GitHub

Keep: The Open-Source AIOps and Alert Management Platform

What is the project about?

Keep is an open-source platform designed for AIOps and alert management. It provides a centralized hub for managing alerts from various monitoring tools, offering features like deduplication, enrichment, correlation, and workflow automation.

What problem does it solve?

Keep addresses the challenges of alert fatigue and the complexity of managing alerts from multiple sources. It helps teams streamline their incident response process by consolidating alerts, reducing noise, and automating actions.

What are the features of the project?

  • Single pane of glass: A unified UI for viewing and managing all alerts and incidents.
  • Alert processing: Deduplication, correlation, filtering, and enrichment of alerts.
  • Deep integrations: Bi-directional synchronization with numerous monitoring, communication, and ticketing tools.
  • Automation (Workflows): YAML-based workflows to automate alert handling and incident response (similar to GitHub Actions).
  • AIOps 2.0: AI-powered correlation and summarization of alerts.
  • Enterprise Ready: REST APIs, SDK, SSO, SAML, OIDC, LDAP, RBAC, ABAC, on-premise or air-gapped deployment.

What are the technologies used in the project?

The project utilizes a variety of technologies, primarily focused on integrations. Key categories include:

  • AI Backends: Anthropic, OpenAI, DeepSeek, Ollama, LlamaCPP, Grok, Gemini.
  • Observability Tools: Datadog, Prometheus, Grafana, CloudWatch, and many others.
  • Databases & Data Warehouses: BigQuery, ClickHouse, MongoDB, MySQL, PostgreSQL, Snowflake.
  • Communication Platforms: Slack, Microsoft Teams, Discord, email providers, etc.
  • Incident Management: PagerDuty, OpsGenie, Grafana OnCall, etc.
  • Ticketing Tools: Jira, GitHub, GitLab, ServiceNow, etc.
  • Container Orchestration: Kubernetes, OpenShift, ArgoCD, AKS, GKE.
  • Data Enrichment: Bash, Python, Webhook.
  • Workflow Engine: Custom-built, similar in concept to GitHub Actions.

What are the benefits of the project?

  • Centralized alert management: Reduces the need to switch between multiple tools.
  • Reduced alert fatigue: Deduplication and filtering minimize noise.
  • Faster incident response: Automation and correlation speed up resolution.
  • Improved collaboration: Integrations with communication and ticketing tools facilitate teamwork.
  • Customizable and extensible: Workflows and integrations can be tailored to specific needs.
  • Open Source: Free to use and modify.

What are the use cases of the project?

  • Centralized alert monitoring: Consolidate alerts from all monitoring tools in one place.
  • Automated incident response: Automatically create tickets, notify teams, and trigger remediation actions.
  • Alert enrichment: Add context to alerts using data from other sources.
  • Alert correlation: Identify related alerts and understand the root cause of incidents.
  • DevOps and SRE teams: Streamline alert management and improve operational efficiency.
keep screenshot