Status of the elastalert project #2911
Comments
|
Hi, sorry about the inactivity in this project, we are not currently doing any active development on it. All of the branches, including I do plan on doing a final round of bug fixes and cleanup before we officially end support, probably sometime this year. |
|
Hello and thank you for the clarification. What would you recommend as a viable actively maintained alternative to Elastalert? |
|
@Qmando thank you for the clarification and your quick answer. Is there any other tool you can recommend with similar features? Or would you just go with the features the ELK stack now has to offer (e.g. machine learning, alerts etc).? |
|
The following are notifications for alerts based on Elasticsearch data. Watcher https://www.elastic.co/guide/en/kibana/7.8/watcher-ui.html Alerting and action settings in Kibana Alerts and Actions Open Distro for Elasticsearch Grafana Perform alerting on data in Elasticsearch with Grafana |
|
The following items are maintained. ElastAlert Server johnsusek/elastalert-server Praeco ElastAlert WebUI johnsusek/praeco ElastAlert Kibana Plugin nsano-rururu/elastalert-kibana-plugin |
|
Dear Naoyuki, Thank you for your response. Regarding notification alternatives to ElastAlert, the Watcher UI requires a Gold or above licence https://www.elastic.co/subscriptions, as do Action type = email when using Kibana UI Alerts. In conclusion, it seems one can not stay away from paying a licence if trying to use a pure ELK notification infrastructure. For our needs, ElastAlert is a perfect match. I will try to contribute. In particular, I would like to have a set-comparison type Rule available, to verify for example a set of defined services are all up and running within some set timeframe. Basically the Rule would compare if the contents of sorted service array A is equal to the contents of Elasticsearch index query result (distinct/unique) attribute X sorted array B. |
|
Is there an option to take over the maintenance of this repository to another person? |
|
We do plan on doing that. I can't tell you exactly when. |
|
Thank you for your answer |
|
"Packages on Ubuntu 14.x: python-pip python-dev libffi-dev libssl-dev" seems to be old information and needs to be corrected. |
|
Main repositories maintained independently
|
|
If support ends, I think it's okay to end. |
jertel/elastalert https://hub.docker.com/r/jertel/elastalert-docker
|
|
Is @jertel has the most complete and updated fork ? |
|
I haven't checked all Elast Alert forks so I'm not sure if it's the most complete and updated fork. |
|
People can follow on this discussion here to pitch in their opinions about an official fork and the process of it: jertel#77 |
Hi all. I wanted to ask if anyone can give an insight in the status if this (very useful) project. I see that there are more than 1k issues reported, and over hundred pull requests, but it seems the issues get not triaged that much and pull requests don't get integrated or are not ready/compatible anymore. Is Yelp still supporting this project?
Anybody knows anything about the "beta" branch which includes some features like multi threading (it has not seen changes since last August)?
Or is anybody aware of a fork which is more active than the original repo?
The text was updated successfully, but these errors were encountered: