diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index bd6b24ef487..5009104e9af 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.16 + +No user-facing changes. + ## 0.4.15 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.16.md b/actions/ql/lib/change-notes/released/0.4.16.md new file mode 100644 index 00000000000..d2472bd981f --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.16.md @@ -0,0 +1,3 @@ +## 0.4.16 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 613c98e4872..0664e01a1dd 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.15 +lastReleaseVersion: 0.4.16 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index c10bedbaef6..311ef4d5ef6 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.16-dev +version: 0.4.17-dev library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 769ce155451..265e67e6a89 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.6.8 + +No user-facing changes. + ## 0.6.7 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.6.8.md b/actions/ql/src/change-notes/released/0.6.8.md new file mode 100644 index 00000000000..9984c422a37 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.6.8.md @@ -0,0 +1,3 @@ +## 0.6.8 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index a6d2952e5fb..cad7cba6ce3 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.7 +lastReleaseVersion: 0.6.8 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 11e5bb790b7..4eae56a5c13 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.8-dev +version: 0.6.9-dev library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 7abedf38ee1..705432b565d 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 5.5.0 + +### New Features + +* Added a new class `PchFile` representing precompiled header (PCH) files used during project compilation. + +### Minor Analysis Improvements + +* Added flow summaries for the `Microsoft::WRL::ComPtr` member functions. +* The new dataflow/taint-tracking library (`semmle.code.cpp.dataflow.new.DataFlow` and `semmle.code.cpp.dataflow.new.TaintTracking`) now resolves virtual function calls more precisely. This results in fewer false positives when running dataflow/taint-tracking queries on C++ projects. + ## 5.4.1 ### Minor Analysis Improvements diff --git a/cpp/ql/lib/change-notes/2025-08-19-virtual-dispatch.md b/cpp/ql/lib/change-notes/2025-08-19-virtual-dispatch.md deleted file mode 100644 index 4342bb7f62d..00000000000 --- a/cpp/ql/lib/change-notes/2025-08-19-virtual-dispatch.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The new dataflow/taint-tracking library (`semmle.code.cpp.dataflow.new.DataFlow` and `semmle.code.cpp.dataflow.new.TaintTracking`) now resolves virtual function calls more precisely. This results in fewer false positives when running dataflow/taint-tracking queries on C++ projects. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-08-27-pch.md b/cpp/ql/lib/change-notes/2025-08-27-pch.md deleted file mode 100644 index c4a59f112c5..00000000000 --- a/cpp/ql/lib/change-notes/2025-08-27-pch.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* Added a new class `PchFile` representing precompiled header (PCH) files used during project compilation. - diff --git a/cpp/ql/lib/change-notes/2025-08-28-comptr.md b/cpp/ql/lib/change-notes/2025-08-28-comptr.md deleted file mode 100644 index 9ce6fde50cb..00000000000 --- a/cpp/ql/lib/change-notes/2025-08-28-comptr.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added flow summaries for the `Microsoft::WRL::ComPtr` member functions. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/5.5.0.md b/cpp/ql/lib/change-notes/released/5.5.0.md new file mode 100644 index 00000000000..aad060fdd59 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/5.5.0.md @@ -0,0 +1,10 @@ +## 5.5.0 + +### New Features + +* Added a new class `PchFile` representing precompiled header (PCH) files used during project compilation. + +### Minor Analysis Improvements + +* Added flow summaries for the `Microsoft::WRL::ComPtr` member functions. +* The new dataflow/taint-tracking library (`semmle.code.cpp.dataflow.new.DataFlow` and `semmle.code.cpp.dataflow.new.TaintTracking`) now resolves virtual function calls more precisely. This results in fewer false positives when running dataflow/taint-tracking queries on C++ projects. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 7adcb16ea28..4b8cf9533c1 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.4.1 +lastReleaseVersion: 5.5.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 68f412126f4..2b9af14a4b3 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 5.4.2-dev +version: 5.5.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index e3c013b76c7..eb805dc1af6 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.4.7 + +### Bug Fixes + +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. + ## 1.4.6 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-08-20-add-customizations.md b/cpp/ql/src/change-notes/2025-08-20-add-customizations.md deleted file mode 100644 index 3a01298283c..00000000000 --- a/cpp/ql/src/change-notes/2025-08-20-add-customizations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. \ No newline at end of file diff --git a/swift/ql/src/change-notes/2025-08-20-add-customizations.md b/cpp/ql/src/change-notes/released/1.4.7.md similarity index 82% rename from swift/ql/src/change-notes/2025-08-20-add-customizations.md rename to cpp/ql/src/change-notes/released/1.4.7.md index 3a01298283c..d3b9a12c798 100644 --- a/swift/ql/src/change-notes/2025-08-20-add-customizations.md +++ b/cpp/ql/src/change-notes/released/1.4.7.md @@ -1,4 +1,5 @@ ---- -category: fix ---- -* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. \ No newline at end of file +## 1.4.7 + +### Bug Fixes + +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 3b00bbce928..163362bd632 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.6 +lastReleaseVersion: 1.4.7 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 3e64a19c68b..18637c336b9 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.4.7-dev +version: 1.4.8-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index c276cd6133e..7f3f4d43683 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.47 + +No user-facing changes. + ## 1.7.46 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.47.