From 4ddb0544441d76491dff2d1fb4f4a1c6533ad7f2 Mon Sep 17 00:00:00 2001
From: James Chacon <james.chacon@snowflake.com>
Date: Thu, 3 Mar 2022 14:46:27 -0800
Subject: [PATCH] Remove ansible from default policy as unsafe to open w/o
 params. (#84)

---
 cmd/sansshell-server/default-policy.rego | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/cmd/sansshell-server/default-policy.rego b/cmd/sansshell-server/default-policy.rego
index 9785fe49..a43ab25a 100644
--- a/cmd/sansshell-server/default-policy.rego
+++ b/cmd/sansshell-server/default-policy.rego
@@ -40,10 +40,6 @@ allow {
 	input.type = "Process.GetStacksRequest"
 }
 
-allow {
-	input.type = "Ansible.RunRequest"
-}
-
 allow {
 	input.type = "Packages.ListInstalledRequest"
 }