[Uptime][Alert][Synthetics] Alert is triggered without matching the rule

[angeliski]

Kibana version:
v 7.15.0
Elasticsearch version:
v 7.15.0
Server OS version:
I don't know because I am using the elastic cloud

Original install method (e.g. download page, yum, from source, etc.):
We used the terraform module

Describe the bug:
We are having some issues with the alert trigger from the uptime module (using the synthetics).
We configured or rule to trigger when we have 3 downs in 10 minutes.

But the rule is triggered when just 1 down happens

I was trying to find the problem and maybe the alert is not filtering for the field synthetics.type (I believe only heartbeat/summary is relevant in that case, Am I right?)

Steps to reproduce:

1. Configure a Synthetic test (I am not using fleet, I am running from my cluster and sending the data to elastic)
2. Configure a rule for alert (maybe 3 downs in 10 minutes) Docs
3. Make the test break only one time

Expected behavior:
The alert isn't triggered

Any additional context:
I will try to use the filter in the rule to test the synthetics.type solution, maybe that could be a simple workaround

[elasticmachine]

Pinging @elastic/uptime (Team:uptime)

[justinkambic]

I was able to reproduce this locally, thank you for bringing it to our attention.

Steps to repro are just what the description says. Create a browser monitor, configure a Monitor Status rule with n downs within a timespan. When the monitor fails the first time, the rule will become active.

[shahzad31]

we have a PR up to fix this #118999

[justinkambic]

@shahzad31 thanks so much, I missed the overlap between this issue and that PR. Thanks!

[shahzad31]

Fixed by #118999, will be available in 7.16