Release preparation for version 2.20.2

2025-12-16 16:53:25 +01:00 · 2025-01-20 14:44:12 +00:00
parent 3e5707154a
commit a0512a50f2
178 changed files with 479 additions and 211 deletions
--- a/actions/ql/lib/CHANGELOG.md
+++ b/actions/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.4.1
 No user-facing changes.
 ## 0.4.0
 ### New Features
--- a/actions/ql/lib/change-notes/released/0.4.1.md
+++ b/actions/ql/lib/change-notes/released/0.4.1.md
@@ -0,0 +1,3 @@
 ## 0.4.1
 No user-facing changes.
--- a/actions/ql/lib/codeql-pack.release.yml
+++ b/actions/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.0
+lastReleaseVersion: 0.4.1
--- a/actions/ql/lib/qlpack.yml
+++ b/actions/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-all
-version: 0.4.1-dev
+version: 0.4.1
 library: true
 warnOnImplicitThis: true
 dependencies:
--- a/actions/ql/src/CHANGELOG.md
+++ b/actions/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.4.1
 No user-facing changes.
 ## 0.4.0
 ### New Queries
--- a/actions/ql/src/change-notes/released/0.4.1.md
+++ b/actions/ql/src/change-notes/released/0.4.1.md
@@ -0,0 +1,3 @@
 ## 0.4.1
 No user-facing changes.
--- a/actions/ql/src/codeql-pack.release.yml
+++ b/actions/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.0
+lastReleaseVersion: 0.4.1
--- a/actions/ql/src/qlpack.yml
+++ b/actions/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-queries
-version: 0.4.1-dev
+version: 0.4.1
 library: false
 warnOnImplicitThis: true
 groups: [actions, queries]
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,27 @@
 ## 3.2.0
 ### New Features
 * Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`.
 * A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class.
 * Template classes that are of `struct` type are now also instances of the `Struct` class.
 * Template classes that are of `union` type are now also instances of the `Union` class.
 * A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration.
 * New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses.
 * A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause.
 * A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause.
 * A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists.
 * A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates.
 * A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization.
 * A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions.
 * A new class `Concept` was introduced, which represents C++20 concepts.
 * The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts.
 * A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements.
 ### Minor Analysis Improvements
 * `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute.
 ## 3.1.0
 ### Deprecated APIs
--- a/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md
+++ b/cpp/ql/lib/change-notes/2024-01-16-consteval-if.md
@@ -1,4 +0,0 @@
 ---
 category: feature
 ---
 * A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements.
--- a/cpp/ql/lib/change-notes/2024-12-23-concept-template.md
+++ b/cpp/ql/lib/change-notes/2024-12-23-concept-template.md
@@ -1,5 +0,0 @@
 ---
 category: feature
 ---
 * A new class `Concept` was introduced, which represents C++20 concepts.
 * The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts.
--- a/cpp/ql/lib/change-notes/2024-12-24-concept-id.md
+++ b/cpp/ql/lib/change-notes/2024-12-24-concept-id.md
@@ -1,5 +0,0 @@
 ---
 category: feature
 ---
 * A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions.
--- a/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md
+++ b/cpp/ql/lib/change-notes/2024-12-25-variable-specialization.md
@@ -1,5 +0,0 @@
 ---
 category: feature
 ---
 * A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates.
 * A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization.
--- a/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md
+++ b/cpp/ql/lib/change-notes/2024-12-26-requires-clause.md
@@ -1,7 +0,0 @@
 ---
 category: feature
 ---
 * New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses.
 * A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause.
 * A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause.
 * A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists.
--- a/cpp/ql/lib/change-notes/2025-01-07-config.md
+++ b/cpp/ql/lib/change-notes/2025-01-07-config.md
@@ -1,4 +0,0 @@
 ---
 category: feature
 ---
 * A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration.
--- a/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md
+++ b/cpp/ql/lib/change-notes/2025-01-13-indirect-instruction-barrier-guard.md
@@ -1,4 +0,0 @@
 ---
 category: feature
 ---
 * Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`.
--- a/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md
+++ b/cpp/ql/lib/change-notes/2025-01-13-struct-proxy.md
@@ -1,6 +0,0 @@
 ---
 category: feature
 ---
 * A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class.
 * Template classes that are of `struct` type are now also instances of the `Struct` class.
 * Template classes that are of `union` type are now also instances of the `Union` class.
--- a/cpp/ql/lib/change-notes/2025-01-16-noreturn.md
+++ b/cpp/ql/lib/change-notes/2025-01-16-noreturn.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute.
