Skip to main content
Skip table of contents

Link to Related Event Incident

LAST UPDATED: AUG 19, 2024

This command uses the search condition to find events from MongoDB and retrieves related incidents from the $LinkedIncidents field, then escalates ingested events to the related incidents.

READER NOTE

Please note that this command can only be executed within an event playbook's "On Event Ingestion" trigger.

Implementation

System

Command Category

System Utility

Tags

EVENT EVENT LINKING

Inputs

Parameter Name

Required/Optional

Description

Sample Data

Search Conditions

Required

To find the related event using the search conditions in the JSON object, use the internal field name as the key name. The value query corresponding to the key supports regular expressions, string, number, { "$in": ["value1", "value2"] }, and, date:"$date": "2023-08-01T00:00:00Z" format.

CODE 
{
    "EventType": "test20230225",
    "Severity": "High",
    "IngestedUtcTime": {
        "$gt": {
            "$date": "2023-08-25T00:00:00Z"
        },
        "$lt": {
            "$date": "2023-09-01T00:00:00Z"
        }
    },
    "SystemStatus": {
        "$in": [
            "Escalated",
            "Open"
        ]
    },
    "SystemSeverityId": 4,
    "DataSource": {
        "$regex": "^Test"
    }
}

Output

Return Data

The returned result of this command. If some required parameters are not defined, this returned data could be empty. The returned result can be passed down directly to a subsequent command in playbooks.

SAMPLE DATA

JSON 
{
    "EscalateToIncidents": [
        "20230414-72"
    ]
}
JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close