Re: Can I splunk ClearCase for source code change ...

maverick · ‎05-28-2010

Wondering if anyone has ever integrated ClearCase with Splunk yet. Does ClearCase provide text logs on disk or maybe an API that can be leveraged via Scripted Inputs to pull in ClearCase change events (or maybe even actual source code) so I can splunk it?

dcroteau · ‎05-31-2010

ClearCase has an abundant CLI (cleartool). This can help you extract version control information. just looking to adhoc search source code? Then GREP is still your best tool....seems silly to index source code into splunk.

http://www.yolinux.com/TUTORIALS/ClearcaseCommands.html

Here is a list of CPAN Mod(s) you could use, but cleartool is what you need

http://cpan.uwinnipeg.ca/dist/ClearCase-Tools

maverick · ‎06-01-2010

Thanks!

Yes you are correct in that if you can get the change control info from cleartool, then there's no need to splunk the source code directly.

However, if I was using Splunk to index app logs from production and I wanted to correlate live error events with the source code in ClearCase in order to figure out who created the module that just publicly stacktraced all over the place and notify them that they need to fix it asap, then I could see where that could be of valid use case.

maverick · ‎05-28-2010

Actually more interested in splunking the source code, if anything.

Can I splunk ClearCase for source code change monitoring?

More Ways To Control Your Costs With Archived Metrics | Register for Tech Talk

.conf24 | Personalize your .conf experience with Learning Paths!

Threat Hunting Unlocked: How to Uplevel Your Threat Hunting With the PEAK Framework ...