US 12,224,919 B1
Hybrid execution of custom playbook codeblocks
Chakravarthy Sridhar, Campbell, CA (US); Minjie Qiu, San Jose, CA (US); and Atif Mahadik, Fremont, CA (US)
Assigned to SPLUNK Inc., San Fransisco (CA)
Filed by Splunk Inc., San Francisco, CA (US)
Filed on Apr. 9, 2024, as Appl. No. 18/630,909.
Application 18/630,909 is a continuation of application No. 18/318,536, filed on May 16, 2023, granted, now 11,968,101.
Application 18/318,536 is a continuation of application No. 17/960,310, filed on Oct. 5, 2022, granted, now 11,716,260, issued on Aug. 1, 2023.
Application 17/960,310 is a continuation of application No. 17/222,789, filed on Apr. 5, 2021, granted, now 11,496,371, issued on Nov. 8, 2022.
Application 17/222,789 is a continuation of application No. 16/863,896, filed on Apr. 30, 2020, granted, now 10,999,164, issued on May 4, 2021.
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 41/5054 (2022.01); H04L 9/40 (2022.01); H04L 41/0681 (2022.01); H04L 41/08 (2022.01); H04L 41/0816 (2022.01); H04L 41/0894 (2022.01); H04L 41/22 (2022.01); G06F 3/0482 (2013.01); H04L 12/46 (2006.01)
CPC H04L 41/5054 (2013.01) [H04L 41/0681 (2013.01); H04L 41/0816 (2013.01); H04L 41/0886 (2013.01); H04L 41/0894 (2022.05); H04L 63/0263 (2013.01); H04L 63/0281 (2013.01); H04L 63/20 (2013.01); G06F 3/0482 (2013.01); H04L 12/4633 (2013.01); H04L 41/22 (2013.01); H04L 63/1441 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A computer-implemented method comprising:
receiving, at an information technology (IT) and security operations application executing in a cloud provider network, one or more messages carrying data defining a user-configured playbook, the user-configured playbook identifying a plurality of codeblocks implementing operations to be performed to respond to an identification of an incident occurring in an IT environment associated with a user, the plurality of codeblocks including at least a first codeblock associated with custom code provided by the user and a second codeblock; and
upon a detection of the incident in the IT environment, initiating execution of the user-configured playbook by the IT and security operations application, the initiating comprising:
sending, to a proxy application executing in the IT environment, a request to execute at least the custom code of the first codeblock; and
causing at least the second codeblock to be executed within the cloud provider network.