v0.9.11

Fixed: placeholder value list transformation now allows to use wildcards in replacement values.

v0.9.10

• Case-sensitive matches with cased modifier.
• Backend base class stores last used processing pipeline in last_processing_pipeline object variable for further usage, e.g. checking if particular processing items were applied.

v0.9.9

• Updated MITRE ATT&CK data to version 13.1
• Added ATT&CK technique to tactic mapping

v0.9.8

Fixed issue with installation of plugins in pipx virtual environments (and possibly others)

v0.9.7

Added missing modifier class docstrings.

v0.9.6

Additions

• Field existence check with exists value modifier.
• Added regular expression modifiers i/ignorecase, m/ multiline, s/dotall

Fixes

• Dropping all detection items of a detection caused error with to_plain() (#104)
• Ability to set allowed backends from YAML processing pipeline (#111)
• Merge of errors when SigmaCollection obejcts were merged (#112)

v0.9.5

• IPv6 CIDR support with cidr modifier.
• Fixed corner case of IPv4 CIDR support.
• Integrated pipeline to backend compatibility check into pipeline resolver.

v0.9.4

Removed implicit storage of all keyword arguments from Backend class initialization into config object attribute to enable defined error behavior for unknown parameters instead of silently accepting them.

v0.9.3

Silent plugin installation.

v0.9.2

Added test pipelines and extended test backend.