hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 10:15:14 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9828 from github/post-release-prep/codeql-cli-2.10.1

Browse Source 
Post-release preparation for codeql-cli-2.10.1
This commit is contained in:
Asger F
2022-07-19 19:49:50 +02:00
committed by GitHub
parent 018a76bb17 b9bdee6651
commit aa53841466
76 changed files with 207 additions and 107 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
javascript/ql/lib/CHANGELOG.md
View File

@@ -1,3 +1,11 @@
## 0.2.1
### Minor Analysis Improvements
* The `chownr` library is now modeled as a sink for the `js/path-injection` query.
* Improved modeling of sensitive data sources, so common words like `certain` and `secretary` are no longer considered a certificate and a secret (respectively).
* The `gray-matter` library is now modeled as a sink for the `js/code-injection` query.
## 0.2.0
### Major Analysis Improvements

4
javascript/ql/lib/change-notes/2022-06-22-sensitive-common-words copy.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* The `gray-matter` library is now modeled as a sink for the `js/code-injection` query.

4
javascript/ql/lib/change-notes/2022-06-22-sensitive-common-words.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* Improved modeling of sensitive data sources, so common words like `certain` and `secretary` are no longer considered a certificate and a secret (respectively).

4
javascript/ql/lib/change-notes/2022-06-30-chownr.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* The `chownr` library is now modeled as a sink for the `js/path-injection` query.

7
javascript/ql/lib/change-notes/released/0.2.1.md Normal file
View File

@@ -0,0 +1,7 @@
## 0.2.1
### Minor Analysis Improvements
* The `chownr` library is now modeled as a sink for the `js/path-injection` query.
* Improved modeling of sensitive data sources, so common words like `certain` and `secretary` are no longer considered a certificate and a secret (respectively).
* The `gray-matter` library is now modeled as a sink for the `js/code-injection` query.

2
javascript/ql/lib/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.2.0
lastReleaseVersion: 0.2.1

2
javascript/ql/lib/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/javascript-all
version: 0.2.1-dev
version: 0.2.2-dev
groups: javascript
dbscheme: semmlecode.javascript.dbscheme
extractor: javascript

6
javascript/ql/src/CHANGELOG.md
View File

@@ -1,3 +1,9 @@
## 0.3.0
### Breaking Changes
* Contextual queries and the query libraries they depend on have been moved to the `codeql/javascript-all` package.
## 0.2.0
### Minor Analysis Improvements

7
javascript/ql/src/change-notes/2022-06-29-move-contextual-queries.md → javascript/ql/src/change-notes/released/0.3.0.md
View File

@@ -1,4 +1,5 @@
---
category: breaking
---
## 0.3.0
### Breaking Changes
* Contextual queries and the query libraries they depend on have been moved to the `codeql/javascript-all` package.

2
javascript/ql/src/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.2.0
lastReleaseVersion: 0.3.0

2
javascript/ql/src/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/javascript-queries
version: 0.2.1-dev
version: 0.3.1-dev
groups:
- javascript
- queries