Merge pull request #18432 from github/revert-18430-release-prep/2.20.1

Revert "Release preparation for version 2.20.1"

actions/ql/src/change-notes/released/0.4.0.md → actions/ql/lib/change-notes/2024-12-19-initial-release.md

@@ -1,5 +1,4 @@
-## 0.4.0
-
-### New Queries
-
+---
+category: feature
+---
 * Initial public preview release

actions/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/actions-all
-version: 0.4.0
+version: 0.4.0-dev
 library: true
 warnOnImplicitThis: true
 dependencies:

actions/ql/src/CHANGELOG.md → actions/ql/src/change-notes/2024-12-19-initial-release.md

@@ -1,5 +1,4 @@
-## 0.4.0
-
-### New Queries
-
+---
+category: newQuery
+---
 * Initial public preview release

actions/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/actions-queries
-version: 0.4.0
+version: 0.4.0-dev
 library: false
 warnOnImplicitThis: true
 groups: [actions, queries]

cpp/ql/lib/CHANGELOG.md

@@ -1,22 +1,3 @@
-## 3.1.0
-
-### Deprecated APIs
-
-* The `TemplateParameter` class, representing C++ type template parameters has been deprecated. Use `TypeTemplateParameter` instead.
-
-### New Features
-
-* New classes `SizeofPackExprOperator` and `SizeofPackTypeOperator` were introduced, which represent the C++ `sizeof...` operator taking expressions and type arguments, respectively.
-* A new class `TemplateTemplateParameterInstantiation` was introduced, which represents instantiations of template template parameters.
-* A new predicate `getAnInstantiation` was added to the `TemplateTemplateParameter` class, which yields instantiations of template template parameters.
-* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of template template parameters.
-* A new class `NonTypeTemplateParameter` was introduced, which represents C++ non-type template parameters.
-* A new class `TemplateParameterBase` was introduced, which represents C++ non-type template parameters, type template parameters, and template template parameters.
-
-### Minor Analysis Improvements
-
-* The `Guards` library (`semmle.code.cpp.controlflow.Guards`) has been improved to recognize more guard conditions.
-
 ## 3.0.0
 
 ### Breaking Changes

cpp/ql/lib/change-notes/2024-12-04-guard-conditions.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The `Guards` library (`semmle.code.cpp.controlflow.Guards`) has been improved to recognize more guard conditions.

cpp/ql/lib/change-notes/2024-12-17-template-parameter-base.md

@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* A new class `TemplateParameterBase` was introduced, which represents C++ non-type template parameters, type template parameters, and template template parameters.

cpp/ql/lib/change-notes/2024-12-17-template-parameter.md

@@ -0,0 +1,4 @@
+---
+category: deprecated
+---
+* The `TemplateParameter` class, representing C++ type template parameters has been deprecated. Use `TypeTemplateParameter` instead.

cpp/ql/lib/change-notes/2024-12-18-non-type-template-parameter.md

@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* A new class `NonTypeTemplateParameter` was introduced, which represents C++ non-type template parameters.

cpp/ql/lib/change-notes/2024-12-20-sizeof-pack.md

@@ -0,0 +1,4 @@
+---
+category: feature
+---
+* New classes `SizeofPackExprOperator` and `SizeofPackTypeOperator` were introduced, which represent the C++ `sizeof...` operator taking expressions and type arguments, respectively.

cpp/ql/lib/change-notes/2024-12-20-template-template-instantiation.md

@@ -0,0 +1,6 @@
+---
+category: feature
+---
+* A new class `TemplateTemplateParameterInstantiation` was introduced, which represents instantiations of template template parameters.
+* A new predicate `getAnInstantiation` was added to the `TemplateTemplateParameter` class, which yields instantiations of template template parameters.
+* The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of template template parameters.

cpp/ql/lib/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 3.1.0
+lastReleaseVersion: 3.0.0

cpp/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 3.1.0
+version: 3.0.1-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp

cpp/ql/src/CHANGELOG.md

@@ -1,13 +1,3 @@
-## 1.3.1
-
-### Minor Analysis Improvements
-
-* The "Returning stack-allocated memory" query (`cpp/return-stack-allocated-memory`) no longer produces results if there is an extraction error in the returned expression.
-* The "Badly bounded write" query (`cpp/badly-bounded-write`) no longer produces results if there is an extraction error in the type of the output buffer.
-* The "Too few arguments to formatting function" query (`cpp/wrong-number-format-arguments`) no longer produces results if an argument has an extraction error.
-* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) no longer produces results when an argument type has an extraction error.
-* Added dataflow models and flow sources for Microsoft's Active Template Library (ATL).
-
 ## 1.3.0
 
 ### New Queries

cpp/ql/src/change-notes/2024-11-27-active-template-library.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added dataflow models and flow sources for Microsoft's Active Template Library (ATL).

cpp/ql/src/change-notes/2024-12-05-badly-bounded-write.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Badly bounded write" query (`cpp/badly-bounded-write`) no longer produces results if there is an extraction error in the type of the output buffer.

cpp/ql/src/change-notes/2024-12-05-wrong-number-format-arguments.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Too few arguments to formatting function" query (`cpp/wrong-number-format-arguments`) no longer produces results if an argument has an extraction error.

