Fix dockerfile not collected due to KicsBaseFilters and BaseIncludeFilters conflict (AST-127206)

[cx-margarita-levitm]

By submitting this pull request, you agree to the terms within the Checkmarx Code of Conduct. Please review the contributing guidelines for guidance on creating high-quality pull requests.

Description

Please provide a summary of the changes and the related issue. Include relevant motivation and context.

Type of Change

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation update

Related Issues

Link any related issues or tickets.

Checklist

• I have performed a self-review of my code
• I have added tests that prove my fix is effective or that my feature works
• I have added necessary documentation (if appropriate)
• Any dependent changes have been merged and published in downstream modules
• I have updated the CLI help for new/changed functionality in this PR (if applicable)
• All active GitHub checks for tests, formatting, and security are passing
• The correct base branch is being used

Screenshots (if applicable)

Add screenshots to help explain your changes.

Additional Notes

Add any other relevant information.

[github-actions]

Checkmarx One – Scan Summary & Details – 22cd1411-9506-4843-ae71-42a66021e058

New Issues (3)

Checkmarx found the following issues in this Pull Request

#	Severity	Issue	Source File / Package	Checkmarx Insight
1		CVE-2025-31133	Go-github.com/opencontainers/runc-v1.2.3	details Recommended version: v1.2.8 Description: runc is a CLI tool for spawning and running containers according to the OCI specification. In versions through 1.2.7, 1.3.0-rc.1 through 1.3.2, 1.4... Attack Vector: LOCAL Attack Complexity: LOW Vulnerable Package
2		CVE-2025-52565	Go-github.com/opencontainers/runc-v1.2.3	details Recommended version: v1.2.8 Description: runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through ... Attack Vector: LOCAL Attack Complexity: LOW Vulnerable Package
3		CVE-2025-52881	Go-github.com/opencontainers/runc-v1.2.3	details Recommended version: v1.2.8 Description: runc is a CLI tool for spawning and running containers according to the OCI specification. In "github.com/opencontainers/runc" versions through 1.2... Attack Vector: LOCAL Attack Complexity: LOW Vulnerable Package

Fixed Issues (1)

Great job! The following issues were fixed in this Pull Request

Severity	Issue	Source File / Package
	CVE-2026-25934	Go-github.com/go-git/go-git/v5-v5.14.0