Merge pull request #16330 from erik-krogh/del-deps-apr-2024

All: delete outdated deprecations

javascript/ql/lib/change-notes/2024-04-26-outdated-deprecations.md

@@ -0,0 +1,6 @@
+---
+category: breaking
+---
+* Deleted the deprecated `getInput` predicate from the `CryptographicOperation` class. Use `getAnInput` instead.
+* Deleted the deprecated `RegExpPatterns` module from `Regexp.qll`.
+* Deleted the deprecated `semmle/javascript/security/BadTagFilterQuery.qll`, `semmle/javascript/security/OverlyLargeRangeQuery.qll`, `semmle/javascript/security/regexp/RegexpMatching.qll`, and `Security/CWE-020/HostnameRegexpShared.qll` files.

javascript/ql/lib/semmle/javascript/Concepts.qll

@@ -125,16 +125,7 @@ module Cryptography {
    * extend `CryptographicOperation::Range` instead.
    */
   class CryptographicOperation extends SC::CryptographicOperation instanceof CryptographicOperation::Range
-  {
-    /**
-     * DEPRECATED. This predicate has been renamed to `getAnInput`.
-     *
-     * To implement `CryptographicOperation`, please extend
-     * `CryptographicOperation::Range` and implement `getAnInput` instead of
-     * extending this class directly.
-     */
-    deprecated final DataFlow::Node getInput() { result = this.getAnInput() }
-  }
+  { }
 
   class EncryptionAlgorithm = SC::EncryptionAlgorithm;
 

javascript/ql/lib/semmle/javascript/Regexp.qll

@@ -1022,20 +1022,6 @@ predicate isInterpretedAsRegExp(DataFlow::Node source) {
   )
 }
 
-/**
- * Provides utility predicates related to regular expressions.
- */
-deprecated module RegExpPatterns {
-  /**
-   * Gets a pattern that matches common top-level domain names in lower case.
-   * DEPRECATED: use the similarly named predicate from `HostnameRegex` from the `regex` pack instead.
-   */
-  deprecated string getACommonTld() {
-    // according to ranking by http://google.com/search?q=site:.<<TLD>>
-    result = "(?:com|org|edu|gov|uk|net|io)(?![a-z0-9])"
-  }
-}
-
 /**
  * Gets a node whose value may flow (inter-procedurally) to `re`, where it is interpreted
  * as a part of a regular expression.

javascript/ql/lib/semmle/javascript/security/BadTagFilterQuery.qll

@@ -1,8 +0,0 @@
-/**
- * Provides predicates for reasoning about bad tag filter vulnerabilities.
- */
-
-private import regexp.RegExpTreeView::RegExpTreeView as TreeView
-// BadTagFilterQuery should be used directly from the shared pack, and not from this file.
-deprecated private import codeql.regex.nfa.BadTagFilterQuery::Make<TreeView> as Dep
-import Dep

javascript/ql/lib/semmle/javascript/security/OverlyLargeRangeQuery.qll

@@ -1,8 +0,0 @@
-/**
- * Classes and predicates for working with suspicious character ranges.
- */
-
-private import regexp.RegExpTreeView::RegExpTreeView as TreeView
-// OverlyLargeRangeQuery should be used directly from the shared pack, and not from this file.
-deprecated private import codeql.regex.OverlyLargeRangeQuery::Make<TreeView> as Dep
-import Dep

javascript/ql/lib/semmle/javascript/security/regexp/RegexpMatching.qll

@@ -1,9 +0,0 @@
-/**
- * Provides predicates for reasoning about which strings are matched by a regular expression,
- * and for testing which capture groups are filled when a particular regexp matches a string.
- */
-
-private import RegExpTreeView::RegExpTreeView as TreeView
-// RegexpMatching should be used directly from the shared pack, and not from this file.
-deprecated private import codeql.regex.nfa.RegexpMatching::Make<TreeView> as Dep
-import Dep

javascript/ql/src/Security/CWE-020/HostnameRegexpShared.qll

@@ -1,7 +0,0 @@
-/**
- * Provides predicates for reasoning about regular expressions
- * that match URLs and hostname patterns.
- */
-
-deprecated import semmle.javascript.security.regexp.HostnameRegexp as Dep
-import Dep