When to Use

Setup Instructions

Example configuration

DB Authentication

Keep

Keep is an open-source alert management and AIOps platform that is a swiss-knife for alerting, automation, and noise reduction.

Introduction

Dive into Keep's [sandbox environment](https://playground.keephq.dev) to experience the full range of its AIOps capabilities.

Playground

Use Cases

Glossary

Common Expression Language (CEL)

Fingerprints are unique identifiers associated with alert instances in Keep. Every provider declares the fields fingerprints are calculated upon

Fingerprints

Alerts Severity and Status

Push vs Pull alerts

Comparison

Support

AI Incident Assistant

AI Workflow Builder Assistant

AI Semi Automatic Correlation

AI in Workflows

AI Correlation

Manual Correlation Rules

Topology Correlation

Deduplication

Extraction

Mapping

Maintenance Windows

Service Topology

Workflows

Overview

Alert Table

Action Menu

Alert Sidebar

Customized Presets

Sound Notifications

Triggers

Permissions

Steps and Actions

Conditions

Functions

Context

Providers

Foreach

Enrichment

Suppressing Alerts Automatically

Executing Actions During Business Hours

Creating ServiceNow Tickets for Alerts

Handling High-Severity Sentry Alerts

Update ServiceNow Tickets

VictoriaMetrics Single Alert Example

VictoriaMetrics Multi Alert Example

A Provider is a component of Keep that enables it to interact with third-party products. It is implemented as extensible Python code, making it easy to enhance and customize.

Understanding linked vs connected providers in Keep

Linked Providers

The Airflow provider integration allows you to send alerts (e.g. DAG failures) from Airflow to Keep via webhooks.

Airflow Provider

Airflow

Azure AKS provider to view kubernetes resources.

Azure AKS

The AmazonSQS provider enables you to pull & push alerts to the Amazon SQS Queue.

AmazonSQS Provider

The Anthropic Provider allows for integrating Anthropic's Claude language models into Keep.

Anthropic Provider

AppDynamics provider allows you to get AppDynamics `alerts/actions` via webhook installation

AppDynamics Provider

AppDynamics

Asana Provider allows you to create and update tasks in Asana

Asana Provider

Asana

AWS S3 Provider

AWS S3

The ArgoCD provider enables you to pull topology and Application data.

ArgoCD Provider

Auth0 provider allows interaction with Auth0 APIs for authentication and user management.

Auth0 Provider

Auth0

Axiom Provider is a class that allows to ingest/digest data from Axiom.

Axiom Provider

Azure Monitorg provider allows you to get alerts from Azure Monitor via webhooks.

Azure Monitor Provider

Azure Monitor

Bash provider allows executing Bash commands in a workflow, with a limitation for cloud execution.

Bash Provider

Bash

BigQuery provider allows interaction with Google BigQuery for querying and managing datasets.

BigQuery Provider

BigQuery

Centreon allows you to monitor your infrastructure with ease.

Centreon Provider

Centreon

Checkmk provider allows you to get alerts from Checkmk via webhooks.

Checkmk Provider

Checkmk

Checkly allows you to receive alerts from Checkly using API endpoints as well as webhooks

Checkly Provider

Checkly

Cilium provider enables topology discovery by analyzing network flows between services in your Kubernetes cluster using Hubble.

Cilium Provider

Cilium

ClickHouse provider allows you to interact with ClickHouse database.

ClickHouse Provider

ClickHouse

CloudWatch provider enables seamless integration with AWS CloudWatch for alerting and monitoring, directly pushing alarms into Keep.

CloudWatch Provider

CloudWatch

Console provider is sort of a mock provider that projects given alert message to the console.

Console Provider

Console

Coralogix provider allows you to send alerts from Coralogix to Keep using webhooks.

Coralogix Provider

Coralogix

Dash0 provider allows you to get events from Dash0 using webhooks.

Dash0 Provider

Dash0

Databend provider allows you to query databases

Databend Provider

Databend

Datadog provider allows you to query Datadog metrics and logs for monitoring and analytics.

Datadog Provider

Datadog

The DeepSeek Provider enables integration of DeepSeek's language models into Keep.

DeepSeek Provider

Discord provider is a provider that allows to send notifications to Discord

Discord Provider

Discord

Dynatrace provider allows integration with Dynatrace for monitoring, alerting, and collecting metrics.

