From 59da2cdf69b5324c343b4518985eb28b8cc8862f Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 14 Dec 2021 21:35:09 +0000 Subject: [PATCH] Release preparation for version 2.7.4 --- cpp/ql/lib/CHANGELOG.md | 2 ++ cpp/ql/lib/change-notes/released/0.0.5.md | 1 + cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 7 +++++++ .../2021-11-25-certificate-not-checked.md | 5 ----- .../2021-11-25-certificate-result-conflation.md | 5 ----- cpp/ql/src/change-notes/released/0.0.5.md | 6 ++++++ cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- cpp/upgrades/CHANGELOG.md | 2 ++ cpp/upgrades/change-notes/released/0.0.5.md | 1 + cpp/upgrades/codeql-pack.release.yml | 2 +- cpp/upgrades/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 2 ++ csharp/ql/lib/change-notes/released/0.0.5.md | 1 + csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 2 ++ csharp/ql/src/change-notes/released/0.0.5.md | 1 + csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- csharp/upgrades/CHANGELOG.md | 2 ++ csharp/upgrades/change-notes/released/0.0.5.md | 1 + csharp/upgrades/codeql-pack.release.yml | 2 +- csharp/upgrades/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 7 +++++++ .../0.0.5.md} | 8 ++++---- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 6 ++++++ .../0.0.5.md} | 8 ++++---- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- java/upgrades/CHANGELOG.md | 2 ++ java/upgrades/change-notes/released/0.0.5.md | 1 + java/upgrades/codeql-pack.release.yml | 2 +- java/upgrades/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 ++++++ .../ql/lib/change-notes/2021-11-23-typescript-4.5.md | 5 ----- javascript/ql/lib/change-notes/released/0.0.6.md | 5 +++++ javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 ++++++ .../ql/src/change-notes/2021-11-23-typescript-4.5.md | 5 ----- javascript/ql/src/change-notes/released/0.0.6.md | 5 +++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- javascript/upgrades/CHANGELOG.md | 2 ++ javascript/upgrades/change-notes/released/0.0.6.md | 1 + javascript/upgrades/codeql-pack.release.yml | 2 +- javascript/upgrades/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 11 +++++++++++ .../2021-11-15-model-wsgiref-simple-server-app.md | 5 ----- python/ql/lib/change-notes/2021-11-16-posixpath.md | 5 ----- .../2021-11-24-FastAPI-Custom-APIRouter-Subclass.md | 5 ----- ...021-11-24-FastAPI-FileResponse-FileSystemAccess.md | 5 ----- .../ql/lib/change-notes/2021-11-26-os-file-access.md | 5 ----- .../change-notes/2021-11-26-tempfile-file-access.md | 5 ----- python/ql/lib/change-notes/released/0.0.5.md | 10 ++++++++++ python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 10 ++++++++++ .../2021-11-15-model-wsgiref-simple-server-app.md | 5 ----- python/ql/src/change-notes/2021-11-16-posixpath.md | 5 ----- ...021-11-24-FastAPI-FileResponse-FileSystemAccess.md | 5 ----- .../ql/src/change-notes/2021-11-26-os-file-access.md | 5 ----- .../change-notes/2021-11-26-tempfile-file-access.md | 5 ----- python/ql/src/change-notes/released/0.0.5.md | 9 +++++++++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- python/upgrades/CHANGELOG.md | 2 ++ python/upgrades/change-notes/released/0.0.5.md | 1 + python/upgrades/codeql-pack.release.yml | 2 +- python/upgrades/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 6 ++++++ .../0.0.5.md} | 8 ++++---- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 2 ++ ruby/ql/src/change-notes/released/0.0.5.md | 1 + ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- 83 files changed, 167 insertions(+), 121 deletions(-) create mode 100644 cpp/ql/lib/change-notes/released/0.0.5.md delete mode 100644 cpp/ql/src/change-notes/2021-11-25-certificate-not-checked.md delete mode 100644 cpp/ql/src/change-notes/2021-11-25-certificate-result-conflation.md create mode 100644 cpp/ql/src/change-notes/released/0.0.5.md create mode 100644 cpp/upgrades/change-notes/released/0.0.5.md create mode 100644 csharp/ql/lib/change-notes/released/0.0.5.md create mode 100644 csharp/ql/src/change-notes/released/0.0.5.md create mode 100644 csharp/upgrades/change-notes/released/0.0.5.md rename java/ql/lib/change-notes/{2021-11-25-surrogate-char-literals.md => released/0.0.5.md} (81%) rename java/ql/src/change-notes/{2021-11-25-surrogate-char-literals.md => released/0.0.5.md} (69%) create mode 100644 java/upgrades/change-notes/released/0.0.5.md delete mode 100644 javascript/ql/lib/change-notes/2021-11-23-typescript-4.5.md create mode 100644 javascript/ql/lib/change-notes/released/0.0.6.md delete mode 100644 javascript/ql/src/change-notes/2021-11-23-typescript-4.5.md create mode 100644 javascript/ql/src/change-notes/released/0.0.6.md create mode 100644 