From 6484ee106e483eb3d2a0040bac9e17ef089756ab Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Fri, 7 Jul 2023 08:22:14 +0000 Subject: [PATCH] Release preparation for version 2.14.0 --- cpp/ql/lib/CHANGELOG.md | 10 +++++++++ .../2023-06-19-delete-container-url.md | 4 ---- .../0.8.0.md} | 11 +++++++--- cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 6 +++++ .../0.7.0.md} | 9 ++++---- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.6.0.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.6.0.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 10 +++++++++ .../change-notes/2023-05-09-models-as-data.md | 4 ---- .../2023-06-08-type-strengthening.md | 4 ---- csharp/ql/lib/change-notes/released/0.7.0.md | 9 ++++++++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 10 +++++++++ .../2023-06-14-missing-access-control.md | 4 ---- .../0.7.0.md} | 11 +++++++--- csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 10 +++++++++ .../2023-06-14-log-injection-deprecation.md | 4 ---- .../0.6.0.md} | 11 +++++++--- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 6 +++++ .../0.6.0.md} | 7 +++--- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 22 +++++++++++++++++++ .../2023-04-19-deprecated-execcallable.md | 4 ---- .../change-notes/2023-05-22-hudson-models.md | 4 ---- .../change-notes/2023-05-22-stapler-models.md | 4 ---- .../2023-06-08-type-strengthening.md | 4 ---- ...2023-06-14-jenkins-autogenerated-models.md | 8 ------- .../2023-06-22-url-tostring-model.md | 4 ---- ...6-28-javax-portlet-autogenerated-models.md | 4 ---- java/ql/lib/change-notes/released/0.7.0.md | 21 ++++++++++++++++++ java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 11 ++++++++++ ...-02-unsafe-deserialization-serialkiller.md | 4 ---- .../change-notes/2023-06-16-zipslip-rename.md | 4 ---- .../2023-06-23-apache-commons-lang.md | 4 ---- java/ql/src/change-notes/released/0.7.0.md | 10 +++++++++ java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 +++++ .../ql/lib/change-notes/2023-06-22-webix.md | 4 ---- .../ql/lib/change-notes/released/0.7.0.md | 5 +++++ javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 +++++ .../0.7.0.md} | 7 +++--- javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/0.6.0.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 19 ++++++++++++++++ ...3-05-30-typetracking-via-flow-summaries.md | 4 ---- .../change-notes/2023-06-09-delete-deps.md | 9 -------- ...2023-06-12-flask-render-template-string.md | 4 ---- .../2023-06-13-container-store-steps.md | 4 ---- .../change-notes/2023-06-14-delete-deps.md | 4 ---- .../2023-06-20-summaries-from-models.md | 4 ---- python/ql/lib/change-notes/released/0.10.0.md | 18 +++++++++++++++ python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 6 +++++ .../0.8.0.md} | 7 +++--- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 13 +++++++++++ .../2023-05-27-unsafe-deserialization.md | 4 ---- .../change-notes/2023-06-08-rack-redirect.md | 4 ---- .../2023-06-14-insecure-download-config.md | 4 ---- .../change-notes/2023-06-23-rack-response.md | 5 ----- ruby/ql/lib/change-notes/released/0.7.0.md | 12 ++++++++++ ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 12 ++++++++++ .../src/change-notes/2023-06-12-map_filter.md | 6 ----- .../change-notes/2023-06-16-zipslip-rename.md | 4 ---- ruby/ql/src/change-notes/released/0.7.0.md | 11 ++++++++++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 3 +++ shared/mad/change-notes/released/0.1.0.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 ++ shared/mad/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/0.1.0.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 ++++ shared/ssa/change-notes/released/0.1.0.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/0.1.0.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../change-notes/released/0.1.0.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/0.1.0.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/0.1.0.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/0.1.0.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 15 +++++++++++++ .../change-notes/2023-06-19-regex-library.md | 6 ----- swift/ql/lib/change-notes/2023-07-04-swap.md | 5 ----- .../0.2.0.md} | 16 +++++++++++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 6 +++++ .../0.2.0.md} | 7 +++--- swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 138 files changed, 443 insertions(+), 216 deletions(-) delete mode 100644 cpp/ql/lib/change-notes/2023-06-19-delete-container-url.md rename cpp/ql/lib/change-notes/{2023-07-06-product-dataflow-defaults.md => released/0.8.0.md} (57%) rename cpp/ql/src/change-notes/{2023-06-29-improve-comparison-wider-type.md => released/0.7.0.md} (64%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.6.0.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.6.0.md delete mode 100644 csharp/ql/lib/change-notes/2023-05-09-models-as-data.md delete mode 100644 csharp/ql/lib/change-notes/2023-06-08-type-strengthening.md create mode 100644 csharp/ql/lib/change-notes/released/0.7.0.md delete mode 100644 csharp/ql/src/change-notes/2023-06-14-missing-access-control.md rename csharp/ql/src/change-notes/{2023-06-16-zipslip-rename.md => released/0.7.0.md} (50%) delete mode 100644 go/ql/lib/change-notes/2023-06-14-log-injection-deprecation.md rename go/ql/lib/change-notes/{2023-06-20-function-model-path-nodes.md => released/0.6.0.md} (58%) rename go/ql/src/change-notes/{2023-06-16-zipslip-rename.md => released/0.6.0.md} (87%) delete mode 100644 java/ql/lib/change-notes/2023-04-19-deprecated-execcallable.md delete mode 100644 java/ql/lib/change-notes/2023-05-22-hudson-models.md delete mode 100644 java/ql/lib/change-notes/2023-05-22-stapler-models.md delete mode 100644 java/ql/lib/change-notes/2023-06-08-type-strengthening.md delete mode 100644 java/ql/lib/change-notes/2023-06-14-jenkins-autogenerated-models.md delete mode 100644 java/ql/lib/change-notes/2023-06-22-url-tostring-model.md delete mode 100644 java/ql/lib/change-notes/2023-06-28-javax-portlet-autogenerated-models.md create mode 100644 java/ql/lib/change-notes/released/0.7.0.md delete mode 100644 java/ql/src/change-notes/2023-06-02-unsafe-deserialization-serialkiller.md delete mode 100644 java/ql/src/change-notes/2023-06-16-zipslip-rename.md delete mode 100644 java/ql/src/change-notes/2023-06-23-apache-commons-lang.md create mode 100644 java/ql/src/change-notes/released/0.7.0.md delete mode 100644 javascript/ql/lib/change-notes/2023-06-22-webix.md create mode 100644 javascript/ql/lib/change-notes/released/0.7.0.md rename javascript/ql/src/change-notes/{2023-06-16-zipslip-rename.md => released/0.7.0.md} (87%) create mode 100644 misc/suite-helpers/change-notes/released/0.6.0.md delete mode 100644 python/ql/lib/change-notes/2023-05-30-typetracking-via-flow-summaries.md