Merge pull request #11134 from github/post-release-prep/codeql-cli-2.11.3

Post-release preparation for codeql-cli-2.11.3
2025-12-21 03:06:31 +01:00 · 2022-11-05 13:54:49 -04:00
parent 60ac031db4 fca754bddd
commit b8e1aa67d8
82 changed files with 214 additions and 81 deletions
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.3.3
+
+No user-facing changes.
+
 ## 0.3.2

 No user-facing changes.
--- a/javascript/ql/lib/change-notes/released/0.3.3.md
+++ b/javascript/ql/lib/change-notes/released/0.3.3.md
@@ -0,0 +1,3 @@
+## 0.3.3
+
+No user-facing changes.
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.3.2
+lastReleaseVersion: 0.3.3
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 0.3.3-dev
+version: 0.3.4-dev
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,17 @@
+## 0.4.3
+
+### New Queries
+
+* Added a new query, `js/second-order-command-line-injection`, to detect shell
+  commands that may execute arbitrary code when the user has control over 
+  the arguments to a command-line program.
+  This currently flags up unsafe invocations of git and hg.
+
+### Minor Analysis Improvements
+
+* Added sources for user defined path and query parameters in `Next.js`.
+* The alert message of many queries have been changed to better follow the style guide and make the message consistent with other languages.
+
 ## 0.4.2

 ### Minor Analysis Improvements
--- a/javascript/ql/src/change-notes/2022-09-05-second-order-command-injection.md
+++ b/javascript/ql/src/change-notes/2022-09-05-second-order-command-injection.md
@@ -1,7 +0,0 @@
---
-category: newQuery
---
-* Added a new query, `js/second-order-command-line-injection`, to detect shell
-  commands that may execute arbitrary code when the user has control over 
-  the arguments to a command-line program.
-  This currently flags up unsafe invocations of git and hg.
--- a/javascript/ql/src/change-notes/2022-10-07-alert-messages.md
+++ b/javascript/ql/src/change-notes/2022-10-07-alert-messages.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The alert message of many queries have been changed to better follow the style guide and make the message consistent with other languages.
--- a/javascript/ql/src/change-notes/2022-10-26-nextjs-params.md
+++ b/javascript/ql/src/change-notes/2022-10-26-nextjs-params.md
@@ -1,5 +0,0 @@
---
-category: minorAnalysis
---
-
- Added sources for user defined path and query parameters in `Next.js`.
--- a/javascript/ql/src/change-notes/released/0.4.3.md
+++ b/javascript/ql/src/change-notes/released/0.4.3.md
@@ -0,0 +1,13 @@
+## 0.4.3
+
+### New Queries
+
+* Added a new query, `js/second-order-command-line-injection`, to detect shell
+  commands that may execute arbitrary code when the user has control over 
+  the arguments to a command-line program.
+  This currently flags up unsafe invocations of git and hg.
+
+### Minor Analysis Improvements
+
+* Added sources for user defined path and query parameters in `Next.js`.
+* The alert message of many queries have been changed to better follow the style guide and make the message consistent with other languages.
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.2
+lastReleaseVersion: 0.4.3
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 0.4.3-dev
+version: 0.4.4-dev
 groups: 
  - javascript
  - queries