diff --git a/rules/falco_rules.yaml b/rules/falco_rules.yaml
index ed7c4a51131..ee5144142c5 100644
--- a/rules/falco_rules.yaml
+++ b/rules/falco_rules.yaml
@@ -926,6 +926,7 @@
 - macro: ossec_syscheckd
   condition: proc.name=ossec-syscheckd 
 
+
 - rule: Read sensitive file untrusted
   desc: >
     an attempt to read any sensitive file (e.g. files containing user/password/authentication