Merge remote-tracking branch 'upstream/rc/3.12' into mb12

2025-12-16 16:53:25 +01:00 · 2023-12-13 15:43:39 +01:00
parent b765ba387f 96b793a877
commit 99e65df6ce
147 changed files with 366 additions and 151 deletions
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 0.12.1
 ### New Features
 * Added an `isPrototyped` predicate to `Function` that holds when the function has a prototype.
 ## 0.12.0
 ### Breaking Changes
--- a/cpp/ql/lib/change-notes/2023-11-28-prototyped.md
+++ b/cpp/ql/lib/change-notes/2023-11-28-prototyped.md
@@ -1,4 +1,5 @@
---
+## 0.12.1
-category: feature
+
---
+### New Features
 * Added an `isPrototyped` predicate to `Function` that holds when the function has a prototype.
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.12.0
+lastReleaseVersion: 0.12.1
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 0.12.1-dev
+version: 0.12.2-dev
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,13 @@
 ## 0.9.0
 ### Breaking Changes
 * The `cpp/tainted-format-string-through-global` query has been deleted. This does not lead to a loss of relevant alerts, as the query duplicated a subset of the alerts from `cpp/tainted-format-string`.
 ### New Queries
 * Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately.
 ## 0.8.3
 ### Minor Analysis Improvements
--- a/cpp/ql/src/change-notes/2023-11-28-use-of-string-after-lifetime-ends.md
+++ b/cpp/ql/src/change-notes/2023-11-28-use-of-string-after-lifetime-ends.md
@@ -1,4 +0,0 @@
 ---
 category: newQuery
 ---
 * Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately.
--- a/cpp/ql/src/change-notes/2023-11-16-tainted-format-string-through-global-deleted.md
+++ b/cpp/ql/src/change-notes/2023-11-16-tainted-format-string-through-global-deleted.md
@@ -1,4 +1,9 @@
---
+## 0.9.0
-category: breaking
+
---
+### Breaking Changes
 * The `cpp/tainted-format-string-through-global` query has been deleted. This does not lead to a loss of relevant alerts, as the query duplicated a subset of the alerts from `cpp/tainted-format-string`.
 ### New Queries
 * Added a new query, `cpp/use-of-string-after-lifetime-ends`, to detect calls to `c_str` on strings that will be destroyed immediately.
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.9.0
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 0.8.4-dev
+version: 0.9.1-dev
 groups:
  - cpp
  - queries
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.4
 No user-facing changes.
 ## 1.7.3
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.4.md
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.4.md
@@ -0,0 +1,3 @@
 ## 1.7.4
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.3
+lastReleaseVersion: 1.7.4
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.4-dev
+version: 1.7.5-dev
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.4
 No user-facing changes.
 ## 1.7.3
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.4.md
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.4.md
@@ -0,0 +1,3 @@
 ## 1.7.4
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.3
+lastReleaseVersion: 1.7.4
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.4-dev
+version: 1.7.5-dev
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.8.4
 No user-facing changes.
 ## 0.8.3
 ### Minor Analysis Improvements
--- a/csharp/ql/lib/change-notes/released/0.8.4.md
+++ b/csharp/ql/lib/change-notes/released/0.8.4.md
@@ -0,0 +1,3 @@
 ## 0.8.4
 No user-facing changes.
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`.
 ## 0.8.3
 ### Minor Analysis Improvements
--- a/csharp/ql/src/change-notes/2023-10-24-xss-flow-steps.md
+++ b/csharp/ql/src/change-notes/2023-10-24-xss-flow-steps.md
@@ -1,4 +1,5 @@
---
+## 0.8.4
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
-* Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`.
+
 * Modelled additional flow steps to track flow from a `View` call in an MVC controller to the corresponding Razor View (`.cshtml`) file, which may result in additional results for queries such as `cs/web/xss`.
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups:
  - csharp
  - queries
--- a/docs/codeql/reusables/supported-versions-compilers.rst
+++ b/docs/codeql/reusables/supported-versions-compilers.rst
@@ -24,7 +24,7 @@
   JavaScript,ECMAScript 2022 or lower,Not applicable,"``.js``, ``.jsx``, ``.mjs``, ``.es``, ``.es6``, ``.htm``, ``.html``, ``.xhtm``, ``.xhtml``, ``.vue``, ``.hbs``, ``.ejs``, ``.njk``, ``.json``, ``.yaml``, ``.yml``, ``.raml``, ``.xml`` [8]_"
   Python [9]_,"2.7, 3.5, 3.6, 3.7, 3.8, 3.9, 3.10, 3.11, 3.12",Not applicable,``.py``
   Ruby [10]_,"up to 3.2",Not applicable,"``.rb``, ``.erb``, ``.gemspec``, ``Gemfile``"
-   Swift [11]_,"Swift 5.4-5.8.1","Swift compiler","``.swift``"
+   Swift [11]_,"Swift 5.4-5.9.1","Swift compiler","``.swift``"
   TypeScript [12]_,"2.6-5.3",Standard TypeScript compiler,"``.ts``, ``.tsx``, ``.mts``, ``.cts``"
 .. container:: footnote-group
--- a/go/ql/consistency-queries/CHANGELOG.md
+++ b/go/ql/consistency-queries/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.0.3
 No user-facing changes.
 ## 0.0.2
 No user-facing changes.
--- a/go/ql/consistency-queries/change-notes/released/0.0.3.md
+++ b/go/ql/consistency-queries/change-notes/released/0.0.3.md
@@ -0,0 +1,3 @@
 ## 0.0.3
 No user-facing changes.
--- a/go/ql/consistency-queries/codeql-pack.release.yml
+++ b/go/ql/consistency-queries/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.2
+lastReleaseVersion: 0.0.3
--- a/go/ql/consistency-queries/qlpack.yml
+++ b/go/ql/consistency-queries/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 0.0.3-dev
+version: 0.0.4-dev
 groups:
  - go
  - queries
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,8 +1,14 @@
 ## 0.7.4
 ### Bug Fixes
 * A bug has been fixed that meant that value flow through a slice expression was not tracked correctly. Taint flow was tracked correctly.
 ## 0.7.3
 ### Minor Analysis Improvements
-* Added the [gin cors](https://github.com/gin-contrib/cors) library to the CorsMisconfiguration.ql query
+* Added the [gin-contrib/cors](https://github.com/gin-contrib/cors) library to the experimental query "CORS misconfiguration" (`go/cors-misconfiguration`).
 ### Bug Fixes
--- a/go/ql/lib/change-notes/2023-11-15-bug-fix-value-flow-in-slice-expression.md
+++ b/go/ql/lib/change-notes/2023-11-15-bug-fix-value-flow-in-slice-expression.md
@@ -1,4 +1,5 @@
---
+## 0.7.4
-category: fix
+
---
+### Bug Fixes
 * A bug has been fixed that meant that value flow through a slice expression was not tracked correctly. Taint flow was tracked correctly.
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.7.3
+lastReleaseVersion: 0.7.4
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 0.7.4-dev
+version: 0.7.5-dev
 groups: go
 dbscheme: go.dbscheme
 extractor: go
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.7.4
 No user-facing changes.
 ## 0.7.3
 No user-facing changes.
--- a/go/ql/src/change-notes/released/0.7.4.md
+++ b/go/ql/src/change-notes/released/0.7.4.md
@@ -0,0 +1,3 @@
 ## 0.7.4
 No user-facing changes.
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.7.3
+lastReleaseVersion: 0.7.4
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 0.7.4-dev
+version: 0.7.5-dev
 groups:
  - go
  - queries
--- a/java/ql/automodel/src/CHANGELOG.md
+++ b/java/ql/automodel/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.0.9
 No user-facing changes.
