Merge pull request #20 from splunk-soar-connectors/next

Merging next to main for release 2.10.0
splunk-soar-connectors · Apr 27, 2022 · 49cfa9b · 49cfa9b
2 parents 2d10710 + da63ee1
commit 49cfa9b
Show file tree

Hide file tree

Showing 16 changed files with 114 additions and 99 deletions.
diff --git a/.github/workflows/linting.yml b/.github/workflows/linting.yml
@@ -1,7 +1,7 @@
 name: Linting
 on: [push, pull_request]
 jobs:
-  lint: 
+  lint:
     # Run per push for internal contributers. This isn't possible for forked pull requests,
     # so we'll need to run on PR events for external contributers.
     # String comparison below is case insensitive.

diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
@@ -1,5 +1,5 @@
 name: Semgrep
-on: 
+on:
   pull_request_target:
     branches:
       - next
@@ -21,8 +21,8 @@ jobs:
         echo "REPOSITORY=${{ github.event.pull_request.head.repo.full_name }}" >> $GITHUB_ENV
         echo "REF=${{ github.event.pull_request.head.ref }}" >> $GITHUB_ENV
      - uses: 'phantomcyber/dev-cicd-tools/github-actions/semgrep@main'
-       with: 
+       with:
         SEMGREP_DEPLOYMENT_ID: ${{ secrets.SEMGREP_DEPLOYMENT_ID }}
         SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
-        REPOSITORY: ${{ github.repository }} 
+        REPOSITORY: ${{ github.repository }}
         REF: ${{ github.ref }}
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -1,11 +1,11 @@
 repos:
 -   repo: https://github.com/phantomcyber/dev-cicd-tools
-    rev: v1.11
+    rev: v1.13
     hooks:
     -   id: org-hook
     -   id: package-app-dependencies
 -   repo: https://github.com/Yelp/detect-secrets
-    rev: v1.1.0
+    rev: v1.2.0
     hooks:
     -   id: detect-secrets
         args: ['--no-verify', '--exclude-files', '^splunk.json$']
diff --git a/README.md b/README.md
@@ -2,11 +2,11 @@
 # Splunk
 
 Publisher: Splunk  
-Connector Version: 2\.9\.0  
+Connector Version: 2\.10\.0  
 Product Vendor: Splunk Inc\.  
 Product Name: Splunk Enterprise  
 Product Version Supported (regex): "\.\*"  
-Minimum Product Version: 5\.1\.0  
+Minimum Product Version: 5\.2\.0  
 
 This app integrates with Splunk to update data on the device, in addition to investigate and ingestion actions
 
@@ -370,7 +370,6 @@ PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS
 #### Action Output
 DATA PATH | TYPE | CONTAINS
 --------- | ---- | --------
-action\_result\.status | string | 
 action\_result\.parameter\.ip\_hostname | string |  `ip`  `host name` 
 action\_result\.parameter\.last\_n\_days | numeric | 
 action\_result\.data\.\*\.\_bkt | string | 
@@ -387,9 +386,10 @@ action\_result\.data\.\*\.linecount | string |
 action\_result\.data\.\*\.source | string | 
 action\_result\.data\.\*\.sourcetype | string | 
 action\_result\.data\.\*\.splunk\_server | string |  `host name` 
+action\_result\.status | string | 
+action\_result\.message | string | 
 action\_result\.summary\.sid | string | 
 action\_result\.summary\.total\_events | numeric | 
-action\_result\.message | string | 
 summary\.total\_objects | numeric | 
 summary\.total\_objects\_successful | numeric |   
 
