Release preparation for version 2.18.0

2026-05-04 13:15:21 +02:00 · 2024-07-08 09:10:51 +00:00
parent 31a5a7aebc
commit b0d6778652
157 changed files with 427 additions and 168 deletions
--- a/java/ql/src/change-notes/2024-05-13-rsa-ecb-secure.md
+++ b/java/ql/src/change-notes/2024-05-13-rsa-ecb-secure.md
@@ -1,4 +0,0 @@
---
-category: majorAnalysis
---
-* The query `java/weak-cryptographic-algorithm` no longer alerts about `RSA/ECB` algorithm strings.
--- a/java/ql/src/change-notes/2024-06-10-path-injection-fileutils-sinks.md
+++ b/java/ql/src/change-notes/2024-06-10-path-injection-fileutils-sinks.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Added more `org.apache.commons.io.FileUtils`-related sinks to the path injection query.
--- a/java/ql/src/change-notes/2024-06-17-tainted-permissions-check.md
+++ b/java/ql/src/change-notes/2024-06-17-tainted-permissions-check.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The query `java/tainted-permissions-check` now uses threat models. This means that `local` sources are no longer included by default for this query, but can be added by enabling the `local` threat model.
--- a/java/ql/src/change-notes/released/1.1.0.md
+++ b/java/ql/src/change-notes/released/1.1.0.md
@@ -0,0 +1,10 @@
+## 1.1.0
+
+### Major Analysis Improvements
+
+* The query `java/weak-cryptographic-algorithm` no longer alerts about `RSA/ECB` algorithm strings.
+
+### Minor Analysis Improvements
+
+* The query `java/tainted-permissions-check` now uses threat models. This means that `local` sources are no longer included by default for this query, but can be added by enabling the `local` threat model.
+* Added more `org.apache.commons.io.FileUtils`-related sinks to the path injection query.