From 606d10ff717a6600647b9e4b2edcd85593c3a944 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 20 Jan 2025 14:44:12 +0000 Subject: [PATCH] Release preparation for version 2.20.2 --- actions/ql/lib/CHANGELOG.md | 4 ++++ actions/ql/lib/change-notes/released/0.4.1.md | 3 +++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 4 ++++ actions/ql/src/change-notes/released/0.4.1.md | 3 +++ actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 24 +++++++++++++++++++ .../change-notes/2024-01-16-consteval-if.md | 4 ---- .../2024-12-23-concept-template.md | 5 ---- .../lib/change-notes/2024-12-24-concept-id.md | 5 ---- .../2024-12-25-variable-specialization.md | 5 ---- .../2024-12-26-requires-clause.md | 7 ------ cpp/ql/lib/change-notes/2025-01-07-config.md | 4 ---- ...1-13-indirect-instruction-barrier-guard.md | 4 ---- .../change-notes/2025-01-13-struct-proxy.md | 6 ----- .../lib/change-notes/2025-01-16-noreturn.md | 4 ---- cpp/ql/lib/change-notes/released/3.2.0.md | 23 ++++++++++++++++++ cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 7 ++++++ .../change-notes/2025-01-09-SysAllocString.md | 4 ---- .../1.3.2.md} | 8 ++++--- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.32.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.32.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 8 +++++++ .../2025-01-03-allow-ref-struct.md | 4 ---- .../2025-01-06-razor-relative-path.md | 4 ---- .../2025-01-09-implicit-to-string.md | 4 ---- csharp/ql/lib/change-notes/released/4.0.2.md | 7 ++++++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 4 ++++ csharp/ql/src/change-notes/released/1.0.15.md | 3 +++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 10 ++++++++ ...l-and-database-sql-driver-source-models.md | 4 ---- .../2025-01-05-gorm-database-sources.md | 5 ---- .../2025-01-07-sqlx-source-models.md | 4 ---- .../2025-01-09-beego-orm-models.md | 4 ---- go/ql/lib/change-notes/released/3.0.2.md | 9 +++++++ go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 4 ++++ go/ql/src/change-notes/released/1.1.6.md | 3 +++ go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 12 ++++++++++ .../2025-01-03-path-transformer.md | 5 ---- .../6.1.0.md} | 11 ++++++--- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 7 ++++++ ...-java-weak-crypto-algorithm-explanation.md | 4 ---- .../1.1.12.md} | 8 ++++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 17 +++++++++++++ .../2025-01-07-dataflow-deprecation.md | 6 ----- .../lib/change-notes/2025-01-07-dataflow.md | 5 ---- .../ql/lib/change-notes/released/2.3.0.md | 16 +++++++++++++ javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 11 +++++++++ .../2025-01-09-angular2-xss-through-dom.md | 4 ---- .../2025-01-09-import-spec-strings.md | 5 ---- .../ql/src/change-notes/released/1.3.0.md | 10 ++++++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 7 ++++++ .../change-notes/2024-12-11-lxml-flowsteps.md | 4 ---- .../change-notes/2025-01-10-sensitive-data.md | 4 ---- .../ql/lib/change-notes/released/3.1.1.md | 8 ++++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 4 ++++ python/ql/src/change-notes/released/1.4.1.md | 3 +++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 7 ++++++ .../change-notes/2025-01-10-sensitive-data.md | 4 ---- .../3.0.2.md} | 10 ++++---- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 ++++ ruby/ql/src/change-notes/released/1.1.10.md | 3 +++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 3 +++ rust/ql/lib/change-notes/released/0.1.0.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 ++ rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 3 +++ rust/ql/src/change-notes/released/0.1.0.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 ++ rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 ++++ .../dataflow/change-notes/released/1.1.9.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.15.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.15.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ++++ shared/ssa/change-notes/released/1.0.15.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/1.0.15.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ .../typeflow/change-notes/released/1.0.15.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.15.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.15.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.2.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.15.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.15.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 6 +++++ .../3.1.1.md} | 7 +++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 ++++ swift/ql/src/change-notes/released/1.0.15.md | 3 +++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 178 files changed, 479 insertions(+), 211 deletions(-) create mode 100644 actions/ql/lib/change-notes/released/0.4.1.md create mode 100644 actions/ql/src/change-notes/released/0.4.1.md delete mode 100644 cpp/ql/lib/change-notes/2024-01-16-consteval-if.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-23-concept-template.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-24-concept-id.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md delete mode 100644 cpp/ql/lib/change-notes/2024-12-26-requires-clause.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-07-config.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-16-noreturn.md create mode 100644 cpp/ql/lib/change-notes/released/3.2.0.md delete mode 100644 cpp/ql/src/change-notes/2025-01-09-SysAllocString.md rename cpp/ql/src/change-notes/{2025-01-07-cmake.md => released/1.3.2.md} (72%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md create mode 100644 csharp/ql/lib/change-notes/released/4.0.2.md create mode 100644 csharp/ql/src/change-notes/released/1.0.15.