diff --git a/src/tools/genpolicy/rules.rego b/src/tools/genpolicy/rules.rego index d7f32fdeaf..c44c513923 100644 --- a/src/tools/genpolicy/rules.rego +++ b/src/tools/genpolicy/rules.rego @@ -14,6 +14,7 @@ default GetDiagnosticDataRequest := false # Default values, returned by OPA when rules cannot be evaluated to true. default AddARPNeighborsRequest := false +default AddSwapPathRequest := false default AddSwapRequest := false default CloseStdinRequest := false default CopyFileRequest := false @@ -21,6 +22,8 @@ default CreateContainerRequest := false default CreateSandboxRequest := false default DestroySandboxRequest := true default ExecProcessRequest := false +default GetIPTablesRequest := false +default GetMetricsRequest := false default GetOOMEventRequest := true default GuestDetailsRequest := true default ListInterfacesRequest := false @@ -34,8 +37,10 @@ default ReadStreamRequest := false default RemoveContainerRequest := true default RemoveStaleVirtiofsShareMountsRequest := true default ReseedRandomDevRequest := false +default ResizeVolumeRequest := false default ResumeContainerRequest := false default SetGuestDateTimeRequest := false +default SetIPTablesRequest := false default SetPolicyRequest := false default SignalProcessRequest := true default StartContainerRequest := true @@ -47,6 +52,7 @@ default UpdateContainerRequest := false default UpdateEphemeralMountsRequest := false default UpdateInterfaceRequest := false default UpdateRoutesRequest := false +default VolumeStatsRequest := false default WaitProcessRequest := true default WriteStreamRequest := false