Delayed alert creation #146220
Labels
Feature:Alerting/RulesFramework
Issues related to the Alerting Rules Framework
Team:ResponseOps
Label for the ResponseOps team (formerly the Cases and Alerting teams)
Comments
mikecote
added
Team:ResponseOps
|
Pinging @elastic/response-ops (Team:ResponseOps) |
|
Closing as done with #173009 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As a user, I would like the system to wait a few rule runs before creating an alert.
If the rule type reports the alert for X consecutive rule runs, the system can then proceed to create the alert. Otherwise, the alert won't get created until it does get reported for X rule runs.
Note: This feature is similar to #146219 but on the creation of the alert.
The text was updated successfully, but these errors were encountered: