Hi! Does anybody know how I can correctly set exclusions for process_events through auditd? As I know I can not do it via osquery configuration, correct me if I’m wrong. On some servers osquery cpu utilization is high because of lot of process syscalls.