diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index cf81a85004d..39e7da98714 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.12.1 + +### New Features + +* Added an `isPrototyped` predicate to `Function` that holds when the function has a prototype. + ## 0.12.0 ### Breaking Changes diff --git a/cpp/ql/lib/change-notes/2023-11-28-prototyped.md b/cpp/ql/lib/change-notes/released/0.12.1.md similarity index 76% rename from cpp/ql/lib/change-notes/2023-11-28-prototyped.md rename to cpp/ql/lib/change-notes/released/0.12.1.md index ab438255635..c3d7c8ccfdf 100644 --- a/cpp/ql/lib/change-notes/2023-11-28-prototyped.md +++ b/cpp/ql/lib/change-notes/released/0.12.1.md @@ -1,4 +1,5 @@ ---- -category: feature ---- +## 0.12.1 + +### New Features + * Added an `isPrototyped` predicate to `Function` that holds when the function has a prototype. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 5e2fb32b059..58783ccb26c 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.12.0 +lastReleaseVersion: 0.12.1 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index a8d13434ceb..119831d6471 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 0.12.1-dev +version: 0.12.2-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index 4d374ad0ccf..c771f8bd03e 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.9.0 + +### Breaking Changes + +* The `cpp/tainted-format-string-through-global` query has been deleted. This does not lead to a loss of relevant alerts, as the query duplicated a subset of the alerts from `cpp/tainted-format-string`. + +### New Queries + +* Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately. + ## 0.8.3 ### Minor Analysis Improvements diff --git a/cpp/ql/src/change-notes/2023-11-28-use-of-string-after-lifetime-ends.md b/cpp/ql/src/change-notes/2023-11-28-use-of-string-after-lifetime-ends.md deleted file mode 100644 index 0ac80e179de..00000000000 --- a/cpp/ql/src/change-notes/2023-11-28-use-of-string-after-lifetime-ends.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately. \ No newline at end of file diff --git a/cpp/ql/src/change-notes/2023-11-16-tainted-format-string-through-global-deleted.md b/cpp/ql/src/change-notes/released/0.9.0.md similarity index 52% rename from cpp/ql/src/change-notes/2023-11-16-tainted-format-string-through-global-deleted.md rename to cpp/ql/src/change-notes/released/0.9.0.md index a4b3be355bc..b6f5efca81c 100644 --- a/cpp/ql/src/change-notes/2023-11-16-tainted-format-string-through-global-deleted.md +++ b/cpp/ql/src/change-notes/released/0.9.0.md @@ -1,4 +1,9 @@ ---- -category: breaking ---- +## 0.9.0 + +### Breaking Changes + * The `cpp/tainted-format-string-through-global` query has been deleted. This does not lead to a loss of relevant alerts, as the query duplicated a subset of the alerts from `cpp/tainted-format-string`. + +### New Queries + +* Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index b6e46394f37..8b9fc185202 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.9.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 72f1a8849e0..d6adec1bbda 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 0.8.4-dev +version: 0.9.1-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index e9d0229bf18..cebd2a51e84 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.4 + +No user-facing changes. + ## 1.7.3 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.4.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.4.md new file mode 100644 index 00000000000..801ed5f5e71 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.4.md @@ -0,0 +1,3 @@ +## 1.7.4 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 9f9661b1e77..f4f3a4d5120 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.3 +lastReleaseVersion: 1.7.4 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 5d2515728d1..affb356bca6 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.4-dev +version: 1.7.5-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index e9d0229bf18..cebd2a51e84 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.4 + +No user-facing changes. + ## 1.7.3 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.4.