Our next-gen architecture is built to help you make sense of your ever-growing data Watch a 4-min demo video!

Back to All Docs

What’s New in Coralogix What’s New in Coralogix

Last Updated: Jan. 26, 2023

Get up to speed on everything that’s new and improved in the Coralogix platform!

January 2023

UI/UX Improvements

We’ve added some fine touches to the logs view to help you find what you’re looking for faster.

  • Default ‘flat’ mode makes the display a lot cleaner for the 1-line, 2-line, and condensed presentation modes.
  • New ‘List’ presentation mode presents log data in an easy-to-read list of key-value pairs.
  • Object columns can now be filtered to display a subset of the fields contained within the object.

View in Platform >

Lucene Syntax Highlighting

Lucene syntax highlighting makes it easier to read and write queries.

Highlighting is available everywhere in the platform where you can write Lucene queries. In the Explore Screen, terms and fields that match your query are also highlighted within the resulting logs.

View in Platform >

Incident Management in Insights Screen

You can now acknowledge, assign, and resolve alerts directly from the Insights UI. Use Coralogix as a task allocation and process control UI to extend and consolidate your monitoring and alerting workflow.

View in Platform >

Alerts Map

Visualize logical groupings of your alerts and their statuses for a powerful “at a glance” view of what’s going on in your systems.

For example, if you group your alerts by cluster and node, the Alerts Map will highlight which cluster-node pairings have one or more triggered alerts.

View Documentation >

Tracing Updates

Query your tracing data with Lucene syntax in the tracing UI. You can now build complex searches for specific fields and phrases contained within traces and spans.

The dependency view is now the default tracing view with the metadata about the trace now shown on the right-hand side of the screen. Hovering over a given node in the graph will reveal a tooltip with information about the trace and associated span.

View in Platform >

Create New Teams in Org Admin Screen

Organization admins can now create new teams from the “My Teams” tab in the Settings page. To create a new team, fill in the 3-step wizard with your new team name, unit allocation, and team admins.

If you need help getting started, reach out to our support team using the in-app chat!

Extended Integration Support

Prometheus Recording Rules
Prometheus Recording Rules can now be pulled from Coralogix using cURL commands. Use recording rules to pre-compute new timeseries based on existing ones. Once defined, the corresponding recording rules are automatically created as additional metrics in Coralogix.
View Documentation >

AWS Lambda Metrics
Our Lambda extension now supports collection of AWS Lambda metrics for essential invocation measurements. Additionally, CX_Metadata is included alongside incoming documents on the Coralogix platform to provide context around cloud provider, account ID, cloud region and more.
View Documentation >

APM for Amazon EC2
Using Amazon Kineses Data Firehose, you can now send Amazon EC2 metrics to Coralogix and view them on your Coralogix dashboard correlated with relevant traces and spans.
View Documentation >

JumpCloud SCIM Identity Management
New SAML integration with JumpCloud allows you to manage groups and users from in JumpCloud. Once integrated, those changes will be automatically reflected in the Coralogix UI.
View Documentation >

November 2022

Application Performance Monitoring (APM)

Coralogix now offers key features of Application Performance Monitoring (APM) for modern, cloud-native environments!

apm host metrics

With expanded visibility into service performance, you can more effectively monitor latency and pinpoint components responsible for issues like performance degradation or an increase in errors.

Read more about our unique approach to APM and how we can help you turn 30-minute investigations into 30-second discoveries.

Get Started >

OpenTelemetry Support for Logs, Metrics & Traces

You can now use OpenTelemetry to send logs, metrics, and tracing data to Coralogix!

Leverage the popular vendor-neutral, open-source framework for instrumentation and collection of your telemetry data for analysis in the Coralogix platform.

Get Started >

AWS Resource Enrichment

New AWS Resource Enrichment allows you to enrich your logs with tags from Amazon Web Services (AWS) EC2 instances. Use this feature to connect your business and operation metadata from AWS and gain greater insight into your data.

aws enrichment feature

To get started, visit our documentation for setup and configuration.

View Documentation >

Lucene Query Auto-Complete

Auto-complete for Lucene queries is now available across the platform. Suggestions are provided for operators (including field range hints) and data type hints!

Try It Now >

Extensions Improvements

The Coralogix Extensions lobby has been improved with search, label, and status filters.

In addition, individual extensions can now be deployed to specific applications and subsystems as part of their configuration.

Note that selecting “all applications” or “all subsystems” will apply the extension to all existing and future applications and subsystems created in the Coralogix platform.

View Documentation >


AWS Lambda Telemetry Exporter

Our new Coralogix AWS Lambda Telemetry Exporter is now available in the AWS Serverless Application Repository as an open beta. We encourage you to try it out and welcome any feedback.

View Documentation >

Telegraf Operator

Use our new integration with Telegraf Operator to simplify metric collection in Kubernetes. With Telegraf Operator, you only need to define the input plugin configuration for Telegraf when creating the pod annotations. Telegraf Operator then sets the configuration for the entire cluster, avoiding the need to configure a metrics destination when deploying applications.

