From 8081f68e8f06b361b20a2695f1a350963d30b230 Mon Sep 17 00:00:00 2001
From: Andrei Banaru <a.banaru@iaea.org>
Date: Mon, 20 Oct 2025 17:07:48 +0200
Subject: [PATCH] fix: alert.digest_mode should be dynamic

---
 contentctl/output/templates/savedsearches_detections.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/contentctl/output/templates/savedsearches_detections.j2 b/contentctl/output/templates/savedsearches_detections.j2
index d1ef66b9..cf2d7d9f 100644
--- a/contentctl/output/templates/savedsearches_detections.j2
+++ b/contentctl/output/templates/savedsearches_detections.j2
@@ -69,7 +69,7 @@ action.sendtophantom.param.phantom_server = {{ detection.deployment.alert_action
 action.sendtophantom.param.sensitivity = {{ detection.deployment.alert_action.phantom.sensitivity | custom_jinja2_enrichment_filter(detection) }}
 action.sendtophantom.param.severity = {{ detection.deployment.alert_action.phantom.severity | custom_jinja2_enrichment_filter(detection) }}
 {% endif %}
-alert.digest_mode = 1
+alert.digest_mode = {% if detection.tags.throttling and detection.tags.throttling.fields %}0{% else %}1{% endif +%}
 disabled = {{ (not detection.enabled_by_default) | lower }}
 enableSched = 1
 allow_skew = 100%