elasticsearch
Elasticsearch search and analytics engine with full-text search. Use for search and logging.
Best use case
elasticsearch is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Elasticsearch search and analytics engine with full-text search. Use for search and logging.
Teams using elasticsearch should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/elasticsearch/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How elasticsearch Compares
| Feature / Agent | elasticsearch | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Elasticsearch search and analytics engine with full-text search. Use for search and logging.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Elasticsearch
Elasticsearch is a distributed search and analytics engine built on Apache Lucene. It is the heart of the ELK Stack (Elastic, Logstash, Kibana) and a leading Vector Database for AI.
## When to Use
- **Full-Text Search**: "Did you mean?" suggestions, fuzzy search, relevance scoring.
- **Log Analytics**: Storing terabytes of logs (Observability).
- **Vector Search (2025)**: Storing embeddings for Semantic Search / RAG.
## Quick Start
```bash
# REST API - Search for "bike"
GET /products/_search
{
"query": {
"match": {
"description": "bike"
}
}
}
```
## Core Concepts
### Inverted Index
Maps words to documents. "Bike" -> [Doc1, Doc5]. Makes text search nearly instant.
### Shards & Replicas
- **Shard**: A slice of the index. Distributes data across nodes.
- **Replica**: Copy of a shard for High Availability.
### ES|QL (2024+)
Elasticsearch Query Language. A piped language (like SQL/Splunk) to simplify querying.
`FROM logs | WHERE status == 500 | LIMIT 10`
## Best Practices (2025)
**Do**:
- **Use `kNN` Search**: Native vector search support for AI applications.
- **Use ILM (Index Lifecycle Management)**: Move old logs to cheaper cold storage automatically.
- **Use Datastreams**: Optimized abstraction for time-series/logs (append-only).
**Don't**:
- **Don't use as primary source of truth**: It is eventually consistent and partition-tolerant, but relational DBs are safer for "money" data.
- **Don't oversight mapping explosion**: Too many unique fields map crash the cluster.
## References
- [Elasticsearch Guide](https://www.elastic.co/guide/en/elasticsearch/reference/current/index.html)Related Skills
template
Expert [skill-name] assistance covering [feature 1], [feature 2], and [feature 3]. Use when [working with X], [debugging Y], or [implementing Z].
zsh
Zsh shell with oh-my-zsh. Use for terminal shell.
zed
Zed high-performance collaborative editor. Use for fast editing.
xcode
Xcode Apple development IDE with simulators. Use for iOS/macOS development.
webstorm
WebStorm JavaScript IDE with debugging. Use for web development.
webpack
Webpack module bundler with loaders and plugins. Use for bundling.
warp
Warp modern terminal with AI. Use for terminal work.
vscode
Visual Studio Code editor with extensions and debugging. Use for code editing.
vite
Vite fast build tool with HMR. Use for modern frontend builds.
visual-studio
Visual Studio IDE for Windows with debugging and profiling. Use for .NET development.
vim
Vim text editor with motions, macros, and plugins. Use for terminal editing.
turbopack
Turbopack Rust-powered bundler. Use for fast builds.