Release preparation for version 2.14.4

2025-12-21 19:26:31 +01:00 · 2023-09-05 16:56:14 +00:00
parent a2659eecfb
commit abf2b12b1c
142 changed files with 392 additions and 177 deletions
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
+## 0.10.4
+
+### Minor Analysis Improvements
+
+* Regular expressions containing multiple parse mode flags are now interpretted correctly. For example `"(?is)abc.*"` with both the `i` and `s` flags.
+* Added `shlex.quote` as a sanitizer for the `py/shell-command-constructed-from-input` query.
+
 ## 0.10.3

 ### Minor Analysis Improvements
--- a/python/ql/lib/change-notes/2023-07-20-shlex-quote-sanitizer.md
+++ b/python/ql/lib/change-notes/2023-07-20-shlex-quote-sanitizer.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Added `shlex.quote` as a sanitizer for the `py/shell-command-constructed-from-input` query.
--- a/python/ql/lib/change-notes/2023-07-20-regex-parse-modes.md
+++ b/python/ql/lib/change-notes/2023-07-20-regex-parse-modes.md
@@ -1,4 +1,6 @@
---
-category: minorAnalysis
---
+## 0.10.4
+
+### Minor Analysis Improvements
+
 * Regular expressions containing multiple parse mode flags are now interpretted correctly. For example `"(?is)abc.*"` with both the `i` and `s` flags.
+* Added `shlex.quote` as a sanitizer for the `py/shell-command-constructed-from-input` query.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.10.3
+lastReleaseVersion: 0.10.4
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.10.4-dev
+version: 0.10.4
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,10 @@
+## 0.8.4
+
+### Minor Analysis Improvements
+
+* Improved _Reflected server-side cross-site scripting_ (`py/reflective-xss`) query to not alert on data passed to `flask.jsonify`. Since these HTTP responses are returned with mime-type `application/json`, they do not pose a security risk for XSS.
+* Updated path explanations for `@kind path-problem` queries to always include left hand side of assignments, making paths easier to understand.
+
 ## 0.8.3

 No user-facing changes.
--- a/python/ql/src/change-notes/2023-08-17-improved-path-graph.md
+++ b/python/ql/src/change-notes/2023-08-17-improved-path-graph.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Updated path explanations for `@kind path-problem` queries to always include left hand side of assignments, making paths easier to understand.
--- a/python/ql/src/change-notes/2023-08-29-fixed-jsonify-xss-fp.md
+++ b/python/ql/src/change-notes/2023-08-29-fixed-jsonify-xss-fp.md
@@ -1,4 +1,6 @@
---
-category: minorAnalysis
---
+## 0.8.4
+
+### Minor Analysis Improvements
+
 * Improved _Reflected server-side cross-site scripting_ (`py/reflective-xss`) query to not alert on data passed to `flask.jsonify`. Since these HTTP responses are returned with mime-type `application/json`, they do not pose a security risk for XSS.
+* Updated path explanations for `@kind path-problem` queries to always include left hand side of assignments, making paths easier to understand.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.3
+lastReleaseVersion: 0.8.4
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.8.4-dev
+version: 0.8.4
 groups: 
  - python
  - queries