Release preparation for version 2.21.3

2025-12-16 16:53:25 +01:00 · 2025-05-13 21:14:27 +00:00
parent c6cc4c0e13
commit 2de4a01c86
168 changed files with 450 additions and 144 deletions
--- a/actions/ql/lib/CHANGELOG.md
+++ b/actions/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.4.9
 No user-facing changes.
 ## 0.4.8
 No user-facing changes.
--- a/actions/ql/lib/change-notes/released/0.4.9.md
+++ b/actions/ql/lib/change-notes/released/0.4.9.md
@@ -0,0 +1,3 @@
 ## 0.4.9
 No user-facing changes.
--- a/actions/ql/lib/codeql-pack.release.yml
+++ b/actions/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.8
+lastReleaseVersion: 0.4.9
--- a/actions/ql/lib/qlpack.yml
+++ b/actions/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-all
-version: 0.4.9-dev
+version: 0.4.9
 library: true
 warnOnImplicitThis: true
 dependencies:
--- a/actions/ql/src/CHANGELOG.md
+++ b/actions/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.6.1
 No user-facing changes.
 ## 0.6.0
 ### Breaking Changes
--- a/actions/ql/src/change-notes/released/0.6.1.md
+++ b/actions/ql/src/change-notes/released/0.6.1.md
@@ -0,0 +1,3 @@
 ## 0.6.1
 No user-facing changes.
--- a/actions/ql/src/codeql-pack.release.yml
+++ b/actions/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.0
+lastReleaseVersion: 0.6.1
--- a/actions/ql/src/qlpack.yml
+++ b/actions/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-queries
-version: 0.6.1-dev
+version: 0.6.1
 library: false
 warnOnImplicitThis: true
 groups: [actions, queries]
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 4.3.1
 ### Bug Fixes
 * Fixed an infinite loop in `semmle.code.cpp.rangeanalysis.new.RangeAnalysis` when computing ranges in very large and complex function bodies.
 ## 4.3.0
 ### New Features
--- a/cpp/ql/lib/change-notes/2025-05-13-range-analysis-infinite-loop.md
+++ b/cpp/ql/lib/change-notes/2025-05-13-range-analysis-infinite-loop.md
@@ -1,4 +1,5 @@
---
+## 4.3.1
-category: fix
+
---
+### Bug Fixes
-* Fixed an infinite loop in `semmle.code.cpp.rangeanalysis.new.RangeAnalysis` when computing ranges in very large and complex function bodies.
+
 * Fixed an infinite loop in `semmle.code.cpp.rangeanalysis.new.RangeAnalysis` when computing ranges in very large and complex function bodies.
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.3.0
+lastReleaseVersion: 4.3.1
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 4.3.1-dev
+version: 4.3.1
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,14 @@
 ## 1.4.0
 ### Query Metadata Changes
 * The tag `external/cwe/cwe-14` has been removed from `cpp/memset-may-be-deleted` and the tag `external/cwe/cwe-014` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/count-untrusted-data-external-api-ir` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/untrusted-data-to-external-api-ir` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/late-check-of-function-argument` and the tag `external/cwe/cwe-020` has been added.
 ## 1.3.9
 No user-facing changes.
--- a/cpp/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/cpp/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,6 +1,7 @@
---
+## 1.4.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tag `external/cwe/cwe-14` has been removed from `cpp/memset-may-be-deleted` and the tag `external/cwe/cwe-014` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cpp/count-untrusted-data-external-api-ir` and the tag `external/cwe/cwe-020` has been added.
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.9
+lastReleaseVersion: 1.4.0
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.3.10-dev
+version: 1.4.0
 groups:
  - cpp
  - queries
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.40
 No user-facing changes.
 ## 1.7.39
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.40.md
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.40.md
@@ -0,0 +1,3 @@
 ## 1.7.40
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.39
+lastReleaseVersion: 1.7.40
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.40-dev
+version: 1.7.40
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.40
 No user-facing changes.
 ## 1.7.39
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.40.md
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.40.md
@@ -0,0 +1,3 @@
 ## 1.7.40
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.39
+lastReleaseVersion: 1.7.40
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.40-dev
+version: 1.7.40
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 5.1.6
 No user-facing changes.
 ## 5.1.5
 ### Minor Analysis Improvements
--- a/csharp/ql/lib/change-notes/released/5.1.6.md
+++ b/csharp/ql/lib/change-notes/released/5.1.6.md
@@ -0,0 +1,3 @@
 ## 5.1.6
 No user-facing changes.
