KQL Search Alert #91860

ymao1 · 2021-02-18T15:27:30Z

As a followup to #61313, we also want to allow a KQL search alert in addition to ES DSL. This could be potentially part of the same search alert with a switch to allow entering KQL or ES DSL (or Lucene as well).

See comments #61313 for some initial discussion about KQL

elasticmachine · 2021-02-18T15:27:33Z

Pinging @elastic/kibana-alerting-services (Team:Alerting Services)

mikecote · 2022-08-04T16:34:20Z

Closing in favour of alerting from Discover.

ymao1 added Feature:Alerting Team:ResponseOps Label for the ResponseOps team (formerly the Cases and Alerting teams) labels Feb 18, 2021

gmmorris added the Feature:Alerting/RuleTypes Issues related to specific Alerting Rules Types label Jul 1, 2021

gmmorris added the loe:large Large Level of Effort label Jul 14, 2021

gmmorris added enhancement New value added to drive a business result estimate:medium Medium Estimated Level of Effort and removed Feature:Alerting labels Aug 13, 2021

gmmorris removed the loe:large Large Level of Effort label Sep 2, 2021

mikecote added this to AppEx: ResponseOps - Execution & Connectors Jan 6, 2022

kobelb added the needs-team Issues missing a team label label Jan 31, 2022

botelastic bot removed the needs-team Issues missing a team label label Jan 31, 2022

mikecote closed this as completed Aug 4, 2022

mikecote moved this to Done in AppEx: ResponseOps - Execution & Connectors Aug 4, 2022

mikecote removed this from AppEx: ResponseOps - Execution & Connectors Aug 4, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

KQL Search Alert #91860

KQL Search Alert #91860

ymao1 commented Feb 18, 2021

elasticmachine commented Feb 18, 2021

mikecote commented Aug 4, 2022

KQL Search Alert #91860

KQL Search Alert #91860

Comments

ymao1 commented Feb 18, 2021

elasticmachine commented Feb 18, 2021

mikecote commented Aug 4, 2022