From 573e53e454a809dba8929d8cb27fea1423e38598 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 3 Feb 2025 15:19:35 +0000 Subject: [PATCH] Release preparation for version 2.20.4 --- actions/ql/lib/CHANGELOG.md | 7 +++++++ .../ql/lib/change-notes/2025-01-20-bash.md | 4 ---- .../ql/lib/change-notes/2025-01-22-version.md | 4 ---- actions/ql/lib/change-notes/released/0.4.2.md | 6 ++++++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 4 ++++ actions/ql/src/change-notes/released/0.4.2.md | 3 +++ actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 12 +++++++++++ .../2025-01-27-outdated-deprecations.md | 4 ---- .../2025-01-30-getOffsetInClass.md | 4 ---- .../4.0.0.md} | 12 ++++++++--- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 7 +++++++ .../2025-01-28-overflow-buffer.md | 4 ---- .../change-notes/2025-01-31-format-args.md | 4 ---- cpp/ql/src/change-notes/released/1.3.3.md | 6 ++++++ cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.33.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.33.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 13 ++++++++++++ .../2025-01-22-partial-members.md | 4 ---- ...2025-01-23-overload-resolution-priority.md | 4 ---- .../2025-01-27-outdated-deprecations.md | 5 ----- .../change-notes/2025-01-29-params-models.md | 4 ---- csharp/ql/lib/change-notes/released/5.0.0.md | 12 +++++++++++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 6 ++++++ .../ql/src/change-notes/released/1.0.16.md | 7 ++++--- csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.16.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 13 ++++++++++++ .../2023-10-31-add-rs-cors-framework.md | 4 ---- .../2025-01-22-fix-parameter-in-models.md | 4 ---- .../2025-01-27-outdated-deprecations.md | 4 ---- .../4.0.0.md} | 13 +++++++++--- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 4 ++++ go/ql/src/change-notes/released/1.1.7.md | 3 +++ go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 16 +++++++++++++++ ...025-01-07-jax-rs-annotation-inheritance.md | 4 ---- .../7.0.0.md} | 10 +++++++--- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 6 ++++++ .../ql/src/change-notes/released/1.1.13.md | 9 +++++---- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 ++++++ .../2.4.0.md} | 7 ++++--- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 20 +++++++++++++++++++ .../2025-01-21-vue-ts-notsconfig.md | 6 ------ .../2025-01-22-indexof-suffix-check.md | 4 ---- .../2025-01-22-view-component-inputs.md | 7 ------- .../ql/src/change-notes/2025-01-30-nest-di.md | 5 ----- .../2025-01-30-typescript-tsconfig-names.md | 5 ----- .../ql/src/change-notes/released/1.4.0.md | 19 ++++++++++++++++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.16.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 12 +++++++++++ .../change-notes/2025-01-15-builtin-model.md | 4 ---- .../4.0.0.md} | 11 +++++++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 4 ++++ python/ql/src/change-notes/released/1.4.2.md | 3 +++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 19 ++++++++++++++++++ .../4.0.0.md} | 7 ++++--- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 ++++ ruby/ql/src/change-notes/released/1.1.11.md | 3 +++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 4 ++++ rust/ql/lib/change-notes/released/0.1.1.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 +- rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 4 ++++ rust/ql/src/change-notes/released/0.1.1.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 +- rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 9 +++++++++ .../2.0.0.md} | 7 ++++--- shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 7 +++++++ .../2.0.0.md} | 9 +++++---- shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.16.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.16.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.16.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ++++ shared/ssa/change-notes/released/1.0.16.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.16.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/1.0.16.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ .../typeflow/change-notes/released/1.0.16.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 6 ++++++ .../2025-01-27-outdated-deprecations.md | 4 ---- .../change-notes/released/2.0.0.md | 5 +++++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.16.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.3.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.16.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.16.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 7 +++++++ .../4.0.0.md} | 9 +++++---- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 ++++ swift/ql/src/change-notes/released/1.0.16.md | 3 +++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 173 files changed, 509 insertions(+), 204 deletions(-) delete mode 100644 actions/ql/lib/change-notes/2025-01-20-bash.md delete mode 100644 actions/ql/lib/change-notes/2025-01-22-version.md create mode 100644 actions/ql/lib/change-notes/released/0.4.2.md create mode 100644 actions/ql/src/change-notes/released/0.4.2.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md delete mode 100644 cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md rename cpp/ql/lib/change-notes/{2024-01-20-elifdef.md => released/4.0.0.md} (51%) delete mode 100644 cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md delete mode 100644 cpp/ql/src/change-notes/2025-01-31-format-args.md create mode 100644 cpp/ql/src/change-notes/released/1.3.3.md create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-22-partial-members.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md delete mode 100644 csharp/ql/lib/change-notes/2025-01-29-params-models.md create mode 100644 csharp/ql/lib/change-notes/released/5.0.0.md rename java/ql/src/change-notes/2024-12-17-experimental-queries.md => csharp/ql/src/change-notes/released/1.0.16.md (82%) create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.16.md delete mode 100644 go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md delete mode 100644 go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md delete mode 100644 go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename go/ql/lib/change-notes/{2024-12-16-any-content-readers.md => released/4.0.0.md} (59%) create mode 100644 go/ql/src/change-notes/released/1.1.7.md delete mode 100644 java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md rename java/ql/lib/change-notes/{2025-01-27-outdated-deprecations.md => released/7.0.0.md} (70%) rename csharp/ql/src/change-notes/2024-11-05-experimental-queries.md => java/ql/src/change-notes/released/1.1.13.md (75%) rename javascript/ql/lib/change-notes/{2025-01-03-angular-source-sink.md => released/2.4.0.md} (78%) delete mode 100644 javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md delete mode 100644 javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md delete mode 100644 javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md delete mode 100644 javascript/ql/src/change-notes/2025-01-30-nest-di.md delete mode 100644 javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md create mode 100644 javascript/ql/src/change-notes/released/1.4.0.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.16.md delete mode 100644 python/ql/lib/change-notes/2025-01-15-builtin-model.md rename python/ql/lib/change-notes/{2025-01-27-outdated-deprecations.md => released/4.0.0.md} (59%) create mode 100644 python/ql/src/change-notes/released/1.4.2.md rename ruby/ql/lib/change-notes/{2025-01-27-outdated-deprecations.md => released/4.0.0.md} (98%) create mode 100644 ruby/ql/src/change-notes/released/1.1.11.md create mode 100644 rust/ql/lib/change-notes/released/0.1.1.md create mode 100644 rust/ql/src/change-notes/released/0.1.1.md rename shared/controlflow/change-notes/{2025-01-16-basic-block.md => released/2.0.0.md} (88%) rename shared/dataflow/change-notes/{2025-01-27-outdated-deprecations.md => released/2.0.0.md} (76%) create mode 100644 shared/mad/change-notes/released/1.0.16.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.16.md create mode 100644 shared/regex/change-notes/released/1.0.16.md create mode 100644 shared/ssa/change-notes/released/1.0.16.md create mode 100644 shared/threat-models/change-notes/released/1.0.16.md create mode 100644 shared/tutorial/change-notes/released/1.0.16.md create mode 100644 shared/typeflow/change-notes/released/1.0.16.md delete mode 100644 shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md create mode 100644 shared/typetracking/change-notes/released/2.0.0.md create mode 100644 shared/typos/change-notes/released/1.0.16.md create mode 100644 shared/util/change-notes/released/2.0.3.md create mode 100644 shared/xml/change-notes/released/1.0.16.md create mode 100644 shared/yaml/change-notes/released/1.0.16.md rename swift/ql/lib/change-notes/{2025-01-27-outdated-deprecations.md => released/4.0.0.md} (88%) create mode 100644 swift/ql/src/change-notes/released/1.0.16.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index ce81d2262f8..ddc9ef77e02 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/lib/change-notes/2025-01-20-bash.md b/actions/ql/lib/change-notes/2025-01-20-bash.md deleted file mode 100644 index fe380d75701..00000000000 --- a/actions/ql/lib/change-notes/2025-01-20-bash.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. \ No newline at end of file diff --git a/actions/ql/lib/change-notes/2025-01-22-version.md b/actions/ql/lib/change-notes/2025-01-22-version.md deleted file mode 100644 index 316fdfd4d54..00000000000 --- a/actions/ql/lib/change-notes/2025-01-22-version.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). \ No newline at end of file diff --git a/actions/ql/lib/change-notes/released/0.4.2.md b/actions/ql/lib/change-notes/released/0.4.2.md new file mode 100644 index 00000000000..eeeca2152d6 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.2.md @@ -0,0 +1,6 @@ +## 0.4.2 + +### Bug Fixes + +* Fixed data for vulnerable versions of `actions/download-artifact` and `rlespinasse/github-slug-action` (following GHSA-cxww-7g56-2vh6 and GHSA-6q4m-7476-932w). +* Improved `untrustedGhCommandDataModel` regex for `gh pr view` and Bash taint analysis in GitHub Actions. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 89fa3a87180..94c5b17423c 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 58952f7e2bb..8046f40cadf 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.2-dev +version: 0.4.2 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 3eac1f79987..02c0e793c97 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.2 + +No user-facing changes. + ## 0.4.1 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.4.2.md b/actions/ql/src/change-notes/released/0.4.2.md new file mode 100644 index 00000000000..2278d6321e4 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.4.2.md @@ -0,0 +1,3 @@ +## 0.4.2 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 89fa3a87180..94c5b17423c 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.1 +lastReleaseVersion: 0.4.2 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 4343767363a..fd659587bf6 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.2-dev +version: 0.4.2 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index fa7a301d043..0d224483825 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. +* New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. +* A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. + ## 3.2.0 ### New Features diff --git a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 20b2c973cc3..00000000000 --- a/cpp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md b/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md deleted file mode 100644 index 3f876f2271d..00000000000 --- a/cpp/ql/lib/change-notes/2025-01-30-getOffsetInClass.