Welcome to the Splunk Phantom App for Splunk release 4.1.3

This release of the Splunk Phantom App for Splunk includes the following enhancements:

This release of the Splunk Phantom App for Splunk connects both Splunk Phantom and Splunk SOAR to your Splunk platform.
Use the Splunk Phantom App for Splunk to synchronize workbooks across multiple Splunk Phantom instances or Splunk SOAR. See Synchronize workbooks across multiple Splunk Phantom servers.
Splunk Enterprise Security (ES) is no longer required to integrate Splunk Phantom and Splunk SOAR with the Splunk platform. If you want to use adaptive response actions or AR relay without Splunk ES, you must download and install the Splunk Common Information Model (CIM) app from Splunkbase.
Alert Action Configurations tab is moved to the Configurations tab and no longer uses JQuery.
Splunk platform events not created in Splunk Phantom are stored in KV Store. Attempts are made every 60 seconds to send these events to Splunk Phantom until the events are successfully sent.

Fixed issues in this release

This version of the Splunk Phantom App for Splunk was released on May 27, 2021 and fixes the following issues.

Date resolved	Issue number	Description
2021-05-25	PAPP-14419	Phantom App for Splunk- forwarding savedsearch report is hanging with 0 results

This version of the Splunk Phantom App for Splunk has the following issues and workarounds.

Date filed	Issue number	Description
2021-05-25	PAPP-17218	Missing backup copy for a duplicate workbook
2021-05-07	PAPP-16917	400 Error When Deleting Very Large Data in Workbooks