diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 57a386082f3..9723b57f127 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. +* Deleted the deprecated `hasQualifiedName` and `isDefined` predicates from the `Declaration` class, use `hasGlobalName` and `hasDefinition` respectively instead. +* Deleted the `getFullSignature` predicate from the `Function` class, use `getIdentityString(Declaration)` from `semmle.code.cpp.Print` instead. +* Deleted the deprecated `freeCall` predicate from `Alloc.qll`. Use `DeallocationExpr` instead. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. +* Deleted the deprecated `getFieldExpr` predicate from `ClassAggregateLiteral`, use `getAFieldExpr` instead. +* Deleted the deprecated `getElementExpr` predicate from `ArrayOrVectorAggregateLiteral`, use `getAnElementExpr` instead. + +### New Features + +* Added a class `C11GenericExpr` to represent C11 generic selection expressions. The generic selection is represented as a `Conversion` on the expression that will be selected. +* Added subclasses of `BuiltInOperations` for the `__is_scoped_enum`, `__is_trivially_equality_comparable`, and `__is_trivially_relocatable` builtin operations. +* Added a subclass of `Expr` for `__datasizeof` expressions. + +### Minor Analysis Improvements + +* Added a data flow model for `swap` member functions, which were previously modeled as taint tracking functions. This change improves the precision of queries where flow through `swap` member functions might affect the results. +* Added a data flow model for `realloc`-like functions, which were previously modeled as a taint tracking functions. This change improves the precision of queries where flow through `realloc`-like functions might affect the results. + ## 1.4.2 No user-facing changes. diff --git a/cpp/ql/lib/change-notes/2024-08-28-more-builtin-operations.md b/cpp/ql/lib/change-notes/2024-08-28-more-builtin-operations.md deleted file mode 100644 index 25314598759..00000000000 --- a/cpp/ql/lib/change-notes/2024-08-28-more-builtin-operations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* Added subclasses of `BuiltInOperations` for the `__is_scoped_enum`, `__is_trivially_equality_comparable`, and `__is_trivially_relocatable` builtin operations. -* Added a subclass of `Expr` for `__datasizeof` expressions. diff --git a/cpp/ql/lib/change-notes/2024-08-30-c11-generics.md b/cpp/ql/lib/change-notes/2024-08-30-c11-generics.md deleted file mode 100644 index 29f3579090b..00000000000 --- a/cpp/ql/lib/change-notes/2024-08-30-c11-generics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added a class `C11GenericExpr` to represent C11 generic selection expressions. The generic selection is represented as a `Conversion` on the expression that will be selected. diff --git a/cpp/ql/lib/change-notes/2024-09-03-realloc-data-flow.md b/cpp/ql/lib/change-notes/2024-09-03-realloc-data-flow.md deleted file mode 100644 index 9245894c97e..00000000000 --- a/cpp/ql/lib/change-notes/2024-09-03-realloc-data-flow.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added a data flow model for `realloc`-like functions, which were previously modeled as a taint tracking functions. This change improves the precision of queries where flow through `realloc`-like functions might affect the results. diff --git a/cpp/ql/lib/change-notes/2024-09-04-swap-data-flow.md b/cpp/ql/lib/change-notes/2024-09-04-swap-data-flow.md deleted file mode 100644 index 22acd48ee32..00000000000 --- a/cpp/ql/lib/change-notes/2024-09-04-swap-data-flow.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added a data flow model for `swap` member functions, which were previously modeled as taint tracking functions. This change improves the precision of queries where flow through `swap` member functions might affect the results. diff --git a/cpp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/cpp/ql/lib/change-notes/released/2.0.0.md similarity index 50% rename from cpp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to cpp/ql/lib/change-notes/released/2.0.0.md index 9db308c5d62..cfe91793769 100644 --- a/cpp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/cpp/ql/lib/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. * Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. * Deleted the deprecated `hasQualifiedName` and `isDefined` predicates from the `Declaration` class, use `hasGlobalName` and `hasDefinition` respectively instead. @@ -9,3 +10,14 @@ category: breaking * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. * Deleted the deprecated `getFieldExpr` predicate from `ClassAggregateLiteral`, use `getAFieldExpr` instead. * Deleted the deprecated `getElementExpr` predicate from `ArrayOrVectorAggregateLiteral`, use `getAnElementExpr` instead. + +### New Features + +* Added a class `C11GenericExpr` to represent C11 generic selection expressions. The generic selection is represented as a `Conversion` on the expression that will be selected. +* Added subclasses of `BuiltInOperations` for the `__is_scoped_enum`, `__is_trivially_equality_comparable`, and `__is_trivially_relocatable` builtin operations. +* Added a subclass of `Expr` for `__datasizeof` expressions. + +### Minor Analysis Improvements + +* Added a data flow model for `swap` member functions, which were previously modeled as taint tracking functions. This change improves the precision of queries where flow through `swap` member functions might affect the results. +* Added a data flow model for `realloc`-like functions, which were previously modeled as a taint tracking functions. This change improves the precision of queries where flow through `realloc`-like functions might affect the results. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index a76cacdf799..0abe6ccede0 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.2 +lastReleaseVersion: 2.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 0e20e996039..1578fdd1075 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 1.4.3-dev +version: 2.0.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index e730f024d9c..263f96f2c43 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,11 @@ +## 1.2.3 + +### Minor Analysis Improvements + +* Removed false positives caused by buffer accesses in unreachable code +* Removed false positives caused by inconsistent type checking +* Add modeling of C functions that don't throw, thereby increasing the precision of the `cpp/incorrect-allocation-error-handling` ("Incorrect allocation-error handling") query. The query now produces additional true positives. + ## 1.2.2 No user-facing changes. diff --git a/cpp/ql/src/change-notes/2024-08-26-non-throwing-functions.md b/cpp/ql/src/change-notes/2024-08-26-non-throwing-functions.md deleted file mode 100644 index 94acaaecc81..00000000000 --- a/cpp/ql/src/change-notes/2024-08-26-non-throwing-functions.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Add modeling of C functions that don't throw, thereby increasing the precision of the `cpp/incorrect-allocation-error-handling` ("Incorrect allocation-error handling") query. The query now produces additional true positives. \ No newline at end of file diff --git a/cpp/ql/src/change-notes/2024-09-04-overflow-buffer-false-positives.md b/cpp/ql/src/change-notes/2024-09-04-overflow-buffer-false-positives.md deleted file mode 100644 index a80f3b684a0..00000000000 --- a/cpp/ql/src/change-notes/2024-09-04-overflow-buffer-false-positives.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: minorAnalysis ---- -* Removed false positives caused by buffer accesses in unreachable code -* Removed false positives caused by inconsistent type checking \ No newline at end of file diff --git a/cpp/ql/src/change-notes/released/1.2.3.md b/cpp/ql/src/change-notes/released/1.2.3.md new file mode 100644 index 00000000000..95ecb033b7a --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.2.3.md @@ -0,0 +1,7 @@ +## 1.2.3 + +### Minor Analysis Improvements + +* Removed false positives caused by buffer accesses in unreachable code +* Removed false positives caused by inconsistent type checking +* Add modeling of C functions that don't throw, thereby increasing the precision of the `cpp/incorrect-allocation-error-handling` ("Incorrect allocation-error handling") query. The query now produces additional true positives. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 0a70a9a01a7..09a7400b594 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.2 +lastReleaseVersion: 1.2.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 5867df44942..3fe178fee01 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.2.3-dev +version: 1.2.3 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 7154ccbd064..c469ca5f4ff 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.25 + +No user-facing changes. + ## 1.7.24 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.25.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.25.md new file mode 100644 index 00000000000..c47ad925d55 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.25.md @@ -0,0 +1,3 @@ +## 1.7.25 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 1949860f14b..317528bce5f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.24 +lastReleaseVersion: 1.7.25 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 92b122c328d..b81f96c712f 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.25-dev +version: 1.7.25 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 7154ccbd064..c469ca5f4ff 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.25 + +No user-facing changes. + ## 1.7.24 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.25.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.25.md new file mode 100644 index 00000000000..c47ad925d55 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.25.md @@ -0,0 +1,3 @@ +## 1.7.25 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 1949860f14b..317528bce5f 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.24 +lastReleaseVersion: 1.7.25 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index d8916ea507b..ae1e9ed3b10 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.25-dev +version: 1.7.25 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 65ed1201d93..f27c109e269 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,16 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. + +### Minor Analysis Improvements + +* Parameters of public methods in abstract controller-like classes are now considered remote flow sources. +* The reported location of `partial` methods has been changed from the definition to the implementation part. + ## 1.2.0 ### New Features diff --git a/csharp/ql/lib/change-notes/2024-08-21-abstract-asp-controller.md b/csharp/ql/lib/change-notes/2024-08-21-abstract-asp-controller.md deleted file mode 100644 index 61d4f6ec600..00000000000 --- a/csharp/ql/lib/change-notes/2024-08-21-abstract-asp-controller.