Release preparation for version 2.12.4

2025-12-16 16:53:25 +01:00 · 2023-03-03 14:11:51 +00:00
parent f2f972567d
commit 462da63970
107 changed files with 267 additions and 115 deletions
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,11 @@
+## 0.5.4
+
+### Minor Analysis Improvements
+
+* Added new sinks for `java/hardcoded-credential-api-call` to identify the use of hardcoded secrets in the creation and verification of JWT tokens using `com.auth0.jwt`. These sinks are from [an experimental query submitted by @luchua](https://github.com/github/codeql/pull/9036).
+* The Java extractor now supports builds against JDK 20.
+* The query `java/hardcoded-credential-api-call` now recognizes methods that accept user and password from the SQLServerDataSource class of the Microsoft JDBC Driver for SQL Server.
+
 ## 0.5.3

 ### New Features
--- a/java/ql/lib/change-notes/2023-02-15-mssql-jdbc-hardcoded-credential-api.md
+++ b/java/ql/lib/change-notes/2023-02-15-mssql-jdbc-hardcoded-credential-api.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The query `java/hardcoded-credential-api-call` now recognizes methods that accept user and password from the SQLServerDataSource class of the Microsoft JDBC Driver for SQL Server.
--- a/java/ql/lib/change-notes/2023-02-17-add-hardcoded-secret-for-jwt-tokens.md
+++ b/java/ql/lib/change-notes/2023-02-17-add-hardcoded-secret-for-jwt-tokens.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Added new sinks for `java/hardcoded-credential-api-call` to identify the use of hardcoded secrets in the creation and verification of JWT tokens using `com.auth0.jwt`. These sinks are from [an experimental query submitted by @luchua](https://github.com/github/codeql/pull/9036).
--- a/java/ql/lib/change-notes/2023-02-17-jdk20.md
+++ b/java/ql/lib/change-notes/2023-02-17-jdk20.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The Java extractor now supports builds against JDK 20.
--- a/java/ql/lib/change-notes/released/0.5.4.md
+++ b/java/ql/lib/change-notes/released/0.5.4.md
@@ -0,0 +1,7 @@
+## 0.5.4
+
+### Minor Analysis Improvements
+
+* Added new sinks for `java/hardcoded-credential-api-call` to identify the use of hardcoded secrets in the creation and verification of JWT tokens using `com.auth0.jwt`. These sinks are from [an experimental query submitted by @luchua](https://github.com/github/codeql/pull/9036).
+* The Java extractor now supports builds against JDK 20.
+* The query `java/hardcoded-credential-api-call` now recognizes methods that accept user and password from the SQLServerDataSource class of the Microsoft JDBC Driver for SQL Server.
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.5.3
+lastReleaseVersion: 0.5.4
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.5.4-dev
+version: 0.5.4
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.5.4
+
+No user-facing changes.
+
 ## 0.5.3

 ### New Queries
--- a/java/ql/src/change-notes/released/0.5.4.md
+++ b/java/ql/src/change-notes/released/0.5.4.md
@@ -0,0 +1,3 @@
+## 0.5.4
+
+No user-facing changes.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.5.3
+lastReleaseVersion: 0.5.4
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.5.4-dev
+version: 0.5.4
 groups: 
  - java
  - queries