diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 447df134409..6599212bcb6 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.5.1 + +No user-facing changes. + ## 0.5.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/released/0.5.1.md b/cpp/ql/lib/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..0275d38f63c --- /dev/null +++ b/cpp/ql/lib/change-notes/released/0.5.1.md @@ -0,0 +1,3 @@ +## 0.5.1 + +No user-facing changes. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 49261b900a7..7a3170f8c21 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 0.5.1-dev +version: 0.5.1 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 853c3263cb4..4a82d185a5b 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.5.1 + +### Minor Analysis Improvements + +* The `cpp/no-space-for-terminator` and `cpp/uncontrolled-allocation-size` queries have been enhanced with heuristic detection of allocations. These queries now find more results. + ## 0.5.0 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2023-01-05-heuristic-allocations.md b/cpp/ql/src/change-notes/released/0.5.1.md similarity index 80% rename from cpp/ql/src/change-notes/2023-01-05-heuristic-allocations.md rename to cpp/ql/src/change-notes/released/0.5.1.md index 2f1f762b4d0..dea0cd21aa5 100644 --- a/cpp/ql/src/change-notes/2023-01-05-heuristic-allocations.md +++ b/cpp/ql/src/change-notes/released/0.5.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.5.1 + +### Minor Analysis Improvements + * The `cpp/no-space-for-terminator` and `cpp/uncontrolled-allocation-size` queries have been enhanced with heuristic detection of allocations. These queries now find more results. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 816749f86ba..02353d56787 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 0.5.1-dev +version: 0.5.1 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index dff41cdf8da..8966ac26c12 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.1 + +No user-facing changes. + ## 1.4.0 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.4.1.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.4.1.md new file mode 100644 index 00000000000..38987aa49cd --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.4.1.md @@ -0,0 +1,3 @@ +## 1.4.1 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index b8b2e97d508..43ccf4467be 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index a24d7b8d582..2ce8a49503e 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.4.1-dev +version: 1.4.1 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index dff41cdf8da..8966ac26c12 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.1 + +No user-facing changes. + ## 1.4.0 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.4.1.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.4.1.md new file mode 100644 index 00000000000..38987aa49cd --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.4.1.md @@ -0,0 +1,3 @@ +## 1.4.1 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index b8b2e97d508..43ccf4467be 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index b8fe38701b4..4af3e2d0a6e 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.4.1-dev +version: 1.4.1 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 1d8939d2fd2..a667a9506eb 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 0.5.1 + +### Major Analysis Improvements + +* Added library support for generic attributes (also for CIL extracted attributes). +* `cil.ConstructedType::getName` was changed to include printing of the type arguments. + +### Minor Analysis Improvements + +* Attributes on methods in CIL are now extracted (Bugfix). +* Support for `static virtual` and `static abstract` interface members. +* Support for *operators* in interface definitions. +* C# 11: Added support for the unsigned right shift `>>>` and unsigned right shift assignment `>>>=` operators. +* Query id's have been aligned such that they are prefixed with `cs` instead of `csharp`. + ## 0.5.0 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2023-01-03-genericattributes.md b/csharp/ql/lib/change-notes/2023-01-03-genericattributes.md deleted file mode 100644 index 053c9113006..00000000000 --- a/csharp/ql/lib/change-notes/2023-01-03-genericattributes.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Added library support for generic attributes (also for CIL extracted attributes). -* `cil.ConstructedType::getName` was changed to include printing of the type arguments. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2023-01-03-queryids.md b/csharp/ql/lib/change-notes/2023-01-03-queryids.md deleted file mode 100644 index e0b5220df35..00000000000 --- a/csharp/ql/lib/change-notes/2023-01-03-queryids.