delete mode 100644 python/ql/lib/change-notes/2023-06-09-delete-deps.md delete mode 100644 python/ql/lib/change-notes/2023-06-12-flask-render-template-string.md delete mode 100644 python/ql/lib/change-notes/2023-06-13-container-store-steps.md delete mode 100644 python/ql/lib/change-notes/2023-06-14-delete-deps.md delete mode 100644 python/ql/lib/change-notes/2023-06-20-summaries-from-models.md create mode 100644 python/ql/lib/change-notes/released/0.10.0.md rename python/ql/src/change-notes/{2023-06-16-zipslip-rename.md => released/0.8.0.md} (87%) delete mode 100644 ruby/ql/lib/change-notes/2023-05-27-unsafe-deserialization.md delete mode 100644 ruby/ql/lib/change-notes/2023-06-08-rack-redirect.md delete mode 100644 ruby/ql/lib/change-notes/2023-06-14-insecure-download-config.md delete mode 100644 ruby/ql/lib/change-notes/2023-06-23-rack-response.md create mode 100644 ruby/ql/lib/change-notes/released/0.7.0.md delete mode 100644 ruby/ql/src/change-notes/2023-06-12-map_filter.md delete mode 100644 ruby/ql/src/change-notes/2023-06-16-zipslip-rename.md create mode 100644 ruby/ql/src/change-notes/released/0.7.0.md create mode 100644 shared/mad/CHANGELOG.md create mode 100644 shared/mad/change-notes/released/0.1.0.md create mode 100644 shared/mad/codeql-pack.release.yml create mode 100644 shared/regex/change-notes/released/0.1.0.md create mode 100644 shared/ssa/change-notes/released/0.1.0.md create mode 100644 shared/tutorial/change-notes/released/0.1.0.md create mode 100644 shared/typetracking/change-notes/released/0.1.0.md create mode 100644 shared/typos/change-notes/released/0.1.0.md create mode 100644 shared/util/change-notes/released/0.1.0.md create mode 100644 shared/yaml/change-notes/released/0.1.0.md delete mode 100644 swift/ql/lib/change-notes/2023-06-19-regex-library.md delete mode 100644 swift/ql/lib/change-notes/2023-07-04-swap.md rename swift/ql/lib/change-notes/{2023-06-06-brace-stmt-variables.md => released/0.2.0.md} (53%) rename swift/ql/src/change-notes/{2023-06-22-hide-summarized-nodes.md => released/0.2.0.md} (87%) diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 615ceab066f..8f6d36edc61 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.8.0 + +### New Features + +* The `ProductFlow::StateConfigSig` signature now includes default predicates for `isBarrier1`, `isBarrier2`, `isAdditionalFlowStep1`, and `isAdditionalFlowStep1`. Hence, it is no longer needed to provide `none()` implementations of these predicates if they are not needed. + +### Minor Analysis Improvements + +* Deleted the deprecated `getURL` predicate from the `Container`, `Folder`, and `File` classes. Use the `getLocation` predicate instead. + ## 0.7.4 No user-facing changes. diff --git a/cpp/ql/lib/change-notes/2023-06-19-delete-container-url.md b/cpp/ql/lib/change-notes/2023-06-19-delete-container-url.md deleted file mode 100644 index 9fef359a1e8..00000000000 --- a/cpp/ql/lib/change-notes/2023-06-19-delete-container-url.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Deleted the deprecated `getURL` predicate from the `Container`, `Folder`, and `File` classes. Use the `getLocation` predicate instead. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2023-07-06-product-dataflow-defaults.md b/cpp/ql/lib/change-notes/released/0.8.0.md similarity index 57% rename from cpp/ql/lib/change-notes/2023-07-06-product-dataflow-defaults.md rename to cpp/ql/lib/change-notes/released/0.8.0.md index 5e73c243921..573e0cb34b6 100644 --- a/cpp/ql/lib/change-notes/2023-07-06-product-dataflow-defaults.md +++ b/cpp/ql/lib/change-notes/released/0.8.0.md @@ -1,4 +1,9 @@ ---- -category: feature ---- +## 0.8.0 + +### New Features + * The `ProductFlow::StateConfigSig` signature now includes default predicates for `isBarrier1`, `isBarrier2`, `isAdditionalFlowStep1`, and `isAdditionalFlowStep1`. Hence, it is no longer needed to provide `none()` implementations of these predicates if they are not needed. + +### Minor Analysis Improvements + +* Deleted the deprecated `getURL` predicate from the `Container`, `Folder`, and `File` classes. Use the `getLocation` predicate instead. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index e388f34b4ec..37eab3197dc 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.4 +lastReleaseVersion: 0.8.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index eef5dc63e1f..9bc445e8fdc 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 0.8.0-dev +version: 0.8.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 2f64242b90c..5b7104d2331 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* The `cpp/comparison-with-wider-type` query now correctly handles relational operations on signed operators. As a result the query may find more results. + ## 0.6.4 No user-facing changes. diff --git a/cpp/ql/src/change-notes/2023-06-29-improve-comparison-wider-type.md b/cpp/ql/src/change-notes/released/0.7.0.md similarity index 64% rename from cpp/ql/src/change-notes/2023-06-29-improve-comparison-wider-type.md rename to cpp/ql/src/change-notes/released/0.7.0.md index 8be9a5aedd8..7fac3980802 100644 --- a/cpp/ql/src/change-notes/2023-06-29-improve-comparison-wider-type.md +++ b/cpp/ql/src/change-notes/released/0.7.0.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* The `cpp/comparison-with-wider-type` query now correctly handles relational operations on signed operators. As a result the query may find more results. \ No newline at end of file +## 0.7.0 + +### Minor Analysis Improvements + +* The `cpp/comparison-with-wider-type` query now correctly handles relational operations on signed operators. As a result the query may find more results. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 615e532bb71..b400a52bb10 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 0.7.0-dev +version: 0.7.0 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 1acc1f679bf..f410a14eae6 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.6.0 + +No user-facing changes. + ## 1.5.4 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.6.0.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.6.0.md new file mode 100644 index 00000000000..f5bad5808f6 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.6.0.md @@ -0,0 +1,3 @@ +## 1.6.0 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index c216828ee1c..c4f0b07d533 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.4 +lastReleaseVersion: 1.6.0 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index c1d62301f3d..e83567f77f5 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.6.0-dev +version: 1.6.0 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 1acc1f679bf..f410a14eae6 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.6.0 + +No user-facing changes. + ## 1.5.4 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.6.0.