All policies
Every policy in the store — 18 of them, browsable by app, direction, and tag. Filter to the control you need, then open it for the Rego and the import path.
| Policy | App | Direction | Bundles | Purpose |
|---|---|---|---|---|
| Block Secrets in Slack Messages | slack | ingress | im-messaging | Blocks Slack send-message tool calls whose message body looks like it contains a secret — API keys, passwords, tokens, or PEM-formatted private keys. |
| HubSpot Block Deal Closure | hubspot | ingress | crm | Blocks HubSpot CRM-object calls that move a deal into a closed stage (closedwon or closedlost). Both create and update requests are inspected. |
| HubSpot Protect Associations | hubspot | ingress | crm | Blocks HubSpot CRM-object calls that create or change associations between objects (deal↔company, contact↔company, etc.). |
| HubSpot Protect Deal Owner | hubspot | ingress | crm | Blocks HubSpot CRM-object update calls that set or change a deal's owner. |
| HubSpot Protect Lifecycle Stage | hubspot | ingress | crm | Blocks HubSpot CRM-object calls that set or change a contact's lifecycle stage. |
| HubSpot Read-Only | hubspot | ingress | crm | Makes the HubSpot connection read-only by blocking the write tool. |
| HubSpot Redact PII | hubspot | egress | crm | Redacts sensitive contact information from HubSpot tool responses before they reach the caller. |
| JIRA: Deny Sensitive Project Search and View | jira | ingress | atlassian | Keeps issues that belong to a configurable set of "sensitive" JIRA projects out of read access through the JIRA MCP server. |
| JIRA: Protect Sensitive Projects from Writes | jira | ingress | atlassian | Blocks write operations against issues that belong to a configurable set of "sensitive" JIRA projects. |
| JIRA: Redact Sensitive Information from Issue Views | jira | egress | atlassian | Redacts sensitive content from the responses of JIRA issue-view tools before they reach the caller. |
| Salesforce Protect Contact Fields | salesforce | ingress | crm | Blocks Salesforce Contact updates that modify protected fields — ownership, account linkage, contact PII, name, and consent flags. |
| Salesforce Query Allowlist | salesforce | ingress | crm | Restricts Salesforce SOQL queries so only Account, Contact, and Opportunity records can be retrieved. |
| Salesforce Read-Only Access | salesforce | ingress | crm | Restricts the Salesforce MCP server to read-only access. |
| Salesforce Redact PII | salesforce | egress | crm | Redacts personal contact information from Salesforce tool responses before they reach the caller. |
| Slack: Deny Channel Creation | slack | ingress | slack | Blocks Slack channel-creation tool calls at ingress. Every other Slack tool — and every non-Slack tool — passes through untouched. |
| Slack: Deny Read/Search/Summarize of Sensitive Channels | slack | ingress | slack | Blocks read, search, and summarize operations that target a configurable set of "sensitive" Slack channels. |
| Slack: Deny Sending Direct Messages | slack | ingress | slack | Blocks Slack message-write calls whose destination resolves to a direct conversation — a 1:1 DM, a message posted to a user ID (which Slack auto-opens as a… |
| Slack: Redact Sensitive Information from Messages | slack | ingress | slack | Redacts sensitive content from outgoing Slack message arguments before the call reaches Slack. |