PyPI - holmesgpt - Versions diffs - 0.11.5__py3-none-any.whl - Mend

holmesgpt 0.11.5__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of holmesgpt might be problematic. Click here for more details.

Files changed (183) hide show

holmes/.git_archival.json +7 -0
holmes/__init__.py +76 -0
holmes/__init__.py.bak +76 -0
holmes/clients/robusta_client.py +24 -0
holmes/common/env_vars.py +47 -0
holmes/config.py +526 -0
holmes/core/__init__.py +0 -0
holmes/core/conversations.py +578 -0
holmes/core/investigation.py +152 -0
holmes/core/investigation_structured_output.py +264 -0
holmes/core/issue.py +54 -0
holmes/core/llm.py +250 -0
holmes/core/models.py +157 -0
holmes/core/openai_formatting.py +51 -0
holmes/core/performance_timing.py +72 -0
holmes/core/prompt.py +42 -0
holmes/core/resource_instruction.py +17 -0
holmes/core/runbooks.py +26 -0
holmes/core/safeguards.py +120 -0
holmes/core/supabase_dal.py +540 -0
holmes/core/tool_calling_llm.py +798 -0
holmes/core/tools.py +566 -0
holmes/core/tools_utils/__init__.py +0 -0
holmes/core/tools_utils/tool_executor.py +65 -0
holmes/core/tools_utils/toolset_utils.py +52 -0
holmes/core/toolset_manager.py +418 -0
holmes/interactive.py +229 -0
holmes/main.py +1041 -0
holmes/plugins/__init__.py +0 -0
holmes/plugins/destinations/__init__.py +6 -0
holmes/plugins/destinations/slack/__init__.py +2 -0
holmes/plugins/destinations/slack/plugin.py +163 -0
holmes/plugins/interfaces.py +32 -0
holmes/plugins/prompts/__init__.py +48 -0
holmes/plugins/prompts/_current_date_time.jinja2 +1 -0
holmes/plugins/prompts/_default_log_prompt.jinja2 +11 -0
holmes/plugins/prompts/_fetch_logs.jinja2 +36 -0
holmes/plugins/prompts/_general_instructions.jinja2 +86 -0
holmes/plugins/prompts/_global_instructions.jinja2 +12 -0
holmes/plugins/prompts/_runbook_instructions.jinja2 +13 -0
holmes/plugins/prompts/_toolsets_instructions.jinja2 +56 -0
holmes/plugins/prompts/generic_ask.jinja2 +36 -0
holmes/plugins/prompts/generic_ask_conversation.jinja2 +32 -0
holmes/plugins/prompts/generic_ask_for_issue_conversation.jinja2 +50 -0
holmes/plugins/prompts/generic_investigation.jinja2 +42 -0
holmes/plugins/prompts/generic_post_processing.jinja2 +13 -0
holmes/plugins/prompts/generic_ticket.jinja2 +12 -0
holmes/plugins/prompts/investigation_output_format.jinja2 +32 -0
holmes/plugins/prompts/kubernetes_workload_ask.jinja2 +84 -0
holmes/plugins/prompts/kubernetes_workload_chat.jinja2 +39 -0
holmes/plugins/runbooks/README.md +22 -0
holmes/plugins/runbooks/__init__.py +100 -0
holmes/plugins/runbooks/catalog.json +14 -0
holmes/plugins/runbooks/jira.yaml +12 -0
holmes/plugins/runbooks/kube-prometheus-stack.yaml +10 -0
holmes/plugins/runbooks/networking/dns_troubleshooting_instructions.md +66 -0
holmes/plugins/runbooks/upgrade/upgrade_troubleshooting_instructions.md +44 -0
holmes/plugins/sources/github/__init__.py +77 -0
holmes/plugins/sources/jira/__init__.py +123 -0
holmes/plugins/sources/opsgenie/__init__.py +93 -0
holmes/plugins/sources/pagerduty/__init__.py +147 -0
holmes/plugins/sources/prometheus/__init__.py +0 -0
holmes/plugins/sources/prometheus/models.py +104 -0
holmes/plugins/sources/prometheus/plugin.py +154 -0
holmes/plugins/toolsets/__init__.py +171 -0
holmes/plugins/toolsets/aks-node-health.yaml +65 -0
holmes/plugins/toolsets/aks.yaml +86 -0
holmes/plugins/toolsets/argocd.yaml +70 -0
holmes/plugins/toolsets/atlas_mongodb/instructions.jinja2 +8 -0
holmes/plugins/toolsets/atlas_mongodb/mongodb_atlas.py +307 -0
holmes/plugins/toolsets/aws.yaml +76 -0
holmes/plugins/toolsets/azure_sql/__init__.py +0 -0
