Add Sequence Pattern Models and Temporal Analysis

[calebevans]

Temporal Analysis

Examines log events based on their timing relationships, rather than treating each log line in isolation. It recognizes that real-world failures follow causal chains, where one event leads to another within specific time windows

Example

Timeline: 10:25:30 → 10:25:32 → 10:25:33
Events:   DB Connect → Connection Fail → App Crash
What happened: Database failure caused the app crash

Sequence Patterns

Ordered collections of events that frequently occur together within specific time windows. They capture failure narratives rather than isolated incidents.

Example - Database Startup Failure Sequence

sequence_patterns:
  - description: "Database startup followed by connection failure"
    events:
      - regex: "Initializing database connection pool"
        max_time_before: "30s"
      - regex: "Database connection failed"
    bonus_multiplier: 0.8  # 80% score boost if this sequence is detected