From 113c22c4693fac5cc2db1b115c2f1ee0b6b701b7 Mon Sep 17 00:00:00 2001
From: Loris Degioanni <loris@sysdig.com>
Date: Wed, 5 Aug 2020 16:57:15 -0700
Subject: [PATCH] better detection of critical logs in the inspect chisel

---
 userspace/sysdig/chisels/wsysdig_summary.lua | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/userspace/sysdig/chisels/wsysdig_summary.lua b/userspace/sysdig/chisels/wsysdig_summary.lua
index 71fe314a92..cd1779755f 100644
--- a/userspace/sysdig/chisels/wsysdig_summary.lua
+++ b/userspace/sysdig/chisels/wsysdig_summary.lua
@@ -1303,7 +1303,7 @@ function build_output(captureDuration)
 			category = 'logs',
 			targetView = 'echo',
 			targetViewTitle = 'Error Application Log Messages',
-			targetViewFilter = '((fd.name contains .log or fd.name contains _log or fd.name contains /var/log) and not (fd.name contains .gz or fd.name contains .tgz)) and evt.is_io_write=true and (evt.arg.data icontains error or evt.arg.data icontains critic or evt.arg.data icontains emergency or evt.arg.data icontains alert)',
+			targetViewFilter = '((fd.name contains .log or fd.name contains _log or fd.name contains /var/log) and not (fd.name contains .gz or fd.name contains .tgz)) and evt.is_io_write=true and (evt.arg.data icontains error or evt.arg.data icontains critic or evt.arg.data icontains emerg or evt.arg.data icontains alert)',
 			drillDownKey = 'NONE',
 			data = gsummary.appLogCountE
 		}