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 5.1.5
+lastReleaseVersion: 5.1.6
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 5.1.6-dev
+version: 5.1.6
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,20 @@
 ## 1.2.0
 ### Query Metadata Changes
 * The tag `external/cwe/cwe-13` has been removed from `cs/password-in-configuration` and the tag `external/cwe/cwe-013` has been added.
 * The tag `external/cwe/cwe-11` has been removed from `cs/web/debug-binary` and the tag `external/cwe/cwe-011` has been added.
 * The tag `external/cwe/cwe-16` has been removed from `cs/web/large-max-request-length` and the tag `external/cwe/cwe-016` has been added.
 * The tag `external/cwe/cwe-16` has been removed from `cs/web/request-validation-disabled` and the tag `external/cwe/cwe-016` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cs/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cs/serialization-check-bypass` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cs/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-12` has been removed from `cs/web/missing-global-error-handler` and the tag `external/cwe/cwe-012` has been added.
 ### Minor Analysis Improvements
 * Changed the precision of the `cs/equality-on-floats` query from medium to high.
 ## 1.1.2
 ### Minor Analysis Improvements
--- a/csharp/ql/src/change-notes/2025-04-28-equality-on-floats-precision.md
+++ b/csharp/ql/src/change-notes/2025-04-28-equality-on-floats-precision.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Changed the precision of the `cs/equality-on-floats` query from medium to high.
--- a/csharp/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/csharp/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,6 +1,6 @@
---
+## 1.2.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tag `external/cwe/cwe-13` has been removed from `cs/password-in-configuration` and the tag `external/cwe/cwe-013` has been added.
 * The tag `external/cwe/cwe-11` has been removed from `cs/web/debug-binary` and the tag `external/cwe/cwe-011` has been added.
@@ -10,3 +10,7 @@ category: queryMetadata
 * The tag `external/cwe/cwe-20` has been removed from `cs/serialization-check-bypass` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `cs/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-12` has been removed from `cs/web/missing-global-error-handler` and the tag `external/cwe/cwe-012` has been added.
 ### Minor Analysis Improvements
 * Changed the precision of the `cs/equality-on-floats` query from medium to high.
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.1.2
+lastReleaseVersion: 1.2.0
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.1.3-dev
+version: 1.2.0
 groups:
  - csharp
  - queries
--- a/go/ql/consistency-queries/CHANGELOG.md
+++ b/go/ql/consistency-queries/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.23
 No user-facing changes.
 ## 1.0.22
 No user-facing changes.
--- a/go/ql/consistency-queries/change-notes/released/1.0.23.md
+++ b/go/ql/consistency-queries/change-notes/released/1.0.23.md
@@ -0,0 +1,3 @@
 ## 1.0.23
 No user-facing changes.
--- a/go/ql/consistency-queries/codeql-pack.release.yml
+++ b/go/ql/consistency-queries/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.22
+lastReleaseVersion: 1.0.23
--- a/go/ql/consistency-queries/qlpack.yml
+++ b/go/ql/consistency-queries/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.23-dev
+version: 1.0.23
 groups:
  - go
  - queries
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 4.2.5
 No user-facing changes.
 ## 4.2.4
 No user-facing changes.
--- a/go/ql/lib/change-notes/released/4.2.5.md
+++ b/go/ql/lib/change-notes/released/4.2.5.md
@@ -0,0 +1,3 @@
 ## 4.2.5
 No user-facing changes.
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.2.4
+lastReleaseVersion: 4.2.5
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 4.2.5-dev
+version: 4.2.5
 groups: go
 dbscheme: go.dbscheme
 extractor: go
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,18 @@
 ## 1.2.0
 ### Query Metadata Changes
 * The tag `external/cwe/cwe-20` has been removed from `go/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/incomplete-hostname-regexp` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/regex/missing-regexp-anchor` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/suspicious-character-in-regex` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/untrusted-data-to-unknown-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-90` has been removed from `go/ldap-injection` and the tag `external/cwe/cwe-090` has been added.
 * The tag `external/cwe/cwe-74` has been removed from `go/dsn-injection` and the tag `external/cwe/cwe-074` has been added.
 * The tag `external/cwe/cwe-74` has been removed from `go/dsn-injection-local` and the tag `external/cwe/cwe-074` has been added.
