splparser

splparser copied to clipboard

Can not parse "," value in EVAL function argument

1

Steps to Reproduce: ``` import splparser.parser EVAL xrefs = mvjoin(mvzip('plugin.xrefs{}.type', 'plugin.xrefs{}.id', " #"), ",") ```

DarshanLukhi

Found this on PyPI, saw that pull requests were welcome but no link to GitHub was provided. Trivial patch to add a link. - Add URL for GitHub code -...

lowell80

- used Sara's startup example - augmented with writeJson method - added cmd args and usage for user customization

gschmidtee

Warnings printed out when parsetabs created need to be addressed.

1

When the parsetabs are created you might notice warnings like: WARNING: 53 shift/reduce conflicts WARNING: Token 'OUTPUTNEW' defined, but not used WARNING: Token 'ASUC' defined, but not used WARNING: Token...

salspaugh

tstat is not working!

4

eg. 'tstats max(time) FROM datamodel=Web' even this simple one.

keroro824

cannot parse " ` ` "

3

keroro824

multikv command can have no fields; we should omit new line (\n)

1

eg. search `set_sos_index` host="SPLUNK1.EDM.LOCAL" sourcetype="lsof"\n | head 1\n | multikv \n | `get_splunk_process_type_lsof`

keroro824

fix bug: when search is the parameter of other commands

2

eg: |history | head 2000 | search event_count>0 OR result_count>0 | dedup search | table search

keroro824

Self-explanatory.

salspaugh

salspaugh