Hello, I am trying to build a host-based intrusion detection system for my 3rd-year project. I am trying to get system calls that an application usually makes like execve, mmap, read, write, delete, fork, pipe, permission changes, etc.. but I am not interested in the syscalls regarding sockets. I have made the query: "query": "SELECT pid, path, syscall, mode, cmdline, cmdline_size, cwd, uid, gid, parent, time, uptime FROM process_events;", in the config files but the only system call it returns is execve for some reason. Do you know why this is happening?😕