hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Release preparation for version 2.20.2

Browse Source
This commit is contained in:
github-actions[bot]
2025-01-20 14:44:12 +00:00
committed by Chris Smowton
parent 3e5707154a
commit a0512a50f2
178 changed files with 479 additions and 211 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
ruby/ql/lib/CHANGELOG.md
View File

@@ -1,3 +1,10 @@
## 3.0.2
### Minor Analysis Improvements
* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.
## 3.0.1
No user-facing changes.

4
ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.

10
ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md → ruby/ql/lib/change-notes/released/3.0.2.md
View File

@@ -1,4 +1,6 @@
---
category: minorAnalysis
---
* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.
## 3.0.2
### Minor Analysis Improvements
* The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.

2
ruby/ql/lib/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 3.0.1
lastReleaseVersion: 3.0.2

2
ruby/ql/lib/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/ruby-all
version: 3.0.2-dev
version: 3.0.2
groups: ruby
extractor: ruby
dbscheme: ruby.dbscheme