From ff3e8cbb0cee69be2090f62ac855594db2296cd0 Mon Sep 17 00:00:00 2001
From: Brad Crawford <34108612+furi0us333@users.noreply.github.com>
Date: Fri, 5 Jul 2024 16:52:53 -0500
Subject: [PATCH] Create runs_remote_code.rego

---
 runs_remote_code.rego | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 runs_remote_code.rego

diff --git a/runs_remote_code.rego b/runs_remote_code.rego
new file mode 100644
index 0000000..68a386b
--- /dev/null
+++ b/runs_remote_code.rego
@@ -0,0 +1,14 @@
+# METADATA
+# title: Runs Remote Code
+# description: |
+#    Returns a violation if the package runs remote code
+
+package policy.v1
+
+import rego.v1
+
+# Runs remote code
+deny contains issue if {
+   some issue in data.issues
+   issue.tag in {"CM0024", "MM0024", "HM0032"}
+}