Dynatrace Provider

Dynatrace

EKS provider integrates with AWS EKS and let you interatct with kubernetes clusters hosted on EKS.

EKS Provider

Elastic provider is a provider used to query Elasticsearch (tested with elastic.co)

Elastic Provider

Elastic

Flashduty Provider

Flashduty

Flux CD Provider enables integration with Flux CD for GitOps topology and alerts.

Flux CD Provider

Flux CD

GCP Monitoring provider allows you to get alerts and logs from GCP Monitoring via webhooks and log queries.

GCP Monitoring Provider

GCP Monitoring

The Gemini Provider allows for integrating Google's Gemini language models into Keep.

Gemini Provider

GitHub provider allows integration with GitHub for managing repositories, issues, pull requests, and more.

GitHub Provider

GitHub

GithubWorkflowProvider is a provider that interacts with Github Workflows API.

Github Workflows Provider

Github Workflows

GitLab provider is a provider used for creating issues in GitLab

GitLab Provider

GitlabPipelinesProvider is a provider that interacts with GitLab Pipelines API.

Gitlab Pipelines Provider

Gitlab Pipelines

Google Kubernetes Engine provider allows managing Google Kubernetes Engine clusters and related resources.

Google Kubernetes Engine Provider

Google Kubernetes Engine

Google Chat provider is a provider that allows to send messages to Google Chat

Google Chat Provider

Google Chat

Grafana Provider allows either pull/push alerts and pull Topology Map from Grafana to Keep.

Grafana Provider

Grafana Incident Provider alows you to query all incidents from Grafana Incident.

Grafana Incident Provider

Grafana Loki provider allows you to query logs from Grafana Loki.

Grafana Loki Provider

Grafana Loki

Grafana Oncall Provider is a class that allows to ingest data to the Grafana OnCall.

Grafana OnCall Provider

The Graylog provider enables webhook installations for receiving alerts in Keep

Graylog Provider

The Grok Provider allows for integrating X.AI's Grok language models into Keep.

Grok Provider

HTTP Provider is a provider used to query/notify using HTTP requests

HTTP Provider

Icinga2 Provider Allows Reception of Push Alerts from Icinga2 to Keep.

Icinga2

Icinga2 Provider

The ilert provider enables the creation, updating, and resolution of events or incidents on ilert, leveraging both incident management and event notification capabilities for effective incident response.

ilert Provider

The Incident.io provider enables the querying of incidents on Incident.io, leveraging incident management capabilities for effective response.

Incident.io Provider

Incident Manager Provider

Jira On-Prem Provider is a provider used to query data and creating issues in Jira

Jira On-Prem Provider

Jira Cloud provider is a provider used to query data and creating issues in Jira

Jira Cloud Provider

Kafka provider allows integration with Apache Kafka for producing and consuming messages.

Kafka Provider

Kafka

Keep provider allows you to query and manage alerts in Keep.

Keep Provider

Kibana provider allows you get alerts from Kibana Alerting via webhooks.

Kibana Provider

Kibana

Kubernetes provider to perform rollout restart or list pods action.

Kubernetes

LibreNMS allows you to receive alerts from LibreNMS using API endpoints as well as webhooks

Environment Variable	Description	Required	Frontend/Backend	Default Value
AUTH_TYPE	Set to ‘DB’ for database authentication	Yes	Both	-
KEEP_JWT_SECRET	Secret for JWT token generation	Yes	Backend	-
KEEP_DEFAULT_USERNAME	Default admin username	No	Backend	keep
KEEP_DEFAULT_PASSWORD	Default admin password	No	Backend	keep
KEEP_FORCE_RESET_DEFAULT_PASSWORD	Override the current admin password	No	Backend	false

Overview

AIOps

Alerts

Incidents

Workflow Automation

Alert Evaluation Engine

Providers

Deployment

Development

Keep CLI

DB Authentication

When to Use

Setup Instructions

Example configuration

Overview

AIOps

Alerts

Incidents

Workflow Automation

Alert Evaluation Engine

Providers

Deployment

Development

Keep CLI

​When to Use

​Setup Instructions

​Example configuration

When to Use

Setup Instructions

Example configuration