From 31407374afd32a1eeb94bf80130ef4906e776ca2 Mon Sep 17 00:00:00 2001
From: "Jose R. Gonzalez" <jose@flutes.dev>
Date: Wed, 27 Jul 2022 09:45:27 -0500
Subject: [PATCH] re-adds basedOnUBI check to root policy exception

Signed-off-by: Jose R. Gonzalez <jose@flutes.dev>
---
 certification/engine/engine.go | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/certification/engine/engine.go b/certification/engine/engine.go
index 19ac3106..701c6122 100644
--- a/certification/engine/engine.go
+++ b/certification/engine/engine.go
@@ -86,6 +86,11 @@ func initializeChecks(ctx context.Context, p policy.Policy, cfg certification.Co
 			&containerpol.HasNoProhibitedPackagesCheck{},
 			&containerpol.HasRequiredLabelsCheck{},
 			&containerpol.HasModifiedFilesCheck{},
+			containerpol.NewBasedOnUbiCheck(pyxis.NewPyxisClient(
+				certification.DefaultPyxisHost,
+				cfg.PyxisAPIToken(),
+				cfg.CertificationProjectID(),
+				&http.Client{Timeout: 60 * time.Second})),
 		}, nil
 	case policy.PolicyScratch:
 		return []certification.Check{