This documentation does not apply to the most recent version of Splunk® Phantom (Legacy).
For documentation on the most recent version, go to the latest release.
Known issues in this release of Splunk Phantom
The following are issues and workarounds for this release of Splunk Phantom.
| Date filed | Issue number | Description |
|---|---|---|
| 2021-06-02 | PPS-25847 | Automation is not run when adding duplicate artifact from same batch/post |
| 2021-04-16 | PPS-25718 | ibackup script does unnecessary user switching |
| 2021-04-09 | PPS-25693 | Python3 playbook converter fails when there is custom function block without custom code Workaround: Either remove the empty function block or add temporary code to the empty function block before converting the playbook. |
| 2021-03-29 | PPS-25651 | ibackup fails to generate consecutive incremental backups |
| 2021-03-26 | PPS-25650 | Converting some Python 2 playbooks to Python 3 with playbooks_to_py3 utility fails. Workaround: If converting a Python 2 playbook fails do the following:
|
| 2021-03-26 | PPS-25639 | Playbooks aren't running as they fail to pass validation |
| 2021-03-25 | PPS-25634, PSAAS-2292, PORT-484 | "Error" in web interface and "ERROR: App install failed" in wsgi.log when updating Apps on a release of Splunk Phantom with a lower minor version number than the final release for that version. Workaround: If you receive this error, take the following steps: 1. Upgrade to the latest Splunk Phantom platform release. Use the
2. Once the Splunk Phantom platform upgrade is complete, upgrade your installed Apps upgraded using the Main Menu > Apps, then clicking the APP UPDATES button. |
| 2021-03-19 | PPS-25613 | UI : Timestamps are one hour off after daylight savings. |
| 2021-03-05 | PPS-25581 | Fix UniqueViolation error when saving Indicators with NULL value. |
| 2021-03-04 | PPS-25580 | Playbook save_object API accepts but drops values other than dicts |
| 2021-02-25 | PPS-25551 | During Phantom cluster upgrade from 4.9 to 4.10 releases does not generate correct certificates Workaround: Restore the certificates from the backup made during the upgrade. Do these steps on each Splunk Phantom node.
|
| 2021-02-24 | PPS-25548 | phantom_install_log traceback in upgrade related to setting up cron job |
| 2021-02-18 | PPS-25507 | ibackup incorrectly identifies space requirements |
| 2021-02-01 | PPS-25422, PPS-25532 | The default note editor is visible before all notes are loaded |
| 2020-12-21 | PPS-25246 | Filter block and decision block do not return correct result when called multiple times on the same chain of action results |
| 2020-12-11 | PPS-25216 | When using the "Related Event" item from the artifact info screen in Investigation, produces error 'indicator_value 404 Not found' then displays a never-ending 'loading history' message |
| 2020-11-18 | PPS-25038 | Boolean parameter 'Verify server certificate' is treated as 'None' by the Splunk Phantom platform. |
| 2020-06-15 | PPS-23462 | Playbook API collect_from_contains fails to return data from user-defined and regular CEF types |
Last modified on 27 July, 2021
| Welcome to Splunk Phantom 4.10.2 | Fixed Issues in this release of Splunk Phantom |
This documentation applies to the following versions of Splunk® Phantom (Legacy): 4.10.2
Download manual
Feedback submitted, thanks!