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.15.md delete mode 100644 go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md delete mode 100644 go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md delete mode 100644 go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md delete mode 100644 go/ql/lib/change-notes/2025-01-09-beego-orm-models.md create mode 100644 go/ql/lib/change-notes/released/3.0.2.md create mode 100644 go/ql/src/change-notes/released/1.1.6.md delete mode 100644 java/ql/lib/change-notes/2025-01-03-path-transformer.md rename java/ql/lib/change-notes/{2024-12-18-javac-tool-interception.md => released/6.1.0.md} (72%) delete mode 100644 java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md rename java/ql/src/change-notes/{2025-01-06-write-replace-serializable.md => released/1.1.12.md} (51%) delete mode 100644 javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md delete mode 100644 javascript/ql/lib/change-notes/2025-01-07-dataflow.md create mode 100644 javascript/ql/lib/change-notes/released/2.3.0.md delete mode 100644 javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md delete mode 100644 javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md create mode 100644 javascript/ql/src/change-notes/released/1.3.0.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.15.md delete mode 100644 python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md delete mode 100644 python/ql/lib/change-notes/2025-01-10-sensitive-data.md rename javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md => python/ql/lib/change-notes/released/3.1.1.md (55%) create mode 100644 python/ql/src/change-notes/released/1.4.1.md delete mode 100644 ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md rename ruby/ql/lib/change-notes/{2024-12-20-data-flow-types.md => released/3.0.2.md} (57%) create mode 100644 ruby/ql/src/change-notes/released/1.1.10.md create mode 100644 rust/ql/lib/CHANGELOG.md create mode 100644 rust/ql/lib/change-notes/released/0.1.0.md create mode 100644 rust/ql/lib/codeql-pack.release.yml create mode 100644 rust/ql/src/CHANGELOG.md create mode 100644 rust/ql/src/change-notes/released/0.1.0.md create mode 100644 rust/ql/src/codeql-pack.release.yml create mode 100644 shared/controlflow/change-notes/released/1.0.15.md create mode 100644 shared/dataflow/change-notes/released/1.1.9.md create mode 100644 shared/mad/change-notes/released/1.0.15.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.15.md create mode 100644 shared/regex/change-notes/released/1.0.15.md create mode 100644 shared/ssa/change-notes/released/1.0.15.md create mode 100644 shared/threat-models/change-notes/released/1.0.15.md create mode 100644 shared/tutorial/change-notes/released/1.0.15.md create mode 100644 shared/typeflow/change-notes/released/1.0.15.md create mode 100644 shared/typetracking/change-notes/released/1.0.15.md create mode 100644 shared/typos/change-notes/released/1.0.15.md create mode 100644 shared/util/change-notes/released/2.0.2.md create mode 100644 shared/xml/change-notes/released/1.0.15.md create mode 100644 shared/yaml/change-notes/released/1.0.15.md rename swift/ql/lib/change-notes/{2025-01-10-sensitive-data.md => released/3.1.1.md} (84%) create mode 100644 swift/ql/src/change-notes/released/1.0.15.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 7ad10899ce1c9..ce81d2262f813 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### New Features diff --git a/actions/ql/lib/change-notes/released/0.4.1.md b/actions/ql/lib/change-notes/released/0.4.1.md new file mode 100644 index 0000000000000..0d865d0571e18 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 458bfbeccffd4..89fa3a8718075 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 56654cd7eab4d..0efaa0aac401b 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.1-dev +version: 0.4.1 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index caa8feca55851..3eac1f7998700 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### New Queries diff --git a/actions/ql/src/change-notes/released/0.4.1.md b/actions/ql/src/change-notes/released/0.4.1.md new file mode 100644 index 0000000000000..0d865d0571e18 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 458bfbeccffd4..89fa3a8718075 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 7c4d7dde27bd8..346b621f8dc98 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.1-dev +version: 0.4.1 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 919bd905e73bf..a17d5f27f5b6b 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 3.2.0 + +### New Features + +* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. +* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* Template classes that are of `struct` type are now also instances of the `Struct` class. +* Template classes that are of `union` type are now also instances of the `Union` class. +* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. +* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. +* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. +* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. +* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. +* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. +* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. +* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. +* A new class `Concept` was introduced, which represents C++20 concepts. +* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. +* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. + +### Minor Analysis Improvements + +* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. + ## 3.1.0 ### Deprecated APIs diff --git a/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md b/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md deleted file mode 100644 index 0b6c2faea9596..0000000000000 --- a/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. diff --git a/cpp/ql/lib/change-notes/2024-12-23-concept-template.md b/cpp/ql/lib/change-notes/2024-12-23-concept-template.md deleted file mode 100644 index 067d5f4f6cf1e..0000000000000 --- a/cpp/ql/lib/change-notes/2024-12-23-concept-template.