From bfb91e95e360bd931996e53f9eb25eddd403a99d Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Tue, 27 May 2025 17:22:05 +0000 Subject: [PATCH] Release preparation for version 2.21.4 --- actions/ql/lib/CHANGELOG.md | 4 ++++ .../ql/lib/change-notes/released/0.4.10.md | 3 +++ actions/ql/lib/codeql-pack.release.yml | 2 +- actions/ql/lib/qlpack.yml | 2 +- actions/ql/src/CHANGELOG.md | 6 +++++ .../0.6.2.md} | 7 +++--- actions/ql/src/codeql-pack.release.yml | 2 +- actions/ql/src/qlpack.yml | 2 +- cpp/ql/lib/CHANGELOG.md | 24 +++++++++++++++++++ .../2025-05-15-class-aggregate-literals.md | 4 ---- .../2025-05-16-array-aggregate-literals.md | 4 ---- .../change-notes/2025-05-16-wmain-support.md | 4 ---- ...25-05-18-2025-May-outdated-deprecations.md | 9 ------- .../2025-05-23-windows-sources.md | 6 ----- .../2025-05-27-windows-sources-2.md | 4 ---- cpp/ql/lib/change-notes/released/5.0.0.md | 23 ++++++++++++++++++ cpp/ql/lib/codeql-pack.release.yml | 2 +- cpp/ql/lib/qlpack.yml | 2 +- cpp/ql/src/CHANGELOG.md | 6 +++++ .../1.4.1.md} | 9 +++---- cpp/ql/src/codeql-pack.release.yml | 2 +- cpp/ql/src/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/lib/CHANGELOG.md | 4 ++++ .../lib/change-notes/released/1.7.41.md | 3 +++ .../Solorigate/lib/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/lib/qlpack.yml | 2 +- .../ql/campaigns/Solorigate/src/CHANGELOG.md | 4 ++++ .../src/change-notes/released/1.7.41.md | 3 +++ .../Solorigate/src/codeql-pack.release.yml | 2 +- csharp/ql/campaigns/Solorigate/src/qlpack.yml | 2 +- csharp/ql/lib/CHANGELOG.md | 6 +++++ .../5.1.7.md} | 7 +++--- csharp/ql/lib/codeql-pack.release.yml | 2 +- csharp/ql/lib/qlpack.yml | 2 +- csharp/ql/src/CHANGELOG.md | 9 +++++++ .../2025-04-10-uncontrolled-format-string.md | 4 ---- .../2025-05-15-gethashcode-is-not-defined.md | 4 ---- .../2025-05-16-hardcoded-credentials.md | 4 ---- .../2025-05-22-missed-readonly-modifier.md | 4 ---- csharp/ql/src/change-notes/released/1.2.1.md | 8 +++++++ csharp/ql/src/codeql-pack.release.yml | 2 +- csharp/ql/src/qlpack.yml | 2 +- go/ql/consistency-queries/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ .../codeql-pack.release.yml | 2 +- go/ql/consistency-queries/qlpack.yml | 2 +- go/ql/lib/CHANGELOG.md | 4 ++++ go/ql/lib/change-notes/released/4.2.6.md | 3 +++ go/ql/lib/codeql-pack.release.yml | 2 +- go/ql/lib/qlpack.yml | 2 +- go/ql/src/CHANGELOG.md | 6 +++++ .../1.2.1.md} | 7 +++--- go/ql/src/codeql-pack.release.yml | 2 +- go/ql/src/qlpack.yml | 2 +- java/ql/lib/CHANGELOG.md | 7 ++++++ ...2025-05-22-spring-request-mapping-value.md | 4 ---- .../7.3.0.md} | 8 ++++--- java/ql/lib/codeql-pack.release.yml | 2 +- java/ql/lib/qlpack.yml | 2 +- java/ql/src/CHANGELOG.md | 6 +++++ .../1.5.1.md} | 7 +++--- java/ql/src/codeql-pack.release.yml | 2 +- java/ql/src/qlpack.yml | 2 +- javascript/ql/lib/CHANGELOG.md | 6 +++++ .../2.6.4.md} | 7 +++--- javascript/ql/lib/codeql-pack.release.yml | 2 +- javascript/ql/lib/qlpack.yml | 2 +- javascript/ql/src/CHANGELOG.md | 6 +++++ .../1.6.1.md} | 7 +++--- javascript/ql/src/codeql-pack.release.yml | 2 +- javascript/ql/src/qlpack.yml | 2 +- misc/suite-helpers/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ misc/suite-helpers/codeql-pack.release.yml | 2 +- misc/suite-helpers/qlpack.yml | 2 +- python/ql/lib/CHANGELOG.md | 6 +++++ .../4.0.8.md} | 6 ++--- python/ql/lib/codeql-pack.release.yml | 2 +- python/ql/lib/qlpack.yml | 2 +- python/ql/src/CHANGELOG.md | 6 +++++ .../1.5.1.md} | 7 +++--- python/ql/src/codeql-pack.release.yml | 2 +- python/ql/src/qlpack.yml | 2 +- ruby/ql/lib/CHANGELOG.md | 12 ++++++++++ ...5-13-captured-variables-live-more-often.md | 4 ---- .../4.1.7.md} | 11 ++++++--- ruby/ql/lib/codeql-pack.release.yml | 2 +- ruby/ql/lib/qlpack.yml | 2 +- ruby/ql/src/CHANGELOG.md | 6 +++++ .../1.3.1.md} | 7 +++--- ruby/ql/src/codeql-pack.release.yml | 2 +- ruby/ql/src/qlpack.yml | 2 +- rust/ql/lib/CHANGELOG.md | 4 ++++ rust/ql/lib/change-notes/released/0.1.9.md | 3 +++ rust/ql/lib/codeql-pack.release.yml | 2 +- rust/ql/lib/qlpack.yml | 2 +- rust/ql/src/CHANGELOG.md | 4 ++++ rust/ql/src/change-notes/released/0.1.9.md | 3 +++ rust/ql/src/codeql-pack.release.yml | 2 +- rust/ql/src/qlpack.yml | 2 +- shared/controlflow/CHANGELOG.md | 4 ++++ .../change-notes/released/2.0.8.md | 3 +++ shared/controlflow/codeql-pack.release.yml | 2 +- shared/controlflow/qlpack.yml | 2 +- shared/dataflow/CHANGELOG.md | 4 ++++ .../dataflow/change-notes/released/2.0.8.md | 3 +++ shared/dataflow/codeql-pack.release.yml | 2 +- shared/dataflow/qlpack.yml | 2 +- shared/mad/CHANGELOG.md | 4 ++++ shared/mad/change-notes/released/1.0.24.md | 3 +++ shared/mad/codeql-pack.release.yml | 2 +- shared/mad/qlpack.yml | 2 +- shared/quantum/CHANGELOG.md | 4 ++++ shared/quantum/change-notes/released/0.0.2.md | 3 +++ shared/quantum/codeql-pack.release.yml | 2 +- shared/quantum/qlpack.yml | 2 +- shared/rangeanalysis/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ shared/rangeanalysis/codeql-pack.release.yml | 2 +- shared/rangeanalysis/qlpack.yml | 2 +- shared/regex/CHANGELOG.md | 4 ++++ shared/regex/change-notes/released/1.0.24.md | 3 +++ shared/regex/codeql-pack.release.yml | 2 +- shared/regex/qlpack.yml | 2 +- shared/ssa/CHANGELOG.md | 6 +++++ .../2.0.0.md} | 7 +++--- shared/ssa/codeql-pack.release.yml | 2 +- shared/ssa/qlpack.yml | 2 +- shared/threat-models/CHANGELOG.md | 4 ++++ .../change-notes/released/1.0.24.md | 3 +++ shared/threat-models/codeql-pack.release.yml | 2 +- shared/threat-models/qlpack.yml | 2 +- shared/tutorial/CHANGELOG.md | 4 ++++ .../tutorial/change-notes/released/1.0.24.md | 3 +++ shared/tutorial/codeql-pack.release.yml | 2 +- shared/tutorial/qlpack.yml | 2 +- shared/typeflow/CHANGELOG.md | 4 ++++ .../typeflow/change-notes/released/1.0.24.md | 3 +++ shared/typeflow/codeql-pack.release.yml | 2 +- shared/typeflow/qlpack.yml | 2 +- shared/typeinference/CHANGELOG.md | 4 ++++ .../change-notes/released/0.0.5.md | 3 +++ shared/typeinference/codeql-pack.release.yml | 2 +- shared/typeinference/qlpack.yml | 2 +- shared/typetracking/CHANGELOG.md | 4 ++++ .../change-notes/released/2.0.8.md | 3 +++ shared/typetracking/codeql-pack.release.yml | 2 +- shared/typetracking/qlpack.yml | 2 +- shared/typos/CHANGELOG.md | 4 ++++ shared/typos/change-notes/released/1.0.24.md | 3 +++ shared/typos/codeql-pack.release.yml | 2 +- shared/typos/qlpack.yml | 2 +- shared/util/CHANGELOG.md | 4 ++++ shared/util/change-notes/released/2.0.11.md | 3 +++ shared/util/codeql-pack.release.yml | 2 +- shared/util/qlpack.yml | 2 +- shared/xml/CHANGELOG.md | 4 ++++ shared/xml/change-notes/released/1.0.24.md | 3 +++ shared/xml/codeql-pack.release.yml | 2 +- shared/xml/qlpack.yml | 2 +- shared/yaml/CHANGELOG.md | 4 ++++ shared/yaml/change-notes/released/1.0.24.md | 3 +++ shared/yaml/codeql-pack.release.yml | 2 +- shared/yaml/qlpack.yml | 2 +- swift/ql/lib/CHANGELOG.md | 17 +++++++++++++ .../2025-05-14-type_value_expr_cfg.md | 4 ---- .../change-notes/2025-05-27-swift.6.1.1.md | 5 ---- .../5.0.0.md} | 12 +++++++--- swift/ql/lib/codeql-pack.release.yml | 2 +- swift/ql/lib/qlpack.yml | 2 +- swift/ql/src/CHANGELOG.md | 6 +++++ .../1.1.4.md} | 7 +++--- swift/ql/src/codeql-pack.release.yml | 2 +- swift/ql/src/qlpack.yml | 2 +- 174 files changed, 483 insertions(+), 190 deletions(-) create mode 100644 actions/ql/lib/change-notes/released/0.4.10.md rename actions/ql/src/change-notes/{2025-05-14-minimal-permission-for-add-to-project.md => released/0.6.2.md} (84%) delete mode 100644 cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-16-wmain-support.