From 6f4562f3bdf2614ef29b7ec048526536ac537f1f Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 17 Feb 2025 16:55:54 +0000 Subject: [PATCH] Release preparation for version 2.20.5 --- actions/ql/lib/CHANGELOG.md | 6 +++++ .../0.4.3.md} | 9 ++++--- actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 26 +++++++++++++++++++ .../2025-02-14-docker-false-positives.md | 5 ---- .../0.5.0.md} | 11 +++++--- actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 4 +++ cpp/ql/lib/change-notes/released/4.0.1.md | 3 +++ cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 4 +++ cpp/ql/src/change-notes/released/1.3.4.md | 3 +++ cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 +++ .../lib/change-notes/released/1.7.34.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 +++ .../src/change-notes/released/1.7.34.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 15 +++++++++++ .../2025-02-03-blazor-routing-parameters.md | 4 --- ...estmessage-and-system.uribuilder-models.md | 4 --- .../change-notes/2025-02-07-dotnet-models.md | 5 ---- .../2025-02-13-csharp13-dotnet9.md | 4 --- csharp/ql/lib/change-notes/released/5.1.0.md | 14 ++++++++++ csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 4 +++ csharp/ql/src/change-notes/released/1.0.17.md | 3 +++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 +++ .../change-notes/released/1.0.17.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 13 ++++++++++ .../2025-01-09-model-stdlib-1.24.md | 5 ---- .../4.1.0.md} | 12 ++++++--- go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 6 +++++ .../1.1.8.md} | 9 ++++--- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 4 +++ java/ql/lib/change-notes/released/7.0.1.md | 3 +++ java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 6 +++++ .../1.2.0.md} | 7 ++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 +++++ .../2.4.1.md} | 7 ++--- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 12 +++++++++ .../2025-02-04-jsx-parser-first-attempt.md | 5 ---- .../change-notes/2025-02-06-hoist-in-block.md | 6 ----- .../2025-02-13-url-search-params.md | 5 ---- .../ql/src/change-notes/released/1.4.1.md | 11 ++++++++ javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 +++ .../change-notes/released/1.0.17.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 7 +++++ ...2025-02-06-allow-comments-in-subscripts.md | 5 ---- .../4.0.1.md} | 7 ++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 4 +++ python/ql/src/change-notes/released/1.4.3.md | 3 +++ python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 8 ++++++ .../ql/lib/change-notes/released/4.1.0.md | 7 ++--- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 4 +++ ruby/ql/src/change-notes/released/1.1.12.md | 3 +++ ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 4 +++ rust/ql/lib/change-notes/released/0.1.2.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 +- rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 4 +++ rust/ql/src/change-notes/released/0.1.2.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 +- rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 +++ .../change-notes/released/2.0.1.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 +++ .../dataflow/change-notes/released/2.0.1.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 +++ shared/mad/change-notes/released/1.0.17.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 +++ .../change-notes/released/1.0.17.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 +++ shared/regex/change-notes/released/1.0.17.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 4 +++ shared/ssa/change-notes/released/1.0.17.md | 3 +++ shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 +++ .../change-notes/released/1.0.17.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 +++ .../tutorial/change-notes/released/1.0.17.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 +++ .../typeflow/change-notes/released/1.0.17.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 +++ .../change-notes/released/2.0.1.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 +++ shared/typos/change-notes/released/1.0.17.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 +++ shared/util/change-notes/released/2.0.4.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 +++ shared/xml/change-notes/released/1.0.17.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 +++ shared/yaml/change-notes/released/1.0.17.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 8 ++++++ .../2025-02-11-basic-block-rename.md | 6 ----- .../ql/lib/change-notes/released/4.1.0.md | 7 ++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 4 +++ swift/ql/src/change-notes/released/1.0.17.md | 3 +++ swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 163 files changed, 450 insertions(+), 159 deletions(-) rename actions/ql/lib/change-notes/{2025-01-07-trusted-owner-ext.md => released/0.4.3.md} (95%) delete mode 100644 actions/ql/src/change-notes/2025-02-14-docker-false-positives.md rename actions/ql/src/change-notes/{2025-02-06-curate-suites.md => released/0.5.0.md} (78%) create mode 100644 cpp/ql/lib/change-notes/released/4.0.1.md create mode 100644 cpp/ql/src/change-notes/released/1.3.4.md create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.34.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.34.md delete mode 100644 csharp/ql/lib/change-notes/2025-02-03-blazor-routing-parameters.md delete mode 100644 csharp/ql/lib/change-notes/2025-02-05-update-system.net.http.httprequestmessage-and-system.uribuilder-models.md delete mode 100644 csharp/ql/lib/change-notes/2025-02-07-dotnet-models.md delete mode 100644 csharp/ql/lib/change-notes/2025-02-13-csharp13-dotnet9.md create mode 100644 csharp/ql/lib/change-notes/released/5.1.0.md create mode 100644 csharp/ql/src/change-notes/released/1.0.17.