Hi @manjunathmeti 

thanks for reply

I tried OUTPUT and its the same behavior

Hi @ITWhisperer 

Thenks for reply

count_err is exist in xxx.csv

I forgot to mention that when I do that it does appear

[inputlookup xxx.csv |search dag_id=**** |table system, time_range, count_err]

but I have to do that in lookup

Thank

Does count_err have a value for every id you have in your events?

yes 

it is a values for id in my events

How large is your csv?

hi 

5 columns and 79 rows

OK so this size doesn't look like it should give you a problem, so it is possibly down to your actual data. Does it fail for all values of id? Are there other fields that you could try adding instead of count_err which might work? Can you break down the problem further to try and isolate the issue?

In the CSV file I have id, system, time_range, count_err

I received a ready dashboard that monitors the DAGS from the AIRFLOW
I am interested in creating for each DAG its own alert with the same logic of the dashboard only with a small change,

in the dashboard I mark success if it returned from the AIRFLOW logs success in a time frame I gave the same field in the CSV file and ERROR if it did not return success or returned FAILED,
In the alert, I want that if I receive faild as the number of times listed in the CSV file or if it does not return success at the time_range I specified in the CSV file, that it be ERROR
The dashboard is taken from the file with the syntax of 

[|inputlookup xxx.csv .....]
|lookup xxx.csv dag_id OUTPUTNEW system time_range

And I want to add a field

|lookup xxx.csv dag_id OUTPUTNEW system time_range count_err

And I don't know why the extra field is not displayed

I note that it does not alert the field that does not exist,
When I make another file that doesn't have the field, it does warn