holmes/plugins/toolsets/azure_sql/apis/alert_monitoring_api.py +600 -0
holmes/plugins/toolsets/azure_sql/apis/azure_sql_api.py +309 -0
holmes/plugins/toolsets/azure_sql/apis/connection_failure_api.py +445 -0
holmes/plugins/toolsets/azure_sql/apis/connection_monitoring_api.py +251 -0
holmes/plugins/toolsets/azure_sql/apis/storage_analysis_api.py +317 -0
holmes/plugins/toolsets/azure_sql/azure_base_toolset.py +55 -0
holmes/plugins/toolsets/azure_sql/azure_sql_instructions.jinja2 +137 -0
holmes/plugins/toolsets/azure_sql/azure_sql_toolset.py +183 -0
holmes/plugins/toolsets/azure_sql/install.md +66 -0
holmes/plugins/toolsets/azure_sql/tools/__init__.py +1 -0
holmes/plugins/toolsets/azure_sql/tools/analyze_connection_failures.py +324 -0
holmes/plugins/toolsets/azure_sql/tools/analyze_database_connections.py +243 -0
holmes/plugins/toolsets/azure_sql/tools/analyze_database_health_status.py +205 -0
holmes/plugins/toolsets/azure_sql/tools/analyze_database_performance.py +249 -0
holmes/plugins/toolsets/azure_sql/tools/analyze_database_storage.py +373 -0
holmes/plugins/toolsets/azure_sql/tools/get_active_alerts.py +237 -0
holmes/plugins/toolsets/azure_sql/tools/get_slow_queries.py +172 -0
holmes/plugins/toolsets/azure_sql/tools/get_top_cpu_queries.py +170 -0
holmes/plugins/toolsets/azure_sql/tools/get_top_data_io_queries.py +188 -0
holmes/plugins/toolsets/azure_sql/tools/get_top_log_io_queries.py +180 -0
holmes/plugins/toolsets/azure_sql/utils.py +83 -0
holmes/plugins/toolsets/bash/__init__.py +0 -0
holmes/plugins/toolsets/bash/bash_instructions.jinja2 +14 -0
holmes/plugins/toolsets/bash/bash_toolset.py +208 -0
holmes/plugins/toolsets/bash/common/bash.py +52 -0
holmes/plugins/toolsets/bash/common/config.py +14 -0
holmes/plugins/toolsets/bash/common/stringify.py +25 -0
holmes/plugins/toolsets/bash/common/validators.py +24 -0
holmes/plugins/toolsets/bash/grep/__init__.py +52 -0
holmes/plugins/toolsets/bash/kubectl/__init__.py +100 -0
holmes/plugins/toolsets/bash/kubectl/constants.py +96 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_describe.py +66 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_events.py +88 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_get.py +108 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_logs.py +20 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_run.py +46 -0
holmes/plugins/toolsets/bash/kubectl/kubectl_top.py +81 -0
holmes/plugins/toolsets/bash/parse_command.py +103 -0
holmes/plugins/toolsets/confluence.yaml +19 -0
holmes/plugins/toolsets/consts.py +5 -0
holmes/plugins/toolsets/coralogix/api.py +158 -0
holmes/plugins/toolsets/coralogix/toolset_coralogix_logs.py +103 -0
holmes/plugins/toolsets/coralogix/utils.py +181 -0
holmes/plugins/toolsets/datadog.py +153 -0
holmes/plugins/toolsets/docker.yaml +46 -0
holmes/plugins/toolsets/git.py +756 -0
holmes/plugins/toolsets/grafana/__init__.py +0 -0
holmes/plugins/toolsets/grafana/base_grafana_toolset.py +54 -0
holmes/plugins/toolsets/grafana/common.py +68 -0
holmes/plugins/toolsets/grafana/grafana_api.py +31 -0
holmes/plugins/toolsets/grafana/loki_api.py +89 -0
holmes/plugins/toolsets/grafana/tempo_api.py +124 -0
holmes/plugins/toolsets/grafana/toolset_grafana.py +102 -0
holmes/plugins/toolsets/grafana/toolset_grafana_loki.py +102 -0
holmes/plugins/toolsets/grafana/toolset_grafana_tempo.jinja2 +10 -0
holmes/plugins/toolsets/grafana/toolset_grafana_tempo.py +299 -0
holmes/plugins/toolsets/grafana/trace_parser.py +195 -0
holmes/plugins/toolsets/helm.yaml +42 -0
holmes/plugins/toolsets/internet/internet.py +275 -0