 * The tag `external/cwe/cwe-79` has been removed from `go/html-template-escaping-passthrough` and the tag `external/cwe/cwe-079` has been added.
 ## 1.1.13
 No user-facing changes.
--- a/go/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/go/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,6 +1,6 @@
---
+## 1.2.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tag `external/cwe/cwe-20` has been removed from `go/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `go/incomplete-hostname-regexp` and the tag `external/cwe/cwe-020` has been added.
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.1.13
+lastReleaseVersion: 1.2.0
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 1.1.14-dev
+version: 1.2.0
 groups:
  - go
  - queries
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 7.2.0
 ### New Features
 * Kotlin versions up to 2.2.0\ *x* are now supported. Support for the Kotlin 1.5.x series is dropped (so the minimum Kotlin version is now 1.6.0).
 ## 7.1.4
 No user-facing changes.
--- a/java/ql/lib/change-notes/2025-04-28-kotlin-220.md
+++ b/java/ql/lib/change-notes/2025-04-28-kotlin-220.md
@@ -1,4 +1,5 @@
---
+## 7.2.0
-category: feature
+
---
+### New Features
 * Kotlin versions up to 2.2.0\ *x* are now supported. Support for the Kotlin 1.5.x series is dropped (so the minimum Kotlin version is now 1.6.0).
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 7.1.4
+lastReleaseVersion: 7.2.0
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 7.1.5-dev
+version: 7.2.0
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,11 @@
 ## 1.5.0
 ### Query Metadata Changes
 * The tag `external/cwe/cwe-20` has been removed from `java/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `java/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-93` has been removed from `java/netty-http-request-or-response-splitting` and the tag `external/cwe/cwe-093` has been added.
 ## 1.4.2
 ### Minor Analysis Improvements
--- a/java/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/java/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,6 +1,6 @@
---
+## 1.5.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tag `external/cwe/cwe-20` has been removed from `java/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `java/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.2
+lastReleaseVersion: 1.5.0
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 1.4.3-dev
+version: 1.5.0
 groups:
  - java
  - queries
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,11 @@
 ## 2.6.3
 ### Minor Analysis Improvements
 * Enhanced modeling of the [fastify](https://www.npmjs.com/package/fastify) framework to support the `all` route handler method.
 * Improved modeling of the [`shelljs`](https://www.npmjs.com/package/shelljs) and [`async-shelljs`](https://www.npmjs.com/package/async-shelljs) libraries by adding support for the `which`, `cmd`, `asyncExec` and `env`.
 * Added support for the `fastify` `addHook` method.
 ## 2.6.2
 No user-facing changes.
--- a/javascript/ql/lib/change-notes/2025-04-14-fastify-addhook.md
+++ b/javascript/ql/lib/change-notes/2025-04-14-fastify-addhook.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added support for the `fastify` `addHook` method.
--- a/javascript/ql/lib/change-notes/2025-04-30-fastify-all.md
+++ b/javascript/ql/lib/change-notes/2025-04-30-fastify-all.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Enhanced modeling of the [fastify](https://www.npmjs.com/package/fastify) framework to support the `all` route handler method.
--- a/javascript/ql/lib/change-notes/2025-04-30-shelljs.md
+++ b/javascript/ql/lib/change-notes/2025-04-30-shelljs.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Improved modeling of the [`shelljs`](https://www.npmjs.com/package/shelljs) and [`async-shelljs`](https://www.npmjs.com/package/async-shelljs) libraries by adding support for the `which`, `cmd`, `asyncExec` and `env`.
--- a/javascript/ql/lib/change-notes/released/2.6.3.md
+++ b/javascript/ql/lib/change-notes/released/2.6.3.md
@@ -0,0 +1,7 @@
 ## 2.6.3
 ### Minor Analysis Improvements
 * Enhanced modeling of the [fastify](https://www.npmjs.com/package/fastify) framework to support the `all` route handler method.
 * Improved modeling of the [`shelljs`](https://www.npmjs.com/package/shelljs) and [`async-shelljs`](https://www.npmjs.com/package/async-shelljs) libraries by adding support for the `which`, `cmd`, `asyncExec` and `env`.
 * Added support for the `fastify` `addHook` method.
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 2.6.2
+lastReleaseVersion: 2.6.3
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 2.6.3-dev
+version: 2.6.3
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,17 @@
 ## 1.6.0
 ### Query Metadata Changes
 * The tag `external/cwe/cwe-79` has been removed from `js/disabling-electron-websecurity` and the tag `external/cwe/cwe-079` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api-more-sources` and the tag `external/cwe/cwe-020` has been added.
