π―Skills35
Elastic agent skill for executing ES|QL (Elasticsearch Query Language) queries. Use when the user wants to query Elasticsearch data, analyze logs, aggregate metrics, explore data, or build charts and dashboards from ES|QL results.
Create and manage Kibana dashboards and visualizations declaratively via the new Kibana 9.4+ APIs β minimal, diffable payloads suited for GitOps, version control, and LLM-assisted generation.
An official Elastic agent skill for searching and analyzing observability logs in Elasticsearch and Kibana. Part of a curated skills library teaching AI agents correct Elastic platform patterns.
Authenticate to Elasticsearch across all supported realms β native, file-based, LDAP/AD, SAML, OIDC, Kerberos, JWT, and certificate β plus the full API key lifecycle. Covers credential verification and deployment differences across self-managed, ECH, and Serverless without ever prompting the user for secrets in chat.
Help developers new to Elasticsearch get from zero to a working search experience. Guide them through understanding their intent, mapping their data, and building a search experience with best practices baked in.
Teaches AI agents how to ingest files into Elasticsearch, covering document indexing, file processing pipelines, and data ingestion workflows as part of the official Elastic Agent Skills library.
Teaches AI agents how to create, manage, and configure Kibana alerting rules in the Elastic Stack, part of Elastic's official Agent Skills library for working with Elasticsearch, Kibana, and Elastic Security.
Official Elastic skill for enabling, configuring, and querying Elasticsearch security audit logs β covering audit setup, event filtering, and investigation of security incidents such as failed logins.
An official Elastic agent skill for building Kibana agents. Part of a curated library teaching AI agents correct patterns for Elasticsearch, Kibana, Elastic Observability, and Elastic Security.
Manage Elasticsearch RBAC β native users, custom roles, role mappings, and document- / field-level security β including Kibana feature/space privileges and Mustache-template role assignment from external realms like LDAP, SAML, and PKI. Covers feature differences across self-managed, ECH, and Serverless deployments.
Official Elastic skill for managing Kibana Streams via REST API β list, inspect, enable, disable, and resync streams, including ingest/query settings, queries, significant events, and attachments. Part of the Elastic Agent Skills library built by the Elastic team.
An Elastic Agent Skill that creates and manages Kibana connectors for Slack, PagerDuty, Jira, webhooks, and more via REST API or Terraform. Part of Elastic's official curated skill library for AI coding agents.
Official Elastic skill for building Vega and Vega-Lite visualizations with ES|QL data sources in Kibana β ideal for custom charts, dashboards, and programmatic panel layouts beyond standard Lens capabilities.
Official Elastic skill for diagnosing and resolving Elasticsearch security errors β 401/403 failures, TLS problems, expired API keys, role mapping mismatches, and Kibana login issues. Use when a user reports a security-related error.
Teaches AI agents how to set up and manage LLM observability in Elastic Observability, enabling monitoring of AI/LLM application performance and behavior within the Elastic Stack.
An Elastic Agent Skill for assessing APM service health using SLOs, alerts, machine learning, throughput, latency, error rates, and dependencies. Part of Elastic's official curated skill library for AI coding agents.
Official Elastic skill for enabling and configuring Kibana audit logging for saved-object access, logins, and space operations. Use when setting up Kibana audit, filtering events, or correlating Kibana and Elasticsearch audit logs.
An Elastic Agent Skill for creating and managing SLOs in Elastic Observability using the Kibana API, covering SLI definition, error budgets, and lifecycle management. Part of Elastic's official curated skill library for AI coding agents.
An Elastic Agent Skill for triaging Elastic Security alerts β gathering context, classifying threats, creating cases, and acknowledging alerts. Part of Elastic's official curated skill library for AI coding agents.
Teaches AI coding agents how to manage detection rules in Elastic Security, providing instructions and tooling for creating, updating, and maintaining security detection rules through the Elastic platform.
Drives the Kibana Cases API in `securitySolution` scope: create cases with title/description/tags/severity, search by hostname or agent-ID tag, list with status filters, fetch details, attach single or batch alerts with rate-limit handling, add investigation notes, and update status/severity/tags. Requires Node.js 22+, `KIBANA_URL`, and an API key or credentials.
Teaches AI coding agents how to generate sample security data for Elastic Security, providing instructions for creating realistic test data for security workflows, detection rules, and alert simulations.
Configures Elastic Cloud authentication and environment defaults for other cloud skills, including setting up EC_API_KEY and Cloud API access. Used as a prerequisite when another Elastic cloud skill needs credentials.
Official Elastic Agent Skill that manages Serverless network security traffic filters β create, update, and delete IP filters and AWS PrivateLink VPC filters to restrict network access or configure private connectivity for Elastic Cloud projects.
Teaches AI coding agents how to instrument Python applications with the Elastic Distribution of OpenTelemetry (EDOT), providing guidance for setting up observability and distributed tracing in the Elastic platform.
Official Elastic Agent Skill for day-2 operations on existing Elastic Cloud Serverless projects β list, get, update, delete, resume, reset credentials, and load saved credentials by resolving endpoints and acquiring scoped Elasticsearch API keys.
Official Elastic Agent Skill that creates Elastic Cloud Serverless projects (Elasticsearch, Observability, or Security) via the REST API, saves credentials to a file, and bootstraps a scoped Elasticsearch API key for the new project.
An Elastic Agent Skill for instrumenting Java applications with the Elastic Distribution of OpenTelemetry (EDOT) Java agent for automatic tracing and monitoring. Part of Elastic's official curated skill library for AI coding agents.
Official Elastic skill that manages Elastic Cloud organization access via cloud_access.py: invite/remove members, assign Serverless project roles, create custom roles with ES cluster/index/Kibana privileges, and create or revoke scoped Cloud API keys β using EC_API_KEY from cloud-setup against api.elastic-cloud.com.
An Elastic Agent Skill for instrumenting .NET applications with the Elastic Distribution of OpenTelemetry (EDOT) .NET SDK for automatic tracing and monitoring. Part of Elastic's official curated skill library for AI coding agents.
A skill from Elastic's official agent skills library that guides AI agents through migrating .NET applications from the OpenTelemetry SDK to Elastic's EDOT .NET distribution for observability, covering Elasticsearch, Kibana, and Elastic Observability workflows.
An Elastic Agent Skill for migrating Java applications from the classic Elastic APM Java agent to the EDOT Java agent. Part of Elastic's official curated skill library for AI coding agents.
An Elastic Agent Skill for migrating Python applications from the classic Elastic APM Python agent to the EDOT Python agent. Part of Elastic's official curated skill library for AI coding agents.
Elastic ML anomaly detection skill for investigation, root cause analysis, score explanation, job operations (create, start/stop, results), and troubleshooting (missing docs, memory limits, datafeed health). Operates against Kibana Agent Builder MCP tools on ML anomaly indices.
Investigate Kubernetes workload, node, and control-plane issues using OpenTelemetry (EDOT) telemetry in Elastic Observability. Covers pod failures like CrashLoopBackOff and OOMKilled, node pressure, image pull failures, autoscaling anomalies, and K8s-to-application signal correlation.