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.6.0.md new file mode 100644 index 00000000000..f5bad5808f6 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.6.0.md @@ -0,0 +1,3 @@ +## 1.6.0 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index c216828ee1c..c4f0b07d533 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.4 +lastReleaseVersion: 1.6.0 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 44cb88bccd6..4ff99e03b0e 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.6.0-dev +version: 1.6.0 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 551d7ee2b8b..57ddb064fe6 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.7.0 + +### Major Analysis Improvements + +* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. + +### Minor Analysis Improvements + +* Additional support for `command-injection`, `ldap-injection`, `log-injection`, and `url-redirection` sink kinds for Models as Data. + ## 0.6.4 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/2023-05-09-models-as-data.md b/csharp/ql/lib/change-notes/2023-05-09-models-as-data.md deleted file mode 100644 index c0abd8f06c0..00000000000 --- a/csharp/ql/lib/change-notes/2023-05-09-models-as-data.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional support for `command-injection`, `ldap-injection`, `log-injection`, and `url-redirection` sink kinds for Models as Data. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2023-06-08-type-strengthening.md b/csharp/ql/lib/change-notes/2023-06-08-type-strengthening.md deleted file mode 100644 index 60daaa53058..00000000000 --- a/csharp/ql/lib/change-notes/2023-06-08-type-strengthening.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. diff --git a/csharp/ql/lib/change-notes/released/0.7.0.md b/csharp/ql/lib/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..87b2fbe9b1b --- /dev/null +++ b/csharp/ql/lib/change-notes/released/0.7.0.md @@ -0,0 +1,9 @@ +## 0.7.0 + +### Major Analysis Improvements + +* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. + +### Minor Analysis Improvements + +* Additional support for `command-injection`, `ldap-injection`, `log-injection`, and `url-redirection` sink kinds for Models as Data. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 12aaa927bbe..46c97087657 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 0.7.0-dev +version: 0.7.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index ba01a4cd7d5..302ba09808f 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.7.0 + +### New Queries + +* Added a new query, `cs/web/missing-function-level-access-control`, to find instances of missing authorization checks. + +### Bug Fixes + +* The query "Arbitrary file write during zip extraction ("Zip Slip")" (`cs/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.6.4 No user-facing changes. diff --git a/csharp/ql/src/change-notes/2023-06-14-missing-access-control.md b/csharp/ql/src/change-notes/2023-06-14-missing-access-control.md deleted file mode 100644 index 6cbb12fceea..00000000000 --- a/csharp/ql/src/change-notes/2023-06-14-missing-access-control.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `cs/web/missing-function-level-access-control`, to find instances of missing authorization checks. \ No newline at end of file diff --git a/csharp/ql/src/change-notes/2023-06-16-zipslip-rename.md b/csharp/ql/src/change-notes/released/0.7.0.md similarity index 50% rename from csharp/ql/src/change-notes/2023-06-16-zipslip-rename.md rename to csharp/ql/src/change-notes/released/0.7.0.md index 3c13e6da67a..552b6f631d7 100644 --- a/csharp/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ b/csharp/ql/src/change-notes/released/0.7.0.md @@ -1,4 +1,9 @@ ---- -category: fix ---- +## 0.7.0 + +### New Queries + +* Added a new query, `cs/web/missing-function-level-access-control`, to find instances of missing authorization checks. + +### Bug Fixes + * The query "Arbitrary file write during zip extraction ("Zip Slip")" (`cs/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 7862ba8543e..3a159ef7586 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 0.7.0-dev +version: 0.7.0 groups: - csharp - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 0e1ac53f289..6a9a07074b8 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.6.0 + +### Deprecated APIs + +* The `LogInjection::Configuration` taint flow configuration class has been deprecated. Use the `LogInjection::Flow` module instead. + +### Minor Analysis Improvements + +* When a result of path query flows through a function modeled using `DataFlow::FunctionModel` or `TaintTracking::FunctionModel`, the path now includes nodes corresponding to the input and output to the function. This brings it in line with functions modeled using Models-as-Data. + ## 0.5.4 No user-facing changes. diff --git a/go/ql/lib/change-notes/2023-06-14-log-injection-deprecation.md b/go/ql/lib/change-notes/2023-06-14-log-injection-deprecation.md deleted file mode 100644 index 88ec05c17ce..00000000000 --- a/go/ql/lib/change-notes/2023-06-14-log-injection-deprecation.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The `LogInjection::Configuration` taint flow configuration class has been deprecated. Use the `LogInjection::Flow` module instead. \ No newline at end of file diff --git a/go/ql/lib/change-notes/2023-06-20-function-model-path-nodes.md b/go/ql/lib/change-notes/released/0.6.0.md similarity index 58% rename from go/ql/lib/change-notes/2023-06-20-function-model-path-nodes.md rename to go/ql/lib/change-notes/released/0.6.0.md index 5c616481326..23b2a7f6847 100644 --- a/go/ql/lib/change-notes/2023-06-20-function-model-path-nodes.md +++ b/go/ql/lib/change-notes/released/0.6.0.md @@ -1,4 +1,9 @@ ---- -category: minorAnalysis ---- +## 0.6.0 + +### Deprecated APIs + +* The `LogInjection::Configuration` taint flow configuration class has been deprecated. Use the `LogInjection::Flow` module instead. + +### Minor Analysis Improvements + * When a result of path query flows through a function modeled using `DataFlow::FunctionModel` or `TaintTracking::FunctionModel`, the path now includes nodes corresponding to the input and output to the function. This brings it in line with functions modeled using Models-as-Data. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index cd3f72e2513..a3f820f884d 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.4 +lastReleaseVersion: 0.6.