 ### Minor Analysis Improvements
 * Type information is now propagated more precisely through `Promise.all()` calls,
  leading to more resolved calls and more sources and sinks being detected.
 ## 1.5.4
 No user-facing changes.
--- a/javascript/ql/src/change-notes/2025-04-30-promise-all.md
+++ b/javascript/ql/src/change-notes/2025-04-30-promise-all.md
@@ -1,5 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Type information is now propagated more precisely through `Promise.all()` calls,
  leading to more resolved calls and more sources and sinks being detected.
--- a/javascript/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/javascript/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,8 +1,13 @@
---
+## 1.6.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tag `external/cwe/cwe-79` has been removed from `js/disabling-electron-websecurity` and the tag `external/cwe/cwe-079` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `js/untrusted-data-to-external-api-more-sources` and the tag `external/cwe/cwe-020` has been added.
 ### Minor Analysis Improvements
 * Type information is now propagated more precisely through `Promise.all()` calls,
  leading to more resolved calls and more sources and sinks being detected.
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.5.4
+lastReleaseVersion: 1.6.0
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 1.5.5-dev
+version: 1.6.0
 groups:
  - javascript
  - queries
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.23
 No user-facing changes.
 ## 1.0.22
 No user-facing changes.
--- a/misc/suite-helpers/change-notes/released/1.0.23.md
+++ b/misc/suite-helpers/change-notes/released/1.0.23.md
@@ -0,0 +1,3 @@
 ## 1.0.23
 No user-facing changes.
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.22
+lastReleaseVersion: 1.0.23
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/suite-helpers
-version: 1.0.23-dev
+version: 1.0.23
 groups: shared
 warnOnImplicitThis: true
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 4.0.7
 ### Minor Analysis Improvements
 * Added modeling for the `hdbcli` PyPI package as a database library implementing PEP 249.
 * Added header write model for `send_header` in `http.server`.
 ## 4.0.6
 No user-facing changes.
--- a/python/ql/lib/change-notes/2025-04-30-model-send-header.md
+++ b/python/ql/lib/change-notes/2025-04-30-model-send-header.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added header write model for `send_header` in `http.server`.
--- a/python/ql/lib/change-notes/2025-05-01-hdbcli.md
+++ b/python/ql/lib/change-notes/2025-05-01-hdbcli.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added modeling for the `hdbcli` PyPI package as a database library implementing PEP 249.
--- a/python/ql/lib/change-notes/released/4.0.7.md
+++ b/python/ql/lib/change-notes/released/4.0.7.md
@@ -0,0 +1,6 @@
 ## 4.0.7
 ### Minor Analysis Improvements
 * Added modeling for the `hdbcli` PyPI package as a database library implementing PEP 249.
 * Added header write model for `send_header` in `http.server`.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.0.6
+lastReleaseVersion: 4.0.7
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 4.0.7-dev
+version: 4.0.7
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,14 @@
 ## 1.5.0
 ### Query Metadata Changes
 * The tags `security/cwe/cwe-94` and `security/cwe/cwe-95` have been removed from `py/use-of-input` and the tags `external/cwe/cwe-094` and `external/cwe/cwe-095` have been added.
 * The tag `external/cwe/cwe-20` has been removed from `py/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `py/untrusted-data-to-external-api` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `py/cookie-injection` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-20` has been removed from `py/incomplete-url-substring-sanitization` and the tag `external/cwe/cwe-020` has been added.
 * The tag `external/cwe/cwe-94` has been removed from `py/js2py-rce` and the tag `external/cwe/cwe-094` has been added.
 ## 1.4.8
 No user-facing changes.
--- a/python/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/python/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,6 +1,6 @@
---
+## 1.5.0
-category: queryMetadata
+
---
+### Query Metadata Changes
 * The tags `security/cwe/cwe-94` and `security/cwe/cwe-95` have been removed from `py/use-of-input` and the tags `external/cwe/cwe-094` and `external/cwe/cwe-095` have been added.
 * The tag `external/cwe/cwe-20` has been removed from `py/count-untrusted-data-external-api` and the tag `external/cwe/cwe-020` has been added.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.8
+lastReleaseVersion: 1.5.0
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 1.4.9-dev
+version: 1.5.0
 groups:
  - python
  - queries
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 4.1.6
 No user-facing changes.
