splunk · renovate · Jun 10, 2025 · Jun 10, 2025 · Jun 10, 2025 · Jun 10, 2025
@@ -29,7 +29,7 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
       - name: Login to GitHub Packages Docker Registry
-        uses: docker/login-action@v3.3.0
+        uses: docker/login-action@v3.5.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}

@@ -159,6 +159,9 @@ jobs:
     runs-on: ubuntu-latest
     if: "contains(needs.integration-tests-check.outputs.commit_message, '[run-int-tests]') || github.ref_name == 'develop'"
     timeout-minutes: 120
+    strategy:
+      matrix:
+        index: [1, 2, 3, 4, 5, 6]
     steps:
       - name: Checkout Project
         uses: actions/checkout@v4
@@ -168,15 +171,15 @@ jobs:
           python-version: "3.10"
       - name: run install_microk8s.sh
         run: |
-          sudo snap install microk8s --classic --channel=1.30/stable
+          sudo snap install microk8s --classic --channel=1.33/stable
           sudo apt-get install snmp -y
           sudo apt-get install python3-dev -y
       - name: run automatic_setup_microk8s.sh
         run: integration_tests/automatic_setup_microk8s.sh integration
       - name: run tests
         working-directory: integration_tests
         run: |
-          poetry run pytest --splunk_host="localhost" --splunk_password="changeme2" --trap_external_ip="$(hostname -I | cut -d " " -f1)" --sc4snmp_deployment="microk8s"
+          poetry run pytest --splunk_host="localhost" --splunk_password="changeme2" --trap_external_ip="$(hostname -I | cut -d " " -f1)" --sc4snmp_deployment="microk8s" -m part${{ matrix.index }}
 
   test-integration-compose:
     name: Run integration tests in docker compose deployment
@@ -185,6 +188,9 @@ jobs:
     runs-on: ubuntu-latest
     if: "contains(needs.integration-tests-check.outputs.commit_message, '[run-int-tests]') || github.ref_name == 'develop'"
     timeout-minutes: 120
+    strategy:
+      matrix:
+        index: [ 1, 2, 3, 4, 5, 6 ]
     steps:
       - name: Checkout Project
         uses: actions/checkout@v4
@@ -213,4 +219,4 @@ jobs:
       - name: run tests
         working-directory: integration_tests
         run: |
-          poetry run pytest --splunk_host="localhost" --splunk_password="changeme2" --trap_external_ip="$(hostname -I | cut -d " " -f1)" --sc4snmp_deployment="docker-compose"
+          poetry run pytest --splunk_host="localhost" --splunk_password="changeme2" --trap_external_ip="$(hostname -I | cut -d " " -f1)" --sc4snmp_deployment="docker-compose" -m part${{ matrix.index }}
@@ -42,7 +42,7 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
       - name: Login to GitHub Packages Docker Registry
-        uses: docker/login-action@v3.3.0
+        uses: docker/login-action@v3.5.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}

@@ -43,7 +43,7 @@ jobs:
       - name: Set up Docker Buildx
         uses: docker/setup-buildx-action@v3
       - name: Login to GitHub Packages Docker Registry
-        uses: docker/login-action@v3.3.0
+        uses: docker/login-action@v3.5.0
         with:
           registry: ghcr.io
           username: ${{ github.actor }}

@@ -72,7 +72,7 @@ jobs:
 
       - name: install microk8s
         run: |
-          sudo snap install microk8s --classic --channel=1.30/stable
+          sudo snap install microk8s --classic --channel=1.33/stable
           sudo apt-get install snmp -y
           sudo apt-get install python3-dev -y
 

@@ -3,8 +3,14 @@
 ## Unreleased
 
 ### Changed
+- implemented mTLS for Splunk 10
+- update default microk8s to 1.33
+- introduce `splunkMetricNameHyphenToUnderscore` parameter to make metric names follow Splunk schema
+- change default walk to get only SNMPv2-MIB
 
 ### Fixed
+- fix text SNMP values with numbers and 'E' being interpreted as scientific notation
+- added missing `ipv6Enabled` flag in poller
 
 
 ## [1.12.3]

@@ -14,12 +14,12 @@ type: application
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
 
-version: 1.12.3
+version: 1.13.0-beta.6
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
 # It is recommended to use it with quotes.
-appVersion: "1.12.3"
+appVersion: "1.13.0-beta.6"
 #
 dependencies:
   - name: mongodb

@@ -1,2 +1,2 @@
-Walk profiles no longer include IF-MIB family by default.
-If you've used this functionality before, please update the walk profile with ['IF-MIB'] varBind.
+Default walk no longer calls full oid tree, instead it is collecting only 'SNMPv2-MIB'.
+If you want to call full oid for the devices, you have to set enableFullWalk flag to true.
@@ -50,6 +50,8 @@ spec:
             value: {{ .Values.scheduler.tasksExpiryTime | quote }}
           - name: CONFIG_FROM_MONGO
             value: {{ quote .Values.UI.enable | default "false" }}
+          - name: ENABLE_FULL_WALK
+            value: {{ .Values.poller.enableFullWalk | default "false" | quote }}
           volumeMounts:
             - name: config
               mountPath: "/app/config"

@@ -51,6 +51,8 @@ spec:
             value: {{ .Values.scheduler.logLevel | default "INFO" }}
           - name: CONFIG_FROM_MONGO
             value: {{ quote .Values.UI.enable | default "false" }}
+          - name: ENABLE_FULL_WALK
+            value: {{ .Values.poller.enableFullWalk | default "false" | quote }}
           volumeMounts:
             - name: config
               mountPath: "/app/config"

@@ -152,6 +152,8 @@ Common labels
   value: {{ .Values.splunk.insecureSSL | default "false" | quote }}
 - name: SPLUNK_AGGREGATE_TRAPS_EVENTS
   value: {{ .Values.traps.aggregateTrapsEvents | default "false" | quote }}
+- name: SPLUNK_METRIC_NAME_HYPHEN_TO_UNDERSCORE
+  value: {{ .Values.poller.splunkMetricNameHyphenToUnderscore | default "false" | quote }}
 - name: SPLUNK_HEC_TOKEN
   valueFrom:
     secretKeyRef:
@@ -179,6 +181,8 @@ Common labels
   value: {{ .Values.worker.poller.concurrency | default "4" | quote }}
 - name: PREFETCH_COUNT
   value: {{ .Values.worker.poller.prefetch | default "1" | quote }}
+- name: IPv6_ENABLED
+  value: {{ .Values.poller.ipv6Enabled | default "false" | quote }}
 {{- end }}
 
 {{- define "environmental-variables-sender" -}}

@@ -46,6 +46,14 @@ spec:
           env:
             {{- include "environmental-variables" . | nindent 12 }}
             {{- include "environmental-variables-sender" . | nindent 12 }}
+            {{- if .Values.splunk.mtls.enabled }}
+            - name: SPLUNK_HEC_MTLS_CLIENT_CERT
+              value: /app/hec-mtls/tls.crt
+            - name: SPLUNK_HEC_MTLS_CLIENT_KEY
+              value: /app/hec-mtls/tls.key
+            - name: SPLUNK_HEC_MTLS_CA_CERT
+              value: /app/hec-mtls/cacert.pem
+            {{- end }}
           {{- if .Values.worker.livenessProbe.enabled }}
           livenessProbe:
             exec:
@@ -63,6 +71,11 @@ spec:
             periodSeconds: {{ .Values.worker.readinessProbe.periodSeconds }}
           {{- end }}
           volumeMounts:
+            {{- if .Values.splunk.mtls.enabled }}
+            - name: hec-mtls
+              mountPath: "/app/hec-mtls"
+              readOnly: true
+            {{- end }}
             - name: config
               mountPath: "/app/config"
               readOnly: true
@@ -102,6 +115,11 @@ spec:
         {{- toYaml . | nindent 8 }}
       {{- end }}
       volumes:
+        {{- if .Values.splunk.mtls.enabled }}
+        - name: hec-mtls
+          secret:
+            secretName: {{ .Values.splunk.mtls.secretRef }}
+        {{- end }}
         # You set volumes at the Pod level, then mount them into containers inside that Pod
         - name: config
           configMap:

@@ -185,6 +185,18 @@
         },
         "metricsIndex": {
           "type": "string"
+        },
+        "mtls": {
+          "type": "object",
+          "additionalProperties": false,
+          "properties": {
+            "enabled": {
+              "type": "boolean"
+            },
+            "secretRef": {
+              "type": "string"
+            }
+          }
         }
       }
     },
@@ -341,6 +353,9 @@
         "metricsIndexingEnabled": {
           "type": "boolean"
         },
+        "splunkMetricNameHyphenToUnderscore": {
+          "type": "boolean"
+        },
         "pollBaseProfiles": {
           "type": "boolean"
         },
@@ -355,6 +370,12 @@
         },
         "logLevel": {
           "type": "string"
+        },
+        "ipv6Enabled": {
+          "type": "boolean"
+        },
+        "enableFullWalk": {
+          "type": "boolean"
         }
       }
     },

@@ -93,6 +93,12 @@ splunk:
   # name of the metrics index
   metricsIndex: "netmetrics"
 
+  # new encryption appeared in Splunk 10
+  mtls:
+    enabled: false
+    # name of existing secret (should be created manully), that will store certs for mTLS
+    secretRef: ""
+
 ################################################################################
 # Splunk Observability configuration
 ################################################################################
@@ -225,6 +231,10 @@ poller:
   # https://splunk.github.io/splunk-connect-for-snmp/main/microk8s/configuration/poller-configuration/#append-oid-index-part-to-the-metrics
   metricsIndexingEnabled: false
 
