Splunk Enterprise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Compare github repos using splunk?

karthi2809
Builder
‎06-06-2022 04:59 AM

Hi ,

Thanks in Advance,

We have requirement that the  two github repos are in two (eg: USA and Canada)different country.so every day we replicate code. The monitoring script would be created, which will compare the USA and Canada repositories. This script will be executed as part of code replication pipelines. The comparison result generated by script, would be saved in a log file. This log file would then be sent to Splunk using Splunk Forwarder. . Alerts would be created in Splunk to send automated email. These alerts would get triggered if any differences are identified b/w the repositories based on the log data sent to Splunk.

Is there any way to compare two repos using splunk app directly

 

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

richgalloway
SplunkTrust
SplunkTrust
‎06-06-2022 09:54 AM

Splunk does not have a native interface to Git/github.  You could, however, set up a scripted input that compares the two repositories and reports on the differences found.  The output of that script would be indexed automatically by Splunk, eliminating the need for a log file and a forwarder.  Once the data is ingested then searches can be run to potentially trigger alerts.

---
If this reply helps you, Karma would be appreciated.

View solution in original post

Reply
Solved! Jump to solution

Azeemering
Builder
‎06-07-2022 05:53 AM

Yes it seems possible.

I have built a similar app that check if a github app is set to public by accident using the github api. You can create an app that polls the api and ingests any changes in the repo.
You could apply the same priniciple by ingesting both repos and create a compare search in Splunk.

 

Reply
Solved! Jump to solution

pavanbits1990
New Member
‎06-07-2022 12:14 AM
Splunk Phantom also uses a Git repository to publish company-authored playbooks for customers to download. This repository is called the community repository and is configured on Splunk Phantom by default.
 
 
 
0 Karma
Reply
Solved! Jump to solution

VatsalJagani
SplunkTrust
SplunkTrust
‎06-06-2022 11:21 AM

@karthi2809 - I think what you are currently doing with the script is more appropriate architecturely.

Even if you were to do it in Splunk, I would have suggested doing it in module input's python and you end up doing the same thing. You can do this if you want. It's basically the same thing as what you are doing today.

 

I hope this helps!!!

Reply
Solved! Jump to solution
Solution

richgalloway
SplunkTrust
SplunkTrust
‎06-06-2022 09:54 AM

Splunk does not have a native interface to Git/github.  You could, however, set up a scripted input that compares the two repositories and reports on the differences found.  The output of that script would be indexed automatically by Splunk, eliminating the need for a log file and a forwarder.  Once the data is ingested then searches can be run to potentially trigger alerts.

---
If this reply helps you, Karma would be appreciated.
Reply
Solved! Jump to solution

karthi2809
Builder
‎06-27-2022 08:10 PM

How it will send the data automatically?

Tags (1)
0 Karma
Reply
Solved! Jump to solution

richgalloway
SplunkTrust
SplunkTrust
‎06-28-2022 05:23 AM

It's Splunk magic.  😉  Anything a scripted or modular input writes to stdout is saved in an index.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply
Get Updates on the Splunk Community!

Introducing the 2024 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...

Introducing the 2024 Splunk MVPs!

We are excited to announce the 2024 cohort of the Splunk MVP program. Splunk MVPs are passionate members of ...

Splunk Custom Visualizations App End of Life

The Splunk Custom Visualizations apps End of Life for SimpleXML will reach end of support on Dec 21, 2024, ...