Skip to content

Comments

[8.19] [ResponseOps] Update ES|QL ES query rule for context.grouping action variable (#220302)#220385

Merged
kibanamachine merged 1 commit intoelastic:8.19from
kibanamachine:backport/8.19/pr-220302
May 7, 2025
Merged

[8.19] [ResponseOps] Update ES|QL ES query rule for context.grouping action variable (#220302)#220385
kibanamachine merged 1 commit intoelastic:8.19from
kibanamachine:backport/8.19/pr-220302

Conversation

@kibanamachine
Copy link
Contributor

@kibanamachine kibanamachine commented May 7, 2025

Backport

This will backport the following commits from main to 8.19:

Questions ?

Please refer to the Backport tool documentation

@doakalexi
[ResponseOps] Update ES|QL ES query rule for context.grouping action …
ff4febb 
…variable (elastic#220302)

Follow on from this PR that was merged,
elastic#213550
## Summary

This PR updates the ES|QL grouping processing to work with the
`context.grouping` action variable.

### Checklist

- [ ] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

### To verify
1. Create an ES|QL rule with grouping.
2. In "active" and "recovered" action message, use `context.grouping`
variable
3. Verify that both "active" and "recovered" alert notifications contain
correct information

Example if grouping on `host.name` and `container.id`:

```
{
  "grouping": "{{context.grouping}}",
  "host.name": "{{context.grouping.host.name}}",
  "container.id": "{{context.grouping.container.id}}"
}
```

(cherry picked from commit d72c62c)
@kibanamachine kibanamachine added the backport This PR is a backport of another PR label May 7, 2025
@kibanamachine kibanamachine enabled auto-merge (squash) May 7, 2025 14:32
@kibanamachine kibanamachine mentioned this pull request May 7, 2025
Merged
1 task
@kibanamachine kibanamachine merged commit ecc9740 into elastic:8.19 May 7, 2025
11 checks passed
@elasticmachine
Copy link
Contributor

elasticmachine commented May 7, 2025

💛 Build succeeded, but was flaky

Failed CI Steps

Test Failures

  • [job] [logs] FTR Configs #44 / machine learning - anomaly detection anomaly explorer with influencers with farequote based multi metric job Anomaly Charts as embeddable attaches an embeddable to a case

Metrics [docs]

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id before after diff
stackAlerts 27.4KB 27.4KB +29.0B

cc @doakalexi

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

@doakalexi doakalexi

Labels

backport This PR is a backport of another PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kibanamachine @elasticmachine @doakalexi