 ## 0.0.8
 No user-facing changes.
--- a/java/ql/automodel/src/change-notes/released/0.0.9.md
+++ b/java/ql/automodel/src/change-notes/released/0.0.9.md
@@ -0,0 +1,3 @@
 ## 0.0.9
 No user-facing changes.
--- a/java/ql/automodel/src/codeql-pack.release.yml
+++ b/java/ql/automodel/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.8
+lastReleaseVersion: 0.0.9
--- a/java/ql/automodel/src/qlpack.yml
+++ b/java/ql/automodel/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-automodel-queries
-version: 0.0.9-dev
+version: 0.0.10-dev
 groups:
    - java
    - automodel
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,12 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned.
 * Switch cases using binding patterns and `case null[, default]` are now supported. Classes `PatternCase` and `NullDefaultCase` are introduced to represent new kinds of case statement.
 * Both switch cases and instanceof expressions using record patterns are now supported. The new class `RecordPatternExpr` is introduced to represent record patterns, and `InstanceOfExpr` gains `getPattern` to replace `getLocalVariableDeclExpr`.
 * The control-flow graph and therefore dominance information regarding switch blocks in statement context but with an expression rule (e.g. `switch(...) { case 1 -> System.out.println("Hello world!") }`) has been fixed. This reduces false positives and negatives from various queries relating to functions featuring such statements.
 ## 0.8.3
 ### Deprecated APIs
--- a/java/ql/lib/change-notes/2023-12-04-java-successfully-extracted.md
+++ b/java/ql/lib/change-notes/2023-12-04-java-successfully-extracted.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned.
--- a/java/ql/lib/change-notes/2023-11-03-jdk21-support.md
+++ b/java/ql/lib/change-notes/2023-11-03-jdk21-support.md
@@ -1,6 +1,8 @@
---
+## 0.8.4
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * The diagnostic query `java/diagnostics/successfully-extracted-files`, and therefore the Code Scanning UI measure of scanned Java files, now considers any Java file seen during extraction, even one with some errors, to be extracted / scanned.
 * Switch cases using binding patterns and `case null[, default]` are now supported. Classes `PatternCase` and `NullDefaultCase` are introduced to represent new kinds of case statement.
 * Both switch cases and instanceof expressions using record patterns are now supported. The new class `RecordPatternExpr` is introduced to represent record patterns, and `InstanceOfExpr` gains `getPattern` to replace `getLocalVariableDeclExpr`.
 * The control-flow graph and therefore dominance information regarding switch blocks in statement context but with an expression rule (e.g. `switch(...) { case 1 -> System.out.println("Hello world!") }`) has been fixed. This reduces false positives and negatives from various queries relating to functions featuring such statements.
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.8.4
 No user-facing changes.
 ## 0.8.3
 ### Minor Analysis Improvements
--- a/java/ql/src/change-notes/released/0.8.4.md
+++ b/java/ql/src/change-notes/released/0.8.4.md
@@ -0,0 +1,3 @@
 ## 0.8.4
 No user-facing changes.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups:
  - java
  - queries
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * Added models for the `sqlite` and `better-sqlite3` npm packages.
 * TypeScript 5.3 is now supported.
 ## 0.8.3
 No user-facing changes.
--- a/javascript/ql/lib/change-notes/2023-10-12-import-attributes.md
+++ b/javascript/ql/lib/change-notes/2023-10-12-import-attributes.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * TypeScript 5.3 is now supported.
--- a/javascript/ql/lib/change-notes/2023-11-23-sqllite.md
+++ b/javascript/ql/lib/change-notes/2023-11-23-sqllite.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added models for the `sqlite` and `better-sqlite3` npm packages.
--- a/javascript/ql/lib/change-notes/released/0.8.4.md
+++ b/javascript/ql/lib/change-notes/released/0.8.4.md
@@ -0,0 +1,6 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * Added models for the `sqlite` and `better-sqlite3` npm packages.
