diff --git a/actions/ql/lib/CHANGELOG.md b/actions/ql/lib/CHANGELOG.md index 5009104e9af..60f6a45ea94 100644 --- a/actions/ql/lib/CHANGELOG.md +++ b/actions/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.4.17 + +No user-facing changes. + ## 0.4.16 No user-facing changes. diff --git a/actions/ql/lib/change-notes/released/0.4.17.md b/actions/ql/lib/change-notes/released/0.4.17.md new file mode 100644 index 00000000000..30a27b84b73 --- /dev/null +++ b/actions/ql/lib/change-notes/released/0.4.17.md @@ -0,0 +1,3 @@ +## 0.4.17 + +No user-facing changes. diff --git a/actions/ql/lib/codeql-pack.release.yml b/actions/ql/lib/codeql-pack.release.yml index 0664e01a1dd..d5b31a0cac9 100644 --- a/actions/ql/lib/codeql-pack.release.yml +++ b/actions/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.4.16 +lastReleaseVersion: 0.4.17 diff --git a/actions/ql/lib/qlpack.yml b/actions/ql/lib/qlpack.yml index 311ef4d5ef6..266007af096 100644 --- a/actions/ql/lib/qlpack.yml +++ b/actions/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-all -version: 0.4.17-dev +version: 0.4.18-dev library: true warnOnImplicitThis: true dependencies: diff --git a/actions/ql/src/CHANGELOG.md b/actions/ql/src/CHANGELOG.md index 265e67e6a89..78b4591c521 100644 --- a/actions/ql/src/CHANGELOG.md +++ b/actions/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.6.9 + +### Minor Analysis Improvements + +* Actions analysis now reports file coverage information on the CodeQL status page. + ## 0.6.8 No user-facing changes. diff --git a/actions/ql/src/change-notes/2025-09-05-file-coverage.md b/actions/ql/src/change-notes/released/0.6.9.md similarity index 66% rename from actions/ql/src/change-notes/2025-09-05-file-coverage.md rename to actions/ql/src/change-notes/released/0.6.9.md index 27f02614647..fd1d956946b 100644 --- a/actions/ql/src/change-notes/2025-09-05-file-coverage.md +++ b/actions/ql/src/change-notes/released/0.6.9.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.6.9 + +### Minor Analysis Improvements + * Actions analysis now reports file coverage information on the CodeQL status page. diff --git a/actions/ql/src/codeql-pack.release.yml b/actions/ql/src/codeql-pack.release.yml index cad7cba6ce3..f03da398190 100644 --- a/actions/ql/src/codeql-pack.release.yml +++ b/actions/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.6.8 +lastReleaseVersion: 0.6.9 diff --git a/actions/ql/src/qlpack.yml b/actions/ql/src/qlpack.yml index 4eae56a5c13..e4a69c7cd61 100644 --- a/actions/ql/src/qlpack.yml +++ b/actions/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/actions-queries -version: 0.6.9-dev +version: 0.6.10-dev library: false warnOnImplicitThis: true groups: [actions, queries] diff --git a/cpp/ql/lib/CHANGELOG.md b/cpp/ql/lib/CHANGELOG.md index 705432b565d..cfe24937b74 100644 --- a/cpp/ql/lib/CHANGELOG.md +++ b/cpp/ql/lib/CHANGELOG.md @@ -1,3 +1,13 @@ +## 5.6.0 + +### Deprecated APIs + +* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. + +### New Features + +* Added predicates `getTransitiveNumberOfVlaDimensionStmts`, `getTransitiveVlaDimensionStmt`, and `getParentVlaDecl` to `VlaDeclStmt` for handling `VlaDeclStmt`s whose base type is defined in terms of another `VlaDeclStmt` via a `typedef`. + ## 5.5.0 ### New Features diff --git a/cpp/ql/lib/change-notes/2025-09-03-rename-api.md b/cpp/ql/lib/change-notes/2025-09-03-rename-api.md deleted file mode 100644 index 23c9fa3c046..00000000000 --- a/cpp/ql/lib/change-notes/2025-09-03-rename-api.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. diff --git a/cpp/ql/lib/change-notes/2025-09-02-vla.md b/cpp/ql/lib/change-notes/released/5.6.0.md similarity index 57% rename from cpp/ql/lib/change-notes/2025-09-02-vla.md rename to cpp/ql/lib/change-notes/released/5.6.0.md index 0f945b565a6..a21fadb3bf3 100644 --- a/cpp/ql/lib/change-notes/2025-09-02-vla.md +++ b/cpp/ql/lib/change-notes/released/5.6.0.md @@ -1,4 +1,9 @@ ---- -category: feature ---- +## 5.6.0 + +### Deprecated APIs + +* The predicate `getAContructorCall` in the class `SslContextClass` has been deprecated. Use `getAConstructorCall` instead. + +### New Features + * Added predicates `getTransitiveNumberOfVlaDimensionStmts`, `getTransitiveVlaDimensionStmt`, and `getParentVlaDecl` to `VlaDeclStmt` for handling `VlaDeclStmt`s whose base type is defined in terms of another `VlaDeclStmt` via a `typedef`. diff --git a/cpp/ql/lib/codeql-pack.release.yml b/cpp/ql/lib/codeql-pack.release.yml index 4b8cf9533c1..df73323b21f 100644 --- a/cpp/ql/lib/codeql-pack.release.yml +++ b/cpp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.5.0 +lastReleaseVersion: 5.6.0 diff --git a/cpp/ql/lib/qlpack.yml b/cpp/ql/lib/qlpack.yml index 2b9af14a4b3..63500a12a2f 100644 --- a/cpp/ql/lib/qlpack.yml +++ b/cpp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-all -version: 5.5.1-dev +version: 5.6.1-dev groups: cpp dbscheme: semmlecode.cpp.dbscheme extractor: cpp diff --git a/cpp/ql/src/CHANGELOG.md b/cpp/ql/src/CHANGELOG.md index eb805dc1af6..0cafbd23191 100644 --- a/cpp/ql/src/CHANGELOG.md +++ b/cpp/ql/src/CHANGELOG.md @@ -1,3 +1,15 @@ +## 1.5.0 + +### Major Analysis Improvements + +* The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long`, `cpp/implicit-function-declaration` and `cpp/suspicious-add-sizeof` have had their precisions reduced from `high` to `medium`. They will also now give alerts for projects built with `build-mode: none`. +* The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long` and `cpp/suspicious-add-sizeof` are no longer included in the `code-scanning` suite. + +### Bug Fixes + +* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. +* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. + ## 1.4.7 ### Bug Fixes diff --git a/cpp/ql/src/change-notes/2025-09-03-rename-api.md b/cpp/ql/src/change-notes/2025-09-03-rename-api.md deleted file mode 100644 index 5fd788ef76f..00000000000 --- a/cpp/ql/src/change-notes/2025-09-03-rename-api.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: fix ---- -* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. -* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. diff --git a/cpp/ql/src/change-notes/2025-09-11-queries-demoted.md b/cpp/ql/src/change-notes/released/1.5.0.md similarity index 59% rename from cpp/ql/src/change-notes/2025-09-11-queries-demoted.md rename to cpp/ql/src/change-notes/released/1.5.0.md index 7150c08206b..383825331ff 100644 --- a/cpp/ql/src/change-notes/2025-09-11-queries-demoted.md +++ b/cpp/ql/src/change-notes/released/1.5.0.md @@ -1,5 +1,11 @@ ---- -category: majorAnalysis ---- +## 1.5.0 + +### Major Analysis Improvements + * The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long`, `cpp/implicit-function-declaration` and `cpp/suspicious-add-sizeof` have had their precisions reduced from `high` to `medium`. They will also now give alerts for projects built with `build-mode: none`. * The queries `cpp/wrong-type-format-argument`, `cpp/comparison-with-wider-type`, `cpp/integer-multiplication-cast-to-long` and `cpp/suspicious-add-sizeof` are no longer included in the `code-scanning` suite. + +### Bug Fixes + +* The predicate `occurenceCount` in the file module `MagicConstants` has been deprecated. Use `occurrenceCount` instead. +* The predicate `additionalAdditionOrSubstractionCheckForLeapYear` in the file module `LeapYear` has been deprecated. Use `additionalAdditionOrSubtractionCheckForLeapYear` instead. diff --git a/cpp/ql/src/codeql-pack.release.yml b/cpp/ql/src/codeql-pack.release.yml index 163362bd632..639f80c4341 100644 --- a/cpp/ql/src/codeql-pack.release.yml +++ b/cpp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.7 +lastReleaseVersion: 1.5.0 diff --git a/cpp/ql/src/qlpack.yml b/cpp/ql/src/qlpack.yml index 18637c336b9..8b6b27302cc 100644 --- a/cpp/ql/src/qlpack.yml +++ b/cpp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/cpp-queries -version: 1.4.8-dev +version: 1.5.1-dev groups: - cpp - queries diff --git a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md index 7f3f4d43683..41b8b166a6c 100644 --- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.48 + +No user-facing changes. + ## 1.7.47 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md new file mode 100644 index 00000000000..5f90b4d6419 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.48.md @@ -0,0 +1,3 @@ +## 1.7.48 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml index 21f0fc0de3c..f5fe8023097 100644 --- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.47 +lastReleaseVersion: 1.7.48 diff --git a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml index 826e53b7681..bc2dd9a229c 100644 --- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-all -version: 1.7.48-dev +version: 1.7.49-dev groups: - csharp - solorigate diff --git a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md index 7f3f4d43683..41b8b166a6c 100644 --- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md +++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.7.48 + +No user-facing changes. + ## 1.7.47 No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md new file mode 100644 index 00000000000..5f90b4d6419 --- /dev/null +++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.48.md @@ -0,0 +1,3 @@ +## 1.7.48 + +No user-facing changes. diff --git a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml index 21f0fc0de3c..f5fe8023097 100644 --- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml +++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.47 +lastReleaseVersion: 1.7.48 diff --git a/csharp/ql/campaigns/Solorigate/src/qlpack.yml b/csharp/ql/campaigns/Solorigate/src/qlpack.yml index 468bd64cbd0..82cad1a6472 100644 --- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml +++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-solorigate-queries -version: 1.7.48-dev +version: 1.7.49-dev groups: - csharp - solorigate diff --git a/csharp/ql/lib/CHANGELOG.md b/csharp/ql/lib/CHANGELOG.md index 0aca82e8310..cb639225e7d 100644 --- a/csharp/ql/lib/CHANGELOG.md +++ b/csharp/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.2.4 + +No user-facing changes. + ## 5.2.3 ### Minor Analysis Improvements diff --git a/csharp/ql/lib/change-notes/released/5.2.4.md b/csharp/ql/lib/change-notes/released/5.2.4.md new file mode 100644 index 00000000000..18f54ba122d --- /dev/null +++ b/csharp/ql/lib/change-notes/released/5.2.4.md @@ -0,0 +1,3 @@ +## 5.2.4 + +No user-facing changes. diff --git a/csharp/ql/lib/codeql-pack.release.yml b/csharp/ql/lib/codeql-pack.release.yml index f7fd1ec5b57..fc4dc64578b 100644 --- a/csharp/ql/lib/codeql-pack.release.yml +++ b/csharp/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.2.3 +lastReleaseVersion: 5.2.4 diff --git a/csharp/ql/lib/qlpack.yml b/csharp/ql/lib/qlpack.yml index d7b4d0f175c..f5795e12558 100644 --- a/csharp/ql/lib/qlpack.yml +++ b/csharp/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-all -version: 5.2.4-dev +version: 5.2.5-dev groups: csharp dbscheme: semmlecode.csharp.dbscheme extractor: csharp diff --git a/csharp/ql/src/CHANGELOG.md b/csharp/ql/src/CHANGELOG.md index e1109181fca..e044a3dbb4f 100644 --- a/csharp/ql/src/CHANGELOG.md +++ b/csharp/ql/src/CHANGELOG.md @@ -1,3 +1,17 @@ +## 1.4.0 + +### Deprecated Queries + +* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. + +### Minor Analysis Improvements + +* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. + +### Bug Fixes + +* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. + ## 1.3.4 No user-facing changes. diff --git a/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md b/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md deleted file mode 100644 index 8bf63438089..00000000000 --- a/csharp/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md b/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md deleted file mode 100644 index 5628e949628..00000000000 --- a/csharp/ql/src/change-notes/2025-09-10-deprecate-foreach-capture.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: deprecated ---- -* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. diff --git a/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md b/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md deleted file mode 100644 index 30ba96e0b01..00000000000 --- a/csharp/ql/src/change-notes/2025-09-16-default-tostring-enum.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. diff --git a/csharp/ql/src/change-notes/released/1.4.0.md b/csharp/ql/src/change-notes/released/1.4.0.md new file mode 100644 index 00000000000..43d887f928a --- /dev/null +++ b/csharp/ql/src/change-notes/released/1.4.0.md @@ -0,0 +1,13 @@ +## 1.4.0 + +### Deprecated Queries + +* The query `cs/captured-foreach-variable` has been deprecated as the semantics of capturing a 'foreach' variable and using it outside the loop has been stable since C# version 5. + +### Minor Analysis Improvements + +* The query `cs/call-to-object-tostring` has been improved to remove false positives for enum types. + +### Bug Fixes + +* The message for `csharp/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/csharp/ql/src/codeql-pack.release.yml b/csharp/ql/src/codeql-pack.release.yml index 8263ddf2c8b..b8b2e97d508 100644 --- a/csharp/ql/src/codeql-pack.release.yml +++ b/csharp/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.3.4 +lastReleaseVersion: 1.4.0 diff --git a/csharp/ql/src/qlpack.yml b/csharp/ql/src/qlpack.yml index edb6f9dbe11..724ec4c0097 100644 --- a/csharp/ql/src/qlpack.yml +++ b/csharp/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/csharp-queries -version: 1.3.5-dev +version: 1.4.1-dev groups: - csharp - queries diff --git a/go/ql/consistency-queries/CHANGELOG.md b/go/ql/consistency-queries/CHANGELOG.md index c30f8de8bc9..d5040623557 100644 --- a/go/ql/consistency-queries/CHANGELOG.md +++ b/go/ql/consistency-queries/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/go/ql/consistency-queries/change-notes/released/1.0.31.md b/go/ql/consistency-queries/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/go/ql/consistency-queries/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/go/ql/consistency-queries/codeql-pack.release.yml b/go/ql/consistency-queries/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/go/ql/consistency-queries/codeql-pack.release.yml +++ b/go/ql/consistency-queries/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/go/ql/consistency-queries/qlpack.yml b/go/ql/consistency-queries/qlpack.yml index 574d10a1752..3a3f60920be 100644 --- a/go/ql/consistency-queries/qlpack.yml +++ b/go/ql/consistency-queries/qlpack.yml @@ -1,5 +1,5 @@ name: codeql-go-consistency-queries -version: 1.0.31-dev +version: 1.0.32-dev groups: - go - queries diff --git a/go/ql/lib/CHANGELOG.md b/go/ql/lib/CHANGELOG.md index e2a12de418a..50d61186f73 100644 --- a/go/ql/lib/CHANGELOG.md +++ b/go/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 4.3.4 + +### Minor Analysis Improvements + +* The second argument of the `CreateTemp` function, from the `os` package, is no longer a path-injection sink due to proper sanitization by Go. +* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. + ## 4.3.3 No user-facing changes. diff --git