 ## 4.1.5
 No user-facing changes.
--- a/ruby/ql/lib/change-notes/released/4.1.6.md
+++ b/ruby/ql/lib/change-notes/released/4.1.6.md
@@ -0,0 +1,3 @@
 ## 4.1.6
 No user-facing changes.
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.1.5
+lastReleaseVersion: 4.1.6
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 4.1.6-dev
+version: 4.1.6
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 1.3.0
 ### Query Metadata Changes
 * The precision of `rb/useless-assignment-to-local` has been adjusted from `medium` to `high`.
 * The tag `external/cwe/cwe-94` has been removed from `rb/server-side-template-injection` and the tag `external/cwe/cwe-094` has been added.
 ## 1.2.1
 No user-facing changes.
--- a/ruby/ql/src/change-notes/2025-05-12-rb-useless-assignment-to-local-precision-high.md
+++ b/ruby/ql/src/change-notes/2025-05-12-rb-useless-assignment-to-local-precision-high.md
@@ -1,5 +0,0 @@
 ---
 category: queryMetadata
 ---
 * The precision of `rb/useless-assignment-to-local` has been adjusted from `medium` to `high`.
--- a/ruby/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
+++ b/ruby/ql/src/change-notes/2025-05-01-cwe-tag-changed.md
@@ -1,5 +1,6 @@
---
+## 1.3.0
 category: queryMetadata
 ---
 ### Query Metadata Changes
 * The precision of `rb/useless-assignment-to-local` has been adjusted from `medium` to `high`.
 * The tag `external/cwe/cwe-94` has been removed from `rb/server-side-template-injection` and the tag `external/cwe/cwe-094` has been added.
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.2.1
+lastReleaseVersion: 1.3.0
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 1.2.2-dev
+version: 1.3.0
 groups:
  - ruby
  - queries
--- a/rust/ql/lib/CHANGELOG.md
+++ b/rust/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.1.8
 No user-facing changes.
 ## 0.1.7
 No user-facing changes.
--- a/rust/ql/lib/change-notes/released/0.1.8.md
+++ b/rust/ql/lib/change-notes/released/0.1.8.md
@@ -0,0 +1,3 @@
 ## 0.1.8
 No user-facing changes.
--- a/rust/ql/lib/codeql-pack.release.yml
+++ b/rust/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.1.7
+lastReleaseVersion: 0.1.8
--- a/rust/ql/lib/qlpack.yml
+++ b/rust/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/rust-all
-version: 0.1.8-dev
+version: 0.1.8
 groups: rust
 extractor: rust
 dbscheme: rust.dbscheme
--- a/rust/ql/src/CHANGELOG.md
+++ b/rust/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.1.8
 No user-facing changes.
 ## 0.1.7
 ### Minor Analysis Improvements
--- a/rust/ql/src/change-notes/released/0.1.8.md
+++ b/rust/ql/src/change-notes/released/0.1.8.md
@@ -0,0 +1,3 @@
 ## 0.1.8
 No user-facing changes.
--- a/rust/ql/src/codeql-pack.release.yml
+++ b/rust/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.1.7
+lastReleaseVersion: 0.1.8
--- a/rust/ql/src/qlpack.yml
+++ b/rust/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/rust-queries
-version: 0.1.8-dev
+version: 0.1.8
 groups:
  - rust
  - queries
--- a/shared/controlflow/CHANGELOG.md
+++ b/shared/controlflow/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 2.0.7
 No user-facing changes.
 ## 2.0.6
 No user-facing changes.
--- a/shared/controlflow/change-notes/released/2.0.7.md
+++ b/shared/controlflow/change-notes/released/2.0.7.md
@@ -0,0 +1,3 @@
 ## 2.0.7
 No user-facing changes.
--- a/shared/controlflow/codeql-pack.release.yml
+++ b/shared/controlflow/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 2.0.6
+lastReleaseVersion: 2.0.7
--- a/shared/controlflow/qlpack.yml
+++ b/shared/controlflow/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/controlflow
-version: 2.0.7-dev
+version: 2.0.7
 groups: shared
 library: true
 dependencies:
--- a/Show More
+++ b/Show More
`@@ -1,2 +1,2 @@`
	`---`	`---`
	`lastReleaseVersion: 0.4.8`	`lastReleaseVersion: 0.4.9`