Transferable: Output only. [Output Only] If true, the license will remain
+	// attached when creating
 	// images or snapshots from disks. Otherwise, the license is not transferred.
 	Transferable bool `json:"transferable,omitempty"`
 
@@ -33685,9 +34448,10 @@ func (s LicenseCode) MarshalJSON() ([]byte, error) {
 }
 
 type LicenseCodeLicenseAlias struct {
-	// Description: [Output Only] Description of this License Code.
+	// Description: Output only. [Output Only] Description of this License Code.
 	Description string `json:"description,omitempty"`
-	// SelfLink: [Output Only] URL of license corresponding to this License Code.
+	// SelfLink: Output only. [Output Only] URL of license corresponding to this
+	// License Code.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Description") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -33707,6 +34471,36 @@ func (s LicenseCodeLicenseAlias) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// LicenseParams: Additional license params.
+type LicenseParams struct {
+	// ResourceManagerTags: Input only. Resource manager tags to be bound to the
+	// license. Tag keys and values
+	// have the same definition as resource
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
+	// PATCH) when empty.
+	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "ResourceManagerTags") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "ResourceManagerTags") to include
+	// in API requests with the JSON null value. By default, fields with empty
+	// values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s LicenseParams) MarshalJSON() ([]byte, error) {
+	type NoMethod LicenseParams
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 // LicenseResourceCommitment: Commitment for a particular license resource.
 type LicenseResourceCommitment struct {
 	// Amount: The number of licenses you plan to purchase.
@@ -33773,7 +34567,7 @@ type LicensesListResponse struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *LicensesListResponseWarning `json:"warning,omitempty"`
@@ -34109,8 +34903,8 @@ func (s LocationPolicyLocationConstraints) MarshalJSON() ([]byte, error) {
 // required to create a Virtual machine (VM) instance. For more information,
 // seeMachine images.
 type MachineImage struct {
-	// CreationTimestamp: [Output Only] The creation timestamp for this machine
-	// image inRFC3339
+	// CreationTimestamp: Output only. [Output Only] The creation timestamp for
+	// this machine image inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -34121,14 +34915,14 @@ type MachineImage struct {
 	// machine image by
 	// informing the OS to prepare for the snapshot process.
 	GuestFlush bool `json:"guestFlush,omitempty"`
-	// Id: [Output Only] A unique identifier for this machine image. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this machine image.
+	// The server
 	// defines this identifier.
 	Id uint64 `json:"id,omitempty,string"`
 	// InstanceProperties: [Output Only] Properties of source instance
 	InstanceProperties *InstanceProperties `json:"instanceProperties,omitempty"`
-	// Kind: [Output Only] The resource type, which is alwayscompute#machineImage
-	// for machine image.
+	// Kind: Output only. [Output Only] The resource type, which is
+	// alwayscompute#machineImage for machine image.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this machine
 	// image, which is
@@ -34181,14 +34975,14 @@ type MachineImage struct {
 	Name string `json:"name,omitempty"`
 	// SatisfiesPzi: Output only. Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SavedDisks: An array of Machine Image specific properties for disks attached
-	// to the
+	// SavedDisks: Output only. An array of Machine Image specific properties for
+	// disks attached to the
 	// source instance
 	SavedDisks []*SavedDisk `json:"savedDisks,omitempty"`
-	// SelfLink: [Output Only] The URL for this machine image. The server defines
-	// this URL.
+	// SelfLink: Output only. [Output Only] The URL for this machine image. The
+	// server defines this URL.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SourceDiskEncryptionKeys: [Input Only] Thecustomer-supplied
 	// encryption key of the disks attached to the source instance. Required
@@ -34206,14 +35000,14 @@ type MachineImage struct {
 	//
 	//    - projects/project/zones/zone/instances/instance
 	SourceInstance string `json:"sourceInstance,omitempty"`
-	// SourceInstanceProperties: [Output Only] DEPRECATED: Please use
+	// SourceInstanceProperties: Output only. [Output Only] DEPRECATED: Please use
 	// instance_properties
 	// instead for source instance related properties. New properties will not
 	// be
 	// added to this field.
 	SourceInstanceProperties *SourceInstanceProperties `json:"sourceInstanceProperties,omitempty"`
-	// Status: [Output Only] The status of the machine image. One of the following
-	// values:INVALID, CREATING, READY,DELETING, and UPLOADING.
+	// Status: Output only. [Output Only] The status of the machine image. One of
+	// the following values:INVALID, CREATING, READY,DELETING, and UPLOADING.
 	//
 	// Possible values:
 	//   "CREATING"
@@ -34226,8 +35020,8 @@ type MachineImage struct {
 	// location where themachine image is
 	// stored.
 	StorageLocations []string `json:"storageLocations,omitempty"`
-	// TotalStorageBytes: [Output Only] Total size of the storage used by the
-	// machine image.
+	// TotalStorageBytes: Output only. [Output Only] Total size of the storage used
+	// by the machine image.
 	TotalStorageBytes int64 `json:"totalStorageBytes,omitempty,string"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -34256,7 +35050,7 @@ type MachineImageList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of MachineImage resources.
 	Items []*MachineImage `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#machineImagesListResponse for machine image lists.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -34267,7 +35061,7 @@ type MachineImageList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *MachineImageListWarning `json:"warning,omitempty"`
@@ -34474,8 +35268,8 @@ type MachineType struct {
 	// SeeShared-core machine
 	// types for more information.
 	IsSharedCpu bool `json:"isSharedCpu,omitempty"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#machineType for
-	// machine types.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#machineType for machine types.
 	Kind string `json:"kind,omitempty"`
 	// MaximumPersistentDisks: [Output Only] Maximum persistent disks allowed.
 	MaximumPersistentDisks int64 `json:"maximumPersistentDisks,omitempty"`
@@ -34544,7 +35338,7 @@ type MachineTypeAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of MachineTypesScopedList resources.
 	Items map[string]MachineTypesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#machineTypeAggregatedList for aggregated lists of
 	// machine types.
 	Kind string `json:"kind,omitempty"`
@@ -34556,9 +35350,9 @@ type MachineTypeAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *MachineTypeAggregatedListWarning `json:"warning,omitempty"`
@@ -34729,7 +35523,8 @@ type MachineTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of MachineType resources.
 	Items []*MachineType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#machineTypeList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#machineTypeList
 	// for lists of machine types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -34740,7 +35535,7 @@ type MachineTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *MachineTypeListWarning `json:"warning,omitempty"`
@@ -35072,8 +35867,8 @@ func (s MachineTypesScopedListWarningData) MarshalJSON() ([]byte, error) {
 
 // ManagedInstance: A Managed Instance resource.
 type ManagedInstance struct {
-	// CurrentAction: [Output Only] The current action that the managed instance
-	// group has
+	// CurrentAction: Output only. [Output Only] The current action that the
+	// managed instance group has
 	// scheduled for the instance. Possible values:
 	//
 	//    - NONE The instance is running, and the managed
@@ -35140,18 +35935,19 @@ type ManagedInstance struct {
 	//  2. Waiting for addition verification steps performed as post-instance
 	//     creation (subject to future extensions).
 	CurrentAction string `json:"currentAction,omitempty"`
-	// Id: [Output only] The unique identifier for this resource. This field is
-	// empty
+	// Id: Output only. [Output only] The unique identifier for this resource. This
+	// field is empty
 	// when instance does not exist.
 	Id uint64 `json:"id,omitempty,string"`
-	// Instance: [Output Only] The URL of the instance. The URL can exist even if
-	// the
+	// Instance: Output only. [Output Only] The URL of the instance. The URL can
+	// exist even if the
 	// instance has not yet been created.
 	Instance string `json:"instance,omitempty"`
-	// InstanceHealth: [Output Only] Health state of the instance per health-check.
+	// InstanceHealth: Output only. [Output Only] Health state of the instance per
+	// health-check.
 	InstanceHealth []*ManagedInstanceInstanceHealth `json:"instanceHealth,omitempty"`
-	// InstanceStatus: [Output Only] The status of the instance. This field is
-	// empty when
+	// InstanceStatus: Output only. [Output Only] The status of the instance. This
+	// field is empty when
 	// the instance does not exist.
 	//
 	// Possible values:
@@ -35175,27 +35971,28 @@ type ManagedInstance struct {
 	// underlying
 	// failure).
 	InstanceStatus string `json:"instanceStatus,omitempty"`
-	// LastAttempt: [Output Only] Information about the last attempt to create or
-	// delete
+	// LastAttempt: Output only. [Output Only] Information about the last attempt
+	// to create or delete
 	// the instance.
 	LastAttempt *ManagedInstanceLastAttempt `json:"lastAttempt,omitempty"`
-	// Name: [Output Only] The name of the instance. The name always exists even if
-	// the
+	// Name: Output only. [Output Only] The name of the instance. The name always
+	// exists even if the
 	// instance has not yet been created.
 	Name string `json:"name,omitempty"`
-	// PreservedStateFromConfig: [Output Only] Preserved state applied from
-	// per-instance config
+	// PreservedStateFromConfig: Output only. [Output Only] Preserved state applied
+	// from per-instance config
 	// for this instance.
 	PreservedStateFromConfig *PreservedState `json:"preservedStateFromConfig,omitempty"`
-	// PreservedStateFromPolicy: [Output Only] Preserved state generated based on
-	// stateful policy
+	// PreservedStateFromPolicy: Output only. [Output Only] Preserved state
+	// generated based on stateful policy
 	// for this instance.
 	PreservedStateFromPolicy *PreservedState `json:"preservedStateFromPolicy,omitempty"`
-	// PropertiesFromFlexibilityPolicy: [Output Only] Instance properties selected
-	// for this instance resulting from
+	// PropertiesFromFlexibilityPolicy: Output only. [Output Only] Instance
+	// properties selected for this instance resulting
+	// from
 	// InstanceFlexibilityPolicy.
 	PropertiesFromFlexibilityPolicy *ManagedInstancePropertiesFromFlexibilityPolicy `json:"propertiesFromFlexibilityPolicy,omitempty"`
-	// Version: [Output Only] Intended version of this instance.
+	// Version: Output only. [Output Only] Intended version of this instance.
 	Version *ManagedInstanceVersion `json:"version,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "CurrentAction") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -35216,8 +36013,8 @@ func (s ManagedInstance) MarshalJSON() ([]byte, error) {
 }
 
 type ManagedInstanceInstanceHealth struct {
-	// DetailedHealthState: [Output Only] The current detailed instance health
-	// state.
+	// DetailedHealthState: Output only. [Output Only] The current detailed
+	// instance health state.
 	//
 	// Possible values:
 	//   "DRAINING" - The instance is being drained. The existing connections to
@@ -35240,8 +36037,8 @@ type ManagedInstanceInstanceHealth struct {
 	// health is
 	// not known at the moment.
 	DetailedHealthState string `json:"detailedHealthState,omitempty"`
-	// HealthCheck: [Output Only] The URL for the health check that verifies
-	// whether the
+	// HealthCheck: Output only. [Output Only] The URL for the health check that
+	// verifies whether the
 	// instance is healthy.
 	HealthCheck string `json:"healthCheck,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "DetailedHealthState") to
@@ -35263,8 +36060,8 @@ func (s ManagedInstanceInstanceHealth) MarshalJSON() ([]byte, error) {
 }
 
 type ManagedInstanceLastAttempt struct {
-	// Errors: [Output Only] Encountered errors during the last attempt to create
-	// or
+	// Errors: Output only. [Output Only] Encountered errors during the last
+	// attempt to create or
 	// delete the instance.
 	Errors *ManagedInstanceLastAttemptErrors `json:"errors,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Errors") to unconditionally
@@ -35285,8 +36082,8 @@ func (s ManagedInstanceLastAttempt) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// ManagedInstanceLastAttemptErrors: [Output Only] Encountered errors during
-// the last attempt to create or
+// ManagedInstanceLastAttemptErrors: Output only. [Output Only] Encountered
+// errors during the last attempt to create or
 // delete the instance.
 type ManagedInstanceLastAttemptErrors struct {
 	// Errors: [Output Only] The array of errors encountered while processing
@@ -35370,7 +36167,7 @@ func (s ManagedInstanceLastAttemptErrorsErrorsErrorDetails) MarshalJSON() ([]byt
 }
 
 type ManagedInstancePropertiesFromFlexibilityPolicy struct {
-	// MachineType: The machine type to be used for this instance.
+	// MachineType: Output only. The machine type to be used for this instance.
 	MachineType string `json:"machineType,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "MachineType") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -35391,11 +36188,11 @@ func (s ManagedInstancePropertiesFromFlexibilityPolicy) MarshalJSON() ([]byte, e
 }
 
 type ManagedInstanceVersion struct {
-	// InstanceTemplate: [Output Only] The intended template of the instance. This
-	// field is empty
+	// InstanceTemplate: Output only. [Output Only] The intended template of the
+	// instance. This field is empty
 	// when current_action is one of { DELETING, ABANDONING }.
 	InstanceTemplate string `json:"instanceTemplate,omitempty"`
-	// Name: [Output Only] Name of the version.
+	// Name: Output only. [Output Only] Name of the version.
 	Name string `json:"name,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "InstanceTemplate") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -35433,7 +36230,8 @@ type Metadata struct {
 	// be
 	// less than 512 KB.
 	Items []*MetadataItems `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#metadata
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#metadata
 	// for metadata.
 	Kind string `json:"kind,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Fingerprint") to
@@ -35612,9 +36410,10 @@ func (s NamedPort) MarshalJSON() ([]byte, error) {
 // NatIpInfo: Contains NAT IP information of a NAT config (i.e. usage status,
 // mode).
 type NatIpInfo struct {
-	// NatIpInfoMappings: A list of all NAT IPs assigned to this NAT config.
+	// NatIpInfoMappings: Output only. A list of all NAT IPs assigned to this NAT
+	// config.
 	NatIpInfoMappings []*NatIpInfoNatIpInfoMapping `json:"natIpInfoMappings,omitempty"`
-	// NatName: Name of the NAT config which the NAT IP belongs to.
+	// NatName: Output only. Name of the NAT config which the NAT IP belongs to.
 	NatName string `json:"natName,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "NatIpInfoMappings") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -35636,16 +36435,16 @@ func (s NatIpInfo) MarshalJSON() ([]byte, error) {
 
 // NatIpInfoNatIpInfoMapping: Contains information of a NAT IP.
 type NatIpInfoNatIpInfoMapping struct {
-	// Mode: Specifies whether NAT IP is auto or manual.
+	// Mode: Output only. Specifies whether NAT IP is auto or manual.
 	//
 	// Possible values:
 	//   "AUTO"
 	//   "MANUAL"
 	Mode string `json:"mode,omitempty"`
-	// NatIp: NAT IP address. For example: 203.0.113.11.
+	// NatIp: Output only. NAT IP address. For example: 203.0.113.11.
 	NatIp string `json:"natIp,omitempty"`
-	// Usage: Specifies whether NAT IP is currently serving at least one endpoint
-	// or
+	// Usage: Output only. Specifies whether NAT IP is currently serving at least
+	// one endpoint or
 	// not.
 	//
 	// Possible values:
@@ -35721,7 +36520,8 @@ type Network struct {
 	// subnetworksinsert
 	// method.
 	AutoCreateSubnetworks bool `json:"autoCreateSubnetworks,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this field
@@ -35733,15 +36533,15 @@ type Network struct {
 	// a /48 from google defined ULA prefix fd20::/20.
 	// .
 	EnableUlaInternalIpv6 bool `json:"enableUlaInternalIpv6,omitempty"`
-	// FirewallPolicy: [Output Only] URL of the firewall policy the network is
-	// associated with.
+	// FirewallPolicy: Output only. [Output Only] URL of the firewall policy the
+	// network is associated with.
 	FirewallPolicy string `json:"firewallPolicy,omitempty"`
 	// GatewayIPv4: [Output Only] The gateway address for default routing out of
 	// the network,
 	// selected by Google Cloud.
 	GatewayIPv4 string `json:"gatewayIPv4,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// InternalIpv6Range: When enabling ula internal ipv6, caller optionally can
@@ -35756,8 +36556,8 @@ type Network struct {
 	// allocated from fd20::/20 and returned via this field.
 	// .
 	InternalIpv6Range string `json:"internalIpv6Range,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#network
-	// for
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#network for
 	// networks.
 	Kind string `json:"kind,omitempty"`
 	// Mtu: Maximum Transmission Unit in bytes.
@@ -35803,7 +36603,8 @@ type Network struct {
 	// but not persisted
 	// as part of resource payload.
 	Params *NetworkParams `json:"params,omitempty"`
-	// Peerings: [Output Only] A list of network peerings for the resource.
+	// Peerings: Output only. [Output Only] A list of network peerings for the
+	// resource.
 	Peerings []*NetworkPeering `json:"peerings,omitempty"`
 	// RoutingConfig: The network-level routing configuration for this network.
 	// Used by Cloud
@@ -35811,8 +36612,8 @@ type Network struct {
 	RoutingConfig *NetworkRoutingConfig `json:"routingConfig,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// Subnetworks: [Output Only] Server-defined fully-qualified URLs for all
 	// subnetworks
@@ -35842,8 +36643,8 @@ func (s Network) MarshalJSON() ([]byte, error) {
 // NetworkAttachment: NetworkAttachments
 // A network attachment resource ...
 type NetworkAttachment struct {
-	// ConnectionEndpoints: [Output Only] An array of connections for all the
-	// producers connected
+	// ConnectionEndpoints: Output only. [Output Only] An array of connections for
+	// all the producers connected
 	// to this network attachment.
 	ConnectionEndpoints []*NetworkAttachmentConnectedEndpoint `json:"connectionEndpoints,omitempty"`
 	// Possible values:
@@ -35851,7 +36652,8 @@ type NetworkAttachment struct {
 	//   "ACCEPT_MANUAL"
 	//   "INVALID"
 	ConnectionPreference string `json:"connectionPreference,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -35863,11 +36665,11 @@ type NetworkAttachment struct {
 	// up-to-date
 	// fingerprint must be provided in order to patch.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -35880,7 +36682,7 @@ type NetworkAttachment struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Network: [Output Only] The URL of the network which the Network
+	// Network: Output only. [Output Only] The URL of the network which the Network
 	// Attachment
 	// belongs to. Practically it is inferred by fetching the network of the
 	// first
@@ -35898,16 +36700,16 @@ type NetworkAttachment struct {
 	// network attachment.
 	// The project can be specified using its id or number.
 	ProducerRejectLists []string `json:"producerRejectLists,omitempty"`
-	// Region: [Output Only] URL of the region where the network attachment
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the network
+	// attachment resides.
 	// This field applies only to the region resource. You must specify this
 	// field as part of the HTTP request URL. It is not settable as a field in
 	// the request body.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource's
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource's resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// Subnetworks: An array of URLs where each entry is the URL of a
 	// subnet
@@ -36151,8 +36953,8 @@ type NetworkAttachmentConnectedEndpoint struct {
 	// Subnetwork: The subnetwork used to assign the IP to the producer
 	// instance network interface.
 	Subnetwork string `json:"subnetwork,omitempty"`
-	// SubnetworkCidrRange: [Output Only] The CIDR range of the subnet from which
-	// the IPv4 internal
+	// SubnetworkCidrRange: Output only. [Output Only] The CIDR range of the subnet
+	// from which the IPv4 internal
 	// IP was allocated from.
 	SubnetworkCidrRange string `json:"subnetworkCidrRange,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "IpAddress") to
@@ -36519,7 +37321,8 @@ func (s NetworkAttachmentsScopedListWarningData) MarshalJSON() ([]byte, error) {
 // NetworkEdgeSecurityService: Represents a Google Cloud Armor network edge
 // security service resource.
 type NetworkEdgeSecurityService struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -36538,11 +37341,11 @@ type NetworkEdgeSecurityService struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve a NetworkEdgeSecurityService.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] Type of the resource.
+	// Kind: Output only. [Output only] Type of the resource.
 	// Alwayscompute#networkEdgeSecurityService for
 	// NetworkEdgeSecurityServices
 	Kind string `json:"kind,omitempty"`
@@ -36557,8 +37360,8 @@ type NetworkEdgeSecurityService struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] URL of the region where the resource resides. You
-	// must
+	// Region: Output only. [Output Only] URL of the region where the resource
+	// resides. You must
 	// specify this field as part of the HTTP request URL. It is not settable as
 	// a
 	// field in the request body.
@@ -36567,10 +37370,10 @@ type NetworkEdgeSecurityService struct {
 	// associated with this
 	// network edge security service.
 	SecurityPolicy string `json:"securityPolicy,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -36599,7 +37402,7 @@ type NetworkEdgeSecurityServiceAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NetworkEdgeSecurityServicesScopedList resources.
 	Items map[string]NetworkEdgeSecurityServicesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#networkEdgeSecurityServiceAggregatedList for lists of
 	// Network Edge Security Services.
 	Kind string `json:"kind,omitempty"`
@@ -36611,9 +37414,9 @@ type NetworkEdgeSecurityServiceAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NetworkEdgeSecurityServiceAggregatedListWarning `json:"warning,omitempty"`
@@ -37039,7 +37842,8 @@ type NetworkEndpointGroup struct {
 	// CloudRun: Optional. Only valid when networkEndpointType isSERVERLESS. Only
 	// one of cloudRun,appEngine or cloudFunction may be set.
 	CloudRun *NetworkEndpointGroupCloudRun `json:"cloudRun,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// DefaultPort: The default port used if the port number is not specified in
@@ -37054,12 +37858,12 @@ type NetworkEndpointGroup struct {
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#networkEndpointGroup
-	// for network endpoint group.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#networkEndpointGroup for network endpoint group.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource; provided by the client when the resource is
 	// created.
@@ -37113,19 +37917,19 @@ type NetworkEndpointGroup struct {
 	//
 	// Optional. Only valid when networkEndpointType isPRIVATE_SERVICE_CONNECT.
 	PscTargetService string `json:"pscTargetService,omitempty"`
-	// Region: [Output Only] The URL of theregion
+	// Region: Output only. [Output Only] The URL of theregion
 	// where the network endpoint group is located.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Size: [Output only] Number of network endpoints in the network endpoint
-	// group.
+	// Size: Output only. [Output only] Number of network endpoints in the network
+	// endpoint group.
 	Size int64 `json:"size,omitempty"`
 	// Subnetwork: Optional URL of the subnetwork to which all network endpoints in
 	// the NEG
 	// belong.
 	Subnetwork string `json:"subnetwork,omitempty"`
-	// Zone: [Output Only] The URL of thezone
+	// Zone: Output only. [Output Only] The URL of thezone
 	// where the network endpoint group is located.
 	Zone string `json:"zone,omitempty"`
 
@@ -37154,7 +37958,7 @@ type NetworkEndpointGroupAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NetworkEndpointGroupsScopedList resources.
 	Items map[string]NetworkEndpointGroupsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#networkEndpointGroupAggregatedList for aggregated
 	// lists of network endpoint groups.
 	Kind string `json:"kind,omitempty"`
@@ -37166,9 +37970,9 @@ type NetworkEndpointGroupAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NetworkEndpointGroupAggregatedListWarning `json:"warning,omitempty"`
@@ -37499,7 +38303,7 @@ type NetworkEndpointGroupList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NetworkEndpointGroup resources.
 	Items []*NetworkEndpointGroup `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#networkEndpointGroupList for network endpoint group
 	// lists.
 	Kind string `json:"kind,omitempty"`
@@ -37511,7 +38315,7 @@ type NetworkEndpointGroupList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NetworkEndpointGroupListWarning `json:"warning,omitempty"`
@@ -37680,8 +38484,8 @@ func (s NetworkEndpointGroupListWarningData) MarshalJSON() ([]byte, error) {
 // network endpoint groups of
 // type PRIVATE_SERVICE_CONNECT.
 type NetworkEndpointGroupPscData struct {
-	// ConsumerPscAddress: [Output Only] Address allocated from given subnetwork
-	// for PSC. This IP
+	// ConsumerPscAddress: Output only. [Output Only] Address allocated from given
+	// subnetwork for PSC. This IP
 	// address acts as a VIP for a PSC NEG, allowing it to act as an endpoint in
 	// L7 PSC-XLB.
 	ConsumerPscAddress string `json:"consumerPscAddress,omitempty"`
@@ -37690,12 +38494,12 @@ type NetworkEndpointGroupPscData struct {
 	// the PSC Producer side; should only be used for the
 	// PRIVATE_SERVICE_CONNECT NEG type
 	ProducerPort int64 `json:"producerPort,omitempty"`
-	// PscConnectionId: [Output Only] The PSC connection id of the PSC Network
-	// Endpoint Group
+	// PscConnectionId: Output only. [Output Only] The PSC connection id of the PSC
+	// Network Endpoint Group
 	// Consumer.
 	PscConnectionId uint64 `json:"pscConnectionId,omitempty,string"`
-	// PscConnectionStatus: [Output Only] The connection status of the PSC
-	// Forwarding Rule.
+	// PscConnectionStatus: Output only. [Output Only] The connection status of the
+	// PSC Forwarding Rule.
 	//
 	// Possible values:
 	//   "ACCEPTED" - The connection has been accepted by the producer.
@@ -37807,7 +38611,7 @@ type NetworkEndpointGroupsListNetworkEndpoints struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NetworkEndpointWithHealthStatus resources.
 	Items []*NetworkEndpointWithHealthStatus `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute#networkEndpointGroupsListNetworkEndpoints for the list
 	// of network endpoints in the specified network endpoint group.
 	Kind string `json:"kind,omitempty"`
@@ -37983,11 +38787,12 @@ func (s NetworkEndpointGroupsListNetworkEndpointsWarningData) MarshalJSON() ([]b
 }
 
 type NetworkEndpointGroupsScopedList struct {
-	// NetworkEndpointGroups: [Output Only] The list ofnetwork
+	// NetworkEndpointGroups: Output only. [Output Only] The list
+	// ofnetwork
 	// endpoint groups that are contained in this scope.
 	NetworkEndpointGroups []*NetworkEndpointGroup `json:"networkEndpointGroups,omitempty"`
-	// Warning: [Output Only] An informational warning that replaces the list of
-	// network
+	// Warning: Output only. [Output Only] An informational warning that replaces
+	// the list of network
 	// endpoint groups when the list is empty.
 	Warning *NetworkEndpointGroupsScopedListWarning `json:"warning,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "NetworkEndpointGroups") to
@@ -38008,8 +38813,8 @@ func (s NetworkEndpointGroupsScopedList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// NetworkEndpointGroupsScopedListWarning: [Output Only] An informational
-// warning that replaces the list of network
+// NetworkEndpointGroupsScopedListWarning: Output only. [Output Only] An
+// informational warning that replaces the list of network
 // endpoint groups when the list is empty.
 type NetworkEndpointGroupsScopedListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
@@ -38150,13 +38955,14 @@ func (s NetworkEndpointGroupsScopedListWarningData) MarshalJSON() ([]byte, error
 }
 
 type NetworkEndpointWithHealthStatus struct {
-	// Healths: [Output only] The health status of network endpoint.
+	// Healths: Output only. [Output only] The health status of network
+	// endpoint.
 	//
 	// Optional. Displayed only if the network endpoint has centralized
 	// health
 	// checking configured.
 	Healths []*HealthStatusForNetworkEndpoint `json:"healths,omitempty"`
-	// NetworkEndpoint: [Output only] The network endpoint.
+	// NetworkEndpoint: Output only. [Output only] The network endpoint.
 	NetworkEndpoint *NetworkEndpoint `json:"networkEndpoint,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Healths") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -38181,7 +38987,7 @@ type NetworkFirewallPolicyAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of FirewallPoliciesScopedList resources.
 	Items map[string]FirewallPoliciesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#networkFirewallPoliciesAggregatedList for lists of
 	// network firewall policies.
 	Kind string `json:"kind,omitempty"`
@@ -38193,9 +38999,9 @@ type NetworkFirewallPolicyAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NetworkFirewallPolicyAggregatedListWarning `json:"warning,omitempty"`
@@ -38396,8 +39202,8 @@ type NetworkInterface struct {
 	// is no ipv6AccessConfig specified, then this instance will
 	// have no external IPv6 Internet access.
 	Ipv6AccessConfigs []*AccessConfig `json:"ipv6AccessConfigs,omitempty"`
-	// Ipv6AccessType: [Output Only] One of EXTERNAL, INTERNAL to indicate whether
-	// the IP can be
+	// Ipv6AccessType: Output only. [Output Only] One of EXTERNAL, INTERNAL to
+	// indicate whether the IP can be
 	// accessed from the Internet. This field is always inherited from
 	// its
 	// subnetwork.
@@ -38416,8 +39222,8 @@ type NetworkInterface struct {
 	// automatically
 	// assign an internal IPv6 address from the instance's subnetwork.
 	Ipv6Address string `json:"ipv6Address,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#networkInterface for
-	// network interfaces.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#networkInterface for network interfaces.
 	Kind string `json:"kind,omitempty"`
 	// Name: [Output Only] The name of the network interface, which is generated by
 	// the
@@ -38536,7 +39342,8 @@ type NetworkList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Network resources.
 	Items []*Network `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#networkList for
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#networkList for
 	// lists of networks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -38547,7 +39354,7 @@ type NetworkList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NetworkListWarning `json:"warning,omitempty"`
@@ -38759,8 +39566,8 @@ type NetworkPeering struct {
 	// manage
 	// subnetwork routes between two networks when peering state isACTIVE.
 	AutoCreateRoutes bool `json:"autoCreateRoutes,omitempty"`
-	// ConnectionStatus: [Output Only] The effective state of the peering
-	// connection
+	// ConnectionStatus: Output only. [Output Only] The effective state of the
+	// peering connection
 	// as a whole.
 	ConnectionStatus *NetworkPeeringConnectionStatus `json:"connectionStatus,omitempty"`
 	// ExchangeSubnetRoutes: Indicates whether full mesh connectivity is created
@@ -38810,8 +39617,8 @@ type NetworkPeering struct {
 	// project
 	// as the current network.
 	Network string `json:"network,omitempty"`
-	// PeerMtu: [Output Only] Maximum Transmission Unit in bytes of the peer
-	// network.
+	// PeerMtu: Output only. [Output Only] Maximum Transmission Unit in bytes of
+	// the peer network.
 	PeerMtu int64 `json:"peerMtu,omitempty"`
 	// StackType: Which IP version(s) of traffic and routes are allowed to be
 	// imported or
@@ -38827,8 +39634,8 @@ type NetworkPeering struct {
 	// be
 	// exchanged, even if the matching peering is IPV4_IPV6.
 	StackType string `json:"stackType,omitempty"`
-	// State: [Output Only] State for the peering, either `ACTIVE` or `INACTIVE`.
-	// The
+	// State: Output only. [Output Only] State for the peering, either `ACTIVE` or
+	// `INACTIVE`. The
 	// peering is `ACTIVE` when there's a matching configuration in the
 	// peer
 	// network.
@@ -38839,7 +39646,8 @@ type NetworkPeering struct {
 	// case when
 	// peer does not exist.
 	State string `json:"state,omitempty"`
-	// StateDetails: [Output Only] Details about the current state of the peering.
+	// StateDetails: Output only. [Output Only] Details about the current state of
+	// the peering.
 	StateDetails string `json:"stateDetails,omitempty"`
 	// UpdateStrategy: The update strategy determines the semantics for updates and
 	// deletes to the
@@ -39056,30 +39864,33 @@ func (s NetworkPerformanceConfig) MarshalJSON() ([]byte, error) {
 // NetworkProfile: NetworkProfile represents a Google managed network profile
 // resource.
 type NetworkProfile struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Description: [Output Only] An optional description of this resource.
+	// Description: Output only. [Output Only] An optional description of this
+	// resource.
 	Description string `json:"description,omitempty"`
-	// Features: [Output Only] Features supported by the network.
+	// Features: Output only. [Output Only] Features supported by the network.
 	Features *NetworkProfileNetworkFeatures `json:"features,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#networkProfile for
-	// network profiles.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#networkProfile for network profiles.
 	Kind string `json:"kind,omitempty"`
-	// Location: [Output Only] Location to which the network is restricted.
+	// Location: Output only. [Output Only] Location to which the network is
+	// restricted.
 	Location *NetworkProfileLocation `json:"location,omitempty"`
-	// Name: [Output Only] Name of the resource.
+	// Name: Output only. [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// ProfileType: [Output Only] Type of the network profile.
+	// ProfileType: Output only. [Output Only] Type of the network profile.
 	ProfileType *NetworkProfileProfileType `json:"profileType,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -39154,6 +39965,12 @@ type NetworkProfileNetworkFeatures struct {
 	// Load Balancer forwarding rules.
 	//   "VPC_PEERING" - IP range for peer networks.
 	AddressPurposes []string `json:"addressPurposes,omitempty"`
+	// AllowAddressCreation: Specifies whether address creation is allowed.
+	//
+	// Possible values:
+	//   "ADDRESS_CREATION_ALLOWED"
+	//   "ADDRESS_CREATION_BLOCKED"
+	AllowAddressCreation string `json:"allowAddressCreation,omitempty"`
 	// AllowAliasIpRanges: Specifies whether alias IP ranges (and secondary address
 	// ranges) are
 	// allowed.
@@ -39202,6 +40019,13 @@ type NetworkProfileNetworkFeatures struct {
 	//   "EXTERNAL_IP_ACCESS_ALLOWED"
 	//   "EXTERNAL_IP_ACCESS_BLOCKED"
 	AllowExternalIpAccess string `json:"allowExternalIpAccess,omitempty"`
+	// AllowFirewallPolicy: Specifies whether firewall policy can be attached to
+	// the network.
+	//
+	// Possible values:
+	//   "FIREWALL_POLICY_ALLOWED"
+	//   "FIREWALL_POLICY_BLOCKED"
+	AllowFirewallPolicy string `json:"allowFirewallPolicy,omitempty"`
 	// AllowInterconnect: Specifies whether Cloud Interconnect creation is allowed.
 	//
 	// Possible values:
@@ -39227,6 +40051,13 @@ type NetworkProfileNetworkFeatures struct {
 	//   "MULTI_NIC_IN_SAME_NETWORK_ALLOWED"
 	//   "MULTI_NIC_IN_SAME_NETWORK_BLOCKED"
 	AllowMultiNicInSameNetwork string `json:"allowMultiNicInSameNetwork,omitempty"`
+	// AllowMultiNicInSameSubnetwork: Specifies whether multi-nic in the same
+	// subnetwork is allowed.
+	//
+	// Possible values:
+	//   "MULTI_NIC_IN_SAME_SUBNETWORK_ALLOWED"
+	//   "MULTI_NIC_IN_SAME_SUBNETWORK_BLOCKED"
+	AllowMultiNicInSameSubnetwork string `json:"allowMultiNicInSameSubnetwork,omitempty"`
 	// AllowMulticast: Specifies whether multicast is allowed.
 	//
 	// Possible values:
@@ -39283,6 +40114,19 @@ type NetworkProfileNetworkFeatures struct {
 	//   "SUBINTERFACES_ALLOWED"
 	//   "SUBINTERFACES_BLOCKED"
 	AllowSubInterfaces string `json:"allowSubInterfaces,omitempty"`
+	// AllowSubnetworkCreation: Specifies whether subnetwork creation is allowed.
+	//
+	// Possible values:
+	//   "SUBNETWORK_CREATION_ALLOWED"
+	//   "SUBNETWORK_CREATION_BLOCKED"
+	AllowSubnetworkCreation string `json:"allowSubnetworkCreation,omitempty"`
+	// AllowVpcFirewallRules: Specifies whether VPC firewall rules can be created
+	// under the network.
+	//
+	// Possible values:
+	//   "VPC_FIREWALL_RULES_ALLOWED"
+	//   "VPC_FIREWALL_RULES_BLOCKED"
+	AllowVpcFirewallRules string `json:"allowVpcFirewallRules,omitempty"`
 	// AllowVpcPeering: Specifies whether VPC peering is allowed.
 	//
 	// Possible values:
@@ -39295,6 +40139,10 @@ type NetworkProfileNetworkFeatures struct {
 	//   "VPN_ALLOWED"
 	//   "VPN_BLOCKED"
 	AllowVpn string `json:"allowVpn,omitempty"`
+	// Possible values:
+	//   "RDMA_ROCE_POLICY"
+	//   "VPC_POLICY"
+	FirewallPolicyTypes []string `json:"firewallPolicyTypes,omitempty"`
 	// InterfaceTypes: If set, limits the interface types that the network
 	// supports. If
 	// empty, all interface types are supported.
@@ -39313,6 +40161,11 @@ type NetworkProfileNetworkFeatures struct {
 	//   "MULTICAST_SDN"
 	//   "MULTICAST_ULL"
 	Multicast string `json:"multicast,omitempty"`
+	// PredefinedNetworkInternalIpv6Range: Specifies a predefined internal IPv6
+	// range for the network.
+	PredefinedNetworkInternalIpv6Range string `json:"predefinedNetworkInternalIpv6Range,omitempty"`
+	// PredefinedSubnetworkRanges: Predefined subnetwork ranges for the network.
+	PredefinedSubnetworkRanges []*NetworkProfileNetworkFeaturesPredefinedSubnetworkRange `json:"predefinedSubnetworkRanges,omitempty"`
 	// SubnetPurposes: Specifies which subnetwork purposes are supported.
 	//
 	// Possible values:
@@ -39326,7 +40179,8 @@ type NetworkProfileNetworkFeatures struct {
 	//   "SUBNET_STACK_TYPE_IPV4_ONLY"
 	//   "SUBNET_STACK_TYPE_IPV6_ONLY"
 	SubnetStackTypes []string `json:"subnetStackTypes,omitempty"`
-	// SubnetworkPurposes: Specifies which subnetwork purposes are supported.
+	// SubnetworkPurposes: Output only. Specifies which subnetwork purposes are
+	// supported.
 	//
 	// Possible values:
 	//   "GLOBAL_MANAGED_PROXY" - Subnet reserved for Global Envoy-based Load
@@ -39346,7 +40200,8 @@ type NetworkProfileNetworkFeatures struct {
 	//   "REGIONAL_MANAGED_PROXY" - Subnetwork used for Regional Envoy-based Load
 	// Balancing.
 	SubnetworkPurposes []string `json:"subnetworkPurposes,omitempty"`
-	// SubnetworkStackTypes: Specifies which subnetwork stack types are supported.
+	// SubnetworkStackTypes: Output only. Specifies which subnetwork stack types
+	// are supported.
 	//
 	// Possible values:
 	//   "IPV4_IPV6" - New VMs in this subnet can have both IPv4 and IPv6
@@ -39379,6 +40234,29 @@ func (s NetworkProfileNetworkFeatures) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+type NetworkProfileNetworkFeaturesPredefinedSubnetworkRange struct {
+	// Ipv6Range: The IPv6 range of the predefined subnetwork.
+	Ipv6Range string `json:"ipv6Range,omitempty"`
+	// NamePrefix: The naming prefix of the predefined subnetwork.
+	NamePrefix string `json:"namePrefix,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "Ipv6Range") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "Ipv6Range") to include in API
+	// requests with the JSON null value. By default, fields with empty values are
+	// omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s NetworkProfileNetworkFeaturesPredefinedSubnetworkRange) MarshalJSON() ([]byte, error) {
+	type NoMethod NetworkProfileNetworkFeaturesPredefinedSubnetworkRange
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 type NetworkProfileProfileType struct {
 	// Possible values:
 	//   "RDMA" - RDMA network.
@@ -39388,6 +40266,7 @@ type NetworkProfileProfileType struct {
 	// Possible values:
 	//   "FALCON" - RDMA over Falcon.
 	//   "ROCE" - RDMA over Converged Ethernet (RoCE).
+	//   "ROCE_METAL" - RDMA over Converged Ethernet (RoCE) for Bare Metal.
 	RdmaSubtype string `json:"rdmaSubtype,omitempty"`
 	// Possible values:
 	//   "OPERATOR" - Exchange operator.
@@ -39421,8 +40300,8 @@ type NetworkProfilesListResponse struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NetworkProfile resources.
 	Items []*NetworkProfile `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#networkProfileList for
-	// network profiles.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#networkProfileList for network profiles.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -39434,9 +40313,10 @@ type NetworkProfilesListResponse struct {
 	// to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -39632,12 +40512,12 @@ type NetworkRoutingConfig struct {
 	//   "ADD_COST_TO_MED"
 	//   "DEFAULT"
 	BgpInterRegionCost string `json:"bgpInterRegionCost,omitempty"`
-	// EffectiveBgpAlwaysCompareMed: [Output Only] Effective value of the
-	// bgp_always_compare_med
+	// EffectiveBgpAlwaysCompareMed: Output only. [Output Only] Effective value of
+	// the bgp_always_compare_med
 	// field.
 	EffectiveBgpAlwaysCompareMed bool `json:"effectiveBgpAlwaysCompareMed,omitempty"`
-	// EffectiveBgpInterRegionCost: [Output Only] Effective value of the
-	// bgp_inter_region_cost
+	// EffectiveBgpInterRegionCost: Output only. [Output Only] Effective value of
+	// the bgp_inter_region_cost
 	// field.
 	//
 	// Possible values:
@@ -39752,24 +40632,24 @@ func (s NetworksGetEffectiveFirewallsResponse) MarshalJSON() ([]byte, error) {
 }
 
 type NetworksGetEffectiveFirewallsResponseEffectiveFirewallPolicy struct {
-	// DisplayName: [Output Only] Deprecated, please use short name instead. The
-	// display name
+	// DisplayName: Output only. [Output Only] Deprecated, please use short name
+	// instead. The display name
 	// of the firewall policy.
 	DisplayName string `json:"displayName,omitempty"`
-	// Name: [Output Only] The name of the firewall policy.
+	// Name: Output only. [Output Only] The name of the firewall policy.
 	Name string `json:"name,omitempty"`
-	// PacketMirroringRules: [Output Only] The packet mirroring rules that apply to
-	// the network.
+	// PacketMirroringRules: Output only. [Output Only] The packet mirroring rules
+	// that apply to the network.
 	PacketMirroringRules []*FirewallPolicyRule `json:"packetMirroringRules,omitempty"`
-	// Priority: [Output only] Priority of firewall policy association. Not
-	// applicable for
+	// Priority: Output only. [Output only] Priority of firewall policy
+	// association. Not applicable for
 	// type=HIERARCHY.
 	Priority int64 `json:"priority,omitempty"`
 	// Rules: [Output Only] The rules that apply to the network.
 	Rules []*FirewallPolicyRule `json:"rules,omitempty"`
-	// ShortName: [Output Only] The short name of the firewall policy.
+	// ShortName: Output only. [Output Only] The short name of the firewall policy.
 	ShortName string `json:"shortName,omitempty"`
-	// Type: [Output Only] The type of the firewall policy.
+	// Type: Output only. [Output Only] The type of the firewall policy.
 	//
 	// Possible values:
 	//   "HIERARCHY"
@@ -39870,7 +40750,8 @@ func (s NetworksUpdatePeeringRequest) MarshalJSON() ([]byte, error) {
 type NodeGroup struct {
 	// AutoscalingPolicy: Specifies how autoscaling should behave.
 	AutoscalingPolicy *NodeGroupAutoscalingPolicy `json:"autoscalingPolicy,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -39878,12 +40759,12 @@ type NodeGroup struct {
 	// create the resource.
 	Description string `json:"description,omitempty"`
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#nodeGroup for
-	// node group.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#nodeGroup for node group.
 	Kind string `json:"kind,omitempty"`
 	// LocationHint: An opaque location hint used to place the Node close to
 	// other
@@ -39955,11 +40836,12 @@ type NodeGroup struct {
 	Name string `json:"name,omitempty"`
 	// NodeTemplate: URL of the node template to create the node group from.
 	NodeTemplate string `json:"nodeTemplate,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ShareSettings: Share-settings for the node group
 	ShareSettings *ShareSettings `json:"shareSettings,omitempty"`
-	// Size: [Output Only] The total number of nodes in the node group.
+	// Size: Output only. [Output Only] The total number of nodes in the node
+	// group.
 	Size int64 `json:"size,omitempty"`
 	// Possible values:
 	//   "CREATING"
@@ -39967,7 +40849,8 @@ type NodeGroup struct {
 	//   "INVALID"
 	//   "READY"
 	Status string `json:"status,omitempty"`
-	// Zone: [Output Only] The name of the zone where the node group resides,
+	// Zone: Output only. [Output Only] The name of the zone where the node group
+	// resides,
 	// such as us-central1-a.
 	Zone string `json:"zone,omitempty"`
 
@@ -39996,8 +40879,9 @@ type NodeGroupAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeGroupsScopedList resources.
 	Items map[string]NodeGroupsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Alwayscompute#nodeGroupAggregatedList
-	// for aggregated lists of node
+	// Kind: Output only. [Output Only] Type of
+	// resource.Alwayscompute#nodeGroupAggregatedList for aggregated lists of
+	// node
 	// groups.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -40008,9 +40892,9 @@ type NodeGroupAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeGroupAggregatedListWarning `json:"warning,omitempty"`
@@ -40216,7 +41100,8 @@ type NodeGroupList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeGroup resources.
 	Items []*NodeGroup `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Always compute#nodeGroupList
+	// Kind: Output only. [Output Only] Type of resource.Always
+	// compute#nodeGroupList
 	// for lists of node groups.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -40227,7 +41112,7 @@ type NodeGroupList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeGroupListWarning `json:"warning,omitempty"`
@@ -40395,8 +41280,8 @@ func (s NodeGroupListWarningData) MarshalJSON() ([]byte, error) {
 // operations. GCE's internal
 // maintenance will be performed within this window.
 type NodeGroupMaintenanceWindow struct {
-	// MaintenanceDuration: [Output only] A predetermined duration for the window,
-	// automatically
+	// MaintenanceDuration: Output only. [Output only] A predetermined duration for
+	// the window, automatically
 	// chosen to be the smallest possible in the given scenario.
 	MaintenanceDuration *Duration `json:"maintenanceDuration,omitempty"`
 	// StartTime: Start time of the window. This must be in UTC format that
@@ -40425,7 +41310,8 @@ func (s NodeGroupMaintenanceWindow) MarshalJSON() ([]byte, error) {
 type NodeGroupNode struct {
 	// Accelerators: Accelerators for this node.
 	Accelerators []*AcceleratorConfig `json:"accelerators,omitempty"`
-	// ConsumedResources: Node resources that are reserved by all instances.
+	// ConsumedResources: Output only. Node resources that are reserved by all
+	// instances.
 	ConsumedResources *InstanceConsumptionInfo `json:"consumedResources,omitempty"`
 	// CpuOvercommitType: CPU overcommit.
 	//
@@ -40436,8 +41322,8 @@ type NodeGroupNode struct {
 	CpuOvercommitType string `json:"cpuOvercommitType,omitempty"`
 	// Disks: Local disk configurations.
 	Disks []*LocalDisk `json:"disks,omitempty"`
-	// InstanceConsumptionData: Instance data that shows consumed resources on the
-	// node.
+	// InstanceConsumptionData: Output only. Instance data that shows consumed
+	// resources on the node.
 	InstanceConsumptionData []*InstanceConsumptionData `json:"instanceConsumptionData,omitempty"`
 	// Instances: Instances scheduled on this node.
 	Instances []string `json:"instances,omitempty"`
@@ -40445,7 +41331,7 @@ type NodeGroupNode struct {
 	Name string `json:"name,omitempty"`
 	// NodeType: The type of this node.
 	NodeType string `json:"nodeType,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
 	// ServerBinding: Binding properties for the physical server.
 	ServerBinding *ServerBinding `json:"serverBinding,omitempty"`
@@ -40458,10 +41344,11 @@ type NodeGroupNode struct {
 	//   "READY"
 	//   "REPAIRING"
 	Status string `json:"status,omitempty"`
-	// TotalResources: Total amount of available resources on the node.
+	// TotalResources: Output only. Total amount of available resources on the
+	// node.
 	TotalResources *InstanceConsumptionInfo `json:"totalResources,omitempty"`
-	// UpcomingMaintenance: [Output Only] The information about an upcoming
-	// maintenance event.
+	// UpcomingMaintenance: Output only. [Output Only] The information about an
+	// upcoming maintenance event.
 	UpcomingMaintenance *UpcomingMaintenance `json:"upcomingMaintenance,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Accelerators") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -40525,25 +41412,26 @@ func (s NodeGroupsDeleteNodesRequest) MarshalJSON() ([]byte, error) {
 }
 
 type NodeGroupsListNodes struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of Node resources.
 	Items []*NodeGroupNode `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// alwayscompute.nodeGroupsListNodes for the list of nodes in the
 	// specified node group.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *NodeGroupsListNodesWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -40566,7 +41454,8 @@ func (s NodeGroupsListNodes) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// NodeGroupsListNodesWarning: [Output Only] Informational warning message.
+// NodeGroupsListNodesWarning: Output only. [Output Only] Informational warning
+// message.
 type NodeGroupsListNodesWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -40954,7 +41843,8 @@ type NodeTemplate struct {
 	//   "ENABLED"
 	//   "NONE"
 	CpuOvercommitType string `json:"cpuOvercommitType,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -40962,12 +41852,12 @@ type NodeTemplate struct {
 	// create the resource.
 	Description string       `json:"description,omitempty"`
 	Disks       []*LocalDisk `json:"disks,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#nodeTemplate for
-	// node templates.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#nodeTemplate for node templates.
 	Kind string `json:"kind,omitempty"`
 	// Name: The name of the resource, provided by the client when initially
 	// creating
@@ -40989,11 +41879,11 @@ type NodeTemplate struct {
 	NodeType string `json:"nodeType,omitempty"`
 	// NodeTypeFlexibility: Do not use. Instead, use the node_type property.
 	NodeTypeFlexibility *NodeTemplateNodeTypeFlexibility `json:"nodeTypeFlexibility,omitempty"`
-	// Region: [Output Only] The name of the region where the node template
-	// resides,
+	// Region: Output only. [Output Only] The name of the region where the node
+	// template resides,
 	// such as us-central1.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ServerBinding: Sets the binding properties for the physical server. Valid
 	// values include:
@@ -41009,8 +41899,8 @@ type NodeTemplate struct {
 	// See Sole-tenant
 	// node options for more information.
 	ServerBinding *ServerBinding `json:"serverBinding,omitempty"`
-	// Status: [Output Only] The status of the node template. One of the following
-	// values:CREATING, READY, and DELETING.
+	// Status: Output only. [Output Only] The status of the node template. One of
+	// the following values:CREATING, READY, and DELETING.
 	//
 	// Possible values:
 	//   "CREATING" - Resources are being allocated.
@@ -41018,8 +41908,8 @@ type NodeTemplate struct {
 	//   "INVALID" - Invalid status.
 	//   "READY" - The node template is ready.
 	Status string `json:"status,omitempty"`
-	// StatusMessage: [Output Only] An optional, human-readable explanation of the
-	// status.
+	// StatusMessage: Output only. [Output Only] An optional, human-readable
+	// explanation of the status.
 	StatusMessage string `json:"statusMessage,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -41047,7 +41937,7 @@ type NodeTemplateAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeTemplatesScopedList resources.
 	Items map[string]NodeTemplatesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of
+	// Kind: Output only. [Output Only] Type of
 	// resource.Alwayscompute#nodeTemplateAggregatedList for aggregated lists
 	// of
 	// node templates.
@@ -41060,9 +41950,9 @@ type NodeTemplateAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeTemplateAggregatedListWarning `json:"warning,omitempty"`
@@ -41233,7 +42123,8 @@ type NodeTemplateList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeTemplate resources.
 	Items []*NodeTemplate `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Always compute#nodeTemplateList
+	// Kind: Output only. [Output Only] Type of resource.Always
+	// compute#nodeTemplateList
 	// for lists of node templates.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -41244,7 +42135,7 @@ type NodeTemplateList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeTemplateListWarning `json:"warning,omitempty"`
@@ -41626,14 +42517,14 @@ type NodeType struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#nodeType for
-	// node types.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#nodeType for node types.
 	Kind string `json:"kind,omitempty"`
 	// LocalSsdGb: [Output Only] Local SSD available to the node type, defined in
 	// GB.
 	LocalSsdGb int64 `json:"localSsdGb,omitempty"`
-	// MaxVms: [Output Only] Maximum number of VMs that can be created for this
-	// node type.
+	// MaxVms: Output only. [Output Only] Maximum number of VMs that can be created
+	// for this node type.
 	MaxVms int64 `json:"maxVms,omitempty"`
 	// MemoryMb: [Output Only] The amount of physical memory available to the node
 	// type,
@@ -41641,9 +42532,10 @@ type NodeType struct {
 	MemoryMb int64 `json:"memoryMb,omitempty"`
 	// Name: [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Zone: [Output Only] The name of the zone where the node type resides,
+	// Zone: Output only. [Output Only] The name of the zone where the node type
+	// resides,
 	// such as us-central1-a.
 	Zone string `json:"zone,omitempty"`
 
