diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index ce81d2262f8..ddc9ef77e02 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/lib/change-notes/2025-01-20-bash.md b/actions/ql/lib/change-notes/2025-01-20-bash.md deleted file mode 100644 index fe380d75701..00000000000 --- a/actions/ql/lib/change-notes/2025-01-20-bash.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. \ No newline at end of file diff --git a/actions/ql/lib/change-notes/2025-01-22-version.md b/actions/ql/lib/change-notes/2025-01-22-version.md deleted file mode 100644 index 316fdfd4d54..00000000000 --- a/actions/ql/lib/change-notes/2025-01-22-version.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). \ No newline at end of file diff --git a/actions/ql/lib/change-notes/released/0.4.2.md b/actions/ql/lib/change-notes/released/0.4.2.md new file mode 100644 index 00000000000..eeeca2152d6 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.2.md @@ -0,0 +1,6 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 89fa3a87180..94c5b17423c 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 58952f7e2bb..2392397c0a3 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.2-dev +version: 0.4.3-dev library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 3eac1f79987..02c0e793c97 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.2 + +No user-facing changes. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.4.2.md b/actions/ql/src/change-notes/released/0.4.2.md new file mode 100644 index 00000000000..2278d6321e4 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.4.2.md @@ -0,0 +1,3 @@ +## 0.4.2 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 89fa3a87180..94c5b17423c 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 4343767363a..d7575be7f77 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.2-dev +version: 0.4.3-dev library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index fa7a301d043..0d224483825 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. +* New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. +* A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. + ## 3.2.0 ### New Features diff --git a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 20b2c973cc3..00000000000 --- a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md b/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md deleted file mode 100644 index 3f876f2271d..00000000000 --- a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. diff --git a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md b/cpp/ql/lib/change-notes/released/4.0.0.md similarity index 51% rename from cpp/ql/lib/change-notes/2024-01-20-elifdef.md rename to cpp/ql/lib/change-notes/released/4.0.0.md index 9766e7f3af2..0d388c288c7 100644 --- a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md +++ b/cpp/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,11 @@ ---- -category: feature ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. * New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. * A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index f3d134d8910..49fe3eef697 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.2.0 +lastReleaseVersion: 4.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 81669163837..f9b07e13a99 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.2.1-dev +version: 4.0.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 671026afc56..1a4c8b06180 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. + ## 1.3.2 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md b/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md deleted file mode 100644 index e06ad16a71e..00000000000 --- a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/change-notes/2025-01-31-format-args.md b/cpp/ql/src/change-notes/2025-01-31-format-args.md deleted file mode 100644 index 41f3d6bb202..00000000000 --- a/cpp/ql/src/change-notes/2025-01-31-format-args.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. diff --git a/cpp/ql/src/change-notes/released/1.3.3.md b/cpp/ql/src/change-notes/released/1.3.3.md new file mode 100644 index 00000000000..1f85ee5df74 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.3.3.md @@ -0,0 +1,6 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 86a9cb32d86..eb1f7dabc84 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.2 +lastReleaseVersion: 1.3.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 0db3a53d6ba..f47caeb6b71 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.3-dev +version: 1.3.4-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 5e50f32db5f..288181c929f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md new file mode 100644 index 00000000000..ec3c912e160 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index a09015b688d..80f613ab828 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 1b748f263b9..2a2b7f23397 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.33-dev +version: 1.7.34-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 5e50f32db5f..288181c929f 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md new file mode 100644 index 00000000000..ec3c912e160 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index a09015b688d..80f613ab828 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index f674fcb03d7..fae71e15799 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.33-dev +version: 1.7.34-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index ccc682d0c4f..211ce45f0ca 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +* C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. + ## 4.0.2 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md b/csharp/ql/lib/change-notes/2025-01-22-partial-members.md deleted file mode 100644 index d83e0365405..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md b/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md deleted file mode 100644 index f71a457166d..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. diff --git a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 4935e88a987..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. -* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2025-01-29-params-models.md b/csharp/ql/lib/change-notes/2025-01-29-params-models.md deleted file mode 100644 index f94298875eb..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-29-params-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). diff --git a/csharp/ql/lib/change-notes/released/5.0.0.md b/csharp/ql/lib/change-notes/released/5.0.0.md new file mode 100644 index 00000000000..964052090c3 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.0.0.md @@ -0,0 +1,12 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +* C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 765f0717719..c9e54136ca5 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.2 +lastReleaseVersion: 5.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index fbc091b7951..2f8a154c73f 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.3-dev +version: 5.0.1-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 70e815289e8..90e6d1c825d 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.16 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.0.15 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-12-17-experimental-queries.md b/csharp/ql/src/change-notes/released/1.0.16.md similarity index 82% rename from java/ql/src/change-notes/2024-12-17-experimental-queries.md rename to csharp/ql/src/change-notes/released/1.0.16.md index 12390d29b3c..2f65ceae322 100644 --- a/java/ql/src/change-notes/2024-12-17-experimental-queries.md +++ b/csharp/ql/src/change-notes/released/1.0.16.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.0.16 + +### Minor Analysis Improvements + * All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 52810c368bf..ac10cfe753a 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 6fe78032155..6bc6aae0b4e 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.16.md b/go/ql/consistency-queries/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 41f9b325313..aec2e2037ad 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 6dfe40aa040..1e151003ad9 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. +* By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. +* The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query + ## 3.0.2 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md b/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md deleted file mode 100644 index 3f2f7be82a5..00000000000 --- a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query \ No newline at end of file diff --git a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md b/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md deleted file mode 100644 index a14d31e89b1..00000000000 --- a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. diff --git a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 8a00e508346..00000000000 --- a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` \ No newline at end of file diff --git a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md b/go/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from go/ql/lib/change-notes/2024-12-16-any-content-readers.md rename to go/ql/lib/change-notes/released/4.0.0.md index aa244c1b97a..5745445dcb2 100644 --- a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md +++ b/go/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,12 @@ ---- -category: minorAnalysis ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. * By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. * The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index de0e567baf7..49fe3eef697 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 5091fc8f3ce..0ef261c505e 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.3-dev +version: 4.0.1-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index f28caff537d..809116d3d32 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.7 + +No user-facing changes. + ## 1.1.6 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.1.7.md b/go/ql/src/change-notes/released/1.1.7.md new file mode 100644 index 00000000000..81505c0507a --- /dev/null +++ b/go/ql/src/change-notes/released/1.1.7.md @@ -0,0 +1,3 @@ +## 1.1.7 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 9e712a00a21..75910556516 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.6 +lastReleaseVersion: 1.1.7 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index cdd6d9a627f..e4ddb827af2 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.7-dev +version: 1.1.8-dev groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index ac8d8d6651f..5bc77cfcdf5 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,19 @@ +## 7.0.0 + +### Breaking Changes + +* Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. +* Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. +* Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. +* Deleted a lot of deprecated classes ending in "*Access", use the corresponding "*Call" classes instead. +* Deleted a lot of deprecated predicates ending in "*Access", use the corresponding "*Call" predicates instead. +* Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. +* Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. + +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. + ## 6.1.0 ### New Features diff --git a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md b/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md deleted file mode 100644 index cc0b2acb953..00000000000 --- a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/java/ql/lib/change-notes/released/7.0.0.md similarity index 70% rename from java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to java/ql/lib/change-notes/released/7.0.0.md index 4a9ef73b8e2..08a4b0f85bf 100644 --- a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/java/ql/lib/change-notes/released/7.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 7.0.0 + +### Breaking Changes + * Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. * Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. * Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. @@ -9,3 +10,6 @@ category: breaking * Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. * Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 22247782f3e..e0db21c7869 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.1.0 +lastReleaseVersion: 7.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index e3778844a7e..7f5ba7b3c1d 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.1.1-dev +version: 7.0.1-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 478735d6ed4..1630463509e 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.1.12 ### Bug Fixes diff --git a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md b/java/ql/src/change-notes/released/1.1.13.md similarity index 75% rename from csharp/ql/src/change-notes/2024-11-05-experimental-queries.md rename to java/ql/src/change-notes/released/1.1.13.md index f13df286191..017e4bdb088 100644 --- a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md +++ b/java/ql/src/change-notes/released/1.1.13.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). \ No newline at end of file +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index f5b135d0193..09a80be68d1 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.12 +lastReleaseVersion: 1.1.13 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8ccf4d97d22..38d90031217 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.13-dev +version: 1.1.14-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index f7773662f1e..e79db6c81b3 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.4.0 + +### Major Analysis Improvements + +* Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter + ## 2.3.0 ### Deprecated APIs diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/released/2.4.0.md similarity index 78% rename from javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md rename to javascript/ql/lib/change-notes/released/2.4.0.md index a1ca70800b3..d8e038356bb 100644 --- a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md +++ b/javascript/ql/lib/change-notes/released/2.4.0.md @@ -1,4 +1,5 @@ ---- -category: majorAnalysis ---- +## 2.4.0 + +### Major Analysis Improvements + * Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 5936154675a..cb0ea3a249a 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.3.0 +lastReleaseVersion: 2.4.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index bb111078d1f..781d1ee1b1e 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.3.1-dev +version: 2.4.1-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 0a932a15950..2f8c0a18392 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,23 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. + ## 1.3.0 ### Major Analysis Improvements diff --git a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md b/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md deleted file mode 100644 index fb2dddb47a7..00000000000 --- a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: fix ---- -* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, - but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not - extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md b/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md deleted file mode 100644 index b8aa44faff5..00000000000 --- a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. \ No newline at end of file diff --git a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md b/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md deleted file mode 100644 index 9f25ba446a1..00000000000 --- a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: majorAnalysis ---- -* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). - When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. - Some users may prefer this as a "defense in depth" option but note that it may result in false positives. - Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. diff --git a/javascript/ql/src/change-notes/2025-01-30-nest-di.md b/javascript/ql/src/change-notes/2025-01-30-nest-di.md deleted file mode 100644 index f6673613cf2..00000000000 --- a/javascript/ql/src/change-notes/2025-01-30-nest-di.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Improved support for NestJS applications that make use of dependency injection with custom providers. - Calls to methods on an injected service should now be resolved properly. diff --git a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md b/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md deleted file mode 100644 index 3f7c572d074..00000000000 --- a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any - source files, but references other `tsconfig.json`-like files that do include source files. diff --git a/javascript/ql/src/change-notes/released/1.4.0.md b/javascript/ql/src/change-notes/released/1.4.0.md new file mode 100644 index 00000000000..bee08130cf0 --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.4.0.md @@ -0,0 +1,19 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index ec16350ed6f..b8b2e97d508 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.0 +lastReleaseVersion: 1.4.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 4e827b9b61f..4996899a411 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.3.1-dev +version: 1.4.1-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 46c730a2bdc..0227fc12fbe 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.16.md b/misc/suite-helpers/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 5edeb9c2b06..53321132e5b 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.16-dev +version: 1.0.17-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 13a183b0bc2..a0b21e90265 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the old deprecated TypeTracking library. +* Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. +* Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2025-01-15-builtin-model.md b/python/ql/lib/change-notes/2025-01-15-builtin-model.md deleted file mode 100644 index c7933d09d04..00000000000 --- a/python/ql/lib/change-notes/2025-01-15-builtin-model.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/python/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to python/ql/lib/change-notes/released/4.0.0.md index dd7c5e70e86..5c267031f43 100644 --- a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/python/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,11 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the old deprecated TypeTracking library. * Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. * Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index c06beda86a3..49fe3eef697 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index dbb0c7e2696..6fa3880f862 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.2-dev +version: 4.0.1-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 48612d804ae..f336f27befe 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.2 + +No user-facing changes. + ## 1.4.1 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.4.2.md b/python/ql/src/change-notes/released/1.4.2.md new file mode 100644 index 00000000000..37be01f40d9 --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.2.md @@ -0,0 +1,3 @@ +## 1.4.2 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 43ccf4467be..a76cacdf799 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.1 +lastReleaseVersion: 1.4.2 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index e629d13431b..98dbf9bb34c 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.2-dev +version: 1.4.3-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 917cc0290a7..0acb1e8a240 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,22 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. +* Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. +* Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. +* Deleted the deprecated `Label` module from `ApiGraphs.qll`. +* Deleted the deprecated `getAUse`, `getAnImmediateUse`, `getARhs`, and `getAValueReachingRhs` predicates from `API::Node`, use `getAValueReachableFromSource`, `asSource`, `asSink`, and `getAValueReachingSink` instead. +* Deleted the deprecated `getAVariable` predicate from the `ExprNode` class, use `getVariable` instead. +* Deleted the deprecated `getAPotentialFieldAccessMethod` predicate from the `ActiveRecordModelClass` class. +* Deleted the deprecated `ActiveRecordModelClassMethodCall` class from `ActiveRecord.qll`, use `ActiveRecordModelClass.getClassNode().trackModule().getMethod()` instead. +* Deleted the deprecated `PotentiallyUnsafeSqlExecutingMethodCall` class from `ActiveRecord.qll`, use the `SqlExecution` concept instead. +* Deleted the deprecated `ModelClass` and `ModelInstance` classes from `ActiveResource.qll`, use `ModelClassNode` and `ModelClassNode.getAnInstanceReference()` instead. +* Deleted the deprecated `Collection` class from `ActiveResource.qll`, use `CollectionSource` instead. +* Deleted the deprecated `ServiceInstantiation` and `ClientInstantiation` classes from `Twirp.qll`. +* Deleted a lot of deprecated dataflow modules from "*Query.qll" files. +* Deleted the old deprecated TypeTracking library. + ## 3.0.2 ### Minor Analysis Improvements diff --git a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/ruby/ql/lib/change-notes/released/4.0.0.md similarity index 98% rename from ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to ruby/ql/lib/change-notes/released/4.0.0.md index 8c4fef82d93..9674020e9dd 100644 --- a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/ruby/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. * Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. * Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index de0e567baf7..49fe3eef697 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 42ddf09077a..9c3b066dccb 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.3-dev +version: 4.0.1-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 3b12430e6f7..e22d95bc63f 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.11 + +No user-facing changes. + ## 1.1.10 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.11.md b/ruby/ql/src/change-notes/released/1.1.11.md new file mode 100644 index 00000000000..c94f527264e --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.11.md @@ -0,0 +1,3 @@ +## 1.1.11 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 4c01918d414..121f8cf035d 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.10 +lastReleaseVersion: 1.1.11 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 7fb67982058..5023e3174d6 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.11-dev +version: 1.1.12-dev groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 7b4d4fc699c..5712c750565 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.1.md b/rust/ql/lib/change-notes/released/0.1.1.md new file mode 100644 index 00000000000..481c4392f3d --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 2e08f40f6aa..92d1505475f 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 1efed98cdbe..5bffcf30d3e 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.1-dev +version: 0.1.2-dev groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 7b4d4fc699c..5712c750565 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.1.md b/rust/ql/src/change-notes/released/0.1.1.md new file mode 100644 index 00000000000..481c4392f3d --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 2e08f40f6aa..92d1505475f 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 6836b5375b3..dd666292524 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.1-dev +version: 0.1.2-dev groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index e876302b58b..65f4b540763 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,12 @@ +## 2.0.0 + +### Breaking Changes + +* Added a basic block construction as part of the library. This is currently + considered an internal unstable API. The input signature to the control flow + graph now requires two additional predicates: `idOfAstNode` and + `idOfCfgScope`. + ## 1.0.15 No user-facing changes. diff --git a/shared/controlflow/change-notes/2025-01-16-basic-block.md b/shared/controlflow/change-notes/released/2.0.0.md similarity index 88% rename from shared/controlflow/change-notes/2025-01-16-basic-block.md rename to shared/controlflow/change-notes/released/2.0.0.md index 2fd543dc551..5a95065c835 100644 --- a/shared/controlflow/change-notes/2025-01-16-basic-block.md +++ b/shared/controlflow/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Added a basic block construction as part of the library. This is currently considered an internal unstable API. The input signature to the control flow graph now requires two additional predicates: `idOfAstNode` and diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 8debd0d34c2..0abe6ccede0 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 2046b9b44e9..1b923075630 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.16-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 8524b149db5..b1730ac585e 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. + ## 1.1.9 No user-facing changes. diff --git a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md b/shared/dataflow/change-notes/released/2.0.0.md similarity index 76% rename from shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md rename to shared/dataflow/change-notes/released/2.0.0.md index 762527f1b73..c17f9a6fb4f 100644 --- a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md +++ b/shared/dataflow/change-notes/released/2.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. -* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. \ No newline at end of file +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 6f4795f3ea0..0abe6ccede0 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 2.0.0 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 8280d364d1c..eb41d1079e1 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.10-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index b7416e72c04..c9bc4beddf1 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.16.md b/shared/mad/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 35b7147a8c0..ebc658ad191 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index d6049c6a9fc..bc77ab8acc9 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.16.md b/shared/rangeanalysis/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index e8f370ff0cc..52021192963 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 33d1399a12d..ee6c1e70648 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.16.md b/shared/regex/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 4c5e2b17d92..30451f6dc3f 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 30a55a5859c..c1e8ee9e42f 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.16.md b/shared/ssa/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 52a0153015a..ebc832179b9 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 6fe78032155..6bc6aae0b4e 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.16.md b/shared/threat-models/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 24acb7b0cec..b6ecead9dad 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.16-dev +version: 1.0.17-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index ebfe21d85d1..0d1c113cc29 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.16.md b/shared/tutorial/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index a9829c5680c..1d4748c4b35 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 9644aa49fd4..22eea9d7c8b 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.16.md b/shared/typeflow/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 870d6dfb8b7..856cceea312 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 71a6ce3acf2..5ac7f2636b6 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. + ## 1.0.15 No user-facing changes. diff --git a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md b/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index c04779d478f..00000000000 --- a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `ConsistencyChecks` module. \ No newline at end of file diff --git a/shared/typetracking/change-notes/released/2.0.0.md b/shared/typetracking/change-notes/released/2.0.0.md new file mode 100644 index 00000000000..6aaf20b32d1 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.0.md @@ -0,0 +1,5 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 8debd0d34c2..0abe6ccede0 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 7eca76aff91..805ed9bdaed 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.16-dev +version: 2.0.1-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index e4d9b985300..85078c7993c 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.16.md b/shared/typos/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 57065f2d1ea..8e2b68b6392 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 38800b2bcb7..f6eb7781486 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.3 + +No user-facing changes. + ## 2.0.2 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.3.md b/shared/util/change-notes/released/2.0.3.md new file mode 100644 index 00000000000..7bd669821d5 --- /dev/null +++ b/shared/util/change-notes/released/2.0.3.md @@ -0,0 +1,3 @@ +## 2.0.3 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 81c7f1dbc13..fabf1e86596 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.2 +lastReleaseVersion: 2.0.3 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 9c9b4113c59..e2ddbb7374d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.3-dev +version: 2.0.4-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 740618e8977..d6297fd0036 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.16.md b/shared/xml/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 5dc9bb67580..552e89e1a6f 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 5f6250607e0..2aff18b9a3c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.16.md b/shared/yaml/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index e9449e31169..5701451a376 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.16-dev +version: 1.0.17-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 9c569ad4bed..d9a18cfabbf 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/swift/ql/lib/change-notes/released/4.0.0.md similarity index 88% rename from swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/4.0.0.md index d9fb3caedf9..b19d5987c0c 100644 --- a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. -* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. \ No newline at end of file +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index c06beda86a3..49fe3eef697 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 4281e1219f2..50c6a60e39e 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.2-dev +version: 4.0.1-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index ad51d96751e..729baa54c4a 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.16.md b/swift/ql/src/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index b3331ff4ff0..58a558cd2b9 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.16-dev +version: 1.0.17-dev groups: - swift - queries