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `Concept` was introduced, which represents C++20 concepts. -* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. diff --git a/cpp/ql/lib/change-notes/2024-12-24-concept-id.md b/cpp/ql/lib/change-notes/2024-12-24-concept-id.md deleted file mode 100644 index 77aaed42abb4c..0000000000000 --- a/cpp/ql/lib/change-notes/2024-12-24-concept-id.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. - diff --git a/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md b/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md deleted file mode 100644 index b34e4bf34a849..0000000000000 --- a/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. -* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. diff --git a/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md b/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md deleted file mode 100644 index f8ac1395f2c7d..0000000000000 --- a/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: feature ---- -* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. -* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. -* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. -* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. diff --git a/cpp/ql/lib/change-notes/2025-01-07-config.md b/cpp/ql/lib/change-notes/2025-01-07-config.md deleted file mode 100644 index 73b4962cf3456..0000000000000 --- a/cpp/ql/lib/change-notes/2025-01-07-config.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. diff --git a/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md b/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md deleted file mode 100644 index 61f406a8179ed..0000000000000 --- a/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md b/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md deleted file mode 100644 index 2052b8af495e4..0000000000000 --- a/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- -* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. -* Template classes that are of `struct` type are now also instances of the `Struct` class. -* Template classes that are of `union` type are now also instances of the `Union` class. diff --git a/cpp/ql/lib/change-notes/2025-01-16-noreturn.md b/cpp/ql/lib/change-notes/2025-01-16-noreturn.md deleted file mode 100644 index a270b650d91d2..0000000000000 --- a/cpp/ql/lib/change-notes/2025-01-16-noreturn.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. diff --git a/cpp/ql/lib/change-notes/released/3.2.0.md b/cpp/ql/lib/change-notes/released/3.2.0.md new file mode 100644 index 0000000000000..513faa95cd418 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/3.2.0.md @@ -0,0 +1,23 @@ +## 3.2.0 + +### New Features + +* Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`. +* A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class. +* Template classes that are of `struct` type are now also instances of the `Struct` class. +* Template classes that are of `union` type are now also instances of the `Union` class. +* A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration. +* New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses. +* A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause. +* A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause. +* A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists. +* A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates. +* A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization. +* A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions. +* A new class `Concept` was introduced, which represents C++20 concepts. +* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts. +* A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements. + +### Minor Analysis Improvements + +* `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 82f62960aa3b8..f3d134d8910d7 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.2.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 6ffc77714d47f..7cdffd1f31baf 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.1.1-dev +version: 3.2.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 7d957e42696cf..671026afc561c 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.3.2 + +### Minor Analysis Improvements + +* Added dataflow models for `SysAllocString` and related functions. +* The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration. + ## 1.3.1 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md b/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md deleted file mode 100644 index 919cfbecfb003..0000000000000 --- a/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added dataflow models for `SysAllocString` and related functions. diff --git a/cpp/ql/src/change-notes/2025-01-07-cmake.md b/cpp/ql/src/change-notes/released/1.3.2.md similarity index 72% rename from cpp/ql/src/change-notes/2025-01-07-cmake.md rename to cpp/ql/src/change-notes/released/1.3.2.md index e2909a8bceada..1e504b099e346 100644 --- a/cpp/ql/src/change-notes/2025-01-07-cmake.md +++ b/cpp/ql/src/change-notes/released/1.3.2.