All Apps and Add-ons

This app is not compatible with jQuery 3.5./ This app is not compatible with Python 3.

JayD
Explorer

Hello friends,

last week we updated a few apps based on feedback from the Upgrade Readiness App. Admittedly, the apps were forgotten about for about a year. Yet, we are receiving e-mail notifications about deprecated jQuery or python version for given apps. Since all the apps are "Built by Splunk Inc.", I have a feeling this should not be the case. 

Is it safe to [Dismiss App Alert] in the Upgrade Readiness App? Will the alert re-appear after the next scan?

Labels (2)
0 Karma
1 Solution

tej57
Contributor

Hello @JayD,

As you already mentioned that the apps have been forgotten for over a year, it is likely that the latest details have not been updated on the instance. You can first ensure that you have upgraded the Upgrade Readiness App to the latest version and re-run the scan. If the above apps still fail, you can follow the following steps as a workaround:

- Run the following script - /opt/splunk/etc/apps/python_upgrade_readiness_app/bin/pura_get_all_apps.py (Internet connection will be required).
- Create a directory named app_list in the following path - /opt/splunk/etc/apps/python_upgrade_readiness_app/local/
- Place the attached splunkbaseapps.csv in the app_list folder.
- Re-run the scan and check for the final report.
 
Thanks,
Tejas.
 
---
If the above solution helps, an upvote is appreciated.

 

View solution in original post

tej57
Contributor

Hello @JayD,

As you already mentioned that the apps have been forgotten for over a year, it is likely that the latest details have not been updated on the instance. You can first ensure that you have upgraded the Upgrade Readiness App to the latest version and re-run the scan. If the above apps still fail, you can follow the following steps as a workaround:

- Run the following script - /opt/splunk/etc/apps/python_upgrade_readiness_app/bin/pura_get_all_apps.py (Internet connection will be required).
- Create a directory named app_list in the following path - /opt/splunk/etc/apps/python_upgrade_readiness_app/local/
- Place the attached splunkbaseapps.csv in the app_list folder.
- Re-run the scan and check for the final report.
 
Thanks,
Tejas.
 
---
If the above solution helps, an upvote is appreciated.

 

JayD
Explorer

Thank you for the reply ! Unfortunately, app upgrade did not help and the deployment does not have an internet connection. Is there a way to fabricate the .csv ?

0 Karma

tej57
Contributor

In that case, you can download the app from Splunkbase and run the python script on a test server and update the csv file on the production server in the above mentioned location. 

 

Otherwise as mentioned in the following document, the scan will run only with the packages shipped - https://docs.splunk.com/Documentation/Splunk/9.2.1/UpgradeReadiness/Scan#Disable_app_list_updates

tej57_0-1716901632835.png

 

Thanks,
Tejas.

0 Karma

JayD
Explorer

Thank you for the pointer. I have been doing that at the time I got your response. 

On the test server, the apps we are having issues with passed jQuery scan, but still appear as FAILED in Python scan.
(Details :This newly installed App has not completed the necessary scan.
Required Action: Please check again in 24 hours when the necessary scan is complete.)

Is it possible to force the "necessary scan" to run? In another post, I read this means that "the latest version of those apps / addons were not updated in the Upgrade Readiness App database file".

Once again, tysm for your help so far.  

0 Karma

tej57
Contributor

Running the script itself is updating the internal database. If it gives you an option to run the scan forcefully, you can go ahead with that. Otherwise, it should get updated every 24 hours.

 

Thanks,
Tejas.

JayD
Explorer

I've managed to toy with the .csv to the point where it lets my apps pass.

Let's take, for example, Splunk Security Essentials.
Record in the .csv reads:
Splunk_Security_Essentials,Splunk Security Essentials,https://splunkbase.splunk.com/app/3435/,3.6.0#8.2|9.0|9.1|;..........
The latest version is 3.8.0. I neded to add the current version of the app, and assign my Splunk version to it:
Splunk_Security_Essentials,Splunk Security Essentials,https://splunkbase.splunk.com/app/3435/,3.8.0#9.1|;3.6.0#8.2|9.0|9.1|

Making this change to the .csv under /opt/splunk/etc/apps/python_upgrade_readiness_app/local/splunkbaseapps.csv did not help.
However, the upgrade readiness app no longer fails Splunk Security Essentials after moving the edited .csv to these locations:
/opt/splunk/etc/apps/python_upgrade_readiness_app/bin/libs_py2/pura_libs_utils/splunkbaseapps.csv
/opt/splunk/etc/apps/python_upgrade_readiness_app/bin/libs_py3/pura_libs_utils/splunkbaseapps.csv

After rewriting the .csv files, it is of course needed to restart Splunk and Run New Scan in the Upgrade Readiness App.

I will be accepting your original answer, as it is very straightforward ; and the way to go for most people who will encounter this issue.
Thank you Tejas, and happy Splunking!

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...