@@ -41672,8 +42564,9 @@ type NodeTypeAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeTypesScopedList resources.
 	Items map[string]NodeTypesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Alwayscompute#nodeTypeAggregatedList
-	// for aggregated lists of node
+	// Kind: Output only. [Output Only] Type of
+	// resource.Alwayscompute#nodeTypeAggregatedList for aggregated lists of
+	// node
 	// types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -41684,9 +42577,9 @@ type NodeTypeAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeTypeAggregatedListWarning `json:"warning,omitempty"`
@@ -41856,7 +42749,8 @@ type NodeTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NodeType resources.
 	Items []*NodeType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Always compute#nodeTypeList for
+	// Kind: Output only. [Output Only] Type of resource.Always
+	// compute#nodeTypeList for
 	// lists of node types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -41867,7 +42761,7 @@ type NodeTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *NodeTypeListWarning `json:"warning,omitempty"`
@@ -42208,7 +43102,8 @@ func (s NodeTypesScopedListWarningData) MarshalJSON() ([]byte, error) {
 // For more information, see
 // Health checks overview.
 type NotificationEndpoint struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -42219,12 +43114,12 @@ type NotificationEndpoint struct {
 	// endpoint URL and
 	// the retry duration.
 	GrpcSettings *NotificationEndpointGrpcSettings `json:"grpcSettings,omitempty"`
-	// Id: [Output Only] A unique identifier for this resource type. The
-	// server
+	// Id: Output only. [Output Only] A unique identifier for this resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#notificationEndpoint
-	// for notification endpoints.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#notificationEndpoint for notification endpoints.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -42237,14 +43132,14 @@ type NotificationEndpoint struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] URL of the region where the notification endpoint
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the notification
+	// endpoint resides.
 	// This field applies only to the regional resource. You must specify
 	// this
 	// field as part of the HTTP request URL. It is not settable as a field in
 	// the request body.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -42322,8 +43217,8 @@ type NotificationEndpointList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of NotificationEndpoint resources.
 	Items []*NotificationEndpoint `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#notificationEndpoint
-	// for notification endpoints.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#notificationEndpoint for notification endpoints.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -42561,14 +43456,14 @@ type Operation struct {
 	// text format.
 	InsertTime                           string                                `json:"insertTime,omitempty"`
 	InstancesBulkInsertOperationMetadata *InstancesBulkInsertOperationMetadata `json:"instancesBulkInsertOperationMetadata,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always `compute#operation`
-	// for
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// `compute#operation` for
 	// Operation resources.
 	Kind string `json:"kind,omitempty"`
 	// Name: [Output Only] Name of the operation.
 	Name string `json:"name,omitempty"`
-	// OperationGroupId: [Output Only] An ID that represents a group of operations,
-	// such as when a
+	// OperationGroupId: Output only. [Output Only] An ID that represents a group
+	// of operations, such as when a
 	// group of operations results from a `bulkInsert` API request.
 	OperationGroupId string `json:"operationGroupId,omitempty"`
 	// OperationType: [Output Only] The type of operation, such as
@@ -42591,8 +43486,8 @@ type Operation struct {
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SetCommonInstanceMetadataOperationMetadata: [Output Only] If the operation
-	// is for projects.setCommonInstanceMetadata,
+	// SetCommonInstanceMetadataOperationMetadata: Output only. [Output Only] If
+	// the operation is for projects.setCommonInstanceMetadata,
 	// this field will contain information on all underlying zonal actions
 	// and
 	// their state.
@@ -42888,7 +43783,7 @@ type OperationAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A map of scoped operation lists.
 	Items map[string]OperationsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always
+	// Kind: Output only. [Output Only] Type of resource. Always
 	// `compute#operationAggregatedList`
 	// for aggregated lists of operations.
 	Kind string `json:"kind,omitempty"`
@@ -42902,7 +43797,7 @@ type OperationAggregatedList struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *OperationAggregatedListWarning `json:"warning,omitempty"`
@@ -43074,8 +43969,8 @@ type OperationList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A list of Operation resources.
 	Items []*Operation `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always `compute#operations` for
-	// Operations
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// `compute#operations` for Operations
 	// resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -43419,7 +44314,7 @@ func (s OperationsScopedListWarningData) MarshalJSON() ([]byte, error) {
 type OrganizationSecurityPoliciesListAssociationsResponse struct {
 	// Associations: A list of associations.
 	Associations []*SecurityPolicyAssociation `json:"associations,omitempty"`
-	// Kind: [Output Only] Type of securityPolicy associations.
+	// Kind: Output only. [Output Only] Type of securityPolicy associations.
 	// Alwayscompute#organizationSecurityPoliciesListAssociations for lists
 	// of securityPolicy associations.
 	Kind string `json:"kind,omitempty"`
@@ -43625,7 +44520,8 @@ type PacketMirroring struct {
 	// The specified forwarding rule must have isMirroringCollector
 	// set to true.
 	CollectorIlb *PacketMirroringForwardingRuleInfo `json:"collectorIlb,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -43646,12 +44542,12 @@ type PacketMirroring struct {
 	// Filter: Filter for mirrored traffic. If unspecified, all IPv4 traffic is
 	// mirrored.
 	Filter *PacketMirroringFilter `json:"filter,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#packetMirroring for
-	// packet mirrorings.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#packetMirroring for packet mirrorings.
 	Kind string `json:"kind,omitempty"`
 	// MirroredResources: PacketMirroring
 	// mirroredResourceInfos.
@@ -43687,7 +44583,7 @@ type PacketMirroring struct {
 	Priority int64 `json:"priority,omitempty"`
 	// Region: [Output Only] URI of the region where the packetMirroring resides.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -43716,7 +44612,7 @@ type PacketMirroringAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of PacketMirroring resources.
 	Items map[string]PacketMirroringsScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -43726,9 +44622,9 @@ type PacketMirroringAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *PacketMirroringAggregatedListWarning `json:"warning,omitempty"`
@@ -43941,8 +44837,8 @@ func (s PacketMirroringFilter) MarshalJSON() ([]byte, error) {
 }
 
 type PacketMirroringForwardingRuleInfo struct {
-	// CanonicalUrl: [Output Only] Unique identifier for the forwarding rule;
-	// defined by the
+	// CanonicalUrl: Output only. [Output Only] Unique identifier for the
+	// forwarding rule; defined by the
 	// server.
 	CanonicalUrl string `json:"canonicalUrl,omitempty"`
 	// Url: Resource URL to the forwarding rule representing the ILB
@@ -43972,7 +44868,8 @@ type PacketMirroringList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of PacketMirroring resources.
 	Items []*PacketMirroring `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#packetMirroring
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#packetMirroring
 	// for packetMirrorings.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -43983,7 +44880,7 @@ type PacketMirroringList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *PacketMirroringListWarning `json:"warning,omitempty"`
@@ -44188,8 +45085,8 @@ func (s PacketMirroringMirroredResourceInfo) MarshalJSON() ([]byte, error) {
 }
 
 type PacketMirroringMirroredResourceInfoInstanceInfo struct {
-	// CanonicalUrl: [Output Only] Unique identifier for the instance; defined by
-	// the
+	// CanonicalUrl: Output only. [Output Only] Unique identifier for the instance;
+	// defined by the
 	// server.
 	CanonicalUrl string `json:"canonicalUrl,omitempty"`
 	// Url: Resource URL to the virtual machine instance which is being mirrored.
@@ -44213,8 +45110,8 @@ func (s PacketMirroringMirroredResourceInfoInstanceInfo) MarshalJSON() ([]byte,
 }
 
 type PacketMirroringMirroredResourceInfoSubnetInfo struct {
-	// CanonicalUrl: [Output Only] Unique identifier for the subnetwork; defined by
-	// the
+	// CanonicalUrl: Output only. [Output Only] Unique identifier for the
+	// subnetwork; defined by the
 	// server.
 	CanonicalUrl string `json:"canonicalUrl,omitempty"`
 	// Url: Resource URL to the subnetwork for which
@@ -44239,8 +45136,8 @@ func (s PacketMirroringMirroredResourceInfoSubnetInfo) MarshalJSON() ([]byte, er
 }
 
 type PacketMirroringNetworkInfo struct {
-	// CanonicalUrl: [Output Only] Unique identifier for the network; defined by
-	// the server.
+	// CanonicalUrl: Output only. [Output Only] Unique identifier for the network;
+	// defined by the server.
 	CanonicalUrl string `json:"canonicalUrl,omitempty"`
 	// Url: URL of the network resource.
 	Url string `json:"url,omitempty"`
@@ -44560,10 +45457,13 @@ type PathMatcher struct {
 	// Name: The name to which this PathMatcher is referred by theHostRule.
 	Name string `json:"name,omitempty"`
 	// PathRules: The list of path rules. Use this list instead of routeRules
-	// when routing based on simple path matching is all that's required. The
-	// order by which path rules are specified does not matter. Matches are
-	// always
-	// done on the longest-path-first basis.
+	// when routing based on simple path matching is all that's required. A
+	// path
+	// rule can only include a wildcard character (*) after a
+	// forward slash character ("/").
+	//
+	// The order by which path rules are specified does not matter.
+	// Matches are always done on the longest-path-first basis.
 	//
 	// For example: a pathRule with a path /a/b/c/* will match
 	// before /a/b/* irrespective of the order in which those paths appear in
@@ -45113,26 +46013,27 @@ type PreviewFeature struct {
 	//   "DISABLED"
 	//   "ENABLED"
 	ActivationStatus string `json:"activationStatus,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Description: [Output Only] Description of the feature.
+	// Description: Output only. [Output Only] Description of the feature.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] The type of the feature. Always "compute#previewFeature"
-	// for
+	// Kind: Output only. [Output only] The type of the feature. Always
+	// "compute#previewFeature" for
 	// preview features.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the feature.
 	Name string `json:"name,omitempty"`
 	// RolloutOperation: Rollout operation of the feature.
 	RolloutOperation *PreviewFeatureRolloutOperation `json:"rolloutOperation,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Status: [Output only] Status of the feature.
+	// Status: Output only. [Output only] Status of the feature.
 	Status *PreviewFeatureStatus `json:"status,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -45169,9 +46070,10 @@ type PreviewFeatureList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -45397,9 +46299,10 @@ func (s PreviewFeatureRolloutOperationRolloutInput) MarshalJSON() ([]byte, error
 
 // PreviewFeatureStatus: [Output Only] The status of the feature.
 type PreviewFeatureStatus struct {
-	// Description: [Output Only] The description of the feature.
+	// Description: Output only. [Output Only] The description of the feature.
 	Description string `json:"description,omitempty"`
-	// HelpLink: [Output Only] Link to the public documentation for the feature.
+	// HelpLink: Output only. [Output Only] Link to the public documentation for
+	// the feature.
 	HelpLink      string                             `json:"helpLink,omitempty"`
 	ReleaseStatus *PreviewFeatureStatusReleaseStatus `json:"releaseStatus,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Description") to
@@ -45423,7 +46326,7 @@ func (s PreviewFeatureStatus) MarshalJSON() ([]byte, error) {
 // PreviewFeatureStatusReleaseStatus: [Output Only] The release status of the
 // feature.
 type PreviewFeatureStatusReleaseStatus struct {
-	// Stage: [Output Only] The stage of the feature.
+	// Stage: Output only. [Output Only] The stage of the feature.
 	//
 	// Possible values:
 	//   "DEPRECATED"
@@ -45459,8 +46362,8 @@ func (s PreviewFeatureStatusReleaseStatus) MarshalJSON() ([]byte, error) {
 // environment. For more information, read about the
 // Resource Hierarchy.
 type Project struct {
-	// CloudArmorTier: [Output Only] The Cloud Armor tier for this project. It can
-	// be one of the
+	// CloudArmorTier: Output only. [Output Only] The Cloud Armor tier for this
+	// project. It can be one of the
 	// following values: CA_STANDARD,CA_ENTERPRISE_PAYGO.
 	//
 	// If this field is not specified, it is assumed to beCA_STANDARD.
@@ -45509,8 +46412,8 @@ type Project struct {
 	// defined by the server. This is *not* the project ID, and is
 	// just a unique ID used by Compute Engine to identify resources.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#project
-	// for
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#project for
 	// projects.
 	Kind string `json:"kind,omitempty"`
 	// Name: The project ID. For example: my-example-project. Use the
@@ -45524,8 +46427,8 @@ type Project struct {
 	// the Google Cloud
 	// Storage bucket where they are stored.
 	UsageExportLocation *UsageExportLocation `json:"usageExportLocation,omitempty"`
-	// VmDnsSetting: [Output Only] Default internal DNS setting used by VMs running
-	// in
+	// VmDnsSetting: Output only. [Output Only] Default internal DNS setting used
+	// by VMs running in
 	// this project.
 	//
 	// Possible values:
@@ -45607,12 +46510,12 @@ func (s ProjectsEnableXpnResourceRequest) MarshalJSON() ([]byte, error) {
 }
 
 type ProjectsGetXpnResources struct {
-	// Kind: [Output Only] Type of resource. Alwayscompute#projectsGetXpnResources
-	// for lists of service resources
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#projectsGetXpnResources for lists of service resources
 	// (a.k.a service projects)
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
@@ -45734,7 +46637,7 @@ func (s ProjectsSetDefaultNetworkTierRequest) MarshalJSON() ([]byte, error) {
 // route
 // advertisement and is announced globally to the internet.
 type PublicAdvertisedPrefix struct {
-	// ByoipApiVersion: [Output Only] The version of BYOIP API.
+	// ByoipApiVersion: Output only. [Output Only] The version of BYOIP API.
 	//
 	// Possible values:
 	//   "V1" - This public advertised prefix can be used to create both regional
@@ -45748,7 +46651,8 @@ type PublicAdvertisedPrefix struct {
 	// takes
 	// minutes and the BGP status can be modified.
 	ByoipApiVersion string `json:"byoipApiVersion,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -45769,8 +46673,8 @@ type PublicAdvertisedPrefix struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve a PublicAdvertisedPrefix.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
 	// IpCidrRange: The address range, in CIDR format, represented by this public
@@ -45791,7 +46695,7 @@ type PublicAdvertisedPrefix struct {
 	// privately within Cloud. All children Public Delegated Prefixes
 	// will have IPv6 access type as INTERNAL.
 	Ipv6AccessType string `json:"ipv6AccessType,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -45830,11 +46734,11 @@ type PublicAdvertisedPrefix struct {
 	// provisioning will take
 	// a few minutes.
 	PdpScope string `json:"pdpScope,omitempty"`
-	// PublicDelegatedPrefixs: [Output Only] The list of public delegated prefixes
-	// that exist for this
+	// PublicDelegatedPrefixs: Output only. [Output Only] The list of public
+	// delegated prefixes that exist for this
 	// public advertised prefix.
 	PublicDelegatedPrefixs []*PublicAdvertisedPrefixPublicDelegatedPrefix `json:"publicDelegatedPrefixs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SharedSecret: [Output Only] The shared secret to be used for reverse DNS
 	// verification.
@@ -45890,7 +46794,7 @@ type PublicAdvertisedPrefixList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of PublicAdvertisedPrefix resources.
 	Items []*PublicAdvertisedPrefix `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#publicAdvertisedPrefix for public advertised prefixes.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -46116,7 +47020,7 @@ type PublicDelegatedPrefix struct {
 	// This field is optional and cannot be set for prefixes in DELEGATION mode.
 	// It cannot be set for IPv4 prefixes either, and it always defaults to 32.
 	AllocatablePrefixLength int64 `json:"allocatablePrefixLength,omitempty"`
-	// ByoipApiVersion: [Output Only] The version of BYOIP API.
+	// ByoipApiVersion: Output only. [Output Only] The version of BYOIP API.
 	//
 	// Possible values:
 	//   "V1" - This public delegated prefix usually takes 4 weeks to delete, and
@@ -46127,13 +47031,18 @@ type PublicDelegatedPrefix struct {
 	// and
 	// Withdraw APIs can be used on this prefix to change the BGP status.
 	ByoipApiVersion string `json:"byoipApiVersion,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
+	// EnableEnhancedIpv4Allocation: Output only. [Output Only] Whether this PDP
+	// supports enhanced IPv4 allocations.
+	// Applicable for IPv4 PDPs only.
+	EnableEnhancedIpv4Allocation bool `json:"enableEnhancedIpv4Allocation,omitempty"`
 	// Fingerprint: Fingerprint of this resource. A hash of the contents stored in
 	// this object.
 	// This field is used in optimistic locking. This field will be ignored
@@ -46146,16 +47055,16 @@ type PublicDelegatedPrefix struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve a PublicDelegatedPrefix.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
 	// IpCidrRange: The IP address range, in CIDR format, represented by this
 	// public
 	// delegated prefix.
 	IpCidrRange string `json:"ipCidrRange,omitempty"`
-	// Ipv6AccessType: [Output Only] The internet access type for IPv6 Public
-	// Delegated Prefixes.
+	// Ipv6AccessType: Output only. [Output Only] The internet access type for IPv6
+	// Public Delegated Prefixes.
 	// Inherited from parent prefix.
 	//
 	// Possible values:
@@ -46171,7 +47080,7 @@ type PublicDelegatedPrefix struct {
 	Ipv6AccessType string `json:"ipv6AccessType,omitempty"`
 	// IsLiveMigration: If true, the prefix will be live migrated.
 	IsLiveMigration bool `json:"isLiveMigration,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#publicDelegatedPrefix for public delegated prefixes.
 	Kind string `json:"kind,omitempty"`
 	// Mode: The public delegated prefix mode for IPv6 only.
@@ -46216,13 +47125,13 @@ type PublicDelegatedPrefix struct {
 	// exist for this public
 	// delegated prefix.
 	PublicDelegatedSubPrefixs []*PublicDelegatedPrefixPublicDelegatedSubPrefix `json:"publicDelegatedSubPrefixs,omitempty"`
-	// Region: [Output Only] URL of the region where the public delegated prefix
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the public
+	// delegated prefix resides.
 	// This field applies only to the region resource. You must specify this
 	// field as part of the HTTP request URL. It is not settable as a field in
 	// the request body.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Status: [Output Only] The status of the public delegated prefix, which can
 	// be one
@@ -46278,7 +47187,7 @@ type PublicDelegatedPrefixAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of PublicDelegatedPrefixesScopedList resources.
 	Items map[string]PublicDelegatedPrefixesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#publicDelegatedPrefixAggregatedList for aggregated
 	// lists of public delegated prefixes.
 	Kind string `json:"kind,omitempty"`
@@ -46292,7 +47201,7 @@ type PublicDelegatedPrefixAggregatedList struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *PublicDelegatedPrefixAggregatedListWarning `json:"warning,omitempty"`
@@ -46462,7 +47371,7 @@ type PublicDelegatedPrefixList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of PublicDelegatedPrefix resources.
 	Items []*PublicDelegatedPrefix `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#publicDelegatedPrefixList for public delegated
 	// prefixes.
 	Kind string `json:"kind,omitempty"`
@@ -46651,12 +47560,16 @@ type PublicDelegatedPrefixPublicDelegatedSubPrefix struct {
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
+	// EnableEnhancedIpv4Allocation: Output only. [Output Only] Whether this PDP
+	// supports enhanced IPv4 allocations.
+	// Applicable for IPv4 PDPs only.
+	EnableEnhancedIpv4Allocation bool `json:"enableEnhancedIpv4Allocation,omitempty"`
 	// IpCidrRange: The IP address range, in CIDR format, represented by this sub
 	// public
 	// delegated prefix.
 	IpCidrRange string `json:"ipCidrRange,omitempty"`
-	// Ipv6AccessType: [Output Only] The internet access type for IPv6 Public
-	// Delegated Sub
+	// Ipv6AccessType: Output only. [Output Only] The internet access type for IPv6
+	// Public Delegated Sub
 	// Prefixes. Inherited from parent prefix.
 	//
 	// Possible values:
@@ -46699,11 +47612,12 @@ type PublicDelegatedPrefixPublicDelegatedSubPrefix struct {
 	Mode string `json:"mode,omitempty"`
 	// Name: The name of the sub public delegated prefix.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] The region of the sub public delegated prefix if it
-	// is
+	// Region: Output only. [Output Only] The region of the sub public delegated
+	// prefix if it is
 	// regional. If absent, the sub prefix is global.
 	Region string `json:"region,omitempty"`
-	// Status: [Output Only] The status of the sub public delegated prefix.
+	// Status: Output only. [Output Only] The status of the sub public delegated
+	// prefix.
 	//
 	// Possible values:
 	//   "ACTIVE"
@@ -47169,7 +48083,8 @@ func (s *QuotaExceededInfo) UnmarshalJSON(data []byte) error {
 
 // Reference: Represents a reference to a resource.
 type Reference struct {
-	// Kind: [Output Only] Type of the resource. Always compute#reference
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#reference
 	// for references.
 	Kind string `json:"kind,omitempty"`
 	// ReferenceType: A description of the reference type with no implied
@@ -47220,13 +48135,14 @@ type Region struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#region for
+	// Kind: Output only. [Output Only] Type of the resource. Always compute#region
+	// for
 	// regions.
 	Kind string `json:"kind,omitempty"`
 	// Name: [Output Only] Name of the resource.
 	Name string `json:"name,omitempty"`
-	// QuotaStatusWarning: [Output Only] Warning of fetching the `quotas` field for
-	// this region. This
+	// QuotaStatusWarning: Output only. [Output Only] Warning of fetching the
+	// `quotas` field for this region. This
 	// field is populated only if fetching of the `quotas` field fails.
 	QuotaStatusWarning *RegionQuotaStatusWarning `json:"quotaStatusWarning,omitempty"`
 	// Quotas: [Output Only] Quotas assigned to this region.
@@ -47239,7 +48155,7 @@ type Region struct {
 	//   "DOWN"
 	//   "UP"
 	Status string `json:"status,omitempty"`
-	// SupportsPzs: [Output Only] Reserved for future use.
+	// SupportsPzs: Output only. [Output Only] Reserved for future use.
 	SupportsPzs bool `json:"supportsPzs,omitempty"`
 	// Zones: [Output Only] A list of zones available in this region, in the form
 	// of
@@ -47266,8 +48182,8 @@ func (s Region) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// RegionQuotaStatusWarning: [Output Only] Warning of fetching the `quotas`
-// field for this region. This
+// RegionQuotaStatusWarning: Output only. [Output Only] Warning of fetching the
+// `quotas` field for this region. This
 // field is populated only if fetching of the `quotas` field fails.
 type RegionQuotaStatusWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
@@ -47449,7 +48365,7 @@ type RegionAutoscalerList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Autoscaler resources.
 	Items []*Autoscaler `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -47459,7 +48375,7 @@ type RegionAutoscalerList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RegionAutoscalerListWarning `json:"warning,omitempty"`
@@ -47628,8 +48544,8 @@ type RegionDiskTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of DiskType resources.
 	Items []*DiskType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#regionDiskTypeList for
-	// region disk types.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#regionDiskTypeList for region disk types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -47639,7 +48555,7 @@ type RegionDiskTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RegionDiskTypeListWarning `json:"warning,omitempty"`
@@ -47915,23 +48831,24 @@ func (s RegionDisksStartAsyncReplicationRequest) MarshalJSON() ([]byte, error) {
 
 // RegionInstanceGroupList: Contains a list of InstanceGroup resources.
 type RegionInstanceGroupList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroup resources.
 	Items []*InstanceGroup `json:"items,omitempty"`
-	// Kind: The resource type.
+	// Kind: Output only. The resource type.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *RegionInstanceGroupListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -47954,7 +48871,8 @@ func (s RegionInstanceGroupList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// RegionInstanceGroupListWarning: [Output Only] Informational warning message.
+// RegionInstanceGroupListWarning: Output only. [Output Only] Informational
+// warning message.
 type RegionInstanceGroupListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -48120,27 +49038,28 @@ func (s RegionInstanceGroupManagerDeleteInstanceConfigReq) MarshalJSON() ([]byte
 
 // RegionInstanceGroupManagerList: Contains a list of managed instance groups.
 type RegionInstanceGroupManagerList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceGroupManager resources.
 	Items []*InstanceGroupManager `json:"items,omitempty"`
-	// Kind: [Output Only] The resource type, which is
+	// Kind: Output only. [Output Only] The resource type, which is
 	// always
 	// compute#instanceGroupManagerList for a list of managed instance groups
 	// that
 	// exist in th regional scope.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *RegionInstanceGroupManagerListWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -48163,8 +49082,8 @@ func (s RegionInstanceGroupManagerList) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// RegionInstanceGroupManagerListWarning: [Output Only] Informational warning
-// message.
+// RegionInstanceGroupManagerListWarning: Output only. [Output Only]
+// Informational warning message.
 type RegionInstanceGroupManagerListWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -48522,8 +49441,8 @@ func (s RegionInstanceGroupManagersDeleteInstancesRequest) MarshalJSON() ([]byte
 type RegionInstanceGroupManagersListErrorsResponse struct {
 	// Items: [Output Only] The list of errors of the managed instance group.
 	Items []*InstanceManagedByIgmError `json:"items,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
@@ -48552,17 +49471,17 @@ func (s RegionInstanceGroupManagersListErrorsResponse) MarshalJSON() ([]byte, er
 }
 
 type RegionInstanceGroupManagersListInstanceConfigsResp struct {
-	// Items: [Output Only] The list of PerInstanceConfig.
+	// Items: Output only. [Output Only] The list of PerInstanceConfig.
 	Items []*PerInstanceConfig `json:"items,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *RegionInstanceGroupManagersListInstanceConfigsRespWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -48585,8 +49504,8 @@ func (s RegionInstanceGroupManagersListInstanceConfigsResp) MarshalJSON() ([]byt
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// RegionInstanceGroupManagersListInstanceConfigsRespWarning: [Output Only]
-// Informational warning message.
+// RegionInstanceGroupManagersListInstanceConfigsRespWarning: Output only.
+// [Output Only] Informational warning message.
 type RegionInstanceGroupManagersListInstanceConfigsRespWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -48728,8 +49647,8 @@ func (s RegionInstanceGroupManagersListInstanceConfigsRespWarningData) MarshalJS
 type RegionInstanceGroupManagersListInstancesResponse struct {
 	// ManagedInstances: A list of managed instances.
 	ManagedInstances []*ManagedInstance `json:"managedInstances,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
@@ -48933,23 +49852,24 @@ func (s RegionInstanceGroupManagersSuspendInstancesRequest) MarshalJSON() ([]byt
 }
 
 type RegionInstanceGroupsListInstances struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of InstanceWithNamedPorts resources.
 	Items []*InstanceWithNamedPorts `json:"items,omitempty"`
-	// Kind: The resource type.
+	// Kind: Output only. The resource type.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *RegionInstanceGroupsListInstancesWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -48972,8 +49892,8 @@ func (s RegionInstanceGroupsListInstances) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// RegionInstanceGroupsListInstancesWarning: [Output Only] Informational
-// warning message.
+// RegionInstanceGroupsListInstancesWarning: Output only. [Output Only]
+// Informational warning message.
 type RegionInstanceGroupsListInstancesWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -49184,7 +50104,8 @@ type RegionList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Region resources.
 	Items []*Region `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#regionList for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#regionList
+	// for
 	// lists of regions.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -49195,7 +50116,7 @@ type RegionList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RegionListWarning `json:"warning,omitempty"`
@@ -49402,8 +50323,8 @@ func (s RegionNetworkEndpointGroupsDetachEndpointsRequest) MarshalJSON() ([]byte
 }
 
 type RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponse struct {
-	// FirewallPolicys: [Output only] Effective firewalls from firewall policy. It
-	// applies to
+	// FirewallPolicys: Output only. [Output only] Effective firewalls from
+	// firewall policy. It applies to
 	// Regional Network Firewall Policies in the specified region, Global
 	// Network
 	// Firewall Policies and Hierachial Firewall Policies which are associated
@@ -49433,21 +50354,22 @@ func (s RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponse) MarshalJSON(
 }
 
 type RegionNetworkFirewallPoliciesGetEffectiveFirewallsResponseEffectiveFirewallPolicy struct {
-	// DisplayName: [Output Only] The display name of the firewall policy.
+	// DisplayName: Output only. [Output Only] The display name of the firewall
+	// policy.
 	DisplayName string `json:"displayName,omitempty"`
-	// Name: [Output Only] The name of the firewall policy.
+	// Name: Output only. [Output Only] The name of the firewall policy.
 	Name string `json:"name,omitempty"`
-	// PacketMirroringRules: [Output only] The packet mirroring rules that apply to
-	// the network.
+	// PacketMirroringRules: Output only. [Output only] The packet mirroring rules
+	// that apply to the network.
 	PacketMirroringRules []*FirewallPolicyRule `json:"packetMirroringRules,omitempty"`
-	// Priority: [Output only] Priority of firewall policy association. Not
-	// applicable for
+	// Priority: Output only. [Output only] Priority of firewall policy
+	// association. Not applicable for
 	// type=HIERARCHY.
 	Priority int64 `json:"priority,omitempty"`
-	// Rules: [Output only] The rules that apply to the network.
+	// Rules: Output only. [Output only] The rules that apply to the network.
 	Rules []*FirewallPolicyRule `json:"rules,omitempty"`
-	// Type: [Output Only] The type of the firewall policy. Can be one of
-	// HIERARCHY,
+	// Type: Output only. [Output Only] The type of the firewall policy. Can be one
+	// of HIERARCHY,
 	// NETWORK, NETWORK_REGIONAL, SYSTEM_GLOBAL, SYSTEM_REGIONAL.
 	//
 	// Possible values:
@@ -49653,11 +50575,12 @@ type Reservation struct {
 	// AggregateReservation: Reservation for aggregated resources, providing shape
 	// flexibility.
 	AggregateReservation *AllocationAggregateReservation `json:"aggregateReservation,omitempty"`
-	// Commitment: [Output Only] Full or partial URL to a parent commitment. This
-	// field
+	// Commitment: Output only. [Output Only] Full or partial URL to a parent
+	// commitment. This field
 	// displays for reservations that are tied to a commitment.
 	Commitment string `json:"commitment,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// DeleteAfterDuration: Duration time relative to reservation creation when
@@ -49683,15 +50606,15 @@ type Reservation struct {
 	// maintenance for your VMs;
 	// for example, to fix hardware errors.
 	EnableEmergentMaintenance bool `json:"enableEmergentMaintenance,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#reservations for
-	// reservations.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#reservations for reservations.
 	Kind string `json:"kind,omitempty"`
-	// LinkedCommitments: [Output Only] Full or partial URL to parent commitments.
-	// This field
+	// LinkedCommitments: Output only. [Output Only] Full or partial URL to parent
+	// commitments. This field
 	// displays for reservations that are tied to multiple commitments.
 	LinkedCommitments []string `json:"linkedCommitments,omitempty"`
 	// Name: The name of the resource, provided by the client when initially
@@ -49740,9 +50663,10 @@ type Reservation struct {
 	// placement
 	// policy with reservation.
 	ResourcePolicies map[string]string `json:"resourcePolicies,omitempty"`
-	// ResourceStatus: [Output Only] Status information for Reservation resource.
+	// ResourceStatus: Output only. [Output Only] Status information for
+	// Reservation resource.
 	ResourceStatus *AllocationResourceStatus `json:"resourceStatus,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
 	// SchedulingType: The type of maintenance for the reservation.
 	//
@@ -49754,8 +50678,8 @@ type Reservation struct {
 	// Instead, each
 	// instance has its own maintenance window.
 	SchedulingType string `json:"schedulingType,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ShareSettings: Specify share-settings to create a shared reservation. This
 	// property is
@@ -49770,7 +50694,7 @@ type Reservation struct {
 	// for "any" reservation. If the field is set, then only VMs that target
 	// the reservation by name can consume from this reservation.
 	SpecificReservationRequired bool `json:"specificReservationRequired,omitempty"`
-	// Status: [Output Only] The status of the reservation.
+	// Status: Output only. [Output Only] The status of the reservation.
 	//
 	//
 	//      - CREATING: Reservation resources are being
@@ -49902,7 +50826,7 @@ type ReservationAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Allocation resources.
 	Items map[string]ReservationsScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -49912,9 +50836,9 @@ type ReservationAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ReservationAggregatedListWarning `json:"warning,omitempty"`
@@ -50081,54 +51005,60 @@ func (s ReservationAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 
 // ReservationBlock: Represents a reservation block resource.
 type ReservationBlock struct {
-	// Count: [Output Only] The number of resources that are allocated in
-	// this
+	// Count: Output only. [Output Only] The number of resources that are allocated
+	// in this
 	// reservation block.
 	Count int64 `json:"count,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339 text format.
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp inRFC3339
+	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// HealthInfo: [Output Only] Health information for the reservation block.
+	// HealthInfo: Output only. [Output Only] Health information for the
+	// reservation block.
 	HealthInfo *ReservationBlockHealthInfo `json:"healthInfo,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// InUseCount: [Output Only] The number of instances that are currently in use
-	// on this
+	// InUseCount: Output only. [Output Only] The number of instances that are
+	// currently in use on this
 	// reservation block.
 	InUseCount int64 `json:"inUseCount,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#reservationBlock for
-	// reservation blocks.
+	// InUseHostCount: Output only. Number of hosts currently in use. If there is
+	// one or more Instances running
+	// on the host, it is considered in use.
+	InUseHostCount int64 `json:"inUseHostCount,omitempty"`
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#reservationBlock for reservation blocks.
 	Kind string `json:"kind,omitempty"`
-	// Name: [Output Only] The name of this reservation block generated by
-	// Google
+	// Name: Output only. [Output Only] The name of this reservation block
+	// generated by Google
 	// Compute Engine. The name must be 1-63 characters long, and comply
 	// with
 	// RFC1035 @pattern a-z (?:[-a-z0-9]{0,61}[a-z0-9])?
 	Name string `json:"name,omitempty"`
-	// PhysicalTopology: [Output Only] The physical topology of the reservation
-	// block.
-	PhysicalTopology *ReservationBlockPhysicalTopology `json:"physicalTopology,omitempty"`
-	// ReservationMaintenance: [Output Only] Maintenance information for this
+	// PhysicalTopology: Output only. [Output Only] The physical topology of the
 	// reservation block.
+	PhysicalTopology *ReservationBlockPhysicalTopology `json:"physicalTopology,omitempty"`
+	// ReservationMaintenance: Output only. [Output Only] Maintenance information
+	// for this reservation block.
 	ReservationMaintenance *GroupMaintenanceInfo `json:"reservationMaintenance,omitempty"`
-	// ReservationSubBlockCount: [Output Only] The number of reservation subBlocks
-	// associated with this
+	// ReservationSubBlockCount: Output only. [Output Only] The number of
+	// reservation subBlocks associated with this
 	// reservation block.
 	ReservationSubBlockCount int64 `json:"reservationSubBlockCount,omitempty"`
-	// ReservationSubBlockInUseCount: [Output Only] The number of in-use
-	// reservation subBlocks associated with
+	// ReservationSubBlockInUseCount: Output only. [Output Only] The number of
+	// in-use reservation subBlocks associated with
 	// this reservation block. If at least one VM is running on a subBlock, it
 	// is
 	// considered in-use.
 	ReservationSubBlockInUseCount int64 `json:"reservationSubBlockInUseCount,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
-	// Status: [Output Only] Status of the reservation block.
+	// Status: Output only. [Output Only] Status of the reservation block.
 	//
 	// Possible values:
 	//   "CREATING" - Resources are being allocated for the reservation block.
@@ -50136,7 +51066,8 @@ type ReservationBlock struct {
 	//   "INVALID"
 	//   "READY" - Reservation block has allocated all its resources.
 	Status string `json:"status,omitempty"`
-	// Zone: [Output Only] Zone in which the reservation block resides.
+	// Zone: Output only. [Output Only] Zone in which the reservation block
+	// resides.
 	Zone string `json:"zone,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Count") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -50193,7 +51124,7 @@ type ReservationBlockPhysicalTopology struct {
 	Block string `json:"block,omitempty"`
 	// Cluster: The cluster name of the reservation block.
 	Cluster string `json:"cluster,omitempty"`
-	// Instances: The detailed instances information for a given Block
+	// Instances: Output only. The detailed instances information for a given Block
 	Instances []*ReservationBlockPhysicalTopologyInstance `json:"instances,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Block") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -50218,8 +51149,8 @@ func (s ReservationBlockPhysicalTopology) MarshalJSON() ([]byte, error) {
 type ReservationBlockPhysicalTopologyInstance struct {
 	// InstanceId: The InstanceId of the instance
 	InstanceId uint64 `json:"instanceId,omitempty,string"`
-	// PhysicalHostTopology: The PhysicalHostTopology of instances within a Block
-	// resource.
+	// PhysicalHostTopology: Output only. The PhysicalHostTopology of instances
+	// within a Block resource.
 	PhysicalHostTopology *ReservationBlockPhysicalTopologyInstancePhysicalHostTopology `json:"physicalHostTopology,omitempty"`
 	// ProjectId: Project where the instance lives
 	ProjectId uint64 `json:"projectId,omitempty,string"`
@@ -50478,7 +51409,8 @@ type ReservationList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A list of Allocation resources.
 	Items []*Reservation `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Always compute#reservationsList
+	// Kind: Output only. [Output Only] Type of resource.Always
+	// compute#reservationsList
 	// for listsof reservations
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -50489,7 +51421,7 @@ type ReservationList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ReservationListWarning `json:"warning,omitempty"`
@@ -50655,47 +51587,53 @@ func (s ReservationListWarningData) MarshalJSON() ([]byte, error) {
 
 // ReservationSubBlock: Represents a reservation subBlock resource.
 type ReservationSubBlock struct {
-	// AcceleratorTopologiesInfo: [Output Only] Slice info for the reservation
-	// subBlock.
+	// AcceleratorTopologiesInfo: Output only. [Output Only] Slice info for the
+	// reservation subBlock.
 	AcceleratorTopologiesInfo *AcceleratorTopologiesInfo `json:"acceleratorTopologiesInfo,omitempty"`
-	// Count: [Output Only] The number of hosts that are allocated in
+	// Count: Output only. [Output Only] The number of hosts that are allocated in
 	// this
 	// reservation subBlock.
 	Count int64 `json:"count,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339 text format.
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp inRFC3339
+	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// HealthInfo: [Output Only] Health information for the reservation subBlock.
+	// HealthInfo: Output only. [Output Only] Health information for the
+	// reservation subBlock.
 	HealthInfo *ReservationSubBlockHealthInfo `json:"healthInfo,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// InUseCount: [Output Only] The number of instances that are currently in use
-	// on this
+	// InUseCount: Output only. [Output Only] The number of instances that are
+	// currently in use on this
 	// reservation subBlock.
 	InUseCount int64 `json:"inUseCount,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#reservationSubBlock
-	// for reservation subBlocks.
+	// InUseHostCount: Output only. Number of hosts currently in use. If there is
+	// one or more Instances running
+	// on the host, it is considered in use.
+	InUseHostCount int64 `json:"inUseHostCount,omitempty"`
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#reservationSubBlock for reservation subBlocks.
 	Kind string `json:"kind,omitempty"`
-	// Name: [Output Only] The name of this reservation subBlock generated by
-	// Google
+	// Name: Output only. [Output Only] The name of this reservation subBlock
+	// generated by Google
 	// Compute Engine. The name must be 1-63 characters long, and comply
 	// with
 	// RFC1035 @pattern a-z (?:[-a-z0-9]{0,61}[a-z0-9])?
 	Name string `json:"name,omitempty"`
-	// PhysicalTopology: [Output Only] The physical topology of the reservation
-	// subBlock.
+	// PhysicalTopology: Output only. [Output Only] The physical topology of the
+	// reservation subBlock.
 	PhysicalTopology *ReservationSubBlockPhysicalTopology `json:"physicalTopology,omitempty"`
-	// ReservationSubBlockMaintenance: Maintenance information for this reservation
-	// subBlock.
+	// ReservationSubBlockMaintenance: Output only. Maintenance information for
+	// this reservation subBlock.
 	ReservationSubBlockMaintenance *GroupMaintenanceInfo `json:"reservationSubBlockMaintenance,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
-	// Status: [Output Only] Status of the reservation subBlock.
+	// Status: Output only. [Output Only] Status of the reservation subBlock.
 	//
 	// Possible values:
 	//   "CREATING" - Resources are being allocated for the reservation subBlock.
@@ -50703,7 +51641,8 @@ type ReservationSubBlock struct {
 	//   "INVALID"
 	//   "READY" - Reservation subBlock has allocated all its resources.
 	Status string `json:"status,omitempty"`
-	// Zone: [Output Only] Zone in which the reservation subBlock resides.
+	// Zone: Output only. [Output Only] Zone in which the reservation subBlock
+	// resides.
 	Zone string `json:"zone,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "AcceleratorTopologiesInfo")
 	// to unconditionally include in API requests. By default, fields with empty or
@@ -51572,7 +52511,8 @@ func (s ResourcePoliciesScopedListWarningData) MarshalJSON() ([]byte, error) {
 // use them toschedule persistent disk
 // snapshots.
 type ResourcePolicy struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	Description       string `json:"description,omitempty"`
@@ -51581,14 +52521,14 @@ type ResourcePolicy struct {
 	// GroupPlacementPolicy: Resource policy for instances for placement
 	// configuration.
 	GroupPlacementPolicy *ResourcePolicyGroupPlacementPolicy `json:"groupPlacementPolicy,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// InstanceSchedulePolicy: Resource policy for scheduling instance operations.
 	InstanceSchedulePolicy *ResourcePolicyInstanceSchedulePolicy `json:"instanceSchedulePolicy,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#resource_policies
-	// for resource policies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#resource_policies for resource policies.
 	Kind string `json:"kind,omitempty"`
 	// Name: The name of the resource, provided by the client when initially
 	// creating
@@ -51604,15 +52544,16 @@ type ResourcePolicy struct {
 	// be a dash.
 	Name   string `json:"name,omitempty"`
 	Region string `json:"region,omitempty"`
-	// ResourceStatus: [Output Only] The system status of the resource policy.
+	// ResourceStatus: Output only. [Output Only] The system status of the resource
+	// policy.
 	ResourceStatus *ResourcePolicyResourceStatus `json:"resourceStatus,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SnapshotSchedulePolicy: Resource policy for persistent disks for creating
 	// snapshots.
 	SnapshotSchedulePolicy *ResourcePolicySnapshotSchedulePolicy `json:"snapshotSchedulePolicy,omitempty"`
-	// Status: [Output Only] The status of resource policy creation.
+	// Status: Output only. [Output Only] The status of resource policy creation.
 	//
 	// Possible values:
 	//   "CREATING" - Resource policy is being created.
@@ -51651,7 +52592,7 @@ type ResourcePolicyAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ResourcePolicy resources.
 	Items map[string]ResourcePoliciesScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -51661,9 +52602,9 @@ type ResourcePolicyAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ResourcePolicyAggregatedListWarning `json:"warning,omitempty"`
@@ -51834,8 +52775,8 @@ type ResourcePolicyDailyCycle struct {
 	// determines
 	// how many days pass between the start of each cycle.
 	DaysInCycle int64 `json:"daysInCycle,omitempty"`
-	// Duration: [Output only] A predetermined duration for the window,
-	// automatically
+	// Duration: Output only. [Output only] A predetermined duration for the
+	// window, automatically
 	// chosen to be the smallest possible in the given scenario.
 	Duration string `json:"duration,omitempty"`
 	// StartTime: Start time of the window. This must be in UTC format that
@@ -51910,8 +52851,8 @@ func (s ResourcePolicyGroupPlacementPolicy) MarshalJSON() ([]byte, error) {
 
