[8.18] Use msearch to fetch the alerts for maintenance windows with scoped query (#221702) by ersin-erdal · Pull Request #222490 · elastic/kibana

ersin-erdal · 2025-06-03T23:45:29Z

Backport

This will backport the following commits from main to 8.18:

Use msearch to fetch the alerts for maintenance windows with scoped query (#221702)

Questions ?

Please refer to the Backport tool documentation

…uery (elastic#221702) Currently we use a search with a `top_hits` aggregation to get the alerts filtered with the scoped queries of the active maintenance windows. But since `top_hits` aggregation has a fixed limit of 100 hits we cannot use our max alerts limit to get all the alerts an execution can generate. This PR replaces `search` with `msearch` and removes the aggregation from the search query so we can use the maxAlerts limit for the response size. (cherry picked from commit 1343bfe) # Conflicts: # x-pack/platform/plugins/shared/alerting/server/alerts_client/alerts_client.test.ts # x-pack/platform/plugins/shared/alerting/server/alerts_client/alerts_client.ts # x-pack/platform/plugins/shared/alerting/server/alerts_client/lib/get_summarized_alerts_query.ts

elasticmachine · 2025-06-04T07:33:26Z

⏳ Build in-progress, with failures

Buildkite Build
Commit: 90c8d9e

Failed CI Steps

Test Failures

[job] [logs] FTR Configs #67 / Alerting builtin alertTypes circuit_breakers index threshold rule that hits max alerts circuit breaker persist existing alerts to next execution if circuit breaker is hit
[job] [logs] FTR Configs #67 / Alerting builtin alertTypes circuit_breakers index threshold rule that hits max alerts circuit breaker persist existing alerts to next execution if circuit breaker is hit

History

💔 Build #304975 failed e1fe5d0
💔 Build #304953 failed f19846a

ersin-erdal added the backport This PR is a backport of another PR label Jun 3, 2025

ersin-erdal requested a review from kibanamachine as a code owner June 3, 2025 23:45

ersin-erdal enabled auto-merge (squash) June 3, 2025 23:45

ersin-erdal mentioned this pull request Jun 3, 2025

Use msearch to fetch the alerts for maintenance windows with scoped query #221702

Merged

ersin-erdal added 2 commits June 4, 2025 02:26

fix type check

e1fe5d0

fix functional test

90c8d9e

Merge branch '8.18' into backport/8.18/pr-221702

84936dc

doakalexi approved these changes Jun 4, 2025

View reviewed changes

ersin-erdal merged commit b1433b8 into elastic:8.18 Jun 4, 2025
8 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[8.18] Use msearch to fetch the alerts for maintenance windows with scoped query (#221702)#222490

[8.18] Use msearch to fetch the alerts for maintenance windows with scoped query (#221702)#222490
ersin-erdal merged 4 commits intoelastic:8.18from
ersin-erdal:backport/8.18/pr-221702

ersin-erdal commented Jun 3, 2025

elasticmachine commented Jun 4, 2025

Uh oh!

Labels

4 participants

Conversation