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index f46b9b6fca6..a93ef4564f1 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 0.6.0-dev +version: 0.6.0 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 5acce410dbd..2b87cb252c4 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.6.0 + +### Bug Fixes + +* The query "Arbitrary file write during zip extraction ("zip slip")" (`go/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.5.4 No user-facing changes. diff --git a/go/ql/src/change-notes/2023-06-16-zipslip-rename.md b/go/ql/src/change-notes/released/0.6.0.md similarity index 87% rename from go/ql/src/change-notes/2023-06-16-zipslip-rename.md rename to go/ql/src/change-notes/released/0.6.0.md index 72913f37c06..a994c79cdf0 100644 --- a/go/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ b/go/ql/src/change-notes/released/0.6.0.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.6.0 + +### Bug Fixes + * The query "Arbitrary file write during zip extraction ("zip slip")" (`go/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index cd3f72e2513..a3f820f884d 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.4 +lastReleaseVersion: 0.6.0 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index fe646c3ed32..f9bbdca3b73 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 0.6.0-dev +version: 0.6.0 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 8c5b6fdcd9e..77961e193da 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,25 @@ +## 0.7.0 + +### Deprecated APIs + +* The `ExecCallable` class in `ExternalProcess.qll` has been deprecated. + +### Major Analysis Improvements + +* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. + +### Minor Analysis Improvements + +* Added automatically-generated dataflow models for `javax.portlet`. +* Added a missing summary model for the method `java.net.URL.toString`. +* Added automatically-generated dataflow models for the following frameworks and libraries: + * `hudson` + * `jenkins` + * `net.sf.json` + * `stapler` +* Added more models for the Hudson framework. +* Added more models for the Stapler framework. + ## 0.6.4 No user-facing changes. diff --git a/java/ql/lib/change-notes/2023-04-19-deprecated-execcallable.md b/java/ql/lib/change-notes/2023-04-19-deprecated-execcallable.md deleted file mode 100644 index fc21d1825bf..00000000000 --- a/java/ql/lib/change-notes/2023-04-19-deprecated-execcallable.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The `ExecCallable` class in `ExternalProcess.qll` has been deprecated. diff --git a/java/ql/lib/change-notes/2023-05-22-hudson-models.md b/java/ql/lib/change-notes/2023-05-22-hudson-models.md deleted file mode 100644 index 55e2acae00e..00000000000 --- a/java/ql/lib/change-notes/2023-05-22-hudson-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added more models for the Hudson framework. \ No newline at end of file diff --git a/java/ql/lib/change-notes/2023-05-22-stapler-models.md b/java/ql/lib/change-notes/2023-05-22-stapler-models.md deleted file mode 100644 index 37c7250b953..00000000000 --- a/java/ql/lib/change-notes/2023-05-22-stapler-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added more models for the Stapler framework. diff --git a/java/ql/lib/change-notes/2023-06-08-type-strengthening.md b/java/ql/lib/change-notes/2023-06-08-type-strengthening.md deleted file mode 100644 index 60daaa53058..00000000000 --- a/java/ql/lib/change-notes/2023-06-08-type-strengthening.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. diff --git a/java/ql/lib/change-notes/2023-06-14-jenkins-autogenerated-models.md b/java/ql/lib/change-notes/2023-06-14-jenkins-autogenerated-models.md deleted file mode 100644 index da2f90c2326..00000000000 --- a/java/ql/lib/change-notes/2023-06-14-jenkins-autogenerated-models.md +++ /dev/null @@ -1,8 +0,0 @@ ---- -category: minorAnalysis ---- -* Added automatically-generated dataflow models for the following frameworks and libraries: - * `hudson` - * `jenkins` - * `net.sf.json` - * `stapler` diff --git a/java/ql/lib/change-notes/2023-06-22-url-tostring-model.md b/java/ql/lib/change-notes/2023-06-22-url-tostring-model.md deleted file mode 100644 index fc5a58ce4e6..00000000000 --- a/java/ql/lib/change-notes/2023-06-22-url-tostring-model.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added a missing summary model for the method `java.net.URL.toString`. diff --git a/java/ql/lib/change-notes/2023-06-28-javax-portlet-autogenerated-models.md b/java/ql/lib/change-notes/2023-06-28-javax-portlet-autogenerated-models.md deleted file mode 100644 index 7e6e88f7595..00000000000 --- a/java/ql/lib/change-notes/2023-06-28-javax-portlet-autogenerated-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added automatically-generated dataflow models for `javax.portlet`. diff --git a/java/ql/lib/change-notes/released/0.7.0.md b/java/ql/lib/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..d355c5e5a18 --- /dev/null +++ b/java/ql/lib/change-notes/released/0.7.0.md @@ -0,0 +1,21 @@ +## 0.7.0 + +### Deprecated APIs + +* The `ExecCallable` class in `ExternalProcess.qll` has been deprecated. + +### Major Analysis Improvements + +* The data flow library now performs type strengthening. This increases precision for all data flow queries by excluding paths that can be inferred to be impossible due to incompatible types. + +### Minor Analysis Improvements + +* Added automatically-generated dataflow models for `javax.portlet`. +* Added a missing summary model for the method `java.net.URL.toString`. +* Added automatically-generated dataflow models for the following frameworks and libraries: + * `hudson` + * `jenkins` + * `net.sf.json` + * `stapler` +* Added more models for the Hudson framework. +* Added more models for the Stapler framework. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index a9b4a8cc3eb..6a87f245283 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 0.7.0-dev +version: 0.7.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 9107f8c044f..63dffc3382f 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* New models have been added for `org.apache.commons.lang`. +* The query `java/unsafe-deserialization` has been updated to take into account `SerialKiller`, a library used to prevent deserialization of arbitrary classes. + +### Bug Fixes + +* The query "Arbitrary file write during archive extraction ("Zip Slip")" (`java/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.6.4 No user-facing changes. diff --git a/java/ql/src/change-notes/2023-06-02-unsafe-deserialization-serialkiller.md b/java/ql/src/change-notes/2023-06-02-unsafe-deserialization-serialkiller.md deleted file mode 100644 index 588e83d4795..00000000000 --- a/java/ql/src/change-notes/2023-06-02-unsafe-deserialization-serialkiller.