--- a/cpp/ql/lib/change-notes/released/3.2.0.md
+++ b/cpp/ql/lib/change-notes/released/3.2.0.md
@@ -0,0 +1,23 @@
 ## 3.2.0
 ### New Features
 * Add a new predicate `getAnIndirectBarrier` to the parameterized module `InstructionBarrierGuard` in `semmle.code.cpp.dataflow.new.DataFlow` for computing indirect dataflow nodes that are guarded by a given instruction. This predicate is similar to the `getAnIndirectBarrier` predicate on the parameterized module `BarrierGuard`.
 * A new predicate `getDecltype`was added to the `ProxyClass` class, which yields the decltype for the proxy class.
 * Template classes that are of `struct` type are now also instances of the `Struct` class.
 * Template classes that are of `union` type are now also instances of the `Union` class.
 * A new abstract class `ConfigurationTestFile` (`semmle.code.cpp.ConfigurationTestFile.ConfigurationTestFile`) was introduced, which represents files created to test the build configuration. A subclass `CmakeTryCompileFile` of `ConfigurationTestFile` was also introduced, which represents files created by CMake to test the build configuration.
 * New predicates `getARequiresClause`, `getTemplateRequiresClause` and `getFunctionRequiresClause` were added to the `FunctionDeclarationEntry` class, which yield the requires clauses when the entry represents a function template declaration with requires clauses.
 * A new predicate `getRequiresClause` was added to the `TypeDeclarationEntry` class, which yields the requires clause when the entry represents a class template declaration with a requires clause.
 * A new predicate `getRequiresClause` was added to the `VariableDeclarationEntry` class, which yields the requires clause when the entry represents a variable template declaration with a requires clause.
 * A new predicate `getTypeConstraint` was added to the `TypeTemplateParameter` class, which yields the type constraint of the parameter if it exists.
 * A new class `VariableTemplateSpecialization` was introduced, which represents explicit specializations of variable templates.
 * A new predicate `isSpecialization` was added to the `Variable` class, which holds if the variable is a template specialization.
 * A new class `ConceptIdExpr` was introduced, which represents C++20 concept id expressions.
 * A new class `Concept` was introduced, which represents C++20 concepts.
 * The `getTemplateArgumentType` and `getTemplateArgumentValue` predicates of the `Declaration` class now also yield template arguments of concepts.
 * A new class `ConstevalIfStmt` was introduced, which represents the C++23 `if consteval` and `if ! consteval` statements.
 ### Minor Analysis Improvements
 * `DefaultOptions::exits` now holds for C23 functions with the `_Noreturn` or `___Noreturn__` attribute.
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 3.1.0
+lastReleaseVersion: 3.2.0
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 3.1.1-dev
+version: 3.2.0
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 1.3.2
 ### Minor Analysis Improvements
 * Added dataflow models for `SysAllocString` and related functions.
 * The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration.
 ## 1.3.1
 ### Minor Analysis Improvements
--- a/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md
+++ b/cpp/ql/src/change-notes/2025-01-09-SysAllocString.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added dataflow models for `SysAllocString` and related functions.
--- a/cpp/ql/src/change-notes/2025-01-07-cmake.md
+++ b/cpp/ql/src/change-notes/2025-01-07-cmake.md
@@ -1,4 +1,6 @@
---
+## 1.3.2
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Added dataflow models for `SysAllocString` and related functions.
 * The `cpp/badly-bounded-write`, `cpp/equality-on-floats`, `cpp/short-global-name`, `cpp/static-buffer-overflow`, `cpp/too-few-arguments`, `cpp/useless-expression`, `cpp/world-writable-file-creation` queries no longer produce alerts on files created by CMake to test the build configuration.
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.1
+lastReleaseVersion: 1.3.2
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.3.2-dev
+version: 1.3.2
 groups:
  - cpp
  - queries
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.32
 No user-facing changes.
 ## 1.7.31
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.32.md
@@ -0,0 +1,3 @@
 ## 1.7.32
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.31
+lastReleaseVersion: 1.7.32
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.32-dev
+version: 1.7.32
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.32
 No user-facing changes.
 ## 1.7.31
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.32.md
@@ -0,0 +1,3 @@
 ## 1.7.32
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.31
+lastReleaseVersion: 1.7.32
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.32-dev
+version: 1.7.32
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,11 @@
 ## 4.0.2
 ### Minor Analysis Improvements
 * Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions.
 * The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones.
 * C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`.
