Merge remote-tracking branch 'upstream/main' into python-normalise-prefixes

2026-04-30 03:05:15 +02:00 · 2022-02-10 12:55:49 +01:00
parent 54ae744b2c 1a91a79b5b
commit be323bafaf
152 changed files with 14501 additions and 3161 deletions
--- a/python/ql/consistency-queries/qlpack.yml
+++ b/python/ql/consistency-queries/qlpack.yml
@@ -0,0 +1,5 @@
+name: codeql/python-consistency-queries
+groups: [python, test, consistency-queries]
+dependencies:
+    codeql/python-all: "*"
+extractor: python
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,10 @@
+## 0.0.8
+
+### Deprecated APIs
+
+* Moved the files defining regex injection configuration and customization, instead of `import semmle.python.security.injection.RegexInjection` please use `import semmle.python.security.dataflow.RegexInjection` (the same for `RegexInjectionCustomizations`).
+* The `codeql/python-upgrades` CodeQL pack has been removed. All upgrades scripts have been merged into the `codeql/python-all` CodeQL pack.
+
 ## 0.0.7

 ## 0.0.6
--- a/python/ql/lib/change-notes/2022-01-11-remove-upgrades-packs.md
+++ b/python/ql/lib/change-notes/2022-01-11-remove-upgrades-packs.md
@@ -1,4 +0,0 @@
---
-category: deprecated
---
-* The `codeql/python-upgrades` CodeQL pack has been removed. All upgrades scripts have been merged into the `codeql/python-all` CodeQL pack.
--- a/python/ql/lib/change-notes/2022-01-19-move-regex-injection.md
+++ b/python/ql/lib/change-notes/2022-01-19-move-regex-injection.md
@@ -1,4 +1,6 @@
---
-category: deprecated
---
+## 0.0.8
+
+### Deprecated APIs
+
 * Moved the files defining regex injection configuration and customization, instead of `import semmle.python.security.injection.RegexInjection` please use `import semmle.python.security.dataflow.RegexInjection` (the same for `RegexInjectionCustomizations`).
+* The `codeql/python-upgrades` CodeQL pack has been removed. All upgrades scripts have been merged into the `codeql/python-all` CodeQL pack.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.7
+lastReleaseVersion: 0.0.8
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.0.8-dev
+version: 0.0.9-dev
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.0.8
+
+### Major Analysis Improvements
+
+* User names and other account information is no longer considered to be sensitive data for the queries `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data`, since this lead to many false positives.
+
 ## 0.0.7

 ## 0.0.6
--- a/python/ql/src/change-notes/2021-01-19-remove-cleartext-fps.md
+++ b/python/ql/src/change-notes/2021-01-19-remove-cleartext-fps.md
@@ -1,4 +1,5 @@
---
-category: majorAnalysis
---
+## 0.0.8
+
+### Major Analysis Improvements
+
 * User names and other account information is no longer considered to be sensitive data for the queries `py/clear-text-logging-sensitive-data` and `py/clear-text-storage-sensitive-data`, since this lead to many false positives.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.7
+lastReleaseVersion: 0.0.8
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.0.8-dev
+version: 0.0.9-dev
 groups: 
  - python
  - queries