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.47.md new file mode 100644 index 00000000000..afc26600b73 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.47.md @@ -0,0 +1,3 @@ +## 1.7.47 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index a39de8bc91c..21f0fc0de3c 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.46 +lastReleaseVersion: 1.7.47 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index ea7b1f0c021..826e53b7681 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.47-dev +version: 1.7.48-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index c276cd6133e..7f3f4d43683 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.47 + +No user-facing changes. + ## 1.7.46 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.47.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.47.md new file mode 100644 index 00000000000..afc26600b73 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.47.md @@ -0,0 +1,3 @@ +## 1.7.47 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index a39de8bc91c..21f0fc0de3c 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.46 +lastReleaseVersion: 1.7.47 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 377ad66a5ba..468bd64cbd0 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.47-dev +version: 1.7.48-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 9e3686d8267..0aca82e8310 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,12 @@ +## 5.2.3 + +### Minor Analysis Improvements + +* A bug has been fixed in the data flow analysis, which means that flow through calls using the `base` qualifier may now be tracked more accurately. +* Added summary models for `System.Xml.XmlReader`, `System.Xml.XmlTextReader` and `System.Xml.XmlDictionaryReader`. +* Models-as-data summaries for byte and char arrays and pointers now treat the entire collection as tainted, reflecting their common use as string alternatives. +* The default taint tracking configuration now allows implicit reads from collections at sinks and in additional flow steps. This increases flow coverage for many taint tracking queries and helps reduce false negatives. + ## 5.2.2 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/2025-08-18-byte-char-bulk-types.md b/csharp/ql/lib/change-notes/2025-08-18-byte-char-bulk-types.md deleted file mode 100644 index e5a081c3340..00000000000 --- a/csharp/ql/lib/change-notes/2025-08-18-byte-char-bulk-types.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Models-as-data summaries for byte and char arrays and pointers now treat the entire collection as tainted, reflecting their common use as string alternatives. diff --git a/csharp/ql/lib/change-notes/2025-08-18-implicit-reads-at-sinks.md b/csharp/ql/lib/change-notes/2025-08-18-implicit-reads-at-sinks.md deleted file mode 100644 index d66e982e6ae..00000000000 --- a/csharp/ql/lib/change-notes/2025-08-18-implicit-reads-at-sinks.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The default taint tracking configuration now allows implicit reads from collections at sinks and in additional flow steps. This increases flow coverage for many taint tracking queries and helps reduce false negatives. diff --git a/csharp/ql/lib/change-notes/2025-08-26-xmlreader-models.md b/csharp/ql/lib/change-notes/2025-08-26-xmlreader-models.md deleted file mode 100644 index 9702be7e3b3..00000000000 --- a/csharp/ql/lib/change-notes/2025-08-26-xmlreader-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added summary models for `System.Xml.XmlReader`, `System.Xml.XmlTextReader` and `System.Xml.XmlDictionaryReader`. diff --git a/csharp/ql/lib/change-notes/2025-08-29-base-qualifier-dispatch.md b/csharp/ql/lib/change-notes/2025-08-29-base-qualifier-dispatch.md deleted file mode 100644 index 780c8860810..00000000000 --- a/csharp/ql/lib/change-notes/2025-08-29-base-qualifier-dispatch.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* A bug has been fixed in the data flow analysis, which means that flow through calls using the `base` qualifier may now be tracked more accurately. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/released/5.2.3.md b/csharp/ql/lib/change-notes/released/5.2.3.md new file mode 100644 index 00000000000..b9891310419 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.2.3.md @@ -0,0 +1,8 @@ +## 5.2.3 + +### Minor Analysis Improvements + +* A bug has been fixed in the data flow analysis, which means that flow through calls using the `base` qualifier may now be tracked more accurately. +* Added summary models for `System.Xml.XmlReader`, `System.Xml.XmlTextReader` and `System.Xml.XmlDictionaryReader`. +* Models-as-data summaries for byte and char arrays and pointers now treat the entire collection as tainted, reflecting their common use as string alternatives. +* The default taint tracking configuration now allows implicit reads from collections at sinks and in additional flow steps. This increases flow coverage for many taint tracking queries and helps reduce false negatives. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index e3b1b0c079d..f7fd1ec5b57 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.2.2 +lastReleaseVersion: 5.2.3 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index f5ad09a43fa..d7b4d0f175c 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.2.3-dev +version: 5.2.4-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 2539f93099f..e1109181fca 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.3.4 + +No user-facing changes. + ## 1.3.3 No user-facing changes. diff --git a/csharp/ql/src/change-notes/released/1.3.4.md b/csharp/ql/src/change-notes/released/1.3.4.md new file mode 100644 index 00000000000..5073aca7222 --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.3.4.md @@ -0,0 +1,3 @@ +## 1.3.4 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index eb1f7dabc84..8263ddf2c8b 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.3 +lastReleaseVersion: 1.3.4 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 0567f720300..edb6f9dbe11 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.3.4-dev +version: 1.3.5-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 596a873b2c5..c30f8de8bc9 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.30.md b/go/ql/consistency-queries/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 2cac181bfb5..574d10a1752 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.30-dev +version: 1.0.31-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 0ddd2c37449..686ac94e11b 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.3.3 + +No user-facing changes. + ## 4.3.2 No user-facing changes. diff --git a/go/ql/lib/change-notes/released/4.3.3.md b/go/ql/lib/change-notes/released/4.3.3.md new file mode 100644 index 00000000000..d6710bacd7f --- /dev/null +++ b/go/ql/lib/change-notes/released/4.3.3.md @@ -0,0 +1,3 @@ +## 4.3.3 + +No user-facing changes. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 5b8421b639f..d7b7294771f 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.2 +lastReleaseVersion: 4.3.3 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 2658d54432f..8c172af1e97 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.3.3-dev +version: 4.3.4-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index f86e390b56d..7ec3a3eab64 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.4 + +No user-facing changes. + ## 1.4.3 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.4.4.md b/go/ql/src/change-notes/released/1.4.4.md new file mode 100644 index 00000000000..cb7dd204b9c --- /dev/null +++ b/go/ql/src/change-notes/released/1.4.4.md @@ -0,0 +1,3 @@ +## 1.4.4 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 08f88b689fb..1dfca6daa3b 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.3 +lastReleaseVersion: 1.4.4 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 8c8c36a4fc7..6b36ad98c9d 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.4.4-dev +version: 1.4.5-dev groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index f3b7648c5ed..448b04bdc24 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 7.6.1 + +No user-facing changes. + ## 7.6.0 ### Major Analysis Improvements diff --git a/java/ql/lib/change-notes/released/7.6.1.md b/java/ql/lib/change-notes/released/7.6.1.md new file mode 100644 index 00000000000..fd15c208d88 --- /dev/null +++ b/java/ql/lib/change-notes/released/7.6.1.md @@ -0,0 +1,3 @@ +## 7.6.1 + +No user-facing changes. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index dd20d7a9632..0e73c833572 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.6.0 +lastReleaseVersion: 7.6.1 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 93be6469202..69cadd5a6b0 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.6.1-dev +version: 7.6.2-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 81ce9022d91..ffd5648cddf 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,19 @@ +## 1.7.0 + +### New Queries + +* The query `java/insecure-spring-actuator-config` has been promoted from experimental to the main query pack as `java/spring-boot-exposed-actuators-config`. Its results will now appear by default. This query detects exposure of Spring Boot actuators through configuration files. It was originally submitted as an experimental query [by @luchua-bc](https://github.com/github/codeql/pull/5384). + +### Query Metadata Changes + +* The tag `maintainability` has been removed from `java/run-finalizers-on-exit` and the tags `quality`, `correctness`, and `performance` have been added. +* The tag `maintainability` has been removed from `java/garbage-collection` and the tags `quality` and `correctness` have been added. + +### Minor Analysis Improvements + +* Fixed a bug that was causing false negatives in rare cases in the query `java/dereferenced-value-may-be-null`. +* Removed the `java/empty-statement` query that was subsumed by the `java/empty-block` query. + ## 1.6.3 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-10-03-remove-java-query.md b/java/ql/src/change-notes/2024-10-03-remove-java-query.md deleted file mode 100644 index e9f3e4910cb..00000000000 --- a/java/ql/src/change-notes/2024-10-03-remove-java-query.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Removed the `java/empty-statement` query that was subsumed by the `java/empty-block` query. \ No newline at end of file diff --git a/java/ql/src/change-notes/2025-07-17-spring-actuators-config-promo.md b/java/ql/src/change-notes/2025-07-17-spring-actuators-config-promo.md deleted file mode 100644 index 733017f7131..00000000000 --- a/java/ql/src/change-notes/2025-07-17-spring-actuators-config-promo.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* The query `java/insecure-spring-actuator-config` has been promoted from experimental to the main query pack as `java/spring-boot-exposed-actuators-config`. Its results will now appear by default. This query detects exposure of Spring Boot actuators through configuration files. It was originally submitted as an experimental query [by @luchua-bc](https://github.com/github/codeql/pull/5384). diff --git a/java/ql/src/change-notes/2025-07-19-adjust-tags.md b/java/ql/src/change-notes/2025-07-19-adjust-tags.md deleted file mode 100644 index 0067adebdaf..00000000000 --- a/java/ql/src/change-notes/2025-07-19-adjust-tags.