 ## 4.0.1
 ### Minor Analysis Improvements
--- a/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md
+++ b/csharp/ql/lib/change-notes/2025-01-03-allow-ref-struct.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`.
--- a/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md
+++ b/csharp/ql/lib/change-notes/2025-01-06-razor-relative-path.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones.
--- a/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md
+++ b/csharp/ql/lib/change-notes/2025-01-09-implicit-to-string.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions.
--- a/csharp/ql/lib/change-notes/released/4.0.2.md
+++ b/csharp/ql/lib/change-notes/released/4.0.2.md
@@ -0,0 +1,7 @@
 ## 4.0.2
 ### Minor Analysis Improvements
 * Added extractor support for extracting implicit `ToString` calls in binary `+` expressions and string interpolation expressions.
 * The Razor source generator invocation in `build-mode:none` extraction has been changed to use relative file paths instead of absolute ones.
 * C# 13: Added extractor support and call dispatch logic (data flow) for the (negative) type parameter constraint `allows ref struct`. Added extractor support for the type parameter constraint `notnull`.
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.0.1
+lastReleaseVersion: 4.0.2
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 4.0.2-dev
+version: 4.0.2
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.15
 No user-facing changes.
 ## 1.0.14
 ### Minor Analysis Improvements
--- a/csharp/ql/src/change-notes/released/1.0.15.md
+++ b/csharp/ql/src/change-notes/released/1.0.15.md
@@ -0,0 +1,3 @@
 ## 1.0.15
 No user-facing changes.
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.14
+lastReleaseVersion: 1.0.15
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.0.15-dev
+version: 1.0.15
 groups:
  - csharp
  - queries
--- a/go/ql/consistency-queries/CHANGELOG.md
+++ b/go/ql/consistency-queries/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.15
 No user-facing changes.
 ## 1.0.14
 No user-facing changes.
--- a/go/ql/consistency-queries/change-notes/released/1.0.15.md
+++ b/go/ql/consistency-queries/change-notes/released/1.0.15.md
@@ -0,0 +1,3 @@
 ## 1.0.15
 No user-facing changes.
--- a/go/ql/consistency-queries/codeql-pack.release.yml
+++ b/go/ql/consistency-queries/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.14
+lastReleaseVersion: 1.0.15
--- a/go/ql/consistency-queries/qlpack.yml
+++ b/go/ql/consistency-queries/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.15-dev
+version: 1.0.15
 groups:
  - go
  - queries
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,13 @@
 ## 3.0.2
 ### Minor Analysis Improvements
 * `database` local source models have been added for the Beego ORM package.
 * `database` local source models have been added for the `github.com/jmoiron/sqlx` package.
 * Added `database` source models for database methods from the `gorm.io/gorm` package.
 `
 * `database` local source models have been added for the `database/sql` and `database/sql/driver` packages.
 ## 3.0.1
 ### Minor Analysis Improvements
--- a/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md
+++ b/go/ql/lib/change-notes/2025-01-03-database-sql-and-database-sql-driver-source-models.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * `database` local source models have been added for the `database/sql` and `database/sql/driver` packages.
--- a/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md
+++ b/go/ql/lib/change-notes/2025-01-05-gorm-database-sources.md
@@ -1,5 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added `database` source models for database methods from the `gorm.io/gorm` package.
 `
--- a/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md
+++ b/go/ql/lib/change-notes/2025-01-07-sqlx-source-models.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * `database` local source models have been added for the `github.com/jmoiron/sqlx` package.
--- a/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md
+++ b/go/ql/lib/change-notes/2025-01-09-beego-orm-models.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * `database` local source models have been added for the Beego ORM package.
--- a/go/ql/lib/change-notes/released/3.0.2.md
+++ b/go/ql/lib/change-notes/released/3.0.2.md
@@ -0,0 +1,9 @@
 ## 3.0.2
 ### Minor Analysis Improvements
 * `database` local source models have been added for the Beego ORM package.
 * `database` local source models have been added for the `github.com/jmoiron/sqlx` package.
 * Added `database` source models for database methods from the `gorm.io/gorm` package.
 `
 * `database` local source models have been added for the `database/sql` and `database/sql/driver` packages.
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 3.0.1
+lastReleaseVersion: 3.0.2
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 3.0.2-dev
+version: 3.0.2
 groups: go
 dbscheme: go.dbscheme
 extractor: go
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.1.6
 No user-facing changes.
 ## 1.1.5
 No user-facing changes.
--- a/go/ql/src/change-notes/released/1.1.6.md
+++ b/go/ql/src/change-notes/released/1.1.6.md
@@ -0,0 +1,3 @@
 ## 1.1.6
 No user-facing changes.