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Parameters of public methods in abstract controller-like classes are now considered remote flow sources. diff --git a/csharp/ql/lib/change-notes/2024-08-21-partial-methods.md b/csharp/ql/lib/change-notes/2024-08-21-partial-methods.md deleted file mode 100644 index f750ccacf57..00000000000 --- a/csharp/ql/lib/change-notes/2024-08-21-partial-methods.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The reported location of `partial` methods has been changed from the definition to the implementation part. diff --git a/csharp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/csharp/ql/lib/change-notes/released/2.0.0.md similarity index 53% rename from csharp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to csharp/ql/lib/change-notes/released/2.0.0.md index 40571b3273e..e70aaa595dc 100644 --- a/csharp/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/csharp/ql/lib/change-notes/released/2.0.0.md @@ -1,6 +1,12 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. * Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. + +### Minor Analysis Improvements + +* Parameters of public methods in abstract controller-like classes are now considered remote flow sources. +* The reported location of `partial` methods has been changed from the definition to the implementation part. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 75430e73d1c..0abe6ccede0 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 2.0.0 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 9050a0e163e..a0fd5e17574 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 1.2.1-dev +version: 2.0.0 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index e142c33759c..c1d05cc119e 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/csharp/ql/src/change-notes/released/1.0.8.md b/csharp/ql/src/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index a7832372266..0e0b1c9bba2 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.8-dev +version: 1.0.8 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index 24ccefda4ac..7e87aa46357 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.8.md b/go/ql/consistency-queries/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 51f0d319b0d..7a6f9c01ca7 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.8-dev +version: 1.0.8 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index a93e38b2105..7545eb181fe 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. + +### Minor Analysis Improvements + +* When a function or type has more than one anonymous type parameters, they were mistakenly being treated as the same type parameter. This has now been fixed. +* Local source models for reading and parsing environment variables have been added for the following libraries: + * os + * syscall + * github.com/caarlos0/env + * github.com/gobuffalo/envy + * github.com/hashicorp/go-envparse + * github.com/joho/godotenv + * github.com/kelseyhightower/envconfig +* Local source models have been added for the APIs which open files in the `io/fs`, `io/ioutil` and `os` packages in the Go standard library. You can optionally include threat models as appropriate when using the CodeQL CLI and in GitHub code scanning. For more information, see [Analyzing your code with CodeQL queries](https://docs.github.com/code-security/codeql-cli/getting-started-with-the-codeql-cli/analyzing-your-code-with-codeql-queries#including-model-packs-to-add-potential-sources-of-tainted-data>) and [Customizing your advanced setup for code scanning](https://docs.github.com/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + +### Bug Fixes + +* Golang vendor directories not at the root of a repository are now correctly excluded from the baseline Go file count. This means code coverage information will be more accurate. + ## 1.2.0 ### Major Analysis Improvements @@ -6,18 +30,6 @@ ## 1.1.5 -### Minor Analysis Improvements - -* Local source models for reading and parsing environment variables have been added for the following libraries: - - os - - syscall - - github.com/caarlos0/env - - github.com/gobuffalo/envy - - github.com/hashicorp/go-envparse - - github.com/joho/godotenv - - github.com/kelseyhightower/envconfig -* Local source models have been added for the APIs which open files in the `io/fs`, `io/ioutil` and `os` packages in the Go standard library. You can optionally include threat models as appropriate when using the CodeQL CLI and in GitHub code scanning. For more information, see [Analyzing your code with CodeQL queries](https://docs.github.com/code-security/codeql-cli/getting-started-with-the-codeql-cli/analyzing-your-code-with-codeql-queries#including-model-packs-to-add-potential-sources-of-tainted-data>) and [Customizing your advanced setup for code scanning](https://docs.github.com/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). - ### Bug Fixes * Fixed an issue where `io/ioutil.WriteFile`'s non-path arguments incorrectly generated `go/path-injection` alerts when untrusted data was written to a file, or controlled the file's mode. diff --git a/go/ql/lib/change-notes/2024-08-20-vendor-dirs-baseline.md b/go/ql/lib/change-notes/2024-08-20-vendor-dirs-baseline.md deleted file mode 100644 index cab6b49f3ba..00000000000 --- a/go/ql/lib/change-notes/2024-08-20-vendor-dirs-baseline.