 // ResourcePolicyHourlyCycle: Time window specified for hourly operations.
 type ResourcePolicyHourlyCycle struct {
-	// Duration: [Output only] Duration of the time window, automatically chosen to
-	// be
+	// Duration: Output only. [Output only] Duration of the time window,
+	// automatically chosen to be
 	// smallest possible in the given scenario.
 	Duration string `json:"duration,omitempty"`
 	// HoursInCycle: Defines a schedule with units measured in hours. The value
@@ -52009,8 +52950,8 @@ type ResourcePolicyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A list of ResourcePolicy resources.
 	Items []*ResourcePolicy `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.Alwayscompute#resourcePoliciesList for
-	// listsof resourcePolicies
+	// Kind: Output only. [Output Only] Type of
+	// resource.Alwayscompute#resourcePoliciesList for listsof resourcePolicies
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -52020,7 +52961,7 @@ type ResourcePolicyList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ResourcePolicyListWarning `json:"warning,omitempty"`
@@ -52189,8 +53130,8 @@ func (s ResourcePolicyListWarningData) MarshalJSON() ([]byte, error) {
 // The internal structure of this "status" field should mimic the structure
 // of ResourcePolicy proto specification.
 type ResourcePolicyResourceStatus struct {
-	// InstanceSchedulePolicy: [Output Only] Specifies a set of output values
-	// reffering to
+	// InstanceSchedulePolicy: Output only. [Output Only] Specifies a set of output
+	// values reffering to
 	// the instance_schedule_policy system status.
 	// This field should have the same name as corresponding policy field.
 	InstanceSchedulePolicy *ResourcePolicyResourceStatusInstanceSchedulePolicyStatus `json:"instanceSchedulePolicy,omitempty"`
@@ -52213,12 +53154,12 @@ func (s ResourcePolicyResourceStatus) MarshalJSON() ([]byte, error) {
 }
 
 type ResourcePolicyResourceStatusInstanceSchedulePolicyStatus struct {
-	// LastRunStartTime: [Output Only] The last time the schedule successfully
-	// ran.
+	// LastRunStartTime: Output only. [Output Only] The last time the schedule
+	// successfully ran.
 	// The timestamp is an RFC3339 string.
 	LastRunStartTime string `json:"lastRunStartTime,omitempty"`
-	// NextRunStartTime: [Output Only] The next time the schedule is planned to
-	// run.
+	// NextRunStartTime: Output only. [Output Only] The next time the schedule is
+	// planned to run.
 	// The actual time might be slightly different.
 	// The timestamp is an RFC3339 string.
 	NextRunStartTime string `json:"nextRunStartTime,omitempty"`
@@ -52403,8 +53344,8 @@ type ResourcePolicyWeeklyCycleDayOfWeek struct {
 	//   "TUESDAY"
 	//   "WEDNESDAY"
 	Day string `json:"day,omitempty"`
-	// Duration: [Output only] Duration of the time window, automatically chosen to
-	// be
+	// Duration: Output only. [Output only] Duration of the time window,
+	// automatically chosen to be
 	// smallest possible in the given scenario.
 	Duration string `json:"duration,omitempty"`
 	// StartTime: Time within the window to start the operations.
@@ -52473,25 +53414,25 @@ func (s ResourcePolicyWorkloadPolicy) MarshalJSON() ([]byte, error) {
 // compared
 // to the value requested by the user (intent) in their instance CRUD calls.
 type ResourceStatus struct {
-	// EffectiveInstanceMetadata: [Output Only] Effective metadata is a field that
-	// consolidates project,
+	// EffectiveInstanceMetadata: Output only. [Output Only] Effective metadata is
+	// a field that consolidates project,
 	// zonal instance settings, and instance-level predefined metadata keys
 	// to
 	// provide the overridden value for those metadata keys at the instance level.
 	EffectiveInstanceMetadata *ResourceStatusEffectiveInstanceMetadata `json:"effectiveInstanceMetadata,omitempty"`
-	// PhysicalHost: [Output Only] The precise location of your instance within the
-	// zone's data
+	// PhysicalHost: Output only. [Output Only] The precise location of your
+	// instance within the zone's data
 	// center, including the block, sub-block, and host. The field is formatted
 	// as
 	// follows: blockId/subBlockId/hostId.
 	PhysicalHost string `json:"physicalHost,omitempty"`
-	// PhysicalHostTopology: [Output Only] A series of fields containing the global
-	// name of the Compute
+	// PhysicalHostTopology: Output only. [Output Only] A series of fields
+	// containing the global name of the Compute
 	// Engine cluster, as well as the ID of the block, sub-block, and host on
 	// which the running instance is located.
 	PhysicalHostTopology *ResourceStatusPhysicalHostTopology `json:"physicalHostTopology,omitempty"`
-	// ReservationConsumptionInfo: [Output Only] Reservation information that the
-	// instance is consuming from.
+	// ReservationConsumptionInfo: Output only. [Output Only] Reservation
+	// information that the instance is consuming from.
 	ReservationConsumptionInfo *ResourceStatusReservationConsumptionInfo `json:"reservationConsumptionInfo,omitempty"`
 	Scheduling                 *ResourceStatusScheduling                 `json:"scheduling,omitempty"`
 	UpcomingMaintenance        *UpcomingMaintenance                      `json:"upcomingMaintenance,omitempty"`
@@ -52603,8 +53544,8 @@ func (s ResourceStatusPhysicalHostTopology) MarshalJSON() ([]byte, error) {
 // ResourceStatusReservationConsumptionInfo: Reservation consumption
 // information that the instance is consuming from.
 type ResourceStatusReservationConsumptionInfo struct {
-	// ConsumedReservation: [Output Only] The full resource name of the reservation
-	// that this
+	// ConsumedReservation: Output only. [Output Only] The full resource name of
+	// the reservation that this
 	// instance is consuming from.
 	ConsumedReservation string `json:"consumedReservation,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ConsumedReservation") to
@@ -52656,9 +53597,10 @@ func (s ResourceStatusScheduling) MarshalJSON() ([]byte, error) {
 // destination. This destination can be inside or outside the VPC network.
 // For more information, read theRoutes overview.
 type Route struct {
-	// AsPaths: [Output Only] AS path.
+	// AsPaths: Output only. [Output Only] AS path.
 	AsPaths []*RouteAsPath `json:"asPaths,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this field
@@ -52674,11 +53616,12 @@ type Route struct {
 	// 5952
 	// compressed format.
 	DestRange string `json:"destRange,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of this resource. Always compute#routes for
+	// Kind: Output only. [Output Only] Type of this resource. Always
+	// compute#routes for
 	// Route resources.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -52701,8 +53644,8 @@ type Route struct {
 	// You can only specify the internet gateway using a full or
 	// partial valid URL: projects/project/global/gateways/default-internet-gateway
 	NextHopGateway string `json:"nextHopGateway,omitempty"`
-	// NextHopHub: [Output Only] The full resource name of the Network Connectivity
-	// Center hub
+	// NextHopHub: Output only. [Output Only] The full resource name of the Network
+	// Connectivity Center hub
 	// that will handle matching packets.
 	NextHopHub string `json:"nextHopHub,omitempty"`
 	// NextHopIlb: The URL to a forwarding rule of typeloadBalancingScheme=INTERNAL
@@ -52740,12 +53683,20 @@ type Route struct {
 	//
 	// https://www.googleapis.com/compute/v1/projects/project/zones/zone/instances/
 	NextHopInstance string `json:"nextHopInstance,omitempty"`
-	// NextHopInterRegionCost: [Output only] Internal fixed region-to-region cost
-	// that Google Cloud
+	// NextHopInterRegionCost: Output only. [Output only] Internal fixed
+	// region-to-region cost that Google Cloud
 	// calculates based on factors such as network performance, distance,
 	// and
 	// available bandwidth between regions.
 	NextHopInterRegionCost int64 `json:"nextHopInterRegionCost,omitempty"`
+	// NextHopInterconnectAttachment: Output only. [Output Only] The URL to an
+	// InterconnectAttachment which is the next hop
+	// for the route.
+	// This field will only be populated for dynamic routes generated by
+	// Cloud Router with a linked interconnectAttachment or the static
+	// route
+	// generated by each L2 Interconnect Attachment.
+	NextHopInterconnectAttachment string `json:"nextHopInterconnectAttachment,omitempty"`
 	// NextHopIp: The network IP address of an instance that should handle matching
 	// packets.
 	// Both IPv6 address and IPv4 addresses are supported.
@@ -52758,15 +53709,15 @@ type Route struct {
 	// an
 	// IPv4-mapped IPv6 address.
 	NextHopIp string `json:"nextHopIp,omitempty"`
-	// NextHopMed: [Output Only] Multi-Exit Discriminator, a BGP route metric that
-	// indicates
+	// NextHopMed: Output only. [Output Only] Multi-Exit Discriminator, a BGP route
+	// metric that indicates
 	// the desirability of a particular route in a network.
 	NextHopMed int64 `json:"nextHopMed,omitempty"`
 	// NextHopNetwork: The URL of the local network if it should handle matching
 	// packets.
 	NextHopNetwork string `json:"nextHopNetwork,omitempty"`
-	// NextHopOrigin: [Output Only] Indicates the origin of the route. Can be
-	// IGP
+	// NextHopOrigin: Output only. [Output Only] Indicates the origin of the route.
+	// Can be IGP
 	// (Interior Gateway Protocol), EGP (Exterior Gateway Protocol),
 	// or INCOMPLETE.
 	//
@@ -52775,8 +53726,8 @@ type Route struct {
 	//   "IGP"
 	//   "INCOMPLETE"
 	NextHopOrigin string `json:"nextHopOrigin,omitempty"`
-	// NextHopPeering: [Output Only] The network peering name that should handle
-	// matching packets,
+	// NextHopPeering: Output only. [Output Only] The network peering name that
+	// should handle matching packets,
 	// which should conform to RFC1035.
 	NextHopPeering string `json:"nextHopPeering,omitempty"`
 	// NextHopVpnTunnel: The URL to a VpnTunnel that should handle matching
@@ -52795,10 +53746,11 @@ type Route struct {
 	// The
 	// priority value must be from `0` to `65535`, inclusive.
 	Priority int64 `json:"priority,omitempty"`
-	// RouteStatus: [Output only] The status of the route. This status only applies
+	// RouteStatus: [Output only] The status of the route. This status applies
 	// to
-	// dynamic routes learned by Cloud Routers. This status is not applicable
-	// to static routes.
+	// dynamic routes learned by Cloud Routers. It is also applicable to
+	// routes
+	// undergoing migration.
 	//
 	// Possible values:
 	//   "ACTIVE" - This route is processed and active.
@@ -52813,8 +53765,8 @@ type Route struct {
 	// change once
 	// processed.
 	RouteStatus string `json:"routeStatus,omitempty"`
-	// RouteType: [Output Only] The type of this route, which can be one of the
-	// following
+	// RouteType: Output only. [Output Only] The type of this route, which can be
+	// one of the following
 	// values:
 	// - 'TRANSIT' for a transit route that this router learned from
 	// another Cloud Router and will readvertise to one of its BGP peers
@@ -52833,8 +53785,8 @@ type Route struct {
 	SelfLink string `json:"selfLink,omitempty"`
 	// Tags: A list of instance tags to which this route applies.
 	Tags []string `json:"tags,omitempty"`
-	// Warnings: [Output Only] If potential misconfigurations are detected for
-	// this
+	// Warnings: Output only. [Output Only] If potential misconfigurations are
+	// detected for this
 	// route, this field will be populated with warning messages.
 	Warnings []*RouteWarnings `json:"warnings,omitempty"`
 
@@ -53044,7 +53996,7 @@ type RouteList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Route resources.
 	Items []*Route `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -53054,7 +54006,7 @@ type RouteList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RouteListWarning `json:"warning,omitempty"`
@@ -53343,7 +54295,8 @@ type Router struct {
 	// either the interface name, IP address, or peer IP address. Please refer
 	// toRFC4273.
 	BgpPeers []*RouterBgpPeer `json:"bgpPeers,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -53371,7 +54324,8 @@ type Router struct {
 	// specified.
 	// However, you cannot create a BGP peer that uses that interface.
 	Interfaces []*RouterInterface `json:"interfaces,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#router for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#router
+	// for
 	// routers.
 	Kind string `json:"kind,omitempty"`
 	// Md5AuthenticationKeys: Keys used for MD5 authentication.
@@ -53453,7 +54407,7 @@ type RouterAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Router resources.
 	Items map[string]RoutersScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -53463,9 +54417,9 @@ type RouterAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RouterAggregatedListWarning `json:"warning,omitempty"`
@@ -53802,8 +54756,8 @@ type RouterBgpPeer struct {
 	// Ipv6NexthopAddress: IPv6 address of the interface inside Google Cloud
 	// Platform.
 	Ipv6NexthopAddress string `json:"ipv6NexthopAddress,omitempty"`
-	// ManagementType: [Output Only] The resource that configures and manages this
-	// BGP peer.
+	// ManagementType: Output only. [Output Only] The resource that configures and
+	// manages this BGP peer.
 	//
 	//    -  MANAGED_BY_USER is the default value and can be managed by you
 	//    or other users
@@ -54004,8 +54958,8 @@ type RouterInterface struct {
 	// router. Each interface can have one linked resource, which can be
 	// a VPN tunnel, an Interconnect attachment, or a subnetwork.
 	LinkedVpnTunnel string `json:"linkedVpnTunnel,omitempty"`
-	// ManagementType: [Output Only] The resource that configures and manages this
-	// interface.
+	// ManagementType: Output only. [Output Only] The resource that configures and
+	// manages this interface.
 	//
 	//    - MANAGED_BY_USER is the default value and can be managed directly
 	//    by users.
@@ -54095,7 +55049,8 @@ type RouterList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Router resources.
 	Items []*Router `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#router for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#router
+	// for
 	// routers.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -54106,7 +55061,7 @@ type RouterList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RouterListWarning `json:"warning,omitempty"`
@@ -54806,45 +55761,50 @@ type RouterStatusBgpPeerStatus struct {
 	// AdvertisedRoutes: Routes that were advertised to the remote BGP peer
 	AdvertisedRoutes []*Route   `json:"advertisedRoutes,omitempty"`
 	BfdStatus        *BfdStatus `json:"bfdStatus,omitempty"`
-	// EnableIpv4: Enable IPv4 traffic over BGP Peer.
+	// EnableIpv4: Output only. Enable IPv4 traffic over BGP Peer.
 	// It is enabled by default if the peerIpAddress is version 4.
 	EnableIpv4 bool `json:"enableIpv4,omitempty"`
-	// EnableIpv6: Enable IPv6 traffic over BGP Peer.
+	// EnableIpv6: Output only. Enable IPv6 traffic over BGP Peer.
 	// It is enabled by default if the peerIpAddress is version 6.
 	EnableIpv6 bool `json:"enableIpv6,omitempty"`
-	// IpAddress: IP address of the local BGP interface.
+	// IpAddress: Output only. IP address of the local BGP interface.
 	IpAddress string `json:"ipAddress,omitempty"`
-	// Ipv4NexthopAddress: IPv4 address of the local BGP interface.
+	// Ipv4NexthopAddress: Output only. IPv4 address of the local BGP interface.
 	Ipv4NexthopAddress string `json:"ipv4NexthopAddress,omitempty"`
-	// Ipv6NexthopAddress: IPv6 address of the local BGP interface.
+	// Ipv6NexthopAddress: Output only. IPv6 address of the local BGP interface.
 	Ipv6NexthopAddress string `json:"ipv6NexthopAddress,omitempty"`
-	// LinkedVpnTunnel: URL of the VPN tunnel that this BGP peer controls.
+	// LinkedVpnTunnel: Output only. URL of the VPN tunnel that this BGP peer
+	// controls.
 	LinkedVpnTunnel string `json:"linkedVpnTunnel,omitempty"`
 	// Md5AuthEnabled: Informs whether MD5 authentication is enabled on this BGP
 	// peer.
 	Md5AuthEnabled bool `json:"md5AuthEnabled,omitempty"`
-	// Name: Name of this BGP peer. Unique within the Routers resource.
+	// Name: Output only. Name of this BGP peer. Unique within the Routers
+	// resource.
 	Name string `json:"name,omitempty"`
-	// NumLearnedRoutes: Number of routes learned from the remote BGP Peer.
+	// NumLearnedRoutes: Output only. Number of routes learned from the remote BGP
+	// Peer.
 	NumLearnedRoutes int64 `json:"numLearnedRoutes,omitempty"`
-	// PeerIpAddress: IP address of the remote BGP interface.
+	// PeerIpAddress: Output only. IP address of the remote BGP interface.
 	PeerIpAddress string `json:"peerIpAddress,omitempty"`
-	// PeerIpv4NexthopAddress: IPv4 address of the remote BGP interface.
+	// PeerIpv4NexthopAddress: Output only. IPv4 address of the remote BGP
+	// interface.
 	PeerIpv4NexthopAddress string `json:"peerIpv4NexthopAddress,omitempty"`
-	// PeerIpv6NexthopAddress: IPv6 address of the remote BGP interface.
+	// PeerIpv6NexthopAddress: Output only. IPv6 address of the remote BGP
+	// interface.
 	PeerIpv6NexthopAddress string `json:"peerIpv6NexthopAddress,omitempty"`
-	// RouterApplianceInstance: [Output only] URI of the VM instance that is used
-	// as third-party router
+	// RouterApplianceInstance: Output only. [Output only] URI of the VM instance
+	// that is used as third-party router
 	// appliances such as Next Gen Firewalls, Virtual Routers, or
 	// Router
 	// Appliances.
 	// The VM instance is the peer side of the BGP session.
 	RouterApplianceInstance string `json:"routerApplianceInstance,omitempty"`
-	// State: The state of the BGP session. For a list of possible values for
-	// this
+	// State: Output only. The state of the BGP session. For a list of possible
+	// values for this
 	// field, seeBGP session states.
 	State string `json:"state,omitempty"`
-	// Status: Status of the BGP peer: {UP, DOWN}
+	// Status: Output only. Status of the BGP peer: {UP, DOWN}
 	//
 	// Possible values:
 	//   "DOWN"
@@ -54866,11 +55826,12 @@ type RouterStatusBgpPeerStatus struct {
 	// and status is DOWN.
 	//   "STATUS_REASON_UNSPECIFIED"
 	StatusReason string `json:"statusReason,omitempty"`
-	// Uptime: Time this session has been up.
+	// Uptime: Output only. Time this session has been up.
 	// Format:
 	//  14 years, 51 weeks, 6 days, 23 hours, 59 minutes, 59 seconds
 	Uptime string `json:"uptime,omitempty"`
-	// UptimeSeconds: Time this session has been up, in seconds.
+	// UptimeSeconds: Output only. Time this session has been up, in
+	// seconds.
 	// Format:
 	//  145
 	UptimeSeconds string `json:"uptimeSeconds,omitempty"`
@@ -54894,35 +55855,35 @@ func (s RouterStatusBgpPeerStatus) MarshalJSON() ([]byte, error) {
 
 // RouterStatusNatStatus: Status of a NAT contained in this router.
 type RouterStatusNatStatus struct {
-	// AutoAllocatedNatIps: A list of IPs auto-allocated for NAT. Example:
-	// ["1.1.1.1", "129.2.16.89"]
+	// AutoAllocatedNatIps: Output only. A list of IPs auto-allocated for NAT.
+	// Example: ["1.1.1.1", "129.2.16.89"]
 	AutoAllocatedNatIps []string `json:"autoAllocatedNatIps,omitempty"`
-	// DrainAutoAllocatedNatIps: A list of IPs auto-allocated for NAT that are in
-	// drain mode.
+	// DrainAutoAllocatedNatIps: Output only. A list of IPs auto-allocated for NAT
+	// that are in drain mode.
 	// Example: ["1.1.1.1", "179.12.26.133"].
 	DrainAutoAllocatedNatIps []string `json:"drainAutoAllocatedNatIps,omitempty"`
-	// DrainUserAllocatedNatIps: A list of IPs user-allocated for NAT that are in
-	// drain mode.
+	// DrainUserAllocatedNatIps: Output only. A list of IPs user-allocated for NAT
+	// that are in drain mode.
 	// Example: ["1.1.1.1", "179.12.26.133"].
 	DrainUserAllocatedNatIps []string `json:"drainUserAllocatedNatIps,omitempty"`
-	// MinExtraNatIpsNeeded: The number of extra IPs to allocate. This will be
-	// greater than 0 only if
+	// MinExtraNatIpsNeeded: Output only. The number of extra IPs to allocate. This
+	// will be greater than 0 only if
 	// user-specified IPs are NOT enough to allow all configured VMs to use
 	// NAT.
 	// This value is meaningful only when auto-allocation of NAT IPs is *not*
 	// used.
 	MinExtraNatIpsNeeded int64 `json:"minExtraNatIpsNeeded,omitempty"`
-	// Name: Unique name of this NAT.
+	// Name: Output only. Unique name of this NAT.
 	Name string `json:"name,omitempty"`
-	// NumVmEndpointsWithNatMappings: Number of VM endpoints (i.e., Nics) that can
-	// use NAT.
+	// NumVmEndpointsWithNatMappings: Output only. Number of VM endpoints (i.e.,
+	// Nics) that can use NAT.
 	NumVmEndpointsWithNatMappings int64 `json:"numVmEndpointsWithNatMappings,omitempty"`
 	// RuleStatus: Status of rules in this NAT.
 	RuleStatus []*RouterStatusNatStatusNatRuleStatus `json:"ruleStatus,omitempty"`
-	// UserAllocatedNatIpResources: A list of fully qualified URLs of reserved IP
-	// address resources.
+	// UserAllocatedNatIpResources: Output only. A list of fully qualified URLs of
+	// reserved IP address resources.
 	UserAllocatedNatIpResources []string `json:"userAllocatedNatIpResources,omitempty"`
-	// UserAllocatedNatIps: A list of IPs user-allocated for NAT.
+	// UserAllocatedNatIps: Output only. A list of IPs user-allocated for NAT.
 	// They will be raw IP strings like "179.12.26.133".
 	UserAllocatedNatIps []string `json:"userAllocatedNatIps,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "AutoAllocatedNatIps") to
@@ -54946,22 +55907,23 @@ func (s RouterStatusNatStatus) MarshalJSON() ([]byte, error) {
 // RouterStatusNatStatusNatRuleStatus: Status of a NAT Rule contained in this
 // NAT.
 type RouterStatusNatStatusNatRuleStatus struct {
-	// ActiveNatIps: A list of active IPs for NAT.
+	// ActiveNatIps: Output only. A list of active IPs for NAT.
 	// Example: ["1.1.1.1", "179.12.26.133"].
 	ActiveNatIps []string `json:"activeNatIps,omitempty"`
-	// DrainNatIps: A list of IPs for NAT that are in drain mode.
+	// DrainNatIps: Output only. A list of IPs for NAT that are in drain
+	// mode.
 	// Example: ["1.1.1.1", "179.12.26.133"].
 	DrainNatIps []string `json:"drainNatIps,omitempty"`
-	// MinExtraIpsNeeded: The number of extra IPs to allocate. This will be greater
-	// than 0 only
+	// MinExtraIpsNeeded: Output only. The number of extra IPs to allocate. This
+	// will be greater than 0 only
 	// if the existing IPs in this NAT Rule are NOT enough to allow all
 	// configured VMs to use NAT.
 	MinExtraIpsNeeded int64 `json:"minExtraIpsNeeded,omitempty"`
-	// NumVmEndpointsWithNatMappings: Number of VM endpoints (i.e., NICs) that have
-	// NAT Mappings from this
+	// NumVmEndpointsWithNatMappings: Output only. Number of VM endpoints (i.e.,
+	// NICs) that have NAT Mappings from this
 	// NAT Rule.
 	NumVmEndpointsWithNatMappings int64 `json:"numVmEndpointsWithNatMappings,omitempty"`
-	// RuleNumber: Rule number of the rule.
+	// RuleNumber: Output only. Rule number of the rule.
 	RuleNumber int64 `json:"ruleNumber,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ActiveNatIps") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -54982,7 +55944,7 @@ func (s RouterStatusNatStatusNatRuleStatus) MarshalJSON() ([]byte, error) {
 }
 
 type RouterStatusResponse struct {
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind   string        `json:"kind,omitempty"`
 	Result *RouterStatus `json:"result,omitempty"`
 
@@ -55035,8 +55997,8 @@ type RoutersListBgpRoutes struct {
 	// is
 	// defined by the server.
 	Id string `json:"id,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#routersListBgpRoutes for
-	// lists of bgp routes.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#routersListBgpRoutes for lists of bgp routes.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -55048,9 +56010,9 @@ type RoutersListBgpRoutes struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// Result: [Output Only] A list of bgp routes.
 	Result []*BgpRoute `json:"result,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RoutersListBgpRoutesWarning `json:"warning,omitempty"`
@@ -55220,8 +56182,8 @@ type RoutersListRoutePolicies struct {
 	// is
 	// defined by the server.
 	Id string `json:"id,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#routersListRoutePolicies
-	// for lists of route policies.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#routersListRoutePolicies for lists of route policies.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -55233,9 +56195,9 @@ type RoutersListRoutePolicies struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// Result: [Output Only] A list of route policies.
 	Result []*RoutePolicy `json:"result,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *RoutersListRoutePoliciesWarning `json:"warning,omitempty"`
@@ -55698,7 +56660,7 @@ type SavedAttachedDisk struct {
 	DiskEncryptionKey *CustomerEncryptionKey `json:"diskEncryptionKey,omitempty"`
 	// DiskSizeGb: The size of the disk in base-2 GB.
 	DiskSizeGb int64 `json:"diskSizeGb,omitempty,string"`
-	// DiskType: [Output Only] URL of the disk type resource. For
+	// DiskType: Output only. [Output Only] URL of the disk type resource. For
 	// example:projects/project/zones/zone/diskTypes/pd-standard or
 	// pd-ssd
 	DiskType string `json:"diskType,omitempty"`
@@ -55708,8 +56670,8 @@ type SavedAttachedDisk struct {
 	// Enabling guest operating system features to see a list of available
 	// options.
 	GuestOsFeatures []*GuestOsFeature `json:"guestOsFeatures,omitempty"`
-	// Index: Specifies zero-based index of the disk that is attached to the
-	// source
+	// Index: Output only. Specifies zero-based index of the disk that is attached
+	// to the source
 	// instance.
 	Index int64 `json:"index,omitempty"`
 	// Interface: Specifies the disk interface to use for attaching this disk,
@@ -55720,10 +56682,10 @@ type SavedAttachedDisk struct {
 	//   "NVME"
 	//   "SCSI"
 	Interface string `json:"interface,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#attachedDisk for
-	// attached disks.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#attachedDisk for attached disks.
 	Kind string `json:"kind,omitempty"`
-	// Licenses: [Output Only] Any valid publicly visible licenses.
+	// Licenses: Output only. [Output Only] Any valid publicly visible licenses.
 	Licenses []string `json:"licenses,omitempty"`
 	// Mode: The mode in which this disk is attached to the source instance,
 	// eitherREAD_WRITE or READ_ONLY.
@@ -55738,12 +56700,12 @@ type SavedAttachedDisk struct {
 	Mode string `json:"mode,omitempty"`
 	// Source: Specifies a URL of the disk attached to the source instance.
 	Source string `json:"source,omitempty"`
-	// StorageBytes: [Output Only] A size of the storage used by the disk's
-	// snapshot by this
+	// StorageBytes: Output only. [Output Only] A size of the storage used by the
+	// disk's snapshot by this
 	// machine image.
 	StorageBytes int64 `json:"storageBytes,omitempty,string"`
-	// StorageBytesStatus: [Output Only] An indicator whether storageBytes is in
-	// a
+	// StorageBytesStatus: Output only. [Output Only] An indicator whether
+	// storageBytes is in a
 	// stable state or it is being adjusted as a result of shared
 	// storage
 	// reallocation. This status can either be UPDATING, meaning
@@ -55780,7 +56742,8 @@ func (s SavedAttachedDisk) MarshalJSON() ([]byte, error) {
 
 // SavedDisk: An instance-attached disk resource.
 type SavedDisk struct {
-	// Architecture: [Output Only] The architecture of the attached disk.
+	// Architecture: Output only. [Output Only] The architecture of the attached
+	// disk.
 	//
 	// Possible values:
 	//   "ARCHITECTURE_UNSPECIFIED" - Default value indicating Architecture is not
@@ -55788,17 +56751,19 @@ type SavedDisk struct {
 	//   "ARM64" - Machines with architecture ARM64
 	//   "X86_64" - Machines with architecture X86_64
 	Architecture string `json:"architecture,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#savedDisk
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#savedDisk
 	// for attached disks.
 	Kind string `json:"kind,omitempty"`
-	// SourceDisk: Specifies a URL of the disk attached to the source instance.
+	// SourceDisk: Output only. Specifies a URL of the disk attached to the source
+	// instance.
 	SourceDisk string `json:"sourceDisk,omitempty"`
-	// StorageBytes: [Output Only] Size of the individual disk snapshot used by
-	// this machine
+	// StorageBytes: Output only. [Output Only] Size of the individual disk
+	// snapshot used by this machine
 	// image.
 	StorageBytes int64 `json:"storageBytes,omitempty,string"`
-	// StorageBytesStatus: [Output Only] An indicator whether storageBytes is in
-	// a
+	// StorageBytesStatus: Output only. [Output Only] An indicator whether
+	// storageBytes is in a
 	// stable state or it is being adjusted as a result of shared
 	// storage
 	// reallocation. This status can either be UPDATING, meaning
@@ -56066,7 +57031,8 @@ func (s SchedulingOnInstanceStopAction) MarshalJSON() ([]byte, error) {
 type Screenshot struct {
 	// Contents: [Output Only] The Base64-encoded screenshot data.
 	Contents string `json:"contents,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#screenshot
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#screenshot
 	// for the screenshots.
 	Kind string `json:"kind,omitempty"`
 
@@ -56096,7 +57062,7 @@ type SecurityPoliciesAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SecurityPoliciesScopedList resources.
 	Items map[string]SecurityPoliciesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#securityPolicyAggregatedList for lists of Security
 	// Policies.
 	Kind string `json:"kind,omitempty"`
@@ -56108,9 +57074,9 @@ type SecurityPoliciesAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SecurityPoliciesAggregatedListWarning `json:"warning,omitempty"`
@@ -56494,7 +57460,8 @@ type SecurityPolicy struct {
 	AdvancedOptionsConfig    *SecurityPolicyAdvancedOptionsConfig    `json:"advancedOptionsConfig,omitempty"`
 	// Associations: A list of associations that belong to this policy.
 	Associations []*SecurityPolicyAssociation `json:"associations,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp    string                              `json:"creationTimestamp,omitempty"`
 	DdosProtectionConfig *SecurityPolicyDdosProtectionConfig `json:"ddosProtectionConfig,omitempty"`
@@ -56514,12 +57481,12 @@ type SecurityPolicy struct {
 	// To see the latest fingerprint, make get() request to the
 	// security policy.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] Type of the resource. Alwayscompute#securityPolicyfor
-	// security policies
+	// Kind: Output only. [Output only] Type of the resource.
+	// Alwayscompute#securityPolicyfor security policies
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// security policy, which
@@ -56549,11 +57516,11 @@ type SecurityPolicy struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Parent: [Output Only] The parent of the security policy.
+	// Parent: Output only. [Output Only] The parent of the security policy.
 	Parent                 string                                `json:"parent,omitempty"`
 	RecaptchaOptionsConfig *SecurityPolicyRecaptchaOptionsConfig `json:"recaptchaOptionsConfig,omitempty"`
-	// Region: [Output Only] URL of the region where the regional security
-	// policy
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// security policy
 	// resides. This field is not applicable to global security policies.
 	Region string `json:"region,omitempty"`
 	// Rules: A list of rules that belong to this policy.
@@ -56566,7 +57533,7 @@ type SecurityPolicy struct {
 	// be
 	// added.
 	Rules []*SecurityPolicyRule `json:"rules,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// ShortName: User-provided name of the organization security policy. The name
 	// should be
@@ -56834,6 +57801,11 @@ type SecurityPolicyAdvancedOptionsConfig struct {
 	//   "NORMAL"
 	//   "VERBOSE"
 	LogLevel string `json:"logLevel,omitempty"`
+	// RequestBodyInspectionSize: The maximum request size chosen by the customer
+	// with Waf enabled.
+	// Values supported are "8KB", "16KB, "32KB", "48KB" and "64KB".
+	// Values are case insensitive.
+	RequestBodyInspectionSize string `json:"requestBodyInspectionSize,omitempty"`
 	// UserIpRequestHeaders: An optional list of case-insensitive request header
 	// names to use for
 	// resolving the callers client IP address.
@@ -56890,8 +57862,8 @@ func (s SecurityPolicyAdvancedOptionsConfigJsonCustomConfig) MarshalJSON() ([]by
 type SecurityPolicyAssociation struct {
 	// AttachmentId: The resource that the security policy is attached to.
 	AttachmentId string `json:"attachmentId,omitempty"`
-	// DisplayName: [Output Only] The display name of the security policy of the
-	// association.
+	// DisplayName: Output only. [Output Only] The display name of the security
+	// policy of the association.
 	DisplayName string `json:"displayName,omitempty"`
 	// ExcludedFolders: A list of folders to exclude from the security policy.
 	ExcludedFolders []string `json:"excludedFolders,omitempty"`
@@ -56899,10 +57871,11 @@ type SecurityPolicyAssociation struct {
 	ExcludedProjects []string `json:"excludedProjects,omitempty"`
 	// Name: The name for an association.
 	Name string `json:"name,omitempty"`
-	// SecurityPolicyId: [Output Only] The security policy ID of the association.
-	SecurityPolicyId string `json:"securityPolicyId,omitempty"`
-	// ShortName: [Output Only] The short name of the security policy of the
+	// SecurityPolicyId: Output only. [Output Only] The security policy ID of the
 	// association.
+	SecurityPolicyId string `json:"securityPolicyId,omitempty"`
+	// ShortName: Output only. [Output Only] The short name of the security policy
+	// of the association.
 	ShortName string `json:"shortName,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -56954,8 +57927,8 @@ type SecurityPolicyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SecurityPolicy resources.
 	Items []*SecurityPolicy `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#securityPolicyList for
-	// listsof securityPolicies
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#securityPolicyList for listsof securityPolicies
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -57220,8 +58193,8 @@ type SecurityPolicyRule struct {
 	// type
 	// CLOUD_ARMOR.
 	HeaderAction *SecurityPolicyRuleHttpHeaderAction `json:"headerAction,omitempty"`
-	// Kind: [Output only] Type of the resource. Alwayscompute#securityPolicyRule
-	// for security policy rules
+	// Kind: Output only. [Output only] Type of the resource.
+	// Alwayscompute#securityPolicyRule for security policy rules
 	Kind string `json:"kind,omitempty"`
 	// Match: A match condition that incoming traffic is evaluated against.
 	// If it evaluates to true, the corresponding 'action' is enforced.
@@ -58070,8 +59043,8 @@ func (s SecuritySettings) MarshalJSON() ([]byte, error) {
 type SerialPortOutput struct {
 	// Contents: [Output Only] The contents of the console output.
 	Contents string `json:"contents,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#serialPortOutput for
-	// serial port output.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#serialPortOutput for serial port output.
 	Kind string `json:"kind,omitempty"`
 	// Next: [Output Only] The position of the next byte of content, regardless
 	// of
@@ -58080,7 +59053,7 @@ type SerialPortOutput struct {
 	// property. Use this value in the next request as the start
 	// parameter.
 	Next int64 `json:"next,omitempty,string"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Start: The starting byte position of the output that was returned.
 	// This should match the start parameter sent with the request.
@@ -58169,8 +59142,8 @@ func (s ServiceAccount) MarshalJSON() ([]byte, error) {
 // a list of NAT IP ranges that the producers uses to represent
 // the consumers connecting to the service.
 type ServiceAttachment struct {
-	// ConnectedEndpoints: [Output Only] An array of connections for all the
-	// consumers connected to
+	// ConnectedEndpoints: Output only. [Output Only] An array of connections for
+	// all the consumers connected to
 	// this service attachment.
 	ConnectedEndpoints []*ServiceAttachmentConnectedEndpoint `json:"connectedEndpoints,omitempty"`
 	// ConnectionPreference: The connection preference of service attachment. The
@@ -58209,7 +59182,8 @@ type ServiceAttachment struct {
 	// service
 	// attachment must contain either only projects or only networks.
 	ConsumerRejectLists []string `json:"consumerRejectLists,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -58241,12 +59215,12 @@ type ServiceAttachment struct {
 	// latest fingerprint, make a get() request to retrieve the
 	// ServiceAttachment.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#serviceAttachment
-	// for service attachments.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#serviceAttachment for service attachments.
 	Kind string `json:"kind,omitempty"`
 	// Metadata: Metadata of the service attachment.
 	Metadata map[string]string `json:"metadata,omitempty"`
@@ -58290,8 +59264,8 @@ type ServiceAttachment struct {
 	//
 	// If unspecified, the default propagated connection limit is 250.
 	PropagatedConnectionLimit int64 `json:"propagatedConnectionLimit,omitempty"`
-	// PscServiceAttachmentId: [Output Only] An 128-bit global unique ID of the PSC
-	// service attachment.
+	// PscServiceAttachmentId: Output only. [Output Only] An 128-bit global unique
+	// ID of the PSC service attachment.
 	PscServiceAttachmentId *Uint128 `json:"pscServiceAttachmentId,omitempty"`
 	// ReconcileConnections: This flag determines whether a consumer accept/reject
 	// list change can
@@ -58312,13 +59286,13 @@ type ServiceAttachment struct {
 	//
 	// For newly created service attachment, this boolean defaults to false.
 	ReconcileConnections bool `json:"reconcileConnections,omitempty"`
-	// Region: [Output Only] URL of the region where the service attachment
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the service
+	// attachment resides.
 	// This field applies only to the region resource. You must specify this
 	// field as part of the HTTP request URL. It is not settable as a field in
 	// the request body.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// TargetService: The URL of a service serving the endpoint identified by this
 	// service
@@ -58352,7 +59326,7 @@ type ServiceAttachmentAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ServiceAttachmentsScopedList resources.
 	Items map[string]ServiceAttachmentsScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -58362,9 +59336,9 @@ type ServiceAttachmentAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ServiceAttachmentAggregatedListWarning `json:"warning,omitempty"`
@@ -58610,8 +59584,8 @@ type ServiceAttachmentList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of ServiceAttachment resources.
 	Items []*ServiceAttachment `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#serviceAttachment
-	// for service attachments.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#serviceAttachment for service attachments.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -59114,7 +60088,7 @@ type ShieldedInstanceIdentity struct {
 	// EncryptionKey: An Endorsement Key (EK) made by the RSA 2048 algorithm
 	// issued to the Shielded Instance's vTPM.
 	EncryptionKey *ShieldedInstanceIdentityEntry `json:"encryptionKey,omitempty"`
-	// Kind: [Output Only] Type of the resource.
+	// Kind: Output only. [Output Only] Type of the resource.
 	// Alwayscompute#shieldedInstanceIdentity for shielded Instance
 	// identity entry.
 	Kind string `json:"kind,omitempty"`
@@ -59234,8 +60208,8 @@ func (s SignedUrlKey) MarshalJSON() ([]byte, error) {
 // information, read  Creating
 // persistent disk snapshots.
 type Snapshot struct {
-	// Architecture: [Output Only] The architecture of the snapshot. Valid values
-	// are
+	// Architecture: Output only. [Output Only] The architecture of the snapshot.
+	// Valid values are
 	// ARM64 or X86_64.
 	//
 	// Possible values:
@@ -59244,8 +60218,8 @@ type Snapshot struct {
 	//   "ARM64" - Machines with architecture ARM64
 	//   "X86_64" - Machines with architecture X86_64
 	Architecture string `json:"architecture,omitempty"`
-	// AutoCreated: [Output Only] Set to true if snapshots are automatically
-	// created by
+	// AutoCreated: Output only. [Output Only] Set to true if snapshots are
+	// automatically created by
 	// applying resource policy on the target disk.
 	AutoCreated bool `json:"autoCreated,omitempty"`
 	// ChainName: Creates the new snapshot in the snapshot chain labeled with
@@ -59257,40 +60231,43 @@ type Snapshot struct {
 	// this
 	// field is visible only if it has a non-empty value.
 	ChainName string `json:"chainName,omitempty"`
-	// CreationSizeBytes: [Output Only] Size in bytes of the snapshot at creation
-	// time.
+	// CreationSizeBytes: Output only. [Output Only] Size in bytes of the snapshot
+	// at creation time.
 	CreationSizeBytes int64 `json:"creationSizeBytes,omitempty,string"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// DiskSizeGb: [Output Only] Size of the source disk, specified in GB.
+	// DiskSizeGb: Output only. [Output Only] Size of the source disk, specified in
+	// GB.
 	DiskSizeGb int64 `json:"diskSizeGb,omitempty,string"`
-	// DownloadBytes: [Output Only] Number of bytes downloaded to restore a
-	// snapshot to a disk.
+	// DownloadBytes: Output only. [Output Only] Number of bytes downloaded to
+	// restore a snapshot to a disk.
 	DownloadBytes int64 `json:"downloadBytes,omitempty,string"`
-	// EnableConfidentialCompute: Whether this snapshot is created from a
-	// confidential compute mode disk.
+	// EnableConfidentialCompute: Output only. Whether this snapshot is created
+	// from a confidential compute mode disk.
 	// [Output Only]: This field is not set by user, but from source disk.
 	EnableConfidentialCompute bool `json:"enableConfidentialCompute,omitempty"`
 	// GuestFlush: [Input Only] Whether to attempt an application consistent
 	// snapshot by
 	// informing the OS to prepare for the snapshot process.
 	GuestFlush bool `json:"guestFlush,omitempty"`
-	// GuestOsFeatures: [Output Only] A list of features to enable on the guest
-	// operating system.
+	// GuestOsFeatures: Output only. [Output Only] A list of features to enable on
+	// the guest operating system.
 	// Applicable only for bootable images. Read
 	// Enabling guest operating system features to see a list of available
 	// options.
 	GuestOsFeatures []*GuestOsFeature `json:"guestOsFeatures,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#snapshot
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#snapshot
 	// for Snapshot resources.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
@@ -59310,12 +60287,12 @@ type Snapshot struct {
 	// the setLabels method.
 	// Label values may be empty.
 	Labels map[string]string `json:"labels,omitempty"`
-	// LicenseCodes: [Output Only] Integer license codes indicating which licenses
-	// are attached
+	// LicenseCodes: Output only. [Output Only] Integer license codes indicating
+	// which licenses are attached
 	// to this snapshot.
 	LicenseCodes googleapi.Int64s `json:"licenseCodes,omitempty"`
-	// Licenses: [Output Only] A list of public visible licenses that apply to
-	// this
+	// Licenses: Output only. [Output Only] A list of public visible licenses that
+	// apply to this
 	// snapshot. This can be because the original image had licenses attached
 	// (such as a Windows image).
 	Licenses []string `json:"licenses,omitempty"`
@@ -59341,9 +60318,9 @@ type Snapshot struct {
 	Params *SnapshotParams `json:"params,omitempty"`
 	// SatisfiesPzi: Output only. Reserved for future use.
 	SatisfiesPzi bool `json:"satisfiesPzi,omitempty"`
-	// SatisfiesPzs: [Output Only] Reserved for future use.
+	// SatisfiesPzs: Output only. [Output Only] Reserved for future use.
 	SatisfiesPzs bool `json:"satisfiesPzs,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// SnapshotEncryptionKey: Encrypts the snapshot using
 	// acustomer-supplied
@@ -59380,8 +60357,8 @@ type Snapshot struct {
 	// will be used to create this
 	// snapshot.
 	SourceDiskForRecoveryCheckpoint string `json:"sourceDiskForRecoveryCheckpoint,omitempty"`
-	// SourceDiskId: [Output Only] The ID value of the disk used to create this
-	// snapshot. This
+	// SourceDiskId: Output only. [Output Only] The ID value of the disk used to
+	// create this snapshot. This
 	// value may be used to determine whether the snapshot was taken from
 	// the
 	// current or a previous instance of a given disk name.
@@ -59402,8 +60379,8 @@ type Snapshot struct {
 	// creating Snapshot from Instant
 	// Snapshot.
 	SourceInstantSnapshotEncryptionKey *CustomerEncryptionKey `json:"sourceInstantSnapshotEncryptionKey,omitempty"`
-	// SourceInstantSnapshotId: [Output Only] The unique ID of the instant snapshot
-	// used to create this
+	// SourceInstantSnapshotId: Output only. [Output Only] The unique ID of the
+	// instant snapshot used to create this
 	// snapshot. This value identifies the exact instant snapshot that was used
 	// to
 	// create this snapshot. For example, if you created the snapshot from
@@ -59414,16 +60391,16 @@ type Snapshot struct {
 	// snapshot
 	// that was used.
 	SourceInstantSnapshotId string `json:"sourceInstantSnapshotId,omitempty"`
-	// SourceSnapshotSchedulePolicy: [Output Only] URL of the resource policy which
-	// created this
+	// SourceSnapshotSchedulePolicy: Output only. [Output Only] URL of the resource
+	// policy which created this
 	// scheduled snapshot.
 	SourceSnapshotSchedulePolicy string `json:"sourceSnapshotSchedulePolicy,omitempty"`
-	// SourceSnapshotSchedulePolicyId: [Output Only] ID of the resource policy
-	// which created this
+	// SourceSnapshotSchedulePolicyId: Output only. [Output Only] ID of the
+	// resource policy which created this
 	// scheduled snapshot.
 	SourceSnapshotSchedulePolicyId string `json:"sourceSnapshotSchedulePolicyId,omitempty"`
-	// Status: [Output Only] The status of the snapshot. This can beCREATING,
-	// DELETING, FAILED,READY, or UPLOADING.
+	// Status: Output only. [Output Only] The status of the snapshot. This can
+	// beCREATING, DELETING, FAILED,READY, or UPLOADING.
 	//
 	// Possible values:
 	//   "CREATING" - Snapshot creation is in progress.
@@ -59432,14 +60409,14 @@ type Snapshot struct {
 	//   "READY" - Snapshot has been created successfully.
 	//   "UPLOADING" - Snapshot is being uploaded.
 	Status string `json:"status,omitempty"`
-	// StorageBytes: [Output Only] A size of the storage used by the snapshot. As
-	// snapshots
+	// StorageBytes: Output only. [Output Only] A size of the storage used by the
+	// snapshot. As snapshots
 	// share storage, this number is expected to change with
 	// snapshot
 	// creation/deletion.
 	StorageBytes int64 `json:"storageBytes,omitempty,string"`
-	// StorageBytesStatus: [Output Only] An indicator whether storageBytes is in
-	// a
+	// StorageBytesStatus: Output only. [Output Only] An indicator whether
+	// storageBytes is in a
 	// stable state or it is being adjusted as a result of shared
 	// storage
 	// reallocation. This status can either be UPDATING, meaning
@@ -59481,7 +60458,7 @@ type SnapshotList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Snapshot resources.
 	Items []*Snapshot `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -59491,7 +60468,7 @@ type SnapshotList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SnapshotListWarning `json:"warning,omitempty"`
@@ -59660,9 +60637,11 @@ type SnapshotParams struct {
 	// ResourceManagerTags: Resource manager tags to be bound to the snapshot. Tag
 	// keys and values have
 	// the same definition as resource
-	// manager tags. Keys must be in the format `tagKeys/{tag_key_id}`, and
-	// values are in the format `tagValues/456`. The field is ignored (both PUT
-	// &
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
 	// PATCH) when empty.
 	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "ResourceManagerTags") to
@@ -59903,6 +60882,15 @@ type SourceInstanceProperties struct {
 	// NetworkInterfaces: An array of network access configurations for this
 	// interface.
 	NetworkInterfaces []*NetworkInterface `json:"networkInterfaces,omitempty"`
+	// PostKeyRevocationActionType: PostKeyRevocationActionType of the instance.
+	//
+	// Possible values:
+	//   "NOOP" - Indicates user chose no operation.
+	//   "POST_KEY_REVOCATION_ACTION_TYPE_UNSPECIFIED" - Default value. This value
+	// is unused.
+	//   "SHUTDOWN" - Indicates user chose to opt for VM shutdown on key
+	// revocation.
+	PostKeyRevocationActionType string `json:"postKeyRevocationActionType,omitempty"`
 	// Scheduling: Specifies the scheduling options for the instances that are
 	// created from
 	// this machine image.
@@ -59984,14 +60972,15 @@ type SslCertificate struct {
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// ExpireTime: [Output Only] Expire time of the certificate. RFC3339
+	// ExpireTime: Output only. [Output Only] Expire time of the certificate.
+	// RFC3339
 	ExpireTime string `json:"expireTime,omitempty"`
 	// Id: [Output Only] The unique identifier for the resource. This identifier
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#sslCertificate for
-	// SSL certificates.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#sslCertificate for SSL certificates.
 	Kind string `json:"kind,omitempty"`
 	// Managed: Configuration and status of a managed SSL certificate.
 	Managed *SslCertificateManagedSslCertificate `json:"managed,omitempty"`
@@ -60011,7 +61000,7 @@ type SslCertificate struct {
 	// key file must be in PEM format. For security, only insert
 	// requests include this field.
 	PrivateKey string `json:"privateKey,omitempty"`
-	// Region: [Output Only] URL of the region where the regional SSL
+	// Region: Output only. [Output Only] URL of the region where the regional SSL
 	// Certificate
 	// resides. This field is not applicable to global SSL Certificate.
 	Region string `json:"region,omitempty"`
@@ -60019,8 +61008,8 @@ type SslCertificate struct {
 	SelfLink string `json:"selfLink,omitempty"`
 	// SelfManaged: Configuration and status of a self-managed SSL certificate.
 	SelfManaged *SslCertificateSelfManagedSslCertificate `json:"selfManaged,omitempty"`
-	// SubjectAlternativeNames: [Output Only] Domains associated with the
-	// certificate via Subject
+	// SubjectAlternativeNames: Output only. [Output Only] Domains associated with
+	// the certificate via Subject
 	// Alternative Name.
 	SubjectAlternativeNames []string `json:"subjectAlternativeNames,omitempty"`
 	// Type: (Optional) Specifies the type of SSL certificate, either
@@ -60059,7 +61048,7 @@ type SslCertificateAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SslCertificatesScopedList resources.
 	Items map[string]SslCertificatesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#sslCertificateAggregatedList for lists of SSL
 	// Certificates.
 	Kind string `json:"kind,omitempty"`
@@ -60071,9 +61060,9 @@ type SslCertificateAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SslCertificateAggregatedListWarning `json:"warning,omitempty"`
@@ -60244,7 +61233,7 @@ type SslCertificateList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SslCertificate resources.
 	Items []*SslCertificate `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -60254,7 +61243,7 @@ type SslCertificateList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SslCertificateListWarning `json:"warning,omitempty"`
@@ -60421,8 +61410,8 @@ func (s SslCertificateListWarningData) MarshalJSON() ([]byte, error) {
 // SslCertificateManagedSslCertificate: Configuration and status of a managed
 // SSL certificate.
 type SslCertificateManagedSslCertificate struct {
-	// DomainStatus: [Output only] Detailed statuses of the domains specified for
-	// managed
+	// DomainStatus: Output only. [Output only] Detailed statuses of the domains
+	// specified for managed
 	// certificate resource.
 	DomainStatus map[string]string `json:"domainStatus,omitempty"`
 	// Domains: The domains for which a managed SSL certificate will be generated.
@@ -60431,7 +61420,8 @@ type SslCertificateManagedSslCertificate struct {
 	// domains per Google-managed SSL
 	// certificate (/load-balancing/docs/quotas#ssl_certificates).
 	Domains []string `json:"domains,omitempty"`
-	// Status: [Output only] Status of the managed certificate resource.
+	// Status: Output only. [Output only] Status of the managed certificate
+	// resource.
 	//
 	// Possible values:
 	//   "ACTIVE" - The certificate management is working, and a certificate has
@@ -60675,8 +61665,8 @@ type SslPoliciesAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SslPoliciesScopedList resources.
 	Items map[string]SslPoliciesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#sslPolicyAggregatedList
-	// for lists of SSL Policies.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#sslPolicyAggregatedList for lists of SSL Policies.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -60686,9 +61676,9 @@ type SslPoliciesAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SslPoliciesAggregatedListWarning `json:"warning,omitempty"`
@@ -60854,22 +61844,23 @@ func (s SslPoliciesAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type SslPoliciesList struct {
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
-	// Items: A list of SslPolicy resources.
+	// Items: Output only. A list of SslPolicy resources.
 	Items []*SslPolicy `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#sslPoliciesList for
-	// lists of sslPolicies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#sslPoliciesList for lists of sslPolicies.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SslPoliciesListWarning `json:"warning,omitempty"`
@@ -61230,7 +62221,8 @@ func (s SslPoliciesScopedListWarningData) MarshalJSON() ([]byte, error) {
 // Balancers. For more information, read
 // SSL policies overview.
 type SslPolicy struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// CustomFeatures: A list of features enabled when the selected profile is
@@ -61243,8 +62235,8 @@ type SslPolicy struct {
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// EnabledFeatures: [Output Only] The list of features enabled in the SSL
-	// policy.
+	// EnabledFeatures: Output only. [Output Only] The list of features enabled in
+	// the SSL policy.
 	EnabledFeatures []string `json:"enabledFeatures,omitempty"`
 	// Fingerprint: Fingerprint of this resource. A hash of the contents stored in
 	// this object.
@@ -61257,12 +62249,12 @@ type SslPolicy struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve an SslPolicy.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output only] Type of the resource. Alwayscompute#sslPolicyfor SSL
-	// policies.
+	// Kind: Output only. [Output only] Type of the resource.
+	// Alwayscompute#sslPolicyfor SSL policies.
 	Kind string `json:"kind,omitempty"`
 	// MinTlsVersion: The minimum version of SSL protocol that can be used by the
 	// clients to
@@ -61311,14 +62303,14 @@ type SslPolicy struct {
 	// intended to
 	// meet stricter compliance requirements.
 	Profile string `json:"profile,omitempty"`
-	// Region: [Output Only] URL of the region where the regional SSL
+	// Region: Output only. [Output Only] URL of the region where the regional SSL
 	// policy
 	// resides. This field is not applicable to global SSL policies.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Warnings: [Output Only] If potential misconfigurations are detected for
-	// this
+	// Warnings: Output only. [Output Only] If potential misconfigurations are
+	// detected for this
 	// SSL policy, this field will be populated with warning messages.
 	Warnings []*SslPolicyWarnings `json:"warnings,omitempty"`
 