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.1.5
+lastReleaseVersion: 1.1.6
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 1.1.6-dev
+version: 1.1.6
 groups:
  - go
  - queries
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,15 @@
 ## 6.1.0
 ### New Features
 * The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated.
 ### Minor Analysis Improvements
 * `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible.
 * `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`.
 * `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`.
 ## 6.0.0
 ### Breaking Changes
--- a/java/ql/lib/change-notes/2025-01-03-path-transformer.md
+++ b/java/ql/lib/change-notes/2025-01-03-path-transformer.md
@@ -1,5 +0,0 @@
 ---
 category: feature
 ---
 * The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated.
--- a/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md
+++ b/java/ql/lib/change-notes/2024-12-18-javac-tool-interception.md
@@ -1,6 +1,11 @@
---
+## 6.1.0
-category: minorAnalysis
+
---
+### New Features
 * The Java and Kotlin extractors now support `CODEQL_PATH_TRANSFORMER`. `SEMMLE_PATH_TRANSFORMER` is still supported, but deprecated.
 ### Minor Analysis Improvements
 * `JavacTool`-based compiler interception no longer requires an `--add-opens` directive when `FileObject.toUri` is accessible.
 * `JavacTool`-based compiler interception no longer throws an exception visible to the program using `JavacTool` on failure to extract a file path from a passed `JavaFileObject`.
 * `JavacTool`-based compiler interception now supports files that don't simply wrap a `file://` URL, such as a source file inside a JAR, or an in-memory file, but which do implement `getCharContent`.
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 6.0.0
+lastReleaseVersion: 6.1.0
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 6.0.1-dev
+version: 6.1.0
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 1.1.12
 ### Bug Fixes
 * Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm.
 * The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak.
 ## 1.1.11
 No user-facing changes.
--- a/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md
+++ b/java/ql/src/change-notes/2024-11-29-java-weak-crypto-algorithm-explanation.md
@@ -1,4 +0,0 @@
 ---
 category: fix
 ---
 * The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak.
--- a/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md
+++ b/java/ql/src/change-notes/2025-01-06-write-replace-serializable.md
@@ -1,4 +1,6 @@
---
+## 1.1.12
-category: fix
+
---
+### Bug Fixes
 * Classes that define a `writeReplace` method are no longer flagged by the `java/missing-no-arg-constructor-on-serializable` query on the assumption they are unlikely to be deserialized using the default algorithm.
 * The query "Use of a broken or risky cryptographic algorithm" (`java/weak-cryptographic-algorithm`) now gives the reason why the cryptographic algorithm is considered weak.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.1.11
+lastReleaseVersion: 1.1.12
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 1.1.12-dev
+version: 1.1.12
 groups:
  - java
  - queries
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,20 @@
 ## 2.3.0
 ### Deprecated APIs
 * Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a
  deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working.
  See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries).
 ### Major Analysis Improvements
 * All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript.
  This is a significant change and users may consequently observe differences in the alerts generated by the analysis.
 ### Minor Analysis Improvements
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
 ## 2.2.1
 No user-facing changes.
--- a/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md
+++ b/javascript/ql/lib/change-notes/2025-01-07-dataflow-deprecation.md
@@ -1,6 +0,0 @@
 ---
 category: deprecated
 ---
 * Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a
  deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working.
  See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries).
--- a/javascript/ql/lib/change-notes/2025-01-07-dataflow.md
+++ b/javascript/ql/lib/change-notes/2025-01-07-dataflow.md
@@ -1,5 +0,0 @@
 ---
 category: majorAnalysis
 ---
 * All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript.
  This is a significant change and users may consequently observe differences in the alerts generated by the analysis.
--- a/javascript/ql/lib/change-notes/released/2.3.0.md
+++ b/javascript/ql/lib/change-notes/released/2.3.0.md
@@ -0,0 +1,16 @@
 ## 2.3.0
 ### Deprecated APIs
 * Custom data flow queries will need to be migrated in order to use the shared data flow library. Until migrated, such queries will compile with deprecation warnings and run with a
  deprecated copy of the old data flow library. The deprecation layer will be removed in early 2026, after which any unmigrated queries will stop working.
  See more information in the [migration guide](https://codeql.github.com/docs/codeql-language-guides/migrating-javascript-dataflow-queries).
 ### Major Analysis Improvements
 * All data flow queries are now using the same underlying data flow library as the other languages analyses, replacing the old one written specifically for JavaScript/TypeScript.
  This is a significant change and users may consequently observe differences in the alerts generated by the analysis.