 * TypeScript 5.3 is now supported.
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * Added django URLs to detected "safe" URL patterns in `js/unsafe-external-link`. 
 ## 0.8.3
 ### Query Metadata Changes
--- a/javascript/ql/src/change-notes/2023-11-28-django-urls.md
+++ b/javascript/ql/src/change-notes/2023-11-28-django-urls.md
@@ -1,4 +1,5 @@
---
+## 0.8.4
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Added django URLs to detected "safe" URL patterns in `js/unsafe-external-link`. 
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups:
  - javascript
  - queries
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.7.4
 No user-facing changes.
 ## 0.7.3
 No user-facing changes.
--- a/misc/suite-helpers/change-notes/released/0.7.4.md
+++ b/misc/suite-helpers/change-notes/released/0.7.4.md
@@ -0,0 +1,3 @@
 ## 0.7.4
 No user-facing changes.
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.7.3
+lastReleaseVersion: 0.7.4
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/suite-helpers
-version: 0.7.4-dev
+version: 0.7.5-dev
 groups: shared
 warnOnImplicitThis: true
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,12 @@
 ## 0.11.4
 ### Minor Analysis Improvements
 - Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided.
 * Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado.
 - Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement.
 * Added taint-flow modeling for regular expressions with `re` module from the standard library.
 ## 0.11.3
 ### Minor Analysis Improvements
--- a/python/ql/lib/change-notes/2023-11-08-re-modeling.md
+++ b/python/ql/lib/change-notes/2023-11-08-re-modeling.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added taint-flow modeling for regular expressions with `re` module from the standard library.
--- a/python/ql/lib/change-notes/2023-11-16-python-3.12-type-syntax.md
+++ b/python/ql/lib/change-notes/2023-11-16-python-3.12-type-syntax.md
@@ -1,5 +0,0 @@
 ---
 category: minorAnalysis
 ---
 - Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement.
--- a/python/ql/lib/change-notes/2023-11-21-request-handler-args-kwargs.md
+++ b/python/ql/lib/change-notes/2023-11-21-request-handler-args-kwargs.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado.
--- a/python/ql/lib/change-notes/2023-11-27-tarfile-extraction-filters.md
+++ b/python/ql/lib/change-notes/2023-11-27-tarfile-extraction-filters.md
@@ -1,5 +0,0 @@
 ---
 category: minorAnalysis
 ---
 - Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided.
--- a/python/ql/lib/change-notes/released/0.11.4.md
+++ b/python/ql/lib/change-notes/released/0.11.4.md
@@ -0,0 +1,8 @@
 ## 0.11.4
 ### Minor Analysis Improvements
 - Added support for tarfile extraction filters as defined in [PEP-706](https://peps.python.org/pep-0706). In particular, calls to `TarFile.extract`, and `TarFile.extractall` are no longer considered to be sinks for the `py/tarslip` query if a sufficiently safe filter is provided.
 * Added modeling of `*args` and `**kwargs` as routed-parameters in request handlers for django/flask/FastAPI/tornado.
 - Added support for type parameters in function and class definitions, as well as the new Python 3.12 type alias statement.
 * Added taint-flow modeling for regular expressions with `re` module from the standard library.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.11.3
+lastReleaseVersion: 0.11.4
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.11.4-dev
+version: 0.11.5-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.9.4
 No user-facing changes.
 ## 0.9.3
 ### Minor Analysis Improvements
--- a/python/ql/src/change-notes/released/0.9.4.md
+++ b/python/ql/src/change-notes/released/0.9.4.md
@@ -0,0 +1,3 @@
 ## 0.9.4
 No user-facing changes.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.9.3
+lastReleaseVersion: 0.9.4
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.9.4-dev
+version: 0.9.5-dev
 groups:
  - python
  - queries
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 0.8.4
 ### Minor Analysis Improvements
 * Improved modeling for `ActiveRecord`s `update_all` method
 ## 0.8.3
 No user-facing changes.
