Splunk Dev
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

How to fix failure in app-inspect | check_for_python_udp_network_communications?

jabezds
Path Finder
‎07-26-2022 12:58 AM

Hi , 

Noticed this failure in the app inspect report(Version 2.22.0), Is there a way we can fix this on splunk cloud ?

Below is the failure details in the report:

Please check for inbound or outbound UDP network communications.Any programmatic UDP network communication is prohibited due to security risks in Splunk Cloud and App Certification.The use or instruction to configure an app using Settings -> Data Inputs -> UDP within Splunk is permitted. (Note: UDP configuration options are not available in Splunk Cloud and as such do not impose a security risk. File: bin/botocore/session.py Line Number: 204

 

Thanks,

Jabez.

 

0 Karma
Reply

sloshburch
Ultra Champion
‎08-15-2022 02:46 PM

Hi! FYI that I moved this from Splunk Platform to this Splunk Development > Building for the Splunk Platform section in hopes to get more eyes on it.

Also, it's worth pointing out that in general, AppInspect has a handful of checks to ensure unsecure UDP is not being used: check_inputs_conf_for_udp, check_for_python_udp_network_communications, and check_for_udp_communication_in_javascript. See https://dev.splunk.com/enterprise/reference/appinspect/appinspectcheck/ for more information.

In this case, the library being used is provided by a 3rd party and it is understood that eliminating that code is not practical. Therefore, there are discussions to consider how to navigate this challenge.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...