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `java/unsafe-deserialization` has been updated to take into account `SerialKiller`, a library used to prevent deserialization of arbitrary classes. \ No newline at end of file diff --git a/java/ql/src/change-notes/2023-06-16-zipslip-rename.md b/java/ql/src/change-notes/2023-06-16-zipslip-rename.md deleted file mode 100644 index fa1343317ba..00000000000 --- a/java/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The query "Arbitrary file write during archive extraction ("Zip Slip")" (`java/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/java/ql/src/change-notes/2023-06-23-apache-commons-lang.md b/java/ql/src/change-notes/2023-06-23-apache-commons-lang.md deleted file mode 100644 index dc33878d2e5..00000000000 --- a/java/ql/src/change-notes/2023-06-23-apache-commons-lang.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* New models have been added for `org.apache.commons.lang`. diff --git a/java/ql/src/change-notes/released/0.7.0.md b/java/ql/src/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..e12c2ef58fe --- /dev/null +++ b/java/ql/src/change-notes/released/0.7.0.md @@ -0,0 +1,10 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* New models have been added for `org.apache.commons.lang`. +* The query `java/unsafe-deserialization` has been updated to take into account `SerialKiller`, a library used to prevent deserialization of arbitrary classes. + +### Bug Fixes + +* The query "Arbitrary file write during archive extraction ("Zip Slip")" (`java/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index ca772c85d5c..ccf777a554a 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 0.7.0-dev +version: 0.7.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 97c9fe20787..14cbfac4141 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* Added models for the Webix Framework. + ## 0.6.4 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2023-06-22-webix.md b/javascript/ql/lib/change-notes/2023-06-22-webix.md deleted file mode 100644 index 9daa1b1a5dc..00000000000 --- a/javascript/ql/lib/change-notes/2023-06-22-webix.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added models for the Webix Framework. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/released/0.7.0.md b/javascript/ql/lib/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..3c2c9c44d8e --- /dev/null +++ b/javascript/ql/lib/change-notes/released/0.7.0.md @@ -0,0 +1,5 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* Added models for the Webix Framework. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 699cc7645c2..20867487b74 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 0.7.0-dev +version: 0.7.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 475c9ed092c..1adbe57d5f5 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.7.0 + +### Bug Fixes + +* The query "Arbitrary file write during zip extraction ("Zip Slip")" (`js/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.6.4 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2023-06-16-zipslip-rename.md b/javascript/ql/src/change-notes/released/0.7.0.md similarity index 87% rename from javascript/ql/src/change-notes/2023-06-16-zipslip-rename.md rename to javascript/ql/src/change-notes/released/0.7.0.md index 3a0654e642e..96e0a1f9894 100644 --- a/javascript/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ b/javascript/ql/src/change-notes/released/0.7.0.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.7.0 + +### Bug Fixes + * The query "Arbitrary file write during zip extraction ("Zip Slip")" (`js/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index ea0087ba3bc..bf8d5393824 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 0.7.0-dev +version: 0.7.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 78cd5a4e222..f3a5d5d8a89 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.6.0 + +No user-facing changes. + ## 0.5.4 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/0.6.0.md b/misc/suite-helpers/change-notes/released/0.6.0.md new file mode 100644 index 00000000000..4383f5ec1ea --- /dev/null +++ b/misc/suite-helpers/change-notes/released/0.6.0.md @@ -0,0 +1,3 @@ +## 0.6.0 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index cd3f72e2513..a3f820f884d 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.5.4 +lastReleaseVersion: 0.6.0 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 41155a5149e..401b2ae7ef1 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 0.6.0-dev +version: 0.6.0 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 4a27642ba5b..a22eaea5777 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,22 @@ +## 0.10.0 + +### New Features + +* It is now possible to specify flow summaries in the format "MyPkg;Member[list_map];Argument[1].ListElement;Argument[0].Parameter[0];value" + +### Minor Analysis Improvements + +* Deleted many models that used the old dataflow library, the new models can be found in the `python/ql/lib/semmle/python/frameworks` folder. +* More precise modelling of several container functions (such as `sorted`, `reversed`) and methods (such as `set.add`, `list.append`). +* Added modeling of taint flow through the template argument of `flask.render_template_string` and `flask.stream_template_string`. +* Deleted many deprecated predicates and classes with uppercase `API`, `HTTP`, `XSS`, `SQL`, etc. in their names. Use the PascalCased versions instead. +* Deleted the deprecated `getName()` predicate from the `Container` class, use `getAbsolutePath()` instead. +* Deleted many deprecated module names that started with a lowercase letter, use the versions that start with an uppercase letter instead. +* Deleted many deprecated predicates in `PointsTo.qll`. +* Deleted many deprecated files from the `semmle.python.security` package. +* Deleted the deprecated `BottleRoutePointToExtension` class from `Extensions.qll`. +* Type tracking is now aware of flow summaries. This leads to a richer API graph, and may lead to more results in some queries. + ## 0.9.4 No user-facing changes. diff --git a/python/ql/lib/change-notes/2023-05-30-typetracking-via-flow-summaries.md b/python/ql/lib/change-notes/2023-05-30-typetracking-via-flow-summaries.md deleted file mode 100644 index 11c01629987..00000000000 --- a/python/ql/lib/change-notes/2023-05-30-typetracking-via-flow-summaries.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Type tracking is now aware of flow summaries. This leads to a richer API graph, and may lead to more results in some queries. diff --git a/python/ql/lib/change-notes/2023-06-09-delete-deps.md b/python/ql/lib/change-notes/2023-06-09-delete-deps.md deleted file mode 100644 index 75753ea93b7..00000000000 --- a/python/ql/lib/change-notes/2023-06-09-delete-deps.md +++ /dev/null @@ -1,9 +0,0 @@ ---- -category: minorAnalysis ---- -* Deleted many deprecated predicates and classes with uppercase `API`, `HTTP`, `XSS`, `SQL`, etc. in their names. Use the PascalCased versions instead. -* Deleted the deprecated `getName()` predicate from the `Container` class, use `getAbsolutePath()` instead. -* Deleted many deprecated module names that started with a lowercase letter, use the versions that start with an uppercase letter instead. -* Deleted many deprecated predicates in `PointsTo.qll`. -* Deleted many deprecated files from the `semmle.python.security` package. -* Deleted the deprecated `BottleRoutePointToExtension` class from `Extensions.qll`. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2023-06-12-flask-render-template-string.md b/python/ql/lib/change-notes/2023-06-12-flask-render-template-string.md deleted file mode 100644 index d9f1a2e5d5c..00000000000 --- a/python/ql/lib/change-notes/2023-06-12-flask-render-template-string.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added modeling of taint flow through the template argument of `flask.render_template_string` and `flask.stream_template_string`. diff --git a/python/ql/lib/change-notes/2023-06-13-container-store-steps.md b/python/ql/lib/change-notes/2023-06-13-container-store-steps.md deleted file mode 100644 index 3e12554a92b..00000000000 --- a/python/ql/lib/change-notes/2023-06-13-container-store-steps.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* More precise modelling of several container functions (such as `sorted`, `reversed`) and methods (such as `set.add`, `list.append`). diff --git a/python/ql/lib/change-notes/2023-06-14-delete-deps.md b/python/ql/lib/change-notes/2023-06-14-delete-deps.md deleted file mode 100644 index 16946163f5e..00000000000 --- a/python/ql/lib/change-notes/2023-06-14-delete-deps.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Deleted many models that used the old dataflow library, the new models can be found in the `python/ql/lib/semmle/python/frameworks` folder. \ No newline at end of file diff --git a/python/ql/lib/change-notes/2023-06-20-summaries-from-models.md b/python/ql/lib/change-notes/2023-06-20-summaries-from-models.md deleted file mode 100644 index feded1bb6c5..00000000000 --- a/python/ql/lib/change-notes/2023-06-20-summaries-from-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* It is now possible to specify flow summaries in the format "MyPkg;Member[list_map];Argument[1].ListElement;Argument[0].Parameter[0];value" diff --git a/python/ql/lib/change-notes/released/0.10.0.md b/python/ql/lib/change-notes/released/0.10.0.md new file mode 100644 index 00000000000..cf0b7abcbcf --- /dev/null +++ b/python/ql/lib/change-notes/released/0.10.0.md @@ -0,0 +1,18 @@ +## 0.10.0 + +### New Features + +* It is now possible to specify flow summaries in the format "MyPkg;Member[list_map];Argument[1].ListElement;Argument[0].Parameter[0];value" + +### Minor Analysis Improvements + +* Deleted many models that used the old dataflow library, the new models can be found in the `python/ql/lib/semmle/python/frameworks` folder. +* More precise modelling of several container functions (such as `sorted`, `reversed`) and methods (such as `set.add`, `list.append`). +* Added modeling of taint flow through the template argument of `flask.render_template_string` and `flask.stream_template_string`. +* Deleted many deprecated predicates and classes with uppercase `API`, `HTTP`, `XSS`, `SQL`, etc. in their names. Use the PascalCased versions instead. +* Deleted the deprecated `getName()` predicate from the `Container` class, use `getAbsolutePath()` instead. +* Deleted many deprecated module names that started with a lowercase letter, use the versions that start with an uppercase letter instead. +* Deleted many deprecated predicates in `PointsTo.qll`. +* Deleted many deprecated files from the `semmle.python.security` package. +* Deleted the deprecated `BottleRoutePointToExtension` class from `Extensions.qll`. +* Type tracking is now aware of flow summaries. This leads to a richer API graph, and may lead to more results in some queries. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 694907ca221..b21db623245 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.4 +lastReleaseVersion: 0.10.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 1a0f3932f48..eb1e0ea9231 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 0.10.0-dev +version: 0.10.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index f6131409875..d97cca6084c 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.8.0 + +### Bug Fixes + +* The query "Arbitrary file write during archive extraction ("Zip Slip")" (`py/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.7.4 No user-facing changes. diff --git a/python/ql/src/change-notes/2023-06-16-zipslip-rename.md b/python/ql/src/change-notes/released/0.8.0.md similarity index 87% rename from python/ql/src/change-notes/2023-06-16-zipslip-rename.md rename to python/ql/src/change-notes/released/0.8.0.md index 4d4d4db15c3..6e2a75767e0 100644 --- a/python/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ b/python/ql/src/change-notes/released/0.8.0.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.8.0 + +### Bug Fixes + * The query "Arbitrary file write during archive extraction ("Zip Slip")" (`py/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index e388f34b4ec..37eab3197dc 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.4 +lastReleaseVersion: 0.8.0 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 6d7301eb9c6..77308df34ba 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 0.8.0-dev +version: 0.8.0 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 1bfe6b913c7..a06ccb6f8ad 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 0.7.0 + +### Deprecated APIs + +* The `Configuration` taint flow configuration class from `codeql.ruby.security.InsecureDownloadQuery` has been deprecated. Use the `Flow` module instead. + +### Minor Analysis Improvements + +* More kinds of rack applications are now recognized. +* Rack::Response instances are now recognized as potential responses from rack applications. +* HTTP redirect responses from Rack applications are now recognized as a potential sink for open redirect alerts. +* Additional sinks for `rb/unsafe-deserialization` have been added. This includes various methods from the `yaml` and `plist` gems, which deserialize YAML and Property List data, respectively. + ## 0.6.4 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2023-05-27-unsafe-deserialization.md b/ruby/ql/lib/change-notes/2023-05-27-unsafe-deserialization.md deleted file mode 100644 index 4039e7c90dc..00000000000 --- a/ruby/ql/lib/change-notes/2023-05-27-unsafe-deserialization.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Additional sinks for `rb/unsafe-deserialization` have been added. This includes various methods from the `yaml` and `plist` gems, which deserialize YAML and Property List data, respectively. diff --git a/ruby/ql/lib/change-notes/2023-06-08-rack-redirect.md b/ruby/ql/lib/change-notes/2023-06-08-rack-redirect.md deleted file mode 100644 index 09687fa95be..00000000000 --- a/ruby/ql/lib/change-notes/2023-06-08-rack-redirect.