trigger schedule interval 1h input search request search_type query_then_fetch indices rest_total_hits_as_int true body

This is a sample Watcher configuration for Elasticsearch, which is a tool used for monitoring and alerting in Elasticsearch. This configuration is set to trigger every hour and search for logs related to a specific Kubernetes namespace and container. If the search returns any results within the past hour, it will send a notification to a webhook with the relevant details. The webhook is set up to send a message to a specific WeChat group identified by its API key.