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.17.md delete mode 100644 go/ql/lib/change-notes/2025-01-09-model-stdlib-1.24.md rename go/ql/lib/change-notes/{2025-02-12-deprecate-namedtype.md => released/4.1.0.md} (62%) rename go/ql/src/change-notes/{2024-10-14-gopathsanitizer.md => released/1.1.8.md} (68%) create mode 100644 java/ql/lib/change-notes/released/7.0.1.md rename java/ql/src/change-notes/{2024-12-16-csrf-unprotected-request-type.md => released/1.2.0.md} (87%) rename javascript/ql/lib/change-notes/{2025-02-16-v-flag.md => released/2.4.1.md} (58%) delete mode 100644 javascript/ql/src/change-notes/2025-02-04-jsx-parser-first-attempt.md delete mode 100644 javascript/ql/src/change-notes/2025-02-06-hoist-in-block.md delete mode 100644 javascript/ql/src/change-notes/2025-02-13-url-search-params.md create mode 100644 javascript/ql/src/change-notes/released/1.4.1.md create mode 100644 misc/suite-helpers/change-notes/released/1.0.17.md delete mode 100644 python/ql/lib/change-notes/2025-02-06-allow-comments-in-subscripts.md rename python/ql/lib/change-notes/{2025-02-06-robustly-handle-loop-constructs.md => released/4.0.1.md} (58%) create mode 100644 python/ql/src/change-notes/released/1.4.3.md rename csharp/ql/lib/change-notes/2025-02-11-basic-block-rename.md => ruby/ql/lib/change-notes/released/4.1.0.md (84%) create mode 100644 ruby/ql/src/change-notes/released/1.1.12.md create mode 100644 rust/ql/lib/change-notes/released/0.1.2.md create mode 100644 rust/ql/src/change-notes/released/0.1.2.md create mode 100644 shared/controlflow/change-notes/released/2.0.1.md create mode 100644 shared/dataflow/change-notes/released/2.0.1.md create mode 100644 shared/mad/change-notes/released/1.0.17.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.17.md create mode 100644 shared/regex/change-notes/released/1.0.17.md create mode 100644 shared/ssa/change-notes/released/1.0.17.md create mode 100644 shared/threat-models/change-notes/released/1.0.17.md create mode 100644 shared/tutorial/change-notes/released/1.0.17.md create mode 100644 shared/typeflow/change-notes/released/1.0.17.md create mode 100644 shared/typetracking/change-notes/released/2.0.1.md create mode 100644 shared/typos/change-notes/released/1.0.17.md create mode 100644 shared/util/change-notes/released/2.0.4.md create mode 100644 shared/xml/change-notes/released/1.0.17.md create mode 100644 shared/yaml/change-notes/released/1.0.17.md delete mode 100644 swift/ql/lib/change-notes/2025-02-11-basic-block-rename.md rename ruby/ql/lib/change-notes/2025-02-11-basic-block-rename.md => swift/ql/lib/change-notes/released/4.1.0.md (84%) create mode 100644 swift/ql/src/change-notes/released/1.0.17.md diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index ddc9ef77e02..c5829269bf4 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.4.3 + +### New Features + +* The "Unpinned tag for a non-immutable Action in workflow" query (`actions/unpinned-tag`) now supports expanding the trusted action owner list using data extensions (`extensible: trustedActionsOwnerDataModel`). If you trust an Action publisher, you can include the owner name/organization in a model pack to add it to the allow list for this query. This addition will prevent security alerts when using unpinned tags for Actions published by that owner. For more information on creating a model pack, see [Creating a CodeQL Model Pack](https://docs.github.com/en/code-security/codeql-cli/using-the-advanced-functionality-of-the-codeql-cli/creating-and-working-with-codeql-packs#creating-a-codeql-model-pack). + ## 0.4.2 ### Bug Fixes diff --git a/actions/ql/lib/change-notes/2025-01-07-trusted-owner-ext.md b/actions/ql/lib/change-notes/released/0.4.3.md similarity index 95% rename from actions/ql/lib/change-notes/2025-01-07-trusted-owner-ext.md rename to actions/ql/lib/change-notes/released/0.4.3.md index ecffb9cf131..adfe281e1c3 100644 --- a/actions/ql/lib/change-notes/2025-01-07-trusted-owner-ext.md +++ b/actions/ql/lib/change-notes/released/0.4.3.md @@ -1,4 +1,5 @@ ---- -category: feature ---- -* The "Unpinned tag for a non-immutable Action in workflow" query (`actions/unpinned-tag`) now supports expanding the trusted action owner list using data extensions (`extensible: trustedActionsOwnerDataModel`). If you trust an Action publisher, you can include the owner name/organization in a model pack to add it to the allow list for this query. This addition will prevent security alerts when using unpinned tags for Actions published by that owner. For more information on creating a model pack, see [Creating a CodeQL Model Pack](https://docs.github.com/en/code-security/codeql-cli/using-the-advanced-functionality-of-the-codeql-cli/creating-and-working-with-codeql-packs#creating-a-codeql-model-pack). \ No newline at end of file +## 0.4.3 + +### New Features + +* The "Unpinned tag for a non-immutable Action in workflow" query (`actions/unpinned-tag`) now supports expanding the trusted action owner list using data extensions (`extensible: trustedActionsOwnerDataModel`). If you trust an Action publisher, you can include the owner name/organization in a model pack to add it to the allow list for this query. This addition will prevent security alerts when using unpinned tags for Actions published by that owner. For more information on creating a model pack, see [Creating a CodeQL Model Pack](https://docs.github.com/en/code-security/codeql-cli/using-the-advanced-functionality-of-the-codeql-cli/creating-and-working-with-codeql-packs#creating-a-codeql-model-pack). diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 94c5b17423c..1ec9c4ea5d9 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.2 +lastReleaseVersion: 0.4.3 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 2392397c0a3..e2c404acfe6 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.3-dev +version: 0.4.3 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 02c0e793c97..58690da3f48 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,29 @@ +## 0.5.0 + +### Breaking Changes + +* The following queries have been removed from the `code-scanning` and `security-extended` suites. + Any existing alerts for these queries will be closed automatically. + * `actions/if-expression-always-true/critical` + * `actions/if-expression-always-true/high` + * `actions/unnecessary-use-of-advanced-config` + +* The following query has been moved from the `code-scanning` suite to the `security-extended` + suite. Any existing alerts for this query will be closed automatically unless the analysis is + configured to use the `security-extended` suite. + * `actions/unpinned-tag` +* The following queries have been added to the `security-extended` suite. + * `actions/unversioned-immutable-action` + * `actions/envpath-injection/medium` + * `actions/envvar-injection/medium` + * `actions/code-injection/medium` + * `actions/artifact-poisoning/medium` + * `actions/untrusted-checkout/medium` + +### Minor Analysis Improvements + +* Fixed false positives in the query `actions/unpinned-tag` (CWE-829), which will no longer flag uses of Docker-based GitHub actions pinned by the container's SHA256 digest. + ## 0.4.2 No user-facing changes. diff --git a/actions/ql/src/change-notes/2025-02-14-docker-false-positives.md b/actions/ql/src/change-notes/2025-02-14-docker-false-positives.md deleted file mode 100644 index 38747246220..00000000000 --- a/actions/ql/src/change-notes/2025-02-14-docker-false-positives.