@@ -61673,18 +62665,23 @@ type StoragePool struct {
 	// disks' exclusive use.
 	//   "UNSPECIFIED"
 	CapacityProvisioningType string `json:"capacityProvisioningType,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
 	// when you
 	// create the resource.
 	Description string `json:"description,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// ExapoolProvisionedCapacityGb: Output only. [Output Only] Provisioned
+	// capacities for each SKU for this Exapool in GiB
+	ExapoolProvisionedCapacityGb *StoragePoolExapoolProvisionedCapacityGb `json:"exapoolProvisionedCapacityGb,omitempty"`
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#storagePool
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#storagePool
 	// for storage pools.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this storage
@@ -61715,6 +62712,10 @@ type StoragePool struct {
 	// following characters must be a dash, lowercase letter, or digit, except
 	// the last character, which cannot be a dash.
 	Name string `json:"name,omitempty"`
+	// Params: Input only. Additional params passed with the request, but not
+	// persisted
+	// as part of resource payload.
+	Params *StoragePoolParams `json:"params,omitempty"`
 	// PerformanceProvisioningType: Provisioning type of the performance-related
 	// parameters of the pool,
 	// such as throughput and IOPS.
@@ -61739,16 +62740,16 @@ type StoragePool struct {
 	// MiB/s. Only relevant if the
 	// storage pool type is hyperdisk-balanced or hyperdisk-throughput.
 	PoolProvisionedThroughput int64 `json:"poolProvisionedThroughput,omitempty,string"`
-	// ResourceStatus: [Output Only] Status information for the storage pool
-	// resource.
+	// ResourceStatus: Output only. [Output Only] Status information for the
+	// storage pool resource.
 	ResourceStatus *StoragePoolResourceStatus `json:"resourceStatus,omitempty"`
-	// SelfLink: [Output Only] Server-defined fully-qualified URL for this
-	// resource.
+	// SelfLink: Output only. [Output Only] Server-defined fully-qualified URL for
+	// this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource's
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource's resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
-	// State: [Output Only] The status of storage pool creation.
+	// State: Output only. [Output Only] The status of storage pool creation.
 	//
 	//
 	//      - CREATING: Storage pool is provisioning.
@@ -61763,11 +62764,13 @@ type StoragePool struct {
 	//   "FAILED" - StoragePool creation failed.
 	//   "READY" - StoragePool is ready for use.
 	State string `json:"state,omitempty"`
-	// Status: [Output Only] Status information for the storage pool resource.
+	// Status: Output only. [Output Only] Status information for the storage pool
+	// resource.
 	Status *StoragePoolResourceStatus `json:"status,omitempty"`
 	// StoragePoolType: Type of the storage pool.
 	StoragePoolType string `json:"storagePoolType,omitempty"`
-	// Zone: [Output Only] URL of the zone where the storage pool resides.
+	// Zone: Output only. [Output Only] URL of the zone where the storage pool
+	// resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Zone string `json:"zone,omitempty"`
@@ -61798,7 +62801,7 @@ type StoragePoolAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of StoragePoolsScopedList resources.
 	Items map[string]StoragePoolsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#storagePoolAggregatedList for aggregated lists of
 	// storage pools.
 	Kind string `json:"kind,omitempty"`
@@ -61810,9 +62813,9 @@ type StoragePoolAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *StoragePoolAggregatedListWarning `json:"warning,omitempty"`
@@ -61978,27 +62981,30 @@ func (s StoragePoolAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type StoragePoolDisk struct {
-	// AttachedInstances: [Output Only] Instances this disk is attached to.
+	// AttachedInstances: Output only. [Output Only] Instances this disk is
+	// attached to.
 	AttachedInstances []string `json:"attachedInstances,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
-	// Disk: [Output Only] The URL of the disk.
+	// Disk: Output only. [Output Only] The URL of the disk.
 	Disk string `json:"disk,omitempty"`
-	// Name: [Output Only] The name of the disk.
+	// Name: Output only. [Output Only] The name of the disk.
 	Name string `json:"name,omitempty"`
-	// ProvisionedIops: [Output Only] The number of IOPS provisioned for the disk.
+	// ProvisionedIops: Output only. [Output Only] The number of IOPS provisioned
+	// for the disk.
 	ProvisionedIops int64 `json:"provisionedIops,omitempty,string"`
-	// ProvisionedThroughput: [Output Only] The throughput provisioned for the
-	// disk.
+	// ProvisionedThroughput: Output only. [Output Only] The throughput provisioned
+	// for the disk.
 	ProvisionedThroughput int64 `json:"provisionedThroughput,omitempty,string"`
-	// ResourcePolicies: [Output Only] Resource policies applied to disk for
-	// automatic snapshot
+	// ResourcePolicies: Output only. [Output Only] Resource policies applied to
+	// disk for automatic snapshot
 	// creations.
 	ResourcePolicies []string `json:"resourcePolicies,omitempty"`
-	// SizeGb: [Output Only] The disk size, in GB.
+	// SizeGb: Output only. [Output Only] The disk size, in GB.
 	SizeGb int64 `json:"sizeGb,omitempty,string"`
-	// Status: [Output Only] The disk status.
+	// Status: Output only. [Output Only] The disk status.
 	//
 	// Possible values:
 	//   "CREATING" - Disk is provisioning
@@ -62010,9 +63016,9 @@ type StoragePoolDisk struct {
 	// attached or
 	// detached.
 	Status string `json:"status,omitempty"`
-	// Type: [Output Only] The disk type.
+	// Type: Output only. [Output Only] The disk type.
 	Type string `json:"type,omitempty"`
-	// UsedBytes: [Output Only] Amount of disk space used.
+	// UsedBytes: Output only. [Output Only] Amount of disk space used.
 	UsedBytes int64 `json:"usedBytes,omitempty,string"`
 	// ForceSendFields is a list of field names (e.g. "AttachedInstances") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -62032,6 +63038,36 @@ func (s StoragePoolDisk) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// StoragePoolExapoolProvisionedCapacityGb: Exapool provisioned capacities for
+// each SKU type
+type StoragePoolExapoolProvisionedCapacityGb struct {
+	// CapacityOptimized: Output only. Size, in GiB, of provisioned
+	// capacity-optimized capacity for this Exapool
+	CapacityOptimized int64 `json:"capacityOptimized,omitempty,string"`
+	// ReadOptimized: Output only. Size, in GiB, of provisioned read-optimized
+	// capacity for this Exapool
+	ReadOptimized int64 `json:"readOptimized,omitempty,string"`
+	// WriteOptimized: Output only. Size, in GiB, of provisioned write-optimized
+	// capacity for this Exapool
+	WriteOptimized int64 `json:"writeOptimized,omitempty,string"`
+	// ForceSendFields is a list of field names (e.g. "CapacityOptimized") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "CapacityOptimized") to include in
+	// API requests with the JSON null value. By default, fields with empty values
+	// are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s StoragePoolExapoolProvisionedCapacityGb) MarshalJSON() ([]byte, error) {
+	type NoMethod StoragePoolExapoolProvisionedCapacityGb
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 // StoragePoolList: A list of StoragePool resources.
 type StoragePoolList struct {
 	Etag string `json:"etag,omitempty"`
@@ -62039,7 +63075,8 @@ type StoragePoolList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of StoragePool resources.
 	Items []*StoragePool `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#storagePoolList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#storagePoolList
 	// for lists of storagePools.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -62050,9 +63087,10 @@ type StoragePoolList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -62219,28 +63257,30 @@ func (s StoragePoolListWarningData) MarshalJSON() ([]byte, error) {
 
 type StoragePoolListDisks struct {
 	Etag string `json:"etag,omitempty"`
-	// Id: [Output Only] Unique identifier for the resource; defined by the server.
+	// Id: Output only. [Output Only] Unique identifier for the resource; defined
+	// by the server.
 	Id string `json:"id,omitempty"`
 	// Items: A list of StoragePoolDisk resources.
 	Items []*StoragePoolDisk `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#storagePoolListDisks for
-	// lists of disks in a
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#storagePoolListDisks for lists of disks in a
 	// storagePool.
 	Kind string `json:"kind,omitempty"`
-	// NextPageToken: [Output Only] This token allows you to get the next page of
-	// results for
+	// NextPageToken: Output only. [Output Only] This token allows you to get the
+	// next page of results for
 	// list requests. If the number of results is larger thanmaxResults, use the
 	// nextPageToken as a value for
 	// the query parameter pageToken in the next list request.
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
-	// Warning: [Output Only] Informational warning message.
+	// Warning: Output only. [Output Only] Informational warning message.
 	Warning *StoragePoolListDisksWarning `json:"warning,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -62263,7 +63303,8 @@ func (s StoragePoolListDisks) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
-// StoragePoolListDisksWarning: [Output Only] Informational warning message.
+// StoragePoolListDisksWarning: Output only. [Output Only] Informational
+// warning message.
 type StoragePoolListDisksWarning struct {
 	// Code: [Output Only] A warning code, if applicable. For example,
 	// Compute
@@ -62402,12 +63443,56 @@ func (s StoragePoolListDisksWarningData) MarshalJSON() ([]byte, error) {
 	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
 }
 
+// StoragePoolParams: Additional storage pool params.
+type StoragePoolParams struct {
+	// ResourceManagerTags: Input only. Resource manager tags to be bound to the
+	// storage pool. Tag keys and values
+	// have the same definition as resource
+	// manager tags. Keys and values can be either in numeric format,
+	// such as `tagKeys/{tag_key_id}` and `tagValues/456` or in namespaced
+	// format such as `{org_id|project_id}/{tag_key_short_name}`
+	// and
+	// `{tag_value_short_name}`. The field is ignored (both PUT &
+	// PATCH) when empty.
+	ResourceManagerTags map[string]string `json:"resourceManagerTags,omitempty"`
+	// ForceSendFields is a list of field names (e.g. "ResourceManagerTags") to
+	// unconditionally include in API requests. By default, fields with empty or
+	// default values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
+	// details.
+	ForceSendFields []string `json:"-"`
+	// NullFields is a list of field names (e.g. "ResourceManagerTags") to include
+	// in API requests with the JSON null value. By default, fields with empty
+	// values are omitted from API requests. See
+	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
+	NullFields []string `json:"-"`
+}
+
+func (s StoragePoolParams) MarshalJSON() ([]byte, error) {
+	type NoMethod StoragePoolParams
+	return gensupport.MarshalJSON(NoMethod(s), s.ForceSendFields, s.NullFields)
+}
+
 // StoragePoolResourceStatus: [Output Only] Contains output only fields.
 type StoragePoolResourceStatus struct {
 	// DiskCount: [Output Only] Number of disks used.
 	DiskCount int64 `json:"diskCount,omitempty,string"`
-	// LastResizeTimestamp: [Output Only] Timestamp of the last successful resize
-	// inRFC3339 text format.
+	// ExapoolMaxReadIops: Output only. [Output Only] Maximum allowed read IOPS for
+	// this Exapool.
+	ExapoolMaxReadIops int64 `json:"exapoolMaxReadIops,omitempty,string"`
+	// ExapoolMaxReadThroughput: Output only. [Output Only] Maximum allowed read
+	// throughput in MiB/s for
+	// this Exapool.
+	ExapoolMaxReadThroughput int64 `json:"exapoolMaxReadThroughput,omitempty,string"`
+	// ExapoolMaxWriteIops: Output only. [Output Only] Maximum allowed write IOPS
+	// for this Exapool.
+	ExapoolMaxWriteIops int64 `json:"exapoolMaxWriteIops,omitempty,string"`
+	// ExapoolMaxWriteThroughput: Output only. [Output Only] Maximum allowed write
+	// throughput in MiB/s
+	// for this Exapool.
+	ExapoolMaxWriteThroughput int64 `json:"exapoolMaxWriteThroughput,omitempty,string"`
+	// LastResizeTimestamp: Output only. [Output Only] Timestamp of the last
+	// successful resize inRFC3339 text format.
 	LastResizeTimestamp string `json:"lastResizeTimestamp,omitempty"`
 	// MaxTotalProvisionedDiskCapacityGb: [Output Only] Maximum allowed aggregate
 	// disk size in GiB.
@@ -62478,8 +63563,8 @@ type StoragePoolType struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#storagePoolType for
-	// storage pool types.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#storagePoolType for storage pool types.
 	Kind string `json:"kind,omitempty"`
 	// MaxPoolProvisionedCapacityGb: [Output Only] Maximum storage pool size in GB.
 	MaxPoolProvisionedCapacityGb int64 `json:"maxPoolProvisionedCapacityGb,omitempty,string"`
@@ -62501,8 +63586,8 @@ type StoragePoolType struct {
 	Name string `json:"name,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL for this resource with the
-	// resource id.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL for this
+	// resource with the resource id.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// SupportedDiskTypes: [Output Only] The list of disk types supported in this
 	// storage pool type.
@@ -62537,7 +63622,7 @@ type StoragePoolTypeAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of StoragePoolTypesScopedList resources.
 	Items map[string]StoragePoolTypesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#storagePoolTypeAggregatedList.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -62548,7 +63633,7 @@ type StoragePoolTypeAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *StoragePoolTypeAggregatedListWarning `json:"warning,omitempty"`
@@ -62719,8 +63804,8 @@ type StoragePoolTypeList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of StoragePoolType resources.
 	Items []*StoragePoolType `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#storagePoolTypeList for
-	// storage pool types.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#storagePoolTypeList for storage pool types.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -62730,7 +63815,7 @@ type StoragePoolTypeList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *StoragePoolTypeListWarning `json:"warning,omitempty"`
@@ -63236,7 +64321,37 @@ func (s StoragePoolsScopedListWarningData) MarshalJSON() ([]byte, error) {
 // IP ranges. For more information, read
 // Virtual Private Cloud (VPC) Network.
 type Subnetwork struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// AllowSubnetCidrRoutesOverlap: Whether this subnetwork's ranges can conflict
+	// with existing static routes.
+	// Setting this to true allows this subnetwork's primary and secondary
+	// ranges
+	// to overlap with (and contain) static routes that have already
+	// been
+	// configured on the corresponding network.
+	//
+	// For example if a static route has range 10.1.0.0/16, a subnet
+	// range 10.0.0.0/8 could only be created if
+	// allow_conflicting_routes=true.
+	//
+	// Overlapping is only allowed on subnetwork operations; routes
+	// whose ranges conflict with this subnetwork's ranges won't be allowed
+	// unless
+	// route.allow_conflicting_subnetworks is set to true.
+	//
+	// Typically packets destined to IPs within the subnetwork (which may
+	// contain
+	// private/sensitive data) are prevented from leaving the virtual
+	// network.
+	// Setting this field to true will disable this feature.
+	//
+	// The default value is false and applies to all existing subnetworks
+	// and
+	// automatically created subnetworks.
+	//
+	// This field cannot be set to true at resource creation time.
+	AllowSubnetCidrRoutesOverlap bool `json:"allowSubnetCidrRoutesOverlap,omitempty"`
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -63250,7 +64365,8 @@ type Subnetwork struct {
 	// org
 	// policy specified, then it will default to disabled. This field
 	// isn't
-	// supported if the subnet purpose field is set toREGIONAL_MANAGED_PROXY.
+	// supported if the subnet purpose field is set toREGIONAL_MANAGED_PROXY. It is
+	// recommended to uselogConfig.enable field instead.
 	EnableFlowLogs bool `json:"enableFlowLogs,omitempty"`
 	// ExternalIpv6Prefix: The external IPv6 address range that is owned by
 	// this
@@ -63267,12 +64383,12 @@ type Subnetwork struct {
 	// To see the latest fingerprint, make a get() request to
 	// retrieve a Subnetwork.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// GatewayAddress: [Output Only] The gateway address for default routes to
-	// reach destination
+	// GatewayAddress: Output only. [Output Only] The gateway address for default
+	// routes to reach destination
 	// addresses outside this subnetwork.
 	GatewayAddress string `json:"gatewayAddress,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
 	// InternalIpv6Prefix: The internal IPv6 address range that is owned by
@@ -63328,10 +64444,10 @@ type Subnetwork struct {
 	// only
 	// accessible over the VPC network.
 	Ipv6AccessType string `json:"ipv6AccessType,omitempty"`
-	// Ipv6CidrRange: [Output Only] This field is for internal use.
+	// Ipv6CidrRange: Output only. [Output Only] This field is for internal use.
 	Ipv6CidrRange string `json:"ipv6CidrRange,omitempty"`
-	// Ipv6GceEndpoint: [Output Only] Possible endpoints of this subnetwork. It can
-	// be one of the
+	// Ipv6GceEndpoint: Output only. [Output Only] Possible endpoints of this
+	// subnetwork. It can be one of the
 	// following:
 	//
 	//    - VM_ONLY: The subnetwork can be used for creating instances and
@@ -63348,7 +64464,8 @@ type Subnetwork struct {
 	//   "VM_AND_FR"
 	//   "VM_ONLY"
 	Ipv6GceEndpoint string `json:"ipv6GceEndpoint,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#subnetwork
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#subnetwork
 	// for Subnetwork resources.
 	Kind string `json:"kind,omitempty"`
 	// LogConfig: This field denotes the VPC flow logging options for this
@@ -63454,8 +64571,8 @@ type Subnetwork struct {
 	//   "IPV6_ONLY" - New VMs in this subnet will only  be assigned IPv6
 	// addresses.
 	StackType string `json:"stackType,omitempty"`
-	// State: [Output Only] The state of the subnetwork, which can be one of
-	// the
+	// State: Output only. [Output Only] The state of the subnetwork, which can be
+	// one of the
 	// following values:READY: Subnetwork is created and ready to useDRAINING: only
 	// applicable to subnetworks that have the
 	// purpose set to INTERNAL_HTTPS_LOAD_BALANCER and indicates that
@@ -63482,15 +64599,15 @@ type Subnetwork struct {
 
 	// ServerResponse contains the HTTP response code and headers from the server.
 	googleapi.ServerResponse `json:"-"`
-	// ForceSendFields is a list of field names (e.g. "CreationTimestamp") to
-	// unconditionally include in API requests. By default, fields with empty or
-	// default values are omitted from API requests. See
-	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
-	// details.
+	// ForceSendFields is a list of field names (e.g.
+	// "AllowSubnetCidrRoutesOverlap") to unconditionally include in API requests.
+	// By default, fields with empty or default values are omitted from API
+	// requests. See https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields
+	// for more details.
 	ForceSendFields []string `json:"-"`
-	// NullFields is a list of field names (e.g. "CreationTimestamp") to include in
-	// API requests with the JSON null value. By default, fields with empty values
-	// are omitted from API requests. See
+	// NullFields is a list of field names (e.g. "AllowSubnetCidrRoutesOverlap") to
+	// include in API requests with the JSON null value. By default, fields with
+	// empty values are omitted from API requests. See
 	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
 	NullFields []string `json:"-"`
 }
@@ -63505,8 +64622,8 @@ type SubnetworkAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of SubnetworksScopedList resources.
 	Items map[string]SubnetworksScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#subnetworkAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#subnetworkAggregatedList for aggregated lists of
 	// subnetworks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -63517,9 +64634,9 @@ type SubnetworkAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SubnetworkAggregatedListWarning `json:"warning,omitempty"`
@@ -63690,7 +64807,8 @@ type SubnetworkList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Subnetwork resources.
 	Items []*Subnetwork `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#subnetworkList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#subnetworkList
 	// for lists of subnetworks.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -63701,7 +64819,7 @@ type SubnetworkList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *SubnetworkListWarning `json:"warning,omitempty"`
@@ -64655,7 +65773,8 @@ func (s Tags) MarshalJSON() ([]byte, error) {
 // gRPC Proxy references a URL map that specifies how traffic is routed to
 // gRPC backend services.
 type TargetGrpcProxy struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -64673,12 +65792,12 @@ type TargetGrpcProxy struct {
 	// latest fingerprint, make a get() request to retrieve the
 	// TargetGrpcProxy.
 	Fingerprint string `json:"fingerprint,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for
-	// target grpc proxies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#targetGrpcProxy for target grpc proxies.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -64691,9 +65810,10 @@ type TargetGrpcProxy struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// SelfLinkWithId: [Output Only] Server-defined URL with id for the resource.
+	// SelfLinkWithId: Output only. [Output Only] Server-defined URL with id for
+	// the resource.
 	SelfLinkWithId string `json:"selfLinkWithId,omitempty"`
 	// UrlMap: URL to the UrlMap resource that defines the mapping from URL to
 	// the
@@ -64743,8 +65863,8 @@ type TargetGrpcProxyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetGrpcProxy resources.
 	Items []*TargetGrpcProxy `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#targetGrpcProxy for
-	// target grpc proxies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#targetGrpcProxy for target grpc proxies.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -65107,7 +66227,8 @@ func (s TargetHttpProxiesScopedListWarningData) MarshalJSON() ([]byte, error) {
 // and
 // Forwarding rule concepts.
 type TargetHttpProxy struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -65140,7 +66261,8 @@ type TargetHttpProxy struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of resource. Always compute#targetHttpProxy
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#targetHttpProxy
 	// for target HTTP proxies.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -65170,8 +66292,8 @@ type TargetHttpProxy struct {
 	//
 	// The default is false.
 	ProxyBind bool `json:"proxyBind,omitempty"`
-	// Region: [Output Only] URL of the region where the regional Target HTTP
-	// Proxy
+	// Region: Output only. [Output Only] URL of the region where the regional
+	// Target HTTP Proxy
 	// resides. This field is not applicable to global Target HTTP Proxies.
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
@@ -65205,7 +66327,7 @@ type TargetHttpProxyAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetHttpProxiesScopedList resources.
 	Items map[string]TargetHttpProxiesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#targetHttpProxyAggregatedList for lists of Target
 	// HTTP
 	// Proxies.
@@ -65218,9 +66340,9 @@ type TargetHttpProxyAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -65249,7 +66371,8 @@ type TargetHttpProxyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetHttpProxy resources.
 	Items []*TargetHttpProxy `json:"items,omitempty"`
-	// Kind: Type of resource. Always compute#targetHttpProxyList for lists
+	// Kind: Output only. Type of resource. Always compute#targetHttpProxyList for
+	// lists
 	// of target HTTP proxies.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -65260,7 +66383,7 @@ type TargetHttpProxyList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetHttpProxyListWarning `json:"warning,omitempty"`
@@ -65725,7 +66848,8 @@ type TargetHttpsProxy struct {
 	// is//certificatemanager.googleapis.com/projects/{project}/locations/{location}
 	// /certificateMaps/{resourceName}.
 	CertificateMap string `json:"certificateMap,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -65758,8 +66882,8 @@ type TargetHttpsProxy struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetHttpsProxy for
-	// target HTTPS proxies.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetHttpsProxy for target HTTPS proxies.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -65810,7 +66934,7 @@ type TargetHttpsProxy struct {
 	// if
 	// no QUIC override has been specified in the request.
 	QuicOverride string `json:"quicOverride,omitempty"`
-	// Region: [Output Only] URL of the region where the regional
+	// Region: Output only. [Output Only] URL of the region where the regional
 	// TargetHttpsProxy
 	// resides. This field is not applicable to global TargetHttpsProxies.
 	Region string `json:"region,omitempty"`
@@ -65970,7 +67094,7 @@ type TargetHttpsProxyAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetHttpsProxiesScopedList resources.
 	Items map[string]TargetHttpsProxiesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#targetHttpsProxyAggregatedList for lists of Target
 	// HTTP Proxies.
 	Kind string `json:"kind,omitempty"`
@@ -65982,9 +67106,9 @@ type TargetHttpsProxyAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetHttpsProxyAggregatedListWarning `json:"warning,omitempty"`
@@ -66155,7 +67279,8 @@ type TargetHttpsProxyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetHttpsProxy resources.
 	Items []*TargetHttpsProxy `json:"items,omitempty"`
-	// Kind: Type of resource. Always compute#targetHttpsProxyList for
+	// Kind: Output only. Type of resource. Always compute#targetHttpsProxyList
+	// for
 	// lists of target HTTPS proxies.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -66166,7 +67291,7 @@ type TargetHttpsProxyList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetHttpsProxyListWarning `json:"warning,omitempty"`
@@ -66340,7 +67465,8 @@ func (s TargetHttpsProxyListWarningData) MarshalJSON() ([]byte, error) {
 // For more information, readTarget
 // instances.
 type TargetInstance struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -66365,8 +67491,8 @@ type TargetInstance struct {
 	//    - projects/project/zones/zone/instances/instance
 	//    - zones/zone/instances/instance
 	Instance string `json:"instance,omitempty"`
-	// Kind: [Output Only] The type of the resource. Alwayscompute#targetInstance
-	// for target instances.
+	// Kind: Output only. [Output Only] The type of the resource.
+	// Alwayscompute#targetInstance for target instances.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -66398,7 +67524,8 @@ type TargetInstance struct {
 	SecurityPolicy string `json:"securityPolicy,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Zone: [Output Only] URL of the zone where the target instance resides.
+	// Zone: Output only. [Output Only] URL of the zone where the target instance
+	// resides.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
 	Zone string `json:"zone,omitempty"`
@@ -66428,7 +67555,7 @@ type TargetInstanceAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetInstance resources.
 	Items map[string]TargetInstancesScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -66438,9 +67565,9 @@ type TargetInstanceAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetInstanceAggregatedListWarning `json:"warning,omitempty"`
@@ -66611,7 +67738,7 @@ type TargetInstanceList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetInstance resources.
 	Items []*TargetInstance `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -66621,7 +67748,7 @@ type TargetInstanceList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetInstanceListWarning `json:"warning,omitempty"`
@@ -66975,7 +68102,8 @@ type TargetPool struct {
 	// mode, where traffic will be spread to the healthy instances with the
 	// best effort, or to all instances when no instance is healthy.
 	BackupPool string `json:"backupPool,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -67016,7 +68144,8 @@ type TargetPool struct {
 	// this pool.
 	// They must live in zones contained in the same region as this pool.
 	Instances []string `json:"instances,omitempty"`
-	// Kind: [Output Only] Type of the resource. Always compute#targetPool
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#targetPool
 	// for target pools.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -67030,7 +68159,8 @@ type TargetPool struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Region: [Output Only] URL of the region where the target pool resides.
+	// Region: Output only. [Output Only] URL of the region where the target pool
+	// resides.
 	Region string `json:"region,omitempty"`
 	// SecurityPolicy: [Output Only] The resource URL for the security policy
 	// associated with this
@@ -67132,8 +68262,8 @@ type TargetPoolAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetPool resources.
 	Items map[string]TargetPoolsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetPoolAggregatedList
-	// for aggregated lists of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetPoolAggregatedList for aggregated lists of
 	// target pools.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -67144,9 +68274,9 @@ type TargetPoolAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetPoolAggregatedListWarning `json:"warning,omitempty"`
@@ -67313,8 +68443,8 @@ func (s TargetPoolAggregatedListWarningData) MarshalJSON() ([]byte, error) {
 
 type TargetPoolInstanceHealth struct {
 	HealthStatus []*HealthStatus `json:"healthStatus,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetPoolInstanceHealth
-	// when checking the health of
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetPoolInstanceHealth when checking the health of
 	// an instance.
 	Kind string `json:"kind,omitempty"`
 
@@ -67344,7 +68474,8 @@ type TargetPoolList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetPool resources.
 	Items []*TargetPool `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#targetPoolList
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#targetPoolList
 	// for lists of target pools.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -67355,7 +68486,7 @@ type TargetPoolList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetPoolListWarning `json:"warning,omitempty"`
@@ -67921,7 +69052,8 @@ type TargetSslProxy struct {
 	// is//certificatemanager.googleapis.com/projects/{project}/locations/{location}
 	// /certificateMaps/{resourceName}.
 	CertificateMap string `json:"certificateMap,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -67932,8 +69064,8 @@ type TargetSslProxy struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#targetSslProxy for
-	// target SSL proxies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#targetSslProxy for target SSL proxies.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -68000,7 +69132,7 @@ type TargetSslProxyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetSslProxy resources.
 	Items []*TargetSslProxy `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -68010,7 +69142,7 @@ type TargetSslProxyList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetSslProxyListWarning `json:"warning,omitempty"`
@@ -68396,7 +69528,8 @@ func (s TargetTcpProxiesSetProxyHeaderRequest) MarshalJSON() ([]byte, error) {
 // Network
 // Load Balancer overview.
 type TargetTcpProxy struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -68407,8 +69540,8 @@ type TargetTcpProxy struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#targetTcpProxy for
-	// target TCP proxies.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#targetTcpProxy for target TCP proxies.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -68446,8 +69579,8 @@ type TargetTcpProxy struct {
 	//   "NONE"
 	//   "PROXY_V1"
 	ProxyHeader string `json:"proxyHeader,omitempty"`
-	// Region: [Output Only] URL of the region where the regional TCP proxy
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the regional TCP
+	// proxy resides.
 	// This field is not applicable to global TCP proxy.
 	Region string `json:"region,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for the resource.
@@ -68480,7 +69613,7 @@ type TargetTcpProxyAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetTcpProxiesScopedList resources.
 	Items map[string]TargetTcpProxiesScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#targetTcpProxyAggregatedList for lists of Target
 	// TCP Proxies.
 	Kind string `json:"kind,omitempty"`
@@ -68492,9 +69625,9 @@ type TargetTcpProxyAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetTcpProxyAggregatedListWarning `json:"warning,omitempty"`
@@ -68665,7 +69798,7 @@ type TargetTcpProxyList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetTcpProxy resources.
 	Items []*TargetTcpProxy `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -68675,7 +69808,7 @@ type TargetTcpProxyList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetTcpProxyListWarning `json:"warning,omitempty"`
@@ -68845,7 +69978,8 @@ func (s TargetTcpProxyListWarningData) MarshalJSON() ([]byte, error) {
 // For more information, read thethe
 // Cloud VPN Overview.
 type TargetVpnGateway struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -68862,8 +69996,8 @@ type TargetVpnGateway struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetVpnGateway for
-	// target VPN gateways.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetVpnGateway for target VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
 	// TargetVpnGateway, which
@@ -68945,8 +70079,8 @@ type TargetVpnGatewayAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetVpnGateway resources.
 	Items map[string]TargetVpnGatewaysScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetVpnGateway for
-	// target VPN gateways.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetVpnGateway for target VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -68956,9 +70090,9 @@ type TargetVpnGatewayAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetVpnGatewayAggregatedListWarning `json:"warning,omitempty"`
@@ -69129,8 +70263,8 @@ type TargetVpnGatewayList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of TargetVpnGateway resources.
 	Items []*TargetVpnGateway `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Alwayscompute#targetVpnGateway for
-	// target VPN gateways.
+	// Kind: Output only. [Output Only] Type of resource.
+	// Alwayscompute#targetVpnGateway for target VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -69140,7 +70274,7 @@ type TargetVpnGatewayList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *TargetVpnGatewayListWarning `json:"warning,omitempty"`
@@ -69710,7 +70844,8 @@ func (s UpcomingMaintenance) MarshalJSON() ([]byte, error) {
 // information, read URL
 // Map Concepts.
 type UrlMap struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// DefaultCustomErrorResponsePolicy: defaultCustomErrorResponsePolicy specifies
@@ -69838,7 +70973,8 @@ type UrlMap struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#urlMaps for
+	// Kind: Output only. [Output Only] Type of the resource. Always
+	// compute#urlMaps for
 	// url maps.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
@@ -69854,8 +70990,8 @@ type UrlMap struct {
 	Name string `json:"name,omitempty"`
 	// PathMatchers: The list of named PathMatchers to use against the URL.
 	PathMatchers []*PathMatcher `json:"pathMatchers,omitempty"`
-	// Region: [Output Only] URL of the region where the regional URL map
-	// resides.
+	// Region: Output only. [Output Only] URL of the region where the regional URL
+	// map resides.
 	// This field is not applicable to global URL maps.
 	// You must specify this field as part of the HTTP request URL. It is
 	// not settable as a field in the request body.
@@ -69896,7 +71032,7 @@ type UrlMapList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of UrlMap resources.
 	Items []*UrlMap `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -69906,7 +71042,7 @@ type UrlMapList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *UrlMapListWarning `json:"warning,omitempty"`
@@ -70212,7 +71348,7 @@ type UrlMapsAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of UrlMapsScopedList resources.
 	Items map[string]UrlMapsScopedList `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -70222,9 +71358,9 @@ type UrlMapsAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *UrlMapsAggregatedListWarning `json:"warning,omitempty"`
@@ -70698,12 +71834,12 @@ func (s UrlRewrite) MarshalJSON() ([]byte, error) {
 // UsableSubnetwork: Subnetwork which the current user has
 // compute.subnetworks.use permission on.
 type UsableSubnetwork struct {
-	// ExternalIpv6Prefix: [Output Only] The external IPv6 address range that is
-	// assigned to this
+	// ExternalIpv6Prefix: Output only. [Output Only] The external IPv6 address
+	// range that is assigned to this
 	// subnetwork.
 	ExternalIpv6Prefix string `json:"externalIpv6Prefix,omitempty"`
-	// InternalIpv6Prefix: [Output Only] The internal IPv6 address range that is
-	// assigned to this
+	// InternalIpv6Prefix: Output only. [Output Only] The internal IPv6 address
+	// range that is assigned to this
 	// subnetwork.
 	InternalIpv6Prefix string `json:"internalIpv6Prefix,omitempty"`
 	// IpCidrRange: The range of internal addresses that are owned by this
@@ -70828,7 +71964,7 @@ type UsableSubnetworksAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output] A list of usable subnetwork URLs.
 	Items []*UsableSubnetwork `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#usableSubnetworksAggregatedList for aggregated lists
 	// of usable subnetworks.
 	Kind string `json:"kind,omitempty"`
@@ -70843,13 +71979,13 @@ type UsableSubnetworksAggregatedList struct {
 	// still should be used to get the
 	// next page of results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// ScopedWarnings: [Output Only] Informational warning messages for failures
-	// encountered from
+	// ScopedWarnings: Output only. [Output Only] Informational warning messages
+	// for failures encountered from
 	// scopes.
 	ScopedWarnings []*SubnetworksScopedWarning `json:"scopedWarnings,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *UsableSubnetworksAggregatedListWarning `json:"warning,omitempty"`
@@ -71055,7 +72191,8 @@ func (s UsageExportLocation) MarshalJSON() ([]byte, error) {
 // VmEndpointNatMappings: Contain information of Nat mapping for a VM endpoint
 // (i.e., NIC).
 type VmEndpointNatMappings struct {
-	// InstanceName: Name of the VM instance which the endpoint belongs to
+	// InstanceName: Output only. Name of the VM instance which the endpoint
+	// belongs to
 	InstanceName         string                                       `json:"instanceName,omitempty"`
 	InterfaceNatMappings []*VmEndpointNatMappingsInterfaceNatMappings `json:"interfaceNatMappings,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "InstanceName") to
@@ -71079,37 +72216,39 @@ func (s VmEndpointNatMappings) MarshalJSON() ([]byte, error) {
 // VmEndpointNatMappingsInterfaceNatMappings: Contain information of Nat
 // mapping for an interface of this endpoint.
 type VmEndpointNatMappingsInterfaceNatMappings struct {
-	// DrainNatIpPortRanges: List of all drain IP:port-range mappings assigned to
-	// this interface.
+	// DrainNatIpPortRanges: Output only. List of all drain IP:port-range mappings
+	// assigned to this interface.
 	// These ranges are inclusive, that is, both the first and the last
 	// ports can be used for NAT. Example:
 	// ["2.2.2.2:12345-12355",
 	// "1.1.1.1:2234-2234"].
 	DrainNatIpPortRanges []string `json:"drainNatIpPortRanges,omitempty"`
-	// NatIpPortRanges: A list of all IP:port-range mappings assigned to this
-	// interface.
+	// NatIpPortRanges: Output only. A list of all IP:port-range mappings assigned
+	// to this interface.
 	// These ranges are inclusive, that is, both the first and the last
 	// ports can be used for NAT. Example:
 	// ["2.2.2.2:12345-12355",
 	// "1.1.1.1:2234-2234"].
 	NatIpPortRanges []string `json:"natIpPortRanges,omitempty"`
-	// NumTotalDrainNatPorts: Total number of drain ports across all NAT IPs
-	// allocated to this
+	// NumTotalDrainNatPorts: Output only. Total number of drain ports across all
+	// NAT IPs allocated to this
 	// interface. It equals to the aggregated port number in the
 	// field
 	// drain_nat_ip_port_ranges.
 	NumTotalDrainNatPorts int64 `json:"numTotalDrainNatPorts,omitempty"`
-	// NumTotalNatPorts: Total number of ports across all NAT IPs allocated to this
-	// interface.
+	// NumTotalNatPorts: Output only. Total number of ports across all NAT IPs
+	// allocated to this interface.
 	// It equals to the aggregated port number in the field nat_ip_port_ranges.
 	NumTotalNatPorts int64 `json:"numTotalNatPorts,omitempty"`
-	// RuleMappings: Information about mappings provided by rules in this NAT.
+	// RuleMappings: Output only. Information about mappings provided by rules in
+	// this NAT.
 	RuleMappings []*VmEndpointNatMappingsInterfaceNatMappingsNatRuleMappings `json:"ruleMappings,omitempty"`
-	// SourceAliasIpRange: Alias IP range for this interface endpoint.
+	// SourceAliasIpRange: Output only. Alias IP range for this interface
+	// endpoint.
 	// It will be a private (RFC 1918) IP range.
 	// Examples: "10.33.4.55/32", or "192.168.5.0/24".
 	SourceAliasIpRange string `json:"sourceAliasIpRange,omitempty"`
-	// SourceVirtualIp: Primary IP of the VM for this NIC.
+	// SourceVirtualIp: Output only. Primary IP of the VM for this NIC.
 	SourceVirtualIp string `json:"sourceVirtualIp,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "DrainNatIpPortRanges") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -71132,34 +72271,34 @@ func (s VmEndpointNatMappingsInterfaceNatMappings) MarshalJSON() ([]byte, error)
 // VmEndpointNatMappingsInterfaceNatMappingsNatRuleMappings: Contains
 // information of NAT Mappings provided by a NAT Rule.
 type VmEndpointNatMappingsInterfaceNatMappingsNatRuleMappings struct {
-	// DrainNatIpPortRanges: List of all drain IP:port-range mappings assigned to
-	// this interface
+	// DrainNatIpPortRanges: Output only. List of all drain IP:port-range mappings
+	// assigned to this interface
 	// by this rule.
 	// These ranges are inclusive, that is, both the first and the last
 	// ports can be used for NAT. Example:
 	// ["2.2.2.2:12345-12355",
 	// "1.1.1.1:2234-2234"].
 	DrainNatIpPortRanges []string `json:"drainNatIpPortRanges,omitempty"`
-	// NatIpPortRanges: A list of all IP:port-range mappings assigned to this
-	// interface by this
+	// NatIpPortRanges: Output only. A list of all IP:port-range mappings assigned
+	// to this interface by this
 	// rule.
 	// These ranges are inclusive, that is, both the first and the last
 	// ports can be used for NAT. Example:
 	// ["2.2.2.2:12345-12355",
 	// "1.1.1.1:2234-2234"].
 	NatIpPortRanges []string `json:"natIpPortRanges,omitempty"`
-	// NumTotalDrainNatPorts: Total number of drain ports across all NAT IPs
-	// allocated to this
+	// NumTotalDrainNatPorts: Output only. Total number of drain ports across all
+	// NAT IPs allocated to this
 	// interface by this rule.
 	// It equals the aggregated port number in the field
 	// drain_nat_ip_port_ranges.
 	NumTotalDrainNatPorts int64 `json:"numTotalDrainNatPorts,omitempty"`
-	// NumTotalNatPorts: Total number of ports across all NAT IPs allocated to this
-	// interface
+	// NumTotalNatPorts: Output only. Total number of ports across all NAT IPs
+	// allocated to this interface
 	// by this rule.
 	// It equals the aggregated port number in the field nat_ip_port_ranges.
 	NumTotalNatPorts int64 `json:"numTotalNatPorts,omitempty"`
-	// RuleNumber: Rule number of the NAT Rule.
+	// RuleNumber: Output only. Rule number of the NAT Rule.
 	RuleNumber int64 `json:"ruleNumber,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "DrainNatIpPortRanges") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -71185,7 +72324,7 @@ type VmEndpointNatMappingsList struct {
 	// is
 	// defined by the server.
 	Id string `json:"id,omitempty"`
-	// Kind: [Output Only] Type of resource.
+	// Kind: Output only. [Output Only] Type of resource.
 	// Alwayscompute#vmEndpointNatMappingsList for lists of Nat mappings of
 	// VM endpoints.
 	Kind string `json:"kind,omitempty"`
@@ -71199,7 +72338,7 @@ type VmEndpointNatMappingsList struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// Result: [Output Only] A list of Nat mapping information of VM endpoints.
 	Result []*VmEndpointNatMappings `json:"result,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *VmEndpointNatMappingsListWarning `json:"warning,omitempty"`
@@ -71374,7 +72513,8 @@ func (s VmEndpointNatMappingsListWarningData) MarshalJSON() ([]byte, error) {
 // For more information about Cloud HA VPN solutions, see
 // Cloud VPN topologies .
 type VpnGateway struct {
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -71391,11 +72531,12 @@ type VpnGateway struct {
 	//   "IPV6" - Every HA-VPN gateway interface is configured with an IPv6
 	// address.
 	GatewayIpVersion string `json:"gatewayIpVersion,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource. This identifier
-	// is
+	// Id: Output only. [Output Only] The unique identifier for the resource. This
+	// identifier is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnGateway for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnGateway
+	// for
 	// VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
@@ -71431,9 +72572,10 @@ type VpnGateway struct {
 	// by the
 	// client when the VPN gateway is created.
 	Network string `json:"network,omitempty"`
-	// Region: [Output Only] URL of the region where the VPN gateway resides.
+	// Region: Output only. [Output Only] URL of the region where the VPN gateway
+	// resides.
 	Region string `json:"region,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// StackType: The stack type for this VPN gateway to identify the IP protocols
 	// that are
@@ -71474,7 +72616,8 @@ type VpnGatewayAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of VpnGateway resources.
 	Items map[string]VpnGatewaysScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnGateway for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnGateway
+	// for
 	// VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -71485,9 +72628,9 @@ type VpnGatewayAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *VpnGatewayAggregatedListWarning `json:"warning,omitempty"`
@@ -71658,7 +72801,8 @@ type VpnGatewayList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of VpnGateway resources.
 	Items []*VpnGateway `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnGateway for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnGateway
+	// for
 	// VPN gateways.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -71669,7 +72813,7 @@ type VpnGatewayList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *VpnGatewayListWarning `json:"warning,omitempty"`
@@ -71834,7 +72978,7 @@ func (s VpnGatewayListWarningData) MarshalJSON() ([]byte, error) {
 }
 
 type VpnGatewayStatus struct {
-	// VpnConnections: List of VPN connection for this VpnGateway.
+	// VpnConnections: Output only. List of VPN connection for this VpnGateway.
 	VpnConnections []*VpnGatewayStatusVpnConnection `json:"vpnConnections,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "VpnConnections") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -71904,15 +73048,15 @@ func (s VpnGatewayStatusHighAvailabilityRequirementState) MarshalJSON() ([]byte,
 
 // VpnGatewayStatusTunnel: Contains some information about a VPN tunnel.
 type VpnGatewayStatusTunnel struct {
-	// LocalGatewayInterface: The VPN gateway interface this VPN tunnel is
-	// associated with.
+	// LocalGatewayInterface: Output only. The VPN gateway interface this VPN
+	// tunnel is associated with.
 	LocalGatewayInterface int64 `json:"localGatewayInterface,omitempty"`
-	// PeerGatewayInterface: The peer gateway interface this VPN tunnel is
-	// connected to, the peer
+	// PeerGatewayInterface: Output only. The peer gateway interface this VPN
+	// tunnel is connected to, the peer
 	// gateway could either be an external VPN gateway or a Google Cloud
 	// VPN gateway.
 	PeerGatewayInterface int64 `json:"peerGatewayInterface,omitempty"`
-	// TunnelUrl: URL reference to the VPN tunnel.
+	// TunnelUrl: Output only. URL reference to the VPN tunnel.
 	TunnelUrl string `json:"tunnelUrl,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "LocalGatewayInterface") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -71938,13 +73082,13 @@ func (s VpnGatewayStatusTunnel) MarshalJSON() ([]byte, error) {
 // VPN
 // gateway or a Google Cloud VPN gateway.
 type VpnGatewayStatusVpnConnection struct {
-	// PeerExternalGateway: URL reference to the peer external VPN gateways to
-	// which the VPN tunnels
+	// PeerExternalGateway: Output only. URL reference to the peer external VPN
+	// gateways to which the VPN tunnels
 	// in this VPN connection are connected.
 	// This field is mutually exclusive with peer_gcp_gateway.
 	PeerExternalGateway string `json:"peerExternalGateway,omitempty"`
-	// PeerGcpGateway: URL reference to the peer side VPN gateways to which the VPN
-	// tunnels in
+	// PeerGcpGateway: Output only. URL reference to the peer side VPN gateways to
+	// which the VPN tunnels in
 	// this VPN connection are connected.
 	// This field is mutually exclusive with peer_gcp_gateway.
 	PeerGcpGateway string `json:"peerGcpGateway,omitempty"`
@@ -71972,8 +73116,8 @@ func (s VpnGatewayStatusVpnConnection) MarshalJSON() ([]byte, error) {
 
