diff --git a/go.mod b/go.mod
index 22ce01ad98..cf351fa3a1 100644
--- a/go.mod
+++ b/go.mod
@@ -5,7 +5,7 @@ go 1.16
 require (
 	github.com/AlecAivazis/survey/v2 v2.3.4
 	github.com/Masterminds/semver v1.5.0
-	github.com/aquasecurity/defsec v0.35.0
+	github.com/aquasecurity/defsec v0.36.0
 	github.com/hashicorp/go-version v1.4.0
 	github.com/inconshreveable/go-update v0.0.0-20160112193335-8152e7eb6ccf
 	github.com/liamg/clinch v1.5.6
diff --git a/go.sum b/go.sum
index d831f6fd80..8d05b24514 100644
--- a/go.sum
+++ b/go.sum
@@ -194,8 +194,10 @@ github.com/apparentlymart/go-textseg v1.0.0 h1:rRmlIsPEEhUTIKQb7T++Nz/A5Q6C9IuX2
 github.com/apparentlymart/go-textseg v1.0.0/go.mod h1:z96Txxhf3xSFMPmb5X/1W05FF/Nj9VFpLOpjS5yuumk=
 github.com/apparentlymart/go-textseg/v13 v13.0.0 h1:Y+KvPE1NYz0xl601PVImeQfFyEy6iT90AvPUL1NNfNw=
 github.com/apparentlymart/go-textseg/v13 v13.0.0/go.mod h1:ZK2fH7c4NqDTLtiYLvIkEghdlcqw7yxLeM89kiTRPUo=
-github.com/aquasecurity/defsec v0.35.0 h1:Fv/yTcmlesXQMytF4YThxZtUIxjG+Lqz/t0k+IUD+r0=
-github.com/aquasecurity/defsec v0.35.0/go.mod h1:3CaD3jUYJlrdJtEbutxFDT4MXA9IBKAq6nfPvNDBJVk=
+github.com/aquasecurity/defsec v0.35.1-0.20220407182017-9a4a74f3db8f h1:5yZqclqRdqR05Q81xYxcyM9foLg4t2DjJiZn3cItCOk=
+github.com/aquasecurity/defsec v0.35.1-0.20220407182017-9a4a74f3db8f/go.mod h1:3CaD3jUYJlrdJtEbutxFDT4MXA9IBKAq6nfPvNDBJVk=
+github.com/aquasecurity/defsec v0.36.0 h1:pynnPWTX1KUXZYNhkHyEIIjAZzXowH3Jfpdzh4AVBDg=
+github.com/aquasecurity/defsec v0.36.0/go.mod h1:3CaD3jUYJlrdJtEbutxFDT4MXA9IBKAq6nfPvNDBJVk=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
 github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
diff --git a/test/testdata/rego/policies/rego.rego b/test/testdata/rego/policies/rego.rego
index 5d54e7ae13..4f66e1b020 100644
--- a/test/testdata/rego/policies/rego.rego
+++ b/test/testdata/rego/policies/rego.rego
@@ -1,5 +1,8 @@
 package custom.rego.rego.sauce
 
-deny[msg] {
-    msg := "NO"
+import data.lib.defsec
+
+deny[res] {
+    count(input.aws.s3.buckets) > 0
+    res := defsec.result("NO BUCKETS", input.aws.s3.buckets[_])
 }