From c238f5425f8a9b4a521809d5cd11afd3fadf05e0 Mon Sep 17 00:00:00 2001
From: Pascal Fischer <32096965+pascal-fischer@users.noreply.github.com>
Date: Tue, 31 Mar 2026 16:43:49 +0200
Subject: [PATCH] [management] proper module permission validation for posture
 check delete (#5742)

---
 management/server/posture_checks.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/management/server/posture_checks.go b/management/server/posture_checks.go
index ba901c771..9562487c0 100644
--- a/management/server/posture_checks.go
+++ b/management/server/posture_checks.go
@@ -84,7 +84,7 @@ func (am *DefaultAccountManager) SavePostureChecks(ctx context.Context, accountI
 
 // DeletePostureChecks deletes a posture check by ID.
 func (am *DefaultAccountManager) DeletePostureChecks(ctx context.Context, accountID, postureChecksID, userID string) error {
-	allowed, err := am.permissionsManager.ValidateUserPermissions(ctx, accountID, userID, modules.Routes, operations.Read)
+	allowed, err := am.permissionsManager.ValidateUserPermissions(ctx, accountID, userID, modules.Policies, operations.Delete)
 	if err != nil {
 		return status.NewPermissionValidationError(err)
 	}