Skip to content

Commit a7de4c0

Browse files
thomaspatzkethomaspatzke
committed
Updated pySigma to 0.8
1 parent 9574413 commit a7de4c0

File tree

3 files changed

+9
-9
lines changed

3 files changed

+9
-9
lines changed

poetry.lock

+4-4
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

pyproject.toml

+2-2
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
[tool.poetry]
22
name = "pysigma-backend-splunk"
3-
version = "0.3.6"
3+
version = "0.3.7"
44
description = "pySigma Splunk backend"
55
authors = ["Thomas Patzke <[email protected]>"]
66
license = "LGPL-2.1-only"
@@ -11,7 +11,7 @@ packages = [
1111

1212
[tool.poetry.dependencies]
1313
python = "^3.8"
14-
pysigma = "^0.7.2"
14+
pysigma = "^0.8.1"
1515
pysigma-pipeline-sysmon = "^1.0.0"
1616

1717
[tool.poetry.dev-dependencies]

sigma/pipelines/splunk/splunk.py

+3-3
Original file line numberDiff line numberDiff line change
@@ -107,7 +107,7 @@ def splunk_cim_data_model():
107107
logsource_linux_process_creation(),
108108
],
109109
rule_condition_linking=any,
110-
detection_item_conditions=[
110+
field_name_conditions=[
111111
ExcludeFieldCondition(
112112
fields = splunk_sysmon_process_creation_cim_mapping.keys()
113113
)
@@ -150,7 +150,7 @@ def splunk_cim_data_model():
150150
logsource_windows_registry_set(),
151151
],
152152
rule_condition_linking=any,
153-
detection_item_conditions=[
153+
field_name_conditions=[
154154
ExcludeFieldCondition(
155155
fields = splunk_windows_registry_cim_mapping.keys()
156156
)
@@ -195,7 +195,7 @@ def splunk_cim_data_model():
195195
rule_conditions=[
196196
logsource_windows_file_event(),
197197
],
198-
detection_item_conditions=[
198+
field_name_conditions=[
199199
ExcludeFieldCondition(
200200
fields = splunk_windows_file_event_cim_mapping.keys()
201201
)

0 commit comments

Comments
 (0)