fix: example policies (#2321)

Signed-off-by: Miguel Martinez <[email protected]>

Author: migmartri

docs/examples/policies/chainloop-commit.yaml

@@ -57,7 +57,7 @@ spec:
           msg := "missing commit in attestation material"
         }
         
-        has_commit {
+        has_commit if {
           some sub in input.subject
           sub.name == "git.head"
           sub.digest.sha1

docs/examples/policies/chainloop-qa.yaml

@@ -61,9 +61,8 @@ spec:
           msg:= "Container image is not approved"
         }
         
-        is_approved {
+        is_approved if {
+          input.predicate.annotations.approval == "true"
           some material in input.predicate.materials
           material.annotations["chainloop.material.type"] == "CONTAINER_IMAGE"
-          
-          input.predicate.annotations.approval == "true"
         }

docs/examples/policies/policy-template.rego

@@ -30,12 +30,13 @@ skipped := false if valid_input
 ########################################
 
 # Validates if the input is valid and can be understood by this policy (3)
-valid_input if {
-    # insert code here
-}
+valid_input := true
+
+# insert code here
 
 # If the input is valid, check for any policy violation here (4)
 violations contains msg if {
-    valid_input
-    # insert code here
+	valid_input
 }
+
+# insert code here

docs/examples/policies/sarif-errors.yaml

@@ -58,7 +58,7 @@ spec:
           msg := "There are errors in the SARIF report"
         }
         
-        has_errors {
+        has_errors if {
           some run in input.runs
           some result in run.results
           result.level == "error"

docs/examples/policies/trivy-vulns.yaml

@@ -59,7 +59,7 @@ spec:
           msg := "CVE report has vulnerabilities with severity MEDIUM or HIGH"
         }
         
-        has_vulnerabilities {
+        has_vulnerabilities if {
           severities := ["HIGH", "MEDIUM"]
           some result in input.Results
           some vuln in result.Vulnerabilities