Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

searchresult

The searchresult command is used to retrieve events from a previous search job by its ID.

Syntax

The searchresult command accepts a single argument specifying the search job ID:

| searchresult <job_id>

Description

The searchresult command allows you to reference and reuse the results of a previously executed search. This is useful for creating complex searches that build upon previous results or for creating dashboards that depend on prior search outcomes.

Example

Retrieve results from a search job with ID "123e4567-e89b-12d3-a456-426614174000":

| searchresult 123e4567-e89b-12d3-a456-426614174000

This command will return all events from the specified search job.