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.4.md new file mode 100644 index 00000000000..801ed5f5e71 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.4.md @@ -0,0 +1,3 @@ +## 1.7.4 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 9f9661b1e77..f4f3a4d5120 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.3 +lastReleaseVersion: 1.7.4 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 0f973ee2b36..0a318269550 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.4-dev +version: 1.7.5-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 5109822d6b3..09826df60f4 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.8.4 + +No user-facing changes. + ## 0.8.3 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/released/0.8.4.md b/csharp/ql/lib/change-notes/released/0.8.4.md new file mode 100644 index 00000000000..145d3b468c8 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/0.8.4.md @@ -0,0 +1,3 @@ +## 0.8.4 + +No user-facing changes. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index efbec3140c1..8cc4f6e56a9 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 0.8.4-dev +version: 0.8.5-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index 6cc567b98de..06f83675355 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`. + ## 0.8.3 ### Minor Analysis Improvements diff --git a/csharp/ql/src/change-notes/2023-10-24-xss-flow-steps.md b/csharp/ql/src/change-notes/released/0.8.4.md similarity index 75% rename from csharp/ql/src/change-notes/2023-10-24-xss-flow-steps.md rename to csharp/ql/src/change-notes/released/0.8.4.md index 19001e0df00..56259c2d6bc 100644 --- a/csharp/ql/src/change-notes/2023-10-24-xss-flow-steps.md +++ b/csharp/ql/src/change-notes/released/0.8.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`. \ No newline at end of file +## 0.8.4 + +### Minor Analysis Improvements + +* Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 28eb9007dc0..8c65f6ad44c 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 0.8.4-dev +version: 0.8.5-dev groups: - csharp - queries diff --git a/docs/codeql/reusables/supported-versions-compilers.rst b/docs/codeql/reusables/supported-versions-compilers.rst index 7fd8e4a62ef..2e55c78668b 100644 --- a/docs/codeql/reusables/supported-versions-compilers.rst +++ b/docs/codeql/reusables/supported-versions-compilers.rst @@ -24,7 +24,7 @@ JavaScript,ECMAScript 2022 or lower,Not applicable,"``.js``, ``.jsx``, ``.mjs``, ``.es``, ``.es6``, ``.htm``, ``.html``, ``.xhtm``, ``.xhtml``, ``.vue``, ``.hbs``, ``.ejs``, ``.njk``, ``.json``, ``.yaml``, ``.yml``, ``.raml``, ``.xml`` [8]_" Python [9]_,"2.7, 3.5, 3.6, 3.7, 3.8, 3.9, 3.10, 3.11, 3.12",Not applicable,``.py`` Ruby [10]_,"up to 3.2",Not applicable,"``.rb``, ``.erb``, ``.gemspec``, ``Gemfile``" - Swift [11]_,"Swift 5.4-5.8.1","Swift compiler","``.swift``" + Swift [11]_,"Swift 5.4-5.9.1","Swift compiler","``.swift``" TypeScript [12]_,"2.6-5.3",Standard TypeScript compiler,"``.ts``, ``.tsx``, ``.mts``, ``.cts``" .. container:: footnote-group diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 7668a5ba39d..d7831747b12 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.3 + +No user-facing changes. + ## 0.0.2 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/0.0.3.md b/go/ql/consistency-queries/change-notes/released/0.0.3.md new file mode 100644 index 00000000000..af7864fc7d5 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/0.0.3.md @@ -0,0 +1,3 @@ +## 0.0.3 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 55dc06fbd76..a24b693d1e7 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.2 +lastReleaseVersion: 0.0.3 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 20d0348972b..c9ca3e11a00 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 0.0.3-dev +version: 0.0.4-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 1ca530f5c03..e457697b68b 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,8 +1,14 @@ +## 0.7.4 + +### Bug Fixes + +* A bug has been fixed that meant that value flow through a slice expression was not tracked correctly. Taint flow was tracked correctly. + ## 0.7.3 ### Minor Analysis Improvements -* Added the [gin cors](https://github.com/gin-contrib/cors) library to the CorsMisconfiguration.ql query +* Added the [gin-contrib/cors](https://github.com/gin-contrib/cors) library to the experimental query "CORS misconfiguration" (`go/cors-misconfiguration`). ### Bug Fixes diff --git a/go/ql/lib/change-notes/2023-11-15-bug-fix-value-flow-in-slice-expression.md b/go/ql/lib/change-notes/released/0.7.4.md similarity index 84% rename from go/ql/lib/change-notes/2023-11-15-bug-fix-value-flow-in-slice-expression.md rename to go/ql/lib/change-notes/released/0.7.4.md index c5b717ad262..9b81ed2e473 100644 --- a/go/ql/lib/change-notes/2023-11-15-bug-fix-value-flow-in-slice-expression.md +++ b/go/ql/lib/change-notes/released/0.7.4.md @@ -1,4 +1,5 @@ ---- -category: fix ---- +## 0.7.4 + +### Bug Fixes + * A bug has been fixed that meant that value flow through a slice expression was not tracked correctly. Taint flow was tracked correctly. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index a4ea9c8de17..e388f34b4ec 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.3 +lastReleaseVersion: 0.7.4 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 6ef6b38a894..56ef80ceacf 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 0.7.4-dev +version: 0.7.5-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 6d494f4218c..b1ec0f86f3a 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.7.4 + +No user-facing changes. + ## 0.7.3 No user-facing changes. diff --git a/go/ql/src/change-notes/released/0.7.4.md b/go/ql/src/change-notes/released/0.7.4.md new file mode 100644 index 00000000000..1b33df9cb1e --- /dev/null +++ b/go/ql/src/change-notes/released/0.7.4.md @@ -0,0 +1,3 @@ +## 0.7.4 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index a4ea9c8de17..e388f34b4ec 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.3 +lastReleaseVersion: 0.7.4 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index a34d8db2fcb..06a786b8ee9 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 0.7.4-dev +version: 0.7.5-dev groups: - go - queries diff --git a/java/ql/automodel/src/CHANGELOG.md b/java/ql/automodel/src/CHANGELOG.md index e1c0a6ed461..0ca6c4f537e 100644 --- a/java/ql/automodel/src/CHANGELOG.md +++ b/java/ql/automodel/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.9 + +No user-facing changes. + ## 0.0.8 No user-facing changes. diff --git a/java/ql/automodel/src/change-notes/released/0.0.9.md b/java/ql/automodel/src/change-notes/released/0.0.9.md new file mode 100644 index 00000000000..c9e17c6d6cf --- /dev/null +++ b/java/ql/automodel/src/change-notes/released/0.0.9.md @@ -0,0 +1,3 @@ +## 0.0.9 + +No user-facing changes. diff --git a/java/ql/automodel/src/codeql-pack.release.yml b/java/ql/automodel/src/codeql-pack.release.yml index 58fdc6b45de..ecdd64fbab8 100644 --- a/java/ql/automodel/src/codeql-pack.release.yml +++ b/java/ql/automodel/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.8 +lastReleaseVersion: 0.0.9 diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 9b84f8ce097..046ab6531f2 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 0.0.9-dev +version: 0.0.10-dev groups: - java - automodel diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index ddff6b835a0..945b167bec6 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,12 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned. +* Switch cases using binding patterns and `case null[, default]` are now supported. Classes `PatternCase` and `NullDefaultCase` are introduced to represent new kinds of case statement. +* Both switch cases and instanceof expressions using record patterns are now supported. The new class `RecordPatternExpr` is introduced to represent record patterns, and `InstanceOfExpr` gains `getPattern` to replace `getLocalVariableDeclExpr`. +* The control-flow graph and therefore dominance information regarding switch blocks in statement context but with an expression rule (e.g. `switch(...) { case 1 -> System.out.println("Hello world!") }`) has been fixed. This reduces false positives and negatives from various queries relating to functions featuring such statements. + ## 0.8.3 ### Deprecated APIs diff --git a/java/ql/lib/change-notes/2023-12-04-java-successfully-extracted.md b/java/ql/lib/change-notes/2023-12-04-java-successfully-extracted.md deleted file mode 100644 index 6833e9c922d..00000000000 --- a/java/ql/lib/change-notes/2023-12-04-java-successfully-extracted.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned. diff --git a/java/ql/lib/change-notes/2023-11-03-jdk21-support.md b/java/ql/lib/change-notes/released/0.8.4.md similarity index 72% rename from java/ql/lib/change-notes/2023-11-03-jdk21-support.md rename to java/ql/lib/change-notes/released/0.8.4.md index f561b3211ca..3a2f3618d6c 100644 --- a/java/ql/lib/change-notes/2023-11-03-jdk21-support.md +++ b/java/ql/lib/change-notes/released/0.8.4.md @@ -1,6 +1,8 @@ ---- -category: minorAnalysis ---- +## 0.8.4 + +### Minor Analysis Improvements + +* The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned. * Switch cases using binding patterns and `case null[, default]` are