diff --git a/.container-selinux.metadata b/.container-selinux.metadata
new file mode 100644
index 0000000..4e1fffb
--- /dev/null
+++ b/.container-selinux.metadata
@@ -0,0 +1 @@
+d64bfe52d0334626bc66843427b3b27cb69047cc v2.229.0.tar.gz
diff --git a/container-selinux.spec b/container-selinux.spec
index a4c3a8b..c7278bb 100644
--- a/container-selinux.spec
+++ b/container-selinux.spec
@@ -20,7 +20,7 @@
 Epoch: 2
 Name: container-selinux
 Version: 2.229.0
-Release: 1%{?dist}
+Release: 2%{?dist}
 License: GPLv2
 URL: %{git0}
 Summary: SELinux policies for container runtimes
@@ -53,7 +53,8 @@ SELinux policy modules for use with container runtimes.
 %if ! 0%{?fedora} && 0%{?rhel} <= 8
 sed -i 's/watch watch_reads//' container.if
 sed -i 's/watch watch_reads//' container.te
-sed -i '/sysfs_t:dir watch/d' container.te
+sed -i '/watch;/d' container.te
+sed -i '/watch;/d' container.if
 sed -i '/systemd_chat_resolved/d' container.te
 %endif
 
@@ -122,6 +123,10 @@ fi
 %{_datadir}/udica/templates/*
 
 %changelog
+* Tue Jan 23 2024 Jindrich Novy <jnovy@redhat.com> - 2:2.229.0-2
+- remove watch statements properly for RHEL8 and lower
+- Related: Jira:RHEL-2110
+
 * Tue Jan 23 2024 Jindrich Novy <jnovy@redhat.com> - 2:2.229.0-1
 - update to https://github.com/containers/container-selinux/releases/tag/v2.229.0
 - Related: Jira:RHEL-2110