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: queryMetadata ---- -* The tag `maintainability` has been removed from `java/run-finalizers-on-exit` and the tags `quality`, `correctness`, and `performance` have been added. -* The tag `maintainability` has been removed from `java/garbage-collection` and the tags `quality` and `correctness` have been added. diff --git a/java/ql/src/change-notes/2025-08-22-nullness-fn.md b/java/ql/src/change-notes/2025-08-22-nullness-fn.md deleted file mode 100644 index d8d77a470f6..00000000000 --- a/java/ql/src/change-notes/2025-08-22-nullness-fn.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Fixed a bug that was causing false negatives in rare cases in the query `java/dereferenced-value-may-be-null`. diff --git a/java/ql/src/change-notes/released/1.7.0.md b/java/ql/src/change-notes/released/1.7.0.md new file mode 100644 index 00000000000..f0485614fc3 --- /dev/null +++ b/java/ql/src/change-notes/released/1.7.0.md @@ -0,0 +1,15 @@ +## 1.7.0 + +### New Queries + +* The query `java/insecure-spring-actuator-config` has been promoted from experimental to the main query pack as `java/spring-boot-exposed-actuators-config`. Its results will now appear by default. This query detects exposure of Spring Boot actuators through configuration files. It was originally submitted as an experimental query [by @luchua-bc](https://github.com/github/codeql/pull/5384). + +### Query Metadata Changes + +* The tag `maintainability` has been removed from `java/run-finalizers-on-exit` and the tags `quality`, `correctness`, and `performance` have been added. +* The tag `maintainability` has been removed from `java/garbage-collection` and the tags `quality` and `correctness` have been added. + +### Minor Analysis Improvements + +* Fixed a bug that was causing false negatives in rare cases in the query `java/dereferenced-value-may-be-null`. +* Removed the `java/empty-statement` query that was subsumed by the `java/empty-block` query. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 00b51441d88..d1184cc6750 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.3 +lastReleaseVersion: 1.7.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index ec081681c2b..8e1ae28dd6f 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.6.4-dev +version: 1.7.1-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 3604e77c13b..d45d55f6a36 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.6.10 + +### Minor Analysis Improvements + +* Removed `libxmljs` as an XML bomb sink. The underlying libxml2 library now includes [entity reference loop detection](https://github.com/GNOME/libxml2/blob/0c948334a8f5c66d50e9f8992e62998017dc4fc6/NEWS#L905-L908) that prevents XML bomb attacks. + ## 2.6.9 ### Minor Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-07-15-xml-bomb-sinks.md b/javascript/ql/lib/change-notes/released/2.6.10.md similarity index 84% rename from javascript/ql/lib/change-notes/2025-07-15-xml-bomb-sinks.md rename to javascript/ql/lib/change-notes/released/2.6.10.md index b10509c0e06..7b9859668cb 100644 --- a/javascript/ql/lib/change-notes/2025-07-15-xml-bomb-sinks.md +++ b/javascript/ql/lib/change-notes/released/2.6.10.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 2.6.10 + +### Minor Analysis Improvements + * Removed `libxmljs` as an XML bomb sink. The underlying libxml2 library now includes [entity reference loop detection](https://github.com/GNOME/libxml2/blob/0c948334a8f5c66d50e9f8992e62998017dc4fc6/NEWS#L905-L908) that prevents XML bomb attacks. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 8bec0b26cea..aa42bd9f12a 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.9 +lastReleaseVersion: 2.6.10 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 3864c3031b3..e233d83e328 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.10-dev +version: 2.6.11-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index ce2c8bacbb3..ab471438cb1 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.3 + +No user-facing changes. + ## 2.0.2 ### Minor Analysis Improvements diff --git a/javascript/ql/src/change-notes/released/2.0.3.md b/javascript/ql/src/change-notes/released/2.0.3.md new file mode 100644 index 00000000000..7bd669821d5 --- /dev/null +++ b/javascript/ql/src/change-notes/released/2.0.3.md @@ -0,0 +1,3 @@ +## 2.0.3 + +No user-facing changes. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 81c7f1dbc13..fabf1e86596 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.2 +lastReleaseVersion: 2.0.3 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 14a9ceb6a30..b754f04005d 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 2.0.3-dev +version: 2.0.4-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 541e9e2a945..4a5e75cac92 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.30.md b/misc/suite-helpers/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 05d8f61eb99..16add0c5464 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.30-dev +version: 1.0.31-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index b71f642da27..eddd592be74 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.0.14 + +### Minor Analysis Improvements + +- The modelling of Psycopg2 now supports the use of `psycopg2.pool` connection pools for handling database connections. +* Removed `lxml` as an XML bomb sink. The underlying libxml2 library now includes [entity reference loop detection](https://github.com/lxml/lxml/blob/f33ac2c2f5f9c4c4c1fc47f363be96db308f2fa6/doc/FAQ.txt#L1077) that prevents XML bomb attacks. + ## 4.0.13 No user-facing changes. diff --git a/python/ql/lib/change-notes/2025-08-25-psycopg2-connection-pool-modelling.md b/python/ql/lib/change-notes/2025-08-25-psycopg2-connection-pool-modelling.md deleted file mode 100644 index 5a94d9829b4..00000000000 --- a/python/ql/lib/change-notes/2025-08-25-psycopg2-connection-pool-modelling.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -- The modelling of Psycopg2 now supports the use of `psycopg2.pool` connection pools for handling database connections. diff --git a/python/ql/lib/change-notes/2025-07-15-xml-bomb-sinks-python.md b/python/ql/lib/change-notes/released/4.0.14.md similarity index 59% rename from python/ql/lib/change-notes/2025-07-15-xml-bomb-sinks-python.md rename to python/ql/lib/change-notes/released/4.0.14.md index 11ff0181a01..41957d11048 100644 --- a/python/ql/lib/change-notes/2025-07-15-xml-bomb-sinks-python.md +++ b/python/ql/lib/change-notes/released/4.0.14.