Generic Data Source Support

Flexible Alert Evaluation

Customizable Alert Definition

Core Features

Alert States

Alert Rule Components

State Management

Core Components

Examples

Overview

Keep

Keep is an open-source alert management and AIOps platform that is a swiss-knife for alerting, automation, and noise reduction.

Introduction

Dive into Keep's [sandbox environment](https://playground.keephq.dev) to experience the full range of its AIOps capabilities.

Playground

Use Cases

Glossary

Common Expression Language (CEL)

Fingerprints are unique identifiers associated with alert instances in Keep. Every provider declares the fields fingerprints are calculated upon

Fingerprints

Alerts Severity and Status

Push vs Pull alerts

Comparison

Support

Alert Table

Action Menu

Alert Sidebar

Customized Presets

Sound Notifications

Correlation Rules

Topology Correlation

Deduplication

Extraction

Mapping

Maintenance Windows

Service Topology

Workflows

Triggers

Steps and Actions

Conditions

Functions

Context

Providers

Foreach

Enrichment

Suppressing Alerts Automatically

Executing Actions During Business Hours

Creating ServiceNow Tickets for Alerts

Handling High-Severity Sentry Alerts

Update ServiceNow Tickets

VictoriaMetrics Single Alert Example

VictoriaMetrics Multi Alert Example

A Provider is a component of Keep that enables it to interact with third-party products. It is implemented as extensible Python code, making it easy to enhance and customize.

Adding a New Provider

Adding a new Provider

Azure AKS provider to view kubernetes resources.

Azure AKS

The AmazonSQS provider enables you to pull & push alerts to the Amazon SQS Queue.

AmazonSQS Provider

The Anthropic Provider allows for integrating Anthropic's Claude language models into Keep.

Anthropic Provider

AppDynamics provider allows you to get AppDynamics `alerts/actions` via webhook installation

AppDynamics Provider

AppDynamics

AWS S3 Provider

AWS S3

The ArgoCD provider enables you to pull topology and Application data.

ArgoCD Provider

Auth0 provider allows interaction with Auth0 APIs for authentication and user management.

Auth0 Provider

Auth0

Axiom Provider is a class that allows to ingest/digest data from Axiom.

Axiom Provider

Azure Monitorg provider allows you to get alerts from Azure Monitor via webhooks.

Azure Monitor Provider

Azure Monitor

Bash provider allows executing Bash commands in a workflow, with a limitation for cloud execution.

Bash Provider

Bash

BigQuery provider allows interaction with Google BigQuery for querying and managing datasets.

BigQuery Provider

BigQuery

Centreon allows you to monitor your infrastructure with ease.

Centreon Provider

Centreon

Checkmk provider allows you to get alerts from Checkmk via webhooks.

Checkmk Provider

Checkmk

Checkly allows you to receive alerts from Checkly using API endpoints as well as webhooks

Checkly Provider

Checkly

Cilium provider enables topology discovery by analyzing network flows between services in your Kubernetes cluster using Hubble.

Cilium Provider

Cilium

ClickHouse provider allows you to interact with ClickHouse database.

ClickHouse Provider

ClickHouse

CloudWatch provider enables seamless integration with AWS CloudWatch for alerting and monitoring, directly pushing alarms into Keep.

CloudWatch Provider

CloudWatch

Console provider is sort of a mock provider that projects given alert message to the console.

Console Provider

Console

Coralogix provider allows you to send alerts from Coralogix to Keep using webhooks.

Coralogix Provider

Coralogix

Dash0 provider allows you to get events from Dash0 using webhooks.

Dash0 Provider

Dash0

Databend provider allows you to query databases

Databend Provider

Databend

Datadog provider allows you to query Datadog metrics and logs for monitoring and analytics.

Datadog Provider

Datadog

The DeepSeek Provider enables integration of DeepSeek's language models into Keep.

DeepSeek Provider

Discord provider is a provider that allows to send notifications to Discord

Discord Provider

Discord

Dynatrace provider allows integration with Dynatrace for monitoring, alerting, and collecting metrics.

Dynatrace Provider

Dynatrace

EKS provider integrates with AWS EKS and let you interatct with kubernetes clusters hosted on EKS.

EKS Provider

Elastic provider is a provider used to query Elastic Search (tested with elastic.co)

Elastic Provider

Elastic

GCP Monitoring provider allows you to get alerts and logs from GCP Monitoring via webhooks and log queries.

GCP Monitoring Provider

GCP Monitoring

The Gemini Provider allows for integrating Google's Gemini language models into Keep.

Gemini Provider

GitHub provider allows integration with GitHub for managing repositories, issues, pull requests, and more.

GitHub Provider

GitHub

GithubWorkflowProvider is a provider that interacts with Github Workflows API.

Github Workflows Provider

Github Workflows

GitLab provider is a provider used for creating issues in GitLab

GitLab Provider

GitlabPipelinesProvider is a provider that interacts with GitLab Pipelines API.

Gitlab Pipelines Provider

Gitlab Pipelines

Google Kubernetes Engine provider allows managing Google Kubernetes Engine clusters and related resources.

Google Kubernetes Engine Provider

Google Kubernetes Engine

Google Chat provider is a provider that allows to send messages to Google Chat

Google Chat Provider

Google Chat

Grafana Provider allows either pull/push alerts and pull Topology Map from Grafana to Keep.

Grafana Provider

Grafana Incident Provider alows you to query all incidents from Grafana Incident.

Grafana Incident Provider

Grafana Loki provider allows you to query logs from Grafana Loki.

Grafana Loki Provider

Grafana Loki

Grafana Oncall Provider is a class that allows to ingest data to the Grafana OnCall.

Grafana OnCall Provider

The Graylog provider enables webhook installations for receiving alerts in Keep

Graylog Provider

The Grok Provider allows for integrating X.AI's Grok language models into Keep.

Grok Provider

HTTP Provider is a provider used to query/notify using HTTP requests

HTTP Provider

The ilert provider enables the creation, updating, and resolution of events or incidents on ilert, leveraging both incident management and event notification capabilities for effective incident response.

ilert Provider

The Incident.io provider enables the querying of incidents on Incident.io, leveraging incident management capabilities for effective response.

Incident.io Provider

Incident Manager Provider

Jira On-Prem Provider is a provider used to query data and creating issues in Jira

Jira On-Prem Provider

Jira Cloud provider is a provider used to query data and creating issues in Jira

Jira Cloud Provider

Kafka provider allows integration with Apache Kafka for producing and consuming messages.

Kafka Provider

Kafka

Keep provider allows you to query and manage alerts in Keep.

Keep Provider

Kibana provider allows you get alerts from Kibana Alerting via webhooks.

Kibana Provider

Kibana

Kubernetes provider to perform rollout restart or list pods action.

Kubernetes

Linear Provider is a provider for fetching data and creating issues in Linear app.

Linear Provider

The LinearB provider enables integration with LinearB's API to manage and notify incidents directly through webhooks.

LinearB Provider

LinearB

The Llama.cpp Provider allows for integrating locally running Llama.cpp models into Keep.

Overview

Alerts

Incidents

AIOps

Workflow Automation

Alert Evaluation Engine

Providers

Deployment

Development

Keep API

Keep CLI

Overview

Core Features

Generic Data Source Support

Flexible Alert Evaluation

Customizable Alert Definition

Core Components

Alert States

Alert Rule Components

State Management

Examples

Overview

Alerts

Incidents

AIOps

Workflow Automation

Alert Evaluation Engine

Providers

Deployment

Development

Keep API

Keep CLI

​Core Features

​Generic Data Source Support

​Flexible Alert Evaluation

​Customizable Alert Definition

​Core Components

​Alert States

​Alert Rule Components

​State Management

​Examples

Core Features

Generic Data Source Support

Flexible Alert Evaluation

Customizable Alert Definition

Core Components

Alert States

Alert Rule Components

State Management

Examples