topic Re: How do I use the contents of a log in a script triggered by an alert? in Alerting https://community.splunk.com/t5/Alerting/How-do-I-use-the-contents-of-a-log-in-a-script-triggered-by-an/m-p/186453#M3115 <P>Yes it,<BR /> You need to use the alert parameters for the script. The search needs to be formatted so that you get the content in the field to use in the script. Pass the script in savedsearch window or <CODE>action.script.filename = &lt;script filename&gt;</CODE></P> <P>More documentation here:</P> <P><CODE><A href="http://docs.splunk.com/Documentation/Splunk/6.0.2/Alert/Setupalertactions" target="test_blank">http://docs.splunk.com/Documentation/Splunk/6.0.2/Alert/Setupalertactions</A><BR /> <A href="https://wiki.splunk.com/Community:Use_Splunk_alerts_with_scripts_to_create_a_ticket_in_your_ticketing_system" target="test_blank">https://wiki.splunk.com/Community:Use_Splunk_alerts_with_scripts_to_create_a_ticket_in_your_ticketing_system</A><BR /> <A href="http://wiki.splunk.com/Community:TroubleshootingAlertScripts" target="test_blank">http://wiki.splunk.com/Community:TroubleshootingAlertScripts</A></CODE></P> <P>Thanks</P> Thu, 13 Mar 2014 17:46:14 GMT linu1988 2014-03-13T17:46:14Z How do I use the contents of a log in a script triggered by an alert? https://community.splunk.com/t5/Alerting/How-do-I-use-the-contents-of-a-log-in-a-script-triggered-by-an/m-p/186452#M3114 <P>I have a realtime alert that's kicking off a python script, and I'd like to use the contents of the log entry that triggered the alert in the script. Is that possible?</P> Thu, 13 Mar 2014 16:01:33 GMT https://community.splunk.com/t5/Alerting/How-do-I-use-the-contents-of-a-log-in-a-script-triggered-by-an/m-p/186452#M3114 treydismukes 2014-03-13T16:01:33Z Re: How do I use the contents of a log in a script triggered by an alert? https://community.splunk.com/t5/Alerting/How-do-I-use-the-contents-of-a-log-in-a-script-triggered-by-an/m-p/186453#M3115 <P>Yes it,<BR /> You need to use the alert parameters for the script. The search needs to be formatted so that you get the content in the field to use in the script. Pass the script in savedsearch window or <CODE>action.script.filename = &lt;script filename&gt;</CODE></P> <P>More documentation here:</P> <P><CODE><A href="http://docs.splunk.com/Documentation/Splunk/6.0.2/Alert/Setupalertactions" target="test_blank">http://docs.splunk.com/Documentation/Splunk/6.0.2/Alert/Setupalertactions</A><BR /> <A href="https://wiki.splunk.com/Community:Use_Splunk_alerts_with_scripts_to_create_a_ticket_in_your_ticketing_system" target="test_blank">https://wiki.splunk.com/Community:Use_Splunk_alerts_with_scripts_to_create_a_ticket_in_your_ticketing_system</A><BR /> <A href="http://wiki.splunk.com/Community:TroubleshootingAlertScripts" target="test_blank">http://wiki.splunk.com/Community:TroubleshootingAlertScripts</A></CODE></P> <P>Thanks</P> Thu, 13 Mar 2014 17:46:14 GMT https://community.splunk.com/t5/Alerting/How-do-I-use-the-contents-of-a-log-in-a-script-triggered-by-an/m-p/186453#M3115 linu1988 2014-03-13T17:46:14Z