holmes/plugins/toolsets/internet/notion.py +137 -0
holmes/plugins/toolsets/kafka.py +638 -0
holmes/plugins/toolsets/kubernetes.yaml +255 -0
holmes/plugins/toolsets/kubernetes_logs.py +426 -0
holmes/plugins/toolsets/kubernetes_logs.yaml +42 -0
holmes/plugins/toolsets/logging_utils/__init__.py +0 -0
holmes/plugins/toolsets/logging_utils/logging_api.py +217 -0
holmes/plugins/toolsets/logging_utils/types.py +0 -0
holmes/plugins/toolsets/mcp/toolset_mcp.py +135 -0
holmes/plugins/toolsets/newrelic.py +222 -0
holmes/plugins/toolsets/opensearch/__init__.py +0 -0
holmes/plugins/toolsets/opensearch/opensearch.py +245 -0
holmes/plugins/toolsets/opensearch/opensearch_logs.py +151 -0
holmes/plugins/toolsets/opensearch/opensearch_traces.py +211 -0
holmes/plugins/toolsets/opensearch/opensearch_traces_instructions.jinja2 +12 -0
holmes/plugins/toolsets/opensearch/opensearch_utils.py +166 -0
holmes/plugins/toolsets/prometheus/prometheus.py +818 -0
holmes/plugins/toolsets/prometheus/prometheus_instructions.jinja2 +38 -0
holmes/plugins/toolsets/rabbitmq/api.py +398 -0
holmes/plugins/toolsets/rabbitmq/rabbitmq_instructions.jinja2 +37 -0
holmes/plugins/toolsets/rabbitmq/toolset_rabbitmq.py +222 -0
holmes/plugins/toolsets/robusta/__init__.py +0 -0
holmes/plugins/toolsets/robusta/robusta.py +235 -0
holmes/plugins/toolsets/robusta/robusta_instructions.jinja2 +24 -0
holmes/plugins/toolsets/runbook/__init__.py +0 -0
holmes/plugins/toolsets/runbook/runbook_fetcher.py +78 -0
holmes/plugins/toolsets/service_discovery.py +92 -0
holmes/plugins/toolsets/servicenow/install.md +37 -0
holmes/plugins/toolsets/servicenow/instructions.jinja2 +3 -0
holmes/plugins/toolsets/servicenow/servicenow.py +198 -0
holmes/plugins/toolsets/slab.yaml +20 -0
holmes/plugins/toolsets/utils.py +137 -0
holmes/plugins/utils.py +14 -0
holmes/utils/__init__.py +0 -0
holmes/utils/cache.py +84 -0
holmes/utils/cert_utils.py +40 -0
holmes/utils/default_toolset_installation_guide.jinja2 +44 -0
holmes/utils/definitions.py +13 -0
holmes/utils/env.py +53 -0
holmes/utils/file_utils.py +56 -0
holmes/utils/global_instructions.py +20 -0
holmes/utils/holmes_status.py +22 -0
holmes/utils/holmes_sync_toolsets.py +80 -0
holmes/utils/markdown_utils.py +55 -0
holmes/utils/pydantic_utils.py +54 -0
holmes/utils/robusta.py +10 -0
holmes/utils/tags.py +97 -0
holmesgpt-0.11.5.dist-info/LICENSE.txt +21 -0
holmesgpt-0.11.5.dist-info/METADATA +400 -0
holmesgpt-0.11.5.dist-info/RECORD +183 -0
holmesgpt-0.11.5.dist-info/WHEEL +4 -0
holmesgpt-0.11.5.dist-info/entry_points.txt +3 -0

holmes/plugins/toolsets/azure_sql/apis/connection_failure_api.py ADDED Viewed

@@ -0,0 +1,445 @@
+from typing import Dict, List, Any
+import logging
+from datetime import datetime, timezone, timedelta
+from azure.core.credentials import TokenCredential
+from azure.mgmt.monitor import MonitorManagementClient
+class ConnectionFailureAPI:
+    """API client for analyzing Azure SQL Database connection failures and patterns."""
+    def __init__(
+        self,
+        credential: TokenCredential,
+        subscription_id: str,
+    ):
+        self.credential = credential
+        self.subscription_id = subscription_id
+        self.monitor_client = MonitorManagementClient(credential, subscription_id)
+    def _build_database_resource_id(
+        self, resource_group: str, server_name: str, database_name: str
+    ) -> str:
+        """Build the full Azure resource ID for the SQL database."""
+        return (
+            f"/subscriptions/{self.subscription_id}/"
+            f"resourceGroups/{resource_group}/"