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. diff --git a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md b/cpp/ql/lib/change-notes/released/4.0.0.md similarity index 51% rename from cpp/ql/lib/change-notes/2024-01-20-elifdef.md rename to cpp/ql/lib/change-notes/released/4.0.0.md index 9766e7f3af2..0d388c288c7 100644 --- a/cpp/ql/lib/change-notes/2024-01-20-elifdef.md +++ b/cpp/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,11 @@ ---- -category: feature ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getAllocatorCall` predicate from `DeleteOrDeleteArrayExpr`, use `getDeallocatorCall` instead. + +### New Features + +* A new predicate `getOffsetInClass` was added to the `Field` class, which computes the byte offset of a field relative to a given `Class`. * New classes `PreprocessorElifdef` and `PreprocessorElifndef` were introduced, which represents the C23/C++23 `#elifdef` and `#elifndef` preprocessor directives. * A new class `TypeLibraryImport` was introduced, which represents the `#import` preprocessor directive as used by the Microsoft Visual C++ for importing type libraries. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index f3d134d8910..49fe3eef697 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.2.0 +lastReleaseVersion: 4.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 81669163837..5a5cfa561a9 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 3.2.1-dev +version: 4.0.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 671026afc56..1a4c8b06180 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. + ## 1.3.2 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md b/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md deleted file mode 100644 index e06ad16a71e..00000000000 --- a/cpp/ql/src/change-notes/2025-01-28-overflow-buffer.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/change-notes/2025-01-31-format-args.md b/cpp/ql/src/change-notes/2025-01-31-format-args.md deleted file mode 100644 index 41f3d6bb202..00000000000 --- a/cpp/ql/src/change-notes/2025-01-31-format-args.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. diff --git a/cpp/ql/src/change-notes/released/1.3.3.md b/cpp/ql/src/change-notes/released/1.3.3.md new file mode 100644 index 00000000000..1f85ee5df74 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.3.3.md @@ -0,0 +1,6 @@ +## 1.3.3 + +### Minor Analysis Improvements + +* The "Wrong type of arguments to formatting function" query (`cpp/wrong-type-format-argument`) now produces fewer FPs if the formatting function has multiple definitions. +* The "Call to memory access function may overflow buffer" query (`cpp/overflow-buffer`) now produces fewer FPs involving non-static member variables. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 86a9cb32d86..eb1f7dabc84 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.2 +lastReleaseVersion: 1.3.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 0db3a53d6ba..0c844a31cc3 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.3-dev +version: 1.3.3 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 5e50f32db5f..288181c929f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md new file mode 100644 index 00000000000..ec3c912e160 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index a09015b688d..80f613ab828 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 1b748f263b9..adbf2370be4 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.33-dev +version: 1.7.33 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 5e50f32db5f..288181c929f 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.33 + +No user-facing changes. + ## 1.7.32 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md new file mode 100644 index 00000000000..ec3c912e160 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.33.md @@ -0,0 +1,3 @@ +## 1.7.33 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index a09015b688d..80f613ab828 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.32 +lastReleaseVersion: 1.7.33 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index f674fcb03d7..7b8d5d2b1ff 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.33-dev +version: 1.7.33 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index ccc682d0c4f..8789d025160 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. + ## 4.0.2 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md b/csharp/ql/lib/change-notes/2025-01-22-partial-members.md deleted file mode 100644 index d83e0365405..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-22-partial-members.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md b/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md deleted file mode 100644 index f71a457166d..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-23-overload-resolution-priority.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. diff --git a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 4935e88a987..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. -* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2025-01-29-params-models.md b/csharp/ql/lib/change-notes/2025-01-29-params-models.md deleted file mode 100644 index f94298875eb..00000000000 --- a/csharp/ql/lib/change-notes/2025-01-29-params-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). diff --git a/csharp/ql/lib/change-notes/released/5.0.0.md b/csharp/ql/lib/change-notes/released/5.0.0.md new file mode 100644 index 00000000000..20684b71fec --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.0.0.md @@ -0,0 +1,12 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `getInstanceType` predicate from the `UnboundGenericType` class. +* Deleted the deprecated `getElement` predicate from the `Node` class in `ControlFlowGraph.qll`, use `getAstNode` instead. + +### Minor Analysis Improvements + +C# 13: Added MaD models for some overload implementations using `ReadOnlySpan` parameters (like `String.Format(System.String, System.ReadOnlySpan))`). +* C# 13: Added support for the overload resolution priority attribute (`OverloadResolutionPriority`). Usages of the attribute and the corresponding priority can be found using the QL class `SystemRuntimeCompilerServicesOverloadResolutionPriorityAttribute`. +* C# 13: Added support for partial properties and indexers. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 765f0717719..c9e54136ca5 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.2 +lastReleaseVersion: 5.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index fbc091b7951..be23b299afa 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 4.0.3-dev +version: 5.0.