a/go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md b/go/ql/lib/change-notes/released/4.3.4.md similarity index 77% rename from go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md rename to go/ql/lib/change-notes/released/4.3.4.md index 004eb973de3..cc1b662d14c 100644 --- a/go/ql/lib/change-notes/2025-07-15-path-injection-sanitizers.md +++ b/go/ql/lib/change-notes/released/4.3.4.md @@ -1,5 +1,6 @@ ---- -category: minorAnalysis ---- +## 4.3.4 + +### Minor Analysis Improvements + * The second argument of the `CreateTemp` function, from the `os` package, is no longer a path-injection sink due to proper sanitization by Go. -* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. \ No newline at end of file +* The query "Uncontrolled data used in path expression" (`go/path-injection`) now detects sanitizing a path by adding `os.PathSeparator` or `\` to the beginning. diff --git a/go/ql/lib/codeql-pack.release.yml b/go/ql/lib/codeql-pack.release.yml index d7b7294771f..f755e0936a7 100644 --- a/go/ql/lib/codeql-pack.release.yml +++ b/go/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.3.3 +lastReleaseVersion: 4.3.4 diff --git a/go/ql/lib/qlpack.yml b/go/ql/lib/qlpack.yml index 8c172af1e97..1e8bdd280f7 100644 --- a/go/ql/lib/qlpack.yml +++ b/go/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-all -version: 4.3.4-dev +version: 4.3.5-dev groups: go dbscheme: go.dbscheme extractor: go diff --git a/go/ql/src/CHANGELOG.md b/go/ql/src/CHANGELOG.md index 7ec3a3eab64..c3b9c32ff32 100644 --- a/go/ql/src/CHANGELOG.md +++ b/go/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.5 + +No user-facing changes. + ## 1.4.4 No user-facing changes. diff --git a/go/ql/src/change-notes/released/1.4.5.md b/go/ql/src/change-notes/released/1.4.5.md new file mode 100644 index 00000000000..930163bb5ae --- /dev/null +++ b/go/ql/src/change-notes/released/1.4.5.md @@ -0,0 +1,3 @@ +## 1.4.5 + +No user-facing changes. diff --git a/go/ql/src/codeql-pack.release.yml b/go/ql/src/codeql-pack.release.yml index 1dfca6daa3b..a74b6b08d86 100644 --- a/go/ql/src/codeql-pack.release.yml +++ b/go/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.4 +lastReleaseVersion: 1.4.5 diff --git a/go/ql/src/qlpack.yml b/go/ql/src/qlpack.yml index 6b36ad98c9d..9320b29d8e8 100644 --- a/go/ql/src/qlpack.yml +++ b/go/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/go-queries -version: 1.4.5-dev +version: 1.4.6-dev groups: - go - queries diff --git a/java/ql/lib/CHANGELOG.md b/java/ql/lib/CHANGELOG.md index 448b04bdc24..a6b4649e42e 100644 --- a/java/ql/lib/CHANGELOG.md +++ b/java/ql/lib/CHANGELOG.md @@ -1,3 +1,18 @@ +## 7.7.0 + +### New Features + +* The Java extractor and QL libraries now support Java 25. +* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. +* Added support for Java 25 module import declarations. +* Add `ModuleImportDeclaration` class. + +### Minor Analysis Improvements + +* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). +* Added taint flow model for `java.crypto.KDF`. +* Added taint flow model for `java.lang.ScopedValue`. + ## 7.6.1 No user-facing changes. diff --git a/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md b/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md deleted file mode 100644 index 56c7972399a..00000000000 --- a/java/ql/lib/change-notes/2025-07-21-module-import-declarations.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: feature ---- -* Added support for Java 25 module import declarations. -* Add `ModuleImportDeclaration` class. diff --git a/java/ql/lib/change-notes/2025-07-23-compact-source-files.md b/java/ql/lib/change-notes/2025-07-23-compact-source-files.md deleted file mode 100644 index 277ce14398e..00000000000 --- a/java/ql/lib/change-notes/2025-07-23-compact-source-files.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. diff --git a/java/ql/lib/change-notes/2025-09-02-kdf-api.md b/java/ql/lib/change-notes/2025-09-02-kdf-api.md deleted file mode 100644 index db812e90778..00000000000 --- a/java/ql/lib/change-notes/2025-09-02-kdf-api.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added taint flow model for `java.crypto.KDF`. \ No newline at end of file diff --git a/java/ql/lib/change-notes/2025-09-02-scoped-values.md b/java/ql/lib/change-notes/2025-09-02-scoped-values.md deleted file mode 100644 index 8758d1268f3..00000000000 --- a/java/ql/lib/change-notes/2025-09-02-scoped-values.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Added taint flow model for `java.lang.ScopedValue`. \ No newline at end of file diff --git a/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md b/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md deleted file mode 100644 index 34ff19d685e..00000000000 --- a/java/ql/lib/change-notes/2025-09-11-assertions-cfg.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). diff --git a/java/ql/lib/change-notes/2025-09-11-support-java-25.md b/java/ql/lib/change-notes/2025-09-11-support-java-25.md deleted file mode 100644 index bcd78fd8fda..00000000000 --- a/java/ql/lib/change-notes/2025-09-11-support-java-25.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: feature ---- -* The Java extractor and QL libraries now support Java 25. \ No newline at end of file diff --git a/java/ql/lib/change-notes/released/7.7.0.md b/java/ql/lib/change-notes/released/7.7.0.md new file mode 100644 index 00000000000..f33b45cd74d --- /dev/null +++ b/java/ql/lib/change-notes/released/7.7.0.md @@ -0,0 +1,14 @@ +## 7.7.0 + +### New Features + +* The Java extractor and QL libraries now support Java 25. +* Added support for Java 25 compact source files (JEP 512). The new predicate `Class.isImplicit()` identifies classes that are implicitly declared when using compact source files, and the new predicate `CompilationUnit.isCompactSourceFile()` identifies compilation units that contain compact source files. +* Added support for Java 25 module import declarations. +* Add `ModuleImportDeclaration` class. + +### Minor Analysis Improvements + +* Improved support for various assertion libraries, in particular JUnit. This affects the control-flow graph slightly, and in turn affects several queries (mainly quality queries). Most queries should see improved precision (new true positives and fewer false positives), in particular `java/constant-comparison`, `java/index-out-of-bounds`, `java/dereferenced-value-may-be-null`, and `java/useless-null-check`. Some medium precision queries like `java/toctou-race-condition` and `java/unreleased-lock` may see mixed result changes (both slight improvements and slight regressions). +* Added taint flow model for `java.crypto.KDF`. +* Added taint flow model for `java.lang.ScopedValue`. diff --git a/java/ql/lib/codeql-pack.release.yml b/java/ql/lib/codeql-pack.release.yml index 0e73c833572..5c876a864fc 100644 --- a/java/ql/lib/codeql-pack.release.yml +++ b/java/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 7.6.1 +lastReleaseVersion: 7.7.0 diff --git a/java/ql/lib/qlpack.yml b/java/ql/lib/qlpack.yml index 69cadd5a6b0..3009b1b327f 100644 --- a/java/ql/lib/qlpack.yml +++ b/java/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-all -version: 7.6.2-dev +version: 7.7.1-dev groups: java dbscheme: config/semmlecode.dbscheme extractor: java diff --git a/java/ql/src/CHANGELOG.md b/java/ql/src/CHANGELOG.md index ffd5648cddf..022442a1628 100644 --- a/java/ql/src/CHANGELOG.md +++ b/java/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 1.8.0 + +### Major Analysis Improvements + +* The implementation of `java/dereferenced-value-may-be-null` has been