> ## Documentation Index
> Fetch the complete documentation index at: https://chatcli.edilsonfreitas.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Listar Incidentes

> Retorna lista de incidentes com filtros opcionais e paginação

<ParamField query="severity" type="string">
  Filtrar por severidade: `critical`, `high`, `medium`, `low`
</ParamField>

<ParamField query="state" type="string">
  Filtrar por estado: `Detected`, `Analyzing`, `Remediating`, `Resolved`, `Escalated`, `Failed`
</ParamField>

<ParamField query="namespace" type="string">
  Filtrar por namespace Kubernetes
</ParamField>

<ParamField query="resource" type="string">
  Filtrar por recurso (ex: `Deployment/payment-service`)
</ParamField>

<ParamField query="since" type="string">
  Filtrar incidentes a partir de uma data ISO 8601 (ex: `2026-03-19T00:00:00Z`)
</ParamField>

<ParamField query="page" type="integer" default="1">
  Número da página
</ParamField>

<ParamField query="pageSize" type="integer" default="20">
  Itens por página (máximo 100)
</ParamField>

<ResponseExample>
  ```json Response 200 theme={"system"}
  {
    "apiVersion": "v1",
    "kind": "IncidentList",
    "metadata": {
      "totalCount": 42,
      "page": 1,
      "pageSize": 20
    },
    "items": [
      {
        "name": "INC-20260319-001",
        "namespace": "production",
        "severity": "high",
        "state": "Analyzing",
        "resource": "Deployment/payment-service",
        "description": "OOMKill detected — container reiniciado 5 vezes nos últimos 10 minutos",
        "riskScore": 65,
        "detectedAt": "2026-03-19T15:20:00Z",
        "age": "5m",
        "assignedTo": "sre-team",
        "labels": {
          "app": "payment-service",
          "team": "platform"
        }
      },
      {
        "name": "INC-20260319-002",
        "namespace": "staging",
        "severity": "medium",
        "state": "Resolved",
        "resource": "Deployment/api-gateway",
        "description": "Alta latência no endpoint /health",
        "riskScore": 30,
        "detectedAt": "2026-03-19T14:10:00Z",
        "resolvedAt": "2026-03-19T14:35:00Z",
        "age": "25m",
        "labels": {
          "app": "api-gateway",
          "team": "backend"
        }
      }
    ]
  }
  ```
</ResponseExample>