now supported. Classes `PatternCase` and `NullDefaultCase` are introduced to represent new kinds of case statement. * Both switch cases and instanceof expressions using record patterns are now supported. The new class `RecordPatternExpr` is introduced to represent record patterns, and `InstanceOfExpr` gains `getPattern` to replace `getLocalVariableDeclExpr`. * The control-flow graph and therefore dominance information regarding switch blocks in statement context but with an expression rule (e.g. `switch(...) { case 1 -> System.out.println("Hello world!") }`) has been fixed. This reduces false positives and negatives from various queries relating to functions featuring such statements. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 311ca78d386..f5a7a85efe2 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 0.8.4-dev +version: 0.8.5-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index c5df8405eaf..3559cb95b4a 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.8.4 + +No user-facing changes. + ## 0.8.3 ### Minor Analysis Improvements diff --git a/java/ql/src/change-notes/released/0.8.4.md b/java/ql/src/change-notes/released/0.8.4.md new file mode 100644 index 00000000000..145d3b468c8 --- /dev/null +++ b/java/ql/src/change-notes/released/0.8.4.md @@ -0,0 +1,3 @@ +## 0.8.4 + +No user-facing changes. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 342a7b86be8..b37f21a5f23 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 0.8.4-dev +version: 0.8.5-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 06d738af804..b21f356f7e7 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* Added models for the `sqlite` and `better-sqlite3` npm packages. +* TypeScript 5.3 is now supported. + ## 0.8.3 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2023-10-12-import-attributes.md b/javascript/ql/lib/change-notes/2023-10-12-import-attributes.md deleted file mode 100644 index cb063d7880f..00000000000 --- a/javascript/ql/lib/change-notes/2023-10-12-import-attributes.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* TypeScript 5.3 is now supported. diff --git a/javascript/ql/lib/change-notes/2023-11-23-sqllite.md b/javascript/ql/lib/change-notes/2023-11-23-sqllite.md deleted file mode 100644 index 163a119a5ea..00000000000 --- a/javascript/ql/lib/change-notes/2023-11-23-sqllite.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added models for the `sqlite` and `better-sqlite3` npm packages. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/released/0.8.4.md b/javascript/ql/lib/change-notes/released/0.8.4.md new file mode 100644 index 00000000000..d5e7a48e81f --- /dev/null +++ b/javascript/ql/lib/change-notes/released/0.8.4.md @@ -0,0 +1,6 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* Added models for the `sqlite` and `better-sqlite3` npm packages. +* TypeScript 5.3 is now supported. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index a5890b96630..f210c4ba9f9 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 0.8.4-dev +version: 0.8.5-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index f914733ea72..2911e1f07cc 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* Added django URLs to detected "safe" URL patterns in `js/unsafe-external-link`. + ## 0.8.3 ### Query Metadata Changes diff --git a/javascript/ql/src/change-notes/2023-11-28-django-urls.md b/javascript/ql/src/change-notes/released/0.8.4.md similarity index 65% rename from javascript/ql/src/change-notes/2023-11-28-django-urls.md rename to javascript/ql/src/change-notes/released/0.8.4.md index abd4f9bad8d..761dce89a77 100644 --- a/javascript/ql/src/change-notes/2023-11-28-django-urls.md +++ b/javascript/ql/src/change-notes/released/0.8.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.8.4 + +### Minor Analysis Improvements + * Added django URLs to detected "safe" URL patterns in `js/unsafe-external-link`. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 891cb2e7c67..759a1684b19 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 0.8.4-dev +version: 0.8.5-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 7490201c7b7..fe73a080afb 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.7.4 + +No user-facing changes. + ## 0.7.3 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/0.7.4.md b/misc/suite-helpers/change-notes/released/0.7.4.md new file mode 100644 index 00000000000..1b33df9cb1e --- /dev/null +++ b/misc/suite-helpers/change-notes/released/0.7.4.md @@ -0,0 +1,3 @@ +## 0.7.4 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index a4ea9c8de17..e388f34b4ec 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.7.3 +lastReleaseVersion: 0.7.4 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 072f6352e7d..128772ab76a 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 0.7.4-dev +version: 0.7.5-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index db49fd50fe8..dfe7f2559b0 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,12 @@ +## 0.11.4 + +### Minor Analysis Improvements + +- Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided. +* Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado. +- Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement. +* Added taint-flow modeling for regular expressions with `re` module from the standard library. + ## 0.11.3 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2023-11-08-re-modeling.md b/python/ql/lib/change-notes/2023-11-08-re-modeling.md deleted file mode 100644 index 72541bd6440..00000000000 --- a/python/ql/lib/change-notes/2023-11-08-re-modeling.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added taint-flow modeling for regular expressions with `re` module from the standard library. diff --git a/python/ql/lib/change-notes/2023-11-16-python-3.12-type-syntax.md b/python/ql/lib/change-notes/2023-11-16-python-3.12-type-syntax.md deleted file mode 100644 index 345cb3b46b6..00000000000 --- a/python/ql/lib/change-notes/2023-11-16-python-3.12-type-syntax.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -- Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement. diff --git a/python/ql/lib/change-notes/2023-11-21-request-handler-args-kwargs.md b/python/ql/lib/change-notes/2023-11-21-request-handler-args-kwargs.md deleted file mode 100644 index 7215f1a2ab3..00000000000 --- a/python/ql/lib/change-notes/2023-11-21-request-handler-args-kwargs.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado. diff --git a/python/ql/lib/change-notes/2023-11-27-tarfile-extraction-filters.md b/python/ql/lib/change-notes/2023-11-27-tarfile-extraction-filters.md deleted file mode 100644 index e57b7aa9bff..00000000000 --- a/python/ql/lib/change-notes/2023-11-27-tarfile-extraction-filters.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -- Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided. diff --git a/python/ql/lib/change-notes/released/0.11.4.md b/python/ql/lib/change-notes/released/0.11.4.md new file mode 100644 index 00000000000..1f8c3596d64 --- /dev/null +++ b/python/ql/lib/change-notes/released/0.11.4.md @@ -0,0 +1,8 @@ +## 0.11.4 + +### Minor Analysis Improvements + +- Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided. +* Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado. +- Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement. +* Added taint-flow modeling for regular expressions with `re` module from the standard library. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 8f931179e87..e8259bcc88e 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.11.3 +lastReleaseVersion: 0.11.4 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index ed9fc4d0403..5e14334de1f 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 0.11.4-dev +version: 0.11.5-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 01e6844bf34..5006a5b874f 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.9.4 + +No user-facing changes. + ## 0.9.3 ### Minor Analysis Improvements diff --git a/python/ql/src/change-notes/released/0.9.4.md b/python/ql/src/change-notes/released/0.9.4.md new file mode 100644 index 00000000000..092c14cb5d4 --- /dev/null +++ b/python/ql/src/change-notes/released/0.9.4.md @@ -0,0 +1,3 @@ +## 0.9.4 + +No user-facing changes. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 7af7247cbb0..694907ca221 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.9.3 +lastReleaseVersion: 0.9.4 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 3a387d2fa3c..760131f4a63 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 0.9.4-dev +version: 0.9.5-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 618d29a5a1a..491318ac4f4 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.8.4 + +### Minor Analysis Improvements + +* Improved modeling for `ActiveRecord`s `update_all` method + ## 0.8.3 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2023-10-30-update-all.md b/ruby/ql/lib/change-notes/released/0.8.4.md similarity index 58% rename from ruby/ql/lib/change-notes/2023-10-30-update-all.md rename to ruby/ql/lib/change-notes/released/0.8.4.md index 0c754cbed4c..24a17f07c94 100644 --- a/ruby/ql/lib/change-notes/2023-10-30-update-all.md +++ b/ruby/ql/lib/change-notes/released/0.8.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.8.4 + +### Minor Analysis Improvements + * Improved modeling for `ActiveRecord`s `update_all` method diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index efeaaa5b0c9..64919a81449 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 0.8.4-dev +version: 0.8.5-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index a7876b64a41..65c057c8672 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.8.4 + +No user-facing changes. + ## 0.8.3 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/0.8.4.md b/ruby/ql/src/change-notes/released/0.8.4.md new file mode 100644 index 00000000000..145d3b468c8 --- /dev/null +++ b/ruby/ql/src/change-notes/released/0.8.4.md @@ -0,0 +1,3 @@ +## 0.8.4 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index b6e46394f37..32eff3dc9f3 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.8.3 +lastReleaseVersion: 0.8.4 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 50d1c919fce..ae6ffff8506 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 0.8.4-dev +version: 0.8.5-dev groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 0ba744652dc..2c5050cea76 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.4 + +No user-facing changes. + ## 0.1.3 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/0.1.4.md b/shared/controlflow/change-notes/released/0.1.4.md new file mode 100644 index 00000000000..a77c429adba --- /dev/null +++ b/shared/controlflow/change-notes/released/0.1.4.md @@ -0,0 +1,3 @@ +## 0.1.4 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index b79d8f9d00a..e8ee3af8ef9 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.3 +lastReleaseVersion: 0.1.4 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index a0b70716bf2..347326476a8 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 0.1.4-dev +version: 0.1.5-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index ea28f91a38b..d932505cd28 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.4 + +No user-facing changes. + ## 0.1.3 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/0.1.4.md b/shared/dataflow/change-notes/released/0.1.4.md new file mode 100644 index 00000000000..a77c429adba --- /dev/null +++ b/shared/dataflow/change-notes/released/0.1.4.md @@ -0,0 +1,3 @@ +## 0.1.4 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index b79d8f9d00a..e8ee3af8ef9 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.3 +lastReleaseVersion: 0.1.4 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 8b5d33adeb8..acb359071e4 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 0.1.4-dev +version: 0.1.5-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 5dc1b1e20b9..9dd0f451a13 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/mad/change-notes/released/0.2.4.md b/shared/mad/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/mad/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 28c21afb038..daa8bc58f66 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true dependencies: null diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 9a2809e9a9f..4992dcad49f 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.3 + +No user-facing changes. + ## 0.0.2 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/0.0.3.md b/shared/rangeanalysis/change-notes/released/0.0.3.md new file mode 100644 index 00000000000..af7864fc7d5 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/0.0.3.md @@ -0,0 +1,3 @@ +## 0.0.3 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 55dc06fbd76..a24b693d1e7 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.2 +lastReleaseVersion: 0.0.3 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 6d3be02593d..369d092a98f 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 0.0.3-dev +version: 0.0.4-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 3db30f7a258..c753fbda232 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/regex/change-notes/released/0.2.4.md b/shared/regex/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/regex/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 7f456f23dec..4567e48d59d 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index f76ca77ee08..1cd20a42e1b 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/ssa/change-notes/released/0.2.4.md