Unable to utilize logics apps to feed data in a watchlist

GaryBushey This is what I asked, When you use the Logic app action to load an entity then you can access the raw (JSON) data that has been returned since no value returned, I couldn't find the what is actually not returning the data.

Is there any blog or documentation available of the implementation that you can share? All I need is to add an item in the custom watchlist doesnt matter what the trigger is.

abubakr786 Not quite sure what you are asking.  When you use the Logic app action to load an entity then you can access the raw (JSON) data that has been returned.

Not sure what you mean by "...the exact value of the entity that is added to the watchlist" as a watchlist can contain a lot of different types of data.   It all depends on how you have setup the watchlist.

GaryBushey What I meant to ask was that at any part in the logic app does the input/output in raw contains the fetched value of an entity which is the exact value of the entity that is added to the watchlist.

Please also share if the query being used to trigger certain alert/incident requires projection or retrieval of entities those are added in watchlists, however the values required by Get action are part of the payload of the event.

abubakr786 GaryBushey correct me if I'm wrong, but i believe you will never get any entities/other useful information in your logic app/watchlist unless you run the logic app on an actual alert. Just pressing "run trigger" will end up returning blanks regardless since there is no information in the initial trigger "When a response to an Azure Sentinel alert is triggered" 

abubakr786 No, you must load them like you were doing in your Logic App.