Investigations help you track and document incidents or issues in your infrastructure. Each investigation includes a title, description (in markdown), priority level, tags, and timestamps. Investigations are used by the guardian agent to look for recurring issues and to surface new issues.

Creating an Investigation

  1. Navigate to the Investigations page from the main navigation
  2. Click the Create Investigation button
  3. Fill in the required fields:
    • Title: A descriptive name for the investigation
    • Priority: Select from P1 (Critical) to P5 (Info)
    • Description: Add details in markdown format

Investigation Features

Priority Levels

  • P1 - Critical: Red indicator, urgent issues
  • P2 - High: Orange indicator, high priority
  • P3 - Medium: Yellow indicator, medium priority
  • P4 - Low: Blue indicator, low priority
  • P5 - Info: Gray indicator, informational

Status

Investigations can be:

  • Open: Active investigation
  • Resolved: Issue has been resolved
  • In Progress: Currently being worked on

Tags

Add custom key-value tags to categorize investigations:

  • priority: Automatically set based on selection
  • assignee: Assign to team members
  • Custom tags for your organization

Comments

Team members can add comments to investigations for collaboration and updates.

AI Integration

If an investigation was created from a Guardian AI chat session, it will include a link to the AI analysis via the chatHistoryUuid.

Managing Investigations

  • Edit: Click the edit icon to modify title, description, or tags
  • Resolve: Mark investigations as resolved when complete
  • Delete: Remove investigations (with confirmation)
  • Filter: Use the table filters to find specific investigations by status, priority, or assignee