Is it safe to delete alerts using this skill?

Deleting alerts is marked as a high-risk operation because previous configurations may be lost. It is recommended to have a backup of your Splunk configurations before deletion.

How do I filter triggered alerts by importance?

You can use severity levels ranging from 1 (debug) to 6 (fatal) to filter and list triggered alert instances, ensuring you focus on the most critical issues first.

Can I configure custom notification actions like webhooks?

Yes, the skill supports configuring various alert actions including email, webhooks, and the execution of custom scripts when alert conditions are met.

What is the primary function of the Splunk Alert skill?

The skill allows Claude to interface with the Splunk REST API to create, list, and manage alerts, as well as monitor and acknowledge triggered notifications.

Splunk Alert Management

Name: Splunk Alert Management
Author: grandcamel

bygrandcamel

Analytics & Monitoring

Manages Splunk alert life cycles by creating configurations, monitoring triggered events, and handling notification workflows via the REST API.

About

The Splunk Alert skill enables Claude to programmatically interact with Splunk's alerting subsystem, allowing for seamless automation of observability and incident response tasks. It provides a comprehensive interface for defining alert conditions, setting thresholds, and scheduling searches using cron syntax. Beyond creation, the skill allows users to monitor 'fired' alerts in real-time, filter them by severity, and perform administrative actions like acknowledgment or deletion. This is particularly useful for SREs and DevOps teams who need to manage complex monitoring environments and respond to system anomalies directly within their development workflow.

Key Features

Real-time monitoring of triggered alerts with severity filtering
Support for multiple alert types including event counts, host counts, and custom conditions
Automated alert creation with custom search queries and cron schedules
Configurable notification actions including email, webhooks, and scripts
0 GitHub stars
Streamlined alert acknowledgment and status management

Use Cases

Managing complex notification chains for security-related logs and system health checks
Automating incident response by acknowledging and tracking triggered alerts across different Splunk apps
Setting up proactive monitoring for production error rates and high-latency events

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add grandcamel/splunk-assistant-skills splunk-alert

For use in Claude.ai and ChatGPT

Download Skill

GitHub