@@ -435,12 +435,13 @@ PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS
 #### Action Output
 DATA PATH | TYPE | CONTAINS
 --------- | ---- | --------
-action\_result\.status | string | 
 action\_result\.parameter\.attach\_result | boolean | 
 action\_result\.parameter\.command | string | 
 action\_result\.parameter\.display | string | 
+action\_result\.parameter\.end\_time | string | 
 action\_result\.parameter\.parse\_only | boolean | 
 action\_result\.parameter\.query | string |  `splunk query` 
+action\_result\.parameter\.start\_time | string | 
 action\_result\.data\.\*\.\_bkt | string | 
 action\_result\.data\.\*\.\_cd | string | 
 action\_result\.data\.\*\.\_indextime | string | 
@@ -486,9 +487,10 @@ action\_result\.data\.\*\.spent | string |
 action\_result\.data\.\*\.splunk\_server | string |  `host name` 
 action\_result\.data\.\*\.user | string | 
 action\_result\.data\.\*\.values\(source\) | string | 
+action\_result\.status | string | 
+action\_result\.message | string | 
 action\_result\.summary\.sid | string | 
 action\_result\.summary\.total\_events | numeric | 
-action\_result\.message | string | 
 summary\.total\_objects | numeric | 
 summary\.total\_objects\_successful | numeric |   
 
@@ -514,7 +516,6 @@ PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS
 #### Action Output
 DATA PATH | TYPE | CONTAINS
 --------- | ---- | --------
-action\_result\.status | string | 
 action\_result\.parameter\.comment | string | 
 action\_result\.parameter\.event\_ids | string |  `splunk notable event id` 
 action\_result\.parameter\.integer\_status | numeric | 
@@ -526,9 +527,10 @@ action\_result\.data\.\*\.failure\_count | numeric |
 action\_result\.data\.\*\.message | string | 
 action\_result\.data\.\*\.success | boolean | 
 action\_result\.data\.\*\.success\_count | numeric | 
+action\_result\.status | string | 
+action\_result\.message | string | 
 action\_result\.summary\.sid | string | 
 action\_result\.summary\.updated\_event\_id | string | 
-action\_result\.message | string | 
 summary\.total\_objects | numeric | 
 summary\.total\_objects\_successful | numeric |   
 
@@ -552,14 +554,14 @@ PARAMETER | REQUIRED | DESCRIPTION | TYPE | CONTAINS
 #### Action Output
 DATA PATH | TYPE | CONTAINS
 --------- | ---- | --------
-action\_result\.status | string | 
 action\_result\.parameter\.data | string | 
 action\_result\.parameter\.host | string |  `ip`  `host name` 
 action\_result\.parameter\.index | string | 
 action\_result\.parameter\.source | string | 
 action\_result\.parameter\.source\_type | string | 
 action\_result\.data | string | 
-action\_result\.summary | string | 
+action\_result\.status | string | 
 action\_result\.message | string | 
+action\_result\.summary | string | 
 summary\.total\_objects | numeric | 
 summary\.total\_objects\_successful | numeric | 
diff --git a/exclude_files.txt b/exclude_files.txt
@@ -2,4 +2,4 @@ docker-compose.yml
 .gitlab-ci.yml
 Makefile
 .git*
-whitesource-results
+whitesource-results
diff --git a/logo_splunk.svg b/logo_splunk.svg
diff --git a/logo_splunk_dark.svg b/logo_splunk_dark.svg
diff --git a/readme.html b/readme.html
@@ -337,4 +337,4 @@ <h2>Port Information</h2>
         </table>
     </p>
   </body>
-</html>
+</html>
diff --git a/release_notes/2.10.0.md b/release_notes/2.10.0.md
@@ -0,0 +1 @@
+* Fixed an issue in On Poll action where the index time was not honored during scheduled ingestion [PAPP-25411]
diff --git a/release_notes/release_notes.html b/release_notes/release_notes.html
@@ -1,5 +1,9 @@
-<b>Splunk Release Notes - Published by Splunk April 01, 2022</b>
+<b>Splunk Release Notes - Published by Splunk April 26, 2022</b>
 <br><br>
+<b>Version 2.10.0 - Released April 26, 2022</b>
+<ul>
+<li>Fixed an issue in On Poll action where the index time was not honored during scheduled ingestion [PAPP-25411]</li>
+</ul>
 <b>Version 2.9.0 - Released April 01, 2022</b>
 <ul>
 <li>Added 2 new fields ("start_time" and "end_time") to "run query" action [PAPP-24566]</li>
-Original file line number
+Diff line change
@@ Expand Up / @@ -337,4 +337,4 @@ <h2>Port Information</h2> @@
             </table>
         </p>
       </body>
-    </html>
+    </html>
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		* Fixed an issue in On Poll action where the index time was not honored during scheduled ingestion [PAPP-25411]