diff --git a/misc/alert_rules.json b/misc/alert_rules.json
index e617a0959d..3390fae048 100644
--- a/misc/alert_rules.json
+++ b/misc/alert_rules.json
@@ -783,5 +783,20 @@
     "rule": "applications.app_type = \"suricata_extract\" && application_metrics.metric = \"zero_sized\" && application_metrics.value > \"0\"",
     "name": "Suricata Extract Submit zero sized files > 0",
     "severity": "warning"
+  },
+  {
+    "rule": "applications.app_type = \"cape\" && application_metrics.metric = \"reported\" && application_metrics.value > 0",
+    "name": "CAPE reported = 0, nothing is processing",
+    "severity": "critical"
+  },
+  {
+    "rule": "applications.app_type = \"cape\" && application_metrics.metric = \"critical\" && application_metrics.value > 0",
+    "name": "CAPE Criticals > 0",
+    "severity": "critical"
+  },
+  {
+    "rule": "applications.app_type = \"cape\" && application_metrics.metric = \"error\" && application_metrics.value > 0",
+    "name": "CAPE Errors > 0",
+    "severity": "critical"
   }
 ]