View Documentation >

Google Cloud Pub/Sub

We’ve updated our integration with Google Cloud Pub/Sub to use a push subscription to send logs to Coralogix.

We recommend to use the updated integration with push subscription as it avoids running any additional software (i.e. functions) in your GCP account which can contribute to operational overhead and costs.

View Documentation >

October 2022

Dashboard Updates

Logs Graph Grouped by Severity

Previously, each column would display a single combined amount for Warning/Error/Critical logs. Now, each severity is stacked and a tooltip displays the breakdown of the severity count.

Clicking a section will navigate to the Explore tab with the relevant severity and timeframe filters applied.

logs by severity widget

View Dashboard >

Help Tooltips on Dashboard Widgets

New tooltips have been added to the dashboard widgets with an explanation of the information being displayed.

Top 3 Abnormal Errors – Above Normal / Newly Introduced

The Top 3 Abnormal Errors widget now differentiates between ‘Above Normal’ and ‘Newly Introduced’ errors. ‘Above Normal’ shows the amount above normal that is being seen (e.g. 3.2X normal levels), and ‘Newly Introduced’ shows the number of occurrences of the new errors.

View Dashboard >

Explore Updates

TCO Priority Added as Metadata

A Metadata field is added to each field indicating TCO Level. This can be seen in tooltips within the dashboard.

Explore Now >

Tracking Logical Data Types

Logical data types (i.e. IP Addresses, URLs, Emails) are now being detected in addition to raw data types (i.e. String, Number, etc).

This data is also displayed in the column tooltip. If more than one data type has been detected in a field (e.g. IP and String), they will all be displayed in the tooltip.

tracking logical data types

Content Type Icons added to Column Headers

New icons indicating content type have been added to column headers.

Explore Now >

Archive Query Improvements

DataFusion Query Engine Enhancements

The most recent round of improvements to the DataFusion query engine are supporting a conservative 5X increase in query speeds over AWS Athena.

With DataFusion there is no longer a hard limit to the number of partitions that can be scanned, it is restricted only by the resources assigned to it.

Try It Now >

22 New Scalar Functions in DataPrime

22 new Scalar functions have been added to DataPrime, including:

  • New String functions
  • IP functions
  • UUID functions
  • URL functions
  • Number functions

Lucene Query Improvements

Autocomplete for Lucene queries has been added within the DataPrime archive query UI, and will soon be added to the standard log query fields across the platform.

Try It Now >

September 2022

Tracing Alert

Create Tracing alerts for high latency on specified Tags and Services. Tracing alerts can be grouped by different Tags and specified for a specific threshold of Latency and Spans.

Learn More >

‘Group By’ for ‘Less Than’ Alerts

Enhance your ‘Less Than‘ alerts using the ‘Group By’ option. Values under the ‘Group By’ fields are aggregated into a histogram, and an alert will trigger whenever the condition threshold is met for an aggregated value within the specified timeframe.

Learn More >

Enhancements to Logs Screen UI

Mapping Exception indicator

A new warning icon in the Logs Screen indicates if there are any mapping exceptions in the selected time frame.

New Row Formats in Logs Screen

To streamline analysis and reduce the screen space each log takes, we added new Row Formats so you can choose how your logs are displayed.

Choose from the following options:

  • 1-Line – logs are condensed into one line
  • 2-Line – logs are condensed into two lines
  • Condensed (default) – the whole log is visible but without breaking into lines
  • JSON – the default view where JSON objects are parsed

Learn More >

Organization and Admin Console

Some companies prefer separate teams to isolate data based on the environment it originates from like Dev, QA, and Production. While others prefer to isolate the data based on organizational units like Infrastructure, Security, and Application.

Coralogix supports multi-tenancy, allowing a single organization to contain multiple teams. The Org Admin can then manage quota, settings, users, and more at the organization level from a single interface.

Organizations can be created upon request. Please contact us through our in-app chat or via email at [email protected].

New Integrations

August 2022

New & Improved Dashboard!

Our dashboard just got a refresh! 

Get an overview of your system health – informed by all of your observability data – with more in-depth widgets showing a summary of your anomalies, alerts, and more.

Plus, use the new sidebar filters to seamlessly drill down and investigate further with a single click to the Explore UI.

Open Dashboard >

DataPrime Archive Query Syntax

DataPrime is now officially GA!

Use DataPrime to parse and query unstructured data fields on the fly. Plus, generate synthetic fields and run calculations from your archived data. From the query UI, view your query history and access a complete cheat sheet with documentation of the query format and operators.

Learn More >

Explore UI Improvements

Log Screen

Improvements to the Top Graph in the Logs screen enable you to view and investigate your data more efficiently:

  • Sort tooltips by ascending or descending order
  • Compact large numbers for easier visualization
  • Legend container is now resizable and customizable 

The state of columns in the Log Screen are persistent in the URL and custom views can be easily shared with additional team members.