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- +## 1.3.2 + +### Minor Analysis Improvements + +* Added dataflow models for `SysAllocString` and related functions. * The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index e71b6d081f157..86a9cb32d86bc 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.1 +lastReleaseVersion: 1.3.2 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 5f0e63bfec48a..d0e9e6fa0844d 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.2-dev +version: 1.3.2 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 0a74ff6d7d081..5e50f32db5f4f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.32 + +No user-facing changes. + ## 1.7.31 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md new file mode 100644 index 0000000000000..c729b717c6ada --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md @@ -0,0 +1,3 @@ +## 1.7.32 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 908f8a00a39b3..a09015b688d30 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.32 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 39d5520bf7646..a3760994ee09d 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.32-dev +version: 1.7.32 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 0a74ff6d7d081..5e50f32db5f4f 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.32 + +No user-facing changes. + ## 1.7.31 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md new file mode 100644 index 0000000000000..c729b717c6ada --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md @@ -0,0 +1,3 @@ +## 1.7.32 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 908f8a00a39b3..a09015b688d30 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.31 +lastReleaseVersion: 1.7.32 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 23f5eddd1419f..21a841c1167f8 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.32-dev +version: 1.7.32 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 857acdec93a95..ccc682d0c4f8d 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,11 @@ +## 4.0.2 + +### Minor Analysis Improvements + +* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. +* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. +* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. + ## 4.0.1 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md b/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md deleted file mode 100644 index c9a7234fa2029..0000000000000 --- a/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. diff --git a/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md b/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md deleted file mode 100644 index dcb481739459f..0000000000000 --- a/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. diff --git a/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md b/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md deleted file mode 100644 index 2956898841ee2..0000000000000 --- a/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. diff --git a/csharp/ql/lib/change-notes/released/4.0.2.md b/csharp/ql/lib/change-notes/released/4.0.2.md new file mode 100644 index 0000000000000..58eea5ab5a465 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/4.0.2.md @@ -0,0 +1,7 @@ +## 4.0.2 + +### Minor Analysis Improvements + +* Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions. +* The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones. +* C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index c0db4dcc0b33d..765f0717719a0 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.1 +lastReleaseVersion: 4.0.2 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index e32376ee2706a..1b14be57a3290 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.2-dev +version: 4.0.2 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 1adfe6e1822ce..70e815289e834 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 ### Minor Analysis Improvements diff --git a/csharp/ql/src/change-notes/released/1.0.15.md b/csharp/ql/src/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 0034f69ef874d..4835e57483d3b 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.15-dev +version: 1.0.15 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 2d5ba191d2eb0..6fe7803215561 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.15.md b/go/ql/consistency-queries/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 47d3802ccdbf9..aea4c4495acff 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.15-dev +version: 1.0.15 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index b48a4098866f1..430521477301e 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* `database` local source models have been added for the Beego ORM package. +* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. +* Added `database` source models for database methods from the `gorm.io/gorm` package. +` +* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. + ## 3.0.1 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md b/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md deleted file mode 100644 index 3ee41e073eca4..0000000000000 --- a/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. diff --git a/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md b/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md deleted file mode 100644 index a8ae4792feb50..0000000000000 --- a/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `database` source models for database methods from the `gorm.io/gorm` package. -` diff --git a/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md b/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md deleted file mode 100644 index 820c255194c49..0000000000000 --- a/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. diff --git a/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md b/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md deleted file mode 100644 index e68a5315ff1f1..0000000000000 --- a/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `database` local source models have been added for the Beego ORM package. diff --git a/go/ql/lib/change-notes/released/3.0.2.md b/go/ql/lib/change-notes/released/3.0.2.md new file mode 100644 index 0000000000000..8301be3230b00 --- /dev/null +++ b/go/ql/lib/change-notes/released/3.0.2.md @@ -0,0 +1,9 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* `database` local source models have been added for the Beego ORM package. +* `database` local source models have been added for the `github.com/jmoiron/sqlx` package. +* Added `database` source models for database methods from the `gorm.io/gorm` package. +` +* `database` local source models have been added for the `database/sql` and `database/sql/driver` packages. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index e3b15d965db68..de0e567baf769 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.2 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 23156a6939f31..88f7ae1c4f5e3 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.2-dev +version: 3.0.2 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 838a8bce5eaaa..f28caff537d36 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.6 + +No user-facing changes. + ## 1.1.5 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.1.6.md b/go/ql/src/change-notes/released/1.1.6.md new file mode 100644 index 0000000000000..553350f40afa1 --- /dev/null +++ b/go/ql/src/change-notes/released/1.1.6.md @@ -0,0 +1,3 @@ +## 1.1.6 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index df39a9de059d4..9e712a00a21d9 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.5 +lastReleaseVersion: 1.1.6 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index e33da9a8c9140..b18442add414d 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.6-dev +version: 1.1.6 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index e7aa3c152deab..ac8d8d6651f3c 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 6.1.0 + +### New Features + +* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. + +### Minor Analysis Improvements + +* `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible. +* `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`. +* `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`. + ## 6.0.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/2025-01-03-path-transformer.md b/java/ql/lib/change-notes/2025-01-03-path-transformer.md deleted file mode 100644 index 919383bfb610e..0000000000000 --- a/java/ql/lib/change-notes/2025-01-03-path-transformer.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. - diff --git a/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md b/java/ql/lib/change-notes/released/6.1.0.md similarity index 72% rename from java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md rename to java/ql/lib/change-notes/released/6.1.0.md index 99c4756b766c1..2f1050c4a8a17 100644 --- a/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md +++ b/java/ql/lib/change-notes/released/6.1.0.md @@ -1,6 +1,11 @@ ---- -category: minorAnalysis ---- +## 6.1.0 + +### New Features + +* The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated. + +### Minor Analysis Improvements + * `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible. * `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`. * `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index f8c4fa43ccb75..22247782f3e5a 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 6.1.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 18b74a919dd26..693b1ba0d0635 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.0.1-dev +version: 6.1.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index c7148cba8d868..478735d6ed48f 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.1.12 + +### Bug Fixes + +* Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm. +* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. + ## 1.1.11 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md b/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md deleted file mode 100644 index c26f0816d143e..0000000000000 --- a/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. diff --git a/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md b/java/ql/src/change-notes/released/1.1.12.md similarity index 51% rename from java/ql/src/change-notes/2025-01-06-write-replace-serializable.md rename to java/ql/src/change-notes/released/1.1.12.md index 9eceda87acec2..d0aa65411b732 100644 --- a/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md +++ b/java/ql/src/change-notes/released/1.1.12.md @@ -1,4 +1,6 @@ ---- -category: fix ---- +## 1.1.12 + +### Bug Fixes + * Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm. +* The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 121f8cf035d3e..f5b135d01938f 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.11 +lastReleaseVersion: 1.1.12 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index c808e5db6b002..933c13c31669d 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.12-dev +version: 1.1.12 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 7aa60446f0e62..f7773662f1e85 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,20 @@ +## 2.3.0 + +### Deprecated APIs + +* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a + deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. + See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). + +### Major