[SigEvents] Seed sigevents env script#261172
Conversation
crespocarlos
force-pushed
the
feature/seed-sigevents-env
branch
from
61431b3 to
0a389b2
Compare
crespocarlos
changed the title
crespocarlos
added
release_note:skip
ApprovabilityVerdict: Needs human review This PR introduces a substantial new development seeding tool (~1400 lines) for the sigevents environment. While it's dev-only tooling that doesn't affect production runtime, the author does not own any of the changed files - all are owned by @elastic/obs-onboarding-team and @elastic/obs-sig-events-team. The designated code owners should review this new capability. You can customize Macroscope's approvability policy. Learn more. |
|
Did a quick test run and this works as expected for KI and queries. It did not generated any insights / Sig events for me. We had a quick discussion around that it would be nice, if we could also specify some specific cases we want to see / test in the UI here which is not directly the case. But my understanding is we can modify / enhance the generation at any time to also new data structures inside, all the tooling is in place. |
It should have generated insights. let me test it again
what specific cases would that be? |
![macroscopeapp[bot]](https://avatars.githubusercontent.com/in/900172?s=60&v=4){kind=small}
taskDocIds included INSIGHTS_TASK_TYPE (global singleton) alongside per-stream IDs, meaning cleanTasks would delete the global insights task whenever any single stream was cleaned — breaking other streams if multiple were seeded simultaneously. Rename taskDocIds → streamTaskDocIds (per-stream only), resolve insightsId directly from INSIGHTS_TASK_TYPE in buildTaskDocs, and assemble the full ID list explicitly in cleanTasks with a comment documenting the multi-stream trade-off. Made-with: Cursor
|
Tested again and insights are generated now.
I'm thinking of cases like having on Significant Events with a too long title, missing fields etc. All the fun that LLMs generate from time to time should not break the UI. |
|
@elasticmachine merge upstream |
|
@elasticmachine merge upstream |
|
Tested again and works as expected. We can add more and other data entries over time. |
|
@copilot resolve the merge conflicts in this pull request |
|
@elasticmachine merge upstream |
|
merge conflict between base and head |
|
@elasticmachine merge upstream |
|
There are no new commits on the base branch. |
💚 Build Succeeded
Metrics [docs]
History
|
* commit '11ed3645c5ededae2a6e29f2a79b31f52208b441': (157 commits) remove sync register uiAction methods (elastic#254590) [performance] Apply minimal auth to the search route (elastic#257497) [ES|QL] Reports correctly the controls server side errors (elastic#263020) [SecuritySolution][Navigation] Enable classic nav updates (elastic#262358) [Inference] Use pretty name and logo on feature settings page (elastic#262531) [Security Solution] fix AT-AB cypress test (elastic#262991) [SigEvents] Seed sigevents env script (elastic#261172) Adjust conditions for validating no refetch for expanded row (elastic#262978) [Agent Builder] update copy for the announcement modal (elastic#263034) [Search] Hide index management links for users without privileges (elastic#262627) Simplify OAS schema for GET `/api/spaces/space` query params (elastic#260831) Fix fleet output OAS regressions: SSL type explosion and Kafka union wrappers (elastic#260842) [Dashboards in chat] fix agent confusing the axes in a horizontal chat (elastic#263064) [One Workflow] Add alert state checkbox UI for workflow connector (elastic#259770) [One Workflow] Deprecate legacy Cases step types in workflow authoring (elastic#262070) skip failing test suite (elastic#248090) fix flaky test: MonitorDetails filter apply button not enabled (elastic#260788) fix: propagate AbortSignal to executeAsReasoningAgent for task cancellation (elastic#262811) [Security Solution][Alert KPI] Fix white space bug in alert KPIs (elastic#260803) [Streams] Move helpers and format_size_unit to utils folder (elastic#262550) ... # Conflicts: # x-pack/platform/plugins/shared/dashboard_agent/public/attachment_types/canvas_integration/dashboard_canvas_content.test.tsx # x-pack/platform/plugins/shared/dashboard_agent/public/attachment_types/canvas_integration/dashboard_canvas_content.tsx # x-pack/platform/plugins/shared/dashboard_agent/public/attachment_types/canvas_integration/use_register_canvas_action_buttons.ts # x-pack/platform/plugins/shared/dashboard_agent/public/attachment_types/index.test.tsx # x-pack/platform/plugins/shared/dashboard_agent/public/attachment_types/index.tsx
4 participants
Summary
What it seeds:
SynthtraceClientsManager+@kbn/synthtrace-clienttimerangeAPI into the synthtrace default stream (logs-synth-default), with a 30-minute baseline window followed by a failure injection phase.kibana_streams_features-*rule_idresolution via a bounded poll against.kibana_streams_assets.alerts-streams.alerts-default, with deterministic IDs derived via UUIDv5/internal/streams/_insights/_bulk.kibana_streams_tasksvia a temporarysystem_indices_superuseraccountKey design points:
--cleanwipes all seeded data before re-seedingbuildFeaturePayloads,buildInsightPayloads) live inlib/builders.tsand are consumed by both the seed steps and the task doc assembler, keeping payloads consistent across storage pathsgetSynthtraceDefaultStream()) — no hardcodingChecklist
release_note:breakinglabel should be applied in these situations.release_note:*label is applied per the guidelinesbackport:*labels.🤖 Co-authored with AI assistance.