Release preparation for version 2.8.3

2026-04-30 11:15:13 +02:00 · 2022-03-10 19:43:58 +00:00
parent 208851cb91
commit 6b194bc55f
75 changed files with 221 additions and 124 deletions
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,13 @@
+## 0.0.11
+
+### Minor Analysis Improvements
+
+* Added new SSRF sinks for `httpx`, `pycurl`, `urllib`, `urllib2`, `urllib3`, and `libtaxii`. This improvement was [submitted by @haby0](https://github.com/github/codeql/pull/8275).
+* The regular expression parser now groups sequences of normal characters. This reduces the number of instances of `RegExpNormalChar`.
+* Fixed taint propagation for attribute assignment. In the assignment `x.foo = tainted` we no longer treat the entire object `x` as tainted, just because the attribute `foo` contains tainted data. This leads to slightly fewer false positives.
+* Improved analysis of attributes for data-flow and taint tracking queries, so `getattr`/`setattr` are supported, and a write to an attribute properly stops flow for the old value in that attribute.
+* Added post-update nodes (`DataFlow::PostUpdateNode`) for arguments in calls that can't be resolved.
+
 ## 0.0.10

 ### Deprecated APIs
--- a/python/ql/lib/change-notes/2022-02-04-improve-field-flow.md
+++ b/python/ql/lib/change-notes/2022-02-04-improve-field-flow.md
@@ -1,5 +0,0 @@
---
-category: minorAnalysis
---
-* Improved analysis of attributes for data-flow and taint tracking queries, so `getattr`/`setattr` are supported, and a write to an attribute properly stops flow for the old value in that attribute.
-* Added post-update nodes (`DataFlow::PostUpdateNode`) for arguments in calls that can't be resolved.
--- a/python/ql/lib/change-notes/2022-02-08-fix-attribute-taint.md
+++ b/python/ql/lib/change-notes/2022-02-08-fix-attribute-taint.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Fixed taint propagation for attribute assignment. In the assignment `x.foo = tainted` we no longer treat the entire object `x` as tainted, just because the attribute `foo` contains tainted data. This leads to slightly fewer false positives.
--- a/python/ql/lib/change-notes/2022-02-25-regex-group-characters.md
+++ b/python/ql/lib/change-notes/2022-02-25-regex-group-characters.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The regular expression parser now groups sequences of normal characters. This reduces the number of instances of `RegExpNormalChar`.
--- a/python/ql/lib/change-notes/2022-03-04-add-ssrf-sinks.md
+++ b/python/ql/lib/change-notes/2022-03-04-add-ssrf-sinks.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Added new SSRF sinks for `httpx`, `pycurl`, `urllib`, `urllib2`, `urllib3`, and `libtaxii`. This improvement was [submitted by @haby0](https://github.com/github/codeql/pull/8275).
--- a/python/ql/lib/change-notes/released/0.0.11.md
+++ b/python/ql/lib/change-notes/released/0.0.11.md
@@ -0,0 +1,9 @@
+## 0.0.11
+
+### Minor Analysis Improvements
+
+* Added new SSRF sinks for `httpx`, `pycurl`, `urllib`, `urllib2`, `urllib3`, and `libtaxii`. This improvement was [submitted by @haby0](https://github.com/github/codeql/pull/8275).
+* The regular expression parser now groups sequences of normal characters. This reduces the number of instances of `RegExpNormalChar`.
+* Fixed taint propagation for attribute assignment. In the assignment `x.foo = tainted` we no longer treat the entire object `x` as tainted, just because the attribute `foo` contains tainted data. This leads to slightly fewer false positives.
+* Improved analysis of attributes for data-flow and taint tracking queries, so `getattr`/`setattr` are supported, and a write to an attribute properly stops flow for the old value in that attribute.
+* Added post-update nodes (`DataFlow::PostUpdateNode`) for arguments in calls that can't be resolved.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.10
+lastReleaseVersion: 0.0.11
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.0.11-dev
+version: 0.0.11
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.0.11
+
+### New Queries
+
+* The query "XPath query built from user-controlled sources" (`py/xpath-injection`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @porcupineyhairs](https://github.com/github/codeql/pull/6331).
+
 ## 0.0.10

 ### New Queries
--- a/python/ql/src/change-notes/2022-02-09-promote-xpath-injection.md
+++ b/python/ql/src/change-notes/2022-02-09-promote-xpath-injection.md
@@ -1,4 +1,5 @@
---
-category: newQuery
---
+## 0.0.11
+
+### New Queries
+
 * The query "XPath query built from user-controlled sources" (`py/xpath-injection`) has been promoted from experimental to the main query pack. Its results will now appear by default. This query was originally [submitted as an experimental query by @porcupineyhairs](https://github.com/github/codeql/pull/6331).
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.10
+lastReleaseVersion: 0.0.11
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.0.11-dev
+version: 0.0.11
 groups: 
  - python
  - queries