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-23-windows-sources.md delete mode 100644 cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md create mode 100644 cpp/ql/lib/change-notes/released/5.0.0.md rename cpp/ql/src/change-notes/{2025-05-14-openssl-sqlite-models.md => released/1.4.1.md} (65%) create mode 100644 csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md create mode 100644 csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md rename csharp/ql/lib/change-notes/{2025-05-14-dotnet-models.md => released/5.1.7.md} (78%) delete mode 100644 csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md delete mode 100644 csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md delete mode 100644 csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md delete mode 100644 csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md create mode 100644 csharp/ql/src/change-notes/released/1.2.1.md create mode 100644 go/ql/consistency-queries/change-notes/released/1.0.24.md create mode 100644 go/ql/lib/change-notes/released/4.2.6.md rename go/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.2.1.md} (64%) delete mode 100644 java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md rename java/ql/lib/change-notes/{2025-05-16-shared-basicblocks.md => released/7.3.0.md} (72%) rename java/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.5.1.md} (67%) rename javascript/ql/lib/change-notes/{2025-04-29-combined-es6-func.md => released/2.6.4.md} (73%) rename javascript/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.6.1.md} (73%) create mode 100644 misc/suite-helpers/change-notes/released/1.0.24.md rename python/ql/lib/change-notes/{2025-04-30-extract-hidden-files-by-default.md => released/4.0.8.md} (93%) rename python/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.5.1.md} (64%) delete mode 100644 ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md rename ruby/ql/lib/change-notes/{2025-05-02-ruby-printast-order-fix.md => released/4.1.7.md} (68%) rename ruby/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.3.1.md} (64%) create mode 100644 rust/ql/lib/change-notes/released/0.1.9.md create mode 100644 rust/ql/src/change-notes/released/0.1.9.md create mode 100644 shared/controlflow/change-notes/released/2.0.8.md create mode 100644 shared/dataflow/change-notes/released/2.0.8.md create mode 100644 shared/mad/change-notes/released/1.0.24.md create mode 100644 shared/quantum/change-notes/released/0.0.2.md create mode 100644 shared/rangeanalysis/change-notes/released/1.0.24.md create mode 100644 shared/regex/change-notes/released/1.0.24.md rename shared/ssa/change-notes/{2025-05-23-guards-interface.md => released/2.0.0.md} (87%) create mode 100644 shared/threat-models/change-notes/released/1.0.24.md create mode 100644 shared/tutorial/change-notes/released/1.0.24.md create mode 100644 shared/typeflow/change-notes/released/1.0.24.md create mode 100644 shared/typeinference/change-notes/released/0.0.5.md create mode 100644 shared/typetracking/change-notes/released/2.0.8.md create mode 100644 shared/typos/change-notes/released/1.0.24.md create mode 100644 shared/util/change-notes/released/2.0.11.md create mode 100644 shared/xml/change-notes/released/1.0.24.md create mode 100644 shared/yaml/change-notes/released/1.0.24.md delete mode 100644 swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md delete mode 100644 swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md rename swift/ql/lib/change-notes/{2025-05-18-2025-May-outdated-deprecations.md => released/5.0.0.md} (74%) rename swift/ql/src/change-notes/{2025-05-16-hardcoded-credentials.md => released/1.1.4.md} (71%) diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 16262bfaa84..466440c3e33 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.10 + +No user-facing changes. + ## 0.4.9 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.10.md b/actions/ql/lib/change-notes/released/0.4.10.md new file mode 100644 index 00000000000..9ae55e0ca34 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.10.md @@ -0,0 +1,3 @@ +## 0.4.10 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index c898a5bfdcd..e0c0d3e4c2a 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.9 +lastReleaseVersion: 0.4.10 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 6e9a94292d0..c500ec3617b 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.10-dev +version: 0.4.10 library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 5779691947e..687df395d28 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.6.2 + +### Minor Analysis Improvements + +* The query `actions/missing-workflow-permissions` is now aware of the minimal permissions needed for the actions `deploy-pages`, `delete-package-versions`, `ai-inference`. This should lead to better alert messages and better fix suggestions. + ## 0.6.1 No user-facing changes. diff --git a/actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md b/actions/ql/src/change-notes/released/0.6.2.md similarity index 84% rename from actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md rename to actions/ql/src/change-notes/released/0.6.2.md index 8d6c87fe7a7..062fb0f6f91 100644 --- a/actions/ql/src/change-notes/2025-05-14-minimal-permission-for-add-to-project.md +++ b/actions/ql/src/change-notes/released/0.6.2.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.6.2 + +### Minor Analysis Improvements + * The query `actions/missing-workflow-permissions` is now aware of the minimal permissions needed for the actions `deploy-pages`, `delete-package-versions`, `ai-inference`. This should lead to better alert messages and better fix suggestions. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index 80fb0899f64..5501a2a1cc5 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.1 +lastReleaseVersion: 0.6.2 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 49f4f30f7da..5c2a1dfbb1f 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.2-dev +version: 0.6.2 library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 4ad53d108e2..67339c22ef0 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,27 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. +* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. +* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. + +### New Features + +* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. +* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. +* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. +* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. +* Added support for `wmain` as part of the ArgvSource model. + +### Bug Fixes + +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. + ## 4.3.1 ### Bug Fixes diff --git a/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md b/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md deleted file mode 100644 index ea821d7d48d..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-15-class-aggregate-literals.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md b/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md deleted file mode 100644 index a1aec0a695a..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-16-array-aggregate-literals.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md b/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md deleted file mode 100644 index bdc369bfedd..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-16-wmain-support.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added support for `wmain` as part of the ArgvSource model. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md b/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md deleted file mode 100644 index b1a31ea6eb5..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md +++ /dev/null @@ -1,9 +0,0 @@ ---- -category: breaking ---- -* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. -* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. -* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. -* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. diff --git a/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md b/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md deleted file mode 100644 index e07dcbe8598..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-23-windows-sources.md +++ /dev/null @@ -1,6 +0,0 @@ ---- -category: feature ---- -* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. -* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. -* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. diff --git a/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md b/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md deleted file mode 100644 index 423a1a424f9..00000000000 --- a/cpp/ql/lib/change-notes/2025-05-27-windows-sources-2.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. \ No newline at end of file diff --git a/cpp/ql/lib/change-notes/released/5.0.0.md b/cpp/ql/lib/change-notes/released/5.0.0.md new file mode 100644 index 00000000000..212cb2bdd96 --- /dev/null +++ b/cpp/ql/lib/change-notes/released/5.0.0.md @@ -0,0 +1,23 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `userInputArgument` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturned` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputReturn` predicate from the `Security.qll`. +* Deleted the deprecated `isUserInput` predicate and its convenience accessor from the `Security.qll`. +* Deleted the deprecated `userInputArgument` predicate from the `SecurityOptions.qll`. +* Deleted the deprecated `userInputReturned` predicate from the `SecurityOptions.qll`. + +### New Features + +* Added local flow source models for `ReadFile`, `ReadFileEx`, `MapViewOfFile`, `MapViewOfFile2`, `MapViewOfFile3`, `MapViewOfFile3FromApp`, `MapViewOfFileEx`, `MapViewOfFileFromApp`, `MapViewOfFileNuma2`, and `NtReadFile`. +* Added the `pCmdLine` arguments of `WinMain` and `wWinMain` as local flow sources. +* Added source models for `GetCommandLineA`, `GetCommandLineW`, `GetEnvironmentStringsA`, `GetEnvironmentStringsW`, `GetEnvironmentVariableA`, and `GetEnvironmentVariableW`. +* Added summary models for `CommandLineToArgvA` and `CommandLineToArgvW`. +* Added support for `wmain` as part of the ArgvSource model. + +### Bug Fixes + +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ArrayAggregateLiteral`s. +* Fixed a problem where `asExpr()` on `DataFlow::Node` would never return `ClassAggregateLiteral`s. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 70ac3707fcd..c9e54136ca5 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.1 +lastReleaseVersion: 5.0.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index e15623e2ddb..f5c88301895 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 4.3.2-dev +version: 5.0.0 groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index f9880ce5764..49bf1f975ee 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.4.1 + +### Minor Analysis Improvements + +* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. + ## 1.4.0 ### Query Metadata Changes diff --git a/cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md b/cpp/ql/src/change-notes/released/1.4.1.md similarity index 65% rename from cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md rename to cpp/ql/src/change-notes/released/1.4.1.md index c03bd600ac9..7d1ba66b92e 100644 --- a/cpp/ql/src/change-notes/2025-05-14-openssl-sqlite-models.md +++ b/cpp/ql/src/change-notes/released/1.4.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. \ No newline at end of file +## 1.4.1 + +### Minor Analysis Improvements + +* Added flow model for the `SQLite` and `OpenSSL` libraries. This may result in more alerts when running queries on codebases that use these libraries. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index b8b2e97d508..43ccf4467be 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.0 +lastReleaseVersion: 1.4.1 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 07c7cb32249..aa04ab588e4 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.4.1-dev +version: 1.4.1 groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index f177ccf403e..0a441eeacb2 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.41 + +No user-facing changes. + ## 1.7.40 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md new file mode 100644 index 00000000000..b99dc457ba9 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.41.md @@ -0,0 +1,3 @@ +## 1.7.41 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 47c67a0a4d3..2eee1633d76 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.40 +lastReleaseVersion: 1.7.41 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 6c3519f4785..e4e790c02b4 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.41-dev +version: 1.7.41 groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index f177ccf403e..0a441eeacb2 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.41 + +No user-facing changes. + ## 1.7.40 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md new file mode 100644 index 00000000000..b99dc457ba9 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.41.md @@ -0,0 +1,3 @@ +## 1.7.41 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 47c67a0a4d3..2eee1633d76 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.40 +lastReleaseVersion: 1.7.41 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 1cfbcb1f030..68c2a91ba49 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.41-dev +version: 1.7.41 groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 47503fa222e..1fcecc7f8e9 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 5.1.7 + +### Minor Analysis Improvements + +* The generated Models as Data (MaD) models for .NET 9 Runtime have been updated and are now more precise (due to a recent model generator improvement). + ## 5.1.6 No user-facing changes. diff --git a/csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md b/csharp/ql/lib/change-notes/released/5.1.7.md similarity index 78% rename from csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md rename to csharp/ql/lib/change-notes/released/5.1.7.md index c45cce85982..2cc0418ad62 100644 --- a/csharp/ql/lib/change-notes/2025-05-14-dotnet-models.md +++ b/csharp/ql/lib/change-notes/released/5.1.7.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 5.1.7 + +### Minor Analysis Improvements + * The generated Models as Data (MaD) models for .NET 9 Runtime have been updated and are now more precise (due to a recent model generator improvement). diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index 5ddeeed69fc..f26524e1fd9 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.1.6 +lastReleaseVersion: 5.1.7 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index 3cfd3861377..6f5c0b15f3a 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.1.7-dev +version: 5.1.7 groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index a73c77f224f..b2384df0d06 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,12 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. +* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. +* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. +* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. + ## 1.2.0 ### Query Metadata Changes diff --git a/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md b/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md deleted file mode 100644 index ed9805f6ece..00000000000 --- a/csharp/ql/src/change-notes/2025-04-10-uncontrolled-format-string.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. diff --git a/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md b/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md deleted file mode 100644 index 2d8c5c1c56e..00000000000 --- a/csharp/ql/src/change-notes/2025-05-15-gethashcode-is-not-defined.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. diff --git a/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md deleted file mode 100644 index 6255db9c199..00000000000 --- a/csharp/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. diff --git a/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md b/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md deleted file mode 100644 index ee3d60fe4ff..00000000000 --- a/csharp/ql/src/change-notes/2025-05-22-missed-readonly-modifier.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. diff --git a/csharp/ql/src/change-notes/released/1.2.1.md b/csharp/ql/src/change-notes/released/1.2.1.md new file mode 100644 index 00000000000..2751be1db8a --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.2.1.md @@ -0,0 +1,8 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The precision of the query `cs/missed-readonly-modifier` has been improved. Some false positives related to static fields and struct type fields have been removed. +* The queries `cs/password-in-configuration`, `cs/hardcoded-credentials` and `cs/hardcoded-connection-string-credentials` have been removed from all query suites. +* The precision of the query `cs/gethashcode-is-not-defined` has been improved (false negative reduction). Calls to more methods (and indexers) that rely on the invariant `e1.Equals(e2)` implies `e1.GetHashCode() == e2.GetHashCode()` are taken into account. +* The precision of the query `cs/uncontrolled-format-string` has been improved (false negative reduction). Calls to `System.Text.CompositeFormat.Parse` are now considered a format like method call. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 75430e73d1c..73dd403938c 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 1.2.1 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index 7f4043b2c07..59800dabbdb 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.2.1-dev +version: 1.2.1 groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index c3254e1caad..a684ef060a5 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.24.md b/go/ql/consistency-queries/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 7c8b4515264..ce75cf33047 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.24-dev +version: 1.0.24 groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index b6031842a21..58e70d0c2bd 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.2.6 + +No user-facing changes. + ## 4.2.5 No user-facing changes. diff --git a/go/ql/lib/change-notes/released/4.2.6.md b/go/ql/lib/change-notes/released/4.2.6.md new file mode 100644 index 00000000000..4b76e98c68b --- /dev/null +++ b/go/ql/lib/change-notes/released/4.2.6.md @@ -0,0 +1,3 @@ +## 4.2.6 + +No user-facing changes. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index 1821397188e..2005a7a7f17 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.2.5 +lastReleaseVersion: 4.2.6 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 3451f49c2dc..49a4a809f13 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.2.6-dev +version: 4.2.6 groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index a90fa7b7034..794f600ad3e 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.2.1 + +### Minor Analysis Improvements + +* The query `go/hardcoded-credentials` has been removed from all query suites. + ## 1.2.0 ### Query Metadata Changes diff --git a/go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/go/ql/src/change-notes/released/1.2.1.md similarity index 64% rename from go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to go/ql/src/change-notes/released/1.2.1.md index b25a9b3d056..d96e9efc365 100644 --- a/go/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/go/ql/src/change-notes/released/1.2.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.2.1 + +### Minor Analysis Improvements + * The query `go/hardcoded-credentials` has been removed from all query suites. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 75430e73d1c..73dd403938c 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.0 +lastReleaseVersion: 1.2.1 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 032ac335902..20e37c247ef 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.2.1-dev +version: 1.2.1 groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 412521919b9..7391228e483 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 7.3.0 + +### Deprecated APIs + +* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. +* Java now uses the shared `BasicBlock` library. This means that the names of several member predicates have been changed to align with the names used in other languages. The old predicates have been deprecated. The `BasicBlock` class itself no longer extends `ControlFlowNode` - the predicate `getFirstNode` can be used to fix any QL code that somehow relied on this. + ## 7.2.0 ### New Features diff --git a/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md b/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md deleted file mode 100644 index 8b7effc535d..00000000000 --- a/java/ql/lib/change-notes/2025-05-22-spring-request-mapping-value.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. diff --git a/java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md b/java/ql/lib/change-notes/released/7.3.0.md similarity index 72% rename from java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md rename to java/ql/lib/change-notes/released/7.3.0.md index e71ae5c1317..a40049582ef 100644 --- a/java/ql/lib/change-notes/2025-05-16-shared-basicblocks.md +++ b/java/ql/lib/change-notes/released/7.3.0.md @@ -1,4 +1,6 @@ ---- -category: deprecated ---- +## 7.3.0 + +### Deprecated APIs + +* The predicate `getValue()` on `SpringRequestMappingMethod` is now deprecated. Use `getAValue()` instead. * Java now uses the shared `BasicBlock` library. This means that the names of several member predicates have been changed to align with the names used in other languages. The old predicates have been deprecated. The `BasicBlock` class itself no longer extends `ControlFlowNode` - the predicate `getFirstNode` can be used to fix any QL code that somehow relied on this. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index fda9ea165fc..2b9b871fffa 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.2.0 +lastReleaseVersion: 7.3.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 8e1e06ab6b5..44271dee46b 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.2.1-dev +version: 7.3.0 groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index 286ed1123af..fa038d728e6 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.5.1 + +### Minor Analysis Improvements + +* The query `java/hardcoded-credential-api-call` has been removed from all query suites. + ## 1.5.0 ### Query Metadata Changes diff --git a/java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/java/ql/src/change-notes/released/1.5.1.md similarity index 67% rename from java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to java/ql/src/change-notes/released/1.5.1.md index 18340ca8774..23e49bba729 100644 --- a/java/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/java/ql/src/change-notes/released/1.5.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.5.1 + +### Minor Analysis Improvements + * The query `java/hardcoded-credential-api-call` has been removed from all query suites. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index 639f80c4341..c5775c46013 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.0 +lastReleaseVersion: 1.5.1 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index be53e6c8c0b..2938ce64cb3 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.5.1-dev +version: 1.5.1 groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index 2d7716b8393..91b86700ed4 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.6.4 + +### Minor Analysis Improvements + +* Improved analysis for `ES6 classes` mixed with `function prototypes`, leading to more accurate call graph resolution. + ## 2.6.3 ### Minor Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md b/javascript/ql/lib/change-notes/released/2.6.4.md similarity index 73% rename from javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md rename to javascript/ql/lib/change-notes/released/2.6.4.md index 2303d3d8c62..90658374635 100644 --- a/javascript/ql/lib/change-notes/2025-04-29-combined-es6-func.md +++ b/javascript/ql/lib/change-notes/released/2.6.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 2.6.4 + +### Minor Analysis Improvements + * Improved analysis for `ES6 classes` mixed with `function prototypes`, leading to more accurate call graph resolution. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index e2457adb03c..ac755647695 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.3 +lastReleaseVersion: 2.6.4 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index 87fb92c5baf..d28403132c4 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.4-dev +version: 2.6.4 groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index bd5cb345793..95b3d48ac2f 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.6.1 + +### Minor Analysis Improvements + +* The queries `js/hardcoded-credentials` and `js/password-in-configuration-file` have been removed from all query suites. + ## 1.6.0 ### Query Metadata Changes diff --git a/javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/javascript/ql/src/change-notes/released/1.6.1.md similarity index 73% rename from javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to javascript/ql/src/change-notes/released/1.6.1.md index 99af2e2c448..b66009e765f 100644 --- a/javascript/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/javascript/ql/src/change-notes/released/1.6.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.6.1 + +### Minor Analysis Improvements + * The queries `js/hardcoded-credentials` and `js/password-in-configuration-file` have been removed from all query suites. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index c4f0b07d533..ef7a789e0cf 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.0 +lastReleaseVersion: 1.6.1 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index 515ea8a3abd..986f2be84e6 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 1.6.1-dev +version: 1.6.1 groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index d65ced8b4c7..1959582a171 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.24.md b/misc/suite-helpers/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index fa44a270665..e19aa4923af 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.24-dev +version: 1.0.24 groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index 33813cf94e4..36d7cdbcc2f 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 4.0.8 + +### Minor Analysis Improvements + +- The Python extractor now extracts files in hidden directories by default. If you would like to skip files in hidden directories, add `paths-ignore: ["**/.*/**"]` to your [Code Scanning config](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#specifying-directories-to-scan). If you would like to skip all hidden files, you can use `paths-ignore: ["**/.*"]`. When using the CodeQL CLI for extraction, specify the configuration (creating the configuration file if necessary) using the `--codescanning-config` option. + ## 4.0.7 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md b/python/ql/lib/change-notes/released/4.0.8.md similarity index 93% rename from python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md rename to python/ql/lib/change-notes/released/4.0.8.md index fcbb0a209ce..a87623b25b5 100644 --- a/python/ql/lib/change-notes/2025-04-30-extract-hidden-files-by-default.md +++ b/python/ql/lib/change-notes/released/4.0.8.md @@ -1,5 +1,5 @@ ---- -category: minorAnalysis ---- +## 4.0.8 + +### Minor Analysis Improvements - The Python extractor now extracts files in hidden directories by default. If you would like to skip files in hidden directories, add `paths-ignore: ["**/.*/**"]` to your [Code Scanning config](https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning#specifying-directories-to-scan). If you would like to skip all hidden files, you can use `paths-ignore: ["**/.*"]`. When using the CodeQL CLI for extraction, specify the configuration (creating the configuration file if necessary) using the `--codescanning-config` option. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index bf65f0dc10b..36a2330377d 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.7 +lastReleaseVersion: 4.0.8 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index c98ee1e15d4..e328f386c56 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.8-dev +version: 4.0.8 groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index c449304f0da..a65d9f84641 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.5.1 + +### Minor Analysis Improvements + +* The query `py/hardcoded-credentials` has been removed from all query suites. + ## 1.5.0 ### Query Metadata Changes diff --git a/python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/python/ql/src/change-notes/released/1.5.1.md similarity index 64% rename from python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to python/ql/src/change-notes/released/1.5.1.md index ee550ce449b..3b04255f33a 100644 --- a/python/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/python/ql/src/change-notes/released/1.5.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.5.1 + +### Minor Analysis Improvements + * The query `py/hardcoded-credentials` has been removed from all query suites. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 639f80c4341..c5775c46013 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.5.0 +lastReleaseVersion: 1.5.1 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 6e181439ee0..d29907ecbe8 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.5.1-dev +version: 1.5.1 groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 4d3dfc9c436..f637009e8a1 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,15 @@ +## 4.1.7 + +### Minor Analysis Improvements + +* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. + +### Bug Fixes + +### Bug Fixes + +* The Ruby printAst.qll library now orders AST nodes slightly differently: child nodes that do not literally appear in the source code, but whose parent nodes do, are assigned a deterministic order based on a combination of source location and logical order within the parent. This fixes the non-deterministic ordering that sometimes occurred depending on evaluation order. The effect may also be visible in downstream uses of the printAst library, such as the AST view in the VSCode extension. + ## 4.1.6 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md b/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md deleted file mode 100644 index 3a0878e6553..00000000000 --- a/ruby/ql/lib/change-notes/2025-05-13-captured-variables-live-more-often.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. \ No newline at end of file diff --git a/ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md b/ruby/ql/lib/change-notes/released/4.1.7.md similarity index 68% rename from ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md rename to ruby/ql/lib/change-notes/released/4.1.7.md index b71b60c22b3..00625c5c5d8 100644 --- a/ruby/ql/lib/change-notes/2025-05-02-ruby-printast-order-fix.md +++ b/ruby/ql/lib/change-notes/released/4.1.7.md @@ -1,6 +1,11 @@ ---- -category: fix ---- +## 4.1.7 + +### Minor Analysis Improvements + +* Captured variables are currently considered live when the capturing function exits normally. Now they are also considered live when the capturing function exits via an exception. + +### Bug Fixes + ### Bug Fixes * The Ruby printAst.qll library now orders AST nodes slightly differently: child nodes that do not literally appear in the source code, but whose parent nodes do, are assigned a deterministic order based on a combination of source location and logical order within the parent. This fixes the non-deterministic ordering that sometimes occurred depending on evaluation order. The effect may also be visible in downstream uses of the printAst library, such as the AST view in the VSCode extension. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 8b32e3bae01..6a89491cdb8 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.1.6 +lastReleaseVersion: 4.1.7 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 2548f8c1074..a13854cf27a 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 4.1.7-dev +version: 4.1.7 groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 0a3ce10b979..3bf0a2d6312 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.3.1 + +### Minor Analysis Improvements + +* The query `rb/hardcoded-credentials` has been removed from all query suites. + ## 1.3.0 ### Query Metadata Changes diff --git a/ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/ruby/ql/src/change-notes/released/1.3.1.md similarity index 64% rename from ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to ruby/ql/src/change-notes/released/1.3.1.md index 684b1b3ea78..8d892f72ed0 100644 --- a/ruby/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/ruby/ql/src/change-notes/released/1.3.1.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.3.1 + +### Minor Analysis Improvements + * The query `rb/hardcoded-credentials` has been removed from all query suites. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index ec16350ed6f..e71b6d081f1 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.0 +lastReleaseVersion: 1.3.1 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index ed987a47454..7247e94124a 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.3.1-dev +version: 1.3.1 groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 3000a1098cc..f37d7ac4bae 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.9 + +No user-facing changes. + ## 0.1.8 No user-facing changes. diff --git a/rust/ql/lib/change-notes/released/0.1.9.md b/rust/ql/lib/change-notes/released/0.1.9.md new file mode 100644 index 00000000000..e93006d794f --- /dev/null +++ b/rust/ql/lib/change-notes/released/0.1.9.md @@ -0,0 +1,3 @@ +## 0.1.9 + +No user-facing changes. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 3136ea4a1cc..1425c0edf7f 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.8 +lastReleaseVersion: 0.1.9 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index ce213d8ebba..17dea235850 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.9-dev +version: 0.1.9 groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index a7c23fbfd30..8b870ea5f99 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.1.9 + +No user-facing changes. + ## 0.1.8 No user-facing changes. diff --git a/rust/ql/src/change-notes/released/0.1.9.md b/rust/ql/src/change-notes/released/0.1.9.md new file mode 100644 index 00000000000..e93006d794f --- /dev/null +++ b/rust/ql/src/change-notes/released/0.1.9.md @@ -0,0 +1,3 @@ +## 0.1.9 + +No user-facing changes. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 3136ea4a1cc..1425c0edf7f 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.8 +lastReleaseVersion: 0.1.9 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 3ce216f0a2d..ddd0cee92d5 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.9-dev +version: 0.1.9 groups: - rust - queries diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 1aab9a2eeba..8748a58b0c4 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.8.md b/shared/controlflow/change-notes/released/2.0.8.md new file mode 100644 index 00000000000..4d6867c721b --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 08d5e959449..7ffb2d9f65b 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index 83f9b6f67a4..ea02e74b8d4 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index 36d289f7f04..2fe45acb03c 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.8.md b/shared/dataflow/change-notes/released/2.0.8.md new file mode 100644 index 00000000000..4d6867c721b --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 08d5e959449..7ffb2d9f65b 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 3c70d1d8c2d..9fa1e52fdb3 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index 5efa3ce9aec..3c432d1383f 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.24.md b/shared/mad/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 8cbab3cbcd6..c06bf28103e 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index 59b60bad0f3..7668a5ba39d 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.2 + +No user-facing changes. + ## 0.0.1 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.2.md b/shared/quantum/change-notes/released/0.0.2.md new file mode 100644 index 00000000000..5ab250998ed --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.2.md @@ -0,0 +1,3 @@ +## 0.0.2 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index c6933410b71..55dc06fbd76 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.1 +lastReleaseVersion: 0.0.2 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 4abda024832..e8f696ad279 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.2-dev +version: 0.0.2 groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index 75bb80c6db7..5716e332920 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.24.md b/shared/rangeanalysis/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index d551bb79db4..b9165e57d30 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 59bbd8cf93b..36cbdcef2ab 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.24.md b/shared/regex/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 41c9b1ba043..84c4b249f57 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 509445eb6b1..85891c54761 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,9 @@ +## 2.0.0 + +### Breaking Changes + +* Adjusted the Guards interface in the SSA data flow integration to distinguish `hasBranchEdge` from `controlsBranchEdge`. Any breakage can be fixed by implementing one with the other as a reasonable fallback solution. + ## 1.1.2 No user-facing changes. diff --git a/shared/ssa/change-notes/2025-05-23-guards-interface.md b/shared/ssa/change-notes/released/2.0.0.md similarity index 87% rename from shared/ssa/change-notes/2025-05-23-guards-interface.md rename to shared/ssa/change-notes/released/2.0.0.md index cc8d76372f6..39ac6d68707 100644 --- a/shared/ssa/change-notes/2025-05-23-guards-interface.md +++ b/shared/ssa/change-notes/released/2.0.0.md @@ -1,4 +1,5 @@ ---- -category: breaking ---- +## 2.0.0 + +### Breaking Changes + * Adjusted the Guards interface in the SSA data flow integration to distinguish `hasBranchEdge` from `controlsBranchEdge`. Any breakage can be fixed by implementing one with the other as a reasonable fallback solution. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index 53ab127707f..0abe6ccede0 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.2 +lastReleaseVersion: 2.0.0 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index fe5fa023a96..03bab1e1650 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 1.1.3-dev +version: 2.0.0 groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index c3254e1caad..a684ef060a5 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.24.md b/shared/threat-models/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index a86c29ceba3..328719e2a0d 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.24-dev +version: 1.0.24 library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 247d9be86a5..b0f9b01001b 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.24.md b/shared/tutorial/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index a0aa1a8b3ae..b9b63085e1f 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index cad6ded5224..7f8c43e4544 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.24.md b/shared/typeflow/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index 123e7a98891..5b91c29a4de 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index 4ffbff1e0c4..9b269441c00 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.5 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.5.md b/shared/typeinference/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..766ec2723b5 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.5.md @@ -0,0 +1,3 @@ +## 0.0.5 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index bbfe2ad6615..93bbac0b367 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.5-dev +version: 0.0.5 groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 16294923597..731844b4af3 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.8 + +No user-facing changes. + ## 2.0.7 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.8.md b/shared/typetracking/change-notes/released/2.0.8.md new file mode 100644 index 00000000000..4d6867c721b --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.8.md @@ -0,0 +1,3 @@ +## 2.0.8 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 08d5e959449..7ffb2d9f65b 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.7 +lastReleaseVersion: 2.0.8 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index eef6fe52e66..82a30f6cec3 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.8-dev +version: 2.0.8 groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index c7ff1a773da..a81f798d14c 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.24.md b/shared/typos/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 93833e02e66..37b28642685 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index f6f7838bc2e..70486f1eeb4 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.11 + +No user-facing changes. + ## 2.0.10 No user-facing changes. diff --git a/shared/util/change-notes/released/2.0.11.md b/shared/util/change-notes/released/2.0.11.md new file mode 100644 index 00000000000..b3d110bcba5 --- /dev/null +++ b/shared/util/change-notes/released/2.0.11.md @@ -0,0 +1,3 @@ +## 2.0.11 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index 96ea0220a69..3cbe73b4cad 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.10 +lastReleaseVersion: 2.0.11 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index e4cfbd97b6e..7da687aff4e 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.11-dev +version: 2.0.11 groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index bdb83dc8830..43afc43456b 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.24.md b/shared/xml/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 73910c05517..790a260ddad 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 28ca258e0d5..a324870b225 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.24 + +No user-facing changes. + ## 1.0.23 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.24.md b/shared/yaml/change-notes/released/1.0.24.md new file mode 100644 index 00000000000..379b5e33657 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.24.md @@ -0,0 +1,3 @@ +## 1.0.24 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index 0f96ba41d16..d08329a98fc 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.23 +lastReleaseVersion: 1.0.24 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index dabb1a33505..56e0c9d83e0 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.24-dev +version: 1.0.24 groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index 1c9326d76e8..fe8bfd82364 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,20 @@ +## 5.0.0 + +### Breaking Changes + +* Deleted the deprecated `parseContent` predicate from the `ExternalFlow.qll`. +* Deleted the deprecated `hasLocationInfo` predicate from the `DataFlowPublic.qll`. +* Deleted the deprecated `SummaryComponent` class from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponentStack` class from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponent` module from the `FlowSummary.qll`. +* Deleted the deprecated `SummaryComponentStack` module from the `FlowSummary.qll`. +* Deleted the deprecated `RequiredSummaryComponentStack` class from the `FlowSummary.qll`. + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.1. +* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library + ## 4.3.0 ### New Features diff --git a/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md b/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md deleted file mode 100644 index aa3282d3326..00000000000 --- a/swift/ql/lib/change-notes/2025-05-14-type_value_expr_cfg.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library diff --git a/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md b/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md deleted file mode 100644 index 19101e5b615..00000000000 --- a/swift/ql/lib/change-notes/2025-05-27-swift.6.1.1.md +++ /dev/null @@ -1,5 +0,0 @@ - ---- -category: minorAnalysis ---- -* Updated to allow analysis of Swift 6.1.1. diff --git a/swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md b/swift/ql/lib/change-notes/released/5.0.0.md similarity index 74% rename from swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md rename to swift/ql/lib/change-notes/released/5.0.0.md index 072e6bba5cd..7215a40e396 100644 --- a/swift/ql/lib/change-notes/2025-05-18-2025-May-outdated-deprecations.md +++ b/swift/ql/lib/change-notes/released/5.0.0.md @@ -1,6 +1,7 @@ ---- -category: breaking ---- +## 5.0.0 + +### Breaking Changes + * Deleted the deprecated `parseContent` predicate from the `ExternalFlow.qll`. * Deleted the deprecated `hasLocationInfo` predicate from the `DataFlowPublic.qll`. * Deleted the deprecated `SummaryComponent` class from the `FlowSummary.qll`. @@ -8,3 +9,8 @@ category: breaking * Deleted the deprecated `SummaryComponent` module from the `FlowSummary.qll`. * Deleted the deprecated `SummaryComponentStack` module from the `FlowSummary.qll`. * Deleted the deprecated `RequiredSummaryComponentStack` class from the `FlowSummary.qll`. + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.1. +* `TypeValueExpr` experimental AST leaf is now implemented in the control flow library diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index c46c103a0bd..c9e54136ca5 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.0 +lastReleaseVersion: 5.0.0 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index ebc4b83f267..183fbd25458 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 4.3.1-dev +version: 5.0.0 groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 7910cf095ce..7faf32ba841 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.1.4 + +### Minor Analysis Improvements + +* The queries `swift/hardcoded-key` and `swift/constant-password` have been removed from all query suites. + ## 1.1.3 No user-facing changes. diff --git a/swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md b/swift/ql/src/change-notes/released/1.1.4.md similarity index 71% rename from swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md rename to swift/ql/src/change-notes/released/1.1.4.md index cc524d8c34d..2a8b2c9cda6 100644 --- a/swift/ql/src/change-notes/2025-05-16-hardcoded-credentials.md +++ b/swift/ql/src/change-notes/released/1.1.4.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 1.1.4 + +### Minor Analysis Improvements + * The queries `swift/hardcoded-key` and `swift/constant-password` have been removed from all query suites. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 35e710ab1bf..26cbcd3f123 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.1.3 +lastReleaseVersion: 1.1.4 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 7f727988f7c..2768bcab8fd 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.1.4-dev +version: 1.1.4 groups: - swift - queries