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Golang vendor directories not at the root of a repository are now correctly excluded from the baseline Go file count. This means code coverage information will be more accurate. diff --git a/go/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/go/ql/lib/change-notes/2024-09-03-outdated-deprecations.md deleted file mode 100644 index 4826864fcc2..00000000000 --- a/go/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: breaking ---- -* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. -* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. diff --git a/go/ql/lib/change-notes/2024-09-10-multiple-anonymous-type-parameters.md b/go/ql/lib/change-notes/2024-09-10-multiple-anonymous-type-parameters.md deleted file mode 100644 index c768efb4021..00000000000 --- a/go/ql/lib/change-notes/2024-09-10-multiple-anonymous-type-parameters.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* When a function or type has more than one anonymous type parameters, they were mistakenly being treated as the same type parameter. This has now been fixed. diff --git a/go/ql/lib/change-notes/2024-09-03-local-threat-models-file-environment.md b/go/ql/lib/change-notes/released/2.0.0.md similarity index 61% rename from go/ql/lib/change-notes/2024-09-03-local-threat-models-file-environment.md rename to go/ql/lib/change-notes/released/2.0.0.md index 5efdd8a369e..84b2d651501 100644 --- a/go/ql/lib/change-notes/2024-09-03-local-threat-models-file-environment.md +++ b/go/ql/lib/change-notes/released/2.0.0.md @@ -1,6 +1,13 @@ ---- -category: minorAnalysis ---- +## 2.0.0 + +### Breaking Changes + +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. + +### Minor Analysis Improvements + +* When a function or type has more than one anonymous type parameters, they were mistakenly being treated as the same type parameter. This has now been fixed. * Local source models for reading and parsing environment variables have been added for the following libraries: * os * syscall @@ -10,3 +17,7 @@ category: minorAnalysis * github.com/joho/godotenv * github.com/kelseyhightower/envconfig * Local source models have been added for the APIs which open files in the `io/fs`, `io/ioutil` and `os` packages in the Go standard library. You can optionally include threat models as appropriate when using the CodeQL CLI and in GitHub code scanning. For more information, see [Analyzing your code with CodeQL queries](https://docs.github.com/code-security/codeql-cli/getting-started-with-the-codeql-cli/analyzing-your-code-with-codeql-queries#including-model-packs-to-add-potential-sources-of-tainted-data>) and [Customizing your advanced setup for code scanning](https://docs.github.com/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#extending-codeql-coverage-with-threat-models). + +### Bug Fixes + +* Golang vendor directories not at the root of a repository are now correctly excluded from the baseline Go file count. This means code coverage information will be more accurate. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 75430e73d1c..0abe6ccede0 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 2.0.0 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 36ba81549ea..053d244009d 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 1.2.1-dev +version: 2.0.0 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 8bd9c74af77..cf6d235f496 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.0.8.md b/go/ql/src/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/go/ql/src/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 4098602f073..25dcb470484 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.0.8-dev +version: 1.0.8 groups: - go - queries diff --git a/java/ql/automodel/src/CHANGELOG.md b/java/ql/automodel/src/CHANGELOG.md index ed79f424425..0a51a608913 100644 --- a/java/ql/automodel/src/CHANGELOG.md +++ b/java/ql/automodel/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/java/ql/automodel/src/change-notes/released/1.0.8.md b/java/ql/automodel/src/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/java/ql/automodel/src/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/java/ql/automodel/src/codeql-pack.release.yml b/java/ql/automodel/src/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/java/ql/automodel/src/codeql-pack.release.yml +++ b/java/ql/automodel/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 22400764258..7acc2ecfabc 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 1.0.8-dev +version: 1.0.8 groups: - java - automodel diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 0b42ca899ba..fd1639b3ca4 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,20 @@ +## 4.0.0 + +### Breaking Changes + +* Deleted the deprecated `ProcessBuilderConstructor`, `MethodProcessBuilderCommand`, and `MethodRuntimeExec` from `JDK.qll`. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. +* Deleted the deprecated `getURI` predicate from `CamelJavaDslToDecl` and `SpringCamelXmlToElement`, use `getUri` instead. +* Deleted the deprecated `ExecCallable` class from `ExternalProcess.qll`. +* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. +* Deleted the deprecated `PathCreation.qll` file. +* Deleted the deprecated `WebviewDubuggingEnabledQuery.qll` file. + +### Major Analysis Improvements + +* A generated (Models as Data) summary model is no longer used, if there exists a source code alternative. This primarily affects the analysis, when the analysis includes generated models for the source code being analysed. + ## 3.0.2 No user-facing changes. diff --git a/java/ql/lib/change-notes/2024-08-20-dataflow-dispatch.md b/java/ql/lib/change-notes/2024-08-20-dataflow-dispatch.md deleted file mode 100644 index b67cea4c8ba..00000000000 --- a/java/ql/lib/change-notes/2024-08-20-dataflow-dispatch.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* A generated (Models as Data) summary model is no longer used, if there exists a source code alternative. This primarily affects the analysis, when the analysis includes generated models for the source code being analysed. diff --git a/java/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/java/ql/lib/change-notes/released/4.0.0.md similarity index 72% rename from java/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to java/ql/lib/change-notes/released/4.0.0.md index a1477ef25ce..b3ebf7b75f8 100644 --- a/java/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/java/ql/lib/change-notes/released/4.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 4.0.0 + +### Breaking Changes + * Deleted the deprecated `ProcessBuilderConstructor`, `MethodProcessBuilderCommand`, and `MethodRuntimeExec` from `JDK.qll`. * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. * Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. @@ -9,3 +10,7 @@ category: breaking * Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. * Deleted the deprecated `PathCreation.qll` file. * Deleted the deprecated `WebviewDubuggingEnabledQuery.qll` file. + +### Major Analysis Improvements + +* A generated (Models as Data) summary model is no longer used, if there exists a source code alternative. This primarily affects the analysis, when the analysis includes generated models for the source code being analysed. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index de0e567baf7..49fe3eef697 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 3.0.2 +lastReleaseVersion: 4.0.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index b51b852c72b..272f4ea0d83 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 3.0.3-dev +version: 4.0.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index ca3d56c901b..c33e27c7b65 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.5 + +No user-facing changes. + ## 1.1.4 No user-facing changes. diff --git a/java/ql/src/change-notes/released/1.1.5.md b/java/ql/src/change-notes/released/1.1.5.md new file mode 100644 index 00000000000..11a52a121d1 --- /dev/null +++ b/java/ql/src/change-notes/released/1.1.5.md @@ -0,0 +1,3 @@ +## 1.1.5 + +No user-facing changes. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 26cbcd3f123..df39a9de059 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.4 +lastReleaseVersion: 1.1.5 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index e01e25a23fb..7a590c8cf66 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.1.5-dev +version: 1.1.5 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 10f98556522..105414b5b37 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,19 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `isHTMLElement` and `getDOMName` predicates from the JSX library, use `isHtmlElement` and `getDomName` respectively instead. +* Deleted the deprecated `getPackageJSON` predicate from the `SourceMappingComment` class, use `SourceMappingComment` instead. +* Deleted many deprecated directives from the `Stmt.qll` file, use the `Directive::` module instead. +* Deleted the deprecated `YAMLNode`, `YAMLValue`, and `YAMLScalar` classes from the YAML libraries, use `YamlNode`, `YamlValue`, and `YamlScalar` respectively instead. +* Deleted the deprecated `getARouteHandlerExpr` predicate from `Connect.qll`, use `getARouteHandlerNode` instead. +* Deleted the deprecated `getGWTVersion` predicate from `GWT.qll`, use `getGwtVersion` instead. +* Deleted the deprecated `getOwnOptionsObject` predicate from `Vue.qll`, use `getOwnOptions().getASink()` instead. + +### Major Analysis Improvements + +* Added support for TypeScript 5.6. + ## 1.1.4 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2024-09-10-support-typescript-5.6.md b/javascript/ql/lib/change-notes/2024-09-10-support-typescript-5.6.md deleted file mode 100644 index fe5dd07562d..00000000000 --- a/javascript/ql/lib/change-notes/2024-09-10-support-typescript-5.6.