diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index a252887c7ab..61cbcd1318a 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.2.0 + +### New Features + +* The syntax for models-as-data rows has been extended to make it easier to select sources, sinks, and summaries that involve templated functions and classes. Additionally, the syntax has also been extended to make it easier to specify models with arbitrary levels of indirection. See `dataflow/ExternalFlow.qll` for the updated documentation and specification for the model format. +* It is now possible to extend the classes `AllocationFunction` and `DeallocationFunction` via data extensions. Extensions of these classes should be added to the `lib/ext/allocation` and `lib/ext/deallocation` directories respectively. + +### Minor Analysis Improvements + +* The queries "Potential double free" (`cpp/double-free`) and "Potential use after free" (`cpp/use-after-free`) now produce fewer false positives. +* The "Guards" library (`semmle.code.cpp.controlflow.Guards`) now also infers guards from calls to the builtin operation `__builtin_expect`. As a result, some queries may produce fewer false positives. + ## 1.1.1 No user-facing changes. diff --git a/cpp/ql/lib/change-notes/2024-06-10-builtin-expect.md b/cpp/ql/lib/change-notes/2024-06-10-builtin-expect.md deleted file mode 100644 index de577c4fb1d..00000000000 --- a/cpp/ql/lib/change-notes/2024-06-10-builtin-expect.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The "Guards" library (`semmle.code.cpp.controlflow.Guards`) now also infers guards from calls to the builtin operation `__builtin_expect`. As a result, some queries may produce fewer false positives. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2024-06-13-double-free.md b/cpp/ql/lib/change-notes/2024-06-13-double-free.md deleted file mode 100644 index 4d247444896..00000000000 --- a/cpp/ql/lib/change-notes/2024-06-13-double-free.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The queries "Potential double free" (`cpp/double-free`) and "Potential use after free" (`cpp/use-after-free`) now produce fewer false positives. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2024-06-20-extensible-allocation-deallocation.md b/cpp/ql/lib/change-notes/2024-06-20-extensible-allocation-deallocation.md deleted file mode 100644 index 9eb12841381..00000000000 --- a/cpp/ql/lib/change-notes/2024-06-20-extensible-allocation-deallocation.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* It is now possible to extend the classes `AllocationFunction` and `DeallocationFunction` via data extensions. Extensions of these classes should be added to the `lib/ext/allocation` and `lib/ext/deallocation` directories respectively. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2024-07-03-extended-mad-syntax.md b/cpp/ql/lib/change-notes/2024-07-03-extended-mad-syntax.md deleted file mode 100644 index e29106e94af..00000000000 --- a/cpp/ql/lib/change-notes/2024-07-03-extended-mad-syntax.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* The syntax for models-as-data rows has been extended to make it easier to select sources, sinks, and summaries that involve templated functions and classes. Additionally, the syntax has also been extended to make it easier to specify models with arbitrary levels of indirection. See `dataflow/ExternalFlow.qll` for the updated documentation and specification for the model format. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/1.2.0.md b/cpp/ql/lib/change-notes/released/1.2.0.md new file mode 100644 index 00000000000..40f8718a27e --- /dev/null +++ b/cpp/ql/lib/change-notes/released/1.2.0.md @@ -0,0 +1,11 @@ +## 1.2.0 + +### New Features + +* The syntax for models-as-data rows has been extended to make it easier to select sources, sinks, and summaries that involve templated functions and classes. Additionally, the syntax has also been extended to make it easier to specify models with arbitrary levels of indirection. See `dataflow/ExternalFlow.qll` for the updated documentation and specification for the model format. +* It is now possible to extend the classes `AllocationFunction` and `DeallocationFunction` via data extensions. Extensions of these classes should be added to the `lib/ext/allocation` and `lib/ext/deallocation` directories respectively. + +### Minor Analysis Improvements + +* The queries "Potential double free" (`cpp/double-free`) and "Potential use after free" (`cpp/use-after-free`) now produce fewer false positives. +* The "Guards" library (`semmle.code.cpp.controlflow.Guards`) now also infers guards from calls to the builtin operation `__builtin_expect`. As a result, some queries may produce fewer false positives. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 1a19084be3f..75430e73d1c 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.1 +lastReleaseVersion: 1.2.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 97ef52e32e1..ed373ae9678 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 1.1.2-dev +version: 1.2.