 // VpnGatewayVpnGatewayInterface: A VPN gateway interface.
 type VpnGatewayVpnGatewayInterface struct {
-	// Id: [Output Only] Numeric identifier for this VPN interface associated
-	// with
+	// Id: Output only. [Output Only] Numeric identifier for this VPN interface
+	// associated with
 	// the VPN gateway.
 	Id int64 `json:"id,omitempty"`
 	// InterconnectAttachment: URL of the VLAN attachment (interconnectAttachment)
@@ -71984,8 +73128,8 @@ type VpnGatewayVpnGatewayInterface struct {
 	// or ingress traffic for this VPN gateway interface goes through the
 	// specified VLAN attachment resource.
 	InterconnectAttachment string `json:"interconnectAttachment,omitempty"`
-	// IpAddress: [Output Only] IP address for this VPN interface associated with
-	// the VPN
+	// IpAddress: Output only. [Output Only] IP address for this VPN interface
+	// associated with the VPN
 	// gateway.
 	// The IP address could be either a regional external IP address or
 	// a regional internal IP address. The two IP addresses for a VPN gateway
@@ -72000,8 +73144,8 @@ type VpnGatewayVpnGatewayInterface struct {
 	// Interconnect) HA VPN tunnels, the IP address must be a regional external
 	// IP address.
 	IpAddress string `json:"ipAddress,omitempty"`
-	// Ipv6Address: [Output Only] IPv6 address for this VPN interface associated
-	// with the VPN
+	// Ipv6Address: Output only. [Output Only] IPv6 address for this VPN interface
+	// associated with the VPN
 	// gateway.
 	// The IPv6 address must be a regional external IPv6 address. The format is
 	// RFC 5952 format (e.g. 2001:db8::2d9:51:0:0).
@@ -72222,7 +73366,8 @@ type VpnTunnel struct {
 	// 2 of the
 	// IKE protocol.
 	CipherSuite *VpnTunnelCipherSuite `json:"cipherSuite,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of this resource. Provide this property
@@ -72240,7 +73385,8 @@ type VpnTunnel struct {
 	// VPN gateway. Acceptable IKE versions are 1 or 2.
 	// The default version is 2.
 	IkeVersion int64 `json:"ikeVersion,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnTunnel for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnTunnel
+	// for
 	// VPN tunnels.
 	Kind string `json:"kind,omitempty"`
 	// LabelFingerprint: A fingerprint for the labels being applied to this
@@ -72430,7 +73576,8 @@ type VpnTunnelAggregatedList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of VpnTunnelsScopedList resources.
 	Items map[string]VpnTunnelsScopedList `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnTunnel for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnTunnel
+	// for
 	// VPN tunnels.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -72441,9 +73588,9 @@ type VpnTunnelAggregatedList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable resources.
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *VpnTunnelAggregatedListWarning `json:"warning,omitempty"`
@@ -72634,7 +73781,8 @@ type VpnTunnelList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of VpnTunnel resources.
 	Items []*VpnTunnel `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#vpnTunnel for
+	// Kind: Output only. [Output Only] Type of resource. Always compute#vpnTunnel
+	// for
 	// VPN tunnels.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -72645,7 +73793,7 @@ type VpnTunnelList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *VpnTunnelListWarning `json:"warning,omitempty"`
@@ -73149,14 +74297,16 @@ func (s WeightedBackendService) MarshalJSON() ([]byte, error) {
 
 // Wire: A pseudowire that connects two Interconnect connections.
 type Wire struct {
-	// AdminEnabled: [Output Only] Indicates whether the wire is enabled.
+	// AdminEnabled: Output only. [Output Only] Indicates whether the wire is
+	// enabled.
 	// When false, the wire is disabled. When true and when the wire group of
 	// the wire is also enabled, the wire is enabled. Defaults to true.
 	AdminEnabled bool `json:"adminEnabled,omitempty"`
-	// Endpoints: Wire endpoints are specific Interconnect connections.
+	// Endpoints: Output only. Wire endpoints are specific Interconnect
+	// connections.
 	Endpoints []*WireEndpoint `json:"endpoints,omitempty"`
-	// Label: [Output Only] A label that identifies the wire. The format of this
-	// label
+	// Label: Output only. [Output Only] A label that identifies the wire. The
+	// format of this label
 	// combines the existing labels of the wire group endpoints and
 	// Interconnect
 	// connections used by this wire in alphabetical order as
@@ -73170,7 +74320,7 @@ type Wire struct {
 	//    labels that you entered as map keys when you specified the wire group
 	//    Interconnect objects.
 	Label string `json:"label,omitempty"`
-	// WireProperties: [Output Only] Properties of the wire.
+	// WireProperties: Output only. [Output Only] Properties of the wire.
 	WireProperties *WireProperties `json:"wireProperties,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "AdminEnabled") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -73221,7 +74371,8 @@ type WireGroup struct {
 	// to
 	// false, a given wire is enabled. Defaults to true.
 	AdminEnabled bool `json:"adminEnabled,omitempty"`
-	// CreationTimestamp: [Output Only] Creation timestamp inRFC3339
+	// CreationTimestamp: Output only. [Output Only] Creation timestamp
+	// inRFC3339
 	// text format.
 	CreationTimestamp string `json:"creationTimestamp,omitempty"`
 	// Description: An optional description of the wire group.
@@ -73233,12 +74384,12 @@ type WireGroup struct {
 	//    - Key: an RFC1035 user-specified label.
 	//    - Value: an Endpoint object.
 	Endpoints map[string]WireGroupEndpoint `json:"endpoints,omitempty"`
-	// Id: [Output Only] The unique identifier for the resource type. The
-	// server
+	// Id: Output only. [Output Only] The unique identifier for the resource type.
+	// The server
 	// generates this identifier.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#wireGroups for wire
-	// groups.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#wireGroups for wire groups.
 	Kind string `json:"kind,omitempty"`
 	// Name: Name of the resource. Provided by the client when the resource is
 	// created.
@@ -73251,16 +74402,16 @@ type WireGroup struct {
 	// which
 	// cannot be a dash.
 	Name string `json:"name,omitempty"`
-	// Reconciling: [Output Only] Indicates whether there are wire changes yet to
-	// be processed.
+	// Reconciling: Output only. [Output Only] Indicates whether there are wire
+	// changes yet to be processed.
 	Reconciling bool `json:"reconciling,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for the resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for the resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Topology: Topology details for the wire group configuration.
+	// Topology: Output only. Topology details for the wire group configuration.
 	Topology *WireGroupTopology `json:"topology,omitempty"`
 	// WireProperties: Properties for all wires in the wire group.
 	WireProperties *WireProperties `json:"wireProperties,omitempty"`
-	// Wires: The single/redundant wire(s) managed by the wire group.
+	// Wires: Output only. The single/redundant wire(s) managed by the wire group.
 	Wires []*Wire `json:"wires,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -73375,8 +74526,8 @@ type WireGroupList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of wire group resources.
 	Items []*WireGroup `json:"items,omitempty"`
-	// Kind: [Output Only] Type of the resource. Alwayscompute#wireGroups for wire
-	// groups.
+	// Kind: Output only. [Output Only] Type of the resource.
+	// Alwayscompute#wireGroups for wire groups.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -73388,7 +74539,8 @@ type WireGroupList struct {
 	NextPageToken string `json:"nextPageToken,omitempty"`
 	// SelfLink: [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
-	// Unreachables: [Output Only] Unreachable resources.
+	// Unreachables: Output only. [Output Only] Unreachable
+	// resources.
 	// end_interface: MixerListResponseWithEtagBuilder
 	Unreachables []string `json:"unreachables,omitempty"`
 	// Warning: [Output Only] Informational warning message.
@@ -73555,7 +74707,8 @@ func (s WireGroupListWarningData) MarshalJSON() ([]byte, error) {
 
 // WireGroupTopology: Topology details for the wire group.
 type WireGroupTopology struct {
-	// Endpoints: Topology details for all endpoints in the wire group.
+	// Endpoints: Output only. Topology details for all endpoints in the wire
+	// group.
 	Endpoints []*WireGroupTopologyEndpoint `json:"endpoints,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "Endpoints") to
 	// unconditionally include in API requests. By default, fields with empty or
@@ -73578,11 +74731,11 @@ func (s WireGroupTopology) MarshalJSON() ([]byte, error) {
 // WireGroupTopologyEndpoint: Topology details for a single wire group
 // endpoint.
 type WireGroupTopologyEndpoint struct {
-	// City: The InterconnectLocation.city (metropolitan area designator) that
-	// all
+	// City: Output only. The InterconnectLocation.city (metropolitan area
+	// designator) that all
 	// interconnects are located in.
 	City string `json:"city,omitempty"`
-	// Label: Endpoint label from the wire group.
+	// Label: Output only. Endpoint label from the wire group.
 	Label string `json:"label,omitempty"`
 	// ForceSendFields is a list of field names (e.g. "City") to unconditionally
 	// include in API requests. By default, fields with empty or default values are
@@ -73671,7 +74824,8 @@ type XpnHostList struct {
 	Id string `json:"id,omitempty"`
 	// Items: [Output Only] A list of shared VPC host project URLs.
 	Items []*Project `json:"items,omitempty"`
-	// Kind: [Output Only] Type of resource. Always compute#xpnHostList for
+	// Kind: Output only. [Output Only] Type of resource. Always
+	// compute#xpnHostList for
 	// lists of shared VPC hosts.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
@@ -73682,7 +74836,7 @@ type XpnHostList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *XpnHostListWarning `json:"warning,omitempty"`
@@ -73900,7 +75054,8 @@ type Zone struct {
 	// is
 	// defined by the server.
 	Id uint64 `json:"id,omitempty,string"`
-	// Kind: [Output Only] Type of the resource. Always compute#zone for
+	// Kind: Output only. [Output Only] Type of the resource. Always compute#zone
+	// for
 	// zones.
 	Kind string `json:"kind,omitempty"`
 	// Name: [Output Only] Name of the resource.
@@ -73915,7 +75070,7 @@ type Zone struct {
 	//   "DOWN"
 	//   "UP"
 	Status string `json:"status,omitempty"`
-	// SupportsPzs: [Output Only] Reserved for future use.
+	// SupportsPzs: Output only. [Output Only] Reserved for future use.
 	SupportsPzs bool `json:"supportsPzs,omitempty"`
 
 	// ServerResponse contains the HTTP response code and headers from the server.
@@ -73944,7 +75099,7 @@ type ZoneList struct {
 	Id string `json:"id,omitempty"`
 	// Items: A list of Zone resources.
 	Items []*Zone `json:"items,omitempty"`
-	// Kind: Type of resource.
+	// Kind: Output only. Type of resource.
 	Kind string `json:"kind,omitempty"`
 	// NextPageToken: [Output Only] This token allows you to get the next page of
 	// results for
@@ -73954,7 +75109,7 @@ type ZoneList struct {
 	// Subsequent list requests will have their own nextPageToken to
 	// continue paging through the results.
 	NextPageToken string `json:"nextPageToken,omitempty"`
-	// SelfLink: [Output Only] Server-defined URL for this resource.
+	// SelfLink: Output only. [Output Only] Server-defined URL for this resource.
 	SelfLink string `json:"selfLink,omitempty"`
 	// Warning: [Output Only] Informational warning message.
 	Warning *ZoneListWarning `json:"warning,omitempty"`
diff --git a/vendor/google.golang.org/api/compute/v1/compute2-gen.go b/vendor/google.golang.org/api/compute/v1/compute2-gen.go
index 6a8034bc0e..2d55e4410a 100644
--- a/vendor/google.golang.org/api/compute/v1/compute2-gen.go
+++ b/vendor/google.golang.org/api/compute/v1/compute2-gen.go
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC.
+// Copyright 2026 Google LLC.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
@@ -1996,6 +1996,120 @@ func (c *AddressesTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*Tes
 	return ret, nil
 }
 
+type AdviceCalendarModeCall struct {
+	s                         *Service
+	project                   string
+	region                    string
+	calendarmodeadvicerequest *CalendarModeAdviceRequest
+	urlParams_                gensupport.URLParams
+	ctx_                      context.Context
+	header_                   http.Header
+}
+
+// CalendarMode: Advise how, where and when to create the requested amount of
+// instances
+// with specified accelerators, within the specified time and location
+// limits.
+// The method recommends creating future reservations for the
+// requested
+// resources.
+//
+// - project: Project ID for this request.
+// - region: Name of the region for this request.
+func (r *AdviceService) CalendarMode(project string, region string, calendarmodeadvicerequest *CalendarModeAdviceRequest) *AdviceCalendarModeCall {
+	c := &AdviceCalendarModeCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.region = region
+	c.calendarmodeadvicerequest = calendarmodeadvicerequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *AdviceCalendarModeCall) Fields(s ...googleapi.Field) *AdviceCalendarModeCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *AdviceCalendarModeCall) Context(ctx context.Context) *AdviceCalendarModeCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *AdviceCalendarModeCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *AdviceCalendarModeCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.calendarmodeadvicerequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/regions/{region}/advice/calendarMode")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project": c.project,
+		"region":  c.region,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.advice.calendarMode", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.advice.calendarMode" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *CalendarModeAdviceResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *AdviceCalendarModeCall) Do(opts ...googleapi.CallOption) (*CalendarModeAdviceResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &CalendarModeAdviceResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.advice.calendarMode", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type AutoscalersAggregatedListCall struct {
 	s            *Service
 	project      string
@@ -3063,6 +3177,119 @@ func (c *AutoscalersPatchCall) Do(opts ...googleapi.CallOption) (*Operation, err
 	return ret, nil
 }
 
+type AutoscalersTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	zone                   string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+// - zone: The name of the zone for this request.
+func (r *AutoscalersService) TestIamPermissions(project string, zone string, resource string, testpermissionsrequest *TestPermissionsRequest) *AutoscalersTestIamPermissionsCall {
+	c := &AutoscalersTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.zone = zone
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *AutoscalersTestIamPermissionsCall) Fields(s ...googleapi.Field) *AutoscalersTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *AutoscalersTestIamPermissionsCall) Context(ctx context.Context) *AutoscalersTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *AutoscalersTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *AutoscalersTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/zones/{zone}/autoscalers/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"zone":     c.zone,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.autoscalers.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.autoscalers.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *AutoscalersTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.autoscalers.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type AutoscalersUpdateCall struct {
 	s          *Service
 	project    string
@@ -24549,6 +24776,115 @@ func (c *HealthChecksPatchCall) Do(opts ...googleapi.CallOption) (*Operation, er
 	return ret, nil
 }
 
+type HealthChecksTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *HealthChecksService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *HealthChecksTestIamPermissionsCall {
+	c := &HealthChecksTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *HealthChecksTestIamPermissionsCall) Fields(s ...googleapi.Field) *HealthChecksTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *HealthChecksTestIamPermissionsCall) Context(ctx context.Context) *HealthChecksTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *HealthChecksTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *HealthChecksTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/healthChecks/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.healthChecks.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.healthChecks.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *HealthChecksTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.healthChecks.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type HealthChecksUpdateCall struct {
 	s           *Service
 	project     string
@@ -25438,6 +25774,115 @@ func (c *HttpHealthChecksPatchCall) Do(opts ...googleapi.CallOption) (*Operation
 	return ret, nil
 }
 
+type HttpHealthChecksTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *HttpHealthChecksService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *HttpHealthChecksTestIamPermissionsCall {
+	c := &HttpHealthChecksTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *HttpHealthChecksTestIamPermissionsCall) Fields(s ...googleapi.Field) *HttpHealthChecksTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *HttpHealthChecksTestIamPermissionsCall) Context(ctx context.Context) *HttpHealthChecksTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *HttpHealthChecksTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *HttpHealthChecksTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/httpHealthChecks/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.httpHealthChecks.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.httpHealthChecks.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *HttpHealthChecksTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.httpHealthChecks.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type HttpHealthChecksUpdateCall struct {
 	s               *Service
 	project         string
@@ -26327,224 +26772,82 @@ func (c *HttpsHealthChecksPatchCall) Do(opts ...googleapi.CallOption) (*Operatio
 	return ret, nil
 }
 
-type HttpsHealthChecksUpdateCall struct {
-	s                *Service
-	project          string
-	httpsHealthCheck string
-	httpshealthcheck *HttpsHealthCheck
-	urlParams_       gensupport.URLParams
-	ctx_             context.Context
-	header_          http.Header
+type HttpsHealthChecksTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
 }
 
-// Update: Updates a HttpsHealthCheck resource in the specified project using
-// the data
-// included in the request.
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
 //
-// - httpsHealthCheck: Name of the HttpsHealthCheck resource to update.
 // - project: Project ID for this request.
-func (r *HttpsHealthChecksService) Update(project string, httpsHealthCheck string, httpshealthcheck *HttpsHealthCheck) *HttpsHealthChecksUpdateCall {
-	c := &HttpsHealthChecksUpdateCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+// - resource: Name or id of the resource for this request.
+func (r *HttpsHealthChecksService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *HttpsHealthChecksTestIamPermissionsCall {
+	c := &HttpsHealthChecksTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
 	c.project = project
-	c.httpsHealthCheck = httpsHealthCheck
-	c.httpshealthcheck = httpshealthcheck
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *HttpsHealthChecksUpdateCall) RequestId(requestId string) *HttpsHealthChecksUpdateCall {
-	c.urlParams_.Set("requestId", requestId)
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
 	return c
 }
 
 // Fields allows partial responses to be retrieved. See
 // https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
 // details.
-func (c *HttpsHealthChecksUpdateCall) Fields(s ...googleapi.Field) *HttpsHealthChecksUpdateCall {
+func (c *HttpsHealthChecksTestIamPermissionsCall) Fields(s ...googleapi.Field) *HttpsHealthChecksTestIamPermissionsCall {
 	c.urlParams_.Set("fields", googleapi.CombineFields(s))
 	return c
 }
 
 // Context sets the context to be used in this call's Do method.
-func (c *HttpsHealthChecksUpdateCall) Context(ctx context.Context) *HttpsHealthChecksUpdateCall {
+func (c *HttpsHealthChecksTestIamPermissionsCall) Context(ctx context.Context) *HttpsHealthChecksTestIamPermissionsCall {
 	c.ctx_ = ctx
 	return c
 }
 
 // Header returns a http.Header that can be modified by the caller to add
 // headers to the request.
-func (c *HttpsHealthChecksUpdateCall) Header() http.Header {
+func (c *HttpsHealthChecksTestIamPermissionsCall) Header() http.Header {
 	if c.header_ == nil {
 		c.header_ = make(http.Header)
 	}
 	return c.header_
 }
 
-func (c *HttpsHealthChecksUpdateCall) doRequest(alt string) (*http.Response, error) {
+func (c *HttpsHealthChecksTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
 	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
-	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.httpshealthcheck)
-	if err != nil {
-		return nil, err
-	}
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/httpsHealthChecks/{httpsHealthCheck}")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("PUT", urls, body)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":          c.project,
-		"httpsHealthCheck": c.httpsHealthCheck,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.update", "request", internallog.HTTPRequest(req, body.Bytes()))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.httpsHealthChecks.update" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *HttpsHealthChecksUpdateCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
 	if err != nil {
 		return nil, err
 	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.update", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type ImageFamilyViewsGetCall struct {
-	s            *Service
-	project      string
-	zone         string
-	family       string
-	urlParams_   gensupport.URLParams
-	ifNoneMatch_ string
-	ctx_         context.Context
-	header_      http.Header
-}
-
-// Get: Returns the latest image that is part of an image family, is
-// not
-// deprecated and is rolled out in the specified zone.
-//
-// - family: Name of the image family to search for.
-// - project: Project ID for this request.
-// - zone: The name of the zone for this request.
-func (r *ImageFamilyViewsService) Get(project string, zone string, family string) *ImageFamilyViewsGetCall {
-	c := &ImageFamilyViewsGetCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.zone = zone
-	c.family = family
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *ImageFamilyViewsGetCall) Fields(s ...googleapi.Field) *ImageFamilyViewsGetCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// IfNoneMatch sets an optional parameter which makes the operation fail if the
-// object's ETag matches the given value. This is useful for getting updates
-// only after the object has changed since the last request.
-func (c *ImageFamilyViewsGetCall) IfNoneMatch(entityTag string) *ImageFamilyViewsGetCall {
-	c.ifNoneMatch_ = entityTag
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *ImageFamilyViewsGetCall) Context(ctx context.Context) *ImageFamilyViewsGetCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *ImageFamilyViewsGetCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *ImageFamilyViewsGetCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	if c.ifNoneMatch_ != "" {
-		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
-	}
 	c.urlParams_.Set("alt", alt)
 	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/zones/{zone}/imageFamilyViews/{family}")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/httpsHealthChecks/{resource}/testIamPermissions")
 	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("GET", urls, nil)
+	req, err := http.NewRequest("POST", urls, body)
 	if err != nil {
 		return nil, err
 	}
 	req.Header = reqHeaders
 	googleapi.Expand(req.URL, map[string]string{
-		"project": c.project,
-		"zone":    c.zone,
-		"family":  c.family,
+		"project":  c.project,
+		"resource": c.resource,
 	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.imageFamilyViews.get", "request", internallog.HTTPRequest(req, nil))
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
 	return gensupport.SendRequest(c.ctx_, c.s.client, req)
 }
 
-// Do executes the "compute.imageFamilyViews.get" call.
+// Do executes the "compute.httpsHealthChecks.testIamPermissions" call.
 // Any non-2xx status code is an error. Response headers are in either
-// *ImageFamilyView.ServerResponse.Header or (if a response was returned at
-// all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to
-// check whether the returned error was because http.StatusNotModified was
-// returned.
-func (c *ImageFamilyViewsGetCall) Do(opts ...googleapi.CallOption) (*ImageFamilyView, error) {
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *HttpsHealthChecksTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
 	gensupport.SetOptions(c.urlParams_, opts...)
 	res, err := c.doRequest("json")
 	if res != nil && res.StatusCode == http.StatusNotModified {
@@ -26563,7 +26866,7 @@ func (c *ImageFamilyViewsGetCall) Do(opts ...googleapi.CallOption) (*ImageFamily
 	if err := googleapi.CheckResponse(res); err != nil {
 		return nil, gensupport.WrapError(err)
 	}
-	ret := &ImageFamilyView{
+	ret := &TestPermissionsResponse{
 		ServerResponse: googleapi.ServerResponse{
 			Header:         res.Header,
 			HTTPStatusCode: res.StatusCode,
@@ -26574,27 +26877,31 @@ func (c *ImageFamilyViewsGetCall) Do(opts ...googleapi.CallOption) (*ImageFamily
 	if err != nil {
 		return nil, err
 	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.imageFamilyViews.get", "response", internallog.HTTPResponse(res, b))
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.testIamPermissions", "response", internallog.HTTPResponse(res, b))
 	return ret, nil
 }
 
-type ImagesDeleteCall struct {
-	s          *Service
-	project    string
-	image      string
-	urlParams_ gensupport.URLParams
-	ctx_       context.Context
-	header_    http.Header
+type HttpsHealthChecksUpdateCall struct {
+	s                *Service
+	project          string
+	httpsHealthCheck string
+	httpshealthcheck *HttpsHealthCheck
+	urlParams_       gensupport.URLParams
+	ctx_             context.Context
+	header_          http.Header
 }
 
-// Delete: Deletes the specified image.
+// Update: Updates a HttpsHealthCheck resource in the specified project using
+// the data
+// included in the request.
 //
-// - image: Name of the image resource to delete.
+// - httpsHealthCheck: Name of the HttpsHealthCheck resource to update.
 // - project: Project ID for this request.
-func (r *ImagesService) Delete(project string, image string) *ImagesDeleteCall {
-	c := &ImagesDeleteCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+func (r *HttpsHealthChecksService) Update(project string, httpsHealthCheck string, httpshealthcheck *HttpsHealthCheck) *HttpsHealthChecksUpdateCall {
+	c := &HttpsHealthChecksUpdateCall{s: r.s, urlParams_: make(gensupport.URLParams)}
 	c.project = project
-	c.image = image
+	c.httpsHealthCheck = httpsHealthCheck
+	c.httpshealthcheck = httpshealthcheck
 	return c
 }
 
@@ -26615,7 +26922,7 @@ func (r *ImagesService) Delete(project string, image string) *ImagesDeleteCall {
 // a valid UUID with the exception that zero UUID is not
 // supported
 // (00000000-0000-0000-0000-000000000000).
-func (c *ImagesDeleteCall) RequestId(requestId string) *ImagesDeleteCall {
+func (c *HttpsHealthChecksUpdateCall) RequestId(requestId string) *HttpsHealthChecksUpdateCall {
 	c.urlParams_.Set("requestId", requestId)
 	return c
 }
@@ -26623,51 +26930,298 @@ func (c *ImagesDeleteCall) RequestId(requestId string) *ImagesDeleteCall {
 // Fields allows partial responses to be retrieved. See
 // https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
 // details.
-func (c *ImagesDeleteCall) Fields(s ...googleapi.Field) *ImagesDeleteCall {
+func (c *HttpsHealthChecksUpdateCall) Fields(s ...googleapi.Field) *HttpsHealthChecksUpdateCall {
 	c.urlParams_.Set("fields", googleapi.CombineFields(s))
 	return c
 }
 
 // Context sets the context to be used in this call's Do method.
-func (c *ImagesDeleteCall) Context(ctx context.Context) *ImagesDeleteCall {
+func (c *HttpsHealthChecksUpdateCall) Context(ctx context.Context) *HttpsHealthChecksUpdateCall {
 	c.ctx_ = ctx
 	return c
 }
 
 // Header returns a http.Header that can be modified by the caller to add
 // headers to the request.
-func (c *ImagesDeleteCall) Header() http.Header {
+func (c *HttpsHealthChecksUpdateCall) Header() http.Header {
 	if c.header_ == nil {
 		c.header_ = make(http.Header)
 	}
 	return c.header_
 }
 
-func (c *ImagesDeleteCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+func (c *HttpsHealthChecksUpdateCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.httpshealthcheck)
+	if err != nil {
+		return nil, err
+	}
 	c.urlParams_.Set("alt", alt)
 	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/images/{image}")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/httpsHealthChecks/{httpsHealthCheck}")
 	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("DELETE", urls, nil)
+	req, err := http.NewRequest("PUT", urls, body)
 	if err != nil {
 		return nil, err
 	}
 	req.Header = reqHeaders
 	googleapi.Expand(req.URL, map[string]string{
-		"project": c.project,
-		"image":   c.image,
+		"project":          c.project,
+		"httpsHealthCheck": c.httpsHealthCheck,
 	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.images.delete", "request", internallog.HTTPRequest(req, nil))
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.update", "request", internallog.HTTPRequest(req, body.Bytes()))
 	return gensupport.SendRequest(c.ctx_, c.s.client, req)
 }
 
-// Do executes the "compute.images.delete" call.
+// Do executes the "compute.httpsHealthChecks.update" call.
 // Any non-2xx status code is an error. Response headers are in either
 // *Operation.ServerResponse.Header or (if a response was returned at all) in
 // error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
 // whether the returned error was because http.StatusNotModified was returned.
-func (c *ImagesDeleteCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+func (c *HttpsHealthChecksUpdateCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.httpsHealthChecks.update", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type ImageFamilyViewsGetCall struct {
+	s            *Service
+	project      string
+	zone         string
+	family       string
+	urlParams_   gensupport.URLParams
+	ifNoneMatch_ string
+	ctx_         context.Context
+	header_      http.Header
+}
+
+// Get: Returns the latest image that is part of an image family, is
+// not
+// deprecated and is rolled out in the specified zone.
+//
+// - family: Name of the image family to search for.
+// - project: Project ID for this request.
+// - zone: The name of the zone for this request.
+func (r *ImageFamilyViewsService) Get(project string, zone string, family string) *ImageFamilyViewsGetCall {
+	c := &ImageFamilyViewsGetCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.zone = zone
+	c.family = family
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *ImageFamilyViewsGetCall) Fields(s ...googleapi.Field) *ImageFamilyViewsGetCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// IfNoneMatch sets an optional parameter which makes the operation fail if the
+// object's ETag matches the given value. This is useful for getting updates
+// only after the object has changed since the last request.
+func (c *ImageFamilyViewsGetCall) IfNoneMatch(entityTag string) *ImageFamilyViewsGetCall {
+	c.ifNoneMatch_ = entityTag
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *ImageFamilyViewsGetCall) Context(ctx context.Context) *ImageFamilyViewsGetCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *ImageFamilyViewsGetCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *ImageFamilyViewsGetCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	if c.ifNoneMatch_ != "" {
+		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/zones/{zone}/imageFamilyViews/{family}")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("GET", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project": c.project,
+		"zone":    c.zone,
+		"family":  c.family,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.imageFamilyViews.get", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.imageFamilyViews.get" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *ImageFamilyView.ServerResponse.Header or (if a response was returned at
+// all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to
+// check whether the returned error was because http.StatusNotModified was
+// returned.
+func (c *ImageFamilyViewsGetCall) Do(opts ...googleapi.CallOption) (*ImageFamilyView, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &ImageFamilyView{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.imageFamilyViews.get", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type ImagesDeleteCall struct {
+	s          *Service
+	project    string
+	image      string
+	urlParams_ gensupport.URLParams
+	ctx_       context.Context
+	header_    http.Header
+}
+
+// Delete: Deletes the specified image.
+//
+// - image: Name of the image resource to delete.
+// - project: Project ID for this request.
+func (r *ImagesService) Delete(project string, image string) *ImagesDeleteCall {
+	c := &ImagesDeleteCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.image = image
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *ImagesDeleteCall) RequestId(requestId string) *ImagesDeleteCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *ImagesDeleteCall) Fields(s ...googleapi.Field) *ImagesDeleteCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *ImagesDeleteCall) Context(ctx context.Context) *ImagesDeleteCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *ImagesDeleteCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *ImagesDeleteCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/images/{image}")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("DELETE", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project": c.project,
+		"image":   c.image,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.images.delete", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.images.delete" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *ImagesDeleteCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
 	gensupport.SetOptions(c.urlParams_, opts...)
 	res, err := c.doRequest("json")
 	if res != nil && res.StatusCode == http.StatusNotModified {
@@ -42800,7 +43354,7 @@ func (r *InstancesService) Update(project string, zone string, instance string,
 //	"INVALID"
 //	"NO_EFFECT" - No changes can be made to the instance.
 //	"REFRESH" - The instance will not restart.
-//	"RESTART" - The instance will restart.
+//	"RESTART" - The instance will restart, potentially on a different host.
 func (c *InstancesUpdateCall) MinimalAction(minimalAction string) *InstancesUpdateCall {
 	c.urlParams_.Set("minimalAction", minimalAction)
 	return c
@@ -42819,7 +43373,7 @@ func (c *InstancesUpdateCall) MinimalAction(minimalAction string) *InstancesUpda
 //	"INVALID"
 //	"NO_EFFECT" - No changes can be made to the instance.
 //	"REFRESH" - The instance will not restart.
-//	"RESTART" - The instance will restart.
+//	"RESTART" - The instance will restart, potentially on a different host.
 func (c *InstancesUpdateCall) MostDisruptiveAllowedAction(mostDisruptiveAllowedAction string) *InstancesUpdateCall {
 	c.urlParams_.Set("mostDisruptiveAllowedAction", mostDisruptiveAllowedAction)
 	return c
@@ -73044,1009 +73598,3 @@ func (c *ProjectsSetUsageExportBucketCall) Do(opts ...googleapi.CallOption) (*Op
 	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.projects.setUsageExportBucket", "response", internallog.HTTPResponse(res, b))
 	return ret, nil
 }
-
-type PublicAdvertisedPrefixesAnnounceCall struct {
-	s                      *Service
-	project                string
-	publicAdvertisedPrefix string
-	urlParams_             gensupport.URLParams
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Announce: Announces the specified PublicAdvertisedPrefix
-//
-//   - project: Project ID for this request.
-//   - publicAdvertisedPrefix: The name of the public advertised prefix. It
-//     should comply with RFC1035.
-func (r *PublicAdvertisedPrefixesService) Announce(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesAnnounceCall {
-	c := &PublicAdvertisedPrefixesAnnounceCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicAdvertisedPrefix = publicAdvertisedPrefix
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *PublicAdvertisedPrefixesAnnounceCall) RequestId(requestId string) *PublicAdvertisedPrefixesAnnounceCall {
-	c.urlParams_.Set("requestId", requestId)
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesAnnounceCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesAnnounceCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesAnnounceCall) Context(ctx context.Context) *PublicAdvertisedPrefixesAnnounceCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesAnnounceCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesAnnounceCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}/announce")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("POST", urls, nil)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":                c.project,
-		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.announce", "request", internallog.HTTPRequest(req, nil))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.announce" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesAnnounceCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.announce", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type PublicAdvertisedPrefixesDeleteCall struct {
-	s                      *Service
-	project                string
-	publicAdvertisedPrefix string
-	urlParams_             gensupport.URLParams
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Delete: Deletes the specified PublicAdvertisedPrefix
-//
-//   - project: Project ID for this request.
-//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
-//     delete.
-func (r *PublicAdvertisedPrefixesService) Delete(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesDeleteCall {
-	c := &PublicAdvertisedPrefixesDeleteCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicAdvertisedPrefix = publicAdvertisedPrefix
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *PublicAdvertisedPrefixesDeleteCall) RequestId(requestId string) *PublicAdvertisedPrefixesDeleteCall {
-	c.urlParams_.Set("requestId", requestId)
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesDeleteCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesDeleteCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesDeleteCall) Context(ctx context.Context) *PublicAdvertisedPrefixesDeleteCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesDeleteCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesDeleteCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("DELETE", urls, nil)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":                c.project,
-		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.delete", "request", internallog.HTTPRequest(req, nil))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.delete" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesDeleteCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.delete", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type PublicAdvertisedPrefixesGetCall struct {
-	s                      *Service
-	project                string
-	publicAdvertisedPrefix string
-	urlParams_             gensupport.URLParams
-	ifNoneMatch_           string
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Get: Returns the specified PublicAdvertisedPrefix resource.
-//
-//   - project: Project ID for this request.
-//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
-//     return.
-func (r *PublicAdvertisedPrefixesService) Get(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesGetCall {
-	c := &PublicAdvertisedPrefixesGetCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicAdvertisedPrefix = publicAdvertisedPrefix
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesGetCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesGetCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// IfNoneMatch sets an optional parameter which makes the operation fail if the
-// object's ETag matches the given value. This is useful for getting updates
-// only after the object has changed since the last request.
-func (c *PublicAdvertisedPrefixesGetCall) IfNoneMatch(entityTag string) *PublicAdvertisedPrefixesGetCall {
-	c.ifNoneMatch_ = entityTag
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesGetCall) Context(ctx context.Context) *PublicAdvertisedPrefixesGetCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesGetCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesGetCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	if c.ifNoneMatch_ != "" {
-		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
-	}
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("GET", urls, nil)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":                c.project,
-		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.get", "request", internallog.HTTPRequest(req, nil))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.get" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *PublicAdvertisedPrefix.ServerResponse.Header or (if a response was returned
-// at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to
-// check whether the returned error was because http.StatusNotModified was
-// returned.
-func (c *PublicAdvertisedPrefixesGetCall) Do(opts ...googleapi.CallOption) (*PublicAdvertisedPrefix, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &PublicAdvertisedPrefix{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.get", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type PublicAdvertisedPrefixesInsertCall struct {
-	s                      *Service
-	project                string
-	publicadvertisedprefix *PublicAdvertisedPrefix
-	urlParams_             gensupport.URLParams
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Insert: Creates a PublicAdvertisedPrefix in the specified project
-// using the parameters that are included in the request.
-//
-// - project: Project ID for this request.
-func (r *PublicAdvertisedPrefixesService) Insert(project string, publicadvertisedprefix *PublicAdvertisedPrefix) *PublicAdvertisedPrefixesInsertCall {
-	c := &PublicAdvertisedPrefixesInsertCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicadvertisedprefix = publicadvertisedprefix
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *PublicAdvertisedPrefixesInsertCall) RequestId(requestId string) *PublicAdvertisedPrefixesInsertCall {
-	c.urlParams_.Set("requestId", requestId)
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesInsertCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesInsertCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesInsertCall) Context(ctx context.Context) *PublicAdvertisedPrefixesInsertCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesInsertCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesInsertCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
-	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.publicadvertisedprefix)
-	if err != nil {
-		return nil, err
-	}
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("POST", urls, body)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project": c.project,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.insert", "request", internallog.HTTPRequest(req, body.Bytes()))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.insert" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesInsertCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.insert", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type PublicAdvertisedPrefixesListCall struct {
-	s            *Service
-	project      string
-	urlParams_   gensupport.URLParams
-	ifNoneMatch_ string
-	ctx_         context.Context
-	header_      http.Header
-}
-
-// List: Lists the PublicAdvertisedPrefixes for a project.
-//
-// - project: Project ID for this request.
-func (r *PublicAdvertisedPrefixesService) List(project string) *PublicAdvertisedPrefixesListCall {
-	c := &PublicAdvertisedPrefixesListCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	return c
-}
-
-// Filter sets the optional parameter "filter": A filter expression that
-// filters resources listed in the response. Most
-// Compute resources support two types of filter expressions:
-// expressions that support regular expressions and expressions that follow
-// API improvement proposal AIP-160.
-// These two types of filter expressions cannot be mixed in one request.
-//
-// If you want to use AIP-160, your expression must specify the field name,
-// an
-// operator, and the value that you want to use for filtering. The value
-// must be a string, a number, or a boolean. The operator
-// must be either `=`, `!=`, `>`, `<`, `<=`, `>=` or `:`.
-//
-// For example, if you are filtering Compute Engine instances, you can
-// exclude instances named `example-instance` by specifying
-// `name != example-instance`.
-//
-// The `:*` comparison can be used to test whether a key has been defined.
-// For example, to find all objects with `owner` label
-// use:
-// ```
-// labels.owner:*
-// ```
-//
-// You can also filter nested fields. For example, you could
-// specify
-// `scheduling.automaticRestart = false` to include instances only
-// if they are not scheduled for automatic restarts. You can use filtering
-// on nested fields to filter based onresource labels.
-//
-// To filter on multiple expressions, provide each separate expression
-// within
-// parentheses. For example:
-// ```
-// (scheduling.automaticRestart = true)
-// (cpuPlatform = "Intel Skylake")
-// ```
-// By default, each expression is an `AND` expression. However, you
-// can include `AND` and `OR` expressions explicitly.
-// For example:
-// ```
-// (cpuPlatform = "Intel Skylake") OR
-// (cpuPlatform = "Intel Broadwell") AND
-// (scheduling.automaticRestart = true)
-// ```
-//
-// If you want to use a regular expression, use the `eq` (equal) or `ne`
-// (not equal) operator against a single un-parenthesized expression with
-// or
-// without quotes or against multiple parenthesized expressions.
-// Examples:
-//
-// `fieldname eq unquoted literal`
-// `fieldname eq 'single quoted literal'`
-// `fieldname eq "double quoted literal"
-// `(fieldname1 eq literal) (fieldname2 ne "literal")`
-//
-// The literal value is interpreted as a regular expression using GoogleRE2
-// library syntax.
-// The literal value must match the entire field.
-//
-// For example, to filter for instances that do not end with name
-// "instance",
-// you would use `name ne .*instance`.
-//
-// You cannot combine constraints on multiple fields using regular
-// expressions.
-func (c *PublicAdvertisedPrefixesListCall) Filter(filter string) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("filter", filter)
-	return c
-}
-
-// MaxResults sets the optional parameter "maxResults": The maximum number of
-// results per page that should be returned.
-// If the number of available results is larger than `maxResults`,
-// Compute Engine returns a `nextPageToken` that can be used to get
-// the next page of results in subsequent list requests. Acceptable values
-// are
-// `0` to `500`, inclusive. (Default: `500`)
-func (c *PublicAdvertisedPrefixesListCall) MaxResults(maxResults int64) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("maxResults", fmt.Sprint(maxResults))
-	return c
-}
-
-// OrderBy sets the optional parameter "orderBy": Sorts list results by a
-// certain order. By default, results
-// are returned in alphanumerical order based on the resource name.
-//
-// You can also sort results in descending order based on the
-// creation
-// timestamp using `orderBy="creationTimestamp desc". This sorts
-// results based on the `creationTimestamp` field in
-// reverse chronological order (newest result first). Use this to
-// sort
-// resources like operations so that the newest operation is returned
-// first.
-//
-// Currently, only sorting by `name` or
-// `creationTimestamp desc` is supported.
-func (c *PublicAdvertisedPrefixesListCall) OrderBy(orderBy string) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("orderBy", orderBy)
-	return c
-}
-
-// PageToken sets the optional parameter "pageToken": Specifies a page token to
-// use. Set `pageToken` to the
-// `nextPageToken` returned by a previous list request to get
-// the next page of results.
-func (c *PublicAdvertisedPrefixesListCall) PageToken(pageToken string) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("pageToken", pageToken)
-	return c
-}
-
-// ReturnPartialSuccess sets the optional parameter "returnPartialSuccess":
-// Opt-in for partial success behavior which provides partial results in
-// case
-// of failure. The default value is false.
-//
-// For example, when partial success behavior is enabled, aggregatedList for
-// a
-// single zone scope either returns all resources in the zone or no
-// resources,
-// with an error code.
-func (c *PublicAdvertisedPrefixesListCall) ReturnPartialSuccess(returnPartialSuccess bool) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("returnPartialSuccess", fmt.Sprint(returnPartialSuccess))
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesListCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesListCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// IfNoneMatch sets an optional parameter which makes the operation fail if the
-// object's ETag matches the given value. This is useful for getting updates
-// only after the object has changed since the last request.
-func (c *PublicAdvertisedPrefixesListCall) IfNoneMatch(entityTag string) *PublicAdvertisedPrefixesListCall {
-	c.ifNoneMatch_ = entityTag
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesListCall) Context(ctx context.Context) *PublicAdvertisedPrefixesListCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesListCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesListCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	if c.ifNoneMatch_ != "" {
-		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
-	}
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("GET", urls, nil)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project": c.project,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.list", "request", internallog.HTTPRequest(req, nil))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.list" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *PublicAdvertisedPrefixList.ServerResponse.Header or (if a response was
-// returned at all) in error.(*googleapi.Error).Header. Use
-// googleapi.IsNotModified to check whether the returned error was because
-// http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesListCall) Do(opts ...googleapi.CallOption) (*PublicAdvertisedPrefixList, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &PublicAdvertisedPrefixList{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.list", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-// Pages invokes f for each page of results.
-// A non-nil error returned from f will halt the iteration.
-// The provided context supersedes any context provided to the Context method.
-func (c *PublicAdvertisedPrefixesListCall) Pages(ctx context.Context, f func(*PublicAdvertisedPrefixList) error) error {
-	c.ctx_ = ctx
-	defer c.PageToken(c.urlParams_.Get("pageToken"))
-	for {
-		x, err := c.Do()
-		if err != nil {
-			return err
-		}
-		if err := f(x); err != nil {
-			return err
-		}
-		if x.NextPageToken == "" {
-			return nil
-		}
-		c.PageToken(x.NextPageToken)
-	}
-}
-
-type PublicAdvertisedPrefixesPatchCall struct {
-	s                      *Service
-	project                string
-	publicAdvertisedPrefix string
-	publicadvertisedprefix *PublicAdvertisedPrefix
-	urlParams_             gensupport.URLParams
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Patch: Patches the specified Router resource with the data included in
-// the
-// request. This method supportsPATCH
-// semantics and usesJSON merge
-// patch format and processing rules.
-//
-//   - project: Project ID for this request.
-//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
-//     patch.
-func (r *PublicAdvertisedPrefixesService) Patch(project string, publicAdvertisedPrefix string, publicadvertisedprefix *PublicAdvertisedPrefix) *PublicAdvertisedPrefixesPatchCall {
-	c := &PublicAdvertisedPrefixesPatchCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicAdvertisedPrefix = publicAdvertisedPrefix
-	c.publicadvertisedprefix = publicadvertisedprefix
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *PublicAdvertisedPrefixesPatchCall) RequestId(requestId string) *PublicAdvertisedPrefixesPatchCall {
-	c.urlParams_.Set("requestId", requestId)
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesPatchCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesPatchCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesPatchCall) Context(ctx context.Context) *PublicAdvertisedPrefixesPatchCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesPatchCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesPatchCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
-	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.publicadvertisedprefix)
-	if err != nil {
-		return nil, err
-	}
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("PATCH", urls, body)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":                c.project,
-		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.patch", "request", internallog.HTTPRequest(req, body.Bytes()))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.patch" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesPatchCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.patch", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
-
-type PublicAdvertisedPrefixesWithdrawCall struct {
-	s                      *Service
-	project                string
-	publicAdvertisedPrefix string
-	urlParams_             gensupport.URLParams
-	ctx_                   context.Context
-	header_                http.Header
-}
-
-// Withdraw: Withdraws the specified PublicAdvertisedPrefix
-//
-//   - project: Project ID for this request.
-//   - publicAdvertisedPrefix: The name of the public advertised prefix. It
-//     should comply with RFC1035.
-func (r *PublicAdvertisedPrefixesService) Withdraw(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesWithdrawCall {
-	c := &PublicAdvertisedPrefixesWithdrawCall{s: r.s, urlParams_: make(gensupport.URLParams)}
-	c.project = project
-	c.publicAdvertisedPrefix = publicAdvertisedPrefix
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *PublicAdvertisedPrefixesWithdrawCall) RequestId(requestId string) *PublicAdvertisedPrefixesWithdrawCall {
-	c.urlParams_.Set("requestId", requestId)
-	return c
-}
-
-// Fields allows partial responses to be retrieved. See
-// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
-// details.
-func (c *PublicAdvertisedPrefixesWithdrawCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesWithdrawCall {
-	c.urlParams_.Set("fields", googleapi.CombineFields(s))
-	return c
-}
-
-// Context sets the context to be used in this call's Do method.
-func (c *PublicAdvertisedPrefixesWithdrawCall) Context(ctx context.Context) *PublicAdvertisedPrefixesWithdrawCall {
-	c.ctx_ = ctx
-	return c
-}
-
-// Header returns a http.Header that can be modified by the caller to add
-// headers to the request.
-func (c *PublicAdvertisedPrefixesWithdrawCall) Header() http.Header {
-	if c.header_ == nil {
-		c.header_ = make(http.Header)
-	}
-	return c.header_
-}
-
-func (c *PublicAdvertisedPrefixesWithdrawCall) doRequest(alt string) (*http.Response, error) {
-	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
-	c.urlParams_.Set("alt", alt)
-	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}/withdraw")
-	urls += "?" + c.urlParams_.Encode()
-	req, err := http.NewRequest("POST", urls, nil)
-	if err != nil {
-		return nil, err
-	}
-	req.Header = reqHeaders
-	googleapi.Expand(req.URL, map[string]string{
-		"project":                c.project,
-		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
-	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.withdraw", "request", internallog.HTTPRequest(req, nil))
-	return gensupport.SendRequest(c.ctx_, c.s.client, req)
-}
-
-// Do executes the "compute.publicAdvertisedPrefixes.withdraw" call.
-// Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *PublicAdvertisedPrefixesWithdrawCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
-	gensupport.SetOptions(c.urlParams_, opts...)
-	res, err := c.doRequest("json")
-	if res != nil && res.StatusCode == http.StatusNotModified {
-		if res.Body != nil {
-			res.Body.Close()
-		}
-		return nil, gensupport.WrapError(&googleapi.Error{
-			Code:   res.StatusCode,
-			Header: res.Header,
-		})
-	}
-	if err != nil {
-		return nil, err
-	}
-	defer googleapi.CloseBody(res)
-	if err := googleapi.CheckResponse(res); err != nil {
-		return nil, gensupport.WrapError(err)
-	}
-	ret := &Operation{
-		ServerResponse: googleapi.ServerResponse{
-			Header:         res.Header,
-			HTTPStatusCode: res.StatusCode,
-		},
-	}
-	target := &ret
-	b, err := gensupport.DecodeResponseBytes(target, res)
-	if err != nil {
-		return nil, err
-	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.withdraw", "response", internallog.HTTPResponse(res, b))
-	return ret, nil
-}
diff --git a/vendor/google.golang.org/api/compute/v1/compute3-gen.go b/vendor/google.golang.org/api/compute/v1/compute3-gen.go
index 550509bfb2..d64b13ab39 100644
--- a/vendor/google.golang.org/api/compute/v1/compute3-gen.go
+++ b/vendor/google.golang.org/api/compute/v1/compute3-gen.go
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC.
+// Copyright 2026 Google LLC.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
@@ -16,6 +16,1012 @@ import (
 	gensupport "google.golang.org/api/internal/gensupport"
 )
 
