OASB
v1.0
Controls/Operational Security/9.2
L1 EssentialAutomated verification

9.2 Resource Limits

9. Operational SecurityHow do we run agents safely?

Description

Agent resource consumption MUST be limited to prevent DoS and runaway costs.

Rationale

Agents can consume unlimited resources through loops, large files, or API storms.

Audit Procedure

1. Check for resource limits in config
2. Verify cgroups/ulimit settings
3. Check for API rate limiting

Remediation

1. Set container resource limits
2. Implement API rate limiting
3. Set disk quotas and timeouts

Framework Mappings

CIS Control 4.1NIST PR.DS-4
Previous9.1 Non-Root ExecutionNext9.3 Network Isolation