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index b97d4226e1c..badaa459be1 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/cpp/ql/src/change-notes/released/1.0.3.md b/cpp/ql/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/cpp/ql/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 0b8404ea8ee..ccdcb00ec6e 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.0.3-dev +version: 1.0.3 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index a8294938701..4f04af92303 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.20 + +No user-facing changes. + ## 1.7.19 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.20.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.20.md new file mode 100644 index 00000000000..f8bdce59028 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.20.md @@ -0,0 +1,3 @@ +## 1.7.20 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index c93ed8d67b9..747131a0b2b 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.19 +lastReleaseVersion: 1.7.20 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 95fb6b6b98a..6a6776d999c 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.20-dev +version: 1.7.20 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index a8294938701..4f04af92303 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.20 + +No user-facing changes. + ## 1.7.19 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.20.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.20.md new file mode 100644 index 00000000000..f8bdce59028 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.20.md @@ -0,0 +1,3 @@ +## 1.7.20 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index c93ed8d67b9..747131a0b2b 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.19 +lastReleaseVersion: 1.7.20 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index f2c028483b0..cdeaf48373d 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.20-dev +version: 1.7.20 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index cd1d5307b89..6abef1b2c04 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/released/1.0.3.md b/csharp/ql/lib/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/csharp/ql/lib/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index bd2e4acaea5..dc15d22693b 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 1.0.3-dev +version: 1.0.3 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index fccbebebc8d..5edbf922962 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/csharp/ql/src/change-notes/released/1.0.3.md b/csharp/ql/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index d0f00f8b608..562d99ed6b8 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.0.3-dev +version: 1.0.3 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index de29ef9bd57..86a6976ddc7 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.3.md b/go/ql/consistency-queries/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index f3b56924748..9b2caee82c2 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.3-dev +version: 1.0.3 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index 0cb273eb65e..875c2809beb 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.1.2 + +### Minor Analysis Improvements + +* DataFlow queries which previously used `RemoteFlowSource` to define their sources have been modified to instead use `ThreatModelFlowSource`. This means these queries will now respect threat model configurations. The default threat model configuration is equivalent to `RemoteFlowSource`, so there should be no change in results for users using the default. +* Added the `ThreatModelFlowSource` class to `FlowSources.qll`. The `ThreatModelFlowSource` class can be used to include sources which match the current *threat model* configuration. This is the first step in supporting threat modeling for Go. + +### Bug Fixes + +* Fixed dataflow via global variables other than via a direct write: for example, via a side-effect on a global, such as `io.copy(SomeGlobal, ...)` or via assignment to a field or array or slice cell of a global. This means that any data-flow query may return more results where global variables are involved. + ## 1.1.1 No user-facing changes. diff --git a/go/ql/lib/change-notes/2024-06-06-add-go-threatmodelflowsource.md b/go/ql/lib/change-notes/2024-06-06-add-go-threatmodelflowsource.md deleted file mode 100644 index 79df4cbc188..00000000000 --- a/go/ql/lib/change-notes/2024-06-06-add-go-threatmodelflowsource.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added the `ThreatModelFlowSource` class to `FlowSources.qll`. The `ThreatModelFlowSource` class can be used to include sources which match the current *threat model* configuration. This is the first step in supporting threat modeling for Go. diff --git a/go/ql/lib/change-notes/2024-06-08-refactor-go-queries-to-use-threatmodelflowsource.md b/go/ql/lib/change-notes/2024-06-08-refactor-go-queries-to-use-threatmodelflowsource.md deleted file mode 100644 index 19285a4ab33..00000000000 --- a/go/ql/lib/change-notes/2024-06-08-refactor-go-queries-to-use-threatmodelflowsource.