Alerts

Knowledge Base Community Release Notes Request Demo

Get an alert

get

Authorizations

Path parameters

idstringrequired

ID of the alert

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url 'https://your-api-host/alerts/{id}' \
  --header 'X-API-Key: YOUR_API_KEY'

200

400

404

{
  "assignee": {
    "id": "user",
    "type": "text"
  },
  "context": null,
  "createdAt": "text",
  "deliveries": [
    {
      "dispatchedAt": "text",
      "label": "text",
      "message": "text",
      "outputId": "text",
      "statusCode": 1,
      "success": true
    }
  ],
  "detection": {
    "id": "text",
    "type": "RULE"
  },
  "eventCount": 1,
  "firstEventOccurredAt": "text",
  "id": "text",
  "lastReceivedEventAt": "text",
  "runbook": "text",
  "severity": "CRITICAL",
  "status": "OPEN",
  "systemError": {
    "detection": {
      "id": "text",
      "type": "RULE"
    },
    "sourceId": "text",
    "sourceType": "text",
    "type": "text"
  },
  "title": "text",
  "type": "text",
  "updatedBy": {
    "id": "user",
    "type": "text"
  }
}

OK response.

List alerts

get

Authorizations

Query parameters

typestring · enum · default: "ALERT"optional

Options: ALERT, DETECTION_ERROR, SYSTEM_ERROR

sub-typestring · enum[]optional

The sub-type of the alert

cursorstringoptional

the pagination token

limitinteger · int64 · max: 50 · default: 25optional

the maximum results to return

created-afterstringoptional

The date and time after which the alerts were created. If empty we default to 30 days ago

Example: 1672531200

created-beforestringoptional

The date and time before which the alerts were created. If empty we default to the current time

Example: 1672531200

detection-idstringoptional

The detection ID to filter alerts by

sort-dirstring · enum · default: "desc"optional

The sort direction of the results

Options: asc, desc

name-containsstringoptional

A string to search for in the alert name

log-sourcestring[]optional

The log source of the alert

log-typestring[]optional

The log type of the alert

resource-typestring[]optional

The resource type of the alert

statusstring · enum[]optional

The status of the alert

severitystring · enum[]optional

The severity of the alert

assigneestring[]optional

The assignee of the alert. This should be a user id

event-count-mininteger · int64optional

The minimum number of events in the alert

event-count-maxinteger · int64optional

The maximum number of events in the alert

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --url 'https://your-api-host/alerts' \
  --header 'X-API-Key: YOUR_API_KEY'

200

400

{
  "next": "text",
  "results": [
    {
      "assignee": {
        "id": "user",
        "type": "text"
      },
      "context": null,
      "createdAt": "text",
      "deliveries": [
        {
          "dispatchedAt": "text",
          "label": "text",
          "message": "text",
          "outputId": "text",
          "statusCode": 1,
          "success": true
        }
      ],
      "detection": {
        "id": "text",
        "type": "RULE"
      },
      "eventCount": 1,
      "firstEventOccurredAt": "text",
      "id": "text",
      "lastReceivedEventAt": "text",
      "runbook": "text",
      "severity": "CRITICAL",
      "status": "OPEN",
      "systemError": {
        "detection": {
          "id": "text",
          "type": "RULE"
        },
        "sourceId": "text",
        "sourceType": "text",
        "type": "text"
      },
      "title": "text",
      "type": "text",
      "updatedBy": {
        "id": "user",
        "type": "text"
      }
    }
  ]
}

OK response.

Update the status or assignee of an alert

patch

Authorizations

Path parameters

idstringrequired

ID of the alert

Body

assigneestringoptional

The ID of the assignee for this alert

statusstring · enumoptional

The status of this Alert

Options: OPEN, CLOSED, TRIAGED, RESOLVED

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --request PATCH \
  --url 'https://your-api-host/alerts/{id}' \
  --header 'X-API-Key: YOUR_API_KEY' \
  --header 'Content-Type: application/json' \
  --data '{
    "assignee": "text",
    "status": "OPEN"
  }'

200

400

404

No body

OK response.

Update the status or assignee of multiple alerts

patch

Authorizations

Body

assigneestringoptional

The ID of the assignee for this alert

idsstring[]required

The IDs of the alerts to patch

statusstring · enumoptional

The status of this Alert

Options: OPEN, CLOSED, TRIAGED, RESOLVED

Responses

application/json

cURL

JavaScript

Python

HTTP

curl -L \
  --request PATCH \
  --url 'https://your-api-host/alerts' \
  --header 'X-API-Key: YOUR_API_KEY' \
  --header 'Content-Type: application/json' \
  --data '{
    "assignee": "text",
    "ids": [
      "text"
    ],
    "status": "OPEN"
  }'

204

400

404

No body

No Content response.

Overview

Required permissions

Operations

Overview

Required permissions

Operations

Get an alert

List alerts

Update the status or assignee of an alert

Update the status or assignee of multiple alerts

Overview

Required permissions

Operations

Overview

Required permissions

Operations

Get an alert

List alerts

Show child attributes

Show child attributes

Show child attributes

Update the status or assignee of an alert

Update the status or assignee of multiple alerts