javascript/upgrades/change-notes/released/0.0.6.md delete mode 100644 python/ql/lib/change-notes/2021-11-15-model-wsgiref-simple-server-app.md delete mode 100644 python/ql/lib/change-notes/2021-11-16-posixpath.md delete mode 100644 python/ql/lib/change-notes/2021-11-24-FastAPI-Custom-APIRouter-Subclass.md delete mode 100644 python/ql/lib/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md delete mode 100644 python/ql/lib/change-notes/2021-11-26-os-file-access.md delete mode 100644 python/ql/lib/change-notes/2021-11-26-tempfile-file-access.md create mode 100644 python/ql/lib/change-notes/released/0.0.5.md delete mode 100644 python/ql/src/change-notes/2021-11-15-model-wsgiref-simple-server-app.md delete mode 100644 python/ql/src/change-notes/2021-11-16-posixpath.md delete mode 100644 python/ql/src/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md delete mode 100644 python/ql/src/change-notes/2021-11-26-os-file-access.md delete mode 100644 python/ql/src/change-notes/2021-11-26-tempfile-file-access.md create mode 100644 python/ql/src/change-notes/released/0.0.5.md create mode 100644 python/upgrades/change-notes/released/0.0.5.md rename ruby/ql/lib/change-notes/{2021-12-07-customizations.md => released/0.0.5.md} (69%) create mode 100644 ruby/ql/src/change-notes/released/0.0.5.md diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 3b8fc34bb3f..b61316a853d 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,5 @@ +## 0.0.5 + ## 0.0.4 ### New Features diff --git a/cpp/ql/lib/change-notes/released/0.0.5.md b/cpp/ql/lib/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 95a9da48aa6..68e31e2eaf9 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 0.0.5-dev +version: 0.0.5 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 09ad248a4f9..f56b07d8086 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.0.5 + +### New Queries + +* A new query `cpp/certificate-not-checked` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. +* A new query `cpp/certificate-result-conflation` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. + ## 0.0.4 ### New Queries diff --git a/cpp/ql/src/change-notes/2021-11-25-certificate-not-checked.md b/cpp/ql/src/change-notes/2021-11-25-certificate-not-checked.md deleted file mode 100644 index 93a73af7eed..00000000000 --- a/cpp/ql/src/change-notes/2021-11-25-certificate-not-checked.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: newQuery -tags: [lgtm,codescanning] ---- -* A new query `cpp/certificate-not-checked` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. diff --git a/cpp/ql/src/change-notes/2021-11-25-certificate-result-conflation.md b/cpp/ql/src/change-notes/2021-11-25-certificate-result-conflation.md deleted file mode 100644 index 9d0cbfdd012..00000000000 --- a/cpp/ql/src/change-notes/2021-11-25-certificate-result-conflation.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: newQuery -tags: [lgtm,codescanning] ---- -* A new query `cpp/certificate-result-conflation` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. diff --git a/cpp/ql/src/change-notes/released/0.0.5.md b/cpp/ql/src/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..d69c30f28a4 --- /dev/null +++ b/cpp/ql/src/change-notes/released/0.0.5.md @@ -0,0 +1,6 @@ +## 0.0.5 + +### New Queries + +* A new query `cpp/certificate-not-checked` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. +* A new query `cpp/certificate-result-conflation` has been added for C/C++. The query flags unsafe use of OpenSSL and similar libraries. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 51761e13365..0f431aa0200 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 0.0.5-dev +version: 0.0.5 groups: cpp dependencies: codeql/cpp-all: "*" diff --git a/cpp/upgrades/CHANGELOG.md b/cpp/upgrades/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/cpp/upgrades/CHANGELOG.md +++ b/cpp/upgrades/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/cpp/upgrades/change-notes/released/0.0.5.md b/cpp/upgrades/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/cpp/upgrades/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/cpp/upgrades/codeql-pack.release.yml b/cpp/upgrades/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/cpp/upgrades/codeql-pack.release.yml +++ b/cpp/upgrades/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/cpp/upgrades/qlpack.yml b/cpp/upgrades/qlpack.yml index 38944dfdfc5..a1b792bb60a 100644 --- a/cpp/upgrades/qlpack.yml +++ b/cpp/upgrades/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-upgrades groups: cpp upgrades: . -version: 0.0.5-dev +version: 0.0.5 library: true diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/csharp/ql/lib/change-notes/released/0.0.5.md