--- a/ruby/ql/lib/change-notes/2023-10-30-update-all.md
+++ b/ruby/ql/lib/change-notes/2023-10-30-update-all.md
@@ -1,4 +1,5 @@
---
+## 0.8.4
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Improved modeling for `ActiveRecord`s `update_all` method
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.8.4
 No user-facing changes.
 ## 0.8.3
 No user-facing changes.
--- a/ruby/ql/src/change-notes/released/0.8.4.md
+++ b/ruby/ql/src/change-notes/released/0.8.4.md
@@ -0,0 +1,3 @@
 ## 0.8.4
 No user-facing changes.
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 0.8.4-dev
+version: 0.8.5-dev
 groups:
  - ruby
  - queries
--- a/shared/controlflow/CHANGELOG.md
+++ b/shared/controlflow/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.1.4
 No user-facing changes.
 ## 0.1.3
 No user-facing changes.
--- a/shared/controlflow/change-notes/released/0.1.4.md
+++ b/shared/controlflow/change-notes/released/0.1.4.md
@@ -0,0 +1,3 @@
 ## 0.1.4
 No user-facing changes.
--- a/shared/controlflow/codeql-pack.release.yml
+++ b/shared/controlflow/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.1.3
+lastReleaseVersion: 0.1.4
--- a/shared/controlflow/qlpack.yml
+++ b/shared/controlflow/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/controlflow
-version: 0.1.4-dev
+version: 0.1.5-dev
 groups: shared
 library: true
 dependencies:
--- a/shared/dataflow/CHANGELOG.md
+++ b/shared/dataflow/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.1.4
 No user-facing changes.
 ## 0.1.3
 No user-facing changes.
--- a/shared/dataflow/change-notes/released/0.1.4.md
+++ b/shared/dataflow/change-notes/released/0.1.4.md
@@ -0,0 +1,3 @@
 ## 0.1.4
 No user-facing changes.
--- a/shared/dataflow/codeql-pack.release.yml
+++ b/shared/dataflow/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.1.3
+lastReleaseVersion: 0.1.4
--- a/shared/dataflow/qlpack.yml
+++ b/shared/dataflow/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/dataflow
-version: 0.1.4-dev
+version: 0.1.5-dev
 groups: shared
 library: true
 dependencies:
--- a/shared/mad/CHANGELOG.md
+++ b/shared/mad/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.2.4
 No user-facing changes.
 ## 0.2.3
 No user-facing changes.
--- a/shared/mad/change-notes/released/0.2.4.md
+++ b/shared/mad/change-notes/released/0.2.4.md
@@ -0,0 +1,3 @@
 ## 0.2.4
 No user-facing changes.
--- a/shared/mad/codeql-pack.release.yml
+++ b/shared/mad/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.2.3
+lastReleaseVersion: 0.2.4
--- a/shared/mad/qlpack.yml
+++ b/shared/mad/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/mad
-version: 0.2.4-dev
+version: 0.2.5-dev
 groups: shared
 library: true
 dependencies: null
--- a/shared/rangeanalysis/CHANGELOG.md
+++ b/shared/rangeanalysis/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.0.3
 No user-facing changes.
 ## 0.0.2
 No user-facing changes.
--- a/shared/rangeanalysis/change-notes/released/0.0.3.md
+++ b/shared/rangeanalysis/change-notes/released/0.0.3.md
@@ -0,0 +1,3 @@
 ## 0.0.3
 No user-facing changes.
--- a/shared/rangeanalysis/codeql-pack.release.yml
+++ b/shared/rangeanalysis/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.2
+lastReleaseVersion: 0.0.3
--- a/Show More
+++ b/Show More
`@@ -1,2 +1,2 @@`
	`---`	`---`
	`lastReleaseVersion: 0.12.0`	`lastReleaseVersion: 0.12.1`