-
Notifications
You must be signed in to change notification settings - Fork 8.2k
Issues: elastic/kibana
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Tines Connector is available as a Connector type in Security alert rules but not in Observability alert rules
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#194895
opened Oct 4, 2024 by
ck-elastic
[ResponseOps] for "index threshold" and "es query" rule types, validate grouped / count conditions are > 0
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#189183
opened Jul 25, 2024 by
pmuellr
ES|QL rules should generate a New value added to drive a business result
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
context.link
that points to Discover
enhancement
#188856
opened Jul 22, 2024 by
legrego
[ResponseOps] allow multiple alerts from hits in ES Query rule using ES|QL
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#183090
opened May 9, 2024 by
pmuellr
[Alerting] Alerts triggered for previously matched documents when re-enabling ES Query rules
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#177667
opened Feb 22, 2024 by
s-abdelwahhab
[ResponseOps] warning ES Query rule authors about fields that can be used in the Query DSL text area
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#176765
opened Feb 12, 2024 by
pmuellr
[ML] Transform health alert: use prefix with wildcard for selecting transforms
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Transforms
ML transforms
:ml
Team:ML
Team label for ML (also use :ml)
#166810
opened Sep 20, 2023 by
rudolf
[ML] Reassigning spaces for a job with alerting rule causes the rule to fail
bug
Fixes for quality problems that affect the customer experience
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
:ml
#161186
opened Jul 4, 2023 by
jgowdyelastic
Telemetry for Elasticsearch Query rules
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#158305
opened May 23, 2023 by
mikecote
[ResponseOps] esQuery searchSource references deleted from rule causing internal _find route to fail
bug
Fixes for quality problems that affect the customer experience
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#152960
opened Mar 8, 2023 by
pmuellr
[ML] Enhancement anomaly detection rule type to allow alerting off more than one job
enhancement
New value added to drive a business result
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Anomaly Detection
ML anomaly detection
:ml
Team:ML
Team label for ML (also use :ml)
#144581
opened Nov 4, 2022 by
minkiyo
[RAM] Properly display SIEM rule descriptions in rule details
enhancement
New value added to drive a business result
Feature:Alerting/RulesManagement
Issues related to the Rules Management UX
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#139768
opened Aug 30, 2022 by
JiaweiWu
[ML] Support more conditions for anomaly alerts
enhancement
New value added to drive a business result
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Anomaly Detection
ML anomaly detection
:ml
#136392
opened Jul 14, 2022 by
pheyos
Consistent name for Elasticsearch query rule type
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
v8.4.0
#135584
opened Jun 30, 2022 by
lcawl
11 tasks
Add ability to require that the index used in a rule exists
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#133035
opened May 26, 2022 by
mcpate
Cases- Can we suppress the error message to just one pop up when the encryption key is not set.
bug
Fixes for quality problems that affect the customer experience
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Cases
Cases feature
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#129646
opened Apr 6, 2022 by
rashmivkulkarni
[ResponseOps][Rules] Add unit tests for Rule Executors edge cases (we already have some e2e tests)
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
technical debt
Improvement of the software architecture and operational architecture
test-coverage
issues & PRs for improving code test coverage
tests_needed
#124709
opened Feb 4, 2022 by
EricDavisX
[ResponseOps] research provide more guardrails for rule authors
Feature:Alerting/RulesFramework
Issues related to the Alerting Rules Framework
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
research
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#124388
opened Feb 2, 2022 by
pmuellr
Regularly benchmarking and stress-testing the alerting framework and rule types
estimate:needs-research
Estimated as too large and requires research to break down into workable issues
Feature:Alerting/RulesFramework
Issues related to the Alerting Rules Framework
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Meta
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#119845
opened Nov 29, 2021 by
mikecote
13 of 24 tasks
[Alerting][Security] Rules fail due to a security exception: missing authentication credentials for REST request
bug
Fixes for quality problems that affect the customer experience
estimate:needs-research
Estimated as too large and requires research to break down into workable issues
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Stack Monitoring
Team:Monitoring
Stack Monitoring team
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
#118520
opened Nov 15, 2021 by
gmmorris
[ML] Operational alerting rule type for Anomaly detection jobs
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Anomaly Detection
ML anomaly detection
Meta
:ml
#101028
opened Jun 1, 2021 by
darnautov
4 of 5 tasks
[Alerting] Provide support for derivative threshold alerts
enhancement
New value added to drive a business result
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Project: Actionable Observability - DEPRECATED
Deprecated - Do not use
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#100740
opened May 26, 2021 by
jeffvestal
There are insufficient functional tests for runtime field support in Stack Rules
estimate:needs-research
Estimated as too large and requires research to break down into workable issues
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
technical debt
Improvement of the software architecture and operational architecture
test-coverage
issues & PRs for improving code test coverage
#100738
opened May 26, 2021 by
pmuellr
[Alerting] Editing stack rules should provide warning if fields have unexpected mapping
estimate:small
Small Estimated Level of Effort
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
Feature:Alerting
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
UX
#95523
opened Mar 26, 2021 by
ymao1
Elasticsearch Query Stack Alert Aggregation Support
enhancement
New value added to drive a business result
estimate:needs-research
Estimated as too large and requires research to break down into workable issues
Feature:Alerting/RuleTypes
Issues related to specific Alerting Rules Types
R&D
Research and development ticket (not meant to produce code, but to make a decision)
research
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
#95161
opened Mar 23, 2021 by
christophercutajar
Previous Next
ProTip!
What’s not been updated in a month: updated:<2024-09-19.