Merge branch 'main' of https://github.com/github/codeql into post-release-prep/codeql-cli-2.25.1

2026-04-13 11:04:07 +02:00 · 2026-03-30 10:51:12 +02:00
parent ce6e6d5db3 898d12b0be
commit 59eec7ffa2
765 changed files with 13826 additions and 27987 deletions
--- a/python/ql/src/change-notes/2026-03-13-adjust-xss-and-log-injection-severity.md
+++ b/python/ql/src/change-notes/2026-03-13-adjust-xss-and-log-injection-severity.md
@@ -0,0 +1,5 @@
+---
+category: queryMetadata
+---
+* The `@security-severity` metadata of `py/log-injection` has been reduced from 7.8 (high) to 6.1 (medium).
+* The `@security-severity` metadata of `py/jinja2/autoescape-false` and `py/reflective-xss` has been increased from 6.1 (medium) to 7.8 (high).
--- a/python/ql/src/change-notes/2026-03-13-port-simple-points-to-queries.md
+++ b/python/ql/src/change-notes/2026-03-13-port-simple-points-to-queries.md
@@ -0,0 +1,5 @@
+---
+category: majorAnalysis
+---
+
+- Several quality queries have been ported away from using the legacy points-to library. This may lead to changes in alerts.