b/csharp/ql/lib/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 55e707fb2f5..928f7d5bb53 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 0.0.5-dev +version: 0.0.5 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/csharp/ql/src/change-notes/released/0.0.5.md b/csharp/ql/src/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/csharp/ql/src/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index f928d2d09ef..15a776b73d8 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 0.0.5-dev +version: 0.0.5 groups: csharp suites: codeql-suites extractor: csharp diff --git a/csharp/upgrades/CHANGELOG.md b/csharp/upgrades/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/csharp/upgrades/CHANGELOG.md +++ b/csharp/upgrades/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/csharp/upgrades/change-notes/released/0.0.5.md b/csharp/upgrades/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/csharp/upgrades/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/csharp/upgrades/codeql-pack.release.yml b/csharp/upgrades/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/csharp/upgrades/codeql-pack.release.yml +++ b/csharp/upgrades/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/csharp/upgrades/qlpack.yml b/csharp/upgrades/qlpack.yml index 6e6379211b1..cf3a3506c01 100644 --- a/csharp/upgrades/qlpack.yml +++ b/csharp/upgrades/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-upgrades groups: csharp -version: 0.0.5-dev +version: 0.0.5 upgrades: . library: true diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 5dec32d6688..054184eb7e5 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.0.5 + +### Bug Fixes + +* `CharacterLiteral`'s `getCodePointValue` predicate now returns the correct value for UTF-16 surrogates. +* The `RangeAnalysis` module now properly handles comparisons with Unicode surrogate character literals. + ## 0.0.4 ### Bug Fixes diff --git a/java/ql/lib/change-notes/2021-11-25-surrogate-char-literals.md b/java/ql/lib/change-notes/released/0.0.5.md similarity index 81% rename from java/ql/lib/change-notes/2021-11-25-surrogate-char-literals.md rename to java/ql/lib/change-notes/released/0.0.5.md index d1be437cb83..4d056321c28 100644 --- a/java/ql/lib/change-notes/2021-11-25-surrogate-char-literals.md +++ b/java/ql/lib/change-notes/released/0.0.5.md @@ -1,6 +1,6 @@ ---- -category: fix -tags: [lgtm,codescanning] ---- +## 0.0.5 + +### Bug Fixes + * `CharacterLiteral`'s `getCodePointValue` predicate now returns the correct value for UTF-16 surrogates. * The `RangeAnalysis` module now properly handles comparisons with Unicode surrogate character literals. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index c2b157b1ad5..c3e1981278e 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 0.0.5-dev +version: 0.0.5 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 3268fefb272..f6dd930d629 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1 +1,7 @@ +## 0.0.5 + +### Minor Analysis Improvements + +* The `java/constant-comparison` query no longer raises false alerts regarding comparisons with Unicode surrogate character literals. + ## 0.0.4 diff --git a/java/ql/src/change-notes/2021-11-25-surrogate-char-literals.md b/java/ql/src/change-notes/released/0.0.5.md similarity index 69% rename from java/ql/src/change-notes/2021-11-25-surrogate-char-literals.md rename to java/ql/src/change-notes/released/0.0.5.md index b33dca1b6c8..632fad94c8c 100644 --- a/java/ql/src/change-notes/2021-11-25-surrogate-char-literals.md +++ b/java/ql/src/change-notes/released/0.0.5.md @@ -1,5 +1,5 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- +## 0.0.5 + +### Minor Analysis Improvements + * The `java/constant-comparison` query no longer raises false alerts regarding comparisons with Unicode surrogate character literals. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8152e4d1d5c..00bc7da584b 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 0.0.5-dev +version: 0.0.5 groups: java suites: codeql-suites extractor: java diff --git a/java/upgrades/CHANGELOG.md b/java/upgrades/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/java/upgrades/CHANGELOG.md +++ b/java/upgrades/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/java/upgrades/change-notes/released/0.0.5.md b/java/upgrades/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/java/upgrades/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/java/upgrades/codeql-pack.release.yml b/java/upgrades/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/java/upgrades/codeql-pack.release.yml +++ b/java/upgrades/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/java/upgrades/qlpack.yml b/java/upgrades/qlpack.yml index 75cc8f06721..22f5c51f7d0 100644 --- a/java/upgrades/qlpack.yml +++ b/java/upgrades/qlpack.yml @@ -2,4 +2,4 @@ name: codeql/java-upgrades groups: java upgrades: . library: true -version: 0.0.5-dev +version: 0.0.5 diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 259776640e3..894fb54ef75 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1 +1,7 @@ +## 0.0.6 + +### New Features + +* TypeScript 4.5 is now supported. + ## 0.0.5 diff --git a/javascript/ql/lib/change-notes/2021-11-23-typescript-4.5.md b/javascript/ql/lib/change-notes/2021-11-23-typescript-4.5.md deleted file mode 100644 index 13485c949dc..00000000000 --- a/javascript/ql/lib/change-notes/2021-11-23-typescript-4.5.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature -tags: [lgtm,codescanning] ---- -* TypeScript 4.5 is now supported. diff --git a/javascript/ql/lib/change-notes/released/0.0.6.md b/javascript/ql/lib/change-notes/released/0.0.6.md new file mode 100644 index 00000000000..d6b2cd58b65 --- /dev/null +++ b/javascript/ql/lib/change-notes/released/0.0.6.md @@ -0,0 +1,5 @@ +## 0.0.6 + +### New Features + +* TypeScript 4.5 is now supported. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index bb45a1ab018..cf398ce02aa 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.5 +lastReleaseVersion: 0.0.6 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index edececa2335..66756d92702 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 0.0.5 +version: 0.0.6 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index ccd1b78a045..de6fd0ef3a0 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.0.6 + +### Major Analysis Improvements + +* TypeScript 4.5 is now supported. + ## 0.0.5 ### New Queries diff --git a/javascript/ql/src/change-notes/2021-11-23-typescript-4.5.md b/javascript/ql/src/change-notes/2021-11-23-typescript-4.5.md deleted file mode 100644 index 44aa6cdba13..00000000000 --- a/javascript/ql/src/change-notes/2021-11-23-typescript-4.5.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis -tags: [lgtm,codescanning] ---- -* TypeScript 4.5 is now supported. diff --git a/javascript/ql/src/change-notes/released/0.0.6.md b/javascript/ql/src/change-notes/released/0.0.6.md new file mode 100644 index 00000000000..7121ef23816 --- /dev/null +++ b/javascript/ql/src/change-notes/released/0.0.6.md @@ -0,0 +1,5 @@ +## 0.0.6 + +### Major Analysis Improvements + +* TypeScript 4.5 is now supported. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index bb45a1ab018..cf398ce02aa 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.5 +lastReleaseVersion: 0.0.6 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 6fdbcf3432c..48b4b4d3c53 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 0.0.5 +version: 0.0.6 groups: javascript suites: codeql-suites extractor: javascript diff --git a/javascript/upgrades/CHANGELOG.md b/javascript/upgrades/CHANGELOG.md index 259776640e3..21e20e1bd27 100644 --- a/javascript/upgrades/CHANGELOG.md +++ b/javascript/upgrades/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.6 + ## 0.0.5 diff --git a/javascript/upgrades/change-notes/released/0.0.6.md b/javascript/upgrades/change-notes/released/0.0.6.md new file mode 100644 index 00000000000..7cad4d986e5 --- /dev/null +++ b/javascript/upgrades/change-notes/released/0.0.6.md @@ -0,0 +1 @@ +## 0.0.6 diff --git a/javascript/upgrades/codeql-pack.release.yml b/javascript/upgrades/codeql-pack.release.yml index bb45a1ab018..cf398ce02aa 100644 --- a/javascript/upgrades/codeql-pack.release.yml +++ b/javascript/upgrades/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.5 +lastReleaseVersion: 0.0.6 diff --git a/javascript/upgrades/qlpack.yml b/javascript/upgrades/qlpack.yml index 35cc49e190a..25df9685769 100644 --- a/javascript/upgrades/qlpack.yml +++ b/javascript/upgrades/qlpack.yml @@ -2,4 +2,4 @@ name: codeql/javascript-upgrades groups: javascript upgrades: . library: true -version: 0.0.5 +version: 0.0.6 diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index a555fec2cae..fe8deb57f81 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 0.0.5 + +### Minor Analysis Improvements + +* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. +* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. +* Extended the modeling of FastAPI such that custom subclasses of `fastapi.APIRouter` are recognized. +* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`. +* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks. +* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. + ## 0.0.4 ### Major Analysis Improvements diff --git a/python/ql/lib/change-notes/2021-11-15-model-wsgiref-simple-server-app.md b/python/ql/lib/change-notes/2021-11-15-model-wsgiref-simple-server-app.md deleted file mode 100644 index 1d08b550a9b..00000000000 --- a/python/ql/lib/change-notes/2021-11-15-model-wsgiref-simple-server-app.