From elastalert documentation, I found that by default elastalert ignores the documents that are already processed/seen in previous overlapping query.
'already seen' refers to documents that were already counted in a previous overlapping query and will be ignored
Is there any way to override this functionality? Or can someone point out what part of the code filters out these documents?
