Skip to content

Refactor documentation for clarity and consistency #168

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
sifex merged 6 commits into from
Dec 18, 2025
Merged

Refactor documentation for clarity and consistency #168

sifex merged 6 commits into from
Dec 18, 2025

Conversation

@sifex
Copy link
Collaborator

@sifex sifex commented Dec 18, 2025
edited
Loading

Context

This pull request updates the documentation for Sigma rules, filters, and correlations to standardize code annotation syntax, improve clarity, and correct minor typos. The main change is replacing the old inline comment format (// [!code ...]) with the new hash-based format (# [!code ...]) across all example YAML blocks. Additionally, there are improvements to filter documentation, expanded filter usage examples, and some minor corrections to field values and explanatory text.

Standardization and Syntax Updates

  • Updated all code annotation comments in YAML examples from // [!code ...] to # [!code ...] for consistency and clarity in docs/basics/conditions.md, docs/basics/log-sources.md, docs/basics/rules.md, docs/meta/correlations.md, docs/meta/filters.md, and docs/meta/index.md. [1] [2] [3] [4] [5] [6]

Documentation Improvements for Filters

  • Enhanced the Sigma Filters documentation with expanded examples, including how to reference all rules within a logsource and clarified the distinction between exclusion and inclusion filters. Added code-group blocks and improved explanatory text. [1] [2]

Minor Corrections and Typos

  • Fixed typos such as changing "build-in" to "built-in" and corrected YAML field values for consistency (e.g., using double quotes instead of single quotes, and aligning indentation). [1] [2] [3]

Cleanup of Deprecated or Redundant Sections

  • Removed redundant or deprecated informational and falsepositive sections from correlation and filter examples to streamline the documentation. [1] [2] [3]

Formatting and List Consistency

  • Standardized bullet point formatting in lists and code comments for better readability and consistency throughout the documentation. [1] [2]

@sinnwise
Refactor documentation for clarity and consistency
3bd1e86 
- Updated comments in conditions.md to use '#' instead of '//'
- Standardized formatting in log-sources.md, rules.md, and pipelines.md
- Enhanced correlation examples in correlations.md for better readability
- Improved filter documentation in filters.md, including new examples for inclusion and exclusion
- Updated package.json dependencies to latest versions
@sinnwise
fix: downgrade vitepress to version 1.6.4 for compatibility reasons
65f0177
@sinnwise
fix: update vitepress to version 1.6.4 for compatibility and improve …
80fe60c 
…error handling in fetch_og_data function
@sinnwise
feat: implement static blog data fetching and improve Open Graph data…
dc401fb 
… handling
@sinnwise
fix: clean up code formatting and improve consistency in blog data ha…
74ef3e5 
…ndling
@sinnwise
fix: update no-unused-vars rule to ignore leading underscores in argu…
5f6aada 
…ments
@sifex sifex merged commit dbed1ac into main Dec 18, 2025
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@sifex @sinnwise