Adds new page about triaging alerts with AI Assistant #4359
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
benironside
added
Feature: Elastic AI Assistant
|
Documentation previews: |
dhru42
previously requested changes
Dec 8, 2023
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
Co-authored-by: Nastasha Solomon <[email protected]>
benironside
dismissed
dhru42’s stale review
Communicated with Dhru and incorporated his feedback 👍
|
|
||
| When you view an alert in {elastic-sec}, details such as related documents, hosts, and users appear alongside a synopsis of the events that triggered the alert. This data provides a starting point for understanding a potential threat. AI Assistant can answer questions about this data and offer insights and actionable recommendations to remediate the issue. | ||
|
|
||
| To enable AI Assistant to answer questions about alerts, you need to provide alert data as context for your prompts. You can either provide multiple alerts using the <<configure-ai-assistant, knowledge base>> feature, or provide individual alerts directly. |
There was a problem hiding this comment.
nit: is it possible for the knowledge base links to jump to a KB-specific anchor? (I'm wondering if it's a quirk of the docs preview)
There was a problem hiding this comment.
Yes 100%. I am planning to do this but I have to merge the updates to the AI Assistant page before I can link to that section.
andrew-goldstein
previously approved these changes
Dec 21, 2023
There was a problem hiding this comment.
Thanks @benironside for this new page about triaging alerts with the assistant! 🙏
💹 Desk tested via the preview
LGTM 🚀
Co-authored-by: natasha-moore-elastic <[email protected]>
Co-authored-by: natasha-moore-elastic <[email protected]>
benironside
commented
Jan 3, 2024
benironside
commented
Jan 3, 2024
natasha-moore-elastic
approved these changes
Jan 4, 2024
mergify bot
pushed a commit
that referenced
this pull request
Jan 4, 2024
* Adds new page about triaging alerts with AI Assistant * troubleshoots ToC * troubleshoots build error * updates section title * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Incorporates rest of Nastasha's feedback * save work * updates triage page with RAG for alerts info * fixes anchor tag * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc * Update docs/assistant/ai-alert-triage.asciidoc --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: natasha-moore-elastic <[email protected]> (cherry picked from commit b930aa6)
mergify bot
pushed a commit
that referenced
this pull request
Jan 4, 2024
* Adds new page about triaging alerts with AI Assistant * troubleshoots ToC * troubleshoots build error * updates section title * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Incorporates rest of Nastasha's feedback * save work * updates triage page with RAG for alerts info * fixes anchor tag * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc * Update docs/assistant/ai-alert-triage.asciidoc --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: natasha-moore-elastic <[email protected]> (cherry picked from commit b930aa6)
benironside
added a commit
that referenced
this pull request
Jan 4, 2024
* Adds new page about triaging alerts with AI Assistant * troubleshoots ToC * troubleshoots build error * updates section title * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Incorporates rest of Nastasha's feedback * save work * updates triage page with RAG for alerts info * fixes anchor tag * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc * Update docs/assistant/ai-alert-triage.asciidoc --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: natasha-moore-elastic <[email protected]> (cherry picked from commit b930aa6) Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
benironside
added a commit
that referenced
this pull request
Jan 9, 2024
…#4359) (#4565) * Adds new page about triaging alerts with AI Assistant (#4359) * Adds new page about triaging alerts with AI Assistant * troubleshoots ToC * troubleshoots build error * updates section title * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: Nastasha Solomon <[email protected]> * Incorporates rest of Nastasha's feedback * save work * updates triage page with RAG for alerts info * fixes anchor tag * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc Co-authored-by: natasha-moore-elastic <[email protected]> * Update docs/assistant/ai-alert-triage.asciidoc * Update docs/assistant/ai-alert-triage.asciidoc --------- Co-authored-by: Nastasha Solomon <[email protected]> Co-authored-by: natasha-moore-elastic <[email protected]> (cherry picked from commit b930aa6) * removes part from 8.11 that doesn't apply until 8.12 * fix merge conflict --------- Co-authored-by: Benjamin Ironside Goldstein <[email protected]> Co-authored-by: Benjamin Ironside Goldstein <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #4358 by adding a new page that explains how AI Assistant can help triage alerts. RAG for Alerts changes are limited to the new first section "Use AI Assistant to Triage multiple alerts"
Preview: Triage alerts with Elastic AI Assistant