completely replaced with a new general control-flow reachability library. This improves precision by reducing false positives. However, since the entire calculation has been reworked, there can be small corner cases where precision regressions might occur and new false positives may occur, but these cases should be rare. + +### Bug Fixes + +* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. + ## 1.7.0 ### New Queries diff --git a/java/ql/src/change-notes/2025-09-04-database-diagnostics.md b/java/ql/src/change-notes/2025-09-04-database-diagnostics.md deleted file mode 100644 index ca035346f9f..00000000000 --- a/java/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: fix ---- -* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/java/ql/src/change-notes/2025-09-15-nullness-reimp.md b/java/ql/src/change-notes/released/1.8.0.md similarity index 51% rename from java/ql/src/change-notes/2025-09-15-nullness-reimp.md rename to java/ql/src/change-notes/released/1.8.0.md index 46698a9a8bc..f8da72566e2 100644 --- a/java/ql/src/change-notes/2025-09-15-nullness-reimp.md +++ b/java/ql/src/change-notes/released/1.8.0.md @@ -1,4 +1,9 @@ ---- -category: majorAnalysis ---- +## 1.8.0 + +### Major Analysis Improvements + * The implementation of `java/dereferenced-value-may-be-null` has been completely replaced with a new general control-flow reachability library. This improves precision by reducing false positives. However, since the entire calculation has been reworked, there can be small corner cases where precision regressions might occur and new false positives may occur, but these cases should be rare. + +### Bug Fixes + +* The message for `java/diagnostic/database-quality` has been updated to include detailed database health metrics. Additionally, the threshold for reporting database health issues has been lowered from 95% to 85% (if any metric falls below this percentage). These changes are visible on the tool status page. diff --git a/java/ql/src/codeql-pack.release.yml b/java/ql/src/codeql-pack.release.yml index d1184cc6750..dc8a37cc443 100644 --- a/java/ql/src/codeql-pack.release.yml +++ b/java/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.7.0 +lastReleaseVersion: 1.8.0 diff --git a/java/ql/src/qlpack.yml b/java/ql/src/qlpack.yml index 8e1ae28dd6f..01bf070bb07 100644 --- a/java/ql/src/qlpack.yml +++ b/java/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/java-queries -version: 1.7.1-dev +version: 1.8.1-dev groups: - java - queries diff --git a/javascript/ql/lib/CHANGELOG.md b/javascript/ql/lib/CHANGELOG.md index d45d55f6a36..b98534e791d 100644 --- a/javascript/ql/lib/CHANGELOG.md +++ b/javascript/ql/lib/CHANGELOG.md @@ -1,3 +1,10 @@ +## 2.6.11 + +### Minor Analysis Improvements + +* Added modeling for promisification libraries `@gar/promisify`, `es6-promisify`, `util.promisify`, `thenify-all`, `call-me-maybe`, `@google-cloud/promisify`, and `util-promisify`. +* Data flow is now tracked through promisified user-defined functions. + ## 2.6.10 ### Minor Analysis Improvements diff --git a/javascript/ql/lib/change-notes/2025-09-15-promisifications.md b/javascript/ql/lib/change-notes/released/2.6.11.md similarity index 85% rename from javascript/ql/lib/change-notes/2025-09-15-promisifications.md rename to javascript/ql/lib/change-notes/released/2.6.11.md index 8864ab23a02..b9a47cae76c 100644 --- a/javascript/ql/lib/change-notes/2025-09-15-promisifications.md +++ b/javascript/ql/lib/change-notes/released/2.6.11.md @@ -1,5 +1,6 @@ ---- -category: minorAnalysis ---- +## 2.6.11 + +### Minor Analysis Improvements + * Added modeling for promisification libraries `@gar/promisify`, `es6-promisify`, `util.promisify`, `thenify-all`, `call-me-maybe`, `@google-cloud/promisify`, and `util-promisify`. * Data flow is now tracked through promisified user-defined functions. diff --git a/javascript/ql/lib/codeql-pack.release.yml b/javascript/ql/lib/codeql-pack.release.yml index aa42bd9f12a..a31eb42966c 100644 --- a/javascript/ql/lib/codeql-pack.release.yml +++ b/javascript/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.6.10 +lastReleaseVersion: 2.6.11 diff --git a/javascript/ql/lib/qlpack.yml b/javascript/ql/lib/qlpack.yml index e233d83e328..1d05d1003f3 100644 --- a/javascript/ql/lib/qlpack.yml +++ b/javascript/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-all -version: 2.6.11-dev +version: 2.6.12-dev groups: javascript dbscheme: semmlecode.javascript.dbscheme extractor: javascript diff --git a/javascript/ql/src/CHANGELOG.md b/javascript/ql/src/CHANGELOG.md index ab471438cb1..619bc14bf29 100644 --- a/javascript/ql/src/CHANGELOG.md +++ b/javascript/ql/src/CHANGELOG.md @@ -1,3 +1,17 @@ +## 2.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.9 +* Added support for `import defer` syntax in JavaScript and TypeScript. + +### Minor Analysis Improvements + +* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. +* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. +* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. +* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. + ## 2.0.3 No user-facing changes. diff --git a/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md b/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md deleted file mode 100644 index db04cbc7d93..00000000000 --- a/javascript/ql/src/change-notes/2025-07-31-cors-move-out-of-experimental.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. diff --git a/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md b/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md deleted file mode 100644 index 17fe6123cce..00000000000 --- a/javascript/ql/src/change-notes/2025-08-27-remote-property-injection-update.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. \ No newline at end of file diff --git a/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md b/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md deleted file mode 100644 index bb0b6420200..00000000000 --- a/javascript/ql/src/change-notes/2025-09-05-typescript-5.9.md +++ /dev/null @@ -1,5 +0,0 @@ ---- -category: majorAnalysis ---- -* Added support for TypeScript 5.9 -* Added support for `import defer` syntax in JavaScript and TypeScript. diff --git a/javascript/ql/src/change-notes/2025-09-12-off-by-one.md b/javascript/ql/src/change-notes/2025-09-12-off-by-one.md deleted file mode 100644 index 42a97195d4f..00000000000 --- a/javascript/ql/src/change-notes/2025-09-12-off-by-one.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. diff --git a/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md b/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md deleted file mode 100644 index a61a78d7f60..00000000000 --- a/javascript/ql/src/change-notes/2025-09-16-promise-try-array-with.