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -* Fixed false positives in the query `actions/unpinned-tag` (CWE-829), which will no longer flag uses of Docker-based GitHub actions pinned by the container's SHA256 digest. diff --git a/actions/ql/src/change-notes/2025-02-06-curate-suites.md b/actions/ql/src/change-notes/released/0.5.0.md similarity index 78% rename from actions/ql/src/change-notes/2025-02-06-curate-suites.md rename to actions/ql/src/change-notes/released/0.5.0.md index 8845e52f8f5..a508c8c09b3 100644 --- a/actions/ql/src/change-notes/2025-02-06-curate-suites.md +++ b/actions/ql/src/change-notes/released/0.5.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 0.5.0 + +### Breaking Changes + * The following queries have been removed from the `code-scanning` and `security-extended` suites. Any existing alerts for these queries will be closed automatically. * `actions/if-expression-always-true/critical` @@ -18,3 +19,7 @@ category: breaking * `actions/code-injection/medium` * `actions/artifact-poisoning/medium` * `actions/untrusted-checkout/medium` + +### Minor Analysis Improvements + +* Fixed false positives in the query `actions/unpinned-tag` (CWE-829), which will no longer flag uses of Docker-based GitHub actions pinned by the container's SHA256 digest. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 94c5b17423c..30e271c5361 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.2 +lastReleaseVersion: 0.5.0 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index d7575be7f77..8653e20a5f0 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.4.3-dev +version: 0.5.0 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 0d224483825..ad800292195 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.0.1 + +No user-facing changes. + ## 4.0.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/released/4.0.1.md b/cpp/ql/lib/change-notes/released/4.0.1.md new file mode 100644 index 00000000000..e04e687f6e4 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/4.0.1.md @@ -0,0 +1,3 @@ +## 4.0.1 + +No user-facing changes. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 49fe3eef697..c0db4dcc0b3 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.0 +lastReleaseVersion: 4.0.1 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index f9b07e13a99..39f6675b936 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 4.0.1-dev +version: 4.0.1 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 1a4c8b06180..21e9b2b6119 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.3.4 + +No user-facing changes. + ## 1.3.3 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/released/1.3.4.md b/cpp/ql/src/change-notes/released/1.3.4.md new file mode 100644 index 00000000000..5073aca7222 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.3.4.md @@ -0,0 +1,3 @@ +## 1.3.4 + +No user-facing changes. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index eb1f7dabc84..8263ddf2c8b 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.3 +lastReleaseVersion: 1.3.4 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index f47caeb6b71..5d694ab8cc8 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.3.4-dev +version: 1.3.4 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 288181c929f..938e64917e4 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.34 + +No user-facing changes. + ## 1.7.33 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.34.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.34.md new file mode 100644 index 00000000000..c24a10514ad --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.34.md @@ -0,0 +1,3 @@ +## 1.7.34 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 80f613ab828..8b738878b2f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.33 +lastReleaseVersion: 1.7.34 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 2a2b7f23397..604e5c8ce85 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.34-dev +version: 1.7.34 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 288181c929f..938e64917e4 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.34 + +No user-facing changes. + ## 1.7.33 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.34.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.34.md new file mode 100644 index 00000000000..c24a10514ad --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.34.md @@ -0,0 +1,3 @@ +## 1.7.34 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 80f613ab828..8b738878b2f 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.33 +lastReleaseVersion: 1.7.34 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index fae71e15799..ea626edf16f 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.34-dev +version: 1.7.34 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 211ce45f0ca..d85fe1d07ef 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 5.1.0 + +### Deprecated APIs + +* The predicates `immediatelyControls` and `controls` on the `ConditionBlock` + class have been deprecated in favor of the newly added `dominatingEdge` + predicate. + +### Minor Analysis Improvements + +* Full support for C# 13 / .NET 9. All new language features are now supported by the extractor. QL library and data flow support for the new C# 13 language constructs and generated MaD models for the .NET 9 runtime. +* C# 13: Add generated models for .NET 9. +* The models for `System.Net.Http.HttpRequestMessage` and `System.UriBuilder` have been modified to better model the flow of tainted URIs. +* Blazor `[Parameter]` fields bound to a variable from the route specified in the `@page` directive are now modeled as remote flow sources. + ## 5.0.0 ### Breaking Changes diff --git a/csharp/ql/lib/change-notes/2025-02-03-blazor-routing-parameters.md b/csharp/ql/lib/change-notes/2025-02-03-blazor-routing-parameters.md deleted file mode 100644 index 00afc5867c6..00000000000 --- a/csharp/ql/lib/change-notes/2025-02-03-blazor-routing-parameters.