From 53c1f6a1ddea2a51b450395bed6ecbb532da2f24 Mon Sep 17 00:00:00 2001
From: Mondo Diaz <armando.m.diaz@boeing.com>
Date: Wed, 14 Jan 2026 19:32:59 +0000
Subject: [PATCH] Add KICS exceptions for CPU/Memory limits in docker-compose

---
 kics.config | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/kics.config b/kics.config
index 5572c19..bae145f 100644
--- a/kics.config
+++ b/kics.config
@@ -23,3 +23,13 @@ exclude-queries:
   # Reason: We intentionally don't pin curl version to get security updates.
   # This is documented with hadolint ignore comment in Dockerfile.
   - 965a08d7-ef86-4f14-8792-4a3b2098937e
+
+  # Cpus Not Limited (LOW)
+  # Reason: Local development docker-compose files. Resource limits are set in
+  # production Kubernetes deployments via Helm values, not docker-compose.
+  - 6b610c50-99fb-4ef0-a5f3-e312fd945bc3
+
+  # Memory Not Limited (MEDIUM)
+  # Reason: Local development docker-compose files. Resource limits are set in
+  # production Kubernetes deployments via Helm values, not docker-compose.
+  - bb9ac4f7-e13b-423d-a010-c74a1bfbe492