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 70e815289e8..90e6d1c825d 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.16 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.0.15 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-12-17-experimental-queries.md b/csharp/ql/src/change-notes/released/1.0.16.md similarity index 82% rename from java/ql/src/change-notes/2024-12-17-experimental-queries.md rename to csharp/ql/src/change-notes/released/1.0.16.md index 12390d29b3c..2f65ceae322 100644 --- a/java/ql/src/change-notes/2024-12-17-experimental-queries.md +++ b/csharp/ql/src/change-notes/released/1.0.16.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.0.16 + +### Minor Analysis Improvements + * All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 52810c368bf..79d7b243feb 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.16-dev +version: 1.0.16 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 6fe78032155..6bc6aae0b4e 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.16.md b/go/ql/consistency-queries/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 41f9b325313..4fade44df6f 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.16-dev +version: 1.0.16 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 6dfe40aa040..1e151003ad9 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. +* By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. +* The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query + ## 3.0.2 ### Minor Analysis Improvements diff --git a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md b/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md deleted file mode 100644 index 3f2f7be82a5..00000000000 --- a/go/ql/lib/change-notes/2023-10-31-add-rs-cors-framework.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query \ No newline at end of file diff --git a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md b/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md deleted file mode 100644 index a14d31e89b1..00000000000 --- a/go/ql/lib/change-notes/2025-01-22-fix-parameter-in-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. diff --git a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index 8a00e508346..00000000000 --- a/go/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` \ No newline at end of file diff --git a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md b/go/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from go/ql/lib/change-notes/2024-12-16-any-content-readers.md rename to go/ql/lib/change-notes/released/4.0.0.md index aa244c1b97a..5745445dcb2 100644 --- a/go/ql/lib/change-notes/2024-12-16-any-content-readers.md +++ b/go/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,12 @@ ---- -category: minorAnalysis ---- +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `describeBitSize` predicate from `IncorrectIntegerConversionLib.qll` + +### Minor Analysis Improvements + +* Models-as-data models using "Parameter", "Parameter[n]" or "Parameter[n1..n2]" as the output now work correctly. * By implementing `ImplicitFieldReadNode` it is now possible to declare a dataflow node that reads any content (fields, array members, map keys and values). For example, this is appropriate for modelling a serialization method that flattens a potentially deep data structure into a string or byte array. * The `Template.Execute[Template]` methods of the `text/template` package now correctly convey taint from any nested fields to their result. This may produce more results from any taint-tracking query when the `text/template` package is in use. +* Added the [rs cors](https://github.com/rs/cors) library to the CorsMisconfiguration.ql query diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index de0e567baf7..49fe3eef697 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 5091fc8f3ce..f37c5aa29bf 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 3.0.3-dev +version: 4.0.0 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index f28caff537d..809116d3d32 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.7 + +No user-facing changes. + ## 1.1.6 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.1.7.md b/go/ql/src/change-notes/released/1.1.7.md new file mode 100644 index 00000000000..81505c0507a --- /dev/null +++ b/go/ql/src/change-notes/released/1.1.7.md @@ -0,0 +1,3 @@ +## 1.1.7 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 9e712a00a21..75910556516 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.6 +lastReleaseVersion: 1.1.7 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index cdd6d9a627f..2421ba9f359 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.7-dev +version: 1.1.7 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index ac8d8d6651f..5bc77cfcdf5 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,19 @@ +## 7.0.0 + +### Breaking Changes + +* Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. +* Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. +* Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. +* Deleted a lot of deprecated classes ending in "*Access", use the corresponding "*Call" classes instead. +* Deleted a lot of deprecated predicates ending in "*Access", use the corresponding "*Call" predicates instead. +* Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. +* Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. + +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. + ## 6.1.0 ### New Features diff --git a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md b/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md deleted file mode 100644 index cc0b2acb953..00000000000 --- a/java/ql/lib/change-notes/2025-01-07-jax-rs-annotation-inheritance.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/java/ql/lib/change-notes/released/7.0.0.md similarity index 70% rename from java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to java/ql/lib/change-notes/released/7.0.0.md index 4a9ef73b8e2..08a4b0f85bf 100644 --- a/java/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/java/ql/lib/change-notes/released/7.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 7.0.0 + +### Breaking Changes + * Deleted the deprecated `isLValue` and `isRValue` predicates from the `VarAccess` class, use `isVarWrite` and `isVarRead` respectively instead. * Deleted the deprecated `getRhs` predicate from the `VarWrite` class, use `getASource` instead. * Deleted the deprecated `LValue` and `RValue` classes, use `VarWrite` and `VarRead` respectively instead. @@ -9,3 +10,6 @@ category: breaking * Deleted the deprecated `EnvInput` and `DatabaseInput` classes from `FlowSources.qll`, use the threat models feature instead. * Deleted some deprecated API predicates from `SensitiveApi.qll`, use the Sink classes from that file instead. +### Minor Analysis Improvements + +* We now allow classes which don't have any JAX-RS annotations to inherit JAX-RS annotations from superclasses or interfaces. This is not allowed in the JAX-RS specification, but some implementations, like Apache CXF, allow it. This may lead to more alerts being found. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 22247782f3e..e0db21c7869 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.1.0 +lastReleaseVersion: 7.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index e3778844a7e..eabd92603b4 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 6.1.1-dev +version: 7.0.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 478735d6ed4..1630463509e 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). + ## 1.1.12 ### Bug Fixes diff --git a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md b/java/ql/src/change-notes/released/1.1.13.md similarity index 75% rename from csharp/ql/src/change-notes/2024-11-05-experimental-queries.md rename to java/ql/src/change-notes/released/1.1.13.md index f13df286191..017e4bdb088 100644 --- a/csharp/ql/src/change-notes/2024-11-05-experimental-queries.md +++ b/java/ql/src/change-notes/released/1.1.13.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). \ No newline at end of file +## 1.1.13 + +### Minor Analysis Improvements + +* All *experimental* queries have been deprecated. The queries are instead available as part of the *default* query suite in [CodeQL-Community-Packs](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs). diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index f5b135d0193..09a80be68d1 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.12 +lastReleaseVersion: 1.1.13 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8ccf4d97d22..cad1ee915a8 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.13-dev +version: 1.1.13 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index f7773662f1e..e79db6c81b3 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.4.0 + +### Major Analysis Improvements + +* Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter + ## 2.3.0 ### Deprecated APIs diff --git a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md b/javascript/ql/lib/change-notes/released/2.4.0.md similarity index 78% rename from javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md rename to javascript/ql/lib/change-notes/released/2.4.0.md index a1ca70800b3..d8e038356bb 100644 --- a/javascript/ql/lib/change-notes/2025-01-03-angular-source-sink.md +++ b/javascript/ql/lib/change-notes/released/2.4.0.md @@ -1,4 +1,5 @@ ---- -category: majorAnalysis ---- +## 2.4.0 + +### Major Analysis Improvements + * Added new XSS sink where `innerHTML` or `outerHTML` is assigned to with the Angular Renderer2 API, plus modeled this API as a general attribute setter diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 5936154675a..cb0ea3a249a 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.3.0 +lastReleaseVersion: 2.4.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index bb111078d1f..fb64548cfc6 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.3.1-dev +version: 2.4.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 0a932a15950..2f8c0a18392 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,23 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. + ## 1.3.0 ### Major Analysis Improvements diff --git a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md b/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md deleted file mode 100644 index fb2dddb47a7..00000000000 --- a/javascript/ql/src/change-notes/2025-01-21-vue-ts-notsconfig.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: fix ---- -* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, - but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not - extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md b/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md deleted file mode 100644 index b8aa44faff5..00000000000 --- a/javascript/ql/src/change-notes/2025-01-22-indexof-suffix-check.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. \ No newline at end of file diff --git a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md b/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md deleted file mode 100644 index 9f25ba446a1..00000000000 --- a/javascript/ql/src/change-notes/2025-01-22-view-component-inputs.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: majorAnalysis ---- -* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). - When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. - Some users may prefer this as a "defense in depth" option but note that it may result in false positives. - Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. diff --git a/javascript/ql/src/change-notes/2025-01-30-nest-di.md b/javascript/ql/src/change-notes/2025-01-30-nest-di.md deleted file mode 100644 index f6673613cf2..00000000000 --- a/javascript/ql/src/change-notes/2025-01-30-nest-di.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Improved support for NestJS applications that make use of dependency injection with custom providers. - Calls to methods on an injected service should now be resolved properly. diff --git a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md b/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md deleted file mode 100644 index 3f7c572d074..00000000000 --- a/javascript/ql/src/change-notes/2025-01-30-typescript-tsconfig-names.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any - source files, but references other `tsconfig.json`-like files that do include source files. diff --git a/javascript/ql/src/change-notes/released/1.4.0.md b/javascript/ql/src/change-notes/released/1.4.0.md new file mode 100644 index 00000000000..bee08130cf0 --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.4.0.md @@ -0,0 +1,19 @@ +## 1.4.0 + +### Major Analysis Improvements + +* Improved support for NestJS applications that make use of dependency injection with custom providers. + Calls to methods on an injected service should now be resolved properly. +* TypeScript extraction is now better at analyzing projects where the main `tsconfig.json` file does not include any + source files, but references other `tsconfig.json`-like files that do include source files. +* The `js/incorrect-suffix-check` query now recognises some good patterns of the form `origin.indexOf("." + allowedOrigin)` that were previously falsely flagged. +* Added a new threat model kind called `view-component-input`, which can enabled with [advanced setup](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + When enabled, all React props, Vue props, and input fields in an Angular component are seen as taint sources, even if none of the corresponding instantiation sites appear to pass in a tainted value. + Some users may prefer this as a "defense in depth" option but note that it may result in false positives. + Regardless of whether the threat model is enabled, CodeQL will propagate taint from the instantiation sites of such components into the components themselves. + +### Bug Fixes + +* Fixed a bug that would occur when TypeScript code was found in an HTML-like file, such as a `.vue` file, + but where it could not be associated with any `tsconfig.json` file. Previously the embedded code was not + extracted in this case, but should now be extracted properly. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index ec16350ed6f..b8b2e97d508 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.0 +lastReleaseVersion: 1.4.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 4e827b9b61f..84bb32d652a 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.3.1-dev +version: 1.4.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 46c730a2bdc..0227fc12fbe 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.16.md b/misc/suite-helpers/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 5edeb9c2b06..10dc7649e04 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.16-dev +version: 1.0.16 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 13a183b0bc2..a0b21e90265 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the old deprecated TypeTracking library. +* Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. +* Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2025-01-15-builtin-model.md b/python/ql/lib/change-notes/2025-01-15-builtin-model.md deleted file mode 100644 index c7933d09d04..00000000000 --- a/python/ql/lib/change-notes/2025-01-15-builtin-model.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/python/ql/lib/change-notes/released/4.0.0.md similarity index 59% rename from python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to python/ql/lib/change-notes/released/4.0.0.md index dd7c5e70e86..5c267031f43 100644 --- a/python/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/python/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,11 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the old deprecated TypeTracking library. * Deleted the deprecated `classRef` predicate from the `FieldStorage` module, use `subclassRef` instead. * Deleted a lot of deprecated modules and predicates from `Stdlib.qll`, use API-graphs directly instead. + +### Minor Analysis Improvements + +* Additional data flow models for the builtin functions `map`, `filter`, `zip`, and `enumerate` have been added. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index c06beda86a3..49fe3eef697 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index dbb0c7e2696..a4541edfdad 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 3.1.2-dev +version: 4.0.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 48612d804ae..f336f27befe 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.2 + +No user-facing changes. + ## 1.4.1 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.4.2.md b/python/ql/src/change-notes/released/1.4.2.md new file mode 100644 index 00000000000..37be01f40d9 --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.2.md @@ -0,0 +1,3 @@ +## 1.4.2 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 43ccf4467be..a76cacdf799 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.1 +lastReleaseVersion: 1.4.2 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index e629d13431b..8e88b4b299c 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.2-dev +version: 1.4.2 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 917cc0290a7..0acb1e8a240 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,22 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. +* Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. +* Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. +* Deleted the deprecated `Label` module from `ApiGraphs.qll`. +* Deleted the deprecated `getAUse`, `getAnImmediateUse`, `getARhs`, and `getAValueReachingRhs` predicates from `API::Node`, use `getAValueReachableFromSource`, `asSource`, `asSink`, and `getAValueReachingSink` instead. +* Deleted the deprecated `getAVariable` predicate from the `ExprNode` class, use `getVariable` instead. +* Deleted the deprecated `getAPotentialFieldAccessMethod` predicate from the `ActiveRecordModelClass` class. +* Deleted the deprecated `ActiveRecordModelClassMethodCall` class from `ActiveRecord.qll`, use `ActiveRecordModelClass.getClassNode().trackModule().getMethod()` instead. +* Deleted the deprecated `PotentiallyUnsafeSqlExecutingMethodCall` class from `ActiveRecord.qll`, use the `SqlExecution` concept instead. +* Deleted the deprecated `ModelClass` and `ModelInstance` classes from `ActiveResource.qll`, use `ModelClassNode` and `ModelClassNode.getAnInstanceReference()` instead. +* Deleted the deprecated `Collection` class from `ActiveResource.qll`, use `CollectionSource` instead. +* Deleted the deprecated `ServiceInstantiation` and `ClientInstantiation` classes from `Twirp.qll`. +* Deleted a lot of deprecated dataflow modules from "*Query.qll" files. +* Deleted the old deprecated TypeTracking library. + ## 3.0.2 ### Minor Analysis Improvements diff --git a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/ruby/ql/lib/change-notes/released/4.0.0.md similarity index 98% rename from ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to ruby/ql/lib/change-notes/released/4.0.0.md index 8c4fef82d93..9674020e9dd 100644 --- a/ruby/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/ruby/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `getCallNode` predicate from `API::Node`, use `asCall()` instead. * Deleted the deprecated `getASubclass`, `getAnImmediateSubclass`, `getASuccessor`, `getAPredecessor`, `getASuccessor`, `getDepth`, and `getPath` predicates from `API::Node`. * Deleted the deprecated `Root`, `Use`, and `Def` classes from `ApiGraphs.qll`. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index de0e567baf7..49fe3eef697 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 42ddf09077a..8e7d9f40706 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 3.0.3-dev +version: 4.0.0 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 3b12430e6f7..e22d95bc63f 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.11 + +No user-facing changes. + ## 1.1.10 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.11.md b/ruby/ql/src/change-notes/released/1.1.11.md new file mode 100644 index 00000000000..c94f527264e --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.11.md @@ -0,0 +1,3 @@ +## 1.1.11 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 4c01918d414..121f8cf035d 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.10 +lastReleaseVersion: 1.1.11 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 7fb67982058..175aab9e3ef 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.11-dev +version: 1.1.11 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 7b4d4fc699c..5712c750565 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.1.md b/rust/ql/lib/change-notes/released/0.1.1.md new file mode 100644 index 00000000000..481c4392f3d --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 2e08f40f6aa..92d1505475f 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 1efed98cdbe..d882a3a7e1b 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.1-dev +version: 0.1.1 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 7b4d4fc699c..5712c750565 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.1 + +No user-facing changes. + ## 0.1.0 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.1.md b/rust/ql/src/change-notes/released/0.1.1.md new file mode 100644 index 00000000000..481c4392f3d --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.1.md @@ -0,0 +1,3 @@ +## 0.1.1 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 2e08f40f6aa..92d1505475f 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.0 +lastReleaseVersion: 0.1.1 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 6836b5375b3..ab7025b63f7 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.1-dev +version: 0.1.1 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index e876302b58b..65f4b540763 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,12 @@ +## 2.0.0 + +### Breaking Changes + +* Added a basic block construction as part of the library. This is currently + considered an internal unstable API. The input signature to the control flow + graph now requires two additional predicates: `idOfAstNode` and + `idOfCfgScope`. + ## 1.0.15 No user-facing changes. diff --git a/shared/controlflow/change-notes/2025-01-16-basic-block.md b/shared/controlflow/change-notes/released/2.0.0.md similarity index 88% rename from shared/controlflow/change-notes/2025-01-16-basic-block.md rename to shared/controlflow/change-notes/released/2.0.0.md index 2fd543dc551..5a95065c835 100644 --- a/shared/controlflow/change-notes/2025-01-16-basic-block.md +++ b/shared/controlflow/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Added a basic block construction as part of the library. This is currently considered an internal unstable API. The input signature to the control flow graph now requires two additional predicates: `idOfAstNode` and diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 8debd0d34c2..0abe6ccede0 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 2046b9b44e9..8ac52887c22 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.16-dev +version: 2.0.0 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 8524b149db5..b1730ac585e 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. + ## 1.1.9 No user-facing changes. diff --git a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md b/shared/dataflow/change-notes/released/2.0.0.md similarity index 76% rename from shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md rename to shared/dataflow/change-notes/released/2.0.0.md index 762527f1b73..c17f9a6fb4f 100644 --- a/shared/dataflow/change-notes/2025-01-27-outdated-deprecations.md +++ b/shared/dataflow/change-notes/released/2.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `Make` and `MakeWithState` modules, use `Global` and `GlobalWithState` instead. -* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. \ No newline at end of file +* Deleted the deprecated `hasFlow`, `hasFlowPath`, `hasFlowTo`, and `hasFlowToExpr` predicates, use `flow`, `flowPath`, `flowTo`, and `flowToExpr` respectively instead. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 6f4795f3ea0..0abe6ccede0 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.9 +lastReleaseVersion: 2.0.0 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 8280d364d1c..0f54129cdd0 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.10-dev +version: 2.0.0 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index b7416e72c04..c9bc4beddf1 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.16.md b/shared/mad/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 35b7147a8c0..f81dfebd5ea 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index d6049c6a9fc..bc77ab8acc9 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.16.md b/shared/rangeanalysis/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index e8f370ff0cc..52b3d8e5ded 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 33d1399a12d..ee6c1e70648 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.16.md b/shared/regex/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 4c5e2b17d92..df5aed7a2f6 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 30a55a5859c..c1e8ee9e42f 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.16.md b/shared/ssa/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 52a0153015a..e1dfe882b6f 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 6fe78032155..6bc6aae0b4e 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.16.md b/shared/threat-models/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 24acb7b0cec..b7556a47a3c 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.16-dev +version: 1.0.16 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index ebfe21d85d1..0d1c113cc29 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.16.md b/shared/tutorial/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index a9829c5680c..9882b98cc89 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 9644aa49fd4..22eea9d7c8b 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.16.md b/shared/typeflow/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 870d6dfb8b7..7776f175f9f 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 71a6ce3acf2..5ac7f2636b6 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. + ## 1.0.15 No user-facing changes. diff --git a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md b/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md deleted file mode 100644 index c04779d478f..00000000000 --- a/shared/typetracking/change-notes/2025-01-27-outdated-deprecations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `ConsistencyChecks` module. \ No newline at end of file diff --git a/shared/typetracking/change-notes/released/2.0.0.md b/shared/typetracking/change-notes/released/2.0.0.md new file mode 100644 index 00000000000..6aaf20b32d1 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.0.md @@ -0,0 +1,5 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `ConsistencyChecks` module. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 8debd0d34c2..0abe6ccede0 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 2.0.0 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 7eca76aff91..0d1138e18e7 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.16-dev +version: 2.0.0 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index e4d9b985300..85078c7993c 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.16.md b/shared/typos/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 57065f2d1ea..631b21aef52 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 38800b2bcb7..f6eb7781486 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.3 + +No user-facing changes. + ## 2.0.2 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.3.md b/shared/util/change-notes/released/2.0.3.md new file mode 100644 index 00000000000..7bd669821d5 --- /dev/null +++ b/shared/util/change-notes/released/2.0.3.md @@ -0,0 +1,3 @@ +## 2.0.3 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 81c7f1dbc13..fabf1e86596 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.2 +lastReleaseVersion: 2.0.3 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 9c9b4113c59..739db4bef3b 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.3-dev +version: 2.0.3 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 740618e8977..d6297fd0036 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.16.md b/shared/xml/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 5dc9bb67580..c9630950a8f 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 5f6250607e0..2aff18b9a3c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.16.md b/shared/yaml/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index e9449e31169..de789275c13 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.16-dev +version: 1.0.16 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 9c569ad4bed..d9a18cfabbf 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. + ## 3.1.1 ### Minor Analysis Improvements diff --git a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md b/swift/ql/lib/change-notes/released/4.0.0.md similarity index 88% rename from swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/4.0.0.md index d9fb3caedf9..b19d5987c0c 100644 --- a/swift/ql/lib/change-notes/2025-01-27-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/4.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `ArrayContent` class from the dataflow library, use `CollectionContent` instead. -* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. \ No newline at end of file +* Deleted the deprecated `getOptionsInput`, `getRegexInput`, and `getStringInput` predicates from the regexp library, use `getAnOptionsInput`, `getRegexInputNode`, and `getStringInputNode` instead. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index c06beda86a3..49fe3eef697 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.1.1 +lastReleaseVersion: 4.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 4281e1219f2..41a57dbef56 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 3.1.2-dev +version: 4.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index ad51d96751e..729baa54c4a 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.16 + +No user-facing changes. + ## 1.0.15 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.16.md b/swift/ql/src/change-notes/released/1.0.16.md new file mode 100644 index 00000000000..6165cfef9f2 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.16.md @@ -0,0 +1,3 @@ +## 1.0.16 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 8debd0d34c2..25c58f4113f 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.15 +lastReleaseVersion: 1.0.16 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index b3331ff4ff0..e50b3873784 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.16-dev +version: 1.0.16 groups: - swift - queries