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: minorAnalysis ---- -* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. diff --git a/javascript/ql/src/change-notes/released/2.1.0.md b/javascript/ql/src/change-notes/released/2.1.0.md new file mode 100644 index 00000000000..e0ef5ddd6e1 --- /dev/null +++ b/javascript/ql/src/change-notes/released/2.1.0.md @@ -0,0 +1,13 @@ +## 2.1.0 + +### Major Analysis Improvements + +* Added support for TypeScript 5.9 +* Added support for `import defer` syntax in JavaScript and TypeScript. + +### Minor Analysis Improvements + +* Data flow is now tracked through the `Promise.try` and `Array.prototype.with` functions. +* Query `js/index-out-of-bounds` no longer produces a false-positive when a strictly-less-than check overrides a previous less-than-or-equal test. +* The query `js/remote-property-injection` now detects property injection vulnerabilities through object enumeration patterns such as `Object.keys()`. +* The query "Permissive CORS configuration" (`js/cors-permissive-configuration`) has been promoted from experimental and is now part of the default security suite. diff --git a/javascript/ql/src/codeql-pack.release.yml b/javascript/ql/src/codeql-pack.release.yml index fabf1e86596..487a1a58b2b 100644 --- a/javascript/ql/src/codeql-pack.release.yml +++ b/javascript/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.3 +lastReleaseVersion: 2.1.0 diff --git a/javascript/ql/src/qlpack.yml b/javascript/ql/src/qlpack.yml index b754f04005d..916ad1339b2 100644 --- a/javascript/ql/src/qlpack.yml +++ b/javascript/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/javascript-queries -version: 2.0.4-dev +version: 2.1.1-dev groups: - javascript - queries diff --git a/misc/suite-helpers/CHANGELOG.md b/misc/suite-helpers/CHANGELOG.md index 4a5e75cac92..6b54042fef3 100644 --- a/misc/suite-helpers/CHANGELOG.md +++ b/misc/suite-helpers/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/misc/suite-helpers/change-notes/released/1.0.31.md b/misc/suite-helpers/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/misc/suite-helpers/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/misc/suite-helpers/codeql-pack.release.yml b/misc/suite-helpers/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/misc/suite-helpers/codeql-pack.release.yml +++ b/misc/suite-helpers/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/misc/suite-helpers/qlpack.yml b/misc/suite-helpers/qlpack.yml index 16add0c5464..72c2f165759 100644 --- a/misc/suite-helpers/qlpack.yml +++ b/misc/suite-helpers/qlpack.yml @@ -1,4 +1,4 @@ name: codeql/suite-helpers -version: 1.0.31-dev +version: 1.0.32-dev groups: shared warnOnImplicitThis: true diff --git a/python/ql/lib/CHANGELOG.md b/python/ql/lib/CHANGELOG.md index eddd592be74..6a4fefd4446 100644 --- a/python/ql/lib/CHANGELOG.md +++ b/python/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 4.0.15 + +No user-facing changes. + ## 4.0.14 ### Minor Analysis Improvements diff --git a/python/ql/lib/change-notes/released/4.0.15.md b/python/ql/lib/change-notes/released/4.0.15.md new file mode 100644 index 00000000000..de5387e3da3 --- /dev/null +++ b/python/ql/lib/change-notes/released/4.0.15.md @@ -0,0 +1,3 @@ +## 4.0.15 + +No user-facing changes. diff --git a/python/ql/lib/codeql-pack.release.yml b/python/ql/lib/codeql-pack.release.yml index 5e4c777a339..eef62765883 100644 --- a/python/ql/lib/codeql-pack.release.yml +++ b/python/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 4.0.14 +lastReleaseVersion: 4.0.15 diff --git a/python/ql/lib/qlpack.yml b/python/ql/lib/qlpack.yml index 71746d34c4e..61875fc7f4e 100644 --- a/python/ql/lib/qlpack.yml +++ b/python/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-all -version: 4.0.15-dev +version: 4.0.16-dev groups: python dbscheme: semmlecode.python.dbscheme extractor: python diff --git a/python/ql/src/CHANGELOG.md b/python/ql/src/CHANGELOG.md index 0c22d526f39..de3fc1ddf2b 100644 --- a/python/ql/src/CHANGELOG.md +++ b/python/ql/src/CHANGELOG.md @@ -1,3 +1,9 @@ +## 1.6.5 + +### Minor Analysis Improvements + +* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. + ## 1.6.4 ### Minor Analysis Improvements diff --git a/python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md b/python/ql/src/change-notes/released/1.6.5.md similarity index 75% rename from python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md rename to python/ql/src/change-notes/released/1.6.5.md index 5dfe5c2b841..e9e53221424 100644 --- a/python/ql/src/change-notes/2025-06-04-missing-multiple-calls-to-init-del.md +++ b/python/ql/src/change-notes/released/1.6.5.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- -* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. \ No newline at end of file +## 1.6.5 + +### Minor Analysis Improvements + +* The queries `py/missing-call-to-init`, `py/missing-calls-to-del`, `py/multiple-calls-to-init`, and `py/multiple-calls-to-del` queries have been modernized; no longer relying on outdated libraries, producing more precise results with more descriptive alert messages, and improved documentation. diff --git a/python/ql/src/codeql-pack.release.yml b/python/ql/src/codeql-pack.release.yml index 1910e09d6a6..03153270557 100644 --- a/python/ql/src/codeql-pack.release.yml +++ b/python/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.6.4 +lastReleaseVersion: 1.6.5 diff --git a/python/ql/src/qlpack.yml b/python/ql/src/qlpack.yml index 3cc58c14faf..edf6366c64b 100644 --- a/python/ql/src/qlpack.yml +++ b/python/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/python-queries -version: 1.6.5-dev +version: 1.6.6-dev groups: - python - queries diff --git a/ruby/ql/lib/CHANGELOG.md b/ruby/ql/lib/CHANGELOG.md index 560bf17bc51..b9333de9c5d 100644 --- a/ruby/ql/lib/CHANGELOG.md +++ b/ruby/ql/lib/CHANGELOG.md @@ -1,3 +1,7 @@ +## 5.0.4 + +No user-facing changes. + ## 5.0.3 No user-facing changes. diff --git a/ruby/ql/lib/change-notes/released/5.0.4.md b/ruby/ql/lib/change-notes/released/5.0.4.md new file mode 100644 index 00000000000..5c625c33d52 --- /dev/null +++ b/ruby/ql/lib/change-notes/released/5.0.4.md @@ -0,0 +1,3 @@ +## 5.0.4 + +No user-facing changes. diff --git a/ruby/ql/lib/codeql-pack.release.yml b/ruby/ql/lib/codeql-pack.release.yml index 6997554f6dd..8cb0167caf0 100644 --- a/ruby/ql/lib/codeql-pack.release.yml +++ b/ruby/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.3 +lastReleaseVersion: 5.0.4 diff --git a/ruby/ql/lib/qlpack.yml b/ruby/ql/lib/qlpack.yml index 89f162e0ed9..a2288bd3799 100644 --- a/ruby/ql/lib/qlpack.yml +++ b/ruby/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-all -version: 5.0.4-dev +version: 5.0.5-dev groups: ruby extractor: ruby dbscheme: ruby.dbscheme diff --git a/ruby/ql/src/CHANGELOG.md b/ruby/ql/src/CHANGELOG.md index 29b4ff27bc0..40209ec84bd 100644 --- a/ruby/ql/src/CHANGELOG.md +++ b/ruby/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.4.5 + +No user-facing changes. + ## 1.4.4 No user-facing changes. diff --git a/ruby/ql/src/change-notes/released/1.4.5.md b/ruby/ql/src/change-notes/released/1.4.5.md new file mode 100644 index 00000000000..930163bb5ae --- /dev/null +++ b/ruby/ql/src/change-notes/released/1.4.5.md @@ -0,0 +1,3 @@ +## 1.4.5 + +No user-facing changes. diff --git a/ruby/ql/src/codeql-pack.release.yml b/ruby/ql/src/codeql-pack.release.yml index 1dfca6daa3b..a74b6b08d86 100644 --- a/ruby/ql/src/codeql-pack.release.yml +++ b/ruby/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.4.4 +lastReleaseVersion: 1.4.5 diff --git a/ruby/ql/src/qlpack.yml b/ruby/ql/src/qlpack.yml index da157badc90..084d64e8b02 100644 --- a/ruby/ql/src/qlpack.yml +++ b/ruby/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ruby-queries -version: 1.4.5-dev +version: 1.4.6-dev groups: - ruby - queries diff --git a/rust/ql/lib/CHANGELOG.md b/rust/ql/lib/CHANGELOG.md index 6ff2f1072c7..809479e5fec 100644 --- a/rust/ql/lib/CHANGELOG.md +++ b/rust/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 0.1.16 + +### Minor Analysis Improvements + +* Added cryptography related models for the `cookie` and `biscotti` crates. + ## 0.1.15 ### Major Analysis Improvements diff --git a/rust/ql/lib/change-notes/2025-09-12-cookie.md b/rust/ql/lib/change-notes/released/0.1.16.md similarity index 63% rename from rust/ql/lib/change-notes/2025-09-12-cookie.md rename to rust/ql/lib/change-notes/released/0.1.16.md index 04fa37d1d2d..eb630642345 100644 --- a/rust/ql/lib/change-notes/2025-09-12-cookie.md +++ b/rust/ql/lib/change-notes/released/0.1.16.