Release preparation for version 2.14.0

2026-04-28 10:15:14 +02:00 · 2023-07-07 08:22:14 +00:00
parent 139585fe5c
commit 6484ee106e
138 changed files with 443 additions and 216 deletions
--- a/java/ql/src/change-notes/released/0.7.0.md
+++ b/java/ql/src/change-notes/released/0.7.0.md
@@ -0,0 +1,10 @@
+## 0.7.0
+
+### Minor Analysis Improvements
+
+* New models have been added for `org.apache.commons.lang`.
+* The query `java/unsafe-deserialization` has been updated to take into account `SerialKiller`, a library used to prevent deserialization of arbitrary classes.
+
+### Bug Fixes
+
+* The query "Arbitrary file write during archive extraction ("Zip Slip")" (`java/zipslip`) has been renamed to "Arbitrary file access during archive extraction ("Zip Slip")."