Struct usiem::components::alert::SiemAlert [−][src]
pub struct SiemAlert {
pub title: String,
pub description: String,
pub severity: AlertSeverity,
pub date: i64,
pub tags: Vec<String>,
pub rule: String,
pub log: SiemLog,
pub aggr_limit: i64,
pub aggr_key: String,
}
Expand description
Basic Alert format
Fields
title: String
description: String
severity: AlertSeverity
Severity of the alert
date: i64
When the alert was generated
List of tags to be added to the alert
rule: String
Name of the rule that generated the alert
log: SiemLog
The log that triggered this alert
aggr_limit: i64
Time at witch the Alert system must create a new case
aggr_key: String
Key to be used in the aggregation of alerts as to join multiple alerts into one
Trait Implementations
Auto Trait Implementations
impl RefUnwindSafe for SiemAlert
impl UnwindSafe for SiemAlert
Blanket Implementations
Mutably borrows from an owned value. Read more