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Query id's have been aligned such that they are prefixed with `cs` instead of `csharp`. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2023-01-11-unsigned-right-shift.md b/csharp/ql/lib/change-notes/2023-01-11-unsigned-right-shift.md deleted file mode 100644 index 6c644b8b2fb..00000000000 --- a/csharp/ql/lib/change-notes/2023-01-11-unsigned-right-shift.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 11: Added support for the unsigned right shift `>>>` and unsigned right shift assignment `>>>=` operators. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2023-01-16-virtualizable-operators.md b/csharp/ql/lib/change-notes/2023-01-16-virtualizable-operators.md deleted file mode 100644 index 25aae2aa2b3..00000000000 --- a/csharp/ql/lib/change-notes/2023-01-16-virtualizable-operators.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Support for `static virtual` and `static abstract` interface members. -* Support for *operators* in interface definitions. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2023-01-18-cilmethodattributes.md b/csharp/ql/lib/change-notes/2023-01-18-cilmethodattributes.md deleted file mode 100644 index 155549d5493..00000000000 --- a/csharp/ql/lib/change-notes/2023-01-18-cilmethodattributes.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Attributes on methods in CIL are now extracted (Bugfix). \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/released/0.5.1.md b/csharp/ql/lib/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..0ae25ddfc8c --- /dev/null +++ b/csharp/ql/lib/change-notes/released/0.5.1.md @@ -0,0 +1,14 @@ +## 0.5.1 + +### Major Analysis Improvements + +* Added library support for generic attributes (also for CIL extracted attributes). +* `cil.ConstructedType::getName` was changed to include printing of the type arguments. + +### Minor Analysis Improvements + +* Attributes on methods in CIL are now extracted (Bugfix). +* Support for `static virtual` and `static abstract` interface members. +* Support for *operators* in interface definitions. +* C# 11: Added support for the unsigned right shift `>>>` and unsigned right shift assignment `>>>=` operators. +* Query id's have been aligned such that they are prefixed with `cs` instead of `csharp`. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 7c5c234f07f..f2646fb191c 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 0.5.1-dev +version: 0.5.1 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index b58edb4a4c8..ccadde93480 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.5.1 + +No user-facing changes. + ## 0.5.0 ### New Queries diff --git a/csharp/ql/src/change-notes/released/0.5.1.md b/csharp/ql/src/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..0275d38f63c --- /dev/null +++ b/csharp/ql/src/change-notes/released/0.5.1.md @@ -0,0 +1,3 @@ +## 0.5.1 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index be7c133e050..0c5537368d6 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 0.5.1-dev +version: 0.5.1 groups: - csharp - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index a395643110a..e182b5bb473 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### Breaking Changes diff --git a/go/ql/lib/change-notes/released/0.4.1.md b/go/ql/lib/change-notes/released/0.4.1.md new file mode 100644 index 00000000000..0d865d0571e --- /dev/null +++ b/go/ql/lib/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 458bfbeccff..89fa3a87180 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 140062a39fe..bfc84d7d2ad 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 0.4.1-dev +version: 0.4.1 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index a57fb3dab13..bfb7bd3a590 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.4.1 + +### Minor Analysis Improvements + +* Replacing "\r" or "\n" using the functions `strings.ReplaceAll`, `strings.Replace`, `strings.Replacer.Replace` and `strings.Replacer.WriteString` has been added as a sanitizer for the queries "Log entries created from user input". +* The functions `strings.Replacer.Replace` and `strings.Replacer.WriteString` have been added as sanitizers for the query "Potentially unsafe quoting". + ## 0.4.0 ### Minor Analysis Improvements diff --git a/go/ql/src/change-notes/2023-01-17-add-extra-string-replace-sanitizers.md b/go/ql/src/change-notes/released/0.4.1.md similarity index 84% rename from go/ql/src/change-notes/2023-01-17-add-extra-string-replace-sanitizers.md rename to go/ql/src/change-notes/released/0.4.1.md index aa9fdac0f3f..027ca847401 100644 --- a/go/ql/src/change-notes/2023-01-17-add-extra-string-replace-sanitizers.md +++ b/go/ql/src/change-notes/released/0.4.1.md @@ -1,5 +1,6 @@ ---- -category: minorAnalysis ---- +## 0.4.1 + +### Minor Analysis Improvements + * Replacing "\r" or "\n" using the functions `strings.ReplaceAll`, `strings.Replace`, `strings.Replacer.Replace` and `strings.Replacer.WriteString` has been added as a sanitizer for the queries "Log entries created from user input". -* The functions `strings.Replacer.Replace` and `strings.Replacer.WriteString` have been added as sanitizers for the query "Potentially unsafe quoting". \ No newline at end of file +* The functions `strings.Replacer.Replace` and `strings.Replacer.WriteString` have been added as sanitizers for the query "Potentially unsafe quoting". diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 458bfbeccff..89fa3a87180 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 5369871c288..32e79e0910b 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 0.4.1-dev +version: 0.4.1 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index f71903756e0..363d569e8a2 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 0.5.1 + +### Minor Analysis Improvements + +* Added sink models for the constructors of `org.springframework.jdbc.object.MappingSqlQuery` and `org.springframework.jdbc.object.MappingSqlQueryWithParameters`. +* Added more dataflow models for frequently-used JDK APIs. +* Removed summary model for `java.lang.String#endsWith(String)` and added neutral model for this API. +* Added additional taint step for `java.lang.String#endsWith(String)` to `ConditionalBypassFlowConfig`. +* Added `AllowContentAccessMethod` to represent the `setAllowContentAccess` method of the `android.webkit.WebSettings` class. +* Added an external flow source for the parameters of methods annotated with `android.webkit.JavascriptInterface`. + ## 0.5.0 ### Minor Analysis Improvements diff --git a/java/ql/lib/change-notes/2022-01-13-android-javascriptinterface-parameters-remote-sources.md b/java/ql/lib/change-notes/2022-01-13-android-javascriptinterface-parameters-remote-sources.md deleted file mode 100644 index 7915d4ea530..00000000000 --- a/java/ql/lib/change-notes/2022-01-13-android-javascriptinterface-parameters-remote-sources.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added an external flow source for the parameters of methods annotated with `android.webkit.JavascriptInterface`. diff --git a/java/ql/lib/change-notes/2022-12-21-allowcontentaccessmethod.md b/java/ql/lib/change-notes/2022-12-21-allowcontentaccessmethod.md deleted file mode 100644 index 292bc418459..00000000000 --- a/java/ql/lib/change-notes/2022-12-21-allowcontentaccessmethod.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `AllowContentAccessMethod` to represent the `setAllowContentAccess` method of the `android.webkit.WebSettings` class. diff --git a/java/ql/lib/change-notes/2023-01-03-add-more-top-jdk-models.md b/java/ql/lib/change-notes/2023-01-03-add-more-top-jdk-models.md deleted file mode 100644 index 1272c00953e..00000000000 --- a/java/ql/lib/change-notes/2023-01-03-add-more-top-jdk-models.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: minorAnalysis ---- -* Added more dataflow models for frequently-used JDK APIs. -* Removed summary model for `java.lang.String#endsWith(String)` and added neutral model for this API. -* Added additional taint step for `java.lang.String#endsWith(String)` to `ConditionalBypassFlowConfig`. diff --git a/java/ql/lib/change-notes/2023-01-05-fix-mad-typos.md b/java/ql/lib/change-notes/2023-01-05-fix-mad-typos.md deleted file mode 100644 index 8c5281ff27f..00000000000 --- a/java/ql/lib/change-notes/2023-01-05-fix-mad-typos.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added sink models for the constructors of `org.springframework.jdbc.object.MappingSqlQuery` and `org.springframework.jdbc.object.MappingSqlQueryWithParameters`. diff --git a/java/ql/lib/change-notes/released/0.5.1.md b/java/ql/lib/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..d8baf4b13fc --- /dev/null +++ b/java/ql/lib/change-notes/released/0.5.1.md @@ -0,0 +1,10 @@ +## 0.5.1 + +### Minor Analysis Improvements + +* Added sink models for the constructors of `org.springframework.jdbc.object.MappingSqlQuery` and `org.springframework.jdbc.object.MappingSqlQueryWithParameters`. +* Added more dataflow models for frequently-used JDK APIs. +* Removed summary model for `java.lang.String#endsWith(String)` and added neutral model for this API. +* Added additional taint step for `java.lang.String#endsWith(String)` to `ConditionalBypassFlowConfig`. +* Added `AllowContentAccessMethod` to represent the `setAllowContentAccess` method of the `android.webkit.WebSettings` class. +* Added an external flow source for the parameters of methods annotated with `android.webkit.JavascriptInterface`. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 6379ef04328..04a2629ce87 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 0.5.1-dev +version: 0.5.1 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 81754a9e440..790c0a494df 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.5.1 + +### New Queries + +* Added a new query `java/android/websettings-allow-content-access` to detect Android WebViews which do not disable access to `content://` urls. + +### Minor Analysis Improvements + +* The name, description and alert message for the query `java/concatenated-sql-query` have been altered to emphasise that the query flags the use of string concatenation to construct SQL queries, not the lack of appropriate escaping. The query's files have been renamed from `SqlUnescaped.ql` and `SqlUnescapedLib.qll` to `SqlConcatenated.ql` and `SqlConcatenatedLib.qll` respectively; in the unlikely event your custom configuration or queries refer to either of these files by name, those references will need to be adjusted. The query id remains `java/concatenated-sql-query`, so alerts should not be re-raised as a result of this change. + ## 0.5.0 ### New Queries diff --git a/java/ql/src/change-notes/2022-12-21-android-allowcontentaccess-query.md b/java/ql/src/change-notes/2022-12-21-android-allowcontentaccess-query.md deleted file mode 100644 index ebd6a7b5dd5..00000000000 --- a/java/ql/src/change-notes/2022-12-21-android-allowcontentaccess-query.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query `java/android/websettings-allow-content-access` to detect Android WebViews which do not disable access to `content://` urls. diff --git a/java/ql/src/change-notes/2023-01-03-renamed-sql-unescaped.md b/java/ql/src/change-notes/released/0.5.1.md similarity index 75% rename from java/ql/src/change-notes/2023-01-03-renamed-sql-unescaped.md rename to java/ql/src/change-notes/released/0.5.1.md index b414a485a50..968f7789f71 100644 --- a/java/ql/src/change-notes/2023-01-03-renamed-sql-unescaped.md +++ b/java/ql/src/change-notes/released/0.5.1.md @@ -1,4 +1,9 @@ ---- -category: minorAnalysis ---- +## 0.5.1 + +### New Queries + +* Added a new query `java/android/websettings-allow-content-access` to detect Android WebViews which do not disable access to `content://` urls. + +### Minor Analysis Improvements + * The name, description and alert message for the query `java/concatenated-sql-query` have been altered to emphasise that the query flags the use of string concatenation to construct SQL queries, not the lack of appropriate escaping. The query's files have been renamed from `SqlUnescaped.ql` and `SqlUnescapedLib.qll` to `SqlConcatenated.ql` and `SqlConcatenatedLib.qll` respectively; in the unlikely event your custom configuration or queries refer to either of these files by name, those references will need to be adjusted. The query id remains `java/concatenated-sql-query`, so alerts should not be re-raised as a result of this change. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index cd275edc94b..b608a61f2a0 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 0.5.1-dev +version: 0.5.1 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index baf5c2f71d6..34a99f85cdc 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 ### New Features diff --git a/javascript/ql/lib/change-notes/released/0.4.1.md b/javascript/ql/lib/change-notes/released/0.4.1.md new file mode 100644 index 00000000000..0d865d0571e --- /dev/null +++ b/javascript/ql/lib/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 458bfbeccff..89fa3a87180 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index d6c0f6448c9..ceab4d06a33 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 0.4.1-dev +version: 0.4.1 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index d85d0b653b9..45f04dcb720 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.5.1 + +No user-facing changes. + ## 0.5.0 ### Minor Analysis Improvements diff --git a/javascript/ql/src/change-notes/released/0.5.1.md b/javascript/ql/src/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..0275d38f63c --- /dev/null +++ b/javascript/ql/src/change-notes/released/0.5.1.md @@ -0,0 +1,3 @@ +## 0.5.1 + +No user-facing changes. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 1bb8f691206..57f9b8de7be 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 0.5.1-dev +version: 0.5.1 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index be3c02247e5..d4168a7d83d 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.1 + +No user-facing changes. + ## 0.4.0 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/0.4.1.md b/misc/suite-helpers/change-notes/released/0.4.1.md new file mode 100644 index 00000000000..0d865d0571e --- /dev/null +++ b/misc/suite-helpers/change-notes/released/0.4.1.md @@ -0,0 +1,3 @@ +## 0.4.1 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 458bfbeccff..89fa3a87180 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.0 +lastReleaseVersion: 0.4.1 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 06682d5cd70..ee034e45a3d 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,3 +1,3 @@ name: codeql/suite-helpers -version: 0.4.1-dev +version: 0.4.1 groups: shared diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 42d4fb50c42..8414ed2b4e9 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.7.1 + +No user-facing changes. + ## 0.7.0 ### Major Analysis Improvements diff --git a/python/ql/lib/change-notes/released/0.7.1.md b/python/ql/lib/change-notes/released/0.7.1.md new file mode 100644 index 00000000000..86973d36042 --- /dev/null +++ b/python/ql/lib/change-notes/released/0.7.1.md @@ -0,0 +1,3 @@ +## 0.7.1 + +No user-facing changes. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index c761f3e7ab4..e007a9aec3e 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.0 +lastReleaseVersion: 0.7.1 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index a2b9e94a717..a47f83b2fe0 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 0.7.1-dev +version: 0.7.1 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 91cf24218b6..987d6b9df59 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.6.1 + +No user-facing changes. + ## 0.6.0 ### Minor Analysis Improvements diff --git a/python/ql/src/change-notes/released/0.6.1.md b/python/ql/src/change-notes/released/0.6.1.md new file mode 100644 index 00000000000..6008e49b8e7 --- /dev/null +++ b/python/ql/src/change-notes/released/0.6.1.md @@ -0,0 +1,3 @@ +## 0.6.1 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index a3f820f884d..80fb0899f64 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.0 +lastReleaseVersion: 0.6.1 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index eac60a094be..decdf4f3f14 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 0.6.1-dev +version: 0.6.1 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index b377a36ff55..46ff4dd4c0f 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.5.1 + +No user-facing changes. + ## 0.5.0 ### Major Analysis Improvements diff --git a/ruby/ql/lib/change-notes/released/0.5.1.md b/ruby/ql/lib/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..0275d38f63c --- /dev/null +++ b/ruby/ql/lib/change-notes/released/0.5.1.md @@ -0,0 +1,3 @@ +## 0.5.1 + +No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 04cb9361ad9..979780aad09 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 0.5.1-dev +version: 0.5.1 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index b378ee033b0..0bd0d0f2caf 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.5.1 + +### New Queries + +* Added a new query, `rb/unsafe-code-construction`, to detect libraries that unsafely construct code from their inputs. + +### Minor Analysis Improvements + +* The `rb/unsafe-deserialization` query now recognizes input from STDIN as a source. + ## 0.5.0 ### New Queries diff --git a/ruby/ql/src/change-notes/2022-11-25-unsafe-code-construction.md b/ruby/ql/src/change-notes/2022-11-25-unsafe-code-construction.md deleted file mode 100644 index 485a902693b..00000000000 --- a/ruby/ql/src/change-notes/2022-11-25-unsafe-code-construction.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `rb/unsafe-code-construction`, to detect libraries that unsafely construct code from their inputs. diff --git a/ruby/ql/src/change-notes/2023-01-06-stdin-as-deserialization-source.md b/ruby/ql/src/change-notes/2023-01-06-stdin-as-deserialization-source.md deleted file mode 100644 index 95e0d9d088c..00000000000 --- a/ruby/ql/src/change-notes/2023-01-06-stdin-as-deserialization-source.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The `rb/unsafe-deserialization` query now recognizes input from STDIN as a source. \ No newline at end of file diff --git a/ruby/ql/src/change-notes/released/0.5.1.md b/ruby/ql/src/change-notes/released/0.5.1.md new file mode 100644 index 00000000000..d840193bf03 --- /dev/null +++ b/ruby/ql/src/change-notes/released/0.5.1.md @@ -0,0 +1,9 @@ +## 0.5.1 + +### New Queries + +* Added a new query, `rb/unsafe-code-construction`, to detect libraries that unsafely construct code from their inputs. + +### Minor Analysis Improvements + +* The `rb/unsafe-deserialization` query now recognizes input from STDIN as a source. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 30e271c5361..0bf7024c337 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.0 +lastReleaseVersion: 0.5.1 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index bca7c0016ac..e7a25f0f665 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 0.5.1-dev +version: 0.5.1 groups: - ruby - queries diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 09b7dc3e270..d9429e7ee93 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.5 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/regex/change-notes/released/0.0.5.md b/shared/regex/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..766ec2723b5 --- /dev/null +++ b/shared/regex/change-notes/released/0.0.5.md @@ -0,0 +1,3 @@ +## 0.0.5 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index e9664370d3b..74569aedb10 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 0.0.5-dev +version: 0.0.5 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 2374d06dde6..c3b48808d82 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.9 + +No user-facing changes. + ## 0.0.8 No user-facing changes. diff --git a/shared/ssa/change-notes/released/0.0.9.md b/shared/ssa/change-notes/released/0.0.9.md new file mode 100644 index 00000000000..c9e17c6d6cf --- /dev/null +++ b/shared/ssa/change-notes/released/0.0.9.md @@ -0,0 +1,3 @@ +## 0.0.9 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 58fdc6b45de..ecdd64fbab8 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.8 +lastReleaseVersion: 0.0.9 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 7449d3cc164..29a390a9ca1 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/ssa -version: 0.0.9-dev +version: 0.0.9 groups: shared library: true diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 46019123940..71795929e51 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.2 + +No user-facing changes. + ## 0.0.1 ### Minor Analysis Improvements diff --git a/shared/tutorial/change-notes/released/0.0.2.md b/shared/tutorial/change-notes/released/0.0.2.md new file mode 100644 index 00000000000..5ab250998ed --- /dev/null +++ b/shared/tutorial/change-notes/released/0.0.2.md @@ -0,0 +1,3 @@ +## 0.0.2 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index c6933410b71..55dc06fbd76 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.1 +lastReleaseVersion: 0.0.2 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index c8c459271ca..34cfdcdb0fa 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 0.0.2-dev +version: 0.0.2 groups: shared library: true diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 1707b4548ab..2ad3c385b51 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.2 + +No user-facing changes. + ## 0.0.1 ### Minor Analysis Improvements diff --git a/shared/typetracking/change-notes/released/0.0.2.md b/shared/typetracking/change-notes/released/0.0.2.md new file mode 100644 index 00000000000..5ab250998ed --- /dev/null +++ b/shared/typetracking/change-notes/released/0.0.2.md @@ -0,0 +1,3 @@ +## 0.0.2 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index c6933410b71..55dc06fbd76 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.1 +lastReleaseVersion: 0.0.2 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 356d5a31e06..c033ab57614 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 0.0.2-dev +version: 0.0.2 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index d1d227d827b..4678a265e65 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.9 + +No user-facing changes. + ## 0.0.8 No user-facing changes. diff --git a/shared/typos/change-notes/released/0.0.9.md b/shared/typos/change-notes/released/0.0.9.md new file mode 100644 index 00000000000..c9e17c6d6cf --- /dev/null +++ b/shared/typos/change-notes/released/0.0.9.md @@ -0,0 +1,3 @@ +## 0.0.9 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 58fdc6b45de..ecdd64fbab8 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.8 +lastReleaseVersion: 0.0.9 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 4f6e15f73c7..73bf9200510 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/typos -version: 0.0.9-dev +version: 0.0.9 groups: shared library: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index faa6c4d24cb..0d2c907a0c5 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.2 + +No user-facing changes. + ## 0.0.1 ### Minor Analysis Improvements diff --git a/shared/util/change-notes/released/0.0.2.md b/shared/util/change-notes/released/0.0.2.md new file mode 100644 index 00000000000..5ab250998ed --- /dev/null +++ b/shared/util/change-notes/released/0.0.2.md @@ -0,0 +1,3 @@ +## 0.0.2 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index c6933410b71..55dc06fbd76 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.1 +lastReleaseVersion: 0.0.2 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 9e169123c8d..1278aba7a7d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 0.0.2-dev +version: 0.0.2 groups: shared library: true dependencies: