Building for the Splunk Platform

How to pass Splunk Cloud verification for my Python script using the HTTP requests module?

guarisma
Contributor

My script works great On-Premise, but Splunk Cloud rejects it

I use the requests module to do HTTPS requests like this one

response = requests.post(url, auth=(user, pwd), headers=headers ,data=data)

In Splunk Cloud it gets rejected because it thinks it might be insecure, when passing parameters to the requests module, I must do parameter=

Possible insecure HTTP Connection. Match: requests.post Positional arguments, ["?"]; Keyword arguments, {"auth": "?", "headers": "?", "data": "?"} File: bin/alert_event.py Line Number: 46

I don't know how to fix this.

Anyone knows how to pass this test?

Labels (1)
0 Karma

lpuentes
New Member

Hello,

were you able to solve the problem? The same is happening to me.

Thanks. 

0 Karma

livehybrid
Contributor

Before calling requests.post, add something like:

if not url.startswith("https"):
    logger.critical("URL must be HTTPS")
    exit(1)

This way when they vet your app they can see that a non-https url couldnt be used.  

0 Karma
Get Updates on the Splunk Community!

BSides Splunk 2022 - The Call for Papers is now Open!

TLDR; Main Site: https://bsidessplunk.com CFP Site: https://bsidessplunk.com/cfp CFP Opens: December 15th, ...

Sending Metrics to Splunk Enterprise With the OpenTelemetry Collector

This blog post is part of an ongoing series on OpenTelemetry. The OpenTelemetry project is the second largest ...

What's New in Splunk Cloud Platform 9.0.2208?!

Howdy!  We are happy to share the newest updates in Splunk Cloud Platform 9.0.2208! Analysts can benefit ...