+type PublicAdvertisedPrefixesAnnounceCall struct {
+	s                      *Service
+	project                string
+	publicAdvertisedPrefix string
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Announce: Announces the specified PublicAdvertisedPrefix
+//
+//   - project: Project ID for this request.
+//   - publicAdvertisedPrefix: The name of the public advertised prefix. It
+//     should comply with RFC1035.
+func (r *PublicAdvertisedPrefixesService) Announce(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesAnnounceCall {
+	c := &PublicAdvertisedPrefixesAnnounceCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicAdvertisedPrefix = publicAdvertisedPrefix
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *PublicAdvertisedPrefixesAnnounceCall) RequestId(requestId string) *PublicAdvertisedPrefixesAnnounceCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesAnnounceCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesAnnounceCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesAnnounceCall) Context(ctx context.Context) *PublicAdvertisedPrefixesAnnounceCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesAnnounceCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesAnnounceCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}/announce")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":                c.project,
+		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.announce", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.announce" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesAnnounceCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.announce", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type PublicAdvertisedPrefixesDeleteCall struct {
+	s                      *Service
+	project                string
+	publicAdvertisedPrefix string
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Delete: Deletes the specified PublicAdvertisedPrefix
+//
+//   - project: Project ID for this request.
+//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
+//     delete.
+func (r *PublicAdvertisedPrefixesService) Delete(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesDeleteCall {
+	c := &PublicAdvertisedPrefixesDeleteCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicAdvertisedPrefix = publicAdvertisedPrefix
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *PublicAdvertisedPrefixesDeleteCall) RequestId(requestId string) *PublicAdvertisedPrefixesDeleteCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesDeleteCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesDeleteCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesDeleteCall) Context(ctx context.Context) *PublicAdvertisedPrefixesDeleteCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesDeleteCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesDeleteCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("DELETE", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":                c.project,
+		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.delete", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.delete" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesDeleteCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.delete", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type PublicAdvertisedPrefixesGetCall struct {
+	s                      *Service
+	project                string
+	publicAdvertisedPrefix string
+	urlParams_             gensupport.URLParams
+	ifNoneMatch_           string
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Get: Returns the specified PublicAdvertisedPrefix resource.
+//
+//   - project: Project ID for this request.
+//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
+//     return.
+func (r *PublicAdvertisedPrefixesService) Get(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesGetCall {
+	c := &PublicAdvertisedPrefixesGetCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicAdvertisedPrefix = publicAdvertisedPrefix
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesGetCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesGetCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// IfNoneMatch sets an optional parameter which makes the operation fail if the
+// object's ETag matches the given value. This is useful for getting updates
+// only after the object has changed since the last request.
+func (c *PublicAdvertisedPrefixesGetCall) IfNoneMatch(entityTag string) *PublicAdvertisedPrefixesGetCall {
+	c.ifNoneMatch_ = entityTag
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesGetCall) Context(ctx context.Context) *PublicAdvertisedPrefixesGetCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesGetCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesGetCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	if c.ifNoneMatch_ != "" {
+		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("GET", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":                c.project,
+		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.get", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.get" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *PublicAdvertisedPrefix.ServerResponse.Header or (if a response was returned
+// at all) in error.(*googleapi.Error).Header. Use googleapi.IsNotModified to
+// check whether the returned error was because http.StatusNotModified was
+// returned.
+func (c *PublicAdvertisedPrefixesGetCall) Do(opts ...googleapi.CallOption) (*PublicAdvertisedPrefix, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &PublicAdvertisedPrefix{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.get", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type PublicAdvertisedPrefixesInsertCall struct {
+	s                      *Service
+	project                string
+	publicadvertisedprefix *PublicAdvertisedPrefix
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Insert: Creates a PublicAdvertisedPrefix in the specified project
+// using the parameters that are included in the request.
+//
+// - project: Project ID for this request.
+func (r *PublicAdvertisedPrefixesService) Insert(project string, publicadvertisedprefix *PublicAdvertisedPrefix) *PublicAdvertisedPrefixesInsertCall {
+	c := &PublicAdvertisedPrefixesInsertCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicadvertisedprefix = publicadvertisedprefix
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *PublicAdvertisedPrefixesInsertCall) RequestId(requestId string) *PublicAdvertisedPrefixesInsertCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesInsertCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesInsertCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesInsertCall) Context(ctx context.Context) *PublicAdvertisedPrefixesInsertCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesInsertCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesInsertCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.publicadvertisedprefix)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project": c.project,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.insert", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.insert" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesInsertCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.insert", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type PublicAdvertisedPrefixesListCall struct {
+	s            *Service
+	project      string
+	urlParams_   gensupport.URLParams
+	ifNoneMatch_ string
+	ctx_         context.Context
+	header_      http.Header
+}
+
+// List: Lists the PublicAdvertisedPrefixes for a project.
+//
+// - project: Project ID for this request.
+func (r *PublicAdvertisedPrefixesService) List(project string) *PublicAdvertisedPrefixesListCall {
+	c := &PublicAdvertisedPrefixesListCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	return c
+}
+
+// Filter sets the optional parameter "filter": A filter expression that
+// filters resources listed in the response. Most
+// Compute resources support two types of filter expressions:
+// expressions that support regular expressions and expressions that follow
+// API improvement proposal AIP-160.
+// These two types of filter expressions cannot be mixed in one request.
+//
+// If you want to use AIP-160, your expression must specify the field name,
+// an
+// operator, and the value that you want to use for filtering. The value
+// must be a string, a number, or a boolean. The operator
+// must be either `=`, `!=`, `>`, `<`, `<=`, `>=` or `:`.
+//
+// For example, if you are filtering Compute Engine instances, you can
+// exclude instances named `example-instance` by specifying
+// `name != example-instance`.
+//
+// The `:*` comparison can be used to test whether a key has been defined.
+// For example, to find all objects with `owner` label
+// use:
+// ```
+// labels.owner:*
+// ```
+//
+// You can also filter nested fields. For example, you could
+// specify
+// `scheduling.automaticRestart = false` to include instances only
+// if they are not scheduled for automatic restarts. You can use filtering
+// on nested fields to filter based onresource labels.
+//
+// To filter on multiple expressions, provide each separate expression
+// within
+// parentheses. For example:
+// ```
+// (scheduling.automaticRestart = true)
+// (cpuPlatform = "Intel Skylake")
+// ```
+// By default, each expression is an `AND` expression. However, you
+// can include `AND` and `OR` expressions explicitly.
+// For example:
+// ```
+// (cpuPlatform = "Intel Skylake") OR
+// (cpuPlatform = "Intel Broadwell") AND
+// (scheduling.automaticRestart = true)
+// ```
+//
+// If you want to use a regular expression, use the `eq` (equal) or `ne`
+// (not equal) operator against a single un-parenthesized expression with
+// or
+// without quotes or against multiple parenthesized expressions.
+// Examples:
+//
+// `fieldname eq unquoted literal`
+// `fieldname eq 'single quoted literal'`
+// `fieldname eq "double quoted literal"
+// `(fieldname1 eq literal) (fieldname2 ne "literal")`
+//
+// The literal value is interpreted as a regular expression using GoogleRE2
+// library syntax.
+// The literal value must match the entire field.
+//
+// For example, to filter for instances that do not end with name
+// "instance",
+// you would use `name ne .*instance`.
+//
+// You cannot combine constraints on multiple fields using regular
+// expressions.
+func (c *PublicAdvertisedPrefixesListCall) Filter(filter string) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("filter", filter)
+	return c
+}
+
+// MaxResults sets the optional parameter "maxResults": The maximum number of
+// results per page that should be returned.
+// If the number of available results is larger than `maxResults`,
+// Compute Engine returns a `nextPageToken` that can be used to get
+// the next page of results in subsequent list requests. Acceptable values
+// are
+// `0` to `500`, inclusive. (Default: `500`)
+func (c *PublicAdvertisedPrefixesListCall) MaxResults(maxResults int64) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("maxResults", fmt.Sprint(maxResults))
+	return c
+}
+
+// OrderBy sets the optional parameter "orderBy": Sorts list results by a
+// certain order. By default, results
+// are returned in alphanumerical order based on the resource name.
+//
+// You can also sort results in descending order based on the
+// creation
+// timestamp using `orderBy="creationTimestamp desc". This sorts
+// results based on the `creationTimestamp` field in
+// reverse chronological order (newest result first). Use this to
+// sort
+// resources like operations so that the newest operation is returned
+// first.
+//
+// Currently, only sorting by `name` or
+// `creationTimestamp desc` is supported.
+func (c *PublicAdvertisedPrefixesListCall) OrderBy(orderBy string) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("orderBy", orderBy)
+	return c
+}
+
+// PageToken sets the optional parameter "pageToken": Specifies a page token to
+// use. Set `pageToken` to the
+// `nextPageToken` returned by a previous list request to get
+// the next page of results.
+func (c *PublicAdvertisedPrefixesListCall) PageToken(pageToken string) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("pageToken", pageToken)
+	return c
+}
+
+// ReturnPartialSuccess sets the optional parameter "returnPartialSuccess":
+// Opt-in for partial success behavior which provides partial results in
+// case
+// of failure. The default value is false.
+//
+// For example, when partial success behavior is enabled, aggregatedList for
+// a
+// single zone scope either returns all resources in the zone or no
+// resources,
+// with an error code.
+func (c *PublicAdvertisedPrefixesListCall) ReturnPartialSuccess(returnPartialSuccess bool) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("returnPartialSuccess", fmt.Sprint(returnPartialSuccess))
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesListCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesListCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// IfNoneMatch sets an optional parameter which makes the operation fail if the
+// object's ETag matches the given value. This is useful for getting updates
+// only after the object has changed since the last request.
+func (c *PublicAdvertisedPrefixesListCall) IfNoneMatch(entityTag string) *PublicAdvertisedPrefixesListCall {
+	c.ifNoneMatch_ = entityTag
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesListCall) Context(ctx context.Context) *PublicAdvertisedPrefixesListCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesListCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesListCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	if c.ifNoneMatch_ != "" {
+		reqHeaders.Set("If-None-Match", c.ifNoneMatch_)
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("GET", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project": c.project,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.list", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.list" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *PublicAdvertisedPrefixList.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesListCall) Do(opts ...googleapi.CallOption) (*PublicAdvertisedPrefixList, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &PublicAdvertisedPrefixList{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.list", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+// Pages invokes f for each page of results.
+// A non-nil error returned from f will halt the iteration.
+// The provided context supersedes any context provided to the Context method.
+func (c *PublicAdvertisedPrefixesListCall) Pages(ctx context.Context, f func(*PublicAdvertisedPrefixList) error) error {
+	c.ctx_ = ctx
+	defer c.PageToken(c.urlParams_.Get("pageToken"))
+	for {
+		x, err := c.Do()
+		if err != nil {
+			return err
+		}
+		if err := f(x); err != nil {
+			return err
+		}
+		if x.NextPageToken == "" {
+			return nil
+		}
+		c.PageToken(x.NextPageToken)
+	}
+}
+
+type PublicAdvertisedPrefixesPatchCall struct {
+	s                      *Service
+	project                string
+	publicAdvertisedPrefix string
+	publicadvertisedprefix *PublicAdvertisedPrefix
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Patch: Patches the specified Router resource with the data included in
+// the
+// request. This method supportsPATCH
+// semantics and usesJSON merge
+// patch format and processing rules.
+//
+//   - project: Project ID for this request.
+//   - publicAdvertisedPrefix: Name of the PublicAdvertisedPrefix resource to
+//     patch.
+func (r *PublicAdvertisedPrefixesService) Patch(project string, publicAdvertisedPrefix string, publicadvertisedprefix *PublicAdvertisedPrefix) *PublicAdvertisedPrefixesPatchCall {
+	c := &PublicAdvertisedPrefixesPatchCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicAdvertisedPrefix = publicAdvertisedPrefix
+	c.publicadvertisedprefix = publicadvertisedprefix
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *PublicAdvertisedPrefixesPatchCall) RequestId(requestId string) *PublicAdvertisedPrefixesPatchCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesPatchCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesPatchCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesPatchCall) Context(ctx context.Context) *PublicAdvertisedPrefixesPatchCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesPatchCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesPatchCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.publicadvertisedprefix)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("PATCH", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":                c.project,
+		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.patch", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.patch" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesPatchCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.patch", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type PublicAdvertisedPrefixesWithdrawCall struct {
+	s                      *Service
+	project                string
+	publicAdvertisedPrefix string
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// Withdraw: Withdraws the specified PublicAdvertisedPrefix
+//
+//   - project: Project ID for this request.
+//   - publicAdvertisedPrefix: The name of the public advertised prefix. It
+//     should comply with RFC1035.
+func (r *PublicAdvertisedPrefixesService) Withdraw(project string, publicAdvertisedPrefix string) *PublicAdvertisedPrefixesWithdrawCall {
+	c := &PublicAdvertisedPrefixesWithdrawCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.publicAdvertisedPrefix = publicAdvertisedPrefix
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *PublicAdvertisedPrefixesWithdrawCall) RequestId(requestId string) *PublicAdvertisedPrefixesWithdrawCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *PublicAdvertisedPrefixesWithdrawCall) Fields(s ...googleapi.Field) *PublicAdvertisedPrefixesWithdrawCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *PublicAdvertisedPrefixesWithdrawCall) Context(ctx context.Context) *PublicAdvertisedPrefixesWithdrawCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *PublicAdvertisedPrefixesWithdrawCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *PublicAdvertisedPrefixesWithdrawCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "", c.header_)
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/publicAdvertisedPrefixes/{publicAdvertisedPrefix}/withdraw")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":                c.project,
+		"publicAdvertisedPrefix": c.publicAdvertisedPrefix,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.withdraw", "request", internallog.HTTPRequest(req, nil))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.publicAdvertisedPrefixes.withdraw" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *PublicAdvertisedPrefixesWithdrawCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.publicAdvertisedPrefixes.withdraw", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type PublicDelegatedPrefixesAggregatedListCall struct {
 	s            *Service
 	project      string
@@ -2122,6 +3128,119 @@ func (c *RegionAutoscalersPatchCall) Do(opts ...googleapi.CallOption) (*Operatio
 	return ret, nil
 }
 
+type RegionAutoscalersTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	region                 string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - region: The name of the region for this request.
+// - resource: Name or id of the resource for this request.
+func (r *RegionAutoscalersService) TestIamPermissions(project string, region string, resource string, testpermissionsrequest *TestPermissionsRequest) *RegionAutoscalersTestIamPermissionsCall {
+	c := &RegionAutoscalersTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.region = region
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *RegionAutoscalersTestIamPermissionsCall) Fields(s ...googleapi.Field) *RegionAutoscalersTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *RegionAutoscalersTestIamPermissionsCall) Context(ctx context.Context) *RegionAutoscalersTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *RegionAutoscalersTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *RegionAutoscalersTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/regions/{region}/autoscalers/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"region":   c.region,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.regionAutoscalers.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.regionAutoscalers.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *RegionAutoscalersTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.regionAutoscalers.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type RegionAutoscalersUpdateCall struct {
 	s          *Service
 	project    string
@@ -9288,6 +10407,119 @@ func (c *RegionHealthChecksPatchCall) Do(opts ...googleapi.CallOption) (*Operati
 	return ret, nil
 }
 
+type RegionHealthChecksTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	region                 string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - region: The name of the region for this request.
+// - resource: Name or id of the resource for this request.
+func (r *RegionHealthChecksService) TestIamPermissions(project string, region string, resource string, testpermissionsrequest *TestPermissionsRequest) *RegionHealthChecksTestIamPermissionsCall {
+	c := &RegionHealthChecksTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.region = region
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *RegionHealthChecksTestIamPermissionsCall) Fields(s ...googleapi.Field) *RegionHealthChecksTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *RegionHealthChecksTestIamPermissionsCall) Context(ctx context.Context) *RegionHealthChecksTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *RegionHealthChecksTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *RegionHealthChecksTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/regions/{region}/healthChecks/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"region":   c.region,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.regionHealthChecks.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.regionHealthChecks.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *RegionHealthChecksTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.regionHealthChecks.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type RegionHealthChecksUpdateCall struct {
 	s           *Service
 	project     string
@@ -20161,6 +21393,119 @@ func (c *RegionNotificationEndpointsListCall) Pages(ctx context.Context, f func(
 	}
 }
 
+type RegionNotificationEndpointsTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	region                 string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - region: The name of the region for this request.
+// - resource: Name or id of the resource for this request.
+func (r *RegionNotificationEndpointsService) TestIamPermissions(project string, region string, resource string, testpermissionsrequest *TestPermissionsRequest) *RegionNotificationEndpointsTestIamPermissionsCall {
+	c := &RegionNotificationEndpointsTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.region = region
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *RegionNotificationEndpointsTestIamPermissionsCall) Fields(s ...googleapi.Field) *RegionNotificationEndpointsTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *RegionNotificationEndpointsTestIamPermissionsCall) Context(ctx context.Context) *RegionNotificationEndpointsTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *RegionNotificationEndpointsTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *RegionNotificationEndpointsTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/regions/{region}/notificationEndpoints/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"region":   c.region,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.regionNotificationEndpoints.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.regionNotificationEndpoints.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *RegionNotificationEndpointsTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.regionNotificationEndpoints.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type RegionOperationsDeleteCall struct {
 	s           *Service
 	project     string
@@ -36644,6 +37989,115 @@ func (c *RoutesListCall) Pages(ctx context.Context, f func(*RouteList) error) er
 	}
 }
 
+type RoutesTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *RoutesService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *RoutesTestIamPermissionsCall {
+	c := &RoutesTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *RoutesTestIamPermissionsCall) Fields(s ...googleapi.Field) *RoutesTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *RoutesTestIamPermissionsCall) Context(ctx context.Context) *RoutesTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *RoutesTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *RoutesTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/routes/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.routes.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.routes.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *RoutesTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.routes.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type SecurityPoliciesAddRuleCall struct {
 	s                  *Service
 	project            string
@@ -55819,92 +57273,200 @@ func (c *TargetSslProxiesSetSslCertificatesCall) Do(opts ...googleapi.CallOption
 	if err != nil {
 		return nil, err
 	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslCertificates", "response", internallog.HTTPResponse(res, b))
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslCertificates", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
+type TargetSslProxiesSetSslPolicyCall struct {
+	s                  *Service
+	project            string
+	targetSslProxy     string
+	sslpolicyreference *SslPolicyReference
+	urlParams_         gensupport.URLParams
+	ctx_               context.Context
+	header_            http.Header
+}
+
+// SetSslPolicy: Sets the SSL policy for TargetSslProxy. The SSL policy
+// specifies the
+// server-side support for SSL features. This affects connections
+// between
+// clients and the load balancer. They do not affect the
+// connection between the load balancer and the backends.
+//
+//   - project: Project ID for this request.
+//   - targetSslProxy: Name of the TargetSslProxy resource whose SSL policy is
+//     to be set. The name must be 1-63 characters long, and comply with RFC1035.
+func (r *TargetSslProxiesService) SetSslPolicy(project string, targetSslProxy string, sslpolicyreference *SslPolicyReference) *TargetSslProxiesSetSslPolicyCall {
+	c := &TargetSslProxiesSetSslPolicyCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.targetSslProxy = targetSslProxy
+	c.sslpolicyreference = sslpolicyreference
+	return c
+}
+
+// RequestId sets the optional parameter "requestId": An optional request ID to
+// identify requests. Specify a unique request ID so
+// that if you must retry your request, the server will know to ignore
+// the
+// request if it has already been completed.
+//
+// For example, consider a situation where you make an initial request and
+// the request times out. If you make the request again with the same
+// request ID, the server can check if original operation with the same
+// request ID was received, and if so, will ignore the second request.
+// This
+// prevents clients from accidentally creating duplicate commitments.
+//
+// The request ID must be
+// a valid UUID with the exception that zero UUID is not
+// supported
+// (00000000-0000-0000-0000-000000000000).
+func (c *TargetSslProxiesSetSslPolicyCall) RequestId(requestId string) *TargetSslProxiesSetSslPolicyCall {
+	c.urlParams_.Set("requestId", requestId)
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *TargetSslProxiesSetSslPolicyCall) Fields(s ...googleapi.Field) *TargetSslProxiesSetSslPolicyCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *TargetSslProxiesSetSslPolicyCall) Context(ctx context.Context) *TargetSslProxiesSetSslPolicyCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *TargetSslProxiesSetSslPolicyCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *TargetSslProxiesSetSslPolicyCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.sslpolicyreference)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/targetSslProxies/{targetSslProxy}/setSslPolicy")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":        c.project,
+		"targetSslProxy": c.targetSslProxy,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslPolicy", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.targetSslProxies.setSslPolicy" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *Operation.ServerResponse.Header or (if a response was returned at all) in
+// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
+// whether the returned error was because http.StatusNotModified was returned.
+func (c *TargetSslProxiesSetSslPolicyCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &Operation{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslPolicy", "response", internallog.HTTPResponse(res, b))
 	return ret, nil
 }
 
-type TargetSslProxiesSetSslPolicyCall struct {
-	s                  *Service
-	project            string
-	targetSslProxy     string
-	sslpolicyreference *SslPolicyReference
-	urlParams_         gensupport.URLParams
-	ctx_               context.Context
-	header_            http.Header
+type TargetSslProxiesTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
 }
 
-// SetSslPolicy: Sets the SSL policy for TargetSslProxy. The SSL policy
-// specifies the
-// server-side support for SSL features. This affects connections
-// between
-// clients and the load balancer. They do not affect the
-// connection between the load balancer and the backends.
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
 //
-//   - project: Project ID for this request.
-//   - targetSslProxy: Name of the TargetSslProxy resource whose SSL policy is
-//     to be set. The name must be 1-63 characters long, and comply with RFC1035.
-func (r *TargetSslProxiesService) SetSslPolicy(project string, targetSslProxy string, sslpolicyreference *SslPolicyReference) *TargetSslProxiesSetSslPolicyCall {
-	c := &TargetSslProxiesSetSslPolicyCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *TargetSslProxiesService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *TargetSslProxiesTestIamPermissionsCall {
+	c := &TargetSslProxiesTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
 	c.project = project
-	c.targetSslProxy = targetSslProxy
-	c.sslpolicyreference = sslpolicyreference
-	return c
-}
-
-// RequestId sets the optional parameter "requestId": An optional request ID to
-// identify requests. Specify a unique request ID so
-// that if you must retry your request, the server will know to ignore
-// the
-// request if it has already been completed.
-//
-// For example, consider a situation where you make an initial request and
-// the request times out. If you make the request again with the same
-// request ID, the server can check if original operation with the same
-// request ID was received, and if so, will ignore the second request.
-// This
-// prevents clients from accidentally creating duplicate commitments.
-//
-// The request ID must be
-// a valid UUID with the exception that zero UUID is not
-// supported
-// (00000000-0000-0000-0000-000000000000).
-func (c *TargetSslProxiesSetSslPolicyCall) RequestId(requestId string) *TargetSslProxiesSetSslPolicyCall {
-	c.urlParams_.Set("requestId", requestId)
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
 	return c
 }
 
 // Fields allows partial responses to be retrieved. See
 // https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
 // details.
-func (c *TargetSslProxiesSetSslPolicyCall) Fields(s ...googleapi.Field) *TargetSslProxiesSetSslPolicyCall {
+func (c *TargetSslProxiesTestIamPermissionsCall) Fields(s ...googleapi.Field) *TargetSslProxiesTestIamPermissionsCall {
 	c.urlParams_.Set("fields", googleapi.CombineFields(s))
 	return c
 }
 
 // Context sets the context to be used in this call's Do method.
-func (c *TargetSslProxiesSetSslPolicyCall) Context(ctx context.Context) *TargetSslProxiesSetSslPolicyCall {
+func (c *TargetSslProxiesTestIamPermissionsCall) Context(ctx context.Context) *TargetSslProxiesTestIamPermissionsCall {
 	c.ctx_ = ctx
 	return c
 }
 
 // Header returns a http.Header that can be modified by the caller to add
 // headers to the request.
-func (c *TargetSslProxiesSetSslPolicyCall) Header() http.Header {
+func (c *TargetSslProxiesTestIamPermissionsCall) Header() http.Header {
 	if c.header_ == nil {
 		c.header_ = make(http.Header)
 	}
 	return c.header_
 }
 
-func (c *TargetSslProxiesSetSslPolicyCall) doRequest(alt string) (*http.Response, error) {
+func (c *TargetSslProxiesTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
 	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
-	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.sslpolicyreference)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
 	if err != nil {
 		return nil, err
 	}
 	c.urlParams_.Set("alt", alt)
 	c.urlParams_.Set("prettyPrint", "false")
-	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/targetSslProxies/{targetSslProxy}/setSslPolicy")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/targetSslProxies/{resource}/testIamPermissions")
 	urls += "?" + c.urlParams_.Encode()
 	req, err := http.NewRequest("POST", urls, body)
 	if err != nil {
@@ -55912,19 +57474,20 @@ func (c *TargetSslProxiesSetSslPolicyCall) doRequest(alt string) (*http.Response
 	}
 	req.Header = reqHeaders
 	googleapi.Expand(req.URL, map[string]string{
-		"project":        c.project,
-		"targetSslProxy": c.targetSslProxy,
+		"project":  c.project,
+		"resource": c.resource,
 	})
-	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslPolicy", "request", internallog.HTTPRequest(req, body.Bytes()))
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.targetSslProxies.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
 	return gensupport.SendRequest(c.ctx_, c.s.client, req)
 }
 
-// Do executes the "compute.targetSslProxies.setSslPolicy" call.
+// Do executes the "compute.targetSslProxies.testIamPermissions" call.
 // Any non-2xx status code is an error. Response headers are in either
-// *Operation.ServerResponse.Header or (if a response was returned at all) in
-// error.(*googleapi.Error).Header. Use googleapi.IsNotModified to check
-// whether the returned error was because http.StatusNotModified was returned.
-func (c *TargetSslProxiesSetSslPolicyCall) Do(opts ...googleapi.CallOption) (*Operation, error) {
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *TargetSslProxiesTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
 	gensupport.SetOptions(c.urlParams_, opts...)
 	res, err := c.doRequest("json")
 	if res != nil && res.StatusCode == http.StatusNotModified {
@@ -55943,7 +57506,7 @@ func (c *TargetSslProxiesSetSslPolicyCall) Do(opts ...googleapi.CallOption) (*Op
 	if err := googleapi.CheckResponse(res); err != nil {
 		return nil, gensupport.WrapError(err)
 	}
-	ret := &Operation{
+	ret := &TestPermissionsResponse{
 		ServerResponse: googleapi.ServerResponse{
 			Header:         res.Header,
 			HTTPStatusCode: res.StatusCode,
@@ -55954,7 +57517,7 @@ func (c *TargetSslProxiesSetSslPolicyCall) Do(opts ...googleapi.CallOption) (*Op
 	if err != nil {
 		return nil, err
 	}
-	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetSslProxies.setSslPolicy", "response", internallog.HTTPResponse(res, b))
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetSslProxies.testIamPermissions", "response", internallog.HTTPResponse(res, b))
 	return ret, nil
 }
 
@@ -57133,6 +58696,115 @@ func (c *TargetTcpProxiesSetProxyHeaderCall) Do(opts ...googleapi.CallOption) (*
 	return ret, nil
 }
 
+type TargetTcpProxiesTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *TargetTcpProxiesService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *TargetTcpProxiesTestIamPermissionsCall {
+	c := &TargetTcpProxiesTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *TargetTcpProxiesTestIamPermissionsCall) Fields(s ...googleapi.Field) *TargetTcpProxiesTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *TargetTcpProxiesTestIamPermissionsCall) Context(ctx context.Context) *TargetTcpProxiesTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *TargetTcpProxiesTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *TargetTcpProxiesTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/targetTcpProxies/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.targetTcpProxies.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.targetTcpProxies.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *TargetTcpProxiesTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.targetTcpProxies.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type TargetVpnGatewaysAggregatedListCall struct {
 	s            *Service
 	project      string
@@ -59378,6 +61050,115 @@ func (c *UrlMapsPatchCall) Do(opts ...googleapi.CallOption) (*Operation, error)
 	return ret, nil
 }
 
+type UrlMapsTestIamPermissionsCall struct {
+	s                      *Service
+	project                string
+	resource               string
+	testpermissionsrequest *TestPermissionsRequest
+	urlParams_             gensupport.URLParams
+	ctx_                   context.Context
+	header_                http.Header
+}
+
+// TestIamPermissions: Returns permissions that a caller has on the specified
+// resource.
+//
+// - project: Project ID for this request.
+// - resource: Name or id of the resource for this request.
+func (r *UrlMapsService) TestIamPermissions(project string, resource string, testpermissionsrequest *TestPermissionsRequest) *UrlMapsTestIamPermissionsCall {
+	c := &UrlMapsTestIamPermissionsCall{s: r.s, urlParams_: make(gensupport.URLParams)}
+	c.project = project
+	c.resource = resource
+	c.testpermissionsrequest = testpermissionsrequest
+	return c
+}
+
+// Fields allows partial responses to be retrieved. See
+// https://developers.google.com/gdata/docs/2.0/basics#PartialResponse for more
+// details.
+func (c *UrlMapsTestIamPermissionsCall) Fields(s ...googleapi.Field) *UrlMapsTestIamPermissionsCall {
+	c.urlParams_.Set("fields", googleapi.CombineFields(s))
+	return c
+}
+
+// Context sets the context to be used in this call's Do method.
+func (c *UrlMapsTestIamPermissionsCall) Context(ctx context.Context) *UrlMapsTestIamPermissionsCall {
+	c.ctx_ = ctx
+	return c
+}
+
+// Header returns a http.Header that can be modified by the caller to add
+// headers to the request.
+func (c *UrlMapsTestIamPermissionsCall) Header() http.Header {
+	if c.header_ == nil {
+		c.header_ = make(http.Header)
+	}
+	return c.header_
+}
+
+func (c *UrlMapsTestIamPermissionsCall) doRequest(alt string) (*http.Response, error) {
+	reqHeaders := gensupport.SetHeaders(c.s.userAgent(), "application/json", c.header_)
+	body, err := googleapi.WithoutDataWrapper.JSONBuffer(c.testpermissionsrequest)
+	if err != nil {
+		return nil, err
+	}
+	c.urlParams_.Set("alt", alt)
+	c.urlParams_.Set("prettyPrint", "false")
+	urls := googleapi.ResolveRelative(c.s.BasePath, "projects/{project}/global/urlMaps/{resource}/testIamPermissions")
+	urls += "?" + c.urlParams_.Encode()
+	req, err := http.NewRequest("POST", urls, body)
+	if err != nil {
+		return nil, err
+	}
+	req.Header = reqHeaders
+	googleapi.Expand(req.URL, map[string]string{
+		"project":  c.project,
+		"resource": c.resource,
+	})
+	c.s.logger.DebugContext(c.ctx_, "api request", "serviceName", apiName, "rpcName", "compute.urlMaps.testIamPermissions", "request", internallog.HTTPRequest(req, body.Bytes()))
+	return gensupport.SendRequest(c.ctx_, c.s.client, req)
+}
+
+// Do executes the "compute.urlMaps.testIamPermissions" call.
+// Any non-2xx status code is an error. Response headers are in either
+// *TestPermissionsResponse.ServerResponse.Header or (if a response was
+// returned at all) in error.(*googleapi.Error).Header. Use
+// googleapi.IsNotModified to check whether the returned error was because
+// http.StatusNotModified was returned.
+func (c *UrlMapsTestIamPermissionsCall) Do(opts ...googleapi.CallOption) (*TestPermissionsResponse, error) {
+	gensupport.SetOptions(c.urlParams_, opts...)
+	res, err := c.doRequest("json")
+	if res != nil && res.StatusCode == http.StatusNotModified {
+		if res.Body != nil {
+			res.Body.Close()
+		}
+		return nil, gensupport.WrapError(&googleapi.Error{
+			Code:   res.StatusCode,
+			Header: res.Header,
+		})
+	}
+	if err != nil {
+		return nil, err
+	}
+	defer googleapi.CloseBody(res)
+	if err := googleapi.CheckResponse(res); err != nil {
+		return nil, gensupport.WrapError(err)
+	}
+	ret := &TestPermissionsResponse{
+		ServerResponse: googleapi.ServerResponse{
+			Header:         res.Header,
+			HTTPStatusCode: res.StatusCode,
+		},
+	}
+	target := &ret
+	b, err := gensupport.DecodeResponseBytes(target, res)
+	if err != nil {
+		return nil, err
+	}
+	c.s.logger.DebugContext(c.ctx_, "api response", "serviceName", apiName, "rpcName", "compute.urlMaps.testIamPermissions", "response", internallog.HTTPResponse(res, b))
+	return ret, nil
+}
+
 type UrlMapsUpdateCall struct {
 	s          *Service
 	project    string
diff --git a/vendor/google.golang.org/api/googleapi/googleapi.go b/vendor/google.golang.org/api/googleapi/googleapi.go
index f8a85d5a47..167f061092 100644
--- a/vendor/google.golang.org/api/googleapi/googleapi.go
+++ b/vendor/google.golang.org/api/googleapi/googleapi.go
@@ -333,6 +333,20 @@ func ChunkRetryDeadline(deadline time.Duration) MediaOption {
 	return chunkRetryDeadlineOption(deadline)
 }
 
+type enableAutoChecksumOption struct{}
+
+func (d enableAutoChecksumOption) setOptions(o *MediaOptions) {
+	o.EnableAutoChecksum = true
+}
+
+// EnableAutoChecksum returns a MediaOption that enables automatic checksum
+// calculation, which is only supported for resumable multi-chunk uploads.
+// The computed checksum is sent on the final upload request to the server.
+// Writes are rejected in the event of a checksum mismatch.
+func EnableAutoChecksum() MediaOption {
+	return enableAutoChecksumOption{}
+}
+
 // MediaOptions stores options for customizing media upload.  It is not used by developers directly.
 type MediaOptions struct {
 	ContentType           string
@@ -340,6 +354,7 @@ type MediaOptions struct {
 	ChunkSize             int
 	ChunkRetryDeadline    time.Duration
 	ChunkTransferTimeout  time.Duration
+	EnableAutoChecksum    bool
 }
 
 // ProcessMediaOptions stores options from opts in a MediaOptions.
diff --git a/vendor/google.golang.org/api/internal/credentialstype/credentialstype.go b/vendor/google.golang.org/api/internal/credentialstype/credentialstype.go
new file mode 100644
index 0000000000..0e2c4612c8
--- /dev/null
+++ b/vendor/google.golang.org/api/internal/credentialstype/credentialstype.go
@@ -0,0 +1,113 @@
+// Copyright 2024 Google LLC.
+// Use of this source code is governed by a BSD-style
+// license that can be found in the LICENSE file.
+
+// Package credentialstype defines the CredType used for specifying the type of JSON credentials.
+package credentialstype
+
+import (
+	"encoding/json"
+	"fmt"
+	"slices"
+)
+
+// CredType specifies the type of JSON credentials.
+type CredType string
+
+const (
+	// Unknown represents an unknown JSON file type.
+	Unknown CredType = ""
+	// ServiceAccount represents a service account file type.
+	ServiceAccount CredType = "service_account"
+	// AuthorizedUser represents an authorized user credentials file type.
+	AuthorizedUser CredType = "authorized_user"
+	// ImpersonatedServiceAccount represents an impersonated service account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ImpersonatedServiceAccount CredType = "impersonated_service_account"
+	// ExternalAccount represents an external account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ExternalAccount CredType = "external_account"
+	// GDCHServiceAccount represents a GDCH service account file type.
+	GDCHServiceAccount CredType = "gdc_service_account"
+	// ExternalAccountAuthorizedUser represents an external account authorized user file type.
+	ExternalAccountAuthorizedUser CredType = "external_account_authorized_user"
+)
+
+var knownTypes = map[CredType]bool{
+	ServiceAccount:                true,
+	AuthorizedUser:                true,
+	ImpersonatedServiceAccount:    true,
+	ExternalAccount:               true,
+	GDCHServiceAccount:            true,
+	ExternalAccountAuthorizedUser: true,
+}
+
+// GetCredType returns the credentials type or the Unknown type,
+// or an error for empty data or failure to unmarshal JSON.
+func GetCredType(data []byte) (CredType, error) {
+	var t CredType
+	if len(data) == 0 {
+		return t, fmt.Errorf("credential provided is 0 bytes")
+	}
+	var f struct {
+		Type string `json:"type"`
+	}
+	if err := json.Unmarshal(data, &f); err != nil {
+		return t, err
+	}
+	t = parseCredType(f.Type)
+	return t, nil
+}
+
+// CheckCredentialType checks if the provided JSON bytes match the expected
+// credential type and, if present, one of the allowed credential types.
+// An error is returned if the JSON is invalid, the type field is missing,
+// or the types do not match expected and (if present) allowed.
+func CheckCredentialType(b []byte, expected CredType, allowed ...CredType) error {
+	var f struct {
+		Type string `json:"type"`
+	}
+	if err := json.Unmarshal(b, &f); err != nil {
+		return fmt.Errorf("unable to parse credential type: %w", err)
+	}
+	if f.Type == "" {
+		return fmt.Errorf("missing `type` field in credential")
+	}
+	credType := CredType(f.Type)
+	if credType != expected {
+		return fmt.Errorf("credential type mismatch: got %q, expected %q", credType, expected)
+	}
+	if len(allowed) == 0 {
+		return nil
+	}
+	if !slices.Contains(allowed, credType) {
+		return fmt.Errorf("credential type not allowed: %q", credType)
+	}
+	return nil
+}
+
+// parseCredType returns the matching CredType for the JSON type string if
+// it is in the list of publicly exposed types, otherwise Unknown.
+func parseCredType(typeString string) CredType {
+	ct := CredType(typeString)
+	if knownTypes[ct] {
+		return ct
+	}
+	return Unknown
+}
diff --git a/vendor/google.golang.org/api/internal/creds.go b/vendor/google.golang.org/api/internal/creds.go
index 92bb42c321..2172ba4395 100644
--- a/vendor/google.golang.org/api/internal/creds.go
+++ b/vendor/google.golang.org/api/internal/creds.go
@@ -20,6 +20,7 @@ import (
 	"cloud.google.com/go/auth/oauth2adapt"
 	"golang.org/x/oauth2"
 	"google.golang.org/api/internal/cert"
+	"google.golang.org/api/internal/credentialstype"
 	"google.golang.org/api/internal/impersonate"
 
 	"golang.org/x/oauth2/google"
@@ -139,11 +140,13 @@ func detectDefaultFromDialSettings(settings *DialSettings) (*auth.Credentials, e
 		aud = settings.DefaultAudience
 	}
 
+	credsFile, _ := settings.GetAuthCredentialsFile()
+	credsJSON, _ := settings.GetAuthCredentialsJSON()
 	return credentials.DetectDefault(&credentials.DetectOptions{
 		Scopes:           scopes,
 		Audience:         aud,
-		CredentialsFile:  settings.CredentialsFile,
-		CredentialsJSON:  settings.CredentialsJSON,
+		CredentialsFile:  credsFile,
+		CredentialsJSON:  credsJSON,
 		UseSelfSignedJWT: useSelfSignedJWT,
 		Logger:           settings.Logger,
 	})
@@ -156,15 +159,15 @@ func baseCreds(ctx context.Context, ds *DialSettings) (*google.Credentials, erro
 	if ds.Credentials != nil {
 		return ds.Credentials, nil
 	}
-	if len(ds.CredentialsJSON) > 0 {
-		return credentialsFromJSON(ctx, ds.CredentialsJSON, ds)
+	if credsJSON, checkCredType := ds.GetAuthCredentialsJSON(); len(credsJSON) > 0 {
+		return credentialsFromJSON(ctx, credsJSON, ds, checkCredType)
 	}
-	if ds.CredentialsFile != "" {
-		data, err := os.ReadFile(ds.CredentialsFile)
+	if credsFile, checkCredType := ds.GetAuthCredentialsFile(); credsFile != "" {
+		data, err := os.ReadFile(credsFile)
 		if err != nil {
 			return nil, fmt.Errorf("cannot read credentials file: %v", err)
 		}
-		return credentialsFromJSON(ctx, data, ds)
+		return credentialsFromJSON(ctx, data, ds, checkCredType)
 	}
 	if ds.TokenSource != nil {
 		return &google.Credentials{TokenSource: ds.TokenSource}, nil
@@ -174,7 +177,7 @@ func baseCreds(ctx context.Context, ds *DialSettings) (*google.Credentials, erro
 		return nil, err
 	}
 	if len(cred.JSON) > 0 {
-		return credentialsFromJSON(ctx, cred.JSON, ds)
+		return credentialsFromJSON(ctx, cred.JSON, ds, credentialstype.Unknown)
 	}
 	// For GAE and GCE, the JSON is empty so return the default credentials directly.
 	return cred, nil
@@ -197,7 +200,12 @@ const (
 //
 // - Otherwise, executes standard OAuth 2.0 flow
 // More details: google.aip.dev/auth/4111
-func credentialsFromJSON(ctx context.Context, data []byte, ds *DialSettings) (*google.Credentials, error) {
+func credentialsFromJSON(ctx context.Context, data []byte, ds *DialSettings, checkCredType credentialstype.CredType) (*google.Credentials, error) {
+	if checkCredType != credentialstype.Unknown {
+		if err := credentialstype.CheckCredentialType(data, checkCredType); err != nil {
+			return nil, err
+		}
+	}
 	var params google.CredentialsParams
 	params.Scopes = ds.GetScopes()
 
diff --git a/vendor/google.golang.org/api/internal/gensupport/buffer.go b/vendor/google.golang.org/api/internal/gensupport/buffer.go
index 3d0817ede9..63f3834903 100644
--- a/vendor/google.golang.org/api/internal/gensupport/buffer.go
+++ b/vendor/google.golang.org/api/internal/gensupport/buffer.go
@@ -6,6 +6,7 @@ package gensupport
 
 import (
 	"bytes"
+	"hash/crc32"
 	"io"
 
 	"google.golang.org/api/googleapi"
@@ -21,8 +22,17 @@ type MediaBuffer struct {
 
 	// The absolute position of chunk in the underlying media.
 	off int64
+
+	// fullObjectChecksum holds the running checksum of streamed media chunks when automatic checksum
+	// calculation is enabled via enableAutoChecksum.
+	fullObjectChecksum uint32
+	enableAutoChecksum bool
 }
 
+var (
+	crc32cTable = crc32.MakeTable(crc32.Castagnoli)
+)
+
 // NewMediaBuffer initializes a MediaBuffer.
 func NewMediaBuffer(media io.Reader, chunkSize int) *MediaBuffer {
 	return &MediaBuffer{media: media, chunk: make([]byte, 0, chunkSize)}
@@ -52,6 +62,9 @@ func (mb *MediaBuffer) loadChunk() error {
 		read += n
 	}
 	mb.chunk = mb.chunk[:read]
+	if mb.enableAutoChecksum {
+		mb.fullObjectChecksum = crc32.Update(mb.fullObjectChecksum, crc32cTable, mb.chunk)
+	}
 	return err
 }
 
diff --git a/vendor/google.golang.org/api/internal/gensupport/media.go b/vendor/google.golang.org/api/internal/gensupport/media.go
index 8c7435de3e..ec3bf1baec 100644
--- a/vendor/google.golang.org/api/internal/gensupport/media.go
+++ b/vendor/google.golang.org/api/internal/gensupport/media.go
@@ -118,11 +118,12 @@ func typeHeader(contentType string) textproto.MIMEHeader {
 //
 // After PrepareUpload has been called, media should no longer be used: the
 // media content should be accessed via one of the return values.
-func PrepareUpload(media io.Reader, chunkSize int) (r io.Reader, mb *MediaBuffer, singleChunk bool) {
+func PrepareUpload(media io.Reader, chunkSize int, enableAutoChecksum bool) (r io.Reader, mb *MediaBuffer, singleChunk bool) {
 	if chunkSize == 0 { // do not chunk
 		return media, nil, true
 	}
 	mb = NewMediaBuffer(media, chunkSize)
+	mb.enableAutoChecksum = enableAutoChecksum
 	_, _, _, err := mb.Chunk()
 	// If err is io.EOF, we can upload this in a single request. Otherwise, err is
 	// either nil or a non-EOF error. If it is the latter, then the next call to
@@ -159,7 +160,7 @@ func NewInfoFromMedia(r io.Reader, options []googleapi.MediaOption) *MediaInfo {
 	}
 	mi.chunkRetryDeadline = opts.ChunkRetryDeadline
 	mi.chunkTransferTimeout = opts.ChunkTransferTimeout
-	mi.media, mi.buffer, mi.singleChunk = PrepareUpload(r, opts.ChunkSize)
+	mi.media, mi.buffer, mi.singleChunk = PrepareUpload(r, opts.ChunkSize, opts.EnableAutoChecksum)
 	return mi
 }
 
diff --git a/vendor/google.golang.org/api/internal/gensupport/resumable.go b/vendor/google.golang.org/api/internal/gensupport/resumable.go
index 91108d3273..a3b7acad5c 100644
--- a/vendor/google.golang.org/api/internal/gensupport/resumable.go
+++ b/vendor/google.golang.org/api/internal/gensupport/resumable.go
@@ -6,6 +6,8 @@ package gensupport
 
 import (
 	"context"
+	"encoding/base64"
+	"encoding/binary"
 	"errors"
 	"fmt"
 	"io"
@@ -18,6 +20,11 @@ import (
 	"google.golang.org/api/internal"
 )
 
+const (
+	crc32cPrefix  = "crc32c"
+	hashHeaderKey = "X-Goog-Hash"
+)
+
 // ResumableUpload is used by the generated APIs to provide resumable uploads.
 // It is not used by developers directly.
 type ResumableUpload struct {
@@ -103,6 +110,11 @@ func (rx *ResumableUpload) doUploadRequest(ctx context.Context, data io.Reader,
 	// 308" response header.
 	req.Header.Set("X-GUploader-No-308", "yes")
 
+	// Server accepts checksum only on final request through header.
+	if final && rx.Media.enableAutoChecksum {
+		req.Header.Set(hashHeaderKey, fmt.Sprintf("%v=%v", crc32cPrefix, encodeUint32(rx.Media.fullObjectChecksum)))
+	}
+
 	return SendRequest(ctx, rx.Client, req)
 }
 
@@ -335,3 +347,10 @@ func (rx *ResumableUpload) Upload(ctx context.Context) (*http.Response, error) {
 		return resp, nil
 	}
 }
+
+// Encode a uint32 as Base64 in big-endian byte order.
+func encodeUint32(u uint32) string {
+	b := make([]byte, 4)
+	binary.BigEndian.PutUint32(b, u)
+	return base64.StdEncoding.EncodeToString(b)
+}
diff --git a/vendor/google.golang.org/api/internal/settings.go b/vendor/google.golang.org/api/internal/settings.go
index a81d149ae2..96a5fc3be1 100644
--- a/vendor/google.golang.org/api/internal/settings.go
+++ b/vendor/google.golang.org/api/internal/settings.go
@@ -17,6 +17,7 @@ import (
 	"cloud.google.com/go/auth"
 	"golang.org/x/oauth2"
 	"golang.org/x/oauth2/google"
+	"google.golang.org/api/internal/credentialstype"
 	"google.golang.org/api/internal/impersonate"
 	"google.golang.org/grpc"
 )
@@ -31,16 +32,18 @@ const (
 // DialSettings holds information needed to establish a connection with a
 // Google API service.
 type DialSettings struct {
-	Endpoint                      string
-	DefaultEndpoint               string
-	DefaultEndpointTemplate       string
-	DefaultMTLSEndpoint           string
-	Scopes                        []string
-	DefaultScopes                 []string
-	EnableJwtWithScope            bool
-	TokenSource                   oauth2.TokenSource
-	Credentials                   *google.Credentials
-	CredentialsFile               string // if set, Token Source is ignored.
+	Endpoint                string
+	DefaultEndpoint         string
+	DefaultEndpointTemplate string
+	DefaultMTLSEndpoint     string
+	Scopes                  []string
+	DefaultScopes           []string
+	EnableJwtWithScope      bool
+	TokenSource             oauth2.TokenSource
+	Credentials             *google.Credentials
+	// Deprecated: Use AuthCredentialsFile instead, due to security risk.
+	CredentialsFile string
+	// Deprecated: Use AuthCredentialsJSON instead, due to security risk.
 	CredentialsJSON               []byte
 	InternalCredentials           *google.Credentials
 	UserAgent                     string
@@ -72,6 +75,9 @@ type DialSettings struct {
 
 	// New Auth library Options
 	AuthCredentials      *auth.Credentials
+	AuthCredentialsJSON  []byte
+	AuthCredentialsFile  string
+	AuthCredentialsType  credentialstype.CredType
 	EnableNewAuthLibrary bool
 
 	// TODO(b/372244283): Remove after b/358175516 has been fixed
@@ -113,22 +119,55 @@ func (ds *DialSettings) IsNewAuthLibraryEnabled() bool {
 	if ds.AuthCredentials != nil {
 		return true
 	}
+	if len(ds.AuthCredentialsJSON) > 0 {
+		return true
+	}
+	if ds.AuthCredentialsFile != "" {
+		return true
+	}
 	if b, err := strconv.ParseBool(os.Getenv(newAuthLibEnvVar)); err == nil {
 		return b
 	}
 	return false
 }
 
+// GetAuthCredentialsJSON returns the AuthCredentialsJSON and AuthCredentialsType, if set.
+// Otherwise it falls back to the deprecated CredentialsJSON with an Unknown type.
+//
+// Use AuthCredentialsJSON if provided, as it is the safer, recommended option.
+// CredentialsJSON is populated by the deprecated WithCredentialsJSON.
+func (ds *DialSettings) GetAuthCredentialsJSON() ([]byte, credentialstype.CredType) {
+	if len(ds.AuthCredentialsJSON) > 0 {
+		return ds.AuthCredentialsJSON, ds.AuthCredentialsType
+	}
+	return ds.CredentialsJSON, credentialstype.Unknown
+}
+
+// GetAuthCredentialsFile returns the AuthCredentialsFile and AuthCredentialsType, if set.
+// Otherwise it falls back to the deprecated CredentialsFile with an Unknown type.
+//
+// Use AuthCredentialsFile if provided, as it is the safer, recommended option.
+// CredentialsFile is populated by the deprecated WithCredentialsFile.
+func (ds *DialSettings) GetAuthCredentialsFile() (string, credentialstype.CredType) {
+	if ds.AuthCredentialsFile != "" {
+		return ds.AuthCredentialsFile, ds.AuthCredentialsType
+	}
+	return ds.CredentialsFile, credentialstype.Unknown
+}
+
 // Validate reports an error if ds is invalid.
 func (ds *DialSettings) Validate() error {
 	if ds.SkipValidation {
 		return nil
 	}
-	hasCreds := ds.APIKey != "" || ds.TokenSource != nil || ds.CredentialsFile != "" || ds.Credentials != nil
+	hasCreds := ds.APIKey != "" || ds.TokenSource != nil || ds.CredentialsFile != "" || ds.Credentials != nil || ds.AuthCredentials != nil || len(ds.AuthCredentialsJSON) > 0 || ds.AuthCredentialsFile != ""
 	if ds.NoAuth && hasCreds {
 		return errors.New("options.WithoutAuthentication is incompatible with any option that provides credentials")
 	}
 	// Credentials should not appear with other options.
+	// AuthCredentials is a special case that may be present with
+	// with other options in order to facilitate automatic conversion of
+	// oauth2 types (old auth) to cloud.google.com/go/auth types (new auth).
 	// We currently allow TokenSource and CredentialsFile to coexist.
 	// TODO(jba): make TokenSource & CredentialsFile an error (breaking change).
 	nCreds := 0
@@ -138,6 +177,12 @@ func (ds *DialSettings) Validate() error {
 	if len(ds.CredentialsJSON) > 0 {
 		nCreds++
 	}
+	if len(ds.AuthCredentialsJSON) > 0 {
+		nCreds++
+	}
+	if ds.AuthCredentialsFile != "" {
+		nCreds++
+	}
 	if ds.CredentialsFile != "" {
 		nCreds++
 	}
diff --git a/vendor/google.golang.org/api/internal/version.go b/vendor/google.golang.org/api/internal/version.go
index 6368b1d5cc..1cbe3157f1 100644
--- a/vendor/google.golang.org/api/internal/version.go
+++ b/vendor/google.golang.org/api/internal/version.go
@@ -5,4 +5,4 @@
 package internal
 
