pySigma Databricks backend
MIT License
![Coverage Badge](https://img.shields.io/endpoint?url=https://gist.githubusercontent.com/alexott/GitHub Gist identifier containing coverage badge JSON expected by shields.io./raw/alexott-databricks-sigma-backend.json)
Status: experimental, work in progress:
cidrmatch
is generated, you still need to provide corresponding function as UDF (I'll add example later)This is the Databricks backend for pySigma. It provides the package sigma.backends.databricks
with the DatabricksBackend
class.
Further, it contains the following processing pipelines in sigma.pipelines.databricks
:
snake_case
: convert column names into snake case formatIt supports the following output formats:
This backend is currently maintained by:
foo*bar
into (startswith(field, "foo") and endswith(field, "bar"))
lower('com\.objective-see\.lulu\.plist')
dotall
, m
/multiline
, i
/ignorecase
, ...