ContextQMD
Back to Elasticsearch

Delta

docs/reference/query-languages/esql/_snippets/functions/examples/delta.md

9.4.0507 B
Original Source

% This is generated by ESQL's AbstractFunctionTestCase. Do not edit it. See ../README.md for how to regenerate it.

Example

esql
TS k8s
| WHERE pod == "one"
| STATS tx = SUM(DELTA(network.bytes_in)) BY cluster, time_bucket = TBUCKET(10minute)
tx:doublecluster:keywordtime_bucket:datetime
-351.0prod2024-05-10T00:00:00.000Z
552.0qa2024-05-10T00:00:00.000Z
127.0staging2024-05-10T00:00:00.000Z
280.0prod2024-05-10T00:10:00.000Z