+            f"providers/Microsoft.Sql/servers/{server_name}/"
+            f"databases/{database_name}"
+        )
+    def _build_server_resource_id(self, resource_group: str, server_name: str) -> str:
+        """Build the full Azure resource ID for the SQL server."""
+        return (
+            f"/subscriptions/{self.subscription_id}/"
+            f"resourceGroups/{resource_group}/"
+            f"providers/Microsoft.Sql/servers/{server_name}"
+        )
+    def analyze_connection_failures(
+        self,
+        resource_group: str,
+        server_name: str,
+        database_name: str,
+        hours_back: int = 24,
+    ) -> Dict[str, Any]:
+        """Analyze connection failures and patterns for the SQL database."""
+        try:
+            database_resource_id = self._build_database_resource_id(
+                resource_group, server_name, database_name
+            )
+            server_resource_id = self._build_server_resource_id(
+                resource_group, server_name
+            )
+            end_time = datetime.now(timezone.utc)
+            start_time = end_time - timedelta(hours=hours_back)
+            # Connection-related metrics to analyze (database-level only)
+            connection_metrics = [
+                "connection_failed",
+                "connection_successful",
+                "blocked_by_firewall",
+                "connection_failed_user_error",
+                "sessions_count",
+                "sessions_percent",
+                "workers_percent",
+            ]
+            # Get connection metrics (only from database, not server)
+            connection_data = self._get_connection_metrics(
+                database_resource_id, connection_metrics, start_time, end_time
+            )
+            # Server-level metrics are not available for connection failures
+            # Only DTU and storage metrics are available at server level
+            server_connection_data = {
+                "note": "Connection metrics only available at database level"
+            }
+            # Analyze activity logs for connection-related events
+            activity_log_data = self._analyze_connection_activity_logs(
+                database_resource_id, server_resource_id, start_time, end_time
+            )
+            # Combine and analyze all data
+            analysis = self._analyze_connection_patterns(
+                connection_data, server_connection_data, activity_log_data
+            )
+            return {
+                "database_resource_id": database_resource_id,
+                "server_resource_id": server_resource_id,
+                "time_range": {
+                    "start": start_time.isoformat(),
+                    "end": end_time.isoformat(),
+                    "hours": hours_back,
+                },
+                "connection_metrics": connection_data,
+                "server_metrics": server_connection_data,
+                "activity_events": activity_log_data,
+                "analysis": analysis,
+                "retrieved_at": datetime.now(timezone.utc).isoformat(),
+            }
+        except Exception as e:
+            error_msg = f"Failed to analyze connection failures: {str(e)}"
+            logging.error(error_msg, exc_info=True)
+            return {"error": error_msg}
+    def _get_connection_metrics(
+        self,
+        resource_id: str,
+        metric_names: List[str],
+        start_time: datetime,
+        end_time: datetime,
+    ) -> Dict[str, Any]:
+        """Get connection-related metrics from Azure Monitor."""