Analysis Improvements + +* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. + This is a significant change and users may consequently observe differences in the alerts generated by the analysis. + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. + ## 2.2.1 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md b/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md deleted file mode 100644 index 411a836d653fe..0000000000000 --- a/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: deprecated ---- -* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a - deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. - See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). diff --git a/javascript/ql/lib/change-notes/2025-01-07-dataflow.md b/javascript/ql/lib/change-notes/2025-01-07-dataflow.md deleted file mode 100644 index 9c94c47cd377c..0000000000000 --- a/javascript/ql/lib/change-notes/2025-01-07-dataflow.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. - This is a significant change and users may consequently observe differences in the alerts generated by the analysis. diff --git a/javascript/ql/lib/change-notes/released/2.3.0.md b/javascript/ql/lib/change-notes/released/2.3.0.md new file mode 100644 index 0000000000000..9ac4b694ac76d --- /dev/null +++ b/javascript/ql/lib/change-notes/released/2.3.0.md @@ -0,0 +1,16 @@ +## 2.3.0 + +### Deprecated APIs + +* Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a + deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working. + See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries). + +### Major Analysis Improvements + +* All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript. + This is a significant change and users may consequently observe differences in the alerts generated by the analysis. + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 863e3cd380d96..5936154675ae2 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.2.1 +lastReleaseVersion: 2.3.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index a37a0b685e2ca..cfd0698ad5ccb 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.2.2-dev +version: 2.3.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 5bf4466796e9a..0a932a1595099 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.3.0 + +### Major Analysis Improvements + +* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. + +### Bug Fixes + +* Fixed a TypeScript extractor crash that would occur when encountering an export specifier + whose local specifier was a string literal. + ## 1.2.6 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md b/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md deleted file mode 100644 index b88a3ca3de65a..0000000000000 --- a/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. diff --git a/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md b/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md deleted file mode 100644 index 02fd7bdac94e8..0000000000000 --- a/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* Fixed a TypeScript extractor crash that would occur when encountering an export specifier - whose local specifier was a string literal. diff --git a/javascript/ql/src/change-notes/released/1.3.0.md b/javascript/ql/src/change-notes/released/1.3.0.md new file mode 100644 index 0000000000000..3c6062323cf9d --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.3.0.md @@ -0,0 +1,10 @@ +## 1.3.0 + +### Major Analysis Improvements + +* The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates. + +### Bug Fixes + +* Fixed a TypeScript extractor crash that would occur when encountering an export specifier + whose local specifier was a string literal. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 24962f7ba24bf..ec16350ed6fd9 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.6 +lastReleaseVersion: 1.3.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 152a266ef965c..1f82f6a231663 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.2.7-dev +version: 1.3.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 490b5dc360a03..46c730a2bdc47 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.15.md b/misc/suite-helpers/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 26c6f3aee9cc0..562f760e26567 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.15-dev +version: 1.0.15 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index aabefe63a4208..13a183b0bc20f 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 3.1.1 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. + ## 3.1.0 ### New Features diff --git a/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md b/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md deleted file mode 100644 index 0ceaf914c3612..0000000000000 --- a/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2025-01-10-sensitive-data.md b/python/ql/lib/change-notes/2025-01-10-sensitive-data.md deleted file mode 100644 index 5eac93cb1a6b2..0000000000000 --- a/python/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md b/python/ql/lib/change-notes/released/3.1.1.md similarity index 55% rename from javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md rename to python/ql/lib/change-notes/released/3.1.1.md index 5eac93cb1a6b2..37eeaa379bf29 100644 --- a/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ b/python/ql/lib/change-notes/released/3.1.1.