Deprecated: Splunk App and Add-on

Important

This TA and App is now deprecated and will no longer receive updates or support. For continued support and future updates, please switch to the new app supported by Splunk.

Please follow the documentation for a migration path to use the Splunk supported Splunk App for Palo Alto Networks.

Please follow the documentation for a migration path to use the Splunk supported Splunk Add-on for Palo Alto Networks.

---

This monorepo contains both the App and Add-on for Splunk, including tests, release scripts, and CI/CD configuration

📖 Documentation

https://splunk.paloaltonetworks.com

⬇️ Download

• Splunk App on SplunkBase
• Splunk Add-on on SplunkBase

💬 Support

• Troubleshooting Guide
• Ask a Question
• Report a bug

🐛 Bugs / Issues / Feature Requests

Please open all issues, feature requests, and pull requests for the App or Add-on here in this repository. We welcome your feedback and contributions! Let us know how we're doing! 🙏

📚 App and Add-on READMEs

• Splunk App README
• Splunk Add-on README

📂 File structure of this repo

• SplunkforPaloAltoNetworks: Official Splunk App
• Splunk_TA_paloalto: Official Splunk Add-on (TA)
• .github: CI/CD workflows
• scripts: Build and AppInspect validation scripts
• demo: Docker-based demo with sample data generator
• test: Test suites and test/development environments
• addon-builder-exports: Export of TA from Splunk Add-on Builder for future changes/upgrades
• release.config.js: Release configuration for CI/CD Release workflow

👩‍💻 Developer documentation

See CONTRIBUTING.md to change or test the code or for information on the CI/CD pipeline.