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- +## 4.0.14 + +### Minor Analysis Improvements + +- The modelling of Psycopg2 now supports the use of `psycopg2.pool` connection pools for handling database connections. * Removed `lxml` as an XML bomb sink. The underlying libxml2 library now includes [entity reference loop detection](https://github.com/lxml/lxml/blob/f33ac2c2f5f9c4c4c1fc47f363be96db308f2fa6/doc/FAQ.txt#L1077) that prevents XML bomb attacks. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index a03f76ad596..5e4c777a339 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.13 +lastReleaseVersion: 4.0.14 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index ad4bbced61a..71746d34c4e 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.14-dev +version: 4.0.15-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 42d3b42a5e8..0c22d526f39 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,11 @@ +## 1.6.4 + +### Minor Analysis Improvements + +* The `py/unexpected-raise-in-special-method` query has been modernized. It produces additional results in cases where the exception is +only raised conditionally. Its precision has been changed from `very-high` to `high`. +* The queries `py/incomplete-ordering`, `py/inconsistent-equality`, and `py/equals-hash-mismatch` have been modernized; no longer relying on outdated libraries, improved documentation, and no longer producing alerts for problems specific to Python 2. + ## 1.6.3 No user-facing changes. diff --git a/python/ql/src/change-notes/2025-07-14-comparisons.md b/python/ql/src/change-notes/2025-07-14-comparisons.md deleted file mode 100644 index a8a2bdacf31..00000000000 --- a/python/ql/src/change-notes/2025-07-14-comparisons.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The queries `py/incomplete-ordering`, `py/inconsistent-equality`, and `py/equals-hash-mismatch` have been modernized; no longer relying on outdated libraries, improved documentation, and no longer producing alerts for problems specific to Python 2. \ No newline at end of file diff --git a/python/ql/src/change-notes/2025-07-25-unexpected-raise-special-method.md b/python/ql/src/change-notes/2025-07-25-unexpected-raise-special-method.md deleted file mode 100644 index 4b79dbc3b81..00000000000 --- a/python/ql/src/change-notes/2025-07-25-unexpected-raise-special-method.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* The `py/unexpected-raise-in-special-method` query has been modernized. It produces additional results in cases where the exception is -only raised conditionally. Its precision has been changed from `very-high` to `high`. \ No newline at end of file diff --git a/python/ql/src/change-notes/released/1.6.4.md b/python/ql/src/change-notes/released/1.6.4.md new file mode 100644 index 00000000000..e2f0bb39930 --- /dev/null +++ b/python/ql/src/change-notes/released/1.6.4.md @@ -0,0 +1,7 @@ +## 1.6.4 + +### Minor Analysis Improvements + +* The `py/unexpected-raise-in-special-method` query has been modernized. It produces additional results in cases where the exception is +only raised conditionally. Its precision has been changed from `very-high` to `high`. +* The queries `py/incomplete-ordering`, `py/inconsistent-equality`, and `py/equals-hash-mismatch` have been modernized; no longer relying on outdated libraries, improved documentation, and no longer producing alerts for problems specific to Python 2. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 00b51441d88..1910e09d6a6 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.3 +lastReleaseVersion: 1.6.4 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 0f047b047b9..3cc58c14faf 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.6.4-dev +version: 1.6.5-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 24c2c0b6a4a..560bf17bc51 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.0.3 + +No user-facing changes. + ## 5.0.2 ### Bug Fixes diff --git a/ruby/ql/lib/change-notes/released/5.0.3.md b/ruby/ql/lib/change-notes/released/5.0.3.md new file mode 100644 index 00000000000..57074925279 --- /dev/null +++ b/ruby/ql/lib/change-notes/released/5.0.3.md @@ -0,0 +1,3 @@ +## 5.0.3 + +No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 3940dee0f32..6997554f6dd 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.2 +lastReleaseVersion: 5.0.3 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index f0cbf51f467..89f162e0ed9 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 5.0.3-dev +version: 5.0.4-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 469f8421413..29b4ff27bc0 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.4 + +No user-facing changes. + ## 1.4.3 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.4.4.md b/ruby/ql/src/change-notes/released/1.4.4.md new file mode 100644 index 00000000000..cb7dd204b9c --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.4.4.md @@ -0,0 +1,3 @@ +## 1.4.4 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 08f88b689fb..1dfca6daa3b 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.3 +lastReleaseVersion: 1.4.4 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 1e435c15de2..da157badc90 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.4.4-dev +version: 1.4.5-dev groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 20275537b0c..6ff2f1072c7 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 0.1.15 + +### Major Analysis Improvements + +* Path resolution has been removed from the Rust extractor. For the majority of purposes CodeQL computed paths have been in use for several previous releases, this completes the transition. Extraction is now faster and more reliable. + +### Minor Analysis Improvements + +* Attribute macros are now taken into account when identifying macro-expanded code. This affects the queries `rust/unused-variable` and `rust/unused-value`, which exclude results in macro-expanded code. +* Improved modelling of the `std::fs`, `async_std::fs` and `tokio::fs` libraries. This may cause more alerts to be found by Rust injection queries, particularly `rust/path-injection`. + ## 0.1.14 ### Minor Analysis Improvements diff --git a/rust/ql/lib/change-notes/2025-08-22-fs.md b/rust/ql/lib/change-notes/2025-08-22-fs.md deleted file mode 100644 index 4de91616bb3..00000000000 --- a/rust/ql/lib/change-notes/2025-08-22-fs.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Improved modelling of the `std::fs`, `async_std::fs` and `tokio::fs` libraries. This may cause more alerts to be found by Rust injection queries, particularly `rust/path-injection`. diff --git a/rust/ql/lib/change-notes/2025-08-25-in-macro-expansion.md b/rust/ql/lib/change-notes/2025-08-25-in-macro-expansion.md deleted file mode 100644 index 1778c42d9b8..00000000000 --- a/rust/ql/lib/change-notes/2025-08-25-in-macro-expansion.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Attribute macros are now taken into account when identifying macro-expanded code. This affects the queries `rust/unused-variable` and `rust/unused-value`, which exclude results in macro-expanded code. \ No newline at end of file diff --git a/rust/ql/lib/change-notes/2025-08-28-path-resolution.md b/rust/ql/lib/change-notes/2025-08-28-path-resolution.md deleted file mode 100644 index c1d61a921a4..00000000000 --- a/rust/ql/lib/change-notes/2025-08-28-path-resolution.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Path resolution has been removed from the Rust extractor. For the majority of purposes CodeQL computed paths have been in use for several previous releases, this completes the transition. Extraction is now faster and more reliable. diff --git a/rust/ql/lib/change-notes/released/0.1.15.md b/rust/ql/lib/change-notes/released/0.1.15.md new file mode 100644 index 00000000000..fa07f2597b1 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.15.md @@ -0,0 +1,10 @@ +## 0.1.15 + +### Major Analysis Improvements + +* Path resolution has been removed from the Rust extractor. For the majority of purposes CodeQL computed paths have been in use for several previous releases, this completes the transition. Extraction is now faster and more reliable. + +### Minor Analysis Improvements + +* Attribute macros are now taken into account when identifying macro-expanded code. This affects the queries `rust/unused-variable` and `rust/unused-value`, which exclude results in macro-expanded code. +* Improved modelling of the `std::fs`, `async_std::fs` and `tokio::fs` libraries. This may cause more alerts to be found by Rust injection queries, particularly `rust/path-injection`. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 76f7b27fb4e..74719634743 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.14 +lastReleaseVersion: 0.1.15 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 68121096b5e..6b78c2d50ad 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.15-dev +version: 0.1.16-dev groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 94231f13170..b8ca5b71568 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 0.1.15 + +### New Queries + +* Added a new query, `rust/log-injection`, for detecting cases where log entries could be forged by a malicious user. + +### Bug Fixes + +* The "Low Rust analysis quality" query (`rust/diagnostic/database-quality`) has been tuned so that it won't trigger on databases that have extracted normally. This will remove spurious messages of "Low Rust analysis quality" on the CodeQL status page. +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. + ## 0.1.14 ### New Queries diff --git a/rust/ql/src/change-notes/2025-08-18-log-injection.md b/rust/ql/src/change-notes/2025-08-18-log-injection.md deleted file mode 100644 index 0d8b9eee355..00000000000 --- a/rust/ql/src/change-notes/2025-08-18-log-injection.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `rust/log-injection`, for detecting cases where log entries could be forged by a malicious user. diff --git a/rust/ql/src/change-notes/2025-08-28-diagnostic-database-quality.md b/rust/ql/src/change-notes/2025-08-28-diagnostic-database-quality.md deleted file mode 100644 index 0aeb9d52d27..00000000000 --- a/rust/ql/src/change-notes/2025-08-28-diagnostic-database-quality.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The "Low Rust analysis quality" query (`rust/diagnostic/database-quality`) has been tuned so that it won't trigger on databases that have extracted normally. This will remove spurious messages of "Low Rust analysis quality" on the CodeQL status page. diff --git a/rust/ql/src/change-notes/released/0.1.15.md b/rust/ql/src/change-notes/released/0.1.15.md new file mode 100644 index 00000000000..eb88879de2c --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.15.md @@ -0,0 +1,10 @@ +## 0.1.15 + +### New Queries + +* Added a new query, `rust/log-injection`, for detecting cases where log entries could be forged by a malicious user. + +### Bug Fixes + +* The "Low Rust analysis quality" query (`rust/diagnostic/database-quality`) has been tuned so that it won't trigger on databases that have extracted normally. This will remove spurious messages of "Low Rust analysis quality" on the CodeQL status page. +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 76f7b27fb4e..74719634743 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.14 +lastReleaseVersion: 0.1.15 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 8057cbc0e68..54c742df0b5 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.15-dev +version: 0.1.16-dev groups: - rust - queries diff --git a/shared/concepts/CHANGELOG.md b/shared/concepts/CHANGELOG.md index 6e48d91ef56..88abeb21fd8 