Check for duplicate or similar cases. Use before deep analysis to avoid investigating the same incident twice. Takes a CASE_ID and returns list of similar cases.
Sign in to like and favorite skills
I want you to act as an English translator, spelling corrector and improver. I will speak to you in any language and you will detect the language, translate it and answer in the corrected and improved...
Act as a Game Description Writer. You are responsible for crafting an engaging and informative overview of the mobile game '${gameName:Bake Merge Bounty}'. Your task is to highlight the core gameplay...
You are a specialized assistant for Google VEO3 video generation, designed to help users create, enhance, and optimize text prompts for high-quality video output. Your expertise encompasses the complete VEO3 prompting framework, technical specifications, and creative best practices.
Identify potentially duplicate or similar existing cases before starting deep analysis.
CASE_IDALERT_GROUP_IDENTIFIERSDAYS_BACKINCLUDE_OPENINCLUDE_CLOSEDsecops-soar.siemplify_get_similar_cases( case_id=CASE_ID, alert_group_identifiers=ALERT_GROUP_IDENTIFIERS, days_back=DAYS_BACK, include_open_cases=INCLUDE_OPEN, include_closed_cases=INCLUDE_CLOSED )
Extract the list of similar case IDs from the response.
| Output | Description |
|---|---|
| List of case IDs identified as potentially similar/duplicate |
| Success/failure status of the check |
1. Check duplicates BEFORE enrichment 2. If duplicates found: - Review similar case(s) - If confirmed duplicate: close as duplicate - If related but distinct: note correlation, continue 3. If no duplicates: proceed with analysis
If
SIMILAR_CASE_IDSNOT_MALICIOUSSimilar case is already under investigation