AlertRank

POST /v1/alerts/rank — Cluster false positives and auto-close where policy allows.

Request

{
  "alerts": [{"id":"a1","type":"aml","features":{"amount":1200,"country":"DE"}}],
  "policy_profile": "aml-default"
}

Response (200)

{
  "id": "req_01H...",
  "status": "ok",
  "result": {
    "clusters": [{"cluster_id":"c1","size":12,"reason":"duplicate-pattern"}],
    "autoclosed": ["a1","a7","a9"]
  },
  "log_cid": "bafy...log"
}

Errors

See Guides → Errors.