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- +## 3.1.1 + +### Minor Analysis Improvements + * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +- Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 82f62960aa3b8..c06beda86a3a2 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.1.1 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 2c1d49af4c46a..388f129d15b2a 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.1-dev +version: 3.1.1 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index d5cacfc840187..48612d804ae84 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.1 + +No user-facing changes. + ## 1.4.0 ### New Queries diff --git a/python/ql/src/change-notes/released/1.4.1.md b/python/ql/src/change-notes/released/1.4.1.md new file mode 100644 index 0000000000000..38987aa49cd08 --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.1.md @@ -0,0 +1,3 @@ +## 1.4.1 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index b8b2e97d50860..43ccf4467bed2 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index daed42ec94b73..13607fb6e5397 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.1-dev +version: 1.4.1 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 9179de3b7d5f1..917cc0290a7aa 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 3.0.2 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. + ## 3.0.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md b/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md deleted file mode 100644 index 5eac93cb1a6b2..0000000000000 --- a/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md b/ruby/ql/lib/change-notes/released/3.0.2.md similarity index 57% rename from ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md rename to ruby/ql/lib/change-notes/released/3.0.2.md index d47b8b77e7e18..fda49a7efdfc2 100644 --- a/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md +++ b/ruby/ql/lib/change-notes/released/3.0.2.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- -* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. \ No newline at end of file +## 3.0.2 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. +* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index e3b15d965db68..de0e567baf769 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.1 +lastReleaseVersion: 3.0.2 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index fa3b6fbd3c361..8265455b85f6d 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.2-dev +version: 3.0.2 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 7d341c3f80866..3b12430e6f773 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.10 + +No user-facing changes. + ## 1.1.9 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.10.md b/ruby/ql/src/change-notes/released/1.1.10.md new file mode 100644 index 0000000000000..49c75986f38b5 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.10.md @@ -0,0 +1,3 @@ +## 1.1.10 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 6f4795f3ea0bd..4c01918d41448 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 1.1.10 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 6ece819a2d6ed..89423b9ae922a 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.10-dev +version: 1.1.10 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md new file mode 100644 index 0000000000000..7b4d4fc699c0e --- /dev/null +++ b/rust/ql/lib/CHANGELOG.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.0.md b/rust/ql/lib/change-notes/released/0.1.0.md new file mode 100644 index 0000000000000..7b4d4fc699c0e --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml new file mode 100644 index 0000000000000..2e08f40f6aa31 --- /dev/null +++ b/rust/ql/lib/codeql-pack.release.yml @@ -0,0 +1,2 @@ +--- +lastReleaseVersion: 0.1.0 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 181e992287ce5..2088df8fbc7ea 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.0-dev +version: 0.1.0 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md new file mode 100644 index 0000000000000..7b4d4fc699c0e --- /dev/null +++ b/rust/ql/src/CHANGELOG.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.0.md b/rust/ql/src/change-notes/released/0.1.0.md new file mode 100644 index 0000000000000..7b4d4fc699c0e --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml new file mode 100644 index 0000000000000..2e08f40f6aa31 --- /dev/null +++ b/rust/ql/src/codeql-pack.release.yml @@ -0,0 +1,2 @@ +--- +lastReleaseVersion: 0.1.0 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 9073d47cb685c..39df51356bd2e 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.0-dev +version: 0.1.0 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 5f4501ed1e3db..e876302b58bfb 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/1.0.15.md b/shared/controlflow/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/controlflow/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 900e7ad735504..f6ff4ea58c43e 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 949660e338119..8524b149db560 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.9 + +No user-facing changes. + ## 1.1.8 ### Minor Analysis Improvements diff --git a/shared/dataflow/change-notes/released/1.1.9.md b/shared/dataflow/change-notes/released/1.1.9.md new file mode 100644 index 0000000000000..f9d367d4248cf --- /dev/null +++ b/shared/dataflow/change-notes/released/1.1.9.md @@ -0,0 +1,3 @@ +## 1.1.9 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 64972659c4261..6f4795f3ea0bd 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.8 +lastReleaseVersion: 1.1.9 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 93379260c4635..011ade8a42488 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.9-dev +version: 1.1.9 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 1b2146927e539..b7416e72c0481 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.15.md