pySigma Elasticsearch Backend

This library provides the Elasticsearch backend for pySigma, converting Sigma rules into Lucene, ES|QL (including correlations), and EQL queries. It supports Elasticsearch versions 7.x and 8.x, with the latest version 2.0.3 requiring Python >=3.10. Release cadence follows Sigma specification updates and Elasticsearch query language changes.