+        try:
+            metrics_data = {}
+            for metric_name in metric_names:
+                try:
+                    # Get metric data with proper ISO 8601 format
+                    timespan = f"{start_time.strftime('%Y-%m-%dT%H:%M:%S.%fZ')}/{end_time.strftime('%Y-%m-%dT%H:%M:%S.%fZ')}"
+                    metrics = self.monitor_client.metrics.list(
+                        resource_uri=resource_id,
+                        timespan=timespan,
+                        interval="PT1H",  # 1-hour intervals
+                        metricnames=metric_name,
+                        aggregation="Total,Average,Maximum",
+                    )
+                    metric_values = []
+                    for metric in metrics.value:
+                        if metric.timeseries:
+                            for timeseries in metric.timeseries:
+                                for data_point in timeseries.data:
+                                    if data_point.time_stamp:
+                                        metric_values.append(
+                                            {
+                                                "timestamp": data_point.time_stamp.isoformat(),
+                                                "total": data_point.total,
+                                                "average": data_point.average,
+                                                "maximum": data_point.maximum,
+                                            }
+                                        )
+                    metrics_data[metric_name] = {
+                        "values": metric_values,
+                        "total_data_points": len(metric_values),
+                    }
+                except Exception as e:
+                    # Only log as warning if it's not a known metric availability issue
+                    error_msg = str(e)
+                    if "Failed to find metric configuration" in error_msg:
+                        logging.info(
+                            f"Metric {metric_name} not available for this resource type"
+                        )
+                    else:
+                        logging.warning(f"Failed to get metric {metric_name}: {e}")
+                    metrics_data[metric_name] = {
+                        "error": str(e),
+                        "values": [],
+                        "total_data_points": 0,
+                    }
+            return metrics_data
+        except Exception as e:
+            logging.error(f"Failed to get connection metrics: {e}")
+            return {"error": str(e)}
+    def _get_server_connection_metrics(
+        self, server_resource_id: str, start_time: datetime, end_time: datetime
+    ) -> Dict[str, Any]:
+        """Get server-level connection metrics - Note: Connection metrics not available at server level."""
+        # Connection failure metrics are only available at database level
+        # Server level only has DTU and storage metrics
+        return {
+            "note": "Connection failure metrics are only available at database level",
+            "available_server_metrics": [
+                "dtu_consumption_percent",
+                "storage_used",
+                "dtu_used",
+            ],
+            "connection_metrics_location": "database_level_only",
+        }
+    def _analyze_connection_activity_logs(
+        self,
+        database_resource_id: str,
+        server_resource_id: str,
+        start_time: datetime,
+        end_time: datetime,
+    ) -> Dict[str, Any]:
+        """Analyze activity logs for connection-related events."""
