Hello friends,
last week we updated a few apps based on feedback from the Upgrade Readiness App. Admittedly, the apps were forgotten about for about a year. Yet, we are receiving e-mail notifications about deprecated jQuery or python version for given apps. Since all the apps are "Built by Splunk Inc.", I have a feeling this should not be the case.
Is it safe to [Dismiss App Alert] in the Upgrade Readiness App? Will the alert re-appear after the next scan?
Hello @JayD,
As you already mentioned that the apps have been forgotten for over a year, it is likely that the latest details have not been updated on the instance. You can first ensure that you have upgraded the Upgrade Readiness App to the latest version and re-run the scan. If the above apps still fail, you can follow the following steps as a workaround:
Hello @JayD,
As you already mentioned that the apps have been forgotten for over a year, it is likely that the latest details have not been updated on the instance. You can first ensure that you have upgraded the Upgrade Readiness App to the latest version and re-run the scan. If the above apps still fail, you can follow the following steps as a workaround:
Thank you for the reply ! Unfortunately, app upgrade did not help and the deployment does not have an internet connection. Is there a way to fabricate the .csv ?
In that case, you can download the app from Splunkbase and run the python script on a test server and update the csv file on the production server in the above mentioned location.
Otherwise as mentioned in the following document, the scan will run only with the packages shipped - https://docs.splunk.com/Documentation/Splunk/9.2.1/UpgradeReadiness/Scan#Disable_app_list_updates
Thanks,
Tejas.
Thank you for the pointer. I have been doing that at the time I got your response.
On the test server, the apps we are having issues with passed jQuery scan, but still appear as FAILED in Python scan.
(Details :This newly installed App has not completed the necessary scan.
Required Action: Please check again in 24 hours when the necessary scan is complete.)
Is it possible to force the "necessary scan" to run? In another post, I read this means that "the latest version of those apps / addons were not updated in the Upgrade Readiness App database file".
Once again, tysm for your help so far.
Running the script itself is updating the internal database. If it gives you an option to run the scan forcefully, you can go ahead with that. Otherwise, it should get updated every 24 hours.
Thanks,
Tejas.
I've managed to toy with the .csv to the point where it lets my apps pass.
Let's take, for example, Splunk Security Essentials.
Record in the .csv reads:
Splunk_Security_Essentials,Splunk Security Essentials,https://splunkbase.splunk.com/app/3435/,3.6.0#8.2|9.0|9.1|;..........
The latest version is 3.8.0. I neded to add the current version of the app, and assign my Splunk version to it:
Splunk_Security_Essentials,Splunk Security Essentials,https://splunkbase.splunk.com/app/3435/,3.8.0#9.1|;3.6.0#8.2|9.0|9.1|
Making this change to the .csv under /opt/splunk/etc/apps/python_upgrade_readiness_app/local/splunkbaseapps.csv did not help.
However, the upgrade readiness app no longer fails Splunk Security Essentials after moving the edited .csv to these locations:
/opt/splunk/etc/apps/python_upgrade_readiness_app/bin/libs_py2/pura_libs_utils/splunkbaseapps.csv
/opt/splunk/etc/apps/python_upgrade_readiness_app/bin/libs_py3/pura_libs_utils/splunkbaseapps.csv
After rewriting the .csv files, it is of course needed to restart Splunk and Run New Scan in the Upgrade Readiness App.
I will be accepting your original answer, as it is very straightforward ; and the way to go for most people who will encounter this issue.
Thank you Tejas, and happy Splunking!