Avg, Max, Min, and Sum aggregations can now be used to visualize log fields that contain numeric values!

Tracing Screen

Hovering over graphs in tracing will now show a crosshair for faster analysis.

DataMap Filtering & Actions

You can now filter hexagons in the DataMap using multiple Field Operators and Regex.

Create and access Actions from DataMap using metric labels ($l.<labelName>) to seamlessly connect DataMaps to external resources using metric variables and labels.

Learn More >

General UI Improvements

Insights UI

New ‘Go To Explore’ functionality allows you to jump from the Insights UI directly to the relevant query in the Explore tab.

Alerts Menu

You can now Clone and Delete alerts directly from the main alerts menu!


Added fields that can be shipped in the body of the payload.

Session Timeout & Force Logout

Admins can now configure a session length on the Setting page after which users will be forced to log back in with no dependency on activity.

New Integrations

July 2022

Flow Alert

Define a sequence of alerts in our Drag & Drop Flow Builder UI that combines Logs, Metrics, Tracing, and Security information to create a single alert flow that will trigger based on multiple conditions within defined timeframes.

Use Flow Alerts to generate actionable insights from your observability data:

  • Combine multiple alerts into a single, comprehensive flow to cover your security, infra, and business events with reduced noise and false positives.
  • Create alerts with the Root Cause built-in (e.g. Error elevation due to CPU, causing SLO breach) to track the entire chain of events leading to an error.
  • Identify potential security incidents and proactively remediate them with alert occurrences over time.

Learn More >

New Integrations

June 2022

New Parsing Rules

This month we are introducing 2 new parsing rules to bring more value to customers who have many fields and nested fields in their log data.

The new Stringify JSON Field and Parse JSON Field rules enable you to parse escaped JSON values within a field to a valid JSON object and vice versa – stringify a JSON object to an escaped string.

Learn More >

DataMap Updates

The DataMap allows you to build custom mappings of your infrastructure using metric data for monitoring system health and quickly identifying issues.

In the Group Editor, you’ll find new options to:

  • Sort the display by attributes (e.g. sort by severity for defined thresholds)
  • Scale threshold values to make metric graphs more readable
  • Limit the number of hexagons shown per group

In the DataMap display, use new ‘Compare to others’ functionality to compare an element with 10 others in the same group. Plus, expand and collapse specific groups to minimize the number of displayed elements.

Learn More >

Tracing Updates

New dynamic graphs and saved views in the Tracing UI enable it to serve as SLA dashboards for any application or service.

In addition to the original default graph for Max duration by Action, there are now two additional default graphs for Count by Service and Error Count by Service.

All three graphs can be customized, and aggregation operators have been added for 99, 95, and 50th percentiles to help deepen your ability to monitor business SLOs.

When investigating traces in the explore section, you can now save your current view and load saved views just like you do in the Logs UI.

Learn More >

*Note that the aggregation operators, as well as the Duration filter in the sidebar, are run over the Spans.

Archive Query Updates

Improvements to the archive query now allow timeframes up to 3 days for added accessibility to data in your remote bucket.

Additional updates to the Archive Query in Explore Screen include:

  • New Execute Archive Query function allows you to review active filters before clicking ‘Run Query’. To prevent unexpected wait times, queries will no longer run automatically when switching from Logs to Archive. 
  • Non-optimal archive queries (e.g. “hello”) will trigger a warning pop up recommending to improve the query conditions.

Learn More >

New Integrations

May 2022


Build custom mappings of your infrastructure, log-based, and business metrics to visualize and monitor your system health.

  • Choose your base metric (ex. load_time)
  • Create a hierarchy of metric labels (ex. region>instance>pod)
  • Set thresholds and preview visualization
  • Save and load views for each unique use case

Pro-tip! Use tooltips to view additional information about the area of your system that you are looking at in the mapping visualization.

Learn More >

Tracing UI

Use our powerful Tracing UI to explore your data and streamline investigations and troubleshooting.

  • Collect tracing data using the Coralogix Exporter in OpenTelemetry
  • Pinpoint issues with familiar filtering and aggregation capabilities
  • Drill down into spans and visualize data flows with dependency view
  • View related logs and jump directly to the Logs Tab for streamlined investigation
  • Define user permissions with RBAC Control for tracing data
  • Alerting for Tracing (coming soon!)

Learn more >

CX-DATA Archive Format

We’ve launched a new archive format based on Parquet that improves archive query performance by 5X!

In addition to the CSV format, supported today, this new CX-DATA format can be configured in your S3 Buckets Settings and selected in the Archive Query screen in the platform.

Learn More >

Snooze Alerts in Alerts Tab

The option to snooze an alert, which was previously only available from the Insights screen, will now be available from within the main Alerts screen. This allows for centralized management of alert statuses across your team.

Learn More >

Session Timeout Management

A new option on the Settings page gives users the ability to choose how much idle time will trigger a force logout from the system. In case of inactivity, a pop-up will appear to alert the user, prior to logout.

Learn More >

New Integrations

On this page