This connects Claude to Elasticsearch's ES|QL query language, the piped syntax that replaced the old JSON DSL. It auto-detects whether you're on Serverless or a versioned cluster, pulls index schemas so you never guess field names, and handles the quirks like time series indices requiring TS syntax instead of FROM. Useful for log analysis, metrics aggregation, and exploratory queries when you want natural language over manual query construction. The skill knows about version-specific features like MATCH for full-text search and LOOKUP JOIN for enrichment, falling back gracefully on older clusters. Ships with detailed references on time series queries and search strategies if you need to understand what it's generating.
npx skills add https://github.com/elastic/agent-skills --skill elasticsearch-esql