Archive2

How to get alert info in JSON format instead of CSV- SPLUNK_ARG_8

MonicaRavichand
Engager

I am currently using SPLUNK_ARG_8 in a python script after an alert is triggered to get the CSV file, but converting it to JSON from CSV was a mess via python, so is there anyway to set SPLUNK_ARG_8 maybe in a conf file to json format?

0 Karma
Reply