 // Version is the current tagged release of the library.
-const Version = "0.257.0"
+const Version = "0.260.0"
diff --git a/vendor/google.golang.org/api/option/internaloption/internaloption.go b/vendor/google.golang.org/api/option/internaloption/internaloption.go
index 931f093d89..d67351a7fa 100644
--- a/vendor/google.golang.org/api/option/internaloption/internaloption.go
+++ b/vendor/google.golang.org/api/option/internaloption/internaloption.go
@@ -290,7 +290,7 @@ func GetLogger(opts []option.ClientOption) *slog.Logger {
 // options, in this order:
 //
 //   - [option.WithoutAuthentication]
-//   - [option.WithAuthCredentials]
+//   - [option.Credentials]
 //   - [WithCredentials] (internal use only)
 //   - [option.WithCredentials]
 //   - [option.WithTokenSource]
@@ -300,7 +300,9 @@ func GetLogger(opts []option.ClientOption) *slog.Logger {
 // returns the result:
 //
 //   - [option.WithAudiences]
+//   - [option.WithAuthCredentialsFile]
 //   - [option.WithCredentialsFile]
+//   - [option.WithAuthCredentialsJSON]
 //   - [option.WithCredentialsJSON]
 //   - [option.WithScopes]
 //   - [WithDefaultScopes] (internal use only)
diff --git a/vendor/google.golang.org/api/option/option.go b/vendor/google.golang.org/api/option/option.go
index 1b134caa86..4dbfc3a2ab 100644
--- a/vendor/google.golang.org/api/option/option.go
+++ b/vendor/google.golang.org/api/option/option.go
@@ -14,10 +14,45 @@ import (
 	"golang.org/x/oauth2"
 	"golang.org/x/oauth2/google"
 	"google.golang.org/api/internal"
+	"google.golang.org/api/internal/credentialstype"
 	"google.golang.org/api/internal/impersonate"
 	"google.golang.org/grpc"
 )
 
+// CredentialsType specifies the type of JSON credentials being provided
+// to a loading function such as [WithAuthCredentialsFile] or
+// [WithAuthCredentialsJSON].
+type CredentialsType = credentialstype.CredType
+
+const (
+	// ServiceAccount represents a service account file type.
+	ServiceAccount = credentialstype.ServiceAccount
+	// AuthorizedUser represents an authorized user credentials file type.
+	AuthorizedUser = credentialstype.AuthorizedUser
+	// ImpersonatedServiceAccount represents an impersonated service account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ImpersonatedServiceAccount = credentialstype.ImpersonatedServiceAccount
+	// ExternalAccount represents an external account file type.
+	//
+	// IMPORTANT:
+	// This credential type does not validate the credential configuration. A security
+	// risk occurs when a credential configuration configured with malicious urls
+	// is used.
+	// You should validate credential configurations provided by untrusted sources.
+	// See [Security requirements when using credential configurations from an external
+	// source] https://cloud.google.com/docs/authentication/external/externally-sourced-credentials
+	// for more details.
+	ExternalAccount = credentialstype.ExternalAccount
+)
+
 // A ClientOption is an option for a Google API client.
 type ClientOption interface {
 	Apply(*internal.DialSettings)
@@ -45,6 +80,36 @@ func (w withCredFile) Apply(o *internal.DialSettings) {
 // API calls with the given service account or refresh token JSON
 // credentials file.
 //
+// Deprecated: This function is being deprecated because of a potential security risk.
+//
+// This function does not validate the credential configuration. The security
+// risk occurs when a credential configuration is accepted from a source that
+// is not under your control and used without validation on your side.
+//
+// If you know that you will be loading credential configurations of a
+// specific type, it is recommended to use a credential-type-specific
+// option function.
+// This will ensure that an unexpected credential type with potential for
+// malicious intent is not loaded unintentionally. You might still have to do
+// validation for certain credential types. Please follow the recommendation
+// for that function. For example, if you want to load only service accounts,
+// you can use [WithAuthCredentialsFile] with [ServiceAccount]:
+//
+//	option.WithAuthCredentialsFile(option.ServiceAccount, "/path/to/file.json")
+//
+// If you are loading your credential configuration from an untrusted source and have
+// not mitigated the risks (e.g. by validating the configuration yourself), make
+// these changes as soon as possible to prevent security risks to your environment.
+//
+// Regardless of the function used, it is always your responsibility to validate
+// configurations received from external sources.
+func WithCredentialsFile(filename string) ClientOption {
+	return withCredFile(filename)
+}
+
+// WithAuthCredentialsFile returns a ClientOption that authenticates API calls
+// with the given JSON credentials file and credential type.
+//
 // Important: If you accept a credential configuration (credential
 // JSON/File/Stream) from an external source for authentication to Google
 // Cloud Platform, you must validate it before providing it to any Google
@@ -52,8 +117,21 @@ func (w withCredFile) Apply(o *internal.DialSettings) {
 // Google APIs can compromise the security of your systems and data. For
 // more information, refer to [Validate credential configurations from
 // external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
-func WithCredentialsFile(filename string) ClientOption {
-	return withCredFile(filename)
+func WithAuthCredentialsFile(credType CredentialsType, filename string) ClientOption {
+	return withAuthCredentialsFile{
+		credsType: credType,
+		filename:  filename,
+	}
+}
+
+type withAuthCredentialsFile struct {
+	credsType CredentialsType
+	filename  string
+}
+
+func (w withAuthCredentialsFile) Apply(o *internal.DialSettings) {
+	o.AuthCredentialsFile = w.filename
+	o.AuthCredentialsType = w.credsType
 }
 
 // WithServiceAccountFile returns a ClientOption that uses a Google service
@@ -67,15 +145,52 @@ func WithCredentialsFile(filename string) ClientOption {
 // more information, refer to [Validate credential configurations from
 // external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
 //
-// Deprecated: Use WithCredentialsFile instead.
+// Deprecated: Use WithAuthCredentialsFile instead.
 func WithServiceAccountFile(filename string) ClientOption {
-	return WithCredentialsFile(filename)
+	return WithAuthCredentialsFile(ServiceAccount, filename)
 }
 
 // WithCredentialsJSON returns a ClientOption that authenticates
 // API calls with the given service account or refresh token JSON
 // credentials.
 //
+// Deprecated: This function is being deprecated because of a potential security risk.
+//
+// This function does not validate the credential configuration. The security
+// risk occurs when a credential configuration is accepted from a source that
+// is not under your control and used without validation on your side.
+//
+// If you know that you will be loading credential configurations of a
+// specific type, it is recommended to use a credential-type-specific
+// option function.
+// This will ensure that an unexpected credential type with potential for
+// malicious intent is not loaded unintentionally. You might still have to do
+// validation for certain credential types. Please follow the recommendation
+// for that function. For example, if you want to load only service accounts,
+// you can use [WithAuthCredentialsJSON] with [ServiceAccount]:
+//
+//	option.WithAuthCredentialsJSON(option.ServiceAccount, json)
+//
+// If you are loading your credential configuration from an untrusted source and have
+// not mitigated the risks (e.g. by validating the configuration yourself), make
+// these changes as soon as possible to prevent security risks to your environment.
+//
+// Regardless of the function used, it is always your responsibility to validate
+// configurations received from external sources.
+func WithCredentialsJSON(p []byte) ClientOption {
+	return withCredentialsJSON(p)
+}
+
+type withCredentialsJSON []byte
+
+func (w withCredentialsJSON) Apply(o *internal.DialSettings) {
+	o.CredentialsJSON = make([]byte, len(w))
+	copy(o.CredentialsJSON, w)
+}
+
+// WithAuthCredentialsJSON returns a ClientOption that authenticates API calls
+// with the given JSON credentials and credential type.
+//
 // Important: If you accept a credential configuration (credential
 // JSON/File/Stream) from an external source for authentication to Google
 // Cloud Platform, you must validate it before providing it to any Google
@@ -83,15 +198,21 @@ func WithServiceAccountFile(filename string) ClientOption {
 // Google APIs can compromise the security of your systems and data. For
 // more information, refer to [Validate credential configurations from
 // external sources](https://cloud.google.com/docs/authentication/external/externally-sourced-credentials).
-func WithCredentialsJSON(p []byte) ClientOption {
-	return withCredentialsJSON(p)
+func WithAuthCredentialsJSON(credType CredentialsType, json []byte) ClientOption {
+	return withAuthCredentialsJSON{
+		credsType: credType,
+		json:      json,
+	}
 }
 
-type withCredentialsJSON []byte
+type withAuthCredentialsJSON struct {
+	credsType CredentialsType
+	json      []byte
+}
 
-func (w withCredentialsJSON) Apply(o *internal.DialSettings) {
-	o.CredentialsJSON = make([]byte, len(w))
-	copy(o.CredentialsJSON, w)
+func (w withAuthCredentialsJSON) Apply(o *internal.DialSettings) {
+	o.AuthCredentialsJSON = w.json
+	o.AuthCredentialsType = w.credsType
 }
 
 // WithEndpoint returns a ClientOption that overrides the default endpoint
diff --git a/vendor/google.golang.org/api/storage/v1/storage-api.json b/vendor/google.golang.org/api/storage/v1/storage-api.json
index 22ab414c46..6daf228a7a 100644
--- a/vendor/google.golang.org/api/storage/v1/storage-api.json
+++ b/vendor/google.golang.org/api/storage/v1/storage-api.json
@@ -253,7 +253,7 @@
       "location": "northamerica-south1"
     }
   ],
-  "etag": "\"3131343633323936333034313936343439353533\"",
+  "etag": "\"39373339343838363630393031393634343537\"",
   "icons": {
     "x16": "https://www.google.com/images/icons/product/cloud_storage-16.png",
     "x32": "https://www.google.com/images/icons/product/cloud_storage-32.png"
@@ -4549,7 +4549,7 @@
       }
     }
   },
-  "revision": "20250925",
+  "revision": "20251118",
   "rootUrl": "https://storage.googleapis.com/",
   "schemas": {
     "AdvanceRelocateBucketOperationRequest": {
@@ -5500,6 +5500,10 @@
       "description": "A Compose request.",
       "id": "ComposeRequest",
       "properties": {
+        "deleteSourceObjects": {
+          "description": "If true, the source objects will be deleted.",
+          "type": "boolean"
+        },
         "destination": {
           "$ref": "Object",
           "description": "Properties of the resulting object."
diff --git a/vendor/google.golang.org/api/storage/v1/storage-gen.go b/vendor/google.golang.org/api/storage/v1/storage-gen.go
index 6d4af3902e..08cfa07ebc 100644
--- a/vendor/google.golang.org/api/storage/v1/storage-gen.go
+++ b/vendor/google.golang.org/api/storage/v1/storage-gen.go
@@ -1,4 +1,4 @@
-// Copyright 2025 Google LLC.
+// Copyright 2026 Google LLC.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the LICENSE file.
 
@@ -1732,6 +1732,8 @@ func (s Channel) MarshalJSON() ([]byte, error) {
 
 // ComposeRequest: A Compose request.
 type ComposeRequest struct {
+	// DeleteSourceObjects: If true, the source objects will be deleted.
+	DeleteSourceObjects bool `json:"deleteSourceObjects,omitempty"`
 	// Destination: Properties of the resulting object.
 	Destination *Object `json:"destination,omitempty"`
 	// Kind: The kind of item this is.
@@ -1739,15 +1741,15 @@ type ComposeRequest struct {
 	// SourceObjects: The list of source objects that will be concatenated into a
 	// single object.
 	SourceObjects []*ComposeRequestSourceObjects `json:"sourceObjects,omitempty"`
-	// ForceSendFields is a list of field names (e.g. "Destination") to
+	// ForceSendFields is a list of field names (e.g. "DeleteSourceObjects") to
 	// unconditionally include in API requests. By default, fields with empty or
 	// default values are omitted from API requests. See
 	// https://pkg.go.dev/google.golang.org/api#hdr-ForceSendFields for more
 	// details.
 	ForceSendFields []string `json:"-"`
-	// NullFields is a list of field names (e.g. "Destination") to include in API
-	// requests with the JSON null value. By default, fields with empty values are
-	// omitted from API requests. See
+	// NullFields is a list of field names (e.g. "DeleteSourceObjects") to include
+	// in API requests with the JSON null value. By default, fields with empty
+	// values are omitted from API requests. See
 	// https://pkg.go.dev/google.golang.org/api#hdr-NullFields for more details.
 	NullFields []string `json:"-"`
 }
diff --git a/vendor/google.golang.org/api/transport/http/dial.go b/vendor/google.golang.org/api/transport/http/dial.go
index a33df91203..494de475e5 100644
--- a/vendor/google.golang.org/api/transport/http/dial.go
+++ b/vendor/google.golang.org/api/transport/http/dial.go
@@ -108,6 +108,8 @@ func newClientNewAuth(ctx context.Context, base http.RoundTripper, ds *internal.
 	if ds.UserAgent != "" {
 		headers.Set("User-Agent", ds.UserAgent)
 	}
+	credsJSON, _ := ds.GetAuthCredentialsJSON()
+	credsFile, _ := ds.GetAuthCredentialsFile()
 	client, err := httptransport.NewClient(&httptransport.Options{
 		DisableTelemetry:      ds.TelemetryDisabled,
 		DisableAuthentication: ds.NoAuth,
@@ -120,8 +122,8 @@ func newClientNewAuth(ctx context.Context, base http.RoundTripper, ds *internal.
 		DetectOpts: &credentials.DetectOptions{
 			Scopes:          ds.Scopes,
 			Audience:        aud,
-			CredentialsFile: ds.CredentialsFile,
-			CredentialsJSON: ds.CredentialsJSON,
+			CredentialsFile: credsFile,
+			CredentialsJSON: credsJSON,
 			Logger:          ds.Logger,
 		},
 		InternalOptions: &httptransport.InternalOptions{
diff --git a/vendor/google.golang.org/grpc/clientconn.go b/vendor/google.golang.org/grpc/clientconn.go
index c0c2c9a76a..b767d3e33e 100644
--- a/vendor/google.golang.org/grpc/clientconn.go
+++ b/vendor/google.golang.org/grpc/clientconn.go
@@ -35,6 +35,8 @@ import (
 	"google.golang.org/grpc/balancer/pickfirst"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/connectivity"
+	"google.golang.org/grpc/credentials"
+	expstats "google.golang.org/grpc/experimental/stats"
 	"google.golang.org/grpc/internal"
 	"google.golang.org/grpc/internal/channelz"
 	"google.golang.org/grpc/internal/grpcsync"
@@ -98,6 +100,41 @@ var (
 	errTransportCredentialsMissing = errors.New("grpc: the credentials require transport level security (use grpc.WithTransportCredentials() to set)")
 )
 
+var (
+	disconnectionsMetric = expstats.RegisterInt64Count(expstats.MetricDescriptor{
+		Name:           "grpc.subchannel.disconnections",
+		Description:    "EXPERIMENTAL. Number of times the selected subchannel becomes disconnected.",
+		Unit:           "{disconnection}",
+		Labels:         []string{"grpc.target"},
+		OptionalLabels: []string{"grpc.lb.backend_service", "grpc.lb.locality", "grpc.disconnect_error"},
+		Default:        false,
+	})
+	connectionAttemptsSucceededMetric = expstats.RegisterInt64Count(expstats.MetricDescriptor{
+		Name:           "grpc.subchannel.connection_attempts_succeeded",
+		Description:    "EXPERIMENTAL. Number of successful connection attempts.",
+		Unit:           "{attempt}",
+		Labels:         []string{"grpc.target"},
+		OptionalLabels: []string{"grpc.lb.backend_service", "grpc.lb.locality"},
+		Default:        false,
+	})
+	connectionAttemptsFailedMetric = expstats.RegisterInt64Count(expstats.MetricDescriptor{
+		Name:           "grpc.subchannel.connection_attempts_failed",
+		Description:    "EXPERIMENTAL. Number of failed connection attempts.",
+		Unit:           "{attempt}",
+		Labels:         []string{"grpc.target"},
+		OptionalLabels: []string{"grpc.lb.backend_service", "grpc.lb.locality"},
+		Default:        false,
+	})
+	openConnectionsMetric = expstats.RegisterInt64UpDownCount(expstats.MetricDescriptor{
+		Name:           "grpc.subchannel.open_connections",
+		Description:    "EXPERIMENTAL. Number of open connections.",
+		Unit:           "{attempt}",
+		Labels:         []string{"grpc.target"},
+		OptionalLabels: []string{"grpc.lb.backend_service", "grpc.security_level", "grpc.lb.locality"},
+		Default:        false,
+	})
+)
+
 const (
 	defaultClientMaxReceiveMessageSize = 1024 * 1024 * 4
 	defaultClientMaxSendMessageSize    = math.MaxInt32
@@ -262,9 +299,10 @@ func DialContext(ctx context.Context, target string, opts ...DialOption) (conn *
 	}()
 
 	// This creates the name resolver, load balancer, etc.
-	if err := cc.idlenessMgr.ExitIdleMode(); err != nil {
-		return nil, err
+	if err := cc.exitIdleMode(); err != nil {
+		return nil, fmt.Errorf("failed to exit idle mode: %w", err)
 	}
+	cc.idlenessMgr.UnsafeSetNotIdle()
 
 	// Return now for non-blocking dials.
 	if !cc.dopts.block {
@@ -332,7 +370,7 @@ func (cc *ClientConn) addTraceEvent(msg string) {
 			Severity: channelz.CtInfo,
 		}
 	}
-	channelz.AddTraceEvent(logger, cc.channelz, 0, ted)
+	channelz.AddTraceEvent(logger, cc.channelz, 1, ted)
 }
 
 type idler ClientConn
@@ -341,14 +379,17 @@ func (i *idler) EnterIdleMode() {
 	(*ClientConn)(i).enterIdleMode()
 }
 
-func (i *idler) ExitIdleMode() error {
-	return (*ClientConn)(i).exitIdleMode()
+func (i *idler) ExitIdleMode() {
+	// Ignore the error returned from this method, because from the perspective
+	// of the caller (idleness manager), the channel would have always moved out
+	// of IDLE by the time this method returns.
+	(*ClientConn)(i).exitIdleMode()
 }
 
 // exitIdleMode moves the channel out of idle mode by recreating the name
 // resolver and load balancer.  This should never be called directly; use
 // cc.idlenessMgr.ExitIdleMode instead.
-func (cc *ClientConn) exitIdleMode() (err error) {
+func (cc *ClientConn) exitIdleMode() error {
 	cc.mu.Lock()
 	if cc.conns == nil {
 		cc.mu.Unlock()
@@ -356,11 +397,23 @@ func (cc *ClientConn) exitIdleMode() (err error) {
 	}
 	cc.mu.Unlock()
 
+	// Set state to CONNECTING before building the name resolver
+	// so the channel does not remain in IDLE.
+	cc.csMgr.updateState(connectivity.Connecting)
+
 	// This needs to be called without cc.mu because this builds a new resolver
 	// which might update state or report error inline, which would then need to
 	// acquire cc.mu.
 	if err := cc.resolverWrapper.start(); err != nil {
-		return err
+		// If resolver creation fails, treat it like an error reported by the
+		// resolver before any valid updates. Set channel's state to
+		// TransientFailure, and set an erroring picker with the resolver build
+		// error, which will returned as part of any subsequent RPCs.
+		logger.Warningf("Failed to start resolver: %v", err)
+		cc.csMgr.updateState(connectivity.TransientFailure)
+		cc.mu.Lock()
+		cc.updateResolverStateAndUnlock(resolver.State{}, err)
+		return fmt.Errorf("failed to start resolver: %w", err)
 	}
 
 	cc.addTraceEvent("exiting idle mode")
@@ -681,10 +734,8 @@ func (cc *ClientConn) GetState() connectivity.State {
 // Notice: This API is EXPERIMENTAL and may be changed or removed in a later
 // release.
 func (cc *ClientConn) Connect() {
-	if err := cc.idlenessMgr.ExitIdleMode(); err != nil {
-		cc.addTraceEvent(err.Error())
-		return
-	}
+	cc.idlenessMgr.ExitIdleMode()
+
 	// If the ClientConn was not in idle mode, we need to call ExitIdle on the
 	// LB policy so that connections can be created.
 	cc.mu.Lock()
@@ -735,8 +786,8 @@ func init() {
 	internal.EnterIdleModeForTesting = func(cc *ClientConn) {
 		cc.idlenessMgr.EnterIdleModeForTesting()
 	}
-	internal.ExitIdleModeForTesting = func(cc *ClientConn) error {
-		return cc.idlenessMgr.ExitIdleMode()
+	internal.ExitIdleModeForTesting = func(cc *ClientConn) {
+		cc.idlenessMgr.ExitIdleMode()
 	}
 }
 
@@ -861,6 +912,7 @@ func (cc *ClientConn) newAddrConnLocked(addrs []resolver.Address, opts balancer.
 		channelz:     channelz.RegisterSubChannel(cc.channelz, ""),
 		resetBackoff: make(chan struct{}),
 	}
+	ac.updateTelemetryLabelsLocked()
 	ac.ctx, ac.cancel = context.WithCancel(cc.ctx)
 	// Start with our address set to the first address; this may be updated if
 	// we connect to different addresses.
@@ -977,7 +1029,7 @@ func (ac *addrConn) updateAddrs(addrs []resolver.Address) {
 	}
 
 	ac.addrs = addrs
-
+	ac.updateTelemetryLabelsLocked()
 	if ac.state == connectivity.Shutdown ||
 		ac.state == connectivity.TransientFailure ||
 		ac.state == connectivity.Idle {
@@ -1216,6 +1268,9 @@ type addrConn struct {
 	resetBackoff chan struct{}
 
 	channelz *channelz.SubChannel
+
+	localityLabel       string
+	backendServiceLabel string
 }
 
 // Note: this requires a lock on ac.mu.
@@ -1223,6 +1278,18 @@ func (ac *addrConn) updateConnectivityState(s connectivity.State, lastErr error)
 	if ac.state == s {
 		return
 	}
+
+	// If we are transitioning out of Ready, it means there is a disconnection.
+	// A SubConn can also transition from CONNECTING directly to IDLE when
+	// a transport is successfully created, but the connection fails
+	// before the SubConn can send the notification for READY. We treat
+	// this as a successful connection and transition to IDLE.
+	// TODO: https://github.com/grpc/grpc-go/issues/7862 - Remove the second
+	// part of the if condition below once the issue is fixed.
+	if ac.state == connectivity.Ready || (ac.state == connectivity.Connecting && s == connectivity.Idle) {
+		disconnectionsMetric.Record(ac.cc.metricsRecorderList, 1, ac.cc.target, ac.backendServiceLabel, ac.localityLabel, "unknown")
+		openConnectionsMetric.Record(ac.cc.metricsRecorderList, -1, ac.cc.target, ac.backendServiceLabel, ac.securityLevelLocked(), ac.localityLabel)
+	}
 	ac.state = s
 	ac.channelz.ChannelMetrics.State.Store(&s)
 	if lastErr == nil {
@@ -1280,6 +1347,15 @@ func (ac *addrConn) resetTransportAndUnlock() {
 	ac.mu.Unlock()
 
 	if err := ac.tryAllAddrs(acCtx, addrs, connectDeadline); err != nil {
+		if !errors.Is(err, context.Canceled) {
+			connectionAttemptsFailedMetric.Record(ac.cc.metricsRecorderList, 1, ac.cc.target, ac.backendServiceLabel, ac.localityLabel)
+		} else {
+			if logger.V(2) {
+				// This records cancelled connection attempts which can be later
+				// replaced by a metric.
+				logger.Infof("Context cancellation detected; not recording this as a failed connection attempt.")
+			}
+		}
 		// TODO: #7534 - Move re-resolution requests into the pick_first LB policy
 		// to ensure one resolution request per pass instead of per subconn failure.
 		ac.cc.resolveNow(resolver.ResolveNowOptions{})
@@ -1319,10 +1395,50 @@ func (ac *addrConn) resetTransportAndUnlock() {
 	}
 	// Success; reset backoff.
 	ac.mu.Lock()
+	connectionAttemptsSucceededMetric.Record(ac.cc.metricsRecorderList, 1, ac.cc.target, ac.backendServiceLabel, ac.localityLabel)
+	openConnectionsMetric.Record(ac.cc.metricsRecorderList, 1, ac.cc.target, ac.backendServiceLabel, ac.securityLevelLocked(), ac.localityLabel)
 	ac.backoffIdx = 0
 	ac.mu.Unlock()
 }
 
+// updateTelemetryLabelsLocked calculates and caches the telemetry labels based on the
+// first address in addrConn.
+func (ac *addrConn) updateTelemetryLabelsLocked() {
+	labelsFunc, ok := internal.AddressToTelemetryLabels.(func(resolver.Address) map[string]string)
+	if !ok || len(ac.addrs) == 0 {
+		// Reset defaults
+		ac.localityLabel = ""
+		ac.backendServiceLabel = ""
+		return
+	}
+	labels := labelsFunc(ac.addrs[0])
+	ac.localityLabel = labels["grpc.lb.locality"]
+	ac.backendServiceLabel = labels["grpc.lb.backend_service"]
+}
+
+type securityLevelKey struct{}
+
+func (ac *addrConn) securityLevelLocked() string {
+	var secLevel string
+	// During disconnection, ac.transport is nil. Fall back to the security level
+	// stored in the current address during connection.
+	if ac.transport == nil {
+		secLevel, _ = ac.curAddr.Attributes.Value(securityLevelKey{}).(string)
+		return secLevel
+	}
+	authInfo := ac.transport.Peer().AuthInfo
+	if ci, ok := authInfo.(interface {
+		GetCommonAuthInfo() credentials.CommonAuthInfo
+	}); ok {
+		secLevel = ci.GetCommonAuthInfo().SecurityLevel.String()
+		// Store the security level in the current address' attributes so
+		// that it remains available for disconnection metrics after the
+		// transport is closed.
+		ac.curAddr.Attributes = ac.curAddr.Attributes.WithValue(securityLevelKey{}, secLevel)
+	}
+	return secLevel
+}
+
 // tryAllAddrs tries to create a connection to the addresses, and stop when at
 // the first successful one. It returns an error if no address was successfully
 // connected, or updates ac appropriately with the new transport.
diff --git a/vendor/google.golang.org/grpc/experimental/stats/metricregistry.go b/vendor/google.golang.org/grpc/experimental/stats/metricregistry.go
index 2b57ba65a3..472813f58f 100644
--- a/vendor/google.golang.org/grpc/experimental/stats/metricregistry.go
+++ b/vendor/google.golang.org/grpc/experimental/stats/metricregistry.go
@@ -76,6 +76,7 @@ const (
 	MetricTypeFloatHisto
 	MetricTypeIntGauge
 	MetricTypeIntUpDownCount
+	MetricTypeIntAsyncGauge
 )
 
 // Int64CountHandle is a typed handle for a int count metric. This handle
@@ -172,6 +173,30 @@ func (h *Int64GaugeHandle) Record(recorder MetricsRecorder, incr int64, labels .
 	recorder.RecordInt64Gauge(h, incr, labels...)
 }
 
+// AsyncMetric is a marker interface for asynchronous metric types.
+type AsyncMetric interface {
+	isAsync()
+	Descriptor() *MetricDescriptor
+}
+
+// Int64AsyncGaugeHandle is a typed handle for an int gauge metric. This handle is
+// passed at the recording point in order to know which metric to record on.
+type Int64AsyncGaugeHandle MetricDescriptor
+
+// isAsync implements the AsyncMetric interface.
+func (h *Int64AsyncGaugeHandle) isAsync() {}
+
+// Descriptor returns the int64 gauge handle typecast to a pointer to a
+// MetricDescriptor.
+func (h *Int64AsyncGaugeHandle) Descriptor() *MetricDescriptor {
+	return (*MetricDescriptor)(h)
+}
+
+// Record records the int64 gauge value on the metrics recorder provided.
+func (h *Int64AsyncGaugeHandle) Record(recorder AsyncMetricsRecorder, value int64, labels ...string) {
+	recorder.RecordInt64AsyncGauge(h, value, labels...)
+}
+
 // registeredMetrics are the registered metric descriptor names.
 var registeredMetrics = make(map[string]bool)
 
@@ -282,6 +307,20 @@ func RegisterInt64UpDownCount(descriptor MetricDescriptor) *Int64UpDownCountHand
 	return (*Int64UpDownCountHandle)(descPtr)
 }
 
+// RegisterInt64AsyncGauge registers the metric description onto the global registry.
+// It returns a typed handle to use for recording data.
+//
+// NOTE: this function must only be called during initialization time (i.e. in
+// an init() function), and is not thread-safe. If multiple metrics are
+// registered with the same name, this function will panic.
+func RegisterInt64AsyncGauge(descriptor MetricDescriptor) *Int64AsyncGaugeHandle {
+	registerMetric(descriptor.Name, descriptor.Default)
+	descriptor.Type = MetricTypeIntAsyncGauge
+	descPtr := &descriptor
+	metricsRegistry[descriptor.Name] = descPtr
+	return (*Int64AsyncGaugeHandle)(descPtr)
+}
+
 // snapshotMetricsRegistryForTesting snapshots the global data of the metrics
 // registry. Returns a cleanup function that sets the metrics registry to its
 // original state.
diff --git a/vendor/google.golang.org/grpc/experimental/stats/metrics.go b/vendor/google.golang.org/grpc/experimental/stats/metrics.go
index cb57f1a748..d7d404cbe4 100644
--- a/vendor/google.golang.org/grpc/experimental/stats/metrics.go
+++ b/vendor/google.golang.org/grpc/experimental/stats/metrics.go
@@ -43,6 +43,13 @@ type MetricsRecorder interface {
 	RecordInt64UpDownCount(handle *Int64UpDownCountHandle, incr int64, labels ...string)
 }
 
+// AsyncMetricsRecorder records on asynchronous metrics derived from metric registry.
+type AsyncMetricsRecorder interface {
+	// RecordInt64AsyncGauge records the measurement alongside labels on the int
+	// count associated with the provided handle asynchronously
+	RecordInt64AsyncGauge(handle *Int64AsyncGaugeHandle, incr int64, labels ...string)
+}
+
 // Metrics is an experimental legacy alias of the now-stable stats.MetricSet.
 // Metrics will be deleted in a future release.
 type Metrics = stats.MetricSet
diff --git a/vendor/google.golang.org/grpc/internal/balancer/gracefulswitch/gracefulswitch.go b/vendor/google.golang.org/grpc/internal/balancer/gracefulswitch/gracefulswitch.go
index ba25b89887..f38de74a49 100644
--- a/vendor/google.golang.org/grpc/internal/balancer/gracefulswitch/gracefulswitch.go
+++ b/vendor/google.golang.org/grpc/internal/balancer/gracefulswitch/gracefulswitch.go
@@ -67,6 +67,10 @@ type Balancer struct {
 	// balancerCurrent before the UpdateSubConnState is called on the
 	// balancerCurrent.
 	currentMu sync.Mutex
+
+	// activeGoroutines tracks all the goroutines that this balancer has started
+	// and that should be waited on when the balancer closes.
+	activeGoroutines sync.WaitGroup
 }
 
 // swap swaps out the current lb with the pending lb and updates the ClientConn.
@@ -76,7 +80,9 @@ func (gsb *Balancer) swap() {
 	cur := gsb.balancerCurrent
 	gsb.balancerCurrent = gsb.balancerPending
 	gsb.balancerPending = nil
+	gsb.activeGoroutines.Add(1)
 	go func() {
+		defer gsb.activeGoroutines.Done()
 		gsb.currentMu.Lock()
 		defer gsb.currentMu.Unlock()
 		cur.Close()
@@ -274,6 +280,7 @@ func (gsb *Balancer) Close() {
 
 	currentBalancerToClose.Close()
 	pendingBalancerToClose.Close()
+	gsb.activeGoroutines.Wait()
 }
 
 // balancerWrapper wraps a balancer.Balancer, and overrides some Balancer
@@ -324,7 +331,12 @@ func (bw *balancerWrapper) UpdateState(state balancer.State) {
 	defer bw.gsb.mu.Unlock()
 	bw.lastState = state
 
+	// If Close() acquires the mutex before UpdateState(), the balancer
+	// will already have been removed from the current or pending state when
+	// reaching this point.
 	if !bw.gsb.balancerCurrentOrPending(bw) {
+		// Returning here ensures that (*Balancer).swap() is not invoked after
+		// (*Balancer).Close() and therefore prevents "use after close".
 		return
 	}
 
diff --git a/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go b/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
index 91f760936c..6414ee4bbe 100644
--- a/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
+++ b/vendor/google.golang.org/grpc/internal/envconfig/envconfig.go
@@ -77,6 +77,11 @@ var (
 	//   - Target resolution is disabled.
 	//   - The DNS resolver is being used.
 	EnableDefaultPortForProxyTarget = boolFromEnv("GRPC_EXPERIMENTAL_ENABLE_DEFAULT_PORT_FOR_PROXY_TARGET", true)
+
+	// XDSAuthorityRewrite indicates whether xDS authority rewriting is enabled.
+	// This feature is defined in gRFC A81 and is enabled by setting the
+	// environment variable GRPC_EXPERIMENTAL_XDS_AUTHORITY_REWRITE to "true".
+	XDSAuthorityRewrite = boolFromEnv("GRPC_EXPERIMENTAL_XDS_AUTHORITY_REWRITE", false)
 )
 
 func boolFromEnv(envVar string, def bool) bool {
diff --git a/vendor/google.golang.org/grpc/internal/experimental.go b/vendor/google.golang.org/grpc/internal/experimental.go
index 7617be2158..c90cc51bdd 100644
--- a/vendor/google.golang.org/grpc/internal/experimental.go
+++ b/vendor/google.golang.org/grpc/internal/experimental.go
@@ -25,4 +25,8 @@ var (
 	// BufferPool is implemented by the grpc package and returns a server
 	// option to configure a shared buffer pool for a grpc.Server.
 	BufferPool any // func (grpc.SharedBufferPool) grpc.ServerOption
+
+	// AcceptCompressors is implemented by the grpc package and returns
+	// a call option that restricts the grpc-accept-encoding header for a call.
+	AcceptCompressors any // func(...string) grpc.CallOption
 )
diff --git a/vendor/google.golang.org/grpc/internal/idle/idle.go b/vendor/google.golang.org/grpc/internal/idle/idle.go
index 2c13ee9dac..d3cd24f80b 100644
--- a/vendor/google.golang.org/grpc/internal/idle/idle.go
+++ b/vendor/google.golang.org/grpc/internal/idle/idle.go
@@ -21,7 +21,6 @@
 package idle
 
 import (
-	"fmt"
 	"math"
 	"sync"
 	"sync/atomic"
@@ -33,15 +32,15 @@ var timeAfterFunc = func(d time.Duration, f func()) *time.Timer {
 	return time.AfterFunc(d, f)
 }
 
-// Enforcer is the functionality provided by grpc.ClientConn to enter
-// and exit from idle mode.
-type Enforcer interface {
-	ExitIdleMode() error
+// ClientConn is the functionality provided by grpc.ClientConn to enter and exit
+// from idle mode.
+type ClientConn interface {
+	ExitIdleMode()
 	EnterIdleMode()
 }
 
-// Manager implements idleness detection and calls the configured Enforcer to
-// enter/exit idle mode when appropriate.  Must be created by NewManager.
+// Manager implements idleness detection and calls the ClientConn to enter/exit
+// idle mode when appropriate. Must be created by NewManager.
 type Manager struct {
 	// State accessed atomically.
 	lastCallEndTime           int64 // Unix timestamp in nanos; time when the most recent RPC completed.
@@ -51,8 +50,8 @@ type Manager struct {
 
 	// Can be accessed without atomics or mutex since these are set at creation
 	// time and read-only after that.
-	enforcer Enforcer // Functionality provided by grpc.ClientConn.
-	timeout  time.Duration
+	cc      ClientConn // Functionality provided by grpc.ClientConn.
+	timeout time.Duration
 
 	// idleMu is used to guarantee mutual exclusion in two scenarios:
 	// - Opposing intentions:
@@ -72,9 +71,9 @@ type Manager struct {
 
 // NewManager creates a new idleness manager implementation for the
 // given idle timeout.  It begins in idle mode.
-func NewManager(enforcer Enforcer, timeout time.Duration) *Manager {
+func NewManager(cc ClientConn, timeout time.Duration) *Manager {
 	return &Manager{
-		enforcer:         enforcer,
+		cc:               cc,
 		timeout:          timeout,
 		actuallyIdle:     true,
 		activeCallsCount: -math.MaxInt32,
@@ -127,7 +126,7 @@ func (m *Manager) handleIdleTimeout() {
 
 	// Now that we've checked that there has been no activity, attempt to enter
 	// idle mode, which is very likely to succeed.
-	if m.tryEnterIdleMode() {
+	if m.tryEnterIdleMode(true) {
 		// Successfully entered idle mode. No timer needed until we exit idle.
 		return
 	}
@@ -142,10 +141,13 @@ func (m *Manager) handleIdleTimeout() {
 // that, it performs a last minute check to ensure that no new RPC has come in,
 // making the channel active.
 //
+// checkActivity controls if a check for RPC activity, since the last time the
+// idle_timeout fired, is made.
+
 // Return value indicates whether or not the channel moved to idle mode.
 //
 // Holds idleMu which ensures mutual exclusion with exitIdleMode.
-func (m *Manager) tryEnterIdleMode() bool {
+func (m *Manager) tryEnterIdleMode(checkActivity bool) bool {
 	// Setting the activeCallsCount to -math.MaxInt32 indicates to OnCallBegin()
 	// that the channel is either in idle mode or is trying to get there.
 	if !atomic.CompareAndSwapInt32(&m.activeCallsCount, 0, -math.MaxInt32) {
@@ -166,7 +168,7 @@ func (m *Manager) tryEnterIdleMode() bool {
 		atomic.AddInt32(&m.activeCallsCount, math.MaxInt32)
 		return false
 	}
-	if atomic.LoadInt32(&m.activeSinceLastTimerCheck) == 1 {
+	if checkActivity && atomic.LoadInt32(&m.activeSinceLastTimerCheck) == 1 {
 		// A very short RPC could have come in (and also finished) after we
 		// checked for calls count and activity in handleIdleTimeout(), but
 		// before the CAS operation. So, we need to check for activity again.
@@ -177,44 +179,37 @@ func (m *Manager) tryEnterIdleMode() bool {
 	// No new RPCs have come in since we set the active calls count value to
 	// -math.MaxInt32. And since we have the lock, it is safe to enter idle mode
 	// unconditionally now.
-	m.enforcer.EnterIdleMode()
+	m.cc.EnterIdleMode()
 	m.actuallyIdle = true
 	return true
 }
 
 // EnterIdleModeForTesting instructs the channel to enter idle mode.
 func (m *Manager) EnterIdleModeForTesting() {
-	m.tryEnterIdleMode()
+	m.tryEnterIdleMode(false)
 }
 
 // OnCallBegin is invoked at the start of every RPC.
-func (m *Manager) OnCallBegin() error {
+func (m *Manager) OnCallBegin() {
 	if m.isClosed() {
-		return nil
+		return
 	}
 
 	if atomic.AddInt32(&m.activeCallsCount, 1) > 0 {
 		// Channel is not idle now. Set the activity bit and allow the call.
 		atomic.StoreInt32(&m.activeSinceLastTimerCheck, 1)
-		return nil
+		return
 	}
 
 	// Channel is either in idle mode or is in the process of moving to idle
 	// mode. Attempt to exit idle mode to allow this RPC.
-	if err := m.ExitIdleMode(); err != nil {
-		// Undo the increment to calls count, and return an error causing the
-		// RPC to fail.
-		atomic.AddInt32(&m.activeCallsCount, -1)
-		return err
-	}
-
+	m.ExitIdleMode()
 	atomic.StoreInt32(&m.activeSinceLastTimerCheck, 1)
-	return nil
 }
 
-// ExitIdleMode instructs m to call the enforcer's ExitIdleMode and update m's
+// ExitIdleMode instructs m to call the ClientConn's ExitIdleMode and update its
 // internal state.
-func (m *Manager) ExitIdleMode() error {
+func (m *Manager) ExitIdleMode() {
 	// Holds idleMu which ensures mutual exclusion with tryEnterIdleMode.
 	m.idleMu.Lock()
 	defer m.idleMu.Unlock()
@@ -231,12 +226,10 @@ func (m *Manager) ExitIdleMode() error {
 		//   m.ExitIdleMode.
 		//
 		// In any case, there is nothing to do here.
-		return nil
+		return
 	}
 
-	if err := m.enforcer.ExitIdleMode(); err != nil {
-		return fmt.Errorf("failed to exit idle mode: %w", err)
-	}
+	m.cc.ExitIdleMode()
 
 	// Undo the idle entry process. This also respects any new RPC attempts.
 	atomic.AddInt32(&m.activeCallsCount, math.MaxInt32)
@@ -244,7 +237,23 @@ func (m *Manager) ExitIdleMode() error {
 
 	// Start a new timer to fire after the configured idle timeout.
 	m.resetIdleTimerLocked(m.timeout)
-	return nil
+}
+
+// UnsafeSetNotIdle instructs the Manager to update its internal state to
+// reflect the reality that the channel is no longer in IDLE mode.
+//
+// N.B. This method is intended only for internal use by the gRPC client
+// when it exits IDLE mode **manually** from `Dial`. The callsite must ensure:
+//   - The channel was **actually in IDLE mode** immediately prior to the call.
+//   - There is **no concurrent activity** that could cause the channel to exit
+//     IDLE mode *naturally* at the same time.
+func (m *Manager) UnsafeSetNotIdle() {
+	m.idleMu.Lock()
+	defer m.idleMu.Unlock()
+
+	atomic.AddInt32(&m.activeCallsCount, math.MaxInt32)
+	m.actuallyIdle = false
+	m.resetIdleTimerLocked(m.timeout)
 }
 
 // OnCallEnd is invoked at the end of every RPC.
diff --git a/vendor/google.golang.org/grpc/internal/internal.go b/vendor/google.golang.org/grpc/internal/internal.go
index 2699223a27..27bef83d97 100644
--- a/vendor/google.golang.org/grpc/internal/internal.go
+++ b/vendor/google.golang.org/grpc/internal/internal.go
@@ -244,6 +244,10 @@ var (
 	// When set, the function will be called before the stream enters
 	// the blocking state.
 	NewStreamWaitingForResolver = func() {}
+
+	// AddressToTelemetryLabels is an xDS-provided function to extract telemetry
+	// labels from a resolver.Address. Callers must assert its type before calling.
+	AddressToTelemetryLabels any // func(addr resolver.Address) map[string]string
 )
 
 // HealthChecker defines the signature of the client-side LB channel health
diff --git a/vendor/google.golang.org/grpc/internal/transport/http2_client.go b/vendor/google.golang.org/grpc/internal/transport/http2_client.go
index 65b4ab2439..38ca031af6 100644
--- a/vendor/google.golang.org/grpc/internal/transport/http2_client.go
+++ b/vendor/google.golang.org/grpc/internal/transport/http2_client.go
@@ -370,7 +370,7 @@ func NewHTTP2Client(connectCtx, ctx context.Context, addr resolver.Address, opts
 		})
 	t.logger = prefixLoggerForClientTransport(t)
 	// Add peer information to the http2client context.
-	t.ctx = peer.NewContext(t.ctx, t.getPeer())
+	t.ctx = peer.NewContext(t.ctx, t.Peer())
 
 	if md, ok := addr.Metadata.(*metadata.MD); ok {
 		t.md = *md
@@ -510,7 +510,7 @@ func (t *http2Client) newStream(ctx context.Context, callHdr *CallHdr) *ClientSt
 	return s
 }
 
-func (t *http2Client) getPeer() *peer.Peer {
+func (t *http2Client) Peer() *peer.Peer {
 	return &peer.Peer{
 		Addr:      t.remoteAddr,
 		AuthInfo:  t.authInfo, // Can be nil
@@ -551,6 +551,9 @@ func (t *http2Client) createHeaderFields(ctx context.Context, callHdr *CallHdr)
 	hfLen := 7 // :method, :scheme, :path, :authority, content-type, user-agent, te
 	hfLen += len(authData) + len(callAuthData)
 	registeredCompressors := t.registeredCompressors
+	if callHdr.AcceptedCompressors != nil {
+		registeredCompressors = *callHdr.AcceptedCompressors
+	}
 	if callHdr.PreviousAttempts > 0 {
 		hfLen++
 	}
@@ -742,7 +745,7 @@ func (e NewStreamError) Error() string {
 // NewStream creates a stream and registers it into the transport as "active"
 // streams.  All non-nil errors returned will be *NewStreamError.
 func (t *http2Client) NewStream(ctx context.Context, callHdr *CallHdr) (*ClientStream, error) {
-	ctx = peer.NewContext(ctx, t.getPeer())
+	ctx = peer.NewContext(ctx, t.Peer())
 
 	// ServerName field of the resolver returned address takes precedence over
 	// Host field of CallHdr to determine the :authority header. This is because,
@@ -1485,7 +1488,7 @@ func (t *http2Client) operateHeaders(frame *http2.MetaHeadersFrame) {
 		case "grpc-status":
 			code, err := strconv.ParseInt(hf.Value, 10, 32)
 			if err != nil {
-				se := status.New(codes.Internal, fmt.Sprintf("transport: malformed grpc-status: %v", err))
+				se := status.New(codes.Unknown, fmt.Sprintf("transport: malformed grpc-status: %v", err))
 				t.closeStream(s, se.Err(), true, http2.ErrCodeProtocol, se, nil, endStream)
 				return
 			}
@@ -1807,8 +1810,6 @@ func (t *http2Client) socketMetrics() *channelz.EphemeralSocketMetrics {
 	}
 }
 
-func (t *http2Client) RemoteAddr() net.Addr { return t.remoteAddr }
-
 func (t *http2Client) incrMsgSent() {
 	if channelz.IsOn() {
 		t.channelz.SocketMetrics.MessagesSent.Add(1)
diff --git a/vendor/google.golang.org/grpc/internal/transport/http_util.go b/vendor/google.golang.org/grpc/internal/transport/http_util.go
index 6209eb23cd..5bbb641ad9 100644
--- a/vendor/google.golang.org/grpc/internal/transport/http_util.go
+++ b/vendor/google.golang.org/grpc/internal/transport/http_util.go
@@ -411,12 +411,6 @@ var writeBufferPoolMap = make(map[int]*sync.Pool)
 var writeBufferMutex sync.Mutex
 
 func newFramer(conn io.ReadWriter, writeBufferSize, readBufferSize int, sharedWriteBuffer bool, maxHeaderListSize uint32, memPool mem.BufferPool) *framer {
-	if memPool == nil {
-		// Note that this is only supposed to be nil in tests. Otherwise, stream
-		// is always initialized with a BufferPool.
-		memPool = mem.DefaultBufferPool()
-	}
-
 	if writeBufferSize < 0 {
 		writeBufferSize = 0
 	}
diff --git a/vendor/google.golang.org/grpc/internal/transport/transport.go b/vendor/google.golang.org/grpc/internal/transport/transport.go
index 5ff83a7d7d..6daf1e002d 100644
--- a/vendor/google.golang.org/grpc/internal/transport/transport.go
+++ b/vendor/google.golang.org/grpc/internal/transport/transport.go
@@ -553,6 +553,12 @@ type CallHdr struct {
 	// outbound message.
 	SendCompress string
 
+	// AcceptedCompressors overrides the grpc-accept-encoding header for this
+	// call. When nil, the transport advertises the default set of registered
+	// compressors. A non-nil pointer overrides that value (including the empty
+	// string to advertise none).
+	AcceptedCompressors *string
+
 	// Creds specifies credentials.PerRPCCredentials for a call.
 	Creds credentials.PerRPCCredentials
 
@@ -608,8 +614,9 @@ type ClientTransport interface {
 	// with a human readable string with debug info.
 	GetGoAwayReason() (GoAwayReason, string)
 
-	// RemoteAddr returns the remote network address.
-	RemoteAddr() net.Addr
+	// Peer returns information about the peer associated with the Transport.
+	// The returned information includes authentication and network address details.
+	Peer() *peer.Peer
 }
 
 // ServerTransport is the common interface for all gRPC server-side transport
diff --git a/vendor/google.golang.org/grpc/mem/buffer_pool.go b/vendor/google.golang.org/grpc/mem/buffer_pool.go
index f211e72745..e37afdd198 100644
--- a/vendor/google.golang.org/grpc/mem/buffer_pool.go
+++ b/vendor/google.golang.org/grpc/mem/buffer_pool.go
@@ -38,9 +38,11 @@ type BufferPool interface {
 	Put(*[]byte)
 }
 
