Splunk® Supported Add-ons

Splunk Add-on for GitHub

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Release history for the Splunk Add-on for Github

Latest version

The latest version of the Splunk Add-on for Github is version 2.1.0. See Release notes for the Splunk Add-on for Github for the release notes of this latest version.

Version 2.0.0

Version 2.0.0 of the Splunk Add-on for GitHub was released on May 27, 2022.

Compatibility

Version 2.0.0 of the Splunk Add-on for GitHub is compatible with the following software, CIM versions, and platforms.

Splunk platform versions 8.1.x, 8.2.x
CIM 5.0.1
Platforms Platform independent
Vendor Products GitHub Enterprise v3.2, Github Enterprise Cloud

New Features

  • Integrated the support of data collection from the GitHub Enterprise Cloud.
  • Added the add-on UI components for Configuration and Inputs.
  • Added support to fetch audit logs for Organization and Enterprise account types.
  • Added support to fetch user metadata events from GitHub Cloud via modular inputs.
  • Added proxy and logging support in data collection.
  • Added compatibility with the latest CIM version 5.1.0 for the newly collected events from GitHub Cloud.

Fixed issues

Version 2.0.0 of the Splunk Add-on for GitHub has the following fixed issues:

Known issues

Version 2.0.0 of the Splunk Add-on for GitHub has the following reported known issues. If no issues appear below, no issues have yet been reported:

Version 1.0.0

Version 1.0.0 of the Splunk Add-on for GitHub was released on December 27, 2021.

Compatibility

Version 1.0.0 of the Splunk Add-on for GitHub is compatible with the following software, CIM versions, and platforms.

Splunk platform versions 8.0.x, 8.1.x, 8.2.x
CIM 4.20.2
Platforms Platform independent
Vendor Products GitHub Enterprise v3.2

New Features

  • Provides support for audit logs of GitHub Enterprise Server (GHES) for version v3.2.
  • Collects GitHub Enterprise audited actions logs using GitHub's Log Forwarding feature on the specified Splunk server with Splunk connect for Syslog (SC4S).
  • SC4S assigns github:enterprise:audit sourcetype to all events and the logs are collected in the gitops index.
  • Added CIM mapping & extractions from scratch for the latest CIM compatible version 4.20.2.


Known issues

Version 1.0.0 of the Splunk Add-on for GitHub has the following reported known issues. If no issues appear below, no issues have yet been reported:

Last modified on 27 October, 2022
PREVIOUS
Release notes for the Splunk Add-on for GitHub
 

This documentation applies to the following versions of Splunk® Supported Add-ons: released


Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters