Release preparation for version 2.21.3

2026-04-25 08:45:14 +02:00 · 2025-05-13 21:14:27 +00:00
parent c6cc4c0e13
commit 2de4a01c86
168 changed files with 450 additions and 144 deletions
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,17 @@
+## 1.6.0
+
+### Query Metadata Changes
+
+* The tag `external/cwe/cwe-79` has been removed from `js/disabling-electron-websecurity` and the tag `external/cwe/cwe-079` has been added.
+* The tag `external/cwe/cwe-20` has been removed from `js/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
+* The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
+* The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api-more-sources` and the tag `external/cwe/cwe-020` has been added.
+
+### Minor Analysis Improvements
+
+* Type information is now propagated more precisely through `Promise.all()` calls,
+  leading to more resolved calls and more sources and sinks being detected.
+
 ## 1.5.4

 No user-facing changes.
--- a/javascript/ql/src/change-notes/2025-04-30-promise-all.md
+++ b/javascript/ql/src/change-notes/2025-04-30-promise-all.md
@@ -1,5 +0,0 @@
---
-category: minorAnalysis
---
-* Type information is now propagated more precisely through `Promise.all()` calls,
-  leading to more resolved calls and more sources and sinks being detected.
--- a/javascript/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/javascript/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,8 +1,13 @@
---
-category: queryMetadata
---
+## 1.6.0
+
+### Query Metadata Changes

 * The tag `external/cwe/cwe-79` has been removed from `js/disabling-electron-websecurity` and the tag `external/cwe/cwe-079` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api-more-sources` and the tag `external/cwe/cwe-020` has been added.
+
+### Minor Analysis Improvements
+
+* Type information is now propagated more precisely through `Promise.all()` calls,
+  leading to more resolved calls and more sources and sinks being detected.
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.5.4
+lastReleaseVersion: 1.6.0
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 1.5.5-dev
+version: 1.6.0
 groups:
  - javascript
  - queries