Solved: Markdown in add_task API function

Izzet · ‎08-14-2020

Phantom 4.9 supports Markdown notes and it is possible to add markdown note using GUI. But how to use markdown with the add_task API function? Like

phantom.add_task(container=None, name=None, owner=None, role=None, trace=False)

By default it doesn't recognize markdown and just pastes a note as a raw text.

phanTom · ‎09-16-2020

@Izzet This is the `add_task` API call and this does not (AFAIK) create a note. You can use the phantom.add_note() and stipulate a task_id to assign the note to a task. I believe that markdown is now the default so any notes added will accept/interpret markdown. The docs don't seem to point to setting Markdown or HTML. All I know is any notes in HTML from 4.8 or previous need to be manually set to HTML for it to be properly interpreted.
https://docs.splunk.com/Documentation/Phantom/4.9/PlaybookAPI/ContainerAPI#add_note
If this helped, please give a like below!

View solution in original post

phanTom · ‎09-16-2020

@Izzet This is the `add_task` API call and this does not (AFAIK) create a note. You can use the phantom.add_note() and stipulate a task_id to assign the note to a task. I believe that markdown is now the default so any notes added will accept/interpret markdown. The docs don't seem to point to setting Markdown or HTML. All I know is any notes in HTML from 4.8 or previous need to be manually set to HTML for it to be properly interpreted.
https://docs.splunk.com/Documentation/Phantom/4.9/PlaybookAPI/ContainerAPI#add_note
If this helped, please give a like below!

Markdown in add_task API function

using Phantom

Introducing Splunk Enterprise 9.2

Adoption of RUM and APM at Splunk

Routing logs with Splunk OTel Collector for Kubernetes