Hello there! I'd like to create an alert for error logs with exclusion for "expected errors". Something like

val count = db.query(
    SELECT COUNT(*)
    FROM logs 
    WHERE level = 'ERROR' and 
    !(k8s.namespace = 'foo' & message CONTAINS 'bar') and 
    !(k8s.namespace = 'zeliboba' and logger = 'logger_name' and message LIKE '%expected%')
)

if(count > 0 ) slackAlert("<message>")

I understand how to create alerts for simple queries but I do not understand how to write "complex" queries in query builder. Could you please advice me?

Please check https://signoz.io/docs/userguide/logs_clickhouse_queries/

Thank you @Srikanth Chekuri!