100644 --- a/shared/concepts/CHANGELOG.md +++ b/shared/concepts/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.4 + +No user-facing changes. + ## 0.0.3 No user-facing changes. diff --git a/shared/concepts/change-notes/released/0.0.4.md b/shared/concepts/change-notes/released/0.0.4.md new file mode 100644 index 00000000000..eefe286a4d8 --- /dev/null +++ b/shared/concepts/change-notes/released/0.0.4.md @@ -0,0 +1,3 @@ +## 0.0.4 + +No user-facing changes. diff --git a/shared/concepts/codeql-pack.release.yml b/shared/concepts/codeql-pack.release.yml index a24b693d1e7..ec411a674bc 100644 --- a/shared/concepts/codeql-pack.release.yml +++ b/shared/concepts/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.3 +lastReleaseVersion: 0.0.4 diff --git a/shared/concepts/qlpack.yml b/shared/concepts/qlpack.yml index 849cda97bf0..151939d739a 100644 --- a/shared/concepts/qlpack.yml +++ b/shared/concepts/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/concepts -version: 0.0.4-dev +version: 0.0.5-dev groups: shared library: true dependencies: diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index ecf7d7005e9..7e3580fae37 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.14 + +No user-facing changes. + ## 2.0.13 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.14.md b/shared/controlflow/change-notes/released/2.0.14.md new file mode 100644 index 00000000000..13190ad53e3 --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.14.md @@ -0,0 +1,3 @@ +## 2.0.14 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 30d169d6eb8..23aa0864b29 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.13 +lastReleaseVersion: 2.0.14 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 2dbb7951de1..e1647c3a2f4 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.14-dev +version: 2.0.15-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index db415d30d47..b5b86ffbccb 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.14 + +No user-facing changes. + ## 2.0.13 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.14.md b/shared/dataflow/change-notes/released/2.0.14.md new file mode 100644 index 00000000000..13190ad53e3 --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.14.md @@ -0,0 +1,3 @@ +## 2.0.14 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 30d169d6eb8..23aa0864b29 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.13 +lastReleaseVersion: 2.0.14 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 7ad5bfbdfc3..62a66a7e228 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.14-dev +version: 2.0.15-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 6bd67795a3a..bd3e670038c 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.30.md b/shared/mad/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 0b47255d1a6..33968071a42 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index 8f58f5145db..fba2a870356 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.8 + +No user-facing changes. + ## 0.0.7 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.8.md b/shared/quantum/change-notes/released/0.0.8.md new file mode 100644 index 00000000000..6af2d954c09 --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.8.md @@ -0,0 +1,3 @@ +## 0.0.8 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index a2a5484910b..58fdc6b45de 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.7 +lastReleaseVersion: 0.0.8 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 36d76723360..023d04f544d 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.8-dev +version: 0.0.9-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index c6dd1d9b79d..e64dff3b1e6 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.30.md b/shared/rangeanalysis/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index a8b86549ce9..5ee5c466a3d 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index ccbf4d95cf6..11353af62b1 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.30.md b/shared/regex/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 496ef35adc1..30748219abb 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 9c9caa32918..5a9cf1a7175 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.6 + +No user-facing changes. + ## 2.0.5 No user-facing changes. diff --git a/shared/ssa/change-notes/released/2.0.6.md b/shared/ssa/change-notes/released/2.0.6.md new file mode 100644 index 00000000000..d8ae25aacd0 --- /dev/null +++ b/shared/ssa/change-notes/released/2.0.6.md @@ -0,0 +1,3 @@ +## 2.0.6 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 6c269316f27..fbbc03c7642 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.5 +lastReleaseVersion: 2.0.6 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 8a103c0ef10..1bb80db8eb8 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 2.0.6-dev +version: 2.0.7-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 596a873b2c5..c30f8de8bc9 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.30.md b/shared/threat-models/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 76cca7a3d08..4295c7e7024 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.30-dev +version: 1.0.31-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 73e10501041..61441b61061 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.30.md b/shared/tutorial/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 5427f065760..f640ccc3116 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 5b8d81ca4b3..94df766d756 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.30.md b/shared/typeflow/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 90dd04cd114..f98b15e1540 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index 1857b399fe8..d9dd6b6f2e2 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.11 + +No user-facing changes. + ## 0.0.10 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.11.md b/shared/typeinference/change-notes/released/0.0.11.md new file mode 100644 index 00000000000..19a2a55bd68 