I have a very limited knowledge of splunk. I am trying to parse json data containing an array and plot it on a bargraph.
The splunk events look like this:
event {
project_name: "project1"
data : [
{"type":"type1","coverage":0}
{"type":"type2","coverage":1}
{"type":"type3","coverage":1}
{"type":"type4","coverage":1}
{"type":"type5","coverage":1}
{"type":"type6","coverage":3}
]
}
There are multiple projects for which this event is sent. Each event has a json array with data about "type" ( ranging from type1 to type 6). There can be multiple such events with same project name over time.
What I want to do is to take the last event for each "project_name" and plot a bar graph comparing "coverage" for different "type"s for different projects.
Anyone has any ideas how I might achieve that.
,I have data with the following structure:
event {
project_name: "project1"
data: [
{"type":"type1","missed":1381,"covered":177,"coverage":11}
{"type":"type2","missed":11797,"covered":3134,"coverage":20}
{"type":"type3","missed":2638,"covered":613,"coverage":18}
{"type":"type4","missed":1577,"covered":140,"coverage":8}
]
}
There are multiple different projects from project1 to projectn. Different events can have same project name.
What I want to do is get the latest event for a each project and plot a bar graph comparing "coverage" of each project for a given "type".
... View more