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 0.1.16 + +### Minor Analysis Improvements + * Added cryptography related models for the `cookie` and `biscotti` crates. diff --git a/rust/ql/lib/codeql-pack.release.yml b/rust/ql/lib/codeql-pack.release.yml index 74719634743..a01dca92161 100644 --- a/rust/ql/lib/codeql-pack.release.yml +++ b/rust/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.15 +lastReleaseVersion: 0.1.16 diff --git a/rust/ql/lib/qlpack.yml b/rust/ql/lib/qlpack.yml index 6b78c2d50ad..421a604aa3d 100644 --- a/rust/ql/lib/qlpack.yml +++ b/rust/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-all -version: 0.1.16-dev +version: 0.1.17-dev groups: rust extractor: rust dbscheme: rust.dbscheme diff --git a/rust/ql/src/CHANGELOG.md b/rust/ql/src/CHANGELOG.md index b8ca5b71568..48f64efbcdb 100644 --- a/rust/ql/src/CHANGELOG.md +++ b/rust/ql/src/CHANGELOG.md @@ -1,3 +1,13 @@ +## 0.1.16 + +### New Queries + +* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. + +### Bug Fixes + +* The message for `rust/diagnostic/database-quality` has been updated to include detailed database health metrics. These changes are visible on the tool status page. + ## 0.1.15 ### New Queries diff --git a/rust/ql/src/change-notes/2025-09-09-request-forgery.md b/rust/ql/src/change-notes/2025-09-09-request-forgery.md deleted file mode 100644 index 991dd0918cd..00000000000 --- a/rust/ql/src/change-notes/2025-09-09-request-forgery.md +++ /dev/null @@ -1,4 +0,0 @@ ---- -category: newQuery ---- -* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. \ No newline at end of file diff --git a/rust/ql/src/change-notes/2025-09-04-database-diagnostics.md b/rust/ql/src/change-notes/released/0.1.16.md similarity index 52% rename from rust/ql/src/change-notes/2025-09-04-database-diagnostics.md rename to rust/ql/src/change-notes/released/0.1.16.md index b578fcef141..97666aba677 100644 --- a/rust/ql/src/change-notes/2025-09-04-database-diagnostics.md +++ b/rust/ql/src/change-notes/released/0.1.16.md @@ -1,4 +1,9 @@ ---- -category: fix ---- +## 0.1.16 + +### New Queries + +* Added a new query, `rust/request-forgery`, for detecting server-side request forgery vulnerabilities. + +### Bug Fixes + * The message for `rust/diagnostic/database-quality` has been updated to include detailed database health metrics. These changes are visible on the tool status page. diff --git a/rust/ql/src/codeql-pack.release.yml b/rust/ql/src/codeql-pack.release.yml index 74719634743..a01dca92161 100644 --- a/rust/ql/src/codeql-pack.release.yml +++ b/rust/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.1.15 +lastReleaseVersion: 0.1.16 diff --git a/rust/ql/src/qlpack.yml b/rust/ql/src/qlpack.yml index 54c742df0b5..3c122e1853b 100644 --- a/rust/ql/src/qlpack.yml +++ b/rust/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rust-queries -version: 0.1.16-dev +version: 0.1.17-dev groups: - rust - queries diff --git a/shared/concepts/CHANGELOG.md b/shared/concepts/CHANGELOG.md index 88abeb21fd8..bac19b9b77f 100644 --- a/shared/concepts/CHANGELOG.md +++ b/shared/concepts/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.5 + +No user-facing changes. + ## 0.0.4 No user-facing changes. diff --git a/shared/concepts/change-notes/released/0.0.5.md b/shared/concepts/change-notes/released/0.0.5.md new file mode 100644 index 00000000000..766ec2723b5 --- /dev/null +++ b/shared/concepts/change-notes/released/0.0.5.md @@ -0,0 +1,3 @@ +## 0.0.5 + +No user-facing changes. diff --git a/shared/concepts/codeql-pack.release.yml b/shared/concepts/codeql-pack.release.yml index ec411a674bc..bb45a1ab018 100644 --- a/shared/concepts/codeql-pack.release.yml +++ b/shared/concepts/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.4 +lastReleaseVersion: 0.0.5 diff --git a/shared/concepts/qlpack.yml b/shared/concepts/qlpack.yml index 151939d739a..8b0fc6c6f7a 100644 --- a/shared/concepts/qlpack.yml +++ b/shared/concepts/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/concepts -version: 0.0.5-dev +version: 0.0.6-dev groups: shared library: true dependencies: diff --git a/shared/controlflow/CHANGELOG.md b/shared/controlflow/CHANGELOG.md index 7e3580fae37..9b9c04fd8d8 100644 --- a/shared/controlflow/CHANGELOG.md +++ b/shared/controlflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/controlflow/change-notes/released/2.0.15.md b/shared/controlflow/change-notes/released/2.0.15.md new file mode 100644 index 00000000000..3b59db4224a --- /dev/null +++ b/shared/controlflow/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/controlflow/codeql-pack.release.yml b/shared/controlflow/codeql-pack.release.yml index 23aa0864b29..0377ae283a3 100644 --- a/shared/controlflow/codeql-pack.release.yml +++ b/shared/controlflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/controlflow/qlpack.yml b/shared/controlflow/qlpack.yml index e1647c3a2f4..56945c0709d 100644 --- a/shared/controlflow/qlpack.yml +++ b/shared/controlflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/controlflow -version: 2.0.15-dev +version: 2.0.16-dev groups: shared library: true dependencies: diff --git a/shared/dataflow/CHANGELOG.md b/shared/dataflow/CHANGELOG.md index b5b86ffbccb..1a867888e89 100644 --- a/shared/dataflow/CHANGELOG.md +++ b/shared/dataflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/dataflow/change-notes/released/2.0.15.md b/shared/dataflow/change-notes/released/2.0.15.md new file mode 100644 index 00000000000..3b59db4224a --- /dev/null +++ b/shared/dataflow/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/dataflow/codeql-pack.release.yml b/shared/dataflow/codeql-pack.release.yml index 23aa0864b29..0377ae283a3 100644 --- a/shared/dataflow/codeql-pack.release.yml +++ b/shared/dataflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/dataflow/qlpack.yml b/shared/dataflow/qlpack.yml index 62a66a7e228..4c0a9bdfe8c 100644 --- a/shared/dataflow/qlpack.yml +++ b/shared/dataflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/dataflow -version: 2.0.15-dev +version: 2.0.16-dev groups: shared library: true dependencies: diff --git a/shared/mad/CHANGELOG.md b/shared/mad/CHANGELOG.md index bd3e670038c..e6cf183a1d4 100644 --- a/shared/mad/CHANGELOG.md +++ b/shared/mad/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/mad/change-notes/released/1.0.31.md b/shared/mad/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/mad/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/mad/codeql-pack.release.yml b/shared/mad/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/mad/codeql-pack.release.yml +++ b/shared/mad/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/mad/qlpack.yml b/shared/mad/qlpack.yml index 33968071a42..b6f4e8c2bc1 100644 --- a/shared/mad/qlpack.yml +++ b/shared/mad/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/mad -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true dependencies: diff --git a/shared/quantum/CHANGELOG.md b/shared/quantum/CHANGELOG.md index fba2a870356..a59e560c415 100644 --- a/shared/quantum/CHANGELOG.md +++ b/shared/quantum/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.9 + +No user-facing changes. + ## 0.0.8 No user-facing changes. diff --git a/shared/quantum/change-notes/released/0.0.9.md b/shared/quantum/change-notes/released/0.0.9.md new file mode 100644 index 00000000000..c9e17c6d6cf --- /dev/null +++ b/shared/quantum/change-notes/released/0.0.9.md @@ -0,0 +1,3 @@ +## 0.0.9 + +No user-facing changes. diff --git a/shared/quantum/codeql-pack.release.yml b/shared/quantum/codeql-pack.release.yml index 58fdc6b45de..ecdd64fbab8 100644 --- a/shared/quantum/codeql-pack.release.yml +++ b/shared/quantum/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.8 +lastReleaseVersion: 0.0.9 diff --git a/shared/quantum/qlpack.yml b/shared/quantum/qlpack.yml index 023d04f544d..3741ff55855 100644 --- a/shared/quantum/qlpack.yml +++ b/shared/quantum/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/quantum -version: 0.0.9-dev +version: 0.0.10-dev groups: shared library: true dependencies: diff --git a/shared/rangeanalysis/CHANGELOG.md b/shared/rangeanalysis/CHANGELOG.md index e64dff3b1e6..10466480900 100644 --- a/shared/rangeanalysis/CHANGELOG.md +++ b/shared/rangeanalysis/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/rangeanalysis/change-notes/released/1.0.31.md b/shared/rangeanalysis/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/rangeanalysis/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/rangeanalysis/codeql-pack.release.yml b/shared/rangeanalysis/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/rangeanalysis/codeql-pack.release.yml +++ b/shared/rangeanalysis/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/rangeanalysis/qlpack.yml b/shared/rangeanalysis/qlpack.yml index 5ee5c466a3d..e67c274bf51 100644 --- a/shared/rangeanalysis/qlpack.yml +++ b/shared/rangeanalysis/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/rangeanalysis -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true dependencies: diff --git a/shared/regex/CHANGELOG.md b/shared/regex/CHANGELOG.md index 11353af62b1..3b3fcb5a55f 100644 --- a/shared/regex/CHANGELOG.md +++ b/shared/regex/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/regex/change-notes/released/1.0.31.md b/shared/regex/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/regex/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/regex/codeql-pack.release.yml b/shared/regex/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/regex/codeql-pack.release.yml +++ b/shared/regex/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/regex/qlpack.yml b/shared/regex/qlpack.yml index 30748219abb..5aebaf9bffb 100644 --- a/shared/regex/qlpack.yml +++ b/shared/regex/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/regex -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true dependencies: diff --git a/shared/ssa/CHANGELOG.md b/shared/ssa/CHANGELOG.md index 5a9cf1a7175..e7e17bf044b 100644 --- a/shared/ssa/CHANGELOG.md +++ b/shared/ssa/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.7 + +No user-facing changes. + ## 2.0.6 No user-facing changes. diff --git a/shared/ssa/change-notes/released/2.0.7.md b/shared/ssa/change-notes/released/2.0.7.md new file mode 100644 index 00000000000..4eb1353458c --- /dev/null +++ b/shared/ssa/change-notes/released/2.0.7.md @@ -0,0 +1,3 @@ +## 2.0.7 + +No user-facing changes. diff --git a/shared/ssa/codeql-pack.release.yml b/shared/ssa/codeql-pack.release.yml index fbbc03c7642..08d5e959449 100644 --- a/shared/ssa/codeql-pack.release.yml +++ b/shared/ssa/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.6 +lastReleaseVersion: 2.0.7 diff --git a/shared/ssa/qlpack.yml b/shared/ssa/qlpack.yml index 1bb80db8eb8..8337226f574 100644 --- a/shared/ssa/qlpack.yml +++ b/shared/ssa/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/ssa -version: 2.0.7-dev +version: 2.0.8-dev groups: shared library: true dependencies: diff --git a/shared/threat-models/CHANGELOG.md b/shared/threat-models/CHANGELOG.md index c30f8de8bc9..d5040623557 100644 --- a/shared/threat-models/CHANGELOG.md +++ b/shared/threat-models/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/threat-models/change-notes/released/1.0.31.md b/shared/threat-models/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/threat-models/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/threat-models/codeql-pack.release.yml b/shared/threat-models/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/threat-models/codeql-pack.release.yml +++ b/shared/threat-models/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/threat-models/qlpack.yml b/shared/threat-models/qlpack.yml index 4295c7e7024..8f72fd8ad3f 100644 --- a/shared/threat-models/qlpack.yml +++ b/shared/threat-models/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/threat-models -version: 1.0.31-dev +version: 1.0.32-dev library: true groups: shared dataExtensions: diff --git a/shared/tutorial/CHANGELOG.md b/shared/tutorial/CHANGELOG.md index 61441b61061..f4a80412ca8 100644 --- a/shared/tutorial/CHANGELOG.md +++ b/shared/tutorial/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/tutorial/change-notes/released/1.0.31.md b/shared/tutorial/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/tutorial/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/tutorial/codeql-pack.release.yml b/shared/tutorial/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/tutorial/codeql-pack.release.yml +++ b/shared/tutorial/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/tutorial/qlpack.yml b/shared/tutorial/qlpack.yml index f640ccc3116..aabb0356b86 100644 --- a/shared/tutorial/qlpack.yml +++ b/shared/tutorial/qlpack.yml @@ -1,7 +1,7 @@ name: codeql/tutorial description: Library for the CodeQL detective tutorials, helping new users learn to write CodeQL queries. -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/typeflow/CHANGELOG.md b/shared/typeflow/CHANGELOG.md index 94df766d756..bf429698022 100644 --- a/shared/typeflow/CHANGELOG.md +++ b/shared/typeflow/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/typeflow/change-notes/released/1.0.31.md b/shared/typeflow/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/typeflow/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/typeflow/codeql-pack.release.yml b/shared/typeflow/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/typeflow/codeql-pack.release.yml +++ b/shared/typeflow/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/typeflow/qlpack.yml b/shared/typeflow/qlpack.yml index f98b15e1540..98566858903 100644 --- a/shared/typeflow/qlpack.yml +++ b/shared/typeflow/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeflow -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true dependencies: diff --git a/shared/typeinference/CHANGELOG.md b/shared/typeinference/CHANGELOG.md index d9dd6b6f2e2..83a42fb0551 100644 --- a/shared/typeinference/CHANGELOG.md +++ b/shared/typeinference/CHANGELOG.md @@ -1,3 +1,7 @@ +## 0.0.12 + +No user-facing changes. + ## 0.0.11 No user-facing changes. diff --git a/shared/typeinference/change-notes/released/0.0.12.md b/shared/typeinference/change-notes/released/0.0.12.md new file mode 100644 index 00000000000..0e206033bc4 --- /dev/null +++ b/shared/typeinference/change-notes/released/0.0.12.md @@ -0,0 +1,3 @@ +## 0.0.12 + +No user-facing changes. diff --git a/shared/typeinference/codeql-pack.release.yml b/shared/typeinference/codeql-pack.release.yml index e679dc42092..997fb8da83c 100644 --- a/shared/typeinference/codeql-pack.release.yml +++ b/shared/typeinference/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 0.0.11 +lastReleaseVersion: 0.0.12 diff --git a/shared/typeinference/qlpack.yml b/shared/typeinference/qlpack.yml index ca81b09ba49..954a850cf0f 100644 --- a/shared/typeinference/qlpack.yml +++ b/shared/typeinference/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typeinference -version: 0.0.12-dev +version: 0.0.13-dev groups: shared library: true dependencies: diff --git a/shared/typetracking/CHANGELOG.md b/shared/typetracking/CHANGELOG.md index 4e7d55fc700..1372c8c89ea 100644 --- a/shared/typetracking/CHANGELOG.md +++ b/shared/typetracking/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.15 + +No user-facing changes. + ## 2.0.14 No user-facing changes. diff --git a/shared/typetracking/change-notes/released/2.0.15.md b/shared/typetracking/change-notes/released/2.0.15.md new file mode 100644 index 00000000000..3b59db4224a --- /dev/null +++ b/shared/typetracking/change-notes/released/2.0.15.md @@ -0,0 +1,3 @@ +## 2.0.15 + +No user-facing changes. diff --git a/shared/typetracking/codeql-pack.release.yml b/shared/typetracking/codeql-pack.release.yml index 23aa0864b29..0377ae283a3 100644 --- a/shared/typetracking/codeql-pack.release.yml +++ b/shared/typetracking/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.14 +lastReleaseVersion: 2.0.15 diff --git a/shared/typetracking/qlpack.yml b/shared/typetracking/qlpack.yml index 95228f4b0d7..2bf6f01d218 100644 --- a/shared/typetracking/qlpack.yml +++ b/shared/typetracking/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typetracking -version: 2.0.15-dev +version: 2.0.16-dev groups: shared library: true dependencies: diff --git a/shared/typos/CHANGELOG.md b/shared/typos/CHANGELOG.md index 37548ac47d5..c44b941f9e3 100644 --- a/shared/typos/CHANGELOG.md +++ b/shared/typos/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/typos/change-notes/released/1.0.31.md b/shared/typos/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/typos/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/typos/codeql-pack.release.yml b/shared/typos/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/typos/codeql-pack.release.yml +++ b/shared/typos/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/typos/qlpack.yml b/shared/typos/qlpack.yml index 42c6e4df22e..b01883668b7 100644 --- a/shared/typos/qlpack.yml +++ b/shared/typos/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/typos -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true warnOnImplicitThis: true diff --git a/shared/util/CHANGELOG.md b/shared/util/CHANGELOG.md index 193ce4e9521..d9169a8d5d8 100644 --- a/shared/util/CHANGELOG.md +++ b/shared/util/CHANGELOG.md @@ -1,3 +1,7 @@ +## 2.0.18 + +No user-facing changes. + ## 2.0.17 ### Minor Analysis Improvements diff --git a/shared/util/change-notes/released/2.0.18.md b/shared/util/change-notes/released/2.0.18.md new file mode 100644 index 00000000000..11e398dac31 --- /dev/null +++ b/shared/util/change-notes/released/2.0.18.md @@ -0,0 +1,3 @@ +## 2.0.18 + +No user-facing changes. diff --git a/shared/util/codeql-pack.release.yml b/shared/util/codeql-pack.release.yml index a5f7c15c020..16342205c73 100644 --- a/shared/util/codeql-pack.release.yml +++ b/shared/util/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 2.0.17 +lastReleaseVersion: 2.0.18 diff --git a/shared/util/qlpack.yml b/shared/util/qlpack.yml index 2587ddb147a..1c1f5670d3e 100644 --- a/shared/util/qlpack.yml +++ b/shared/util/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/util -version: 2.0.18-dev +version: 2.0.19-dev groups: shared library: true dependencies: null diff --git a/shared/xml/CHANGELOG.md b/shared/xml/CHANGELOG.md index 96204491536..59ae3e2581a 100644 --- a/shared/xml/CHANGELOG.md +++ b/shared/xml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/xml/change-notes/released/1.0.31.md b/shared/xml/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/xml/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/xml/codeql-pack.release.yml b/shared/xml/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/xml/codeql-pack.release.yml +++ b/shared/xml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/xml/qlpack.yml b/shared/xml/qlpack.yml index 4e9a5bf0a63..0908201b182 100644 --- a/shared/xml/qlpack.yml +++ b/shared/xml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/xml -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true dependencies: diff --git a/shared/yaml/CHANGELOG.md b/shared/yaml/CHANGELOG.md index 67e07b08467..2254f38fb9f 100644 --- a/shared/yaml/CHANGELOG.md +++ b/shared/yaml/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.0.31 + +No user-facing changes. + ## 1.0.30 No user-facing changes. diff --git a/shared/yaml/change-notes/released/1.0.31.md b/shared/yaml/change-notes/released/1.0.31.md new file mode 100644 index 00000000000..b2642bbb5f8 --- /dev/null +++ b/shared/yaml/change-notes/released/1.0.31.md @@ -0,0 +1,3 @@ +## 1.0.31 + +No user-facing changes. diff --git a/shared/yaml/codeql-pack.release.yml b/shared/yaml/codeql-pack.release.yml index f04640951de..f5bdc98ffc8 100644 --- a/shared/yaml/codeql-pack.release.yml +++ b/shared/yaml/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.0.30 +lastReleaseVersion: 1.0.31 diff --git a/shared/yaml/qlpack.yml b/shared/yaml/qlpack.yml index 56aa47072f0..cbbdd896341 100644 --- a/shared/yaml/qlpack.yml +++ b/shared/yaml/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/yaml -version: 1.0.31-dev +version: 1.0.32-dev groups: shared library: true warnOnImplicitThis: true diff --git a/swift/ql/lib/CHANGELOG.md b/swift/ql/lib/CHANGELOG.md index cef716a2578..7138ed02a2b 100644 --- a/swift/ql/lib/CHANGELOG.md +++ b/swift/ql/lib/CHANGELOG.md @@ -1,3 +1,9 @@ +## 5.0.7 + +### Minor Analysis Improvements + +* Updated to allow analysis of Swift 6.1.3. + ## 5.0.6 No user-facing changes. diff --git a/swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md b/swift/ql/lib/change-notes/released/5.0.7.md similarity index 50% rename from swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md rename to swift/ql/lib/change-notes/released/5.0.7.md index 7d2cde3c421..f10f4382e26 100644 --- a/swift/ql/lib/change-notes/2025-09-08-swift-6.1.3.md +++ b/swift/ql/lib/change-notes/released/5.0.7.md @@ -1,4 +1,5 @@ ---- -category: minorAnalysis ---- +## 5.0.7 + +### Minor Analysis Improvements + * Updated to allow analysis of Swift 6.1.3. diff --git a/swift/ql/lib/codeql-pack.release.yml b/swift/ql/lib/codeql-pack.release.yml index cc6fded2554..accf4086d8a 100644 --- a/swift/ql/lib/codeql-pack.release.yml +++ b/swift/ql/lib/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 5.0.6 +lastReleaseVersion: 5.0.7 diff --git a/swift/ql/lib/qlpack.yml b/swift/ql/lib/qlpack.yml index 451e86b8b3d..88950de258f 100644 --- a/swift/ql/lib/qlpack.yml +++ b/swift/ql/lib/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-all -version: 5.0.7-dev +version: 5.0.8-dev groups: swift extractor: swift dbscheme: swift.dbscheme diff --git a/swift/ql/src/CHANGELOG.md b/swift/ql/src/CHANGELOG.md index 58d42ca7813..eac65864617 100644 --- a/swift/ql/src/CHANGELOG.md +++ b/swift/ql/src/CHANGELOG.md @@ -1,3 +1,7 @@ +## 1.2.5 + +No user-facing changes. + ## 1.2.4 ### Bug Fixes diff --git a/swift/ql/src/change-notes/released/1.2.5.md b/swift/ql/src/change-notes/released/1.2.5.md new file mode 100644 index 00000000000..c805dc2cd4c --- /dev/null +++ b/swift/ql/src/change-notes/released/1.2.5.md @@ -0,0 +1,3 @@ +## 1.2.5 + +No user-facing changes. diff --git a/swift/ql/src/codeql-pack.release.yml b/swift/ql/src/codeql-pack.release.yml index 172090f46b6..40355f0807f 100644 --- a/swift/ql/src/codeql-pack.release.yml +++ b/swift/ql/src/codeql-pack.release.yml @@ -1,2 +1,2 @@ --- -lastReleaseVersion: 1.2.4 +lastReleaseVersion: 1.2.5 diff --git a/swift/ql/src/qlpack.yml b/swift/ql/src/qlpack.yml index 7d0821afdd7..f49b81cec75 100644 --- a/swift/ql/src/qlpack.yml +++ b/swift/ql/src/qlpack.yml @@ -1,5 +1,5 @@ name: codeql/swift-queries -version: 1.2.5-dev +version: 1.2.6-dev groups: - swift - queries