test

add-on/TA-Demisto/app.manifest

@@ -1,11 +1,11 @@
 {
-  "schemaVersion": "1.0.0",
+  "schemaVersion": "2.0.0",
   "info": {
     "title": "Demisto Add-on for Splunk",
     "id": {
       "group": null,
       "name": "TA-Demisto",
-      "version": "4.1.2"
+      "version": "4.1.3"
     },
     "author": [
       {
@@ -49,5 +49,11 @@
     "splunk": {
       "Enterprise": "*"
     }
-  }
+  },
+  "supportedDeployments": [
+    "*"
+  ],
+  "targetWorkloads": [
+    "*"
+  ]
 }

add-on/TA-Demisto/appserver/static/js/build/globalConfig.json

@@ -2,8 +2,9 @@
     "meta": {
         "name": "TA-Demisto",
         "displayName": "Demisto Add-on for Splunk",
-        "version": "4.1.2",
+        "version": "4.1.3",
         "restRoot": "TA_Demisto",
+        "_uccVersion": "5.39.0",
         "schemaVersion": "0.0.3"
     },
     "pages": {

add-on/TA-Demisto/bin/ta_demisto/alert_actions_base.py

@@ -190,16 +190,20 @@ def get_events(self):
             sys.exit(2)
 
     def prepare_meta_for_cam(self):
+        rf = None
         try:
             try:
                 rf = gzip.open(self.results_file, 'rt')
-            except ValueError: # Workaround for Python 2.7 on Windows
+            except ValueError:  # Workaround for Python 2.7 on Windows
                 rf = gzip.open(self.results_file, 'r')
-            for num, result in enumerate(csv.DictReader(rf)):
-                result.setdefault('rid', str(num))
-                self.update(result)
-                self.invoke()
-                break
+            except FileNotFoundError:
+                self.log_info("No Results file found.")
+            if rf:
+                for num, result in enumerate(csv.DictReader(rf)):
+                    result.setdefault('rid', str(num))
+                    self.update(result)
+                    self.invoke()
+                    break
         finally:
             if rf:
                 rf.close()

add-on/TA-Demisto/default/addon_builder.conf

@@ -1,7 +1,7 @@
 # this file is generated by add-on builder automatically
 # please do not edit it
 [base]
-builder_version = 4.1.3
+builder_version = 4.2.0
 builder_build = 0
 is_edited = 1
 

add-on/TA-Demisto/default/alert_actions.conf

@@ -4,17 +4,16 @@ python.version = python3
 description = 
 label = Create XSOAR Incident
 is_custom = 1
-is_cloud = None
 payload_format = json
 icon_path = alert_create_xsoar_incident.png
 param.incident_name = Event from Splunk for host $result.host$
 param.occurred = $trigger_time$
 param.send_all_servers = false
-param.server_url = 
+param.server_url =
 param.type = Unclassified
-param.custom_fields = 
-param.labels = 
-param.ignore_labels = 
+param.custom_fields =
+param.labels =
+param.ignore_labels =
 param.severity = 0
 param.details = Incident created from data available in Splunk
 param._cam = {"technology": [{"vendor": "Palo Alto Networks", "product": "Cortex XSOAR", "version": ["4.5.0"]}], "supports_adhoc": true, "category": ["Information Gathering"], "task": ["create"], "subject": ["Incident"]}

add-on/TA-Demisto/default/server.conf

@@ -1,4 +1,5 @@
 [shclustering]
 conf_replication_include.ta_demisto_settings.conf = true
 conf_replication_include.ta_demisto_account.conf = true
-conf_replication_include.passwords.conf = true
+conf_replication_include.passwords.conf = true
+conf_replication_include.addon_builder = true