diff --git a/sepolicy/private/adbroot.te b/sepolicy/private/adbroot.te
deleted file mode 100644
index a2effa6d..00000000
--- a/sepolicy/private/adbroot.te
+++ /dev/null
@@ -1 +0,0 @@
-allow adbroot self:capability sys_admin;
diff --git a/sepolicy/private/boringssl_self_test.te b/sepolicy/private/boringssl_self_test.te
deleted file mode 100644
index 4d858d66..00000000
--- a/sepolicy/private/boringssl_self_test.te
+++ /dev/null
@@ -1 +0,0 @@
-allow boringssl_self_test self:capability sys_admin;
diff --git a/sepolicy/private/fsverity_init.te b/sepolicy/private/fsverity_init.te
deleted file mode 100644
index 2f91e0a6..00000000
--- a/sepolicy/private/fsverity_init.te
+++ /dev/null
@@ -1 +0,0 @@
-allow fsverity_init self:capability sys_admin;
diff --git a/sepolicy/private/linkerconfig.te b/sepolicy/private/linkerconfig.te
deleted file mode 100644
index 79139cb0..00000000
--- a/sepolicy/private/linkerconfig.te
+++ /dev/null
@@ -1 +0,0 @@
-allow linkerconfig self:capability sys_admin;
diff --git a/sepolicy/private/migrate_legacy_obb_data.te b/sepolicy/private/migrate_legacy_obb_data.te
deleted file mode 100644
index 73747627..00000000
--- a/sepolicy/private/migrate_legacy_obb_data.te
+++ /dev/null
@@ -1 +0,0 @@
-allow migrate_legacy_obb_data self:capability sys_admin;
diff --git a/sepolicy/private/vendor_boringssl_self_test.te b/sepolicy/private/vendor_boringssl_self_test.te
deleted file mode 100644
index 20b28102..00000000
--- a/sepolicy/private/vendor_boringssl_self_test.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vendor_boringssl_self_test self:capability sys_admin;
diff --git a/sepolicy/vendor/adbd.te b/sepolicy/vendor/adbd.te
deleted file mode 100644
index 83efdb9a..00000000
--- a/sepolicy/vendor/adbd.te
+++ /dev/null
@@ -1 +0,0 @@
-allow adbd self:capability sys_admin;
diff --git a/sepolicy/vendor/fsck.te b/sepolicy/vendor/fsck.te
deleted file mode 100644
index 1d3c9c1d..00000000
--- a/sepolicy/vendor/fsck.te
+++ /dev/null
@@ -1 +0,0 @@
-allow fsck self:capability sys_admin;
diff --git a/sepolicy/vendor/hal_power_default.te b/sepolicy/vendor/hal_power_default.te
index 036899b0..ebbbc897 100644
--- a/sepolicy/vendor/hal_power_default.te
+++ b/sepolicy/vendor/hal_power_default.te
@@ -9,7 +9,6 @@ allow hal_power_default { sysfs_devfreq sysfs_kgsl }:{ file lnk_file } rw_file_p
 allow hal_power_default sysfs_devices_system_cpu:file rw_file_perms;
 allow hal_power_default sysfs_touchpanel:dir search;
 allow hal_power_default sysfs_touchpanel:file rw_file_perms;
-allow hal_power_default self:capability { kill sys_admin };
 
 r_dir_file(hal_power_default, sysfs_graphics)
 set_prop(hal_power_default, vendor_power_prop)
diff --git a/sepolicy/vendor/hal_wifi_supplicant_default.te b/sepolicy/vendor/hal_wifi_supplicant_default.te
deleted file mode 100644
index e87aefc7..00000000
--- a/sepolicy/vendor/hal_wifi_supplicant_default.te
+++ /dev/null
@@ -1 +0,0 @@
-allow hal_wifi_supplicant_default self:capability sys_admin;
diff --git a/sepolicy/vendor/hvdcp.te b/sepolicy/vendor/hvdcp.te
index daba2955..a042f64e 100644
--- a/sepolicy/vendor/hvdcp.te
+++ b/sepolicy/vendor/hvdcp.te
@@ -1,2 +1 @@
 allow hvdcp vendor_sysfs_hvdcp:file r_file_perms;
-allow hvdcp self:capability sys_admin;
diff --git a/sepolicy/vendor/irsc_util.te b/sepolicy/vendor/irsc_util.te
deleted file mode 100644
index c3e35db5..00000000
--- a/sepolicy/vendor/irsc_util.te
+++ /dev/null
@@ -1 +0,0 @@
-allow irsc_util self:capability sys_admin;
diff --git a/sepolicy/vendor/netmgrd.te b/sepolicy/vendor/netmgrd.te
index 1b0b91c9..224a7b70 100644
--- a/sepolicy/vendor/netmgrd.te
+++ b/sepolicy/vendor/netmgrd.te
@@ -1,3 +1 @@
-allow netmgrd self:capability sys_admin;
-
 set_prop(netmgrd, vendor_radio_prop)
diff --git a/sepolicy/vendor/qti_init_shell.te b/sepolicy/vendor/qti_init_shell.te
index d6c38f2c..474cd68d 100644
--- a/sepolicy/vendor/qti_init_shell.te
+++ b/sepolicy/vendor/qti_init_shell.te
@@ -2,7 +2,6 @@ allow qti_init_shell ctl_start_prop:property_service set;
 allow qti_init_shell ctl_stop_prop:property_service set;
 allow qti_init_shell self:perf_event cpu;
 allow qti_init_shell sysfs:file { setattr write };
-allow qti_init_shell self:capability kill;
 
 dontaudit qti_init_shell system_prop:property_service set;
 dontaudit qti_init_shell self:capability { dac_override dac_read_search };
diff --git a/sepolicy/vendor/rfs_access.te b/sepolicy/vendor/rfs_access.te
deleted file mode 100644
index b487a370..00000000
--- a/sepolicy/vendor/rfs_access.te
+++ /dev/null
@@ -1 +0,0 @@
-allow rfs_access self:capability sys_admin;
diff --git a/sepolicy/vendor/rmt_storage.te b/sepolicy/vendor/rmt_storage.te
deleted file mode 100644
index 7303b7e4..00000000
--- a/sepolicy/vendor/rmt_storage.te
+++ /dev/null
@@ -1 +0,0 @@
-allow rmt_storage self:capability sys_admin;
diff --git a/sepolicy/vendor/thermal-engine.te b/sepolicy/vendor/thermal-engine.te
index ac23f13a..0b26efeb 100644
--- a/sepolicy/vendor/thermal-engine.te
+++ b/sepolicy/vendor/thermal-engine.te
@@ -1,7 +1,7 @@
 allow thermal-engine thermal_data_file:dir rw_dir_perms;
 allow thermal-engine thermal_data_file:file create_file_perms;
 allow thermal-engine sysfs:dir r_dir_perms;
-allow thermal-engine self:capability { chown fowner sys_admin };
+allow thermal-engine self:capability { chown fowner };
 
 set_prop(thermal-engine, thermal_engine_prop);
 r_dir_file(thermal-engine, sysfs_thermal)
diff --git a/sepolicy/vendor/toolbox.te b/sepolicy/vendor/toolbox.te
deleted file mode 100644
index 0a1302d2..00000000
--- a/sepolicy/vendor/toolbox.te
+++ /dev/null
@@ -1 +0,0 @@
-allow toolbox self:capability { kill sys_admin };
diff --git a/sepolicy/vendor/ueventd.te b/sepolicy/vendor/ueventd.te
index bdb97cf4..985c8ec4 100644
--- a/sepolicy/vendor/ueventd.te
+++ b/sepolicy/vendor/ueventd.te
@@ -1,2 +1 @@
 allow ueventd metadata_file:dir search;
-allow ueventd self:capability { kill sys_admin };
diff --git a/sepolicy/vendor/usbd.te b/sepolicy/vendor/usbd.te
deleted file mode 100644
index 69827d54..00000000
--- a/sepolicy/vendor/usbd.te
+++ /dev/null
@@ -1 +0,0 @@
-allow usbd self:capability sys_admin;
diff --git a/sepolicy/vendor/vdc.te b/sepolicy/vendor/vdc.te
deleted file mode 100644
index c12a808e..00000000
--- a/sepolicy/vendor/vdc.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vdc self:capability sys_admin;
diff --git a/sepolicy/vendor/vendor_dpmd.te b/sepolicy/vendor/vendor_dpmd.te
deleted file mode 100644
index e4722fbd..00000000
--- a/sepolicy/vendor/vendor_dpmd.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vendor_dpmd self:capability sys_admin;
diff --git a/sepolicy/vendor/vendor_modprobe.te b/sepolicy/vendor/vendor_modprobe.te
deleted file mode 100644
index 3f3c5c46..00000000
--- a/sepolicy/vendor/vendor_modprobe.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vendor_modprobe self:capability sys_admin;
diff --git a/sepolicy/vendor/vendor_msm_irqbalanced.te b/sepolicy/vendor/vendor_msm_irqbalanced.te
deleted file mode 100644
index 0bf0856c..00000000
--- a/sepolicy/vendor/vendor_msm_irqbalanced.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vendor_msm_irqbalanced self:capability sys_admin;
diff --git a/sepolicy/vendor/vendor_pd_mapper.te b/sepolicy/vendor/vendor_pd_mapper.te
deleted file mode 100644
index bf4b807d..00000000
--- a/sepolicy/vendor/vendor_pd_mapper.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vendor_pd_mapper self:capability sys_admin;
diff --git a/sepolicy/vendor/vold_prepare_subdirs.te b/sepolicy/vendor/vold_prepare_subdirs.te
deleted file mode 100644
index 41e98fe4..00000000
--- a/sepolicy/vendor/vold_prepare_subdirs.te
+++ /dev/null
@@ -1 +0,0 @@
-allow vold_prepare_subdirs self:capability sys_admin;