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.11.md @@ -0,0 +1,3 @@ +## 0.0.11 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index b740014e5ae..e679dc42092 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.10 +lastReleaseVersion: 0.0.11 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index 509cb216f7a..ca81b09ba49 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.11-dev +version: 0.0.12-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 7e63a18be0b..4e7d55fc700 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.14 + +No user-facing changes. + ## 2.0.13 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.14.md b/shared/typetracking/change-notes/released/2.0.14.md new file mode 100644 index 00000000000..13190ad53e3 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.14.md @@ -0,0 +1,3 @@ +## 2.0.14 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 30d169d6eb8..23aa0864b29 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.13 +lastReleaseVersion: 2.0.14 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 746a61e679f..95228f4b0d7 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.14-dev +version: 2.0.15-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 4c15b434d52..37548ac47d5 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.30.md b/shared/typos/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 036b545df82..42c6e4df22e 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index f7354c0cfbe..193ce4e9521 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.17 + +### Minor Analysis Improvements + +* Added `LocatableOption` and `OptionWithLocationInfo` as modules providing option types with location information. + ## 2.0.16 No user-facing changes. diff --git a/shared/util/change-notes/2025-08-25-loc-option.md b/shared/util/change-notes/2025-08-25-loc-option.md deleted file mode 100644 index ae54b173720..00000000000 --- a/shared/util/change-notes/2025-08-25-loc-option.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `LocatableOption` and `OptionWithLocationInfo` as modules providing option types with location information. \ No newline at end of file diff --git a/shared/util/change-notes/released/2.0.17.md b/shared/util/change-notes/released/2.0.17.md new file mode 100644 index 00000000000..e7a8146ddd0 --- /dev/null +++ b/shared/util/change-notes/released/2.0.17.md @@ -0,0 +1,5 @@ +## 2.0.17 + +### Minor Analysis Improvements + +* Added `LocatableOption` and `OptionWithLocationInfo` as modules providing option types with location information. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index c10461a785c..a5f7c15c020 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.16 +lastReleaseVersion: 2.0.17 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index f3c51c17a49..2587ddb147a 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.17-dev +version: 2.0.18-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 70c94326970..96204491536 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.30.md b/shared/xml/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index c0c541fa282..4e9a5bf0a63 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index e0f14b7a34c..67e07b08467 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.30 + +No user-facing changes. + ## 1.0.29 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.30.md b/shared/yaml/change-notes/released/1.0.30.md new file mode 100644 index 00000000000..cb2cf6d0a27 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.30.md @@ -0,0 +1,3 @@ +## 1.0.30 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 8751a216238..f04640951de 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.29 +lastReleaseVersion: 1.0.30 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 3b757e1f062..56aa47072f0 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.30-dev +version: 1.0.31-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 13c6f27bffb..cef716a2578 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.0.6 + +No user-facing changes. + ## 5.0.5 No user-facing changes. diff --git a/swift/ql/lib/change-notes/released/5.0.6.md b/swift/ql/lib/change-notes/released/5.0.6.md new file mode 100644 index 00000000000..3281a876281 --- /dev/null +++ b/swift/ql/lib/change-notes/released/5.0.6.md @@ -0,0 +1,3 @@ +## 5.0.6 + +No user-facing changes. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 02e5f00fa9e..cc6fded2554 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.5 +lastReleaseVersion: 5.0.6 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 74dffd61857..451e86b8b3d 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 5.0.6-dev +version: 5.0.7-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 8faa03573fc..58d42ca7813 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.4 + +### Bug Fixes + +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. + ## 1.2.3 No user-facing changes. diff --git a/rust/ql/src/change-notes/2025-08-20-add-customizations.md b/swift/ql/src/change-notes/released/1.2.4.md similarity index 82% rename from rust/ql/src/change-notes/2025-08-20-add-customizations.md rename to swift/ql/src/change-notes/released/1.2.4.md index 3a01298283c..cdd0409c4c3 100644 --- a/rust/ql/src/change-notes/2025-08-20-add-customizations.md +++ b/swift/ql/src/change-notes/released/1.2.4.md @@ -1,4 +1,5 @@ ---- -category: fix ---- -* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. \ No newline at end of file +## 1.2.4 + +### Bug Fixes + +* Fixed an inconsistency across languages where most have a `Customizations.qll` file for adding customizations, but not all did. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 09a7400b594..172090f46b6 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.3 +lastReleaseVersion: 1.2.4 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 9ee2255a7d6..7d0821afdd7 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.2.4-dev +version: 1.2.5-dev groups: - swift - queries