 ### Minor Analysis Improvements
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 2.2.1
+lastReleaseVersion: 2.3.0
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 2.2.2-dev
+version: 2.3.0
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,14 @@
 ## 1.3.0
 ### Major Analysis Improvements
 * The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates.
 ### Bug Fixes
 * Fixed a TypeScript extractor crash that would occur when encountering an export specifier
  whose local specifier was a string literal.
 ## 1.2.6
 No user-facing changes.
--- a/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md
+++ b/javascript/ql/src/change-notes/2025-01-09-angular2-xss-through-dom.md
@@ -1,4 +0,0 @@
 ---
 category: majorAnalysis
 ---
 * The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates.
--- a/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md
+++ b/javascript/ql/src/change-notes/2025-01-09-import-spec-strings.md
@@ -1,5 +0,0 @@
 ---
 category: fix
 ---
 * Fixed a TypeScript extractor crash that would occur when encountering an export specifier
  whose local specifier was a string literal.
--- a/javascript/ql/src/change-notes/released/1.3.0.md
+++ b/javascript/ql/src/change-notes/released/1.3.0.md
@@ -0,0 +1,10 @@
 ## 1.3.0
 ### Major Analysis Improvements
 * The `js/xss-through-dom` query now recognises sources of DOM input originating from Angular templates.
 ### Bug Fixes
 * Fixed a TypeScript extractor crash that would occur when encountering an export specifier
  whose local specifier was a string literal.
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.2.6
+lastReleaseVersion: 1.3.0
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 1.2.7-dev
+version: 1.3.0
 groups:
  - javascript
  - queries
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.15
 No user-facing changes.
 ## 1.0.14
 No user-facing changes.
--- a/misc/suite-helpers/change-notes/released/1.0.15.md
+++ b/misc/suite-helpers/change-notes/released/1.0.15.md
@@ -0,0 +1,3 @@
 ## 1.0.15
 No user-facing changes.
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.14
+lastReleaseVersion: 1.0.15
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/suite-helpers
-version: 1.0.15-dev
+version: 1.0.15
 groups: shared
 warnOnImplicitThis: true
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 3.1.1
 ### Minor Analysis Improvements
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
 - Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. 
 ## 3.1.0
 ### New Features
--- a/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md
+++ b/python/ql/lib/change-notes/2024-12-11-lxml-flowsteps.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 - Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. 
--- a/python/ql/lib/change-notes/2025-01-10-sensitive-data.md
+++ b/python/ql/lib/change-notes/2025-01-10-sensitive-data.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
--- a/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md
+++ b/javascript/ql/lib/change-notes/2025-01-10-sensitive-data.md
@@ -1,4 +1,6 @@
---
+## 3.1.1
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
 - Additional taint steps through methods of `lxml.etree.Element` and `lxml.etree.ElementTree` objects from the `lxml` PyPI package have been modeled. 
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 3.1.0
+lastReleaseVersion: 3.1.1
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 3.1.1-dev
+version: 3.1.1
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.4.1
 No user-facing changes.
 ## 1.4.0
 ### New Queries
--- a/python/ql/src/change-notes/released/1.4.1.md
+++ b/python/ql/src/change-notes/released/1.4.1.md
@@ -0,0 +1,3 @@
 ## 1.4.1
 No user-facing changes.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.0
+lastReleaseVersion: 1.4.1
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 1.4.1-dev
+version: 1.4.1
 groups:
  - python
  - queries
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
 ## 3.0.2
 ### Minor Analysis Improvements
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
 * Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.
 ## 3.0.1
 No user-facing changes.
--- a/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md
+++ b/ruby/ql/lib/change-notes/2025-01-10-sensitive-data.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
--- a/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md
+++ b/ruby/ql/lib/change-notes/2024-12-20-data-flow-types.md
@@ -1,4 +1,6 @@
---
+## 3.0.2
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
-* Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.
+
 * The sensitive data library has been improved so that `snake_case` style variable names are recognized more reliably. This may result in more sensitive data being identified, and more results from queries that use the sensitive data library.
 * Types are now being tracked in data flow, but only when the type of an object is obvious from the context. For example, `C.new` has guaranteed type `C`, while in `def add(x, y) { x + y }` we cannot assign a type to `x + y` (it could, for instance, be both `String` and `Integer`). Tracking types allows us to remove false-positive results when type incompatibility can be established.
--- a/Show More
+++ b/Show More
`@@ -1,2 +1,2 @@`
	`---`	`---`
	`lastReleaseVersion: 0.4.0`	`lastReleaseVersion: 0.4.1`