b/shared/ssa/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/ssa/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 28b798b0efe..5ffdf021ecb 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 7668a5ba39d..d7831747b12 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.3 + +No user-facing changes. + ## 0.0.2 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/0.0.3.md b/shared/threat-models/change-notes/released/0.0.3.md new file mode 100644 index 00000000000..af7864fc7d5 --- /dev/null +++ b/shared/threat-models/change-notes/released/0.0.3.md @@ -0,0 +1,3 @@ +## 0.0.3 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 55dc06fbd76..a24b693d1e7 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.2 +lastReleaseVersion: 0.0.3 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 2d5653c4fc9..e96d6cf5dc4 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 0.0.3-dev +version: 0.0.4-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 6dc151cfaf4..9fa52e48055 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/0.2.4.md b/shared/tutorial/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/tutorial/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index c627c54bd03..f086872a3a9 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index a68f5d29a32..f675bfa9db2 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/0.2.4.md b/shared/typetracking/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/typetracking/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index d28fa9374bd..150d6da930c 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 246baca2b56..41d6cb49505 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/typos/change-notes/released/0.2.4.md b/shared/typos/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/typos/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 12281927264..a67d0933613 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index c407cb8f6da..f17102565c0 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/util/change-notes/released/0.2.4.md b/shared/util/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/util/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index cb8401fb73f..ac7cf912e4d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true dependencies: null diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 41d46545661..dc0dbe801be 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.2.4 + +No user-facing changes. + ## 0.2.3 No user-facing changes. diff --git a/shared/yaml/change-notes/released/0.2.4.md b/shared/yaml/change-notes/released/0.2.4.md new file mode 100644 index 00000000000..0a169ad168b --- /dev/null +++ b/shared/yaml/change-notes/released/0.2.4.md @@ -0,0 +1,3 @@ +## 0.2.4 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 0b605901b42..7f1e3841dcd 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.2.3 +lastReleaseVersion: 0.2.4 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 9499879f8b7..c3bafd4ad74 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 0.2.4-dev +version: 0.2.5-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 111e21c82d1..a74ccb93732 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,12 @@ +## 0.3.4 + +### Minor Analysis Improvements + +* Extracts Swift's `DiscardStmt` and `MaterizliePackExpr` +* Expanded and improved flow models for `Set` and `Sequence`. +* Added imprecise flow sources matching initializers such as `init(contentsOfFile:)`. +* Extracts `MacroDecl` and some related information + ## 0.3.3 ### Major Analysis Improvements diff --git a/swift/ql/lib/change-notes/2023-11-21-macros.md b/swift/ql/lib/change-notes/2023-11-21-macros.md deleted file mode 100644 index 2d581ff9a0e..00000000000 --- a/swift/ql/lib/change-notes/2023-11-21-macros.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Extracts `MacroDecl` and some related information diff --git a/swift/ql/lib/change-notes/2023-11-22-contentsof.md b/swift/ql/lib/change-notes/2023-11-22-contentsof.md deleted file mode 100644 index 6493e4c72a5..00000000000 --- a/swift/ql/lib/change-notes/2023-11-22-contentsof.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added imprecise flow sources matching initializers such as `init(contentsOfFile:)`. diff --git a/swift/ql/lib/change-notes/2023-11-24-final-swift-5.9-ast-nodes.md b/swift/ql/lib/change-notes/2023-11-24-final-swift-5.9-ast-nodes.md deleted file mode 100644 index 5580168e490..00000000000 --- a/swift/ql/lib/change-notes/2023-11-24-final-swift-5.9-ast-nodes.