Keep

Platform

Handling High-Severity Sentry Alerts

Keep is an open-source alert management and AIOps platform that is a swiss-knife for alerting, automation, and noise reduction.

Introduction

Dive into Keep's [sandbox environment](https://playground.keephq.dev) to experience the full range of its AIOps capabilities.

Playground

Use Cases

Glossary

Common Expression Language (CEL)

Fingerprints are unique identifiers associated with alert instances in Keep. Every provider declares the fields fingerprints are calculated upon

Fingerprints

Alerts Severity and Status

Push vs Pull alerts

Comparison

Overview

Alert Table

Action Menu

Alert Sidebar

Customized Presets

Correlation

Deduplication

Extraction

Mapping

Service Topology

Maintenance Windows

Workflows

Triggers

Steps and Actions

Conditions

Functions

Context

Providers

Foreach

Enrichment

Suppressing Alerts Automatically

Executing Actions During Business Hours

Creating ServiceNow Tickets for Alerts

Update ServiceNow Tickets

A Provider is a component of Keep that enables it to interact with third-party products. It is implemented as extensible Python code, making it easy to enhance and customize.

Adding a New Provider

Adding a new Provider

Azure AKS provider to view kubernetes resources.

Azure AKS

AppDynamics provider allows you to get AppDynamics `alerts/actions` via webhook installation

AppDynamics Provider

AppDynamics

Auth0 provider allows interaction with Auth0 APIs for authentication and user management.

Auth0 Provider

Auth0

Axiom Provider is a class that allows to ingest/digest data from Axiom.

Axiom Provider

Azure Monitorg provider allows you to get alerts from Azure Monitor via webhooks.

Azure Monitor Provider

Azure Monitor

Bash provider allows executing Bash commands in a workflow, with a limitation for cloud execution.

Bash Provider

Bash

BigQuery provider allows interaction with Google BigQuery for querying and managing datasets.

BigQuery Provider

BigQuery

Centreon allows you to monitor your infrastructure with ease.

Centreon Provider

Centreon

Checkmk provider allows you to get alerts from Checkmk via webhooks.

Checkmk Provider

Checkmk

Cilium provider enables topology discovery by analyzing network flows between services in your Kubernetes cluster using Hubble.

Cilium Provider

Cilium

ClickHouse provider allows you to interact with ClickHouse database.

ClickHouse Provider

ClickHouse

CloudWatch provider enables seamless integration with AWS CloudWatch for alerting and monitoring, directly pushing alarms into Keep.

CloudWatch Provider

CloudWatch

Console provider is sort of a mock provider that projects given alert message to the console.

Console Provider

Console

Coralogix provider allows you to send alerts from Coralogix to Keep using webhooks.

Coralogix Provider

Coralogix

Datadog provider allows you to query Datadog metrics and logs for monitoring and analytics.

Datadog Provider

Datadog

Discord provider is a provider that allows to send notifications to Discord

Discord Provider

Discord

Dynatrace provider allows integration with Dynatrace for monitoring, alerting, and collecting metrics.

Dynatrace Provider

Dynatrace

Elastic provider is a provider used to query Elastic Search (tested with elastic.co)

Elastic Provider

Elastic

GCP Monitoring provider allows you to get alerts and logs from GCP Monitoring via webhooks and log queries.

GCP Monitoring Provider

GCP Monitoring

GitHub provider allows integration with GitHub for managing repositories, issues, pull requests, and more.

GitHub Provider

GitHub

GithubWorkflowProvider is a provider that interacts with Github Workflows API.

Github Workflows Provider

Github Workflows

GitLab provider is a provider used for creating issues in GitLab

GitLab Provider

GitlabPipelinesProvider is a provider that interacts with GitLab Pipelines API.

Gitlab Pipelines Provider

Gitlab Pipelines

Google Kubernetes Engine provider allows managing Google Kubernetes Engine clusters and related resources.

