# Smart Filters

Smart Filters are saved, rule-based views of your data. Instead of manually searching and sorting every time, you create a filter once and it dynamically shows matching items whenever you select it.

# Types of Smart Filters

# Source-Scoped Filters

These filters apply to endpoints within a single source. They appear in the sidebar under the source they belong to.

To create one:

1. Hover over a source in the sidebar and click the ... menu
2. Choose New Filter

# Global Filters

Global filters can span across multiple sources and endpoints. They appear in the Global Filters section near the top of the sidebar.

To create one:

1. Click the + button at the bottom of the sidebar
2. Choose New Global Filter

# Creating a Smart Filter

The Smart Filter window has several sections:

# Name, Icon & Color

• Name — Give your filter a descriptive name (e.g., "Critical Alerts," "This Week's Tickets," "Unresolved Issues")
• Icon — Choose from a set of icons to make the filter easy to identify
• Color — Pick a color for the filter's icon

# Endpoint Selection

Choose which endpoints this filter should apply to. For source-scoped filters, you'll see the endpoints within that source. For global filters, you'll see all endpoints grouped by source.

Quick selection buttons let you select All or None at once.

# Match Type

When you have multiple conditions, choose how they're combined:

• Match ALL conditions — Every condition must be true (AND logic). An item must satisfy all rules to appear.
• Match ANY condition — At least one condition must be true (OR logic). An item appears if it matches any single rule.

# Conditions

Conditions are the rules that determine which items the filter shows. Each condition has three parts:

1. Field — Which field to check (chosen from a dropdown of discovered fields)
2. Operator — How to compare the value
3. Value — What to compare against

# Available Operators

The operators available depend on the field type:

Text fields: | Operator | Meaning | |----------|---------| | equals | Exact match | | contains | Field includes the text | | starts with | Field begins with the text | | ends with | Field ends with the text | | is empty | Field has no value |

Number fields: | Operator | Meaning | |----------|---------| | equals | Exact numeric match | | greater than | Field is larger than the value | | less than | Field is smaller than the value |

Date fields: | Operator | Meaning | |----------|---------| | before | Date is earlier than the specified date | | after | Date is later than the specified date | | in last | Date falls within the last N days/hours |

Boolean fields: | Operator | Meaning | |----------|---------| | equals | Matches true or false |

Click Add Condition to add more rules. Click the delete button next to a condition to remove it.

# Preview

As you build your filter, a live preview shows how many items match: for example, "42 of 156 items match." This helps you verify your filter is working as expected before saving.

# Filter Examples

Critical alerts from the last 24 hours:

• Field: severity → equals → critical
• Field: created_at → in last → 24 hours
• Match type: ALL

Open tickets assigned to me:

• Field: status → equals → open
• Field: assignee → equals → my-username
• Match type: ALL

Items with errors or warnings:

• Field: level → equals → error
• Field: level → equals → warning
• Match type: ANY

# Managing Smart Filters

From the sidebar:

• Click a filter to view its matching items
• Right-click a filter to access:
  • Edit Filter — Modify conditions, endpoints, or settings
  • Duplicate Filter — Create a copy to use as a starting point for a new filter
  • Delete Filter — Remove the filter (this doesn't delete any items)

# Next Steps

• Endpoint Joins — Combine data from multiple endpoints in a filter
• Chatting with Your Data — Analyze filtered data with AI