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Extracts Swift's `DiscardStmt` and `MaterizliePackExpr` diff --git a/swift/ql/lib/change-notes/2023-11-24-set.md b/swift/ql/lib/change-notes/2023-11-24-set.md deleted file mode 100644 index 416f8677e51..00000000000 --- a/swift/ql/lib/change-notes/2023-11-24-set.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Expanded and improved flow models for `Set` and `Sequence`. diff --git a/swift/ql/lib/change-notes/released/0.3.4.md b/swift/ql/lib/change-notes/released/0.3.4.md new file mode 100644 index 00000000000..790d9e3f2fd --- /dev/null +++ b/swift/ql/lib/change-notes/released/0.3.4.md @@ -0,0 +1,8 @@ +## 0.3.4 + +### Minor Analysis Improvements + +* Extracts Swift's `DiscardStmt` and `MaterizliePackExpr` +* Expanded and improved flow models for `Set` and `Sequence`. +* Added imprecise flow sources matching initializers such as `init(contentsOfFile:)`. +* Extracts `MacroDecl` and some related information diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 9da182d3394..5ed15c24b9c 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.3.3 +lastReleaseVersion: 0.3.4 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 14740c28d0f..23cbcdcce28 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 0.3.4-dev +version: 0.3.5-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 1b144577732..c58a186f725 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,9 +1,16 @@ +## 0.3.4 + +### Minor Analysis Improvements + +* Added additional sinks for the "Uncontrolled format string" (`swift/uncontrolled-format-string`) query. Some of these sinks are heuristic (imprecise) in nature. +* Added heuristic (imprecise) sinks for the "Database query built from user-controlled sources" (`swift/sql-injection`) query. + ## 0.3.3 ### New Queries * Added new query "System command built from user-controlled sources" (`swift/command-line-injection`) for Swift. This query detects system commands built from user-controlled sources without sufficient validation. The query was previously [contributed to the 'experimental' directory by @maikypedia](https://github.com/github/codeql/pull/13726) but will now run by default for all code scanning users. -* Added a nw query "Missing regular expression anchor" (`swift/missing-regexp-anchor`) for Swift. This query detects regular expressions without anchors that can be vulnerable to bypassing. +* Added a new query "Missing regular expression anchor" (`swift/missing-regexp-anchor`) for Swift. This query detects regular expressions without anchors that can be vulnerable to bypassing. ### Minor Analysis Improvements diff --git a/swift/ql/src/change-notes/2023-11-14-sql-injection.md b/swift/ql/src/change-notes/2023-11-14-sql-injection.md deleted file mode 100644 index d557cec1e56..00000000000 --- a/swift/ql/src/change-notes/2023-11-14-sql-injection.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -* Added heuristic (imprecise) sinks for the "Database query built from user-controlled sources" (`swift/sql-injection`) query. diff --git a/swift/ql/src/change-notes/2023-11-16-format-string.md b/swift/ql/src/change-notes/2023-11-16-format-string.md deleted file mode 100644 index d8974e5943d..00000000000 --- a/swift/ql/src/change-notes/2023-11-16-format-string.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- - -* Added additional sinks for the "Uncontrolled format string" (`swift/uncontrolled-format-string`) query. Some of these sinks are heuristic (imprecise) in nature. diff --git a/swift/ql/src/change-notes/released/0.3.4.md b/swift/ql/src/change-notes/released/0.3.4.md new file mode 100644 index 00000000000..b91445d1c29 --- /dev/null +++ b/swift/ql/src/change-notes/released/0.3.4.md @@ -0,0 +1,6 @@ +## 0.3.4 + +### Minor Analysis Improvements + +* Added additional sinks for the "Uncontrolled format string" (`swift/uncontrolled-format-string`) query. Some of these sinks are heuristic (imprecise) in nature. +* Added heuristic (imprecise) sinks for the "Database query built from user-controlled sources" (`swift/sql-injection`) query. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 9da182d3394..5ed15c24b9c 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.3.3 +lastReleaseVersion: 0.3.4 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 0662fbc54ad..0998bebd616 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 0.3.4-dev +version: 0.3.5-dev groups: - swift - queries