My script works great On-Premise, but Splunk Cloud rejects it
I use the requests module to do HTTPS requests like this one
response = requests.post(url, auth=(user, pwd), headers=headers ,data=data)
In Splunk Cloud it gets rejected because it thinks it might be insecure, when passing parameters to the requests module, I must do parameter=
Possible insecure HTTP Connection. Match: requests.post Positional arguments, ["?"]; Keyword arguments, {"auth": "?", "headers": "?", "data": "?"} File: bin/alert_event.py Line Number: 46
I don't know how to fix this.
Anyone knows how to pass this test?
Hello,
were you able to solve the problem? The same is happening to me.
Thanks.
Before calling requests.post, add something like:
if not url.startswith("https"):
logger.critical("URL must be HTTPS")
exit(1)
This way when they vet your app they can see that a non-https url couldnt be used.