hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 19:26:31 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #13793 from github/post-release-prep/codeql-cli-2.14.1

Browse Source 
Post-release preparation for codeql-cli-2.14.1
This commit is contained in:
Chris Smowton
2023-07-26 17:22:05 +01:00
committed by GitHub
parent 24cdc962c2 f91b7a9342
commit c69a9ea032
143 changed files with 505 additions and 273 deletions
Download Patch File Download Diff File Expand all files Collapse all files

29
java/ql/lib/CHANGELOG.md
View File

@@ -1,3 +1,32 @@
## 0.7.1
### New Features
* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`