Skip to main content

sort

Order results by one or more fields, ascending or descending.

Syntax

| sort [+|-]<field> [, [+|-]<field> ...]

Prefix with - for descending, + for ascending (default).

Examples

-- Sort by count descending
| stats count by source | sort -count

-- Sort ascending (default)
| sort duration_ms

-- Multiple sort keys
| sort -count, +source

-- Sort with limit (optimized: TopK pushdown)
| sort -count | head 10

Notes

| sort -field | head N is automatically optimized into a TopK operation.
Sort is a blocking operator -- it must consume all input before producing output.

See Also

head -- Limit results
top -- Shortcut for sort + head

Syntax
Examples
Notes
See Also