perses · sharangokul28 · Jan 27, 2026
diff --git a/splunk/README.md b/splunk/README.md
@@ -0,0 +1,60 @@
+# Splunk Plugin for Perses
+
+## Overview
+
+The Splunk plugin enables Perses to connect to Splunk instances and query data using Splunk Processing Language (SPL). It supports both time series visualizations and log queries.
+
+## Features
+
+- **Splunk Datasource**: Connect to Splunk Enterprise or Splunk Cloud instances
+- **Time Series Queries**: Execute SPL queries for time series data visualization
+- **Log Queries**: Retrieve and display log data from Splunk
+- **Variable Support**: Use Perses variables in your SPL queries
+- **Flexible Authentication**: Support for direct URL or proxy-based connections
+
+## SPL Query Examples
+
+### Time Series Examples
+
+```spl
+# Count events over time
+search index=main | timechart count
+
+# Average response time by service
+search index=web | timechart avg(response_time) by service
+
+# Error rate over time
+search index=main error | timechart count
+```
+
+### Log Query Examples
+
+```spl
+# Recent errors
+search index=main error | head 100
+
+# Specific application logs
+search index=app sourcetype=application:log level=ERROR
+
+# Search with filters
+search index=main host=server01 status=500
+```
+
+## API Endpoints
+
+The plugin uses the following Splunk REST API endpoints:
+
+- `/services/search/jobs` - Create search jobs
+- `/services/search/jobs/{sid}` - Get job status
+- `/services/search/jobs/{sid}/results` - Get search results
+- `/services/search/jobs/{sid}/events` - Get search events
+- `/services/search/jobs/export` - Export search results
+- `/services/data/indexes` - Get index information
+
+## Authentication
+
+Splunk authentication can be configured through:
+
+- HTTP headers (Authorization token)
+- Proxy settings with credentials
+- Direct URL with embedded credentials (not recommended for production)
@@ -0,0 +1,13 @@
+module: "github.com/perses/plugins/splunk@v0"
+language: {
+	version: "v0.15.1"
+}
+source: {
+	kind: "git"
+}
+deps: {
+	"github.com/perses/shared/cue@v0": {
+		v:       "v0.53.0-rc.1"
+		default: true
+	}
+}
diff --git a/splunk/go.mod b/splunk/go.mod
@@ -0,0 +1,29 @@
+module github.com/perses/plugins/splunk
+
+go 1.25.1
+
+require github.com/perses/perses v0.53.0-rc.0
+
+require (
+	github.com/beorn7/perks v1.0.1 // indirect
+	github.com/cespare/xxhash/v2 v2.3.0 // indirect
+	github.com/go-jose/go-jose/v4 v4.1.3 // indirect
+	github.com/jpillora/backoff v1.0.0 // indirect
+	github.com/kr/text v0.2.0 // indirect
+	github.com/muhlemmer/gu v0.3.1 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f // indirect
+	github.com/prometheus/client_golang v1.23.2 // indirect
+	github.com/prometheus/client_model v0.6.2 // indirect
+	github.com/prometheus/common v0.67.2 // indirect
+	github.com/prometheus/procfs v0.17.0 // indirect
+	github.com/zitadel/oidc/v3 v3.45.0 // indirect
+	github.com/zitadel/schema v1.3.1 // indirect
+	go.yaml.in/yaml/v2 v2.4.3 // indirect
+	golang.org/x/net v0.46.0 // indirect
+	golang.org/x/oauth2 v0.33.0 // indirect
+	golang.org/x/sys v0.37.0 // indirect
+	golang.org/x/text v0.30.0 // indirect
+	google.golang.org/protobuf v1.36.10 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+)
@@ -0,0 +1,10 @@
+import type { Config } from '@jest/types';
+import shared from '../jest.shared';
+
+const jestConfig: Config.InitialOptions = {
+  ...shared,
+
+  setupFilesAfterEnv: [...(shared.setupFilesAfterEnv ?? []), '<rootDir>/src/setup-tests.ts'],
+};
+
+export default jestConfig;