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* HTTP redirect responses from Rack applications are now recognized as a potential sink for open redirect alerts. diff --git a/ruby/ql/lib/change-notes/2023-06-14-insecure-download-config.md b/ruby/ql/lib/change-notes/2023-06-14-insecure-download-config.md deleted file mode 100644 index 6bf019cd051..00000000000 --- a/ruby/ql/lib/change-notes/2023-06-14-insecure-download-config.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The `Configuration` taint flow configuration class from `codeql.ruby.security.InsecureDownloadQuery` has been deprecated. Use the `Flow` module instead. diff --git a/ruby/ql/lib/change-notes/2023-06-23-rack-response.md b/ruby/ql/lib/change-notes/2023-06-23-rack-response.md deleted file mode 100644 index d4bc2ca7419..00000000000 --- a/ruby/ql/lib/change-notes/2023-06-23-rack-response.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* More kinds of rack applications are now recognized. -* Rack::Response instances are now recognized as potential responses from rack applications. diff --git a/ruby/ql/lib/change-notes/released/0.7.0.md b/ruby/ql/lib/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..4051d8a0c27 --- /dev/null +++ b/ruby/ql/lib/change-notes/released/0.7.0.md @@ -0,0 +1,12 @@ +## 0.7.0 + +### Deprecated APIs + +* The `Configuration` taint flow configuration class from `codeql.ruby.security.InsecureDownloadQuery` has been deprecated. Use the `Flow` module instead. + +### Minor Analysis Improvements + +* More kinds of rack applications are now recognized. +* Rack::Response instances are now recognized as potential responses from rack applications. +* HTTP redirect responses from Rack applications are now recognized as a potential sink for open redirect alerts. +* Additional sinks for `rb/unsafe-deserialization` have been added. This includes various methods from the `yaml` and `plist` gems, which deserialize YAML and Property List data, respectively. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 3dd5dfe5e42..1cbf8680314 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 0.7.0-dev +version: 0.7.0 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index db531529e74..cbf9e0d037d 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,15 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* Fixed a bug in how `map_filter` calls are analyzed. Previously, such calls would + appear to the return the receiver of the call, but now the return value of the callback + is properly taken into account. + +### Bug Fixes + +* The experimental query "Arbitrary file write during zipfile/tarfile extraction" (`ruby/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." + ## 0.6.4 No user-facing changes. diff --git a/ruby/ql/src/change-notes/2023-06-12-map_filter.md b/ruby/ql/src/change-notes/2023-06-12-map_filter.md deleted file mode 100644 index ac5803a6096..00000000000 --- a/ruby/ql/src/change-notes/2023-06-12-map_filter.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: minorAnalysis ---- -* Fixed a bug in how `map_filter` calls are analyzed. Previously, such calls would - appear to the return the receiver of the call, but now the return value of the callback - is properly taken into account. diff --git a/ruby/ql/src/change-notes/2023-06-16-zipslip-rename.md b/ruby/ql/src/change-notes/2023-06-16-zipslip-rename.md deleted file mode 100644 index eeb9c5254bb..00000000000 --- a/ruby/ql/src/change-notes/2023-06-16-zipslip-rename.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The experimental query "Arbitrary file write during zipfile/tarfile extraction" (`ruby/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/ruby/ql/src/change-notes/released/0.7.0.md b/ruby/ql/src/change-notes/released/0.7.0.md new file mode 100644 index 00000000000..689aca7fb31 --- /dev/null +++ b/ruby/ql/src/change-notes/released/0.7.0.md @@ -0,0 +1,11 @@ +## 0.7.0 + +### Minor Analysis Improvements + +* Fixed a bug in how `map_filter` calls are analyzed. Previously, such calls would + appear to the return the receiver of the call, but now the return value of the callback + is properly taken into account. + +### Bug Fixes + +* The experimental query "Arbitrary file write during zipfile/tarfile extraction" (`ruby/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")." diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index ced8cf94614..c761f3e7ab4 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.4 +lastReleaseVersion: 0.7.0 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index d04333b01ab..fd905f3ad51 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 0.7.0-dev +version: 0.7.0 groups: - ruby - queries diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/mad/CHANGELOG.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/mad/change-notes/released/0.1.0.md b/shared/mad/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/mad/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml new file mode 100644 index 00000000000..2e08f40f6aa --- /dev/null +++ b/shared/mad/codeql-pack.release.yml @@ -0,0 +1,2 @@ +--- +lastReleaseVersion: 0.1.0 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index cbf763127ac..19ec5fe1ad9 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 2f5ce2ea5db..0db043e73e0 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.15 No user-facing changes. diff --git a/shared/regex/change-notes/released/0.1.0.md b/shared/regex/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/regex/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index dff35216fc6..2e08f40f6aa 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.15 +lastReleaseVersion: 0.1.0 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 091e5dc6d44..828e0f8fb85 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index b5e659d15c3..db77b7b0fdb 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.19 No user-facing changes. diff --git a/shared/ssa/change-notes/released/0.1.0.md b/shared/ssa/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/ssa/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index f406319f372..2e08f40f6aa 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.19 +lastReleaseVersion: 0.1.0 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 207a86d889f..48c0f4d4717 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 546e2c83454..ca80e208096 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.12 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/0.1.0.md b/shared/tutorial/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/tutorial/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 997fb8da83c..2e08f40f6aa 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.12 +lastReleaseVersion: 0.1.0 