All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk Addon builder logs

new
Loves-to-Learn
a month ago

Hi 
I have Created a Splunk Addon builder using Splunk Enterprise version 9.
And i installed in Splunk Cloud now i am facing some issues with addon , how can i check the logs of this addon in splunk cloud?Pls assist.

Labels (1)
Labels
0 Karma
Reply

new
Loves-to-Learn
a month ago

i tried with above but it is not showing anything

0 Karma
Reply

Meett
Splunk Employee
Splunk Employee
a month ago

Hello @new ,

Can you please share the exact issue you are seeing? l.e., what part of add-on is not working ? are you seeing any ERRORs to check ? 

0 Karma
Reply

new
Loves-to-Learn
a month ago

@Meett Thanks for responding.
I have created a Addon builder called TA-splunk-webhook-alerts and i have attached it to a alerts So, whenever that alert is triggered it will trigger the addon builder.
this addon builder contains a python script which calls some api to push the alert data.

new_0-1750160927496.png

The above picture shows the some of python script. if you see the there are some log statements in it.
like 

helper.log_info("username={}".format(username))

my question is whenever this script is executed where can i find these logs?
i have not done any specific configuration for logging.
helper.log_info is default one.

FYI: I have developed this addon builder using splunk enterprise version 9 and installed in splunk cloud.
 in splunk enterprise i am able to find the location of logs($SPLUNK_HOME/var/log/splunk) but not in splunk cloud.
Please assist to find the logs in splunk cloud.

 

0 Karma
Reply

Meett
Splunk Employee
Splunk Employee
a month ago

Hello @new , 

Can you try to directly run search with log file name or an keyword around logs of that custom add-on on Splunk Cloud and check how it goes?

0 Karma
Reply

new
Loves-to-Learn
a month ago

what will be the log file name?
As I mentioned i did not do any configuration for logging.
helper.log_info was already present in the default python script.

0 Karma
Reply

Prewin27
Contributor
a month ago

@new 

You can start with  _internal index,

For eg:

index=_internal sourcetype=*addon* OR source=*ta_* OR source=*addon*

Regards,
Prewin
Splunk Enthusiast | Always happy to help! If this answer helped you, please consider marking it as the solution or giving a Karma. Thanks!

0 Karma
Reply
Register for .conf25!
Get Updates on the Splunk Community!

Deep Dive into Federated Analytics: Unlocking the Full Power of Your Security Data

In today’s complex digital landscape, security teams face increasing pressure to protect sprawling data across ...

Your summer travels continue with new course releases

Summer in the Northern hemisphere is in full swing, and is often a time to travel and explore. If your summer ...

From Alert to Resolution: How Splunk Observability Helps SREs Navigate Critical ...

It's 3:17 AM, and your phone buzzes with an urgent alert. Wire transfer processing times have spiked, and ...