https://docs.sysdig.com/en/sysdig-secure/threat-detection-policies/runtime_policy