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Added support for TypeScript 5.6. diff --git a/javascript/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/javascript/ql/lib/change-notes/released/2.0.0.md similarity index 89% rename from javascript/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to javascript/ql/lib/change-notes/released/2.0.0.md index cb356514160..bb31589fa6e 100644 --- a/javascript/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/javascript/ql/lib/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `isHTMLElement` and `getDOMName` predicates from the JSX library, use `isHtmlElement` and `getDomName` respectively instead. * Deleted the deprecated `getPackageJSON` predicate from the `SourceMappingComment` class, use `SourceMappingComment` instead. * Deleted many deprecated directives from the `Stmt.qll` file, use the `Directive::` module instead. @@ -8,3 +9,7 @@ category: breaking * Deleted the deprecated `getARouteHandlerExpr` predicate from `Connect.qll`, use `getARouteHandlerNode` instead. * Deleted the deprecated `getGWTVersion` predicate from `GWT.qll`, use `getGwtVersion` instead. * Deleted the deprecated `getOwnOptionsObject` predicate from `Vue.qll`, use `getOwnOptions().getASink()` instead. + +### Major Analysis Improvements + +* Added support for TypeScript 5.6. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 26cbcd3f123..0abe6ccede0 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.4 +lastReleaseVersion: 2.0.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 11a92cf35c5..36483291fcf 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 1.1.5-dev +version: 2.0.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index 453400f6c99..e5f715c1430 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.0 + +### Major Analysis Improvements + +- Added a new query (`js/actions/actions-artifact-leak`) to detect GitHub Actions artifacts that may leak the GITHUB_TOKEN token. + ## 1.1.3 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2024-09-06-new-actions-artifact-leak-query.md b/javascript/ql/src/change-notes/released/1.2.0.md similarity index 75% rename from javascript/ql/src/change-notes/2024-09-06-new-actions-artifact-leak-query.md rename to javascript/ql/src/change-notes/released/1.2.0.md index 316e89aa636..d8bf15e8026 100644 --- a/javascript/ql/src/change-notes/2024-09-06-new-actions-artifact-leak-query.md +++ b/javascript/ql/src/change-notes/released/1.2.0.md @@ -1,5 +1,5 @@ ---- -category: majorAnalysis ---- +## 1.2.0 + +### Major Analysis Improvements - Added a new query (`js/actions/actions-artifact-leak`) to detect GitHub Actions artifacts that may leak the GITHUB_TOKEN token. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 35e710ab1bf..75430e73d1c 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.3 +lastReleaseVersion: 1.2.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 7cb48519f1e..1969ad4f42f 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.1.4-dev +version: 1.2.0 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 3f368cf8f84..1d5d3b7b386 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.8.md b/misc/suite-helpers/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index ddfa46f48c6..817bdef9ea1 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.8-dev +version: 1.0.8 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index dd2fb75c1d4..bd673aa9edc 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. +* Deleted the deprecated `semmle.python.RegexTreeView` module, use `semmle.python.regexp.RegexTreeView` instead. +* Deleted the deprecated `RegexString` class from `regex.qll`. +* Deleted the deprecated `Regex` class, use `RegExp` instead. +* Deleted the deprecated `semmle/python/security/SQL.qll` file. +* Deleted the deprecated `useSSL` predicates from the LDAP libraries, use `useSsl` instead. + ## 1.0.7 No user-facing changes. diff --git a/python/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/python/ql/lib/change-notes/released/2.0.0.md similarity index 89% rename from python/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to python/ql/lib/change-notes/released/2.0.0.md index cb8f4c3fbbc..8c37adb7699 100644 --- a/python/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/python/ql/lib/change-notes/released/2.0.0.md @@ -1,9 +1,10 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. * Deleted the deprecated `semmle.python.RegexTreeView` module, use `semmle.python.regexp.RegexTreeView` instead. * Deleted the deprecated `RegexString` class from `regex.qll`. * Deleted the deprecated `Regex` class, use `RegExp` instead. * Deleted the deprecated `semmle/python/security/SQL.qll` file. -* Deleted the deprecated `useSSL` predicates from the LDAP libraries, use `useSsl` instead. \ No newline at end of file +* Deleted the deprecated `useSSL` predicates from the LDAP libraries, use `useSsl` instead. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 8e3e6bf2704..0abe6ccede0 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 2.0.0 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 9eeec769fd2..d105c798364 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 1.0.8-dev +version: 2.0.0 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 7e8a937abb4..045938a0cde 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.2 + +### Minor Analysis Improvements + +* The `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data` queries have been updated to exclude the `certificate` classification of sensitive sources, which often do not contain sensitive data. + ## 1.2.1 No user-facing changes. diff --git a/python/ql/src/change-notes/2024-08-27-sensitive-certificate.md b/python/ql/src/change-notes/released/1.2.2.md similarity index 72% rename from python/ql/src/change-notes/2024-08-27-sensitive-certificate.md rename to python/ql/src/change-notes/released/1.2.2.md index eee82db8cde..045d88e8817 100644 --- a/python/ql/src/change-notes/2024-08-27-sensitive-certificate.md +++ b/python/ql/src/change-notes/released/1.2.2.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* The `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data` queries have been updated to exclude the `certificate` classification of sensitive sources, which often do not contain sensitive data. \ No newline at end of file +## 1.2.2 + +### Minor Analysis Improvements + +* The `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data` queries have been updated to exclude the `certificate` classification of sensitive sources, which often do not contain sensitive data. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 73dd403938c..0a70a9a01a7 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.1 +lastReleaseVersion: 1.2.2 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 481a5f8487d..421a68f9281 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.2.2-dev +version: 1.2.2 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 6d6e9b24591..160b3b2b6e7 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `getURL` predicate the `Http::Request` class, use `getAUrlPart` instead. +* Deleted the deprecated `getNode` predicate from the `CfgNode` class, use `getAstNode` instead. +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. +* Deleted many deprecated dataflow configurations based on `DataFlow::Configuration`. +* Deleted many deprecated taint-tracking configurations based on `TaintTracking::Configuration`. + ## 1.0.7 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/ruby/ql/lib/change-notes/released/2.0.0.md similarity index 94% rename from ruby/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to ruby/ql/lib/change-notes/released/2.0.0.md index 7f7c3258fb8..193cb4ed9b4 100644 --- a/ruby/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/ruby/ql/lib/change-notes/released/2.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `getURL` predicate the `Http::Request` class, use `getAUrlPart` instead. * Deleted the deprecated `getNode` predicate from the `CfgNode` class, use `getAstNode` instead. * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 8e3e6bf2704..0abe6ccede0 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 2.0.0 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 593c7831994..62367893472 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 1.0.8-dev +version: 2.0.0 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 7f619599591..2598b88aa0b 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.3 + +No user-facing changes. + ## 1.1.2 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.1.3.md b/ruby/ql/src/change-notes/released/1.1.3.md new file mode 100644 index 00000000000..e8f1701bd62 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.1.3.md @@ -0,0 +1,3 @@ +## 1.1.3 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 53ab127707f..35e710ab1bf 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.2 +lastReleaseVersion: 1.1.3 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 3426d3dd182..2a8ff4712fe 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.1.3-dev +version: 1.1.3 groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index d4493c3739c..15a3aca14c6 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/1.0.8.md b/shared/controlflow/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/controlflow/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 931e4b9151c..c0cdff933c2 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 039a5e64984..594e7e40d60 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.1.2 + +No user-facing changes. + ## 1.1.1 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/1.1.2.md b/shared/dataflow/change-notes/released/1.1.2.md new file mode 100644 index 00000000000..ce8d2c1a4f3 --- /dev/null +++ b/shared/dataflow/change-notes/released/1.1.2.md @@ -0,0 +1,3 @@ +## 1.1.2 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 1a19084be3f..53ab127707f 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.1 +lastReleaseVersion: 1.1.2 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 59aa412d24d..0b801b32a6c 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.1.2-dev +version: 1.1.2 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 9e75bcb94ac..74187f36112 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.8.md b/shared/mad/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/mad/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 7d0238a5875..b9fd3a4665e 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 36b62c08284..8a3b99e0bdf 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.8.md b/shared/rangeanalysis/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index