b/shared/mad/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/mad/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index c77998a779ff6..0ba8768c65af7 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 993922ecc49d7..d6049c6a9fcbc 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.15.md b/shared/rangeanalysis/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 0124854813957..889b31d480721 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 45bb8da81db22..33d1399a12dab 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.15.md b/shared/regex/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/regex/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 2598750f3b612..f7ccb2bffe7d8 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index d31fb6c6120cd..30a55a5859cb1 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.15.md b/shared/ssa/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index b535eee605635..bb32b0a273d88 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 2d5ba191d2eb0..6fe7803215561 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.15.md b/shared/threat-models/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 903324ab6e700..6978112ee6db2 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.15-dev +version: 1.0.15 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index cc4652e04fff4..ebfe21d85d17f 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.15.md b/shared/tutorial/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 9268c70aa43ca..b8a1eeb6c9072 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index ac6192fd7d8b0..9644aa49fd426 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.15.md b/shared/typeflow/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 10306beaf685d..b41796eece497 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index f651b953118f7..71a6ce3acf295 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/1.0.15.md b/shared/typetracking/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/typetracking/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 5f4f23526b6f1..0d5c9e3406766 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 924a3fc0a7bfa..e4d9b985300b8 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.15.md b/shared/typos/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/typos/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 665e3ab8d14ba..7c8de0f205961 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 9dd6c05d40a17..38800b2bcb71e 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.2 + +No user-facing changes. + ## 2.0.1 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.2.md b/shared/util/change-notes/released/2.0.2.md new file mode 100644 index 0000000000000..862ef0e9df7c1 --- /dev/null +++ b/shared/util/change-notes/released/2.0.2.md @@ -0,0 +1,3 @@ +## 2.0.2 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index fe974a4dbf37c..81c7f1dbc13c7 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.1 +lastReleaseVersion: 2.0.2 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 372d7a95b70a9..c9428ed6a966c 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.2-dev +version: 2.0.2 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 6837f7507d853..740618e89773a 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.15.md b/shared/xml/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/xml/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index e87c526b006c4..37aab4a7b6d79 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 6e940e8d264a0..5f6250607e098 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.15.md b/shared/yaml/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 3f800572c973b..c7d2d80c71399 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.15-dev +version: 1.0.15 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index c976d0c851436..9c569ad4bed33 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 3.1.1 + +### Minor Analysis Improvements + +* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. + ## 3.1.0 ### Major Analysis Improvements diff --git a/swift/ql/lib/change-notes/2025-01-10-sensitive-data.md b/swift/ql/lib/change-notes/released/3.1.1.md similarity index 84% rename from swift/ql/lib/change-notes/2025-01-10-sensitive-data.md rename to swift/ql/lib/change-notes/released/3.1.1.md index 5eac93cb1a6b2..5893b024a74ab 100644 --- a/swift/ql/lib/change-notes/2025-01-10-sensitive-data.md +++ b/swift/ql/lib/change-notes/released/3.1.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 3.1.1 + +### Minor Analysis Improvements + * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 82f62960aa3b8..c06beda86a3a2 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.0 +lastReleaseVersion: 3.1.1 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 2d7ecc9e029ba..5dcdfea8f7fcd 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.1-dev +version: 3.1.1 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index a26a68434ebf5..ad51d96751eda 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.15 + +No user-facing changes. + ## 1.0.14 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.15.md b/swift/ql/src/change-notes/released/1.0.15.md new file mode 100644 index 0000000000000..8d7f4df3e5f4d --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.15.md @@ -0,0 +1,3 @@ +## 1.0.15 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 3b484f28dfab5..8debd0d34c2bd 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.14 +lastReleaseVersion: 1.0.15 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index a99bde028caa3..9d11be540624f 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.15-dev +version: 1.0.15 groups: - swift - queries