Previously, I was using CSV reader and alert scripts to process a saved search and export to a 3rd party tool (JIRA). The splunk "title" or "name" gets turned into an "issue summary".
My previous code looked like:
search_summary = sys.argv
search_url = sys.argv
Now, I'm trying to modify this into a search command using Intersplunk:
search_results, dummy_results, search_settings = splunk.Intersplunk.getOrganizedResults()
How can i retrieve the search's "name" and/or a URL pointing back to it?
These are all passed as arguments to a script when alerting. Try setting your saved search to alert and capture the arguments.