Skip to content
forked from keephq/keep

The open-source alert management and AIOps platform

License

Notifications You must be signed in to change notification settings

secureonelabs/keep

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

The open-source alert management and AIOps platform


Single pane of glass, alert deduplication, enrichment, filtering and correlation, bi-directional integrations, workflows, dashboards.

Docs · Try it out · Report Bug · Book a Demo · Website

Sneak preview screenshot

  • 🔍 Single pane of glass - Best-in-class customizable UI for all your alerts and incidents
  • 🛠️ Swiss Army Knife for alerts - Deduplication, correlation, filtering and enrichment
  • 🔄 Deep integrations - Bi-directional syncs with monitoring tools, customizable workflows
  • Automation - GitHub Actions for your monitoring tools
  • 🤖 AIOps 2.0 - AI-powered correlation and summarization

See full platform documentation.


Supported Integrations

View the full list in our documentation

Missing a provider? Submit a new provider request and we'll add it quickly!

Observability Tools

AppDynamics
AppDynamics
Axiom
Axiom
Azure Monitoring
Azure Monitoring
Centreon
Centreon
Checkmk
Checkmk
Cilium
Cilium
CloudWatch
CloudWatch
Coralogix
Coralogix
Datadog
Datadog
Dynatrace
Dynatrace
Elastic
Elastic
GCP Monitoring
GCP Monitoring
Grafana
Grafana
Graylog
Graylog
Kibana
Kibana
Netdata
Netdata
New Relic
New Relic
OpenObserve
OpenObserve
Parseable
Parseable
Pingdom
Pingdom
Prometheus
Prometheus
Rollbar
Rollbar
Sentry
Sentry
SignalFX
SignalFX
Site24x7
Site24x7
Splunk
Splunk
StatusCake
StatusCake
SumoLogic
SumoLogic
UptimeKuma
UptimeKuma
VictoriaMetrics
VictoriaMetrics
Zabbix
Zabbix

Databases & Data Warehouses

BigQuery
BigQuery
ClickHouse
ClickHouse
MongoDB
MongoDB
MySQL
MySQL
PostgreSQL
PostgreSQL
Snowflake
Snowflake

Communication Platforms

Discord
Discord
Google Chat
Google Chat
Mailchimp
Mailchimp
Mailgun
Mailgun
Mattermost
Mattermost
Ntfy.sh
Ntfy.sh
Pushover
Pushover
Resend
Resend
SendGrid
SendGrid
Slack
Slack
SMTP
SMTP
Teams
Teams
Telegram
Telegram
Twilio
Twilio

Incident Management

Grafana Incident
Grafana Incident
Grafana OnCall
Grafana OnCall
Ilert
Ilert
Incident.io
Incident.io
AWS Incident Manager
AWS Incident Manager
OpsGenie
OpsGenie
PagerDuty
PagerDuty
Pagertree
Pagertree
SINGL4
SINGL4
Squadcast
Squadcast
Zenduty
Zenduty

Ticketing Tools

GitHub
GitHub
GitLab
GitLab
Jira
Jira
Linear
Linear
LinearB
LinearB
Microsoft Planner
Microsoft Planner
Redmine
Redmine
ServiceNow
ServiceNow
Trello
Trello

Container Orchecstration Platforms

Azure AKS
Azure AKS
GKE
GKE
Kubernetes
Kubernetes
OpenShift
OpenShift

Data Enrichment

Bash
Bash
OpenAI
OpenAI
Python
Python
QuickChart
QuickChart
SSH
SSH
Webhook
Webhook

Workflows

Keep is GitHub Actions for your monitoring tools.

A Keep Workflow is a declarative YAML file that automates your alert and incident management. Each workflow consists of:

  • Triggers - What starts the workflow (alerts, incidents, schedule or manual)
  • Steps - Read or fetch data (enrichment, context)
  • Actions - Execute operations (update tickets, send notifications, restart servers)

Here's a simple workflow that creates a Jira ticket for every critical alert from sentry for payments and api services.

For more workflows, see here.

workflow:
  id: sentry-alerts
  description: create ticket alerts for critical alerts from sentry
  triggers:
    - type: alert
      # customize the filter to run only on critical alert from sentry
      filters:
        - key: source
          value: sentry
        - key: severity
          value: critical
        # regex to match specific services
        - key: service
          value: r"(payments|ftp)"
  actions:
    - name: send-slack-message-team-payments
      # if the alert is on the payments service, slack the payments team
      if: "'{{ alert.service }}' == 'payments'"
      provider:
        type: slack
        # control which Slack configuration you want to use
        config: " {{ providers.team-payments-slack }} "
        # customize the alert message with context from {{ alert }} or any other {{ step }}
        with:
          message: |
            "A new alert from Sentry: Alert: {{ alert.name }} - {{ alert.description }}
            {{ alert}}"
    - name: create-jira-ticket-oncall-board
      # control the workflow flow with "if" and "foreach" statements
      if: "'{{ alert.service }}' == 'ftp' and not '{{ alert.ticket_id }}'"
      provider:
        type: jira
        config: " {{ providers.jira }} "
        with:
          board_name: "Oncall Board"
          custom_fields:
            customfield_10201: "Critical"
          issuetype: "Task"
          # customize the summary
          summary: "{{ alert.name }} - {{ alert.description }} (created by Keep)"
          description: |
            "This ticket was created by Keep.
            Please check the alert details below:
            {code:json} {{ alert }} {code}"
          # enrich the alerts with more context. from now on, the alert will be assigned with the ticket id, type and url
          enrich_alert:
            - key: ticket_type
              value: jira
            - key: ticket_id
              value: results.issue.key
            - key: ticket_url
              value: results.ticket_url

Enterprise Ready

  • Developer First - Modern REST APIs, native SDKs, and comprehensive documentation for seamless integration
  • Enterprise Security - Full authentication support (SSO, SAML, OIDC, LDAP) with granular access control (RBAC, ABAC) and team management
  • Flexible Deployment - Deploy on-premises or in air-gapped environments with cloud-agnostic architecture
  • Production Scale - High availability, performance-tested infrastructure supporting horizontal scaling for enterprise workloads

Getting Started

Need help? Can't find your environment listed? Reach out on Slack and we'll help you quickly.

Keep can run in various environments and configurations. The easiest way to start is with Keep's Docker Compose.

🫵 Keepers

Top Contributors

A special thanks to our top contributors who help us make Keep great. You are more than awesome!

Want to become a top contributor? Join our Slack and DM Tal, Shahar, or Furkan.

Contributors

Thank you for contributing and continuously making Keep better, you're awesome 🫶

About

The open-source alert management and AIOps platform

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 57.8%
  • TypeScript 41.3%
  • JavaScript 0.3%
  • CSS 0.3%
  • Shell 0.2%
  • SCSS 0.1%