SigmaHQ/sigma — reverse-engineered prompt

Build me an open source security detection rule repository like Sigma.

I want analysts to be able to write simple YAML rules for log events, organize them into general detections, threat hunting rules, emerging threat rules, compliance rules, and placeholder rules, and share them with other teams. Include clear docs that explain what Sigma is, how to write a good rule, how to contribute, and how to report false positives or suggest new rule ideas.

Please set up the repo with sensible folders, a few realistic example rules, basic validation checks so broken rule files get caught, and a way to package rules for releases. Keep the rules vendor neutral so they can later be converted into different SIEM searches with existing Sigma tools. Look up the current Sigma rule format docs online if you need to.