You and your opinion are important to Splunk. We’d love to get your feedback! See below for opportunities to provide your feedback, either via survey or other product specific programs.
Check out Splunk software release phases to learn more about our product lifecycle and see definitions of alphas, betas , general availability and retired software.
Splunk Ideas
Splunk Ideas is our platform that gives customers a voice to help Splunk make data driven decisions and shape Splunk’s products and services. The platform allows anyone in the Splunk Community to submit, vote and comment on enhancement requests (Ideas) and be involved in the product development process of these features.
Splunk Ideas
Submit, vote, and comment on enhancement requests (Ideas).
BEST FOR
All Splunk Customers interested in providing feedback on our existing products and services.
Customer Advisory Programs
As a Splunk customer, your insights are invaluable. The Splunk Customer Advisory Programs offer a unique opportunity to directly influence the development of Splunk products. Collaborate with Splunk product teams, share your expertise, and help us build solutions that meet your evolving needs!
Splunk Developer Advisory Council Program
A collaborative space for Splunk developers to provide input, drive product innovation, and shape the future of Splunk's app development tools and ecosystem.
BEST FOR
The Developer Advisory Council (DAC) is a new forum for Splunk’s most engaged app developers to share feedback, shape product direction, and collaborate on key initiatives like the Splunk Developer Program and open-sourcing apps. This is a unique opportunity for developers to directly influence the tools and experiences that power Splunk’s app ecosystem.
Alphas / Betas
Get access to early-stage products and features! Test Splunk's latest technologies and share your experiences in feedback sessions with our Product Management and Engineering teams. If you meet the requirements, click "Access Now" to start testing and providing feedback. Please note that participation is limited for some programs. Click "Apply Now" and we will contact you if you're accepted and as space allows.
Federated Search for Azure
Federated Search to Azure enables customer to access Azure data stores (ABS and ADLS) from Splunk Cloud in a Controlled Availability scope. This expands the footprint of accessible data to the Microsoft Azure ecosystem.
BEST FOR
Splunk Cloud on AWS customers who wish to search over logs data stored on Azure Cloud without the need to ingest data into Splunk.
K8s Workload Optimization
Monitor and optimize the resource allocation for your Kubernetes workloads.
BEST FOR
This release is designed for platform engineers, SREs, and DevOps teams managing Kubernetes environments. It enables them to continuously evaluate workload efficiency, quickly identify optimization opportunities, and take guided actions—such as right-sizing CPU/memory requests and limits—to improve application performance while reducing infrastructure costs.
Detection Tuning Mode
Detection Tuning Mode is an integrated, analytics-driven feature within the detection editor that simplifies the noise-reduction process. It enables engineers to systematically identify and filter high-prevalence false positives using clustering and anomaly detection. By providing actionable insights into detection output before alerts are generated, it empowers teams to optimize out-of-the-box content, reduce operational burden, and significantly improve signal-to-noise ratios at scale.
BEST FOR
This feature is best for engineers optimizing out-of-the-box content through data-driven noise reduction. It streamlines operations by using clustering and anomaly detection to identify benign noise. You can validate exclusions against real-world data before committing, ensuring high signal fidelity. It is ideal for teams aiming to reduce manual tuning, improve alert quality, and maintain detection integrity through clear impact visualization and a proactive, scalable workflow.
Cisco Time Series Model v1.0
The February release of the Cisco Deep Time Series Model (CDTSM) v1.0 in AITK delivers enhanced, generative AI based forecasting and anomaly detection capabilities to the Splunk Platform via SPL Commands. The CDTSM model is served by either a Splunk Hosted Model for cloud accessible customers or AI Tier for on premises customers.
BEST FOR
This release is best for IT operations, DevOps, and Site Reliability Engineering (SRE) teams who need advanced, scalable time series forecasting and anomaly detection to proactively monitor and manage application and infrastructure performance across enterprise environments.
Victoria Replication Off BYOL Beta
Replication Off decouples indexing from replication in Splunk Enterprise indexer clusters by removing peer-to-peer bucket replication from the ingest path.
BEST FOR
Splunk Enterprise deployments using SmartStore that need higher ingestion throughput, faster search availability, and simpler indexer operations—especially customers impacted by replication backpressure or slow indexer decommissioning.
Detection Editor (Alpha)
Detection Editor brings an IDE-like authoring experience to Splunk Enterprise Security, giving detection engineers a streamlined, context-rich environment to create, review, and configure detection
BEST FOR
Customers must be on Splunk Enterprise Security 8.x to participate in this preview program.
CIM Compliance Self Healing
CIM compliance monitoring that provides pro-active alerts for CIM non-compliant data sources, and uses AI to suggest new regex/props and transforms to make your data CIM compliant again.
BEST FOR
Splunk Cloud customers that rely on CIM mappings for their data sources for detections in Enterprise Security (ES) and other use cases in Splunk
Enterprise Security - AI Detection Agent
Find unknown threats hiding behind weak risk signals. AI Detection turns ES risk events into explainable, ranked findings for SOC review.
BEST FOR
- Splunk Enterprise Security customer on Splunk Cloud. - No ES version limit. - Uses or has access to ES risk index, RBA/direct notables, or intermediate findings. - Willing to share risk index events, existing notables, and feedback through the approved preview process. - Can validate proposed unknown lists and label useful vs. noisy candidates.
