The sort of examples we want for policy issues that the tool can pick up:

• overly broad or narrow policy
  • eg due to use of wrong operator, || vs &&
• policy that always (or nearly always) errors, eg due to accessing an attribute with mis-spelled name or in an entity of the wrong type (note: does the validator also pick this up? Ideally an issue that the validator does not detect, but that's not critical)
• adding a new policy with a mistake that causes conflict or redundancy with existing policy set (eg new policy has no effect, or has overly strong effect)

@kostyantynv you probably have a better idea, feel free to modify.