We are currently on GRC 10.1 SP15.
We have defined the risk type as Critical or non-critical. The request mitigation policy is set to have mitigation only for the critical risks.
From what I understand, GRAC_MSMP_DETOUR_SODVIOL function helps route the request in cases of a risk. Currently, both critical and non-critical risks are routed and the risk owner cannot close a request with critical risk without mitigation.
Is there any standard function available where in the request is routed only in case of critical risks and the non-critical risks does not invoke the routing.