cpp/ql/src/change-notes/2024-12-05-wrong-type-format-args.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) no longer produces results when an argument type has an extraction error.

cpp/ql/src/change-notes/2024-12-18-return-stack-allocated-memory.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The "Returning stack-allocated memory" query (`cpp/return-stack-allocated-memory`) no longer produces results if there is an extraction error in the returned expression.

cpp/ql/src/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.1
+lastReleaseVersion: 1.3.0

cpp/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.3.1
+version: 1.3.1-dev
 groups:
   - cpp
   - queries

csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md

@@ -1,7 +1,3 @@
-## 1.7.31
-
-No user-facing changes.
-
 ## 1.7.30
 
 No user-facing changes.

csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.31
+lastReleaseVersion: 1.7.30

csharp/ql/campaigns/Solorigate/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.31
+version: 1.7.31-dev
 groups:
   - csharp
   - solorigate

csharp/ql/campaigns/Solorigate/src/CHANGELOG.md

@@ -1,7 +1,3 @@
-## 1.7.31
-
-No user-facing changes.
-
 ## 1.7.30
 
 No user-facing changes.

csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.31
+lastReleaseVersion: 1.7.30

csharp/ql/campaigns/Solorigate/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.31
+version: 1.7.31-dev
 groups:
   - csharp
   - solorigate

csharp/ql/lib/CHANGELOG.md

@@ -1,16 +1,3 @@
-## 4.0.1
-
-### Minor Analysis Improvements
-
-* C# 13: Added QL library support for *collection* like type `params` parameters.
-* Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`:
-  - `[SupplyParameterFromForm]`
-  - `[SupplyParameterFromQuery]`
-* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. 
-* Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method.
-* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths.
-* The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features.
-
 ## 4.0.0
 
 ### Breaking Changes

csharp/ql/lib/change-notes/2024-12-04-dataflow-type-pruning-tweak.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths.

csharp/ql/lib/change-notes/2024-12-04-dotnet9.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features.

csharp/ql/lib/change-notes/2024-12-05-aspnetcore-mvc-model.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method.

csharp/ql/lib/change-notes/2024-12-12-add-markupstring-as-html-injection-sink.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. 

csharp/ql/lib/change-notes/2024-12-18-blazor-attribute-sources.md

@@ -0,0 +1,6 @@
+---
+category: minorAnalysis
+---
+* Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`:
+  - `[SupplyParameterFromForm]`
+  - `[SupplyParameterFromQuery]`

csharp/ql/lib/change-notes/2024-12-20-collection-params.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* C# 13: Added QL library support for *collection* like type `params` parameters.

csharp/ql/lib/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.0.1
+lastReleaseVersion: 4.0.0

csharp/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 4.0.1
+version: 4.0.1-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp

csharp/ql/src/CHANGELOG.md

@@ -1,9 +1,3 @@
-## 1.0.14
-
-### Minor Analysis Improvements
-
-* The `ExternalApi` and `TestLibrary` modules have been moved to the library pack.
-
 ## 1.0.13
 
 ### Minor Analysis Improvements

csharp/ql/src/change-notes/released/1.0.14.md → csharp/ql/src/change-notes/2024-12-17-move-libraries.md

@@ -1,5 +1,4 @@
-## 1.0.14
-
-### Minor Analysis Improvements
-
+---
+category: minorAnalysis
+---
 * The `ExternalApi` and `TestLibrary` modules have been moved to the library pack.

csharp/ql/src/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.14
+lastReleaseVersion: 1.0.13

csharp/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.0.14
+version: 1.0.14-dev
 groups:
   - csharp
   - queries

go/ql/consistency-queries/CHANGELOG.md

@@ -1,7 +1,3 @@
-## 1.0.14
-
-No user-facing changes.
-
 ## 1.0.13
 
 No user-facing changes.

go/ql/consistency-queries/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.14
+lastReleaseVersion: 1.0.13

go/ql/consistency-queries/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.14
+version: 1.0.14-dev
 groups:
   - go
   - queries

go/ql/lib/CHANGELOG.md

@@ -1,11 +1,3 @@
-## 3.0.1
-
-### Minor Analysis Improvements
-
-* Added a `commandargs` local source model for the `os.Args` variable.
-* Source models defined using models-as-data now work for variadic parameters.
-* Data flow out of variadic parameters now works in more situations. Summary models defined using models-as-data work. Source models defined using models-as-data do not work yet.
-
 ## 3.0.0
 
 ### Breaking Changes

go/ql/lib/change-notes/2024-12-06-improve-flow-out-of-variadic-parameter.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Data flow out of variadic parameters now works in more situations. Summary models defined using models-as-data work. Source models defined using models-as-data do not work yet.

go/ql/lib/change-notes/2024-12-12-variadic-parameter-sources.md

@@ -0,0 +1,4 @@
+---
+category: minorAnalysis
+---
+* Source models defined using models-as-data now work for variadic parameters.

go/ql/lib/change-notes/2024-12-13-os-args-model.md

@@ -0,0 +1,5 @@
+---
+category: minorAnalysis
+---
+* Added a `commandargs` local source model for the `os.Args` variable.
+