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Blazor `[Parameter]` fields bound to a variable from the route specified in the `@page` directive are now modeled as remote flow sources. diff --git a/csharp/ql/lib/change-notes/2025-02-05-update-system.net.http.httprequestmessage-and-system.uribuilder-models.md b/csharp/ql/lib/change-notes/2025-02-05-update-system.net.http.httprequestmessage-and-system.uribuilder-models.md deleted file mode 100644 index df0c3f15af4..00000000000 --- a/csharp/ql/lib/change-notes/2025-02-05-update-system.net.http.httprequestmessage-and-system.uribuilder-models.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The models for `System.Net.Http.HttpRequestMessage` and `System.UriBuilder` have been modified to better model the flow of tainted URIs. \ No newline at end of file diff --git a/csharp/ql/lib/change-notes/2025-02-07-dotnet-models.md b/csharp/ql/lib/change-notes/2025-02-07-dotnet-models.md deleted file mode 100644 index ddb1d0767f5..00000000000 --- a/csharp/ql/lib/change-notes/2025-02-07-dotnet-models.md +++ /dev/null @@ -1,5 +0,0 @@ - ---- -category: minorAnalysis ---- -* C# 13: Add generated models for .NET 9. diff --git a/csharp/ql/lib/change-notes/2025-02-13-csharp13-dotnet9.md b/csharp/ql/lib/change-notes/2025-02-13-csharp13-dotnet9.md deleted file mode 100644 index ec8c6c565ad..00000000000 --- a/csharp/ql/lib/change-notes/2025-02-13-csharp13-dotnet9.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Full support for C# 13 / .NET 9. All new language features are now supported by the extractor. QL library and data flow support for the new C# 13 language constructs and generated MaD models for the .NET 9 runtime. diff --git a/csharp/ql/lib/change-notes/released/5.1.0.md b/csharp/ql/lib/change-notes/released/5.1.0.md new file mode 100644 index 00000000000..3bcb077946c --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.1.0.md @@ -0,0 +1,14 @@ +## 5.1.0 + +### Deprecated APIs + +* The predicates `immediatelyControls` and `controls` on the `ConditionBlock` + class have been deprecated in favor of the newly added `dominatingEdge` + predicate. + +### Minor Analysis Improvements + +* Full support for C# 13 / .NET 9. All new language features are now supported by the extractor. QL library and data flow support for the new C# 13 language constructs and generated MaD models for the .NET 9 runtime. +* C# 13: Add generated models for .NET 9. +* The models for `System.Net.Http.HttpRequestMessage` and `System.UriBuilder` have been modified to better model the flow of tainted URIs. +* Blazor `[Parameter]` fields bound to a variable from the route specified in the `@page` directive are now modeled as remote flow sources. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index c9e54136ca5..dd8d287d010 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.0 +lastReleaseVersion: 5.1.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 2f8a154c73f..dc9235bcae3 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.0.1-dev +version: 5.1.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 90e6d1c825d..3818028925a 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 ### Minor Analysis Improvements diff --git a/csharp/ql/src/change-notes/released/1.0.17.md b/csharp/ql/src/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index ac10cfe753a..ac1433ae655 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.17-dev +version: 1.0.17 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 6bc6aae0b4e..99c47f43d52 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.17.md b/go/ql/consistency-queries/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index aec2e2037ad..d935becec35 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.17-dev +version: 1.0.17 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 1e151003ad9..eef7a13d9a9 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 4.1.0 + +### Deprecated APIs + +* The class `NamedType` has been deprecated. Use the new class `DefinedType` instead. This better matches the terminology used in the Go language specification, which was changed in Go 1.9. +* The member predicate `getNamedType` on `GoMicro::ServiceInterfaceType` has been deprecated. Use the new member predicate `getDefinedType` instead. +* The member predicate `getNamedType` on `Twirp::ServiceInterfaceType` has been deprecated. Use the new member predicate `getDefinedType` instead. + +### Minor Analysis Improvements + +* Taint models have been added for the `weak` package, which was added in Go 1.24. +* Taint models have been added for the interfaces `TextAppender` and `BinaryAppender` in the `encoding` package, which were added in Go 1.24. + ## 4.0.0 ### Breaking Changes diff --git a/go/ql/lib/change-notes/2025-01-09-model-stdlib-1.24.md b/go/ql/lib/change-notes/2025-01-09-model-stdlib-1.24.md deleted file mode 100644 index 3bb5009cffd..00000000000 --- a/go/ql/lib/change-notes/2025-01-09-model-stdlib-1.24.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Taint models have been added for the `weak` package, which was added in Go 1.24. -* Taint models have been added for the interfaces `TextAppender` and `BinaryAppender` in the `encoding` package, which were added in Go 1.24. diff --git a/go/ql/lib/change-notes/2025-02-12-deprecate-namedtype.md b/go/ql/lib/change-notes/released/4.1.0.md similarity index 62% rename from go/ql/lib/change-notes/2025-02-12-deprecate-namedtype.md rename to go/ql/lib/change-notes/released/4.1.0.md index ded0fa491ab..3061e491f48 100644 --- a/go/ql/lib/change-notes/2025-02-12-deprecate-namedtype.md +++ b/go/ql/lib/change-notes/released/4.1.0.md @@ -1,6 +1,12 @@ ---- -category: deprecated ---- +## 4.1.0 + +### Deprecated APIs + * The class `NamedType` has been deprecated. Use the new class `DefinedType` instead. This better matches the terminology used in the Go language specification, which was changed in Go 1.9. * The member predicate `getNamedType` on `GoMicro::ServiceInterfaceType` has been deprecated. Use the new member predicate `getDefinedType` instead. * The member predicate `getNamedType` on `Twirp::ServiceInterfaceType` has been deprecated. Use the new member predicate `getDefinedType` instead. + +### Minor Analysis Improvements + +* Taint models have been added for the `weak` package, which was added in Go 1.24. +* Taint models have been added for the interfaces `TextAppender` and `BinaryAppender` in the `encoding` package, which were added in Go 1.24. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 49fe3eef697..d5b1bf88d10 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.0 +lastReleaseVersion: 4.1.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 0ef261c505e..7ad4701e1b0 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.0.1-dev +version: 4.1.0 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 809116d3d32..acb065e05a3 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.8 + +### Minor Analysis Improvements + +* Added [github.com/gorilla/mux.Vars](https://pkg.go.dev/github.com/gorilla/mux#Vars) to path sanitizers (disabled if [github.com/gorilla/mix.Router.SkipClean](https://pkg.go.dev/github.com/gorilla/mux#Router.SkipClean) has been called). + ## 1.1.7 No user-facing changes. diff --git a/go/ql/src/change-notes/2024-10-14-gopathsanitizer.md b/go/ql/src/change-notes/released/1.1.8.md similarity index 68% rename from go/ql/src/change-notes/2024-10-14-gopathsanitizer.md rename to go/ql/src/change-notes/released/1.1.8.md index e1577bf3a90..44d87ecdfd8 100644 --- a/go/ql/src/change-notes/2024-10-14-gopathsanitizer.md +++ b/go/ql/src/change-notes/released/1.1.8.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* Added [github.com/gorilla/mux.Vars](https://pkg.go.dev/github.com/gorilla/mux#Vars) to path sanitizers (disabled if [github.com/gorilla/mix.Router.SkipClean](https://pkg.go.dev/github.com/gorilla/mux#Router.SkipClean) has been called). \ No newline at end of file +## 1.1.8 + +### Minor Analysis Improvements + +* Added [github.com/gorilla/mux.Vars](https://pkg.go.dev/github.com/gorilla/mux#Vars) to path sanitizers (disabled if [github.com/gorilla/mix.Router.SkipClean](https://pkg.go.dev/github.com/gorilla/mux#Router.SkipClean) has been called). diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 75910556516..64972659c42 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.7 +lastReleaseVersion: 1.1.8 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index e4ddb827af2..2ad511b8af5 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.1.8-dev +version: 1.1.8 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 5bc77cfcdf5..b7ef02c4149 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 7.0.1 + +No user-facing changes. + ## 7.0.0 ### Breaking Changes diff --git a/java/ql/lib/change-notes/released/7.0.1.md b/java/ql/lib/change-notes/released/7.0.1.md new file mode 100644 index 00000000000..b5ef70820b2 --- /dev/null +++ b/java/ql/lib/change-notes/released/7.0.1.md @@ -0,0 +1,3 @@ +## 7.0.1 + +No user-facing changes. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index e0db21c7869..a18747dd3a7 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.0.0 +lastReleaseVersion: 7.0.1 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 7f5ba7b3c1d..8c986000078 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.0.1-dev +version: 7.0.1 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 1630463509e..b687bb0f6d9 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.0 + +### New Queries + +* Added a new query, `java/csrf-unprotected-request-type`, to detect Cross-Site Request Forgery (CSRF) vulnerabilities due to using HTTP request types that are not default-protected from CSRF. + ## 1.1.13 ### Minor Analysis Improvements diff --git a/java/ql/src/change-notes/2024-12-16-csrf-unprotected-request-type.md b/java/ql/src/change-notes/released/1.2.0.md similarity index 87% rename from java/ql/src/change-notes/2024-12-16-csrf-unprotected-request-type.md rename to java/ql/src/change-notes/released/1.2.0.md index 13dea758e8b..4907c7cdbaa 100644 --- a/java/ql/src/change-notes/2024-12-16-csrf-unprotected-request-type.md +++ b/java/ql/src/change-notes/released/1.2.0.md @@ -1,4 +1,5 @@ ---- -category: newQuery ---- +## 1.2.0 + +### New Queries + * Added a new query, `java/csrf-unprotected-request-type`, to detect Cross-Site Request Forgery (CSRF) vulnerabilities due to using HTTP request types that are not default-protected from CSRF. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 09a80be68d1..75430e73d1c 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.13 +lastReleaseVersion: 1.2.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 38d90031217..00d0e5c0aa8 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.14-dev +version: 1.2.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index e79db6c81b3..75fc3bec6dc 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.4.1 + +### Minor Analysis Improvements + +* Added support for regular expressions using the `v` flag. + ## 2.4.0 ### Major Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-02-16-v-flag.md b/javascript/ql/lib/change-notes/released/2.4.1.md similarity index 58% rename from javascript/ql/lib/change-notes/2025-02-16-v-flag.md rename to javascript/ql/lib/change-notes/released/2.4.1.md index 9fe3c681028..8c63327c74d 100644 --- a/javascript/ql/lib/change-notes/2025-02-16-v-flag.md +++ b/javascript/ql/lib/change-notes/released/2.4.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 2.4.1 + +### Minor Analysis Improvements + * Added support for regular expressions using the `v` flag. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index cb0ea3a249a..eead7b212da 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.4.0 +lastReleaseVersion: 2.4.1 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 781d1ee1b1e..27247958dc9 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.4.1-dev +version: 2.4.1 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 2f8c0a18392..49d57f50ba9 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.4.1 + +### Bug Fixes + +* Fixed a recently-introduced bug that prevented taint tracking through `URLSearchParams` objects. + The original behaviour has been restored and taint should once again be tracked through such objects. +* Fixed a rare issue that would occur when a function declaration inside a block statement was referenced before it was declared. + Such code is reliant on legacy web semantics, which is non-standard but nevertheless implemented by most engines. + CodeQL now takes legacy web semantics into account and resolves references to these functions correctly. +* Fixed a bug that would cause parse errors in `.jsx` files in rare cases where the file + contained syntax that was misinterpreted as Flow syntax. + ## 1.4.0 ### Major Analysis Improvements diff --git a/javascript/ql/src/change-notes/2025-02-04-jsx-parser-first-attempt.md b/javascript/ql/src/change-notes/2025-02-04-jsx-parser-first-attempt.md deleted file mode 100644 index 5a5f7acc0ba..00000000000 --- a/javascript/ql/src/change-notes/2025-02-04-jsx-parser-first-attempt.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* Fixed a bug that would cause parse errors in `.jsx` files in rare cases where the file - contained syntax that was misinterpreted as Flow syntax. diff --git a/javascript/ql/src/change-notes/2025-02-06-hoist-in-block.md b/javascript/ql/src/change-notes/2025-02-06-hoist-in-block.md deleted file mode 100644 index 9fa966e23ce..00000000000 --- a/javascript/ql/src/change-notes/2025-02-06-hoist-in-block.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: fix ---- -* Fixed a rare issue that would occur when a function declaration inside a block statement was referenced before it was declared. - Such code is reliant on legacy web semantics, which is non-standard but nevertheless implemented by most engines. - CodeQL now takes legacy web semantics into account and resolves references to these functions correctly. diff --git a/javascript/ql/src/change-notes/2025-02-13-url-search-params.md b/javascript/ql/src/change-notes/2025-02-13-url-search-params.md deleted file mode 100644 index facac3d4fc9..00000000000 --- a/javascript/ql/src/change-notes/2025-02-13-url-search-params.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* Fixed a recently-introduced bug that prevented taint tracking through `URLSearchParams` objects. - The original behaviour has been restored and taint should once again be tracked through such objects. diff --git a/javascript/ql/src/change-notes/released/1.4.1.md b/javascript/ql/src/change-notes/released/1.4.1.md new file mode 100644 index 00000000000..ffd0d8a0bed --- /dev/null +++ b/javascript/ql/src/change-notes/released/1.4.1.md @@ -0,0 +1,11 @@ +## 1.4.1 + +### Bug Fixes + +* Fixed a recently-introduced bug that prevented taint tracking through `URLSearchParams` objects. + The original behaviour has been restored and taint should once again be tracked through such objects. +* Fixed a rare issue that would occur when a function declaration inside a block statement was referenced before it was declared. + Such code is reliant on legacy web semantics, which is non-standard but nevertheless implemented by most engines. + CodeQL now takes legacy web semantics into account and resolves references to these functions correctly. +* Fixed a bug that would cause parse errors in `.jsx` files in rare cases where the file + contained syntax that was misinterpreted as Flow syntax. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index b8b2e97d508..43ccf4467be 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 4996899a411..fe3995f6af7 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.4.1-dev +version: 1.4.1 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 0227fc12fbe..9bc6498316c 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.17.md b/misc/suite-helpers/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 53321132e5b..edf09f792c8 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.17-dev +version: 1.0.17 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index a0b21e90265..17c118e7039 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.0.1 + +### Bug Fixes + +- Fixed a bug in the extractor where a comment inside a subscript could sometimes cause the AST to be missing nodes. +- Using the `break` and `continue` keywords outside of a loop, which is a syntax error but is accepted by our parser, would cause the control-flow construction to fail. This is now no longer the case. + ## 4.0.0 ### Breaking Changes diff --git a/python/ql/lib/change-notes/2025-02-06-allow-comments-in-subscripts.md b/python/ql/lib/change-notes/2025-02-06-allow-comments-in-subscripts.md deleted file mode 100644 index f962b27ca31..00000000000 --- a/python/ql/lib/change-notes/2025-02-06-allow-comments-in-subscripts.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- - -- Fixed a bug in the extractor where a comment inside a subscript could sometimes cause the AST to be missing nodes. diff --git a/python/ql/lib/change-notes/2025-02-06-robustly-handle-loop-constructs.md b/python/ql/lib/change-notes/released/4.0.1.md similarity index 58% rename from python/ql/lib/change-notes/2025-02-06-robustly-handle-loop-constructs.md rename to python/ql/lib/change-notes/released/4.0.1.md index 45bbb2e7cc4..39ee0936258 100644 --- a/python/ql/lib/change-notes/2025-02-06-robustly-handle-loop-constructs.md +++ b/python/ql/lib/change-notes/released/4.0.1.md @@ -1,5 +1,6 @@ ---- -category: fix ---- +## 4.0.1 +### Bug Fixes + +- Fixed a bug in the extractor where a comment inside a subscript could sometimes cause the AST to be missing nodes. - Using the `break` and `continue` keywords outside of a loop, which is a syntax error but is accepted by our parser, would cause the control-flow construction to fail. This is now no longer the case. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 49fe3eef697..c0db4dcc0b3 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.0 +lastReleaseVersion: 4.0.1 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 6fa3880f862..149b2b111cb 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.1-dev +version: 4.0.1 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index f336f27befe..51366c4c90e 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.3 + +No user-facing changes. + ## 1.4.2 No user-facing changes. diff --git a/python/ql/src/change-notes/released/1.4.3.md b/python/ql/src/change-notes/released/1.4.3.md new file mode 100644 index 00000000000..abf2a0d4dcc --- /dev/null +++ b/python/ql/src/change-notes/released/1.4.3.md @@ -0,0 +1,3 @@ +## 1.4.3 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index a76cacdf799..08f88b689fb 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.2 +lastReleaseVersion: 1.4.3 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 98dbf9bb34c..91b149f88c2 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.4.3-dev +version: 1.4.3 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 0acb1e8a240..d7818abe71e 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,11 @@ +## 4.1.0 + +### Deprecated APIs + +* The predicates `immediatelyControls` and `controls` on the `ConditionBlock` + class have been deprecated in favor of the newly added `dominatingEdge` + predicate. + ## 4.0.0 ### Breaking Changes diff --git a/csharp/ql/lib/change-notes/2025-02-11-basic-block-rename.md b/ruby/ql/lib/change-notes/released/4.1.0.md similarity index 84% rename from csharp/ql/lib/change-notes/2025-02-11-basic-block-rename.md rename to ruby/ql/lib/change-notes/released/4.1.0.md index 9000dc09a24..1f497d8e465 100644 --- a/csharp/ql/lib/change-notes/2025-02-11-basic-block-rename.md +++ b/ruby/ql/lib/change-notes/released/4.1.0.md @@ -1,6 +1,7 @@ ---- -category: deprecated ---- +## 4.1.0 + +### Deprecated APIs + * The predicates `immediatelyControls` and `controls` on the `ConditionBlock` class have been deprecated in favor of the newly added `dominatingEdge` predicate. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 49fe3eef697..d5b1bf88d10 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.0 +lastReleaseVersion: 4.1.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 9c3b066dccb..42722632c09 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 4.0.1-dev +version: 4.1.0 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index e22d95bc63f..2c7cdc596b2 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.12 + +No user-facing changes. + ## 1.1.11 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.12.md b/ruby/ql/src/change-notes/released/1.1.12.md new file mode 100644 index 00000000000..2d7f915e29b --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.12.md @@ -0,0 +1,3 @@ +## 1.1.12 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 121f8cf035d..f5b135d0193 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.11 +lastReleaseVersion: 1.1.12 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 5023e3174d6..5e709b1d7a8 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.12-dev +version: 1.1.12 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 5712c750565..ea8b30ac3fe 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.2 + +No user-facing changes. + ## 0.1.1 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.2.md b/rust/ql/lib/change-notes/released/0.1.2.md new file mode 100644 index 00000000000..9b0e2e7d717 --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.2.md @@ -0,0 +1,3 @@ +## 0.1.2 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 92d1505475f..6abd14b1ef8 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.1 +lastReleaseVersion: 0.1.2 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 5bffcf30d3e..987173d9224 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.2-dev +version: 0.1.2 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index 5712c750565..ea8b30ac3fe 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.2 + +No user-facing changes. + ## 0.1.1 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.2.md b/rust/ql/src/change-notes/released/0.1.2.md new file mode 100644 index 00000000000..9b0e2e7d717 --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.2.md @@ -0,0 +1,3 @@ +## 0.1.2 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 92d1505475f..6abd14b1ef8 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.1 +lastReleaseVersion: 0.1.2 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index dd666292524..a512c15f0ff 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.2-dev +version: 0.1.2 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 65f4b540763..60a09e6e04d 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.1 + +No user-facing changes. + ## 2.0.0 ### Breaking Changes diff --git a/shared/controlflow/change-notes/released/2.0.1.md b/shared/controlflow/change-notes/released/2.0.1.md new file mode 100644 index 00000000000..b5b6d0dee91 --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.1.md @@ -0,0 +1,3 @@ +## 2.0.1 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 0abe6ccede0..fe974a4dbf3 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.0 +lastReleaseVersion: 2.0.1 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 1b923075630..6c81656f452 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.1-dev +version: 2.0.1 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index b1730ac585e..6a65f730aca 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.1 + +No user-facing changes. + ## 2.0.0 ### Breaking Changes diff --git a/shared/dataflow/change-notes/released/2.0.1.md b/shared/dataflow/change-notes/released/2.0.1.md new file mode 100644 index 00000000000..b5b6d0dee91 --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.1.md @@ -0,0 +1,3 @@ +## 2.0.1 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 0abe6ccede0..fe974a4dbf3 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.0 +lastReleaseVersion: 2.0.1 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index eb41d1079e1..8b07b3ed20f 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.1-dev +version: 2.0.1 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index c9bc4beddf1..d4d7ae992e3 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.17.md b/shared/mad/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index ebc658ad191..f5ddb46862e 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index bc77ab8acc9..eb259ae5af1 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.17.md b/shared/rangeanalysis/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 