+        try:
+            # Connection-related operation names to look for
+            connection_operations = [
+                "Microsoft.Sql/servers/databases/connect",
+                "Microsoft.Sql/servers/connect",
+                "Microsoft.Sql/servers/databases/disconnect",
+                "Microsoft.Sql/servers/firewallRules/write",
+                "Microsoft.Sql/servers/connectionPolicies/write",
+            ]
+            # Activity logs filter - remove unsupported level filter
+            filter_query = (
+                f"eventTimestamp ge '{start_time.strftime('%Y-%m-%dT%H:%M:%S.%fZ')}' and "
+                f"eventTimestamp le '{end_time.strftime('%Y-%m-%dT%H:%M:%S.%fZ')}' and "
+                f"resourceId eq '{database_resource_id}'"
+            )
+            activity_logs = self.monitor_client.activity_logs.list(filter=filter_query)
+            connection_events = []
+            for log_entry in activity_logs:
+                if hasattr(log_entry, "operation_name") and log_entry.operation_name:
+                    operation_name = (
+                        log_entry.operation_name.value
+                        if hasattr(log_entry.operation_name, "value")
+                        else str(log_entry.operation_name)
+                    )
+                    # Check if this is a connection-related operation
+                    is_connection_related = any(
+                        op in operation_name for op in connection_operations
+                    ) or any(
+                        keyword in operation_name.lower()
+                        for keyword in [
+                            "connect",
+                            "firewall",
+                            "auth",
+                            "login",
+                            "security",
+                        ]
+                    )
+                    # Filter by level after getting the data, since level filter isn't supported in query
+                    if is_connection_related or (
+                        hasattr(log_entry, "level")
+                        and log_entry.level in ["Warning", "Error", "Critical"]
+                    ):
+                        event_data = {
+                            "timestamp": getattr(
+                                log_entry, "event_timestamp", end_time
+                            ).isoformat(),
+                            "operation_name": operation_name,
+                            "level": getattr(log_entry, "level", "Unknown"),
+                            "status": getattr(log_entry, "status", {}).get(
+                                "value", "Unknown"
+                            )
+                            if hasattr(getattr(log_entry, "status", {}), "get")
+                            else "Unknown",
+                            "caller": getattr(log_entry, "caller", "Unknown"),
+                            "description": getattr(
+                                log_entry, "description", "No description"
+                            ),
+                            "resource_id": getattr(log_entry, "resource_id", ""),
+                            "correlation_id": getattr(log_entry, "correlation_id", ""),
+                            "is_connection_related": is_connection_related,
+                        }
+                        connection_events.append(event_data)
+            # Sort by timestamp, most recent first
+            connection_events.sort(key=lambda x: x["timestamp"], reverse=True)
+            return {
+                "events": connection_events,
+                "total_events": len(connection_events),
+                "connection_related_events": len(
+                    [e for e in connection_events if e["is_connection_related"]]
+                ),
+                "error_events": len(
+                    [
+                        e
+                        for e in connection_events
+                        if e["level"] in ["Error", "Critical"]
+                    ]
+                ),
+                "warning_events": len(
+                    [e for e in connection_events if e["level"] == "Warning"]
+                ),
+            }
+        except Exception as e:
+            logging.error(f"Failed to analyze connection activity logs: {e}")
+            return {"error": str(e), "events": [], "total_events": 0}
+    def _analyze_connection_patterns(
+        self,
+        connection_data: Dict[str, Any],
+        server_data: Dict[str, Any],
+        activity_data: Dict[str, Any],
+    ) -> Dict[str, Any]:
+        """Analyze connection patterns and identify issues."""