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* DataFlow queries which previously used `RemoteFlowSource` to define their sources have been modified to instead use `ThreatModelFlowSource`. This means these queries will now respect threat model configurations. The default threat model configuration is equivalent to `RemoteFlowSource`, so there should be no change in results for users using the default. diff --git a/go/ql/lib/change-notes/2024-06-17-go-global-variable-writes.md b/go/ql/lib/change-notes/2024-06-17-go-global-variable-writes.md deleted file mode 100644 index 16eb555ae37..00000000000 --- a/go/ql/lib/change-notes/2024-06-17-go-global-variable-writes.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed dataflow via global variables other than via a direct write: for example, via a side-effect on a global, such as `io.copy(SomeGlobal, ...)` or via assignment to a field or array or slice cell of a global. This means that any data-flow query may return more results where global variables are involved. diff --git a/go/ql/lib/change-notes/released/1.1.2.md b/go/ql/lib/change-notes/released/1.1.2.md new file mode 100644 index 00000000000..c03ca71dea4 --- /dev/null +++ b/go/ql/lib/change-notes/released/1.1.2.md @@ -0,0 +1,10 @@ +## 1.1.2 + +### Minor Analysis Improvements + +* DataFlow queries which previously used `RemoteFlowSource` to define their sources have been modified to instead use `ThreatModelFlowSource`. This means these queries will now respect threat model configurations. The default threat model configuration is equivalent to `RemoteFlowSource`, so there should be no change in results for users using the default. +* Added the `ThreatModelFlowSource` class to `FlowSources.qll`. The `ThreatModelFlowSource` class can be used to include sources which match the current *threat model* configuration. This is the first step in supporting threat modeling for Go. + +### Bug Fixes + +* Fixed dataflow via global variables other than via a direct write: for example, via a side-effect on a global, such as `io.copy(SomeGlobal, ...)` or via assignment to a field or array or slice cell of a global. This means that any data-flow query may return more results where global variables are involved. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 1a19084be3f..53ab127707f 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.1 +lastReleaseVersion: 1.1.2 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index e570f9dc14f..82ae1ba79f6 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 1.1.2-dev +version: 1.1.2 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index f84a37b640c..f02101176a9 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.0.3.md b/go/ql/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/go/ql/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 3f1df753f57..e8de1b21f50 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.0.3-dev +version: 1.0.3 groups: - go - queries diff --git a/java/ql/automodel/src/CHANGELOG.md b/java/ql/automodel/src/CHANGELOG.md index eaf8408339a..6e2e78d0a63 100644 --- a/java/ql/automodel/src/CHANGELOG.md +++ b/java/ql/automodel/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/java/ql/automodel/src/change-notes/released/1.0.3.md b/java/ql/automodel/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/java/ql/automodel/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/java/ql/automodel/src/codeql-pack.release.yml b/java/ql/automodel/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/java/ql/automodel/src/codeql-pack.release.yml +++ b/java/ql/automodel/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/java/ql/automodel/src/qlpack.yml b/java/ql/automodel/src/qlpack.yml index 46727957ba4..de3831046f1 100644 --- a/java/ql/automodel/src/qlpack.yml +++ b/java/ql/automodel/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-automodel-queries -version: 1.0.3-dev +version: 1.0.3 groups: - java - automodel diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 3f44eccebf7..d4ceec95093 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,25 @@ +## 1.1.2 + +### Minor Analysis Improvements + +* Added models for the following packages: + + * io.undertow.server.handlers.resource + * jakarta.faces.context + * javax.faces.context + * javax.servlet + * org.jboss.vfs + * org.springframework.core.io +* A bug has been fixed in the heuristic identification of uncertain control + flow, which is used to filter data flow in order to improve performance and + reduce false positives. This fix means that slightly more code is identified + and hence pruned from data flow. +* Excluded reverse DNS from the loopback address as a source of untrusted data. + +### Bug Fixes + +* Support for `codeql test run` for Kotlin sources has been fixed. + ## 1.1.1 No user-facing changes. diff --git a/java/ql/lib/change-notes/2024-06-13-kotlin-qltest-support.md b/java/ql/lib/change-notes/2024-06-13-kotlin-qltest-support.md deleted file mode 100644 index 584f512edb0..00000000000 --- a/java/ql/lib/change-notes/2024-06-13-kotlin-qltest-support.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- - -* Support for `codeql test run` for Kotlin sources has been fixed. diff --git a/java/ql/lib/change-notes/2024-06-14-exclude-loopback-from-reverse-dns.md b/java/ql/lib/change-notes/2024-06-14-exclude-loopback-from-reverse-dns.md deleted file mode 100644 index 6e2b572e169..00000000000 --- a/java/ql/lib/change-notes/2024-06-14-exclude-loopback-from-reverse-dns.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Excluded reverse DNS from the loopback address as a source of untrusted data. diff --git a/java/ql/lib/change-notes/2024-06-17-ffbl-implicit-this.md b/java/ql/lib/change-notes/2024-06-17-ffbl-implicit-this.md deleted file mode 100644 index 7d9b03812e0..00000000000 --- a/java/ql/lib/change-notes/2024-06-17-ffbl-implicit-this.md +++ /dev/null @@ -1,7 +0,0 @@ ---- -category: minorAnalysis ---- -* A bug has been fixed in the heuristic identification of uncertain control - flow, which is used to filter data flow in order to improve performance and - reduce false positives. This fix means that slightly more code is identified - and hence pruned from data flow. diff --git a/java/ql/lib/change-notes/2024-06-28-resource-models.md b/java/ql/lib/change-notes/2024-06-28-resource-models.md deleted file mode 100644 index ea4fce3300a..00000000000 --- a/java/ql/lib/change-notes/2024-06-28-resource-models.md +++ /dev/null @@ -1,11 +0,0 @@ ---- -category: minorAnalysis ---- -* Added models for the following packages: - - * io.undertow.server.handlers.resource - * jakarta.faces.context - * javax.faces.context - * javax.servlet - * org.jboss.vfs - * org.springframework.core.io diff --git a/java/ql/lib/change-notes/released/1.1.2.md b/java/ql/lib/change-notes/released/1.1.2.md new file mode 100644 index 00000000000..47d6159f408 --- /dev/null +++ b/java/ql/lib/change-notes/released/1.1.2.md @@ -0,0 +1,21 @@ +## 1.1.2 + +### Minor Analysis Improvements + +* Added models for the following packages: + + * io.undertow.server.handlers.resource + * jakarta.faces.context + * javax.faces.context + * javax.servlet + * org.jboss.vfs + * org.springframework.core.io +* A bug has been fixed in the heuristic identification of uncertain control + flow, which is used to filter data flow in order to improve performance and + reduce false positives. This fix means that slightly more code is identified + and hence pruned from data flow. +* Excluded reverse DNS from the loopback address as a source of untrusted data. + +### Bug Fixes + +* Support for `codeql test run` for Kotlin sources has been fixed. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 1a19084be3f..53ab127707f 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.1 +lastReleaseVersion: 1.1.2 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 703d8f880a0..901c4285172 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 1.1.2-dev +version: 1.1.2 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index ae0f5f7d078..30ac37246bb 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.1.0 + +### Major Analysis Improvements + +* The query `java/weak-cryptographic-algorithm` no longer alerts about `RSA/ECB` algorithm strings. + +### Minor Analysis Improvements + +* The query `java/tainted-permissions-check` now uses threat models. This means that `local` sources are no longer included by default for this query, but can be added by enabling the `local` threat model. +* Added more `org.apache.commons.io.FileUtils`-related sinks to the path injection query. + ## 1.0.2 No user-facing changes. diff --git a/java/ql/src/change-notes/2024-05-13-rsa-ecb-secure.md b/java/ql/src/change-notes/2024-05-13-rsa-ecb-secure.md deleted file mode 100644 index 32418150eb8..00000000000 --- a/java/ql/src/change-notes/2024-05-13-rsa-ecb-secure.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* The query `java/weak-cryptographic-algorithm` no longer alerts about `RSA/ECB` algorithm strings. diff --git a/java/ql/src/change-notes/2024-06-10-path-injection-fileutils-sinks.md b/java/ql/src/change-notes/2024-06-10-path-injection-fileutils-sinks.md deleted file mode 100644 index d31a34a5a37..00000000000 --- a/java/ql/src/change-notes/2024-06-10-path-injection-fileutils-sinks.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added more `org.apache.commons.io.FileUtils`-related sinks to the path injection query. diff --git a/java/ql/src/change-notes/2024-06-17-tainted-permissions-check.md b/java/ql/src/change-notes/2024-06-17-tainted-permissions-check.md deleted file mode 100644 index 3cef94d4523..00000000000 --- a/java/ql/src/change-notes/2024-06-17-tainted-permissions-check.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `java/tainted-permissions-check` now uses threat models. This means that `local` sources are no longer included by default for this query, but can be added by enabling the `local` threat model. diff --git a/java/ql/src/change-notes/released/1.1.0.md b/java/ql/src/change-notes/released/1.1.0.md new file mode 100644 index 00000000000..a67f2af7789 --- /dev/null +++ b/java/ql/src/change-notes/released/1.1.0.md @@ -0,0 +1,10 @@ +## 1.1.0 + +### Major Analysis Improvements + +* The query `java/weak-cryptographic-algorithm` no longer alerts about `RSA/ECB` algorithm strings. + +### Minor Analysis Improvements + +* The query `java/tainted-permissions-check` now uses threat models. This means that `local` sources are no longer included by default for this query, but can be added by enabling the `local` threat model. +* Added more `org.apache.commons.io.FileUtils`-related sinks to the path injection query. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 71f311e736a..2ac15439f56 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.1.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index d4a3b89250c..c457b2d0f92 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.0.3-dev +version: 1.1.0 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 6cbc4998885..c5df4d5fa27 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,14 @@ +## 1.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.5. + +### Minor Analysis Improvements + +* Enabled type-tracking to follow content through array methods +* Improved modeling of `Array.prototype.splice` for when it is called with more than two arguments + ## 1.0.2 No user-facing changes. diff --git a/javascript/ql/lib/change-notes/2024-04-26-typescript-5-5.md b/javascript/ql/lib/change-notes/2024-04-26-typescript-5-5.md deleted file mode 100644 index c6a364b8476..00000000000 --- a/javascript/ql/lib/change-notes/2024-04-26-typescript-5-5.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: majorAnalysis ---- -* Added support for TypeScript 5.5. \ No newline at end of file diff --git a/javascript/ql/lib/change-notes/2024-06-14-type-tracking-array-steps.md b/javascript/ql/lib/change-notes/released/1.1.0.md similarity index 59% rename from javascript/ql/lib/change-notes/2024-06-14-type-tracking-array-steps.md rename to javascript/ql/lib/change-notes/released/1.1.0.md index 9c1e8f8c4fb..6de964766cb 100644 --- a/javascript/ql/lib/change-notes/2024-06-14-type-tracking-array-steps.md +++ b/javascript/ql/lib/change-notes/released/1.1.0.md @@ -1,5 +1,10 @@ ---- -category: minorAnalysis ---- +## 1.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.5. + +### Minor Analysis Improvements + * Enabled type-tracking to follow content through array methods * Improved modeling of `Array.prototype.splice` for when it is called with more than two arguments diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index 71f311e736a..2ac15439f56 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.1.0 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index b8fa3d92d8e..84f0ccaa3db 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 1.0.3-dev +version: 1.1.0 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index ce964e5adc3..a3d09c1e02b 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.3 + +### Minor Analysis Improvements + +* Added a new experimental query, `js/cors-misconfiguration`, which detects misconfigured CORS HTTP headers in the `cors` and `apollo` libraries. + ## 1.0.2 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2023-11-27-cors-permissive-configuarion.md b/javascript/ql/src/change-notes/released/1.0.3.md similarity index 67% rename from javascript/ql/src/change-notes/2023-11-27-cors-permissive-configuarion.md rename to javascript/ql/src/change-notes/released/1.0.3.md index 877a54a9d8e..69103f338ed 100644 --- a/javascript/ql/src/change-notes/2023-11-27-cors-permissive-configuarion.md +++ b/javascript/ql/src/change-notes/released/1.0.3.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* Added a new experimental query, `js/cors-misconfiguration`, which detects misconfigured CORS HTTP headers in the `cors` and `apollo` libraries. \ No newline at end of file +## 1.0.3 + +### Minor Analysis Improvements + +* Added a new experimental query, `js/cors-misconfiguration`, which detects misconfigured CORS HTTP headers in the `cors` and `apollo` libraries. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 77bb6e074e9..721936f7c47 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.0.3-dev +version: 1.0.3 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index d27087d680e..d38834ba2ef 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.3.md b/misc/suite-helpers/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 7b730fb65b2..c19a393c2dc 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.3-dev +version: 1.0.3 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 84134eabfbf..65d784e6456 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.0.3 + +### Minor Analysis Improvements + +* A number of Python queries now support sinks defined using data extensions. The format of data extensions for Python has been documented. + ## 1.0.2 No user-facing changes. diff --git a/python/ql/lib/change-notes/2024-06-24-Data-extensions-supported-by-queries-and-documented.md b/python/ql/lib/change-notes/released/1.0.3.md similarity index 69% rename from python/ql/lib/change-notes/2024-06-24-Data-extensions-supported-by-queries-and-documented.md rename to python/ql/lib/change-notes/released/1.0.3.md index 5dd9256fb8d..f929ce53791 100644 --- a/python/ql/lib/change-notes/2024-06-24-Data-extensions-supported-by-queries-and-documented.md +++ b/python/ql/lib/change-notes/released/1.0.3.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* A number of Python queries now support sinks defined using data extensions. The format of data extensions for Python has been documented. \ No newline at end of file +## 1.0.3 + +### Minor Analysis Improvements + +* A number of Python queries now support sinks defined using data extensions. The format of data extensions for Python has been documented. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 03fab3501c1..8e3b586da7e 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 1.0.3-dev +version: 1.0.3 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 02af0f40d77..1015dd24144 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.0.3 + +### Minor Analysis Improvements + +* Adding Python support for Hardcoded Credentials as Models as Data +* Additional sanitizers have been added to the `py/full-ssrf` and `py/partial-ssrf` queries for methods that verify a string contains only a certain set of characters, such as `.isalnum()` as well as regular expression tests. + ## 1.0.2 No user-facing changes. diff --git a/python/ql/src/change-notes/2024-06-28-cred-hardcoded.md b/python/ql/src/change-notes/2024-06-28-cred-hardcoded.md deleted file mode 100644 index 97efe1e30a1..00000000000 --- a/python/ql/src/change-notes/2024-06-28-cred-hardcoded.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Adding Python support for Hardcoded Credentials as Models as Data \ No newline at end of file diff --git a/python/ql/src/change-notes/2024-06-04-ssrf-sanitizers.md b/python/ql/src/change-notes/released/1.0.3.md similarity index 56% rename from python/ql/src/change-notes/2024-06-04-ssrf-sanitizers.md rename to python/ql/src/change-notes/released/1.0.3.md index c55da251377..2f0cbd2e25a 100644 --- a/python/ql/src/change-notes/2024-06-04-ssrf-sanitizers.md +++ b/python/ql/src/change-notes/released/1.0.3.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- -* Additional sanitizers have been added to the `py/full-ssrf` and `py/partial-ssrf` queries for methods that verify a string contains only a certain set of characters, such as `.isalnum()` as well as regular expression tests. \ No newline at end of file +## 1.0.3 + +### Minor Analysis Improvements + +* Adding Python support for Hardcoded Credentials as Models as Data +* Additional sanitizers have been added to the `py/full-ssrf` and `py/partial-ssrf` queries for methods that verify a string contains only a certain set of characters, such as `.isalnum()` as well as regular expression tests. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 5336bbec0cd..b84fc170ba1 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.0.3-dev +version: 1.0.3 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index ea5836603a0..140cdd2cdba 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 1.0.3 + +### Minor Analysis Improvements + +* Element references with blocks, such as `foo[:bar] { |x| puts x}`, are now parsed correctly. +* The `CleartextSources.qll` library, used by `rb/clear-text-logging-sensitive-data` and `rb/clear-text-logging-sensitive-data`, has been updated to consider heuristics for additional categories of sensitive data. + ## 1.0.2 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2024-06-25-element-reference-block.md b/ruby/ql/lib/change-notes/2024-06-25-element-reference-block.md deleted file mode 100644 index 6d0bc78c91a..00000000000 --- a/ruby/ql/lib/change-notes/2024-06-25-element-reference-block.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Element references with blocks, such as `foo[:bar] { |x| puts x}`, are now parsed correctly. \ No newline at end of file diff --git a/ruby/ql/lib/change-notes/2024-05-15-cleartext-sources.md b/ruby/ql/lib/change-notes/released/1.0.3.md similarity index 54% rename from ruby/ql/lib/change-notes/2024-05-15-cleartext-sources.md rename to ruby/ql/lib/change-notes/released/1.0.3.md index 2718cb77309..01ed02bf553 100644 --- a/ruby/ql/lib/change-notes/2024-05-15-cleartext-sources.md +++ b/ruby/ql/lib/change-notes/released/1.0.3.md @@ -1,4 +1,6 @@ ---- -category: minorAnalysis ---- -* The `CleartextSources.qll` library, used by `rb/clear-text-logging-sensitive-data` and `rb/clear-text-logging-sensitive-data`, has been updated to consider heuristics for additional categories of sensitive data. \ No newline at end of file +## 1.0.3 + +### Minor Analysis Improvements + +* Element references with blocks, such as `foo[:bar] { |x| puts x}`, are now parsed correctly. +* The `CleartextSources.qll` library, used by `rb/clear-text-logging-sensitive-data` and `rb/clear-text-logging-sensitive-data`, has been updated to consider heuristics for additional categories of sensitive data. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 84a0d2ec533..8f4de8dc250 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 1.0.3-dev +version: 1.0.3 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 520f2f0981c..766deb43582 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.0.3.md b/ruby/ql/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index 5620cc6383a..0418e3e32ed 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.0.3-dev +version: 1.0.3 groups: - ruby - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 2f7faa0c8f6..dab49cbe607 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/1.0.3.md b/shared/controlflow/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/controlflow/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 8858df8badf..b04834d07e0 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index c201bb72cf1..ae88f0beac8 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/1.0.3.md b/shared/dataflow/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/dataflow/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 6dac20c04d2..3d33138d854 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 635ad99b6d3..1b49bf2fb06 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.3.md b/shared/mad/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 15a4d3b7745..ef13b3c07cc 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 49a52aad987..5093ac17ebd 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.3.md b/shared/rangeanalysis/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 8ae065fb30c..f538c353e1b 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index de5ec9835b4..bc4c3b902b9 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.3.md b/shared/regex/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index e840998229e..71afb62ea54 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 36eaf4268a3..397322fcfd8 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/ssa/change-notes/released/1.0.3.md b/shared/ssa/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/ssa/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index db33935f6d9..3200088a878 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index de29ef9bd57..86a6976ddc7 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.3.md b/shared/threat-models/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 5efea3159fd..01fdd3ca581 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.3-dev +version: 1.0.3 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 739c618db91..6212f4cebc7 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.3.md b/shared/tutorial/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index 8f935958339..926b30b00f6 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index a360d0e8a04..4cf16f9cb1e 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.3.md b/shared/typeflow/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 0ed34383944..e3cece67cbf 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 8100fa0929d..7a288c03bd9 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/1.0.3.md b/shared/typetracking/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/typetracking/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 1a2dafa79a7..85f2789a9b3 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 9c651f7a0bd..27be8dccdaa 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.3.md b/shared/typos/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 0826feee9ff..0a97f8681fd 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index d5728b70ee8..b098bee611b 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/util/change-notes/released/1.0.3.md b/shared/util/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/util/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index eab79f79f79..ebdab64c558 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 006f512ebfe..36b6e75f803 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.3.md b/shared/xml/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 4a288c4ab2a..ff110905f47 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 3b2b61803f2..49b8a5aeb8c 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.3.md b/shared/yaml/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 96748ad59a6..e426f850f7a 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.3-dev +version: 1.0.3 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 733df291ccc..0630a303d73 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/swift/ql/lib/change-notes/released/1.0.3.md b/swift/ql/lib/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/swift/ql/lib/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index e985705959b..cfc198e7e7e 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 1.0.3-dev +version: 1.0.3 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 2dee4c0c52e..f08ae688531 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.3 + +No user-facing changes. + ## 1.0.2 No user-facing changes. diff --git a/swift/ql/src/change-notes/released/1.0.3.md b/swift/ql/src/change-notes/released/1.0.3.md new file mode 100644 index 00000000000..22f372520f3 --- /dev/null +++ b/swift/ql/src/change-notes/released/1.0.3.md @@ -0,0 +1,3 @@ +## 1.0.3 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 71f311e736a..06fa75b96cb 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.2 +lastReleaseVersion: 1.0.3 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 47e9ea51f51..9cc540a7dc9 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.0.3-dev +version: 1.0.3 groups: - swift - queries