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index aa73cd991f9..fb5dbc243bc 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,6 +1,6 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 155c9f11656..2ac1e6e8688 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.12 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/0.1.0.md b/shared/typetracking/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/typetracking/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 997fb8da83c..2e08f40f6aa 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.12 +lastReleaseVersion: 0.1.0 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 0bd557e2627..754600f5d37 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 6a3b3161939..81740128f3e 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.19 No user-facing changes. diff --git a/shared/typos/change-notes/released/0.1.0.md b/shared/typos/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/typos/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index f406319f372..2e08f40f6aa 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.19 +lastReleaseVersion: 0.1.0 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 7e03d9567aa..1691c1c191c 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 4bab5793788..ede5b6ee805 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.12 No user-facing changes. diff --git a/shared/util/change-notes/released/0.1.0.md b/shared/util/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/util/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 997fb8da83c..2e08f40f6aa 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.12 +lastReleaseVersion: 0.1.0 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 4f42739a73d..2b44398c0f8 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index f2981af2aa0..4c37b59dbed 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.0 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/yaml/change-notes/released/0.1.0.md b/shared/yaml/change-notes/released/0.1.0.md new file mode 100644 index 00000000000..7b4d4fc699c --- /dev/null +++ b/shared/yaml/change-notes/released/0.1.0.md @@ -0,0 +1,3 @@ +## 0.1.0 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index ec411a674bc..2e08f40f6aa 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.1.0 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index dc1754d146a..5d21475aaf5 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 0.1.0-dev +version: 0.1.0 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index fbd0cd1a9a1..09f995659e4 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 0.2.0 + +### Breaking Changes + +* The `BraceStmt` AST node's `AstNode getElement(index)` member predicate no longer returns `VarDecl`s after the `PatternBindingDecl` that declares them. Instead, a new `VarDecl getVariable(index)` predicate has been introduced for accessing the variables declared in a `BraceStmt`. This change only affects query writers. + +### New Features + +* Added new libraries `Regex.qll` and `RegexTreeView.qll` for reasoning about regular expressions +in Swift code and places where they are evaluated. + +### Minor Analysis Improvements + +* Added a data flow model for `swap(_:_:)`. + ## 0.1.2 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2023-06-19-regex-library.md b/swift/ql/lib/change-notes/2023-06-19-regex-library.md deleted file mode 100644 index 8f3f11725d9..00000000000 --- a/swift/ql/lib/change-notes/2023-06-19-regex-library.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- - -* Added new libraries `Regex.qll` and `RegexTreeView.qll` for reasoning about regular expressions -in Swift code and places where they are evaluated. diff --git a/swift/ql/lib/change-notes/2023-07-04-swap.md b/swift/ql/lib/change-notes/2023-07-04-swap.md deleted file mode 100644 index a06d0cb7ae9..00000000000 --- a/swift/ql/lib/change-notes/2023-07-04-swap.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -* Added a data flow model for `swap(_:_:)`. diff --git a/swift/ql/lib/change-notes/2023-06-06-brace-stmt-variables.md b/swift/ql/lib/change-notes/released/0.2.0.md similarity index 53% rename from swift/ql/lib/change-notes/2023-06-06-brace-stmt-variables.md rename to swift/ql/lib/change-notes/released/0.2.0.md index 8dc01f15659..a2b41f1992d 100644 --- a/swift/ql/lib/change-notes/2023-06-06-brace-stmt-variables.md +++ b/swift/ql/lib/change-notes/released/0.2.0.md @@ -1,4 +1,14 @@ ---- -category: breaking ---- +## 0.2.0 + +### Breaking Changes + * The `BraceStmt` AST node's `AstNode getElement(index)` member predicate no longer returns `VarDecl`s after the `PatternBindingDecl` that declares them. Instead, a new `VarDecl getVariable(index)` predicate has been introduced for accessing the variables declared in a `BraceStmt`. This change only affects query writers. + +### New Features + +* Added new libraries `Regex.qll` and `RegexTreeView.qll` for reasoning about regular expressions +in Swift code and places where they are evaluated. + +### Minor Analysis Improvements + +* Added a data flow model for `swap(_:_:)`. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 6abd14b1ef8..5274e27ed52 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.2 +lastReleaseVersion: 0.2.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 8ace27357a8..6dab746da5b 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 0.2.0-dev +version: 0.2.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index cfa79d360a4..6e2f1c94742 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.2.0 + +### Bug Fixes + +* Functions and methods modeled as flow summaries are no longer shown in the path of `path-problem` queries. This results in more succinct paths for most security queries. + ## 0.1.2 No user-facing changes. diff --git a/swift/ql/src/change-notes/2023-06-22-hide-summarized-nodes.md b/swift/ql/src/change-notes/released/0.2.0.md similarity index 87% rename from swift/ql/src/change-notes/2023-06-22-hide-summarized-nodes.md rename to swift/ql/src/change-notes/released/0.2.0.md index 3c192330ee4..471197cd28c 100644 --- a/swift/ql/src/change-notes/2023-06-22-hide-summarized-nodes.md +++ b/swift/ql/src/change-notes/released/0.2.0.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.2.0 + +### Bug Fixes + * Functions and methods modeled as flow summaries are no longer shown in the path of `path-problem` queries. This results in more succinct paths for most security queries. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 6abd14b1ef8..5274e27ed52 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.2 +lastReleaseVersion: 0.2.0 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index a7bf867738f..80416ee1ddd 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 0.2.0-dev +version: 0.2.0 groups: - swift - queries