+        analysis: dict = {
+            "summary": {},
+            "issues_detected": [],
+            "recommendations": [],
+            "metrics_analysis": {},
+        }
+        try:
+            # Analyze connection failure metrics
+            if "connection_failed" in connection_data and connection_data[
+                "connection_failed"
+            ].get("values"):
+                failed_connections = connection_data["connection_failed"]["values"]
+                total_failures = sum(
+                    dp.get("total", 0) or 0 for dp in failed_connections
+                )
+                max_failures_per_hour = max(
+                    (dp.get("maximum", 0) or 0 for dp in failed_connections), default=0
+                )
+                analysis["metrics_analysis"]["connection_failures"] = {
+                    "total_failed_connections": total_failures,
+                    "max_failures_per_hour": max_failures_per_hour,
+                    "failure_trend": "increasing"
+                    if len(failed_connections) > 1
+                    and (failed_connections[-1].get("total", 0) or 0)
+                    > (failed_connections[0].get("total", 0) or 0)
+                    else "stable",
+                }
+                if total_failures > 0:
+                    analysis["issues_detected"].append(
+                        f"🔴 {int(total_failures)} connection failures detected"
+                    )
+                    if max_failures_per_hour > 10:
+                        analysis["issues_detected"].append(
+                            f"⚠️ High failure rate: {int(max_failures_per_hour)} failures in single hour"
+                        )
+            # Analyze firewall blocks
+            if "blocked_by_firewall" in connection_data and connection_data[
+                "blocked_by_firewall"
+            ].get("values"):
+                firewall_blocks = connection_data["blocked_by_firewall"]["values"]
+                total_blocks = sum(dp.get("total", 0) or 0 for dp in firewall_blocks)
+                if total_blocks > 0:
+                    analysis["issues_detected"].append(
+                        f"🚫 {int(total_blocks)} connections blocked by firewall"
+                    )
+                    analysis["recommendations"].append(
+                        "Review firewall rules - clients may be connecting from unauthorized IP addresses"
+                    )
+            # Analyze successful connections for context
+            if "connection_successful" in connection_data and connection_data[
+                "connection_successful"
+            ].get("values"):
+                successful_connections = connection_data["connection_successful"][
+                    "values"
+                ]
+                total_successful = sum(
+                    dp.get("total", 0) or 0 for dp in successful_connections
+                )
+                analysis["metrics_analysis"]["successful_connections"] = {
+                    "total_successful_connections": total_successful
+                }
+                # Calculate failure rate if we have both metrics
+                if "connection_failures" in analysis["metrics_analysis"]:
+                    total_failures = analysis["metrics_analysis"][
+                        "connection_failures"
+                    ]["total_failed_connections"]
+                    if total_successful + total_failures > 0:
+                        failure_rate = (
+                            total_failures / (total_successful + total_failures)
+                        ) * 100
+                        analysis["metrics_analysis"]["failure_rate_percent"] = round(
+                            failure_rate, 2
+                        )
+                        if failure_rate > 5:
+                            analysis["issues_detected"].append(
+                                f"📊 High connection failure rate: {failure_rate:.1f}%"
+                            )
+            # Analyze activity log events
+            if "events" in activity_data and activity_data["events"]:
+                error_events = [
+                    e
+                    for e in activity_data["events"]
+                    if e["level"] in ["Error", "Critical"]
+                ]
+                if error_events:
+                    analysis["issues_detected"].append(
+                        f"📋 {len(error_events)} error-level events in activity logs"
+                    )
+                # Look for specific patterns
+                auth_events = [
+                    e
+                    for e in activity_data["events"]
+                    if "auth" in e["operation_name"].lower()
+                    or "login" in e["operation_name"].lower()
+                ]
+                if auth_events:
+                    analysis["issues_detected"].append(
+                        f"🔐 {len(auth_events)} authentication-related events detected"
+                    )
+            # Generate recommendations based on findings
+            if not analysis["issues_detected"]:
+                analysis["summary"]["status"] = "healthy"
+                analysis["summary"]["message"] = (
+                    "✅ No significant connection issues detected"
+                )
+            else:
+                analysis["summary"]["status"] = "issues_detected"
+                analysis["summary"]["message"] = (
+                    f"⚠️ {len(analysis['issues_detected'])} connection issues detected"
+                )
+                # Add general recommendations
+                if any(
+                    "failure" in issue.lower() for issue in analysis["issues_detected"]
+                ):
+                    analysis["recommendations"].extend(
+                        [
+                            "Monitor application connection pooling configuration",
+                            "Check for network connectivity issues between client and server",
+                            "Review connection timeout settings in application",
+                        ]
+                    )
+                if any(
+                    "firewall" in issue.lower() for issue in analysis["issues_detected"]
+                ):
+                    analysis["recommendations"].append(
+                        "Validate client IP addresses against firewall rules"
+                    )
+        except Exception as e:
+            logging.error(f"Failed to analyze connection patterns: {e}")
+            analysis["error"] = str(e)
+        return analysis