{"id":18456235,"url":"https://github.com/khezen/docker-elastalert","last_synced_at":"2025-04-08T04:34:31.603Z","repository":{"id":90299162,"uuid":"75066995","full_name":"khezen/docker-elastalert","owner":"khezen","description":"Yelp/elastalert docker image","archived":false,"fork":false,"pushed_at":"2017-03-02T17:56:20.000Z","size":11,"stargazers_count":7,"open_issues_count":2,"forks_count":4,"subscribers_count":1,"default_branch":"master","last_synced_at":"2025-03-23T06:31:30.487Z","etag":null,"topics":["docker","docker-elastalert","elastalert","elasticsearch","search-guard"],"latest_commit_sha":null,"homepage":null,"language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/khezen.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2016-11-29T09:49:53.000Z","updated_at":"2022-05-11T02:41:12.000Z","dependencies_parsed_at":null,"dependency_job_id":"290b6083-6312-4937-8722-04c7163c165f","html_url":"https://github.com/khezen/docker-elastalert","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khezen%2Fdocker-elastalert","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khezen%2Fdocker-elastalert/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khezen%2Fdocker-elastalert/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/khezen%2Fdocker-elastalert/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/khezen","download_url":"https://codeload.github.com/khezen/docker-elastalert/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247779796,"owners_count":20994569,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["docker","docker-elastalert","elastalert","elasticsearch","search-guard"],"created_at":"2024-11-06T08:10:56.742Z","updated_at":"2025-04-08T04:34:31.597Z","avatar_url":"https://github.com/khezen.png","language":"Shell","funding_links":[],"categories":[],"sub_categories":[],"readme":"[![](https://images.microbadger.com/badges/image/khezen/elastalert.svg)](https://hub.docker.com/r/khezen/elastalert/)\n\n# Supported tags and respective `Dockerfile` links\n\n* `latest` [(Dockerfile)](https://github.com/Khezen/docker-elastalert/Dockerfile)\n\n# What is Elastalert?\n[ElastAlert](https://github.com/Yelp/elastalert) is a simple framework for alerting on anomalies, spikes, or other patterns of interest from data in Elasticsearch.\n\n\n# How To Use\n\n## docker engine\n\n```\ndocker run -d khezen/elastalert:latest   \n```\n\n## docker-compose\n\n### [File Descriptors and MMap](https://www.elastic.co/guide/en/elasticsearch/guide/current/_file_descriptors_and_mmap.html)\n\nrun the following command on your host to make elasticsearch run properly:\n```\nsysctl -w vm.max_map_count=262144\n```\nYou can set it permanently by modifying `vm.max_map_count` setting in your `/etc/sysctl.conf`.\n\n### docker-compose.yml\n```\nversion: '2'\nservices:    \n    elastalert:\n        image: khezen/elastalert\n        environment:\n            ELASTIC_PWD: changeme\n            ELASTICSEARCH_HOST: localhost\n            ELASTICSEARCH_PORT: 9200\n        volumes:\n            - /etc/elastalert:/etc/elastalert\n            - /usr/share/elastalert/rules:/usr/share/elastalert/rules\n        network_mode: bridge\n        restart: unless-stopped\n\n```\nor\n\n```\nversion: '2'\nservices:\n    elasticsearch:\n        image: khezen/elasticsearch:2\n        environment:\n            ELASTIC_PWD: changeme\n            KIBANA_PWD: brucewayne\n            BEATS_PWD: jdilla\n        volumes:\n            - /data/elasticsearch:/usr/share/elasticsearch/data\n            - /etc/elasticsearch:/usr/share/elasticsearch/config\n        ports:\n             - \"9200:9200\"\n             - \"9300:9300\"\n        network_mode: bridge\n        restart: unless-stopped\n\n    kibana:\n        links:\n            - elasticsearch:elasticsearch-0\n        image: khezen/kibana:4\n        environment:\n            KIBANA_PWD: brucewayne\n            ELASTICSEARCH_HOST: elasticsearch-0\n            ELASTICSEARCH_PORT: 9200\n        volumes:\n            - /etc/kibana:/etc/kibana\n        ports:\n             - \"5601:5601\"\n        network_mode: bridge\n        restart: unless-stopped\n\n    elastalert:\n        links:\n            - elasticsearch:elasticsearch-0\n        image: khezen/elastalert\n        environment:\n            ELASTIC_PWD: changeme\n            ELASTICSEARCH_HOST: elasticsearch-0\n            ELASTICSEARCH_PORT: 9200\n        volumes:\n            - /etc/elastalert:/etc/elastalert\n            - /usr/share/elastalert/rules:/usr/share/elastalert/rules\n        network_mode: bridge\n        restart: unless-stopped\n\n```\n# Environment Variables\n\n##### ELASTIC_PWD | `changeme`\npassword for elasticsearch built-in user `elastic`.\n\n##### ELASTICSEARCH_HOST | `elasticsearch`\nElasticsearch hostname.\n\n##### ELASTICSEARCH_PORT | `9200`\nElasticsearch port.\n\n# Configure Elastalert\n\nConfiguration file is located in `/etc/elastalert/elastalert.yml` if you follow the same volume mapping as in docker-compose examples above.\n\nYou can find help with elastalert configuration [here](https://elastalert.readthedocs.io/en/latest/index.html).\n\n# Share alert rules from host\n\nYou can share rules from host to the container by adding them to `/usr/share/elastalert/rules` if you follow the same volume mapping as in docker-compose examples above.\n\n# User Feedback\n## Issues\nIf you have any problems with or questions about this image, please ask for help through a [GitHub issue](https://github.com/Khezen/docker-elastalert/issues).\n\n# Credit\n\n[Yelp/ElastAlert](https://github.com/Yelp/elastalert)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkhezen%2Fdocker-elastalert","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fkhezen%2Fdocker-elastalert","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fkhezen%2Fdocker-elastalert/lists"}