52021192963..71aee294c79 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index ee6c1e70648..597cda59bb3 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.17.md b/shared/regex/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 30451f6dc3f..993dffe6218 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index c1e8ee9e42f..6000f6d85a9 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.17.md b/shared/ssa/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index ebc832179b9..b04c422d291 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 6bc6aae0b4e..99c47f43d52 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.17.md b/shared/threat-models/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index b6ecead9dad..dec6e811b9c 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.17-dev +version: 1.0.17 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 0d1c113cc29..616521bdcfa 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.17.md b/shared/tutorial/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 1d4748c4b35..66a32648e25 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 22eea9d7c8b..1edea337a83 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.17.md b/shared/typeflow/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 856cceea312..52170c28a8e 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 5ac7f2636b6..496612be952 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.1 + +No user-facing changes. + ## 2.0.0 ### Breaking Changes diff --git a/shared/typetracking/change-notes/released/2.0.1.md b/shared/typetracking/change-notes/released/2.0.1.md new file mode 100644 index 00000000000..b5b6d0dee91 --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.1.md @@ -0,0 +1,3 @@ +## 2.0.1 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 0abe6ccede0..fe974a4dbf3 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.0 +lastReleaseVersion: 2.0.1 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 805ed9bdaed..9af434a8703 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.1-dev +version: 2.0.1 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 85078c7993c..16433eff6d6 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.17.md b/shared/typos/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 8e2b68b6392..cf94a2afe2c 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index f6eb7781486..5d0c95a3d9e 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.4 + +No user-facing changes. + ## 2.0.3 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.4.md b/shared/util/change-notes/released/2.0.4.md new file mode 100644 index 00000000000..8e002b6db64 --- /dev/null +++ b/shared/util/change-notes/released/2.0.4.md @@ -0,0 +1,3 @@ +## 2.0.4 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index fabf1e86596..0f306f8bd3b 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.3 +lastReleaseVersion: 2.0.4 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index e2ddbb7374d..62068d204a8 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.4-dev +version: 2.0.4 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index d6297fd0036..77359b40c67 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.17.md b/shared/xml/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 552e89e1a6f..fd461dc9bb7 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 2aff18b9a3c..b20aa95a794 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.17.md b/shared/yaml/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 5701451a376..a134e60f475 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.17-dev +version: 1.0.17 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index d9a18cfabbf..c74bc7c586a 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,11 @@ +## 4.1.0 + +### Deprecated APIs + +* The predicates `immediatelyControls` and `controls` on the `ConditionBlock` + class have been deprecated in favor of the newly added `dominatingEdge` + predicate. + ## 4.0.0 ### Breaking Changes diff --git a/swift/ql/lib/change-notes/2025-02-11-basic-block-rename.md b/swift/ql/lib/change-notes/2025-02-11-basic-block-rename.md deleted file mode 100644 index 9000dc09a24..00000000000 --- a/swift/ql/lib/change-notes/2025-02-11-basic-block-rename.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: deprecated ---- -* The predicates `immediatelyControls` and `controls` on the `ConditionBlock` - class have been deprecated in favor of the newly added `dominatingEdge` - predicate. diff --git a/ruby/ql/lib/change-notes/2025-02-11-basic-block-rename.md b/swift/ql/lib/change-notes/released/4.1.0.md similarity index 84% rename from ruby/ql/lib/change-notes/2025-02-11-basic-block-rename.md rename to swift/ql/lib/change-notes/released/4.1.0.md index 9000dc09a24..1f497d8e465 100644 --- a/ruby/ql/lib/change-notes/2025-02-11-basic-block-rename.md +++ b/swift/ql/lib/change-notes/released/4.1.0.md @@ -1,6 +1,7 @@ ---- -category: deprecated ---- +## 4.1.0 + +### Deprecated APIs + * The predicates `immediatelyControls` and `controls` on the `ConditionBlock` class have been deprecated in favor of the newly added `dominatingEdge` predicate. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 49fe3eef697..d5b1bf88d10 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.0 +lastReleaseVersion: 4.1.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 50c6a60e39e..364e4012082 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 4.0.1-dev +version: 4.1.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 729baa54c4a..1c2d813af92 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.17 + +No user-facing changes. + ## 1.0.16 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.17.md b/swift/ql/src/change-notes/released/1.0.17.md new file mode 100644 index 00000000000..4180b2c20f2 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.17.md @@ -0,0 +1,3 @@ +## 1.0.17 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 25c58f4113f..a88f1245e14 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.16 +lastReleaseVersion: 1.0.17 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 58a558cd2b9..28ac1ec5181 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.17-dev +version: 1.0.17 groups: - swift - queries