## OpenAPI

````yaml GET /incidents
openapi: 3.1.0
info:
  title: ChatCLI AIOps Platform API
  description: >-
    REST API for the ChatCLI AIOps Platform — incidents, SLOs, runbooks,
    approvals, postmortems, analytics, audit, federation and health.


    The playground below uses **editable server variables** so you can point
    requests at your own self-hosted instance. Adjust `host`, `port` and
    `basePath` to match your deployment, then click **Try it**.
  version: 1.0.0
  contact:
    name: ChatCLI
    url: https://github.com/diillson/chatcli
  license:
    name: Apache-2.0
    identifier: Apache-2.0
servers:
  - url: http://{host}:{port}/{basePath}
    description: >-
      Self-hosted ChatCLI AIOps Platform — adjust host, port and basePath to
      match your deployment.
    variables:
      host:
        default: localhost
        description: >-
          Hostname or IP of your ChatCLI operator. For Kubernetes, use the
          Service DNS (e.g. chatcli-api.chatcli-system.svc) or your Ingress
          host.
      port:
        default: '8090'
        description: >-
          Port the API listens on. Default is 8090; configurable via Helm value
          `apiPort` or env var CHATCLI_API_PORT.
      basePath:
        default: api/v1
        description: >-
          API base path. Always `api/v1` unless you have a custom proxy rewrite
          in front of the operator.
security:
  - ApiKeyAuth: []
tags:
  - name: Incidents
    description: >-
      Incident lifecycle: list, fetch, acknowledge, resolve, snooze, timeline
      and remediation views.
  - name: Runbooks
    description: Remediation runbooks (list, create, update, delete).
  - name: SLOs
    description: Service Level Objectives and error budgets.
  - name: Approvals
    description: Approval workflow for risky remediations.
  - name: Postmortems
    description: Auto-generated postmortems with review, feedback and close.
  - name: Remediations
    description: Remediation plans and agentic execution history.
  - name: AI Insights
    description: AI root-cause analysis and recommendations per incident.
  - name: Analytics
    description: 'Operational analytics: MTTD, MTTR, trends, capacity, compliance.'
  - name: Audit
    description: Immutable audit log and exports.
  - name: Federation
    description: 'Multi-cluster federation: clusters, status and cross-cluster correlations.'
  - name: Health
    description: Liveness and readiness probes.
paths:
  /incidents:
    get:
      tags:
        - Incidents
      summary: List Incidents
      description: Returns a list of incidents with optional filters and pagination.
      operationId: listIncidents
      parameters:
        - name: severity
          in: query
          required: false
          description: 'Filter by severity: `critical`, `high`, `medium`, `low`.'
          schema:
            type: string
            enum:
              - critical
              - high
              - medium
              - low
        - name: state
          in: query
          required: false
          description: >-
            Filter by state: `Detected`, `Analyzing`, `Remediating`, `Resolved`,
            `Escalated`, `Failed`.
          schema:
            type: string
            enum:
              - Detected
              - Analyzing
              - Remediating
              - Resolved
              - Escalated
              - Failed
        - name: namespace
          in: query
          required: false
          description: Filter by Kubernetes namespace.
          schema:
            type: string
        - name: resource
          in: query
          required: false
          description: Filter by resource (e.g. `Deployment/payment-service`).
          schema:
            type: string
        - name: since
          in: query
          required: false
          description: >-
            ISO 8601 timestamp — only return incidents detected at or after this
            time.
          schema:
            type: string
            format: date-time
            example: '2026-03-19T00:00:00Z'
        - name: page
          in: query
          required: false
          description: Page number.
          schema:
            type: integer
            default: 1
        - name: pageSize
          in: query
          required: false
          description: Items per page (max 100).
          schema:
            type: integer
            default: 20
            maximum: 100
      responses:
        '200':
          description: Paginated list of incidents
          content:
            application/json:
              schema:
                $ref: '#/components/schemas/IncidentList'
        '401':
          $ref: '#/components/responses/Unauthorized'
        '429':
          $ref: '#/components/responses/RateLimited'
components:
  schemas:
    IncidentList:
      type: object
      properties:
        apiVersion:
          type: string
          example: v1
        kind:
          type: string
          example: IncidentList
        metadata:
          $ref: '#/components/schemas/ListMetadata'
        items:
          type: array
          items:
            $ref: '#/components/schemas/IncidentListItem'
    ListMetadata:
      type: object
      properties:
        totalCount:
          type: integer
          example: 42
        page:
          type: integer
          example: 1
        pageSize:
          type: integer
          example: 20
    IncidentListItem:
      type: object
      properties:
        name:
          type: string
          example: INC-20260319-001
        namespace:
          type: string
        severity:
          type: string
          enum:
            - critical
            - high
            - medium
            - low
        state:
          type: string
          enum:
            - Detected
            - Analyzing
            - Remediating
            - Resolved
            - Escalated
            - Failed
        resource:
          type: string
          example: Deployment/payment-service
        description:
          type: string
        riskScore:
          type: integer
        detectedAt:
          type: string
          format: date-time
        resolvedAt:
          type: string
          format: date-time
        age:
          type: string
        assignedTo:
          type: string
        labels:
          type: object
          additionalProperties:
            type: string
    Error:
      type: object
      required:
        - apiVersion
        - kind
        - error
      properties:
        apiVersion:
          type: string
          example: v1
        kind:
          type: string
          example: Error
        error:
          oneOf:
            - type: object
              required:
                - code
                - message
              properties:
                code:
                  type: integer
                  example: 404
                message:
                  type: string
                  example: Resource not found
                details:
                  type: string
            - type: string
        code:
          type: integer
          description: Top-level code (only used by some endpoints).
          example: 400
  responses:
    Unauthorized:
      description: Missing or invalid API token
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
    RateLimited:
      description: Rate limit exceeded for this token's role
      content:
        application/json:
          schema:
            $ref: '#/components/schemas/Error'
  securitySchemes:
    ApiKeyAuth:
      type: apiKey
      in: header
      name: Authorization
      description: >-
        Bearer token issued by the operator. Format: `Authorization: Bearer
        <token>`.

````