When alerts come into BigPanda they go through our data pipeline. Understanding the order of the pipeline can help you effectively enrich alerts.
- Normalizer - Alerts get formatted into a BigPanda event
- Enrichment mapping - The alert gets enriched according to mapping uploaded by the user.
- Maintenance - Alerts that match any maintenance query get marked for maintenance.
- Custom tags (Extraction) - Relevant custom extraction tag logic is executed and applied.
- Custom tags (Composition) - Relevant custom composition tag logic is executed and applied.