Merge branch 'main' of github.com:github/codeql into python/promote-xpath-injection

python/ql/src/change-notes/released/0.0.10.md

@@ -0,0 +1,6 @@
+## 0.0.10
+
+### New Queries
+
+* The query "LDAP query built from user-controlled sources" (`py/ldap-injection`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @jorgectf](https://github.com/github/codeql/pull/5443).
+* The query "Log Injection" (`py/log-injection`) has been promoted from experimental to the main query pack. Its results will now appear when `security-extended` is used. This query was originally [submitted as an experimental query by @haby0](https://github.com/github/codeql/pull/6182).

python/ql/src/change-notes/released/0.0.8.md

@@ -1,4 +1,5 @@
----
-category: majorAnalysis
----
+## 0.0.8
+
+### Major Analysis Improvements
+
 * User names and other account information is no longer considered to be sensitive data for the queries `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data`, since this lead to many false positives.

python/ql/src/change-notes/released/0.0.9.md

@@ -1,4 +1,5 @@
----
-category: fix
----
+## 0.0.9
+
+### Bug Fixes
+
 * The [View AST functionality](https://codeql.github.com/docs/codeql-for-visual-studio-code/exploring-the-structure-of-your-source-code/) no longer prints detailed information about regular expressions, greatly improving performance.