d0043e103cd..728796ca12d 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 1c2e75cea47..f0b74ab2c7e 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.8.md b/shared/regex/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/regex/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 95fc7f2c29e..ea80754952a 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index be4b4647505..8d36e2ab664 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.8.md b/shared/ssa/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index d10335f9b35..b89ef470ab1 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index 24ccefda4ac..7e87aa46357 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.8.md b/shared/threat-models/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 6e3497dbf2f..a7b0bf3a10a 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.8-dev +version: 1.0.8 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 155947aac6f..93d06a2b74f 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.8.md b/shared/tutorial/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 0c37c8229ab..2e1c3fa124e 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index c2a9538abdf..de58be267d7 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.8.md b/shared/typeflow/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 8c0626758f8..a03e7c03e07 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index ae95530ab16..0135f24d76b 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/1.0.8.md b/shared/typetracking/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/typetracking/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 4701b7eadc1..cecfe169f8a 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 8215ec847f2..415174b3b07 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.8.md b/shared/typos/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/typos/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index d112a4c44f5..669e722911d 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index c37782fa16d..5213509f1c7 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/util/change-notes/released/1.0.8.md b/shared/util/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/util/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 004c7228491..fc6b8a8f13d 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 0f80db549ec..e776ce85b58 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.8.md b/shared/xml/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/xml/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index ed7bddc2682..ff4785f372f 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 59938498c11..3b774c7dc4c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.8.md b/shared/yaml/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index b3cd0b9b88c..8169e8efcf6 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.8-dev +version: 1.0.8 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index ba50f100872..07ce1b3e9de 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.0.0 + +### Breaking Changes + +* Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. +* Deleted the deprecated `getDerivedTypeDecl` predicate from the `TypeDecl` class, use `getADerivedTypeDecl` or `getABaseTypeDecl` instead. + ## 1.1.3 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2024-09-03-outdated-deprecations.md b/swift/ql/lib/change-notes/released/2.0.0.md similarity index 85% rename from swift/ql/lib/change-notes/2024-09-03-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/2.0.0.md index 2970b481c50..4bf5d2764d3 100644 --- a/swift/ql/lib/change-notes/2024-09-03-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/2.0.0.md @@ -1,5 +1,6 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Deleted the deprecated `explorationLimit` predicate from `DataFlow::Configuration`, use `FlowExploration` instead. -* Deleted the deprecated `getDerivedTypeDecl` predicate from the `TypeDecl` class, use `getADerivedTypeDecl` or `getABaseTypeDecl` instead. \ No newline at end of file +* Deleted the deprecated `getDerivedTypeDecl` predicate from the `TypeDecl` class, use `getADerivedTypeDecl` or `getABaseTypeDecl` instead. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 35e710ab1bf..0abe6ccede0 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.3 +lastReleaseVersion: 2.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 37f262ebe7d..605c23cde70 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 1.1.4-dev +version: 2.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 01de090ac17..6e8b43032bd 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.8 + +No user-facing changes. + ## 1.0.7 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.8.md b/swift/ql/src/change-notes/released/1.0.8.md new file mode 100644 index 00000000000..b3efd4f66ef --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.8.md @@ -0,0 +1,3 @@ +## 1.0.8 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 8e3e6bf2704..5c55fbd52ed 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.7 +lastReleaseVersion: 1.0.8 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 0bcbd5006a3..2fe099ff90e 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.8-dev +version: 1.0.8 groups: - swift - queries