Google Kubernetes Engine Provider

Google Kubernetes Engine

Google Chat provider is a provider that allows to send messages to Google Chat

Google Chat Provider

Google Chat

Grafana Provider allows either pull/push alerts from Grafana to Keep.

Grafana Provider

Grafana Incident Provider alows you to query all incidents from Grafana Incident.

Grafana Incident Provider

Grafana Oncall Provider is a class that allows to ingest data to the Grafana OnCall.

Grafana OnCall Provider

The Graylog provider enables webhook installations for receiving alerts in Keep

Graylog Provider

HTTP Provider is a provider used to query/notify using HTTP requests

HTTP Provider

The ilert provider enables the creation, updating, and resolution of events or incidents on ilert, leveraging both incident management and event notification capabilities for effective incident response.

ilert Provider

The Incident.io provider enables the querying of incidents on Incident.io, leveraging incident management capabilities for effective response.

Incident.io Provider

Incident Manager Provider

Jira On-Prem Provider is a provider used to query data and creating issues in Jira

Jira On-Prem Provider

Jira Cloud provider is a provider used to query data and creating issues in Jira

Jira Cloud Provider

Kafka provider allows integration with Apache Kafka for producing and consuming messages.

Kafka Provider

Kafka

Keep provider allows you to query and manage alerts in Keep.

Keep Provider

Kibana provider allows you get alerts from Kibana Alerting via webhooks.

Kibana Provider

Kibana

Kubernetes provider to perform rollout restart or list pods action.

Kubernetes

Linear Provider is a provider for fetching data and creating issues in Linear app.

Linear Provider

The LinearB provider enables integration with LinearB's API to manage and notify incidents directly through webhooks.

LinearB Provider

LinearB

Mailchimp Provider

Mailchimp

Mailgun Provider allows sending alerts to Keep via email.

Mailgun Provider

Mattermost provider is used to send messages to Mattermost.

Mattermost Provider

Microsoft Planner Provider for creating tasks in Planner.

Microsoft Planner Provider

Template Provider is a template for newly added provider's documentation

Mock Provider

Mock

MongoDB Provider is a provider used to query MongoDB databases

MongoDB Provider

MongoDB

MySQL Provider is a provider used to query MySQL databases

MySQL Provider

MySQL

Netdata provider allows you to get alerts from Netdata via webhooks.

Netdata Provider

Netdata

New Relic Provider enables querying AI alerts and registering webhooks.

New Relic Provider

New Relic

Ntfy.sh allows you to send notifications to your devices

Ntfy.sh Provider

Ntfy.sh

The OpenAI Provider allows for integrating OpenAI's language models into Keep.

OpenAI Provider

OpenObserve provider allows you to get OpenObserve `alerts/actions` via webhook installation

OpenObserve Provider

OpenObserve

Openshift provider to perform rollout restart action on specific resources.

Openshift

OpsGenie Provider is a provider that allows to create alerts in OpsGenie.

Opsgenie Provider

Pagerduty Provider allows integration with PagerDuty to create, manage, and synchronize incidents and alerts within Keep.

Pagerduty Provider

The Pagertree Provider facilitates interactions with the Pagertree API, allowing the retrieval and management of alerts.

Pagertree Provider

Parseable provider allows integration with Parseable, a tool for collecting and querying logs.

Parseable Provider

Parseable

Pingdom provider allows you to pull alerts from Pingdom or install Keep as webhook.

Pingdom Provider

Pingdom

Microsoft Planner Provider to create task in planner.

PostgreSQL Provider is a provider used to query POSTGRES databases

PostgreSQL Provider

PostgreSQL

Prometheus provider allows integration with Prometheus for monitoring and alerting purposes.

Overview

Alerts

Incidents

AIOps

Workflow Automation

Providers

Deployment

Development

Keep API

Keep CLI

Handling High-Severity Sentry Alerts