Skip to content

Sigma Specification V2.2.0 Release #201

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
nasbench wants to merge 13 commits into
base: main
Choose a base branch
from
Draft

Sigma Specification V2.2.0 Release #201

nasbench wants to merge 13 commits into from

Conversation

@nasbench
Copy link
Member

@nasbench nasbench commented Dec 11, 2025

TBD

nasbench and others added 12 commits October 26, 2025 22:46
@nasbench
Create sigmahq-regression-convention.md
5f66d2c
@nasbench
Update sigmahq-regression-convention.md
da306f1
@nasbench
Update README.md
2d0331b
@nasbench
Update sigma-appendix-tags.md
7be1d00
@nasbench
apply mdformat
b1b2cf6
@frack113
style: 💄 Apply mdformat
4e88b7e
@nasbench @phantinuss
Update sigmahq/sigmahq-regression-convention.md
a69600a 
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
@nasbench
Merge pull request #188 from SigmaHQ/regression-specs
b7570f2 
Add sigmahq-regression-convention
@swachchhanda000
update: remove obsolete Mitre Att&ck tags from sigma specification (#194
a833448 
)

* update: remove obsolete Mitre Att&ck tags from sigma specification

* update: release date
@frack113 @phantinuss
docs: 📚 Aprovides more details on the regex (#193)
537240f 
* docs: 📚 Aprovides more details on the regex

* docs: 📚 Add more information for the regex

* Apply suggestions from code review

Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>

* Apply suggestion from @phantinuss

Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>

* docs: 📚 (?flag) or (?-flag) are deprecated

---------

Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
@frack113 @nasbench @phantinuss
Add scalar for list and map (#195)
6805a8f 
* Merge pull request #191 from SigmaHQ/sep-template

Add Issue Template for SEP

* docs: 📚 Add scalar for list and map

* be clear on case-sensitivity

* Run mdformat

---------

Co-authored-by: Nasreddine Bencherchali <monsteroffire2@gmail.com>
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
@frack113 @nasbench @phantinuss
Add tags attribute definition in correlation rules taxonomy and oth…
8e719ae 
…er updates (#200)

- Add `tags` attribute in the correlation rules taxonomy definition and JSON schema.
- Add sigma_enhancement_proposals_changelog.md‎ to track SEPs state
- Rename Other folder to Changelog
- Other improvements to rules taxonomy
---------

Co-authored-by: Nasreddine Bencherchali <monsteroffire2@gmail.com>
Co-authored-by: phantinuss <79651203+phantinuss@users.noreply.github.com>
@nasbench nasbench moved this to Ready in Specification V2.2 Dec 11, 2025
@sifex @frack113
[v2.2.0] Updates filters with the any rule spec (#202)
10bd96c 
Added support for the `any` string value in the `rules` attribute
to match all rules with the specified logsource. Updated documentation
and examples accordingly.

---------

Co-authored-by: frack113 <62423083+frack113@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

v2.2.0

Projects

Specification V2.2
Status: Ready

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@nasbench @frack113 @swachchhanda000 @sifex