+const goPageSize = 4 << 10 // 4KiB. N.B. this must be a power of 2.
+
 var defaultBufferPoolSizes = []int{
 	256,
-	4 << 10,  // 4KB (go page size)
+	goPageSize,
 	16 << 10, // 16KB (max HTTP/2 frame size used by gRPC)
 	32 << 10, // 32KB (default buffer size for io.Copy)
 	1 << 20,  // 1MB
@@ -172,7 +174,14 @@ func (p *simpleBufferPool) Get(size int) *[]byte {
 		p.pool.Put(bs)
 	}
 
-	b := make([]byte, size)
+	// If we're going to allocate, round up to the nearest page. This way if
+	// requests frequently arrive with small variation we don't allocate
+	// repeatedly if we get unlucky and they increase over time. By default we
+	// only allocate here if size > 1MiB. Because goPageSize is a power of 2, we
+	// can round up efficiently.
+	allocSize := (size + goPageSize - 1) & ^(goPageSize - 1)
+
+	b := make([]byte, size, allocSize)
 	return &b
 }
 
diff --git a/vendor/google.golang.org/grpc/resolver_wrapper.go b/vendor/google.golang.org/grpc/resolver_wrapper.go
index 80e16a327c..6e61376437 100644
--- a/vendor/google.golang.org/grpc/resolver_wrapper.go
+++ b/vendor/google.golang.org/grpc/resolver_wrapper.go
@@ -69,6 +69,7 @@ func (ccr *ccResolverWrapper) start() error {
 	errCh := make(chan error)
 	ccr.serializer.TrySchedule(func(ctx context.Context) {
 		if ctx.Err() != nil {
+			errCh <- ctx.Err()
 			return
 		}
 		opts := resolver.BuildOptions{
diff --git a/vendor/google.golang.org/grpc/rpc_util.go b/vendor/google.golang.org/grpc/rpc_util.go
index 6b04c9e873..8160f94304 100644
--- a/vendor/google.golang.org/grpc/rpc_util.go
+++ b/vendor/google.golang.org/grpc/rpc_util.go
@@ -33,6 +33,8 @@ import (
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/encoding"
 	"google.golang.org/grpc/encoding/proto"
+	"google.golang.org/grpc/internal"
+	"google.golang.org/grpc/internal/grpcutil"
 	"google.golang.org/grpc/internal/transport"
 	"google.golang.org/grpc/mem"
 	"google.golang.org/grpc/metadata"
@@ -41,6 +43,10 @@ import (
 	"google.golang.org/grpc/status"
 )
 
+func init() {
+	internal.AcceptCompressors = acceptCompressors
+}
+
 // Compressor defines the interface gRPC uses to compress a message.
 //
 // Deprecated: use package encoding.
@@ -151,16 +157,32 @@ func (d *gzipDecompressor) Type() string {
 
 // callInfo contains all related configuration and information about an RPC.
 type callInfo struct {
-	compressorName        string
-	failFast              bool
-	maxReceiveMessageSize *int
-	maxSendMessageSize    *int
-	creds                 credentials.PerRPCCredentials
-	contentSubtype        string
-	codec                 baseCodec
-	maxRetryRPCBufferSize int
-	onFinish              []func(err error)
-	authority             string
+	compressorName              string
+	failFast                    bool
+	maxReceiveMessageSize       *int
+	maxSendMessageSize          *int
+	creds                       credentials.PerRPCCredentials
+	contentSubtype              string
+	codec                       baseCodec
+	maxRetryRPCBufferSize       int
+	onFinish                    []func(err error)
+	authority                   string
+	acceptedResponseCompressors []string
+}
+
+func acceptedCompressorAllows(allowed []string, name string) bool {
+	if allowed == nil {
+		return true
+	}
+	if name == "" || name == encoding.Identity {
+		return true
+	}
+	for _, a := range allowed {
+		if a == name {
+			return true
+		}
+	}
+	return false
 }
 
 func defaultCallInfo() *callInfo {
@@ -170,6 +192,29 @@ func defaultCallInfo() *callInfo {
 	}
 }
 
+func newAcceptedCompressionConfig(names []string) ([]string, error) {
+	if len(names) == 0 {
+		return nil, nil
+	}
+	var allowed []string
+	seen := make(map[string]struct{}, len(names))
+	for _, name := range names {
+		name = strings.TrimSpace(name)
+		if name == "" || name == encoding.Identity {
+			continue
+		}
+		if !grpcutil.IsCompressorNameRegistered(name) {
+			return nil, status.Errorf(codes.InvalidArgument, "grpc: compressor %q is not registered", name)
+		}
+		if _, dup := seen[name]; dup {
+			continue
+		}
+		seen[name] = struct{}{}
+		allowed = append(allowed, name)
+	}
+	return allowed, nil
+}
+
 // CallOption configures a Call before it starts or extracts information from
 // a Call after it completes.
 type CallOption interface {
@@ -471,6 +516,31 @@ func (o CompressorCallOption) before(c *callInfo) error {
 }
 func (o CompressorCallOption) after(*callInfo, *csAttempt) {}
 
+// acceptCompressors returns a CallOption that limits the compression algorithms
+// advertised in the grpc-accept-encoding header for response messages.
+// Compression algorithms not in the provided list will not be advertised, and
+// responses compressed with non-listed algorithms will be rejected.
+func acceptCompressors(names ...string) CallOption {
+	cp := append([]string(nil), names...)
+	return acceptCompressorsCallOption{names: cp}
+}
+
+// acceptCompressorsCallOption is a CallOption that limits response compression.
+type acceptCompressorsCallOption struct {
+	names []string
+}
+
+func (o acceptCompressorsCallOption) before(c *callInfo) error {
+	allowed, err := newAcceptedCompressionConfig(o.names)
+	if err != nil {
+		return err
+	}
+	c.acceptedResponseCompressors = allowed
+	return nil
+}
+
+func (acceptCompressorsCallOption) after(*callInfo, *csAttempt) {}
+
 // CallContentSubtype returns a CallOption that will set the content-subtype
 // for a call. For example, if content-subtype is "json", the Content-Type over
 // the wire will be "application/grpc+json". The content-subtype is converted
@@ -857,8 +927,7 @@ func (p *payloadInfo) free() {
 // the buffer is no longer needed.
 // TODO: Refactor this function to reduce the number of arguments.
 // See: https://google.github.io/styleguide/go/best-practices.html#function-argument-lists
-func recvAndDecompress(p *parser, s recvCompressor, dc Decompressor, maxReceiveMessageSize int, payInfo *payloadInfo, compressor encoding.Compressor, isServer bool,
-) (out mem.BufferSlice, err error) {
+func recvAndDecompress(p *parser, s recvCompressor, dc Decompressor, maxReceiveMessageSize int, payInfo *payloadInfo, compressor encoding.Compressor, isServer bool) (out mem.BufferSlice, err error) {
 	pf, compressed, err := p.recvMsg(maxReceiveMessageSize)
 	if err != nil {
 		return nil, err
diff --git a/vendor/google.golang.org/grpc/stream.go b/vendor/google.golang.org/grpc/stream.go
index ca87ff9776..ec9577b278 100644
--- a/vendor/google.golang.org/grpc/stream.go
+++ b/vendor/google.golang.org/grpc/stream.go
@@ -25,6 +25,7 @@ import (
 	"math"
 	rand "math/rand/v2"
 	"strconv"
+	"strings"
 	"sync"
 	"time"
 
@@ -179,13 +180,41 @@ func NewClientStream(ctx context.Context, desc *StreamDesc, cc *ClientConn, meth
 
 var emptyMethodConfig = serviceconfig.MethodConfig{}
 
+// endOfClientStream performs cleanup actions required for both successful and
+// failed streams. This includes incrementing channelz stats and invoking all
+// registered OnFinish call options.
+func endOfClientStream(cc *ClientConn, err error, opts ...CallOption) {
+	if channelz.IsOn() {
+		if err != nil {
+			cc.incrCallsFailed()
+		} else {
+			cc.incrCallsSucceeded()
+		}
+	}
+
+	for _, o := range opts {
+		if o, ok := o.(OnFinishCallOption); ok {
+			o.OnFinish(err)
+		}
+	}
+}
+
 func newClientStream(ctx context.Context, desc *StreamDesc, cc *ClientConn, method string, opts ...CallOption) (_ ClientStream, err error) {
+	if channelz.IsOn() {
+		cc.incrCallsStarted()
+	}
+	defer func() {
+		if err != nil {
+			// Ensure cleanup when stream creation fails.
+			endOfClientStream(cc, err, opts...)
+		}
+	}()
+
 	// Start tracking the RPC for idleness purposes. This is where a stream is
 	// created for both streaming and unary RPCs, and hence is a good place to
 	// track active RPC count.
-	if err := cc.idlenessMgr.OnCallBegin(); err != nil {
-		return nil, err
-	}
+	cc.idlenessMgr.OnCallBegin()
+
 	// Add a calloption, to decrement the active call count, that gets executed
 	// when the RPC completes.
 	opts = append([]CallOption{OnFinish(func(error) { cc.idlenessMgr.OnCallEnd() })}, opts...)
@@ -204,14 +233,6 @@ func newClientStream(ctx context.Context, desc *StreamDesc, cc *ClientConn, meth
 			}
 		}
 	}
-	if channelz.IsOn() {
-		cc.incrCallsStarted()
-		defer func() {
-			if err != nil {
-				cc.incrCallsFailed()
-			}
-		}()
-	}
 	// Provide an opportunity for the first RPC to see the first service config
 	// provided by the resolver.
 	nameResolutionDelayed, err := cc.waitForResolvedAddrs(ctx)
@@ -301,6 +322,10 @@ func newClientStreamWithParams(ctx context.Context, desc *StreamDesc, cc *Client
 		DoneFunc:       doneFunc,
 		Authority:      callInfo.authority,
 	}
+	if allowed := callInfo.acceptedResponseCompressors; len(allowed) > 0 {
+		headerValue := strings.Join(allowed, ",")
+		callHdr.AcceptedCompressors = &headerValue
+	}
 
 	// Set our outgoing compression according to the UseCompressor CallOption, if
 	// set.  In that case, also find the compressor from the encoding package.
@@ -484,7 +509,7 @@ func (a *csAttempt) getTransport() error {
 		return err
 	}
 	if a.trInfo != nil {
-		a.trInfo.firstLine.SetRemoteAddr(a.transport.RemoteAddr())
+		a.trInfo.firstLine.SetRemoteAddr(a.transport.Peer().Addr)
 	}
 	if pick.blocked && a.statsHandler != nil {
 		a.statsHandler.HandleRPC(a.ctx, &stats.DelayedPickComplete{})
@@ -1042,9 +1067,6 @@ func (cs *clientStream) finish(err error) {
 		return
 	}
 	cs.finished = true
-	for _, onFinish := range cs.callInfo.onFinish {
-		onFinish(err)
-	}
 	cs.commitAttemptLocked()
 	if cs.attempt != nil {
 		cs.attempt.finish(err)
@@ -1084,13 +1106,7 @@ func (cs *clientStream) finish(err error) {
 	if err == nil {
 		cs.retryThrottler.successfulRPC()
 	}
-	if channelz.IsOn() {
-		if err != nil {
-			cs.cc.incrCallsFailed()
-		} else {
-			cs.cc.incrCallsSucceeded()
-		}
-	}
+	endOfClientStream(cs.cc, err, cs.opts...)
 	cs.cancel()
 }
 
@@ -1134,6 +1150,10 @@ func (a *csAttempt) recvMsg(m any, payInfo *payloadInfo) (err error) {
 				a.decompressorV0 = nil
 				a.decompressorV1 = encoding.GetCompressor(ct)
 			}
+			// Validate that the compression method is acceptable for this call.
+			if !acceptedCompressorAllows(cs.callInfo.acceptedResponseCompressors, ct) {
+				return status.Errorf(codes.Internal, "grpc: peer compressed the response with %q which is not allowed by AcceptCompressors", ct)
+			}
 		} else {
 			// No compression is used; disable our decompressor.
 			a.decompressorV0 = nil
@@ -1479,6 +1499,10 @@ func (as *addrConnStream) RecvMsg(m any) (err error) {
 				as.decompressorV0 = nil
 				as.decompressorV1 = encoding.GetCompressor(ct)
 			}
+			// Validate that the compression method is acceptable for this call.
+			if !acceptedCompressorAllows(as.callInfo.acceptedResponseCompressors, ct) {
+				return status.Errorf(codes.Internal, "grpc: peer compressed the response with %q which is not allowed by AcceptCompressors", ct)
+			}
 		} else {
 			// No compression is used; disable our decompressor.
 			as.decompressorV0 = nil
diff --git a/vendor/google.golang.org/grpc/version.go b/vendor/google.golang.org/grpc/version.go
index 9e6d018fb7..ff7840fd8e 100644
--- a/vendor/google.golang.org/grpc/version.go
+++ b/vendor/google.golang.org/grpc/version.go
@@ -19,4 +19,4 @@
 package grpc
 
 // Version is the current grpc version.
-const Version = "1.77.0"
+const Version = "1.78.0"
diff --git a/vendor/google.golang.org/protobuf/internal/encoding/tag/tag.go b/vendor/google.golang.org/protobuf/internal/encoding/tag/tag.go
index 669133d04d..c96e448346 100644
--- a/vendor/google.golang.org/protobuf/internal/encoding/tag/tag.go
+++ b/vendor/google.golang.org/protobuf/internal/encoding/tag/tag.go
@@ -32,7 +32,7 @@ var byteType = reflect.TypeOf(byte(0))
 func Unmarshal(tag string, goType reflect.Type, evs protoreflect.EnumValueDescriptors) protoreflect.FieldDescriptor {
 	f := new(filedesc.Field)
 	f.L0.ParentFile = filedesc.SurrogateProto2
-	f.L1.EditionFeatures = f.L0.ParentFile.L1.EditionFeatures
+	packed := false
 	for len(tag) > 0 {
 		i := strings.IndexByte(tag, ',')
 		if i < 0 {
@@ -108,7 +108,7 @@ func Unmarshal(tag string, goType reflect.Type, evs protoreflect.EnumValueDescri
 				f.L1.StringName.InitJSON(jsonName)
 			}
 		case s == "packed":
-			f.L1.EditionFeatures.IsPacked = true
+			packed = true
 		case strings.HasPrefix(s, "def="):
 			// The default tag is special in that everything afterwards is the
 			// default regardless of the presence of commas.
@@ -121,6 +121,13 @@ func Unmarshal(tag string, goType reflect.Type, evs protoreflect.EnumValueDescri
 		tag = strings.TrimPrefix(tag[i:], ",")
 	}
 
+	// Update EditionFeatures after the loop and after we know whether this is
+	// a proto2 or proto3 field.
+	f.L1.EditionFeatures = f.L0.ParentFile.L1.EditionFeatures
+	if packed {
+		f.L1.EditionFeatures.IsPacked = true
+	}
+
 	// The generator uses the group message name instead of the field name.
 	// We obtain the real field name by lowercasing the group name.
 	if f.L1.Kind == protoreflect.GroupKind {
diff --git a/vendor/google.golang.org/protobuf/internal/encoding/text/decode.go b/vendor/google.golang.org/protobuf/internal/encoding/text/decode.go
index 099b2bf451..9aa7a9bb77 100644
--- a/vendor/google.golang.org/protobuf/internal/encoding/text/decode.go
+++ b/vendor/google.golang.org/protobuf/internal/encoding/text/decode.go
@@ -424,27 +424,34 @@ func (d *Decoder) parseFieldName() (tok Token, err error) {
 	return Token{}, d.newSyntaxError("invalid field name: %s", errId(d.in))
 }
 
-// parseTypeName parses Any type URL or extension field name. The name is
-// enclosed in [ and ] characters. The C++ parser does not handle many legal URL
-// strings. This implementation is more liberal and allows for the pattern
-// ^[-_a-zA-Z0-9]+([./][-_a-zA-Z0-9]+)*`). Whitespaces and comments are allowed
-// in between [ ], '.', '/' and the sub names.
+// parseTypeName parses an Any type URL or an extension field name. The name is
+// enclosed in [ and ] characters. We allow almost arbitrary type URL prefixes,
+// closely following the text-format spec [1,2]. We implement "ExtensionName |
+// AnyName" as follows (with some exceptions for backwards compatibility):
+//
+// char      = [-_a-zA-Z0-9]
+// url_char  = char | [.~!$&'()*+,;=] | "%", hex, hex
+//
+// Ident         = char, { char }
+// TypeName      = Ident, { ".", Ident } ;
+// UrlPrefix     = url_char, { url_char | "/" } ;
+// ExtensionName = "[", TypeName, "]" ;
+// AnyName       = "[", UrlPrefix, "/", TypeName, "]" ;
+//
+// Additionally, we allow arbitrary whitespace and comments between [ and ].
+//
+// [1] https://protobuf.dev/reference/protobuf/textformat-spec/#characters
+// [2] https://protobuf.dev/reference/protobuf/textformat-spec/#field-names
 func (d *Decoder) parseTypeName() (Token, error) {
-	startPos := len(d.orig) - len(d.in)
 	// Use alias s to advance first in order to use d.in for error handling.
-	// Caller already checks for [ as first character.
+	// Caller already checks for [ as first character (d.in[0] == '[').
 	s := consume(d.in[1:], 0)
 	if len(s) == 0 {
 		return Token{}, ErrUnexpectedEOF
 	}
 
+	// Collect everything between [ and ] in name.
 	var name []byte
-	for len(s) > 0 && isTypeNameChar(s[0]) {
-		name = append(name, s[0])
-		s = s[1:]
-	}
-	s = consume(s, 0)
-
 	var closed bool
 	for len(s) > 0 && !closed {
 		switch {
@@ -452,23 +459,20 @@ func (d *Decoder) parseTypeName() (Token, error) {
 			s = s[1:]
 			closed = true
 
-		case s[0] == '/', s[0] == '.':
-			if len(name) > 0 && (name[len(name)-1] == '/' || name[len(name)-1] == '.') {
-				return Token{}, d.newSyntaxError("invalid type URL/extension field name: %s",
-					d.orig[startPos:len(d.orig)-len(s)+1])
-			}
+		case s[0] == '/' || isTypeNameChar(s[0]) || isUrlExtraChar(s[0]):
 			name = append(name, s[0])
-			s = s[1:]
-			s = consume(s, 0)
-			for len(s) > 0 && isTypeNameChar(s[0]) {
-				name = append(name, s[0])
-				s = s[1:]
+			s = consume(s[1:], 0)
+
+		// URL percent-encoded chars
+		case s[0] == '%':
+			if len(s) < 3 || !isHexChar(s[1]) || !isHexChar(s[2]) {
+				return Token{}, d.parseTypeNameError(s, 3)
 			}
-			s = consume(s, 0)
+			name = append(name, s[0], s[1], s[2])
+			s = consume(s[3:], 0)
 
 		default:
-			return Token{}, d.newSyntaxError(
-				"invalid type URL/extension field name: %s", d.orig[startPos:len(d.orig)-len(s)+1])
+			return Token{}, d.parseTypeNameError(s, 1)
 		}
 	}
 
@@ -476,15 +480,38 @@ func (d *Decoder) parseTypeName() (Token, error) {
 		return Token{}, ErrUnexpectedEOF
 	}
 
-	// First character cannot be '.'. Last character cannot be '.' or '/'.
-	size := len(name)
-	if size == 0 || name[0] == '.' || name[size-1] == '.' || name[size-1] == '/' {
-		return Token{}, d.newSyntaxError("invalid type URL/extension field name: %s",
-			d.orig[startPos:len(d.orig)-len(s)])
+	// Split collected name on last '/' into urlPrefix and typeName (if '/' is
+	// present).
+	typeName := name
+	if i := bytes.LastIndexByte(name, '/'); i != -1 {
+		urlPrefix := name[:i]
+		typeName = name[i+1:]
+
+		// urlPrefix may be empty (for backwards compatibility).
+		// If non-empty, it must not start with '/'.
+		if len(urlPrefix) > 0 && urlPrefix[0] == '/' {
+			return Token{}, d.parseTypeNameError(s, 0)
+		}
 	}
 
+	// typeName must not be empty (note: "" splits to [""]) and all identifier
+	// parts must not be empty.
+	for _, ident := range bytes.Split(typeName, []byte{'.'}) {
+		if len(ident) == 0 {
+			return Token{}, d.parseTypeNameError(s, 0)
+		}
+	}
+
+	// typeName must not contain any percent-encoded or special URL chars.
+	for _, b := range typeName {
+		if b == '%' || (b != '.' && isUrlExtraChar(b)) {
+			return Token{}, d.parseTypeNameError(s, 0)
+		}
+	}
+
+	startPos := len(d.orig) - len(d.in)
+	endPos := len(d.orig) - len(s)
 	d.in = s
-	endPos := len(d.orig) - len(d.in)
 	d.consume(0)
 
 	return Token{
@@ -496,16 +523,32 @@ func (d *Decoder) parseTypeName() (Token, error) {
 	}, nil
 }
 
+func (d *Decoder) parseTypeNameError(s []byte, numUnconsumedChars int) error {
+	return d.newSyntaxError(
+		"invalid type URL/extension field name: %s",
+		d.in[:len(d.in)-len(s)+min(numUnconsumedChars, len(s))],
+	)
+}
+
+func isHexChar(b byte) bool {
+	return ('0' <= b && b <= '9') ||
+		('a' <= b && b <= 'f') ||
+		('A' <= b && b <= 'F')
+}
+
 func isTypeNameChar(b byte) bool {
-	return (b == '-' || b == '_' ||
+	return b == '-' || b == '_' ||
 		('0' <= b && b <= '9') ||
 		('a' <= b && b <= 'z') ||
-		('A' <= b && b <= 'Z'))
+		('A' <= b && b <= 'Z')
 }
 
-func isWhiteSpace(b byte) bool {
+// isUrlExtraChar complements isTypeNameChar with extra characters that we allow
+// in URLs but not in type names. Note that '/' is not included so that it can
+// be treated specially.
+func isUrlExtraChar(b byte) bool {
 	switch b {
-	case ' ', '\n', '\r', '\t':
+	case '.', '~', '!', '$', '&', '(', ')', '*', '+', ',', ';', '=':
 		return true
 	default:
 		return false
diff --git a/vendor/google.golang.org/protobuf/internal/filedesc/desc.go b/vendor/google.golang.org/protobuf/internal/filedesc/desc.go
index dbcf90b871..c775e5832f 100644
--- a/vendor/google.golang.org/protobuf/internal/filedesc/desc.go
+++ b/vendor/google.golang.org/protobuf/internal/filedesc/desc.go
@@ -32,6 +32,7 @@ const (
 	EditionProto3      Edition = 999
 	Edition2023        Edition = 1000
 	Edition2024        Edition = 1001
+	EditionUnstable    Edition = 9999
 	EditionUnsupported Edition = 100000
 )
 
diff --git a/vendor/google.golang.org/protobuf/internal/filedesc/desc_lazy.go b/vendor/google.golang.org/protobuf/internal/filedesc/desc_lazy.go
index dd31faaeb0..78f02b1b49 100644
--- a/vendor/google.golang.org/protobuf/internal/filedesc/desc_lazy.go
+++ b/vendor/google.golang.org/protobuf/internal/filedesc/desc_lazy.go
@@ -330,7 +330,6 @@ func (md *Message) unmarshalFull(b []byte, sb *strs.Builder) {
 				md.L1.Extensions.List[extensionIdx].unmarshalFull(v, sb)
 				extensionIdx++
 			case genid.DescriptorProto_Options_field_number:
-				md.unmarshalOptions(v)
 				rawOptions = appendOptions(rawOptions, v)
 			}
 		default:
@@ -356,27 +355,6 @@ func (md *Message) unmarshalFull(b []byte, sb *strs.Builder) {
 	md.L2.Options = md.L0.ParentFile.builder.optionsUnmarshaler(&descopts.Message, rawOptions)
 }
 
-func (md *Message) unmarshalOptions(b []byte) {
-	for len(b) > 0 {
-		num, typ, n := protowire.ConsumeTag(b)
-		b = b[n:]
-		switch typ {
-		case protowire.VarintType:
-			v, m := protowire.ConsumeVarint(b)
-			b = b[m:]
-			switch num {
-			case genid.MessageOptions_MapEntry_field_number:
-				md.L1.IsMapEntry = protowire.DecodeBool(v)
-			case genid.MessageOptions_MessageSetWireFormat_field_number:
-				md.L1.IsMessageSet = protowire.DecodeBool(v)
-			}
-		default:
-			m := protowire.ConsumeFieldValue(num, typ, b)
-			b = b[m:]
-		}
-	}
-}
-
 func unmarshalMessageReservedRange(b []byte) (r [2]protoreflect.FieldNumber) {
 	for len(b) > 0 {
 		num, typ, n := protowire.ConsumeTag(b)
diff --git a/vendor/google.golang.org/protobuf/internal/genid/descriptor_gen.go b/vendor/google.golang.org/protobuf/internal/genid/descriptor_gen.go
index 950a6a325a..65aaf4d210 100644
--- a/vendor/google.golang.org/protobuf/internal/genid/descriptor_gen.go
+++ b/vendor/google.golang.org/protobuf/internal/genid/descriptor_gen.go
@@ -26,6 +26,7 @@ const (
 	Edition_EDITION_PROTO3_enum_value          = 999
 	Edition_EDITION_2023_enum_value            = 1000
 	Edition_EDITION_2024_enum_value            = 1001
+	Edition_EDITION_UNSTABLE_enum_value        = 9999
 	Edition_EDITION_1_TEST_ONLY_enum_value     = 1
 	Edition_EDITION_2_TEST_ONLY_enum_value     = 2
 	Edition_EDITION_99997_TEST_ONLY_enum_value = 99997
diff --git a/vendor/google.golang.org/protobuf/internal/impl/codec_map.go b/vendor/google.golang.org/protobuf/internal/impl/codec_map.go
index 229c698013..4a3bf393ef 100644
--- a/vendor/google.golang.org/protobuf/internal/impl/codec_map.go
+++ b/vendor/google.golang.org/protobuf/internal/impl/codec_map.go
@@ -113,6 +113,9 @@ func sizeMap(mapv reflect.Value, mapi *mapInfo, f *coderFieldInfo, opts marshalO
 }
 
 func consumeMap(b []byte, mapv reflect.Value, wtyp protowire.Type, mapi *mapInfo, f *coderFieldInfo, opts unmarshalOptions) (out unmarshalOutput, err error) {
+	if opts.depth--; opts.depth < 0 {
+		return out, errRecursionDepth
+	}
 	if wtyp != protowire.BytesType {
 		return out, errUnknown
 	}
@@ -170,6 +173,9 @@ func consumeMap(b []byte, mapv reflect.Value, wtyp protowire.Type, mapi *mapInfo
 }
 
 func consumeMapOfMessage(b []byte, mapv reflect.Value, wtyp protowire.Type, mapi *mapInfo, f *coderFieldInfo, opts unmarshalOptions) (out unmarshalOutput, err error) {
+	if opts.depth--; opts.depth < 0 {
+		return out, errRecursionDepth
+	}
 	if wtyp != protowire.BytesType {
 		return out, errUnknown
 	}
diff --git a/vendor/google.golang.org/protobuf/internal/impl/decode.go b/vendor/google.golang.org/protobuf/internal/impl/decode.go
index e0dd21fa5f..1228b5c8c2 100644
--- a/vendor/google.golang.org/protobuf/internal/impl/decode.go
+++ b/vendor/google.golang.org/protobuf/internal/impl/decode.go
@@ -102,8 +102,7 @@ var errUnknown = errors.New("unknown")
 
 func (mi *MessageInfo) unmarshalPointer(b []byte, p pointer, groupTag protowire.Number, opts unmarshalOptions) (out unmarshalOutput, err error) {
 	mi.init()
-	opts.depth--
-	if opts.depth < 0 {
+	if opts.depth--; opts.depth < 0 {
 		return out, errRecursionDepth
 	}
 	if flags.ProtoLegacy && mi.isMessageSet {
diff --git a/vendor/google.golang.org/protobuf/internal/impl/validate.go b/vendor/google.golang.org/protobuf/internal/impl/validate.go
index 7b2995dde5..99a1eb95f7 100644
--- a/vendor/google.golang.org/protobuf/internal/impl/validate.go
+++ b/vendor/google.golang.org/protobuf/internal/impl/validate.go
@@ -68,9 +68,13 @@ func Validate(mt protoreflect.MessageType, in protoiface.UnmarshalInput) (out pr
 	if in.Resolver == nil {
 		in.Resolver = protoregistry.GlobalTypes
 	}
+	if in.Depth == 0 {
+		in.Depth = protowire.DefaultRecursionLimit
+	}
 	o, st := mi.validate(in.Buf, 0, unmarshalOptions{
 		flags:    in.Flags,
 		resolver: in.Resolver,
+		depth:    in.Depth,
 	})
 	if o.initialized {
 		out.Flags |= protoiface.UnmarshalInitialized
@@ -257,6 +261,9 @@ func (mi *MessageInfo) validate(b []byte, groupTag protowire.Number, opts unmars
 		states[0].typ = validationTypeGroup
 		states[0].endGroup = groupTag
 	}
+	if opts.depth--; opts.depth < 0 {
+		return out, ValidationInvalid
+	}
 	initialized := true
 	start := len(b)
 State:
@@ -451,6 +458,13 @@ State:
 						mi:      vi.mi,
 						tail:    b,
 					})
+					if vi.typ == validationTypeMessage ||
+						vi.typ == validationTypeGroup ||
+						vi.typ == validationTypeMap {
+						if opts.depth--; opts.depth < 0 {
+							return out, ValidationInvalid
+						}
+					}
 					b = v
 					continue State
 				case validationTypeRepeatedVarint:
@@ -499,6 +513,9 @@ State:
 						mi:       vi.mi,
 						endGroup: num,
 					})
+					if opts.depth--; opts.depth < 0 {
+						return out, ValidationInvalid
+					}
 					continue State
 				case flags.ProtoLegacy && vi.typ == validationTypeMessageSetItem:
 					typeid, v, n, err := messageset.ConsumeFieldValue(b, false)
@@ -521,6 +538,13 @@ State:
 							mi:   xvi.mi,
 							tail: b[n:],
 						})
+						if xvi.typ == validationTypeMessage ||
+							xvi.typ == validationTypeGroup ||
+							xvi.typ == validationTypeMap {
+							if opts.depth--; opts.depth < 0 {
+								return out, ValidationInvalid
+							}
+						}
 						b = v
 						continue State
 					}
@@ -547,12 +571,14 @@ State:
 		switch st.typ {
 		case validationTypeMessage, validationTypeGroup:
 			numRequiredFields = int(st.mi.numRequiredFields)
+			opts.depth++
 		case validationTypeMap:
 			// If this is a map field with a message value that contains
 			// required fields, require that the value be present.
 			if st.mi != nil && st.mi.numRequiredFields > 0 {
 				numRequiredFields = 1
 			}
+			opts.depth++
 		}
 		// If there are more than 64 required fields, this check will
 		// always fail and we will report that the message is potentially
diff --git a/vendor/google.golang.org/protobuf/internal/version/version.go b/vendor/google.golang.org/protobuf/internal/version/version.go
index 77de0f238c..763fd82841 100644
--- a/vendor/google.golang.org/protobuf/internal/version/version.go
+++ b/vendor/google.golang.org/protobuf/internal/version/version.go
@@ -52,7 +52,7 @@ import (
 const (
 	Major      = 1
 	Minor      = 36
-	Patch      = 10
+	Patch      = 11
 	PreRelease = ""
 )
 
diff --git a/vendor/google.golang.org/protobuf/proto/decode.go b/vendor/google.golang.org/protobuf/proto/decode.go
index 4cbf1aeaf7..889d8511d2 100644
--- a/vendor/google.golang.org/protobuf/proto/decode.go
+++ b/vendor/google.golang.org/protobuf/proto/decode.go
@@ -121,9 +121,8 @@ func (o UnmarshalOptions) unmarshal(b []byte, m protoreflect.Message) (out proto
 
 		out, err = methods.Unmarshal(in)
 	} else {
-		o.RecursionLimit--
-		if o.RecursionLimit < 0 {
-			return out, errors.New("exceeded max recursion depth")
+		if o.RecursionLimit--; o.RecursionLimit < 0 {
+			return out, errRecursionDepth
 		}
 		err = o.unmarshalMessageSlow(b, m)
 	}
@@ -220,6 +219,9 @@ func (o UnmarshalOptions) unmarshalSingular(b []byte, wtyp protowire.Type, m pro
 }
 
 func (o UnmarshalOptions) unmarshalMap(b []byte, wtyp protowire.Type, mapv protoreflect.Map, fd protoreflect.FieldDescriptor) (n int, err error) {
+	if o.RecursionLimit--; o.RecursionLimit < 0 {
+		return 0, errRecursionDepth
+	}
 	if wtyp != protowire.BytesType {
 		return 0, errUnknown
 	}
@@ -305,3 +307,5 @@ func (o UnmarshalOptions) unmarshalMap(b []byte, wtyp protowire.Type, mapv proto
 var errUnknown = errors.New("BUG: internal error (unknown)")
 
 var errDecode = errors.New("cannot parse invalid wire-format data")
+
+var errRecursionDepth = errors.New("exceeded maximum recursion depth")
diff --git a/vendor/google.golang.org/protobuf/types/known/timestamppb/timestamp.pb.go b/vendor/google.golang.org/protobuf/types/known/timestamppb/timestamp.pb.go
index 06d584c14b..484c21fd53 100644
--- a/vendor/google.golang.org/protobuf/types/known/timestamppb/timestamp.pb.go
+++ b/vendor/google.golang.org/protobuf/types/known/timestamppb/timestamp.pb.go
@@ -172,13 +172,14 @@ import (
 // ) to obtain a formatter capable of generating timestamps in this format.
 type Timestamp struct {
 	state protoimpl.MessageState `protogen:"open.v1"`
-	// Represents seconds of UTC time since Unix epoch
-	// 1970-01-01T00:00:00Z. Must be from 0001-01-01T00:00:00Z to
-	// 9999-12-31T23:59:59Z inclusive.
+	// Represents seconds of UTC time since Unix epoch 1970-01-01T00:00:00Z. Must
+	// be between -315576000000 and 315576000000 inclusive (which corresponds to
+	// 0001-01-01T00:00:00Z to 9999-12-31T23:59:59Z).
 	Seconds int64 `protobuf:"varint,1,opt,name=seconds,proto3" json:"seconds,omitempty"`
-	// Non-negative fractions of a second at nanosecond resolution. Negative
-	// second values with fractions must still have non-negative nanos values
-	// that count forward in time. Must be from 0 to 999,999,999
+	// Non-negative fractions of a second at nanosecond resolution. This field is
+	// the nanosecond portion of the duration, not an alternative to seconds.
+	// Negative second values with fractions must still have non-negative nanos
+	// values that count forward in time. Must be between 0 and 999,999,999
 	// inclusive.
 	Nanos         int32 `protobuf:"varint,2,opt,name=nanos,proto3" json:"nanos,omitempty"`
 	unknownFields protoimpl.UnknownFields
diff --git a/vendor/modules.txt b/vendor/modules.txt
index 3ee001b440..b9a70c3187 100644
--- a/vendor/modules.txt
+++ b/vendor/modules.txt
@@ -1,4 +1,4 @@
-# cloud.google.com/go/auth v0.17.0
+# cloud.google.com/go/auth v0.18.0
 ## explicit; go 1.24.0
 cloud.google.com/go/auth
 cloud.google.com/go/auth/credentials
@@ -22,8 +22,8 @@ cloud.google.com/go/auth/oauth2adapt
 # cloud.google.com/go/compute/metadata v0.9.0
 ## explicit; go 1.24.0
 cloud.google.com/go/compute/metadata
-# github.com/Azure/azure-sdk-for-go/sdk/azcore v1.20.0
-## explicit; go 1.23.0
+# github.com/Azure/azure-sdk-for-go/sdk/azcore v1.21.0
+## explicit; go 1.24.0
 github.com/Azure/azure-sdk-for-go/sdk/azcore
 github.com/Azure/azure-sdk-for-go/sdk/azcore/arm
 github.com/Azure/azure-sdk-for-go/sdk/azcore/arm/internal/resource
@@ -70,8 +70,8 @@ github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/resources/armresources
 # github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage v1.8.1
 ## explicit; go 1.23.0
 github.com/Azure/azure-sdk-for-go/sdk/resourcemanager/storage/armstorage
-# github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.3
-## explicit; go 1.23.0
+# github.com/Azure/azure-sdk-for-go/sdk/storage/azblob v1.6.4
+## explicit; go 1.24.0
 github.com/Azure/azure-sdk-for-go/sdk/storage/azblob
 github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/appendblob
 github.com/Azure/azure-sdk-for-go/sdk/storage/azblob/blob
@@ -132,7 +132,7 @@ github.com/IBM-Cloud/bluemix-go/utils
 # github.com/IBM/go-sdk-core/v5 v5.21.2
 ## explicit; go 1.24.0
 github.com/IBM/go-sdk-core/v5/core
-# github.com/IBM/ibm-cos-sdk-go v1.12.4
+# github.com/IBM/ibm-cos-sdk-go v1.13.0
 ## explicit; go 1.24.0
 github.com/IBM/ibm-cos-sdk-go/aws
 github.com/IBM/ibm-cos-sdk-go/aws/arn
@@ -192,7 +192,7 @@ github.com/aliyun/alibaba-cloud-sdk-go/services/ecs
 # github.com/aliyun/aliyun-oss-go-sdk v3.0.2+incompatible
 ## explicit
 github.com/aliyun/aliyun-oss-go-sdk/oss
-# github.com/aws/aws-sdk-go-v2 v1.41.0
+# github.com/aws/aws-sdk-go-v2 v1.41.1
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/aws
 github.com/aws/aws-sdk-go-v2/aws/arn
@@ -225,10 +225,10 @@ github.com/aws/aws-sdk-go-v2/internal/timeconv
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream
 github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream/eventstreamapi
-# github.com/aws/aws-sdk-go-v2/config v1.32.5
+# github.com/aws/aws-sdk-go-v2/config v1.32.7
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/config
-# github.com/aws/aws-sdk-go-v2/credentials v1.19.5
+# github.com/aws/aws-sdk-go-v2/credentials v1.19.7
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/credentials
 github.com/aws/aws-sdk-go-v2/credentials/ec2rolecreds
@@ -238,33 +238,33 @@ github.com/aws/aws-sdk-go-v2/credentials/logincreds
 github.com/aws/aws-sdk-go-v2/credentials/processcreds
 github.com/aws/aws-sdk-go-v2/credentials/ssocreds
 github.com/aws/aws-sdk-go-v2/credentials/stscreds
-# github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.16
+# github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.18.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/feature/ec2/imds
 github.com/aws/aws-sdk-go-v2/feature/ec2/imds/internal/config
-# github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.16
+# github.com/aws/aws-sdk-go-v2/feature/s3/manager v1.20.19
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/feature/s3/manager
-# github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.16
+# github.com/aws/aws-sdk-go-v2/internal/configsources v1.4.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/internal/configsources
-# github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.16
+# github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.7.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/internal/endpoints/v2
 # github.com/aws/aws-sdk-go-v2/internal/ini v1.8.4
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/internal/ini
-# github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.16
+# github.com/aws/aws-sdk-go-v2/internal/v4a v1.4.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/internal/v4a
 github.com/aws/aws-sdk-go-v2/internal/v4a/internal/crypto
 github.com/aws/aws-sdk-go-v2/internal/v4a/internal/v4
-# github.com/aws/aws-sdk-go-v2/service/ec2 v1.277.0
+# github.com/aws/aws-sdk-go-v2/service/ec2 v1.279.2
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/ec2
 github.com/aws/aws-sdk-go-v2/service/ec2/internal/endpoints
 github.com/aws/aws-sdk-go-v2/service/ec2/types
-# github.com/aws/aws-sdk-go-v2/service/iam v1.53.1
+# github.com/aws/aws-sdk-go-v2/service/iam v1.53.2
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/iam
 github.com/aws/aws-sdk-go-v2/service/iam/internal/endpoints
@@ -272,40 +272,40 @@ github.com/aws/aws-sdk-go-v2/service/iam/types
 # github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.13.4
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding
-# github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.7
+# github.com/aws/aws-sdk-go-v2/service/internal/checksum v1.9.8
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/internal/checksum
-# github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.16
+# github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.13.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/internal/presigned-url
-# github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.16
+# github.com/aws/aws-sdk-go-v2/service/internal/s3shared v1.19.17
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/internal/s3shared
 github.com/aws/aws-sdk-go-v2/service/internal/s3shared/arn
 github.com/aws/aws-sdk-go-v2/service/internal/s3shared/config
-# github.com/aws/aws-sdk-go-v2/service/s3 v1.94.0
+# github.com/aws/aws-sdk-go-v2/service/s3 v1.95.1
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/s3
 github.com/aws/aws-sdk-go-v2/service/s3/internal/arn
 github.com/aws/aws-sdk-go-v2/service/s3/internal/customizations
 github.com/aws/aws-sdk-go-v2/service/s3/internal/endpoints
 github.com/aws/aws-sdk-go-v2/service/s3/types
-# github.com/aws/aws-sdk-go-v2/service/signin v1.0.4
+# github.com/aws/aws-sdk-go-v2/service/signin v1.0.5
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/signin
 github.com/aws/aws-sdk-go-v2/service/signin/internal/endpoints
 github.com/aws/aws-sdk-go-v2/service/signin/types
-# github.com/aws/aws-sdk-go-v2/service/sso v1.30.7
+# github.com/aws/aws-sdk-go-v2/service/sso v1.30.9
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/sso
 github.com/aws/aws-sdk-go-v2/service/sso/internal/endpoints
 github.com/aws/aws-sdk-go-v2/service/sso/types
-# github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.12
+# github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.13
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/ssooidc
 github.com/aws/aws-sdk-go-v2/service/ssooidc/internal/endpoints
 github.com/aws/aws-sdk-go-v2/service/ssooidc/types
-# github.com/aws/aws-sdk-go-v2/service/sts v1.41.5
+# github.com/aws/aws-sdk-go-v2/service/sts v1.41.6
 ## explicit; go 1.23
 github.com/aws/aws-sdk-go-v2/service/sts
 github.com/aws/aws-sdk-go-v2/service/sts/internal/endpoints
@@ -348,8 +348,8 @@ github.com/containers/image/v5/docker/reference
 # github.com/containers/storage v1.57.2
 ## explicit; go 1.22.0
 github.com/containers/storage/pkg/regexp
-# github.com/coreos/butane v0.25.1
-## explicit; go 1.23.0
+# github.com/coreos/butane v0.26.0
+## explicit; go 1.24.0
 github.com/coreos/butane/base/util
 github.com/coreos/butane/base/v0_1
 github.com/coreos/butane/base/v0_2
@@ -395,8 +395,10 @@ github.com/coreos/butane/config/openshift/v4_19
 github.com/coreos/butane/config/openshift/v4_19/result
 github.com/coreos/butane/config/openshift/v4_20
 github.com/coreos/butane/config/openshift/v4_20/result
-github.com/coreos/butane/config/openshift/v4_21_exp
-github.com/coreos/butane/config/openshift/v4_21_exp/result
+github.com/coreos/butane/config/openshift/v4_21
+github.com/coreos/butane/config/openshift/v4_21/result
+github.com/coreos/butane/config/openshift/v4_22_exp
+github.com/coreos/butane/config/openshift/v4_22_exp/result
 github.com/coreos/butane/config/openshift/v4_8
 github.com/coreos/butane/config/openshift/v4_8/result
 github.com/coreos/butane/config/openshift/v4_9
@@ -421,7 +423,7 @@ github.com/coreos/go-systemd/unit
 github.com/coreos/go-systemd/v22/dbus
 github.com/coreos/go-systemd/v22/journal
 github.com/coreos/go-systemd/v22/unit
-# github.com/coreos/ignition/v2 v2.25.0
+# github.com/coreos/ignition/v2 v2.25.1
 ## explicit; go 1.24.0
 github.com/coreos/ignition/v2/config/merge
 github.com/coreos/ignition/v2/config/shared/errors
@@ -489,7 +491,7 @@ github.com/digitalocean/go-libvirt/socket/dialers
 # github.com/digitalocean/go-qemu v0.0.0-20250212194115-ee9b0668d242
 ## explicit; go 1.18
 github.com/digitalocean/go-qemu/qmp
-# github.com/digitalocean/godo v1.170.0
+# github.com/digitalocean/godo v1.172.0
 ## explicit; go 1.23.0
 github.com/digitalocean/godo
 github.com/digitalocean/godo/metrics
@@ -570,12 +572,12 @@ github.com/google/s2a-go/stream
 # github.com/google/uuid v1.6.0
 ## explicit
 github.com/google/uuid
-# github.com/googleapis/enterprise-certificate-proxy v0.3.7
+# github.com/googleapis/enterprise-certificate-proxy v0.3.9
 ## explicit; go 1.23.0
 github.com/googleapis/enterprise-certificate-proxy/client
 github.com/googleapis/enterprise-certificate-proxy/client/util
-# github.com/googleapis/gax-go/v2 v2.15.0
-## explicit; go 1.23.0
+# github.com/googleapis/gax-go/v2 v2.16.0
+## explicit; go 1.24.0
 github.com/googleapis/gax-go/v2
 github.com/googleapis/gax-go/v2/apierror
 github.com/googleapis/gax-go/v2/apierror/internal/proto
@@ -678,8 +680,8 @@ github.com/pkg/errors
 # github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 ## explicit
 github.com/pmezard/go-difflib/difflib
-# github.com/sirupsen/logrus v1.9.3
-## explicit; go 1.13
+# github.com/sirupsen/logrus v1.9.4
+## explicit; go 1.17
 github.com/sirupsen/logrus
 # github.com/spf13/cobra v1.10.2
 ## explicit; go 1.15
@@ -784,7 +786,7 @@ go.opentelemetry.io/otel/trace/noop
 # go.yaml.in/yaml/v2 v2.4.3
 ## explicit; go 1.15
 go.yaml.in/yaml/v2
-# golang.org/x/crypto v0.46.0
+# golang.org/x/crypto v0.47.0
 ## explicit; go 1.24.0
 golang.org/x/crypto/blowfish
 golang.org/x/crypto/chacha20
@@ -802,7 +804,7 @@ golang.org/x/crypto/ssh
 golang.org/x/crypto/ssh/agent
 golang.org/x/crypto/ssh/internal/bcrypt_pbkdf
 golang.org/x/crypto/ssh/knownhosts
-# golang.org/x/net v0.47.0
+# golang.org/x/net v0.49.0
 ## explicit; go 1.24.0
 golang.org/x/net/http/httpguts
 golang.org/x/net/http2
@@ -824,17 +826,17 @@ golang.org/x/oauth2/google/internal/stsexchange
 golang.org/x/oauth2/internal
 golang.org/x/oauth2/jws
 golang.org/x/oauth2/jwt
-# golang.org/x/sys v0.39.0
+# golang.org/x/sys v0.40.0
 ## explicit; go 1.24.0
 golang.org/x/sys/cpu
 golang.org/x/sys/plan9
 golang.org/x/sys/unix
 golang.org/x/sys/windows
 golang.org/x/sys/windows/registry
-# golang.org/x/term v0.38.0
+# golang.org/x/term v0.39.0
 ## explicit; go 1.24.0
 golang.org/x/term
-# golang.org/x/text v0.32.0
+# golang.org/x/text v0.33.0
 ## explicit; go 1.24.0
 golang.org/x/text/encoding
 golang.org/x/text/encoding/charmap
@@ -851,13 +853,14 @@ golang.org/x/text/unicode/norm
 # golang.org/x/time v0.14.0
 ## explicit; go 1.24.0
 golang.org/x/time/rate
-# google.golang.org/api v0.257.0
+# google.golang.org/api v0.260.0
 ## explicit; go 1.24.0
 google.golang.org/api/compute/v1
 google.golang.org/api/googleapi
 google.golang.org/api/googleapi/transport
 google.golang.org/api/internal
 google.golang.org/api/internal/cert
+google.golang.org/api/internal/credentialstype
 google.golang.org/api/internal/gensupport
 google.golang.org/api/internal/impersonate
 google.golang.org/api/internal/third_party/uritemplates
@@ -865,12 +868,12 @@ google.golang.org/api/option
 google.golang.org/api/option/internaloption
 google.golang.org/api/storage/v1
 google.golang.org/api/transport/http
-# google.golang.org/genproto/googleapis/rpc v0.0.0-20251124214823-79d6a2a48846
+# google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b
 ## explicit; go 1.24.0
 google.golang.org/genproto/googleapis/rpc/code
 google.golang.org/genproto/googleapis/rpc/errdetails
 google.golang.org/genproto/googleapis/rpc/status
-# google.golang.org/grpc v1.77.0
+# google.golang.org/grpc v1.78.0
 ## explicit; go 1.24.0
 google.golang.org/grpc
 google.golang.org/grpc/attributes
@@ -932,7 +935,7 @@ google.golang.org/grpc/serviceconfig
 google.golang.org/grpc/stats
 google.golang.org/grpc/status
 google.golang.org/grpc/tap
-# google.golang.org/protobuf v1.36.10
+# google.golang.org/protobuf v1.36.11
 ## explicit; go 1.23
 google.golang.org/protobuf/encoding/protojson
 google.golang.org/protobuf/encoding/prototext