+  # Replace "-" in a mib name to "_" to make it compatible to Splunk metric schema
+  # https://help.splunk.com/en/splunk-enterprise/get-data-in/metrics/9.4/introduction-to-metrics/overview-of-metrics
+  splunkMetricNameHyphenToUnderscore: false
+
   # Enable polling base profiles (with IF-MIB and SNMPv2-MIB) from
   # https://github:com/splunk/splunk-connect-for-snmp/blob/main/splunk_connect_for_snmp/profiles/base.yaml
   pollBaseProfiles: true
@@ -237,6 +247,9 @@ poller:
   # https://splunk.github.io/splunk-connect-for-snmp/main/microk8s/configuration/poller-configuration/#define-usernamesecrets
   usernameSecrets: []
 
+  # flag to enable polling full walk tree for devices
+  enableFullWalk: false
+
   # Here is where polling happens. Learn more on how to configure it here:
   # https://splunk.github.io/splunk-connect-for-snmp/main/microk8s/configuration/poller-configuration/
 
@@ -245,6 +258,7 @@ poller:
   #  example_group_1,,2c,public,,,3000,static_profile,t,
   logLevel: "INFO"
 
+  ipv6Enabled: false
 worker:
   # workers are responsible for the actual execution of polling, processing trap messages, and sending data to Splunk.
   # More: https://splunk.github.io/splunk-connect-for-snmp/main/microk8s/configuration/worker-configuration/

@@ -1,11 +1,11 @@
 # Deployment configuration
 SC4SNMP_IMAGE=ghcr.io/splunk/splunk-connect-for-snmp/container
-SC4SNMP_TAG="1.12.3"
+SC4SNMP_TAG="1.13.0-beta.6"
 SCHEDULER_CONFIG_FILE_ABSOLUTE_PATH=
 TRAPS_CONFIG_FILE_ABSOLUTE_PATH=
 INVENTORY_FILE_ABSOLUTE_PATH=
 COREFILE_ABS_PATH=
-SC4SNMP_VERSION="1.12.3"
+SC4SNMP_VERSION="1.13.0-beta.6"
 
 # Network configuration
 COREDNS_ADDRESS=172.28.0.255
@@ -39,6 +39,7 @@ SPLUNK_HEC_INDEX_EVENTS=netops
 SPLUNK_HEC_INDEX_METRICS=netmetrics
 SPLUNK_HEC_PATH=/services/collector
 SPLUNK_AGGREGATE_TRAPS_EVENTS=false
+SPLUNK_METRIC_NAME_HYPHEN_TO_UNDERSCORE=false
 IGNORE_EMPTY_VARBINDS=false
 SPLUNK_LOG_INDEX=
 
@@ -85,6 +86,7 @@ WORKER_TRAP_MEMORY_RESERVATIONS=250M
 # Inventory configuration
 INVENTORY_LOG_LEVEL=INFO
 CHAIN_OF_TASKS_EXPIRY_TIME=500
+ENABLE_FULL_WALK=false
 
 # Traps configuration
 SNMP_V3_SECURITY_ENGINE_ID=80003a8c04

@@ -22,6 +22,7 @@ x-splunk_extended_setup: &splunk_extended_setup
   SPLUNK_HEC_INDEX_EVENTS: ${SPLUNK_HEC_INDEX_EVENTS:-netops}
   SPLUNK_HEC_INDEX_METRICS: ${SPLUNK_HEC_INDEX_METRICS:-netmetrics}
   SPLUNK_AGGREGATE_TRAPS_EVENTS: ${SPLUNK_AGGREGATE_TRAPS_EVENTS:-false}
+  SPLUNK_METRIC_NAME_HYPHEN_TO_UNDERSCORE: ${SPLUNK_METRIC_NAME_HYPHEN_TO_UNDERSCORE:-false}
 
 x-workers_general_setup: &workers_general_setup
   SC4SNMP_VERSION: ${SC4SNMP_VERSION:-latest}
@@ -116,6 +117,7 @@ services:
       LOG_LEVEL: ${INVENTORY_LOG_LEVEL:-INFO}
       CHAIN_OF_TASKS_EXPIRY_TIME: ${CHAIN_OF_TASKS_EXPIRY_TIME:-500}
       CONFIG_FROM_MONGO: ${CONFIG_FROM_MONGO:-false}
+      ENABLE_FULL_WALK: ${ENABLE_FULL_WALK:-false}
     volumes:
     - ${SCHEDULER_CONFIG_FILE_ABSOLUTE_PATH}:/app/config/config.yaml:ro
     - ${INVENTORY_FILE_ABSOLUTE_PATH}:/app/inventory/inventory.csv:ro

@@ -1,5 +1,5 @@
 
-Scheduler configuration is stored in the `traps-config.yaml` file. This file has the following sections:
+Traps configuration is stored in the `traps-config.yaml` file. This file has the following sections:
 
 ```yaml
 communities: