diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 3de5d186721..ffe1cba8281 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.20 + +No user-facing changes. + ## 0.4.19 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.20.md b/actions/ql/lib/change-notes/released/0.4.20.md new file mode 100644 index 00000000000..874725a8c2d --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.20.md @@ -0,0 +1,3 @@ +## 0.4.20 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index abf63707906..380b2d09423 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.19 +lastReleaseVersion: 0.4.20 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 6423894239d..3217afc182b 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.20-dev +version: 0.4.20 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 4592fbb66da..c7253227b7c 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.6.12 + +No user-facing changes. + ## 0.6.11 No user-facing changes. diff --git a/actions/ql/src/change-notes/released/0.6.12.md b/actions/ql/src/change-notes/released/0.6.12.md new file mode 100644 index 00000000000..da7e7709ef7 --- /dev/null +++ b/actions/ql/src/change-notes/released/0.6.12.md @@ -0,0 +1,3 @@ +## 0.6.12 + +No user-facing changes. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index b73e74898d0..28c22ccab7c 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.11 +lastReleaseVersion: 0.6.12 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 553e579ceac..7c14b3a9172 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.12-dev +version: 0.6.12 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 093b31078e0..390e3d4653b 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 6.0.1 + +### Bug Fixes + +* Improve performance of the range analysis in cases where it would otherwise take an exorbitant amount of time. + ## 6.0.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/2025-10-16-range-analysis-performance.md b/cpp/ql/lib/change-notes/2025-10-16-range-analysis-performance.md deleted file mode 100644 index f24ab4b87fe..00000000000 --- a/cpp/ql/lib/change-notes/2025-10-16-range-analysis-performance.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Improve performance of the range analysis in cases where it would otherwise take an exorbitant amount of time. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/6.0.1.md b/cpp/ql/lib/change-notes/released/6.0.1.md new file mode 100644 index 00000000000..7e8cfdb2562 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/6.0.1.md @@ -0,0 +1,5 @@ +## 6.0.1 + +### Bug Fixes + +* Improve performance of the range analysis in cases where it would otherwise take an exorbitant amount of time. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index f8c4fa43ccb..d1f3c68c812 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 6.0.0 +lastReleaseVersion: 6.0.1 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 8712e400897..9ce21e2a8da 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 6.0.1-dev +version: 6.0.1 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 4b876310708..880cab8a58d 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.5.3 + +No user-facing changes. + ## 1.5.2 No user-facing changes. diff --git a/cpp/ql/src/change-notes/released/1.5.3.md b/cpp/ql/src/change-notes/released/1.5.3.md new file mode 100644 index 00000000000..2e9bcb5e663 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.5.3.md @@ -0,0 +1,3 @@ +## 1.5.3 + +No user-facing changes. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 7eb901bae56..232224b0e26 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.2 +lastReleaseVersion: 1.5.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 71aa95bed9e..178947f2549 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.5.3-dev +version: 1.5.3 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 7b4887608d9..a25c349e35e 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.51 + +No user-facing changes. + ## 1.7.50 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.51.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.51.md new file mode 100644 index 00000000000..ec2d4e2bdcc --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.51.md @@ -0,0 +1,3 @@ +## 1.7.51 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index dab079d6644..26376c0cebb 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.50 +lastReleaseVersion: 1.7.51 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index a569cf6a5c4..649b7e60de7 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.51-dev +version: 1.7.51 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 7b4887608d9..a25c349e35e 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.51 + +No user-facing changes. + ## 1.7.50 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.51.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.51.md new file mode 100644 index 00000000000..ec2d4e2bdcc --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.51.md @@ -0,0 +1,3 @@ +## 1.7.51 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index dab079d6644..26376c0cebb 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.50 +lastReleaseVersion: 1.7.51 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index d91f21b0e90..b3977a0ef72 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.51-dev +version: 1.7.51 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index a722d924f3b..20b1c03d722 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 5.3.0 + +### Deprecated APIs + +* The class `AbstractValue` in the `Guards` library has been deprecated and replaced with the class `GuardValue`. + +### Major Analysis Improvements + +* The representation of the C# control-flow graph has been significantly changed. This has minor effects on a wide range of queries including both minor improvements and minor regressions. For example, improved precision has been observed for `cs/inefficient-containskey` and `cs/stringbuilder-creation-in-loop`. Two queries stand out as being significantly affected with great improvements: `cs/dereferenced-value-may-be-null` has been completely rewritten which removes a very significant number of false positives. Furthermore, `cs/constant-condition` has been updated to report many new results - these new results are primarily expected to be true positives, but a few new false positives are expected as well. As part of these changes, `cs/dereferenced-value-may-be-null` has been changed from a `path-problem` query to a `problem` query, so paths are no longer reported for this query. + +### Minor Analysis Improvements + +* Added tracer support for macOS and Linux when the .NET CLI (`dotnet`) directly invokes the C# compiler (`csc`). This enhancement provides basic tracing and extraction capabilities for .NET 10 RC2 on these platforms. +* The extraction of location information for source code entities has been updated to use star IDs (`*` IDs). This change should be transparent to end-users but may improve extraction performance in some cases by reducing TRAP file size and eliminating overhead from location de-duplication. + ## 5.2.6 ### Minor Analysis Improvements @@ -128,7 +143,7 @@ No user-facing changes. * Added `remote` flow source models for properties of Blazor components annotated with any of the following attributes from `Microsoft.AspNetCore.Components`: - `[SupplyParameterFromForm]` - `[SupplyParameterFromQuery]` -* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. +* Added the constructor and explicit cast operator of `Microsoft.AspNetCore.Components.MarkupString` as an `html-injection` sink. This will help catch cross-site scripting resulting from using `MarkupString`. * Added flow summaries for the `Microsoft.AspNetCore.Mvc.Controller::View` method. * The data flow library has been updated to track types in a slightly different way: The type of the tainted data (which may be stored into fields, etc.) is tracked more precisely, while the types of intermediate containers for nested contents is tracked less precisely. This may have a slight effect on false positives for complex flow paths. * The C# extractor now supports *basic* extraction of .NET 9 projects. There might be limited support for extraction of code using the new C# 13 language features. @@ -148,7 +163,7 @@ No user-facing changes. - `System.Web.HttpUtility::ParseQueryString` - `Microsoft.AspNetCore.WebUtilities.QueryHelpers::ParseQuery` - `Microsoft.AspNetCore.WebUtilities.QueryHelpers::ParseNullableQuery` -* Added `js-interop` sinks for the `InvokeAsync` and `InvokeVoidAsync` methods of `Microsoft.JSInterop.IJSRuntime`, which can run arbitrary JavaScript. +* Added `js-interop` sinks for the `InvokeAsync` and `InvokeVoidAsync` methods of `Microsoft.JSInterop.IJSRuntime`, which can run arbitrary JavaScript. ## 3.1.1 @@ -186,8 +201,8 @@ No user-facing changes. ### Breaking Changes -* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. -* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. ### Minor Analysis Improvements @@ -436,7 +451,7 @@ No user-facing changes. ### New Features -* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`. +* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`. Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed. ### Minor Analysis Improvements @@ -571,7 +586,7 @@ No user-facing changes. * Attributes on methods in CIL are now extracted (Bugfix). * Support for `static virtual` and `static abstract` interface members. -* Support for *operators* in interface definitions. +* Support for *operators* in interface definitions. * C# 11: Added support for the unsigned right shift `>>>` and unsigned right shift assignment `>>>=` operators. * Query id's have been aligned such that they are prefixed with `cs` instead of `csharp`. @@ -611,13 +626,13 @@ No user-facing changes. ### Minor Analysis Improvements * `DateTime` expressions are now considered simple type sanitizers. This affects a wide range of security queries. -* ASP.NET Core controller definition has been made more precise. The amount of introduced taint sources or eliminated false positives should be low though, since the most common pattern is to derive all user defined ASP.NET Core controllers from the standard Controller class, which is not affected. +* ASP.NET Core controller definition has been made more precise. The amount of introduced taint sources or eliminated false positives should be low though, since the most common pattern is to derive all user defined ASP.NET Core controllers from the standard Controller class, which is not affected. ## 0.4.0 ### Deprecated APIs -* Some classes/modules with upper-case acronyms in their name have been renamed to follow our style-guide. +* Some classes/modules with upper-case acronyms in their name have been renamed to follow our style-guide. The old name still exists as a deprecated alias. ### Bug Fixes @@ -630,7 +645,7 @@ No user-facing changes. ### Deprecated APIs -* Many classes/predicates/modules with upper-case acronyms in their name have been renamed to follow our style-guide. +* Many classes/predicates/modules with upper-case acronyms in their name have been renamed to follow our style-guide. The old name still exists as a deprecated alias. ### Minor Analysis Improvements @@ -677,7 +692,7 @@ No user-facing changes. ### Deprecated APIs -* Many classes/predicates/modules that had upper-case acronyms have been renamed to follow our style-guide. +* Many classes/predicates/modules that had upper-case acronyms have been renamed to follow our style-guide. The old name still exists as a deprecated alias. ### New Features diff --git a/csharp/ql/lib/change-notes/2025-10-10-starid-locations.md b/csharp/ql/lib/change-notes/2025-10-10-starid-locations.md deleted file mode 100644 index a258abcf3ab..00000000000 --- a/csharp/ql/lib/change-notes/2025-10-10-starid-locations.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The extraction of location information for source code entities has been updated to use star IDs (`*` IDs). This change should be transparent to end-users but may improve extraction performance in some cases by reducing TRAP file size and eliminating overhead from location de-duplication. diff --git a/csharp/ql/lib/change-notes/2025-10-21-dotnet-rc2-tracing.md b/csharp/ql/lib/change-notes/2025-10-21-dotnet-rc2-tracing.md deleted file mode 100644 index b54f1e7d1b5..00000000000 --- a/csharp/ql/lib/change-notes/2025-10-21-dotnet-rc2-tracing.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added tracer support for macOS and Linux when the .NET CLI (`dotnet`) directly invokes the C# compiler (`csc`). This enhancement provides basic tracing and extraction capabilities for .NET 10 RC2 on these platforms. diff --git a/csharp/ql/lib/change-notes/2025-10-31-deprecate-abstractvalue.md b/csharp/ql/lib/change-notes/2025-10-31-deprecate-abstractvalue.md deleted file mode 100644 index 65bb9032b12..00000000000 --- a/csharp/ql/lib/change-notes/2025-10-31-deprecate-abstractvalue.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The class `AbstractValue` in the `Guards` library has been deprecated and replaced with the class `GuardValue`. diff --git a/csharp/ql/lib/change-notes/2025-10-03-nullness.md b/csharp/ql/lib/change-notes/released/5.3.0.md similarity index 55% rename from csharp/ql/lib/change-notes/2025-10-03-nullness.md rename to csharp/ql/lib/change-notes/released/5.3.0.md index 0d44c1e98c1..144f8bf2633 100644 --- a/csharp/ql/lib/change-notes/2025-10-03-nullness.md +++ b/csharp/ql/lib/change-notes/released/5.3.0.md @@ -1,4 +1,14 @@ ---- -category: majorAnalysis ---- +## 5.3.0 + +### Deprecated APIs + +* The class `AbstractValue` in the `Guards` library has been deprecated and replaced with the class `GuardValue`. + +### Major Analysis Improvements + * The representation of the C# control-flow graph has been significantly changed. This has minor effects on a wide range of queries including both minor improvements and minor regressions, for example, improved precision has been observed for `cs/inefficient-containskey` and `cs/stringbuilder-creation-in-loop`. Two queries stand out as being significantly affected with great improvements: `cs/dereferenced-value-may-be-null` has been completely rewritten which removes a very significant number of false positives. Furthermore, `cs/constant-condition` has been updated to report many new results - these new results are primarily expected to be true positives, but a few new false positives are expected as well. As part of these changes, `cs/dereferenced-value-may-be-null` has been changed from a `path-problem` query to a `problem` query, so paths are no longer reported for this query. + +### Minor Analysis Improvements + +* Added tracer support for macOS and Linux when the .NET CLI (`dotnet`) directly invokes the C# compiler (`csc`). This enhancement provides basic tracing and extraction capabilities for .NET 10 RC2 on these platforms. +* The extraction of location information for source code entities has been updated to use star IDs (`*` IDs). This change should be transparent to end-users but may improve extraction performance in some cases by reducing TRAP file size and eliminating overhead from location de-duplication. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 1ac2b5309f2..b0a1c83e5bc 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.2.6 +lastReleaseVersion: 5.3.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 92a08088be7..7d6d2e1ed4e 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.2.7-dev +version: 5.3.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 40ea9e3693a..8993b453543 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.4.3 + +### Minor Analysis Improvements + +* The `cs/web/missing-x-frame-options` query now correctly handles configuration nested in root `` elements. + ## 1.4.2 No user-facing changes. @@ -164,7 +170,7 @@ No user-facing changes. ### Minor Analysis Improvements -* C#: The method `string.ReplaceLineEndings(string)` is now considered a sanitizer for the `cs/log-forging` query. +* C#: The method `string.ReplaceLineEndings(string)` is now considered a sanitizer for the `cs/log-forging` query. ## 1.0.10 @@ -278,7 +284,7 @@ No user-facing changes. ### Minor Analysis Improvements -* Fixed a Log forging false positive when using `String.Replace` to sanitize the input. +* Fixed a Log forging false positive when using `String.Replace` to sanitize the input. * Fixed a URL redirection from remote source false positive when guarding a redirect with `HttpRequestBase.IsUrlLocalToHost()` ## 0.8.5 diff --git a/csharp/ql/src/change-notes/2025-10-17-location-in-web-config.md b/csharp/ql/src/change-notes/released/1.4.3.md similarity index 73% rename from csharp/ql/src/change-notes/2025-10-17-location-in-web-config.md rename to csharp/ql/src/change-notes/released/1.4.3.md index 5df97b9d28a..1a022f2462d 100644 --- a/csharp/ql/src/change-notes/2025-10-17-location-in-web-config.md +++ b/csharp/ql/src/change-notes/released/1.4.3.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.4.3 + +### Minor Analysis Improvements + * the `cs/web/missing-x-frame-options` query now correctly handles configuration nested in root `` elements. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index a76cacdf799..08f88b689fb 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.2 +lastReleaseVersion: 1.4.3 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index a9776d058b9..4305c1d899e 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.4.3-dev +version: 1.4.3 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 102463df544..870695d684c 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.34.md b/go/ql/consistency-queries/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index e44457e4570..f8a661692dc 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.34-dev +version: 1.0.34 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 71d6bfdc60f..e2d2a71f6bd 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.0.1 + +No user-facing changes. + ## 5.0.0 ### Breaking Changes diff --git a/go/ql/lib/change-notes/released/5.0.1.md b/go/ql/lib/change-notes/released/5.0.1.md new file mode 100644 index 00000000000..b99e1ae0268 --- /dev/null +++ b/go/ql/lib/change-notes/released/5.0.1.md @@ -0,0 +1,3 @@ +## 5.0.1 + +No user-facing changes. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index c9e54136ca5..ae7df5e18b7 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.0 +lastReleaseVersion: 5.0.1 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index bf2586d9089..fba4fc5f83e 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 5.0.1-dev +version: 5.0.1 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index eb370a8cddd..786164b5fe4 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.8 + +No user-facing changes. + ## 1.4.7 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.4.8.md b/go/ql/src/change-notes/released/1.4.8.md new file mode 100644 index 00000000000..06976d05e75 --- /dev/null +++ b/go/ql/src/change-notes/released/1.4.8.md @@ -0,0 +1,3 @@ +## 1.4.8 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 163362bd632..16e6425ae7e 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.7 +lastReleaseVersion: 1.4.8 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 3133d392d89..4a68e375703 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.4.8-dev +version: 1.4.8 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 5d6fcbde336..e261dbee59e 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 7.7.3 + +No user-facing changes. + ## 7.7.2 ### Minor Analysis Improvements diff --git a/java/ql/lib/change-notes/released/7.7.3.md b/java/ql/lib/change-notes/released/7.7.3.md new file mode 100644 index 00000000000..d03e3181a52 --- /dev/null +++ b/java/ql/lib/change-notes/released/7.7.3.md @@ -0,0 +1,3 @@ +## 7.7.3 + +No user-facing changes. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 25c09b25d21..6856106e771 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.7.2 +lastReleaseVersion: 7.7.3 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 7f8860bc632..b1c5cbb54ed 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.7.3-dev +version: 7.7.3 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 06133dffeba..ed02fdc5bb2 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,16 @@ +## 1.9.0 + +### New Queries + +* The `java/sensitive-cookie-not-httponly` query has been promoted from experimental to the main query pack. +* Added a new query, `java/escaping`, to detect values escaping from classes marked as `@ThreadSafe`. +* Added a new query, `java/not-threadsafe`, to detect data races in classes marked as `@ThreadSafe`. +* Added a new query, `java/safe-publication`, to detect unsafe publication in classes marked as `@ThreadSafe`. + +### Minor Analysis Improvements + +* Calls to `String.matches` are now treated as sanitizers for the `java/ssrf` query. + ## 1.8.2 No user-facing changes. diff --git a/java/ql/src/change-notes/2025-06-22-query-escaping.md b/java/ql/src/change-notes/2025-06-22-query-escaping.md deleted file mode 100644 index f33de2e8556..00000000000 --- a/java/ql/src/change-notes/2025-06-22-query-escaping.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `java/escaping`, to detect values escaping from classes marked as `@ThreadSafe`. \ No newline at end of file diff --git a/java/ql/src/change-notes/2025-06-22-query-not-thread-safe.md b/java/ql/src/change-notes/2025-06-22-query-not-thread-safe.md deleted file mode 100644 index d5dd0744609..00000000000 --- a/java/ql/src/change-notes/2025-06-22-query-not-thread-safe.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `java/not-threadsafe`, to detect data races in classes marked as `@ThreadSafe`. \ No newline at end of file diff --git a/java/ql/src/change-notes/2025-06-22-query-safe-publication.md b/java/ql/src/change-notes/2025-06-22-query-safe-publication.md deleted file mode 100644 index 23b64c970b3..00000000000 --- a/java/ql/src/change-notes/2025-06-22-query-safe-publication.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `java/safe-publication`, to detect unsafe publication in classes marked as `@ThreadSafe`. \ No newline at end of file diff --git a/java/ql/src/change-notes/2025-10-02-http-only-cookie-promote.md b/java/ql/src/change-notes/2025-10-02-http-only-cookie-promote.md deleted file mode 100644 index ee9fe7527bd..00000000000 --- a/java/ql/src/change-notes/2025-10-02-http-only-cookie-promote.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* The `java/sensitive-cookie-not-httponly` query has been promoted from experimental to the main query pack. \ No newline at end of file diff --git a/java/ql/src/change-notes/2025-10-24-request-forgery-matches-sanitizer.md b/java/ql/src/change-notes/2025-10-24-request-forgery-matches-sanitizer.md deleted file mode 100644 index a38c43dd730..00000000000 --- a/java/ql/src/change-notes/2025-10-24-request-forgery-matches-sanitizer.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Calls to `String.matches` are now treated as sanitizers for the `java/ssrf` query. \ No newline at end of file diff --git a/java/ql/src/change-notes/released/1.9.0.md b/java/ql/src/change-notes/released/1.9.0.md new file mode 100644 index 00000000000..82977276fe2 --- /dev/null +++ b/java/ql/src/change-notes/released/1.9.0.md @@ -0,0 +1,12 @@ +## 1.9.0 + +### New Queries + +* The `java/sensitive-cookie-not-httponly` query has been promoted from experimental to the main query pack. +* Added a new query, `java/escaping`, to detect values escaping from classes marked as `@ThreadSafe`. +* Added a new query, `java/not-threadsafe`, to detect data races in classes marked as `@ThreadSafe`. +* Added a new query, `java/safe-publication`, to detect unsafe publication in classes marked as `@ThreadSafe`. + +### Minor Analysis Improvements + +* Calls to `String.matches` are now treated as sanitizers for the `java/ssrf` query. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 559af8348bb..df17dc3a366 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.8.2 +lastReleaseVersion: 1.9.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index faf088b7a4a..198798cf67d 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.8.3-dev +version: 1.9.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 1e874227c37..9f27fdae99c 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.6.14 + +No user-facing changes. + ## 2.6.13 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/released/2.6.14.md b/javascript/ql/lib/change-notes/released/2.6.14.md new file mode 100644 index 00000000000..49a00b95efc --- /dev/null +++ b/javascript/ql/lib/change-notes/released/2.6.14.md @@ -0,0 +1,3 @@ +## 2.6.14 + +No user-facing changes. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 9240f755da8..022aeff4e02 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.13 +lastReleaseVersion: 2.6.14 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index d8d53ef1c7e..46e5661f216 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.14-dev +version: 2.6.14 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index f03b3a66e4d..4a453506818 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.1.3 + +No user-facing changes. + ## 2.1.2 No user-facing changes. diff --git a/javascript/ql/src/change-notes/released/2.1.3.md b/javascript/ql/src/change-notes/released/2.1.3.md new file mode 100644 index 00000000000..a1338012fcd --- /dev/null +++ b/javascript/ql/src/change-notes/released/2.1.3.md @@ -0,0 +1,3 @@ +## 2.1.3 + +No user-facing changes. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 1a4e53e8772..345fb0c73a4 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.1.2 +lastReleaseVersion: 2.1.3 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index df854af7e2b..8a50977ba71 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 2.1.3-dev +version: 2.1.3 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index a6f9fcd2377..203d289a673 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.34.md b/misc/suite-helpers/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index daf9a60662d..5aad5f4b49d 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.34-dev +version: 1.0.34 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index cb18c48a051..df8a66ca0e6 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 4.1.0 + +### New Features + +* Initial support for incremental Python databases via `codeql database create --overlay-base`/`--overlay-changes`. + ## 4.0.17 ### Bug Fixes diff --git a/python/ql/lib/change-notes/2025-10-02-python-overlay-compilation-plus-extractor.md b/python/ql/lib/change-notes/released/4.1.0.md similarity index 81% rename from python/ql/lib/change-notes/2025-10-02-python-overlay-compilation-plus-extractor.md rename to python/ql/lib/change-notes/released/4.1.0.md index 5eb698354c1..51c7ea24f1b 100644 --- a/python/ql/lib/change-notes/2025-10-02-python-overlay-compilation-plus-extractor.md +++ b/python/ql/lib/change-notes/released/4.1.0.md @@ -1,5 +1,5 @@ ---- -category: feature ---- +## 4.1.0 + +### New Features * Initial support for incremental Python databases via `codeql database create --overlay-base`/`--overlay-changes`. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index d1339a1f762..d5b1bf88d10 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.17 +lastReleaseVersion: 4.1.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 34d03dc0fad..88b85332fba 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.18-dev +version: 4.1.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index aef1a87136d..65fd05e047b 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.6.8 + +### Minor Analysis Improvements + +* The `py/insecure-cookie` query has been split into multiple queries; with `py/insecure-cookie` checking for cases in which `Secure` flag is not set, `py/client-exposed-cookie` checking for cases in which the `HttpOnly` flag is not set, and the `py/samesite-none` query checking for cases in which the `SameSite` attribute is set to `None`. These queries also now only alert for cases in which the cookie is detected to contain sensitive data. + ## 1.6.7 No user-facing changes. diff --git a/python/ql/src/change-notes/2025-09-19-insecure-cookie.md b/python/ql/src/change-notes/released/1.6.8.md similarity index 78% rename from python/ql/src/change-notes/2025-09-19-insecure-cookie.md rename to python/ql/src/change-notes/released/1.6.8.md index 51c6dc6ce30..d1b510e542a 100644 --- a/python/ql/src/change-notes/2025-09-19-insecure-cookie.md +++ b/python/ql/src/change-notes/released/1.6.8.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* The `py/insecure-cookie` query has been split into multiple queries; with `py/insecure-cookie` checking for cases in which `Secure` flag is not set, `py/client-exposed-cookie` checking for cases in which the `HttpOnly` flag is not set, and the `py/samesite-none` query checking for cases in which the `SameSite` attribute is set to `None`. These queries also now only alert for cases in which the cookie is detected to contain sensitive data. \ No newline at end of file +## 1.6.8 + +### Minor Analysis Improvements + +* The `py/insecure-cookie` query has been split into multiple queries; with `py/insecure-cookie` checking for cases in which `Secure` flag is not set, `py/client-exposed-cookie` checking for cases in which the `HttpOnly` flag is not set, and the `py/samesite-none` query checking for cases in which the `SameSite` attribute is set to `None`. These queries also now only alert for cases in which the cookie is detected to contain sensitive data. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 0b49adeac7d..fbc11aa62b7 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.7 +lastReleaseVersion: 1.6.8 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index d01829a9de2..dd29d5c31a2 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.6.8-dev +version: 1.6.8 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 32e1dd3538b..a99e4017789 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.1.2 + +No user-facing changes. + ## 5.1.1 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/released/5.1.2.md b/ruby/ql/lib/change-notes/released/5.1.2.md new file mode 100644 index 00000000000..86e21502e26 --- /dev/null +++ b/ruby/ql/lib/change-notes/released/5.1.2.md @@ -0,0 +1,3 @@ +## 5.1.2 + +No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index dcb83eca6a3..d21c12fbe7f 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.1.1 +lastReleaseVersion: 5.1.2 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 77d07910f48..eec414da0f0 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 5.1.2-dev +version: 5.1.2 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 29a0f89236d..282fd284635 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.8 + +No user-facing changes. + ## 1.4.7 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.4.8.md b/ruby/ql/src/change-notes/released/1.4.8.md new file mode 100644 index 00000000000..06976d05e75 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.4.8.md @@ -0,0 +1,3 @@ +## 1.4.8 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 163362bd632..16e6425ae7e 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.7 +lastReleaseVersion: 1.4.8 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index b35ffb5c411..aaac6c00522 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.4.8-dev +version: 1.4.8 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 228d9c21637..7e8575b03be 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 0.1.19 + +### Major Analysis Improvements + +* Resolution of calls to functions has been improved in a number of ways, to make it more aligned with the behavior of the Rust compiler. This may impact queries that rely on call resolution, such as data flow queries. +* Added basic models for the `actix-web` web framework. + +### Minor Analysis Improvements + +* Added `ExtractedFile::hasSemantics` and `ExtractedFile::isSkippedByCompilation` predicates. +* Generalized some existing models to improve data flow. +* Added models for the `mysql` and `mysql_async` libraries. + ## 0.1.18 ### New Features diff --git a/rust/ql/lib/change-notes/2025-09-29-actix-web-model.md b/rust/ql/lib/change-notes/2025-09-29-actix-web-model.md deleted file mode 100644 index 7bf9ce8a7d5..00000000000 --- a/rust/ql/lib/change-notes/2025-09-29-actix-web-model.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Added basic models for the `actix-web` web framework. \ No newline at end of file diff --git a/rust/ql/lib/change-notes/2025-10-06-call-resolution.md b/rust/ql/lib/change-notes/2025-10-06-call-resolution.md deleted file mode 100644 index ffaf449bb8a..00000000000 --- a/rust/ql/lib/change-notes/2025-10-06-call-resolution.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Resolution of calls to functions has been improved in a number of ways, to make it more aligned with the behavior of the Rust compiler. This may impact queries that rely on call resolution, such as data flow queries. \ No newline at end of file diff --git a/rust/ql/lib/change-notes/2025-10-10-mysql.md b/rust/ql/lib/change-notes/2025-10-10-mysql.md deleted file mode 100644 index 037f813a856..00000000000 --- a/rust/ql/lib/change-notes/2025-10-10-mysql.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added models for the `mysql` and `mysql_async` libraries. diff --git a/rust/ql/lib/change-notes/2025-10-15-models.md b/rust/ql/lib/change-notes/2025-10-15-models.md deleted file mode 100644 index fab2cab639a..00000000000 --- a/rust/ql/lib/change-notes/2025-10-15-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Generalized some existing models to improve data flow. diff --git a/rust/ql/lib/change-notes/2025-10-16-new-extracted-file-methods.md b/rust/ql/lib/change-notes/2025-10-16-new-extracted-file-methods.md deleted file mode 100644 index 63fbbe38899..00000000000 --- a/rust/ql/lib/change-notes/2025-10-16-new-extracted-file-methods.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added `ExtractedFile::hasSemantics` and `ExtractedFile::isSkippedByCompilation` predicates. diff --git a/rust/ql/lib/change-notes/released/0.1.19.md b/rust/ql/lib/change-notes/released/0.1.19.md new file mode 100644 index 00000000000..b75ad4257c5 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.19.md @@ -0,0 +1,12 @@ +## 0.1.19 + +### Major Analysis Improvements + +* Resolution of calls to functions has been improved in a number of ways, to make it more aligned with the behavior of the Rust compiler. This may impact queries that rely on call resolution, such as data flow queries. +* Added basic models for the `actix-web` web framework. + +### Minor Analysis Improvements + +* Added `ExtractedFile::hasSemantics` and `ExtractedFile::isSkippedByCompilation` predicates. +* Generalized some existing models to improve data flow. +* Added models for the `mysql` and `mysql_async` libraries. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index a9893ce82c4..de6e4c49068 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.18 +lastReleaseVersion: 0.1.19 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index b5dea62349a..b46b494c421 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.19-dev +version: 0.1.19 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index df1c4e49856..2b0c54fc057 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.1.19 + +### Minor Analysis Improvements + +* The "Low Rust analysis quality" query (`rust/diagnostic/database-quality`), used by the tool status page, has been extended with a measure of successful type inference. + ## 0.1.18 ### New Queries diff --git a/rust/ql/src/change-notes/2025-10-21-database-quality-diagnostic.md b/rust/ql/src/change-notes/released/0.1.19.md similarity index 79% rename from rust/ql/src/change-notes/2025-10-21-database-quality-diagnostic.md rename to rust/ql/src/change-notes/released/0.1.19.md index 322bdb7c5ab..67ccce578c8 100644 --- a/rust/ql/src/change-notes/2025-10-21-database-quality-diagnostic.md +++ b/rust/ql/src/change-notes/released/0.1.19.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.1.19 + +### Minor Analysis Improvements + * The "Low Rust analysis quality" query (`rust/diagnostic/database-quality`), used by the tool status page, has been extended with a measure of successful type inference. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index a9893ce82c4..de6e4c49068 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.18 +lastReleaseVersion: 0.1.19 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index e72c44676d5..da14aa08a02 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.19-dev +version: 0.1.19 groups: - rust - queries diff --git a/shared/concepts/CHANGELOG.md b/shared/concepts/CHANGELOG.md index f7d8dfad907..4d0898b90e4 100644 --- a/shared/concepts/CHANGELOG.md +++ b/shared/concepts/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.8 + +No user-facing changes. + ## 0.0.7 No user-facing changes. diff --git a/shared/concepts/change-notes/released/0.0.8.md b/shared/concepts/change-notes/released/0.0.8.md new file mode 100644 index 00000000000..6af2d954c09 --- /dev/null +++ b/shared/concepts/change-notes/released/0.0.8.md @@ -0,0 +1,3 @@ +## 0.0.8 + +No user-facing changes. diff --git a/shared/concepts/codeql-pack.release.yml b/shared/concepts/codeql-pack.release.yml index a2a5484910b..58fdc6b45de 100644 --- a/shared/concepts/codeql-pack.release.yml +++ b/shared/concepts/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.7 +lastReleaseVersion: 0.0.8 diff --git a/shared/concepts/qlpack.yml b/shared/concepts/qlpack.yml index c765cb33734..a9fd8ce78e7 100644 --- a/shared/concepts/qlpack.yml +++ b/shared/concepts/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/concepts -version: 0.0.8-dev +version: 0.0.8 groups: shared library: true dependencies: diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index cb14761bb38..c5b9b9d696a 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.18 + +No user-facing changes. + ## 2.0.17 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.18.md b/shared/controlflow/change-notes/released/2.0.18.md new file mode 100644 index 00000000000..11e398dac31 --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.18.md @@ -0,0 +1,3 @@ +## 2.0.18 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index a5f7c15c020..16342205c73 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.17 +lastReleaseVersion: 2.0.18 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index c4f39f17484..565ff51c42b 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.18-dev +version: 2.0.18 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 99ee484c731..f963117ea88 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.18 + +No user-facing changes. + ## 2.0.17 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.18.md b/shared/dataflow/change-notes/released/2.0.18.md new file mode 100644 index 00000000000..11e398dac31 --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.18.md @@ -0,0 +1,3 @@ +## 2.0.18 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index a5f7c15c020..16342205c73 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.17 +lastReleaseVersion: 2.0.18 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index afe273133cb..75920f8f5a0 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.18-dev +version: 2.0.18 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index eda9cf4ddb2..b0b444f8c41 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.34.md b/shared/mad/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index a132a76336b..290eedf639c 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index d9dd6b6f2e2..83a42fb0551 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.12 + +No user-facing changes. + ## 0.0.11 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.12.md b/shared/quantum/change-notes/released/0.0.12.md new file mode 100644 index 00000000000..0e206033bc4 --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.12.md @@ -0,0 +1,3 @@ +## 0.0.12 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index e679dc42092..997fb8da83c 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.11 +lastReleaseVersion: 0.0.12 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 201689efa51..8aaa96a8630 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.12-dev +version: 0.0.12 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 7a0776cf53c..640d26270e1 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.34.md b/shared/rangeanalysis/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 90efb8ebbf3..2769814d3e3 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 2507f237ec0..1e3fb3c306c 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.34.md b/shared/regex/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 2019d2dcb2e..f06235bc4d3 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index cb33a2dd613..2d8087cd96c 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.10 + +No user-facing changes. + ## 2.0.9 No user-facing changes. diff --git a/shared/ssa/change-notes/released/2.0.10.md b/shared/ssa/change-notes/released/2.0.10.md new file mode 100644 index 00000000000..37310f107aa --- /dev/null +++ b/shared/ssa/change-notes/released/2.0.10.md @@ -0,0 +1,3 @@ +## 2.0.10 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index ce305265e33..96ea0220a69 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.9 +lastReleaseVersion: 2.0.10 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index f1aa89319bd..dcf19c605a1 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 2.0.10-dev +version: 2.0.10 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 102463df544..870695d684c 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.34.md b/shared/threat-models/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 69963387a05..48d215a1d9a 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.34-dev +version: 1.0.34 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index e982f144f9c..23fd78f42e5 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.34.md b/shared/tutorial/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index efe3820754f..51e6e2a5984 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 32d26faa9f4..d95faf69864 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.34.md b/shared/typeflow/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 70066fa9bd8..6c01f40eff6 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index ad4781e2cbd..4f4b3189bb4 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.15 + +No user-facing changes. + ## 0.0.14 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.15.md b/shared/typeinference/change-notes/released/0.0.15.md new file mode 100644 index 00000000000..7af9c05f23f --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.15.md @@ -0,0 +1,3 @@ +## 0.0.15 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index ca29e45d0a6..dff35216fc6 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.14 +lastReleaseVersion: 0.0.15 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index ae0880ec7ea..b09de2187e9 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.15-dev +version: 0.0.15 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index a536c707303..4edafe87290 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.18 + +No user-facing changes. + ## 2.0.17 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.18.md b/shared/typetracking/change-notes/released/2.0.18.md new file mode 100644 index 00000000000..11e398dac31 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.18.md @@ -0,0 +1,3 @@ +## 2.0.18 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index a5f7c15c020..16342205c73 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.17 +lastReleaseVersion: 2.0.18 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 9a68b0ae750..14ca67d8ba8 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.18-dev +version: 2.0.18 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 979e0c24d1e..9fbdb39d493 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.34.md b/shared/typos/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 71a4826016e..5675b883f19 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 0f0cdcc36ca..88679dd6846 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.21 + +No user-facing changes. + ## 2.0.20 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.21.md b/shared/util/change-notes/released/2.0.21.md new file mode 100644 index 00000000000..bdc5029b70b --- /dev/null +++ b/shared/util/change-notes/released/2.0.21.md @@ -0,0 +1,3 @@ +## 2.0.21 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index cde101f3516..a572e88bffd 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.20 +lastReleaseVersion: 2.0.21 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 69e188136fa..155a5b33b78 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.21-dev +version: 2.0.21 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index f0d7c829bfb..ff67592d22b 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.34.md b/shared/xml/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 25135f830c6..2bdbef9aa76 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 2ca0a52f636..fb623a1f26c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.34 + +No user-facing changes. + ## 1.0.33 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.34.md b/shared/yaml/change-notes/released/1.0.34.md new file mode 100644 index 00000000000..7e097cfe937 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.34.md @@ -0,0 +1,3 @@ +## 1.0.34 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 914c722b5d9..b736654032c 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.33 +lastReleaseVersion: 1.0.34 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 4ba9cb06c57..7dcc28b8269 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.34-dev +version: 1.0.34 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 4b8852b6711..b1b958708e0 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,22 @@ +## 6.0.0 + +### Breaking Changes + +* The `OpenedArchetypeType` class has been renamed as `ExistentialArchetypeType`. +* The `OtherAvailabilitySpec` class has been removed. Use `AvailabilitySpec::isWildcard` instead. +* The `PlatformVersionAvailabilitySpec` has been removed. Use `AvailabilitySpec::getPlatform` and `AvailabilitySpec::getVersion` instead. + +### New Features + +* Added AST nodes `UsingDecl`, `UnsafeExpr`, and `InlineArrayType` that correspond to new nodes in Swift 6.2. +* Added new predicates `isDistributedGet`, `isRead2`, `isModify2`, and `isInit` to the `Accessor` class that correspond to new accessors in Swift 6.2. +* Added a new predicate `isApply` to the `KeyPathComponent` class that corresponds to method and initializer key path components in Swift 6.2. + +### Major Analysis Improvements + +* Upgraded to allow analysis of Swift 6.2. +* Support for experimental Embedded Swift has been dropped. + ## 5.0.9 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2025-10-22-swift-6.2-class-changes.md b/swift/ql/lib/change-notes/2025-10-22-swift-6.2-class-changes.md deleted file mode 100644 index 114f91eed8c..00000000000 --- a/swift/ql/lib/change-notes/2025-10-22-swift-6.2-class-changes.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: breaking ---- -* The `OpenedArchetypeType` class has been renamed as `ExistentialArchetypeType`. -* The `OtherAvailabilitySpec` class has been removed. Use `AvailabilitySpec::isWildcard` instead. -* The `PlatformVersionAvailabilitySpec` has been removed. Use `AvailabilitySpec::getPlatform` and `AvailabilitySpec::getVersion` instead. diff --git a/swift/ql/lib/change-notes/2025-10-22-swift-6.2.md b/swift/ql/lib/change-notes/2025-10-22-swift-6.2.md deleted file mode 100644 index 97f3e45d6f8..00000000000 --- a/swift/ql/lib/change-notes/2025-10-22-swift-6.2.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Upgraded to allow analysis of Swift 6.2. -* Support for experimental Embedded Swift has been dropped. diff --git a/swift/ql/lib/change-notes/2025-10-31-swift-6.2-ast.md b/swift/ql/lib/change-notes/2025-10-31-swift-6.2-ast.md deleted file mode 100644 index f227bc71c65..00000000000 --- a/swift/ql/lib/change-notes/2025-10-31-swift-6.2-ast.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- -* Added AST nodes `UsingDecl`, `UnsafeExpr`, and `InlineArrayType` that correspond to new nodes in Swift 6.2. -* Added new predicates `isDistributedGet`, `isRead2`, `isModify2`, and `isInit` to the `Accessor` class that correspond to new accessors in Swift 6.2. -* Added a new predicate `isApply` to the `KeyPathComponent` class that corresponds to method and initializer key path components in Swift 6.2. diff --git a/swift/ql/lib/change-notes/released/6.0.0.md b/swift/ql/lib/change-notes/released/6.0.0.md new file mode 100644 index 00000000000..8fe348b6db5 --- /dev/null +++ b/swift/ql/lib/change-notes/released/6.0.0.md @@ -0,0 +1,18 @@ +## 6.0.0 + +### Breaking Changes + +* The `OpenedArchetypeType` class has been renamed as `ExistentialArchetypeType`. +* The `OtherAvailabilitySpec` class has been removed. Use `AvailabilitySpec::isWildcard` instead. +* The `PlatformVersionAvailabilitySpec` has been removed. Use `AvailabilitySpec::getPlatform` and `AvailabilitySpec::getVersion` instead. + +### New Features + +* Added AST nodes `UsingDecl`, `UnsafeExpr`, and `InlineArrayType` that correspond to new nodes in Swift 6.2. +* Added new predicates `isDistributedGet`, `isRead2`, `isModify2`, and `isInit` to the `Accessor` class that correspond to new accessors in Swift 6.2. +* Added a new predicate `isApply` to the `KeyPathComponent` class that corresponds to method and initializer key path components in Swift 6.2. + +### Major Analysis Improvements + +* Upgraded to allow analysis of Swift 6.2. +* Support for experimental Embedded Swift has been dropped. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 2b650f0b340..f8c4fa43ccb 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.9 +lastReleaseVersion: 6.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 18bddfe30bb..2f395ceb198 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 5.0.10-dev +version: 6.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index f3fe65f7bd8..99b5491b9db 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.2.8 + +No user-facing changes. + ## 1.2.7 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.2.8.md b/swift/ql/src/change-notes/released/1.2.8.md new file mode 100644 index 00000000000..533ed7761e4 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.2.8.md @@ -0,0 +1,3 @@ +## 1.2.8 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 950e0645d4a..a49a92ee5ab 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.7 +lastReleaseVersion: 1.2.8 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 9e050de61b9..bec49400609 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.2.8-dev +version: 1.2.8 groups: - swift - queries