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. diff --git a/python/ql/lib/change-notes/2021-11-16-posixpath.md b/python/ql/lib/change-notes/2021-11-16-posixpath.md deleted file mode 100644 index 37f20269b56..00000000000 --- a/python/ql/lib/change-notes/2021-11-16-posixpath.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks. diff --git a/python/ql/lib/change-notes/2021-11-24-FastAPI-Custom-APIRouter-Subclass.md b/python/ql/lib/change-notes/2021-11-24-FastAPI-Custom-APIRouter-Subclass.md deleted file mode 100644 index 4a5a4ab600f..00000000000 --- a/python/ql/lib/change-notes/2021-11-24-FastAPI-Custom-APIRouter-Subclass.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Extended the modeling of FastAPI such that custom subclasses of `fastapi.APIRouter` are recognized. diff --git a/python/ql/lib/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md b/python/ql/lib/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md deleted file mode 100644 index fb3b4d095b6..00000000000 --- a/python/ql/lib/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`. diff --git a/python/ql/lib/change-notes/2021-11-26-os-file-access.md b/python/ql/lib/change-notes/2021-11-26-os-file-access.md deleted file mode 100644 index f9a2adb836d..00000000000 --- a/python/ql/lib/change-notes/2021-11-26-os-file-access.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. diff --git a/python/ql/lib/change-notes/2021-11-26-tempfile-file-access.md b/python/ql/lib/change-notes/2021-11-26-tempfile-file-access.md deleted file mode 100644 index 46862a16996..00000000000 --- a/python/ql/lib/change-notes/2021-11-26-tempfile-file-access.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. diff --git a/python/ql/lib/change-notes/released/0.0.5.md b/python/ql/lib/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..e68a6991246 --- /dev/null +++ b/python/ql/lib/change-notes/released/0.0.5.md @@ -0,0 +1,10 @@ +## 0.0.5 + +### Minor Analysis Improvements + +* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. +* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. +* Extended the modeling of FastAPI such that custom subclasses of `fastapi.APIRouter` are recognized. +* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`. +* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks. +* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index b55f847bcb6..ca4f7c8b23b 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 0.0.5-dev +version: 0.0.5 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 21fcb7c1ee4..35f7b59a781 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.0.5 + +### Minor Analysis Improvements + +* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. All of these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. The `suffix`, `prefix`, and `dir` arguments are all vulnerable to path-injection, and these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`, making them sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. + ## 0.0.4 ### Query Metadata Changes diff --git a/python/ql/src/change-notes/2021-11-15-model-wsgiref-simple-server-app.md b/python/ql/src/change-notes/2021-11-15-model-wsgiref-simple-server-app.md deleted file mode 100644 index 1d08b550a9b..00000000000 --- a/python/ql/src/change-notes/2021-11-15-model-wsgiref-simple-server-app.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. diff --git a/python/ql/src/change-notes/2021-11-16-posixpath.md b/python/ql/src/change-notes/2021-11-16-posixpath.md deleted file mode 100644 index c35dc4099a7..00000000000 --- a/python/ql/src/change-notes/2021-11-16-posixpath.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. diff --git a/python/ql/src/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md b/python/ql/src/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md deleted file mode 100644 index e320e2b3ba7..00000000000 --- a/python/ql/src/change-notes/2021-11-24-FastAPI-FileResponse-FileSystemAccess.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`, making them sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. diff --git a/python/ql/src/change-notes/2021-11-26-os-file-access.md b/python/ql/src/change-notes/2021-11-26-os-file-access.md deleted file mode 100644 index c55735e3a8d..00000000000 --- a/python/ql/src/change-notes/2021-11-26-os-file-access.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. All of these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. diff --git a/python/ql/src/change-notes/2021-11-26-tempfile-file-access.md b/python/ql/src/change-notes/2021-11-26-tempfile-file-access.md deleted file mode 100644 index 29a5b51e8a0..00000000000 --- a/python/ql/src/change-notes/2021-11-26-tempfile-file-access.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis -tags: [lgtm,codescanning] ---- -* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. The `suffix`, `prefix`, and `dir` arguments are all vulnerable to path-injection, and these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. diff --git a/python/ql/src/change-notes/released/0.0.5.md b/python/ql/src/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..0da6129f52e --- /dev/null +++ b/python/ql/src/change-notes/released/0.0.5.md @@ -0,0 +1,9 @@ +## 0.0.5 + +### Minor Analysis Improvements + +* Added modeling of many functions from the `os` module that uses file system paths, such as `os.stat`, `os.chdir`, `os.mkdir`, and so on. All of these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of the `tempfile` module for creating temporary files and directories, such as the functions `tempfile.NamedTemporaryFile` and `tempfile.TemporaryDirectory`. The `suffix`, `prefix`, and `dir` arguments are all vulnerable to path-injection, and these are new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Extended the modeling of FastAPI such that `fastapi.responses.FileResponse` are considered `FileSystemAccess`, making them sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of the `posixpath`, `ntpath`, and `genericpath` modules for path operations (although these are not supposed to be used), resulting in new sinks for the _Uncontrolled data used in path expression_ (`py/path-injection`) query. +* Added modeling of `wsgiref.simple_server` applications, leading to new remote flow sources. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index d7dad13d0cc..5001a802ad9 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 0.0.5-dev +version: 0.0.5 groups: python dependencies: codeql/python-all: "*" diff --git a/python/upgrades/CHANGELOG.md b/python/upgrades/CHANGELOG.md index 3268fefb272..05dbc9d5f4e 100644 --- a/python/upgrades/CHANGELOG.md +++ b/python/upgrades/CHANGELOG.md @@ -1 +1,3 @@ +## 0.0.5 + ## 0.0.4 diff --git a/python/upgrades/change-notes/released/0.0.5.md b/python/upgrades/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/python/upgrades/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/python/upgrades/codeql-pack.release.yml b/python/upgrades/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/python/upgrades/codeql-pack.release.yml +++ b/python/upgrades/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/python/upgrades/qlpack.yml b/python/upgrades/qlpack.yml index 9053f986dcf..052a69ae22c 100644 --- a/python/upgrades/qlpack.yml +++ b/python/upgrades/qlpack.yml @@ -2,4 +2,4 @@ name: codeql/python-upgrades groups: python upgrades: . library: true -version: 0.0.5-dev +version: 0.0.5 diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 3268fefb272..1c670691d2b 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1 +1,7 @@ +## 0.0.5 + +### New Features + +* A new library, `Customizations.qll`, has been added, which allows for global customizations that affect all queries. + ## 0.0.4 diff --git a/ruby/ql/lib/change-notes/2021-12-07-customizations.md b/ruby/ql/lib/change-notes/released/0.0.5.md similarity index 69% rename from ruby/ql/lib/change-notes/2021-12-07-customizations.md rename to ruby/ql/lib/change-notes/released/0.0.5.md index 94f2b27230c..bfa8799eac6 100644 --- a/ruby/ql/lib/change-notes/2021-12-07-customizations.md +++ b/ruby/ql/lib/change-notes/released/0.0.5.md @@ -1,5 +1,5 @@ ---- -category: feature -tags: [lgtm,codescanning] ---- +## 0.0.5 + +### New Features + * A new library, `Customizations.qll`, has been added, which allows for global customizations that affect all queries. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 463960b41c3..efa35ab6a5e 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 0.0.5-dev +version: 0.0.5 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index e406cd11ae8..6946f97e5a9 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,5 @@ +## 0.0.5 + ## 0.0.4 ### New Queries diff --git a/ruby/ql/src/change-notes/released/0.0.5.md b/ruby/ql/src/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..259776640e3 --- /dev/null +++ b/ruby/ql/src/change-notes/released/0.0.5.md @@ -0,0 +1 @@ +## 0.0.5 diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index ecb9f446bba..65946fd8085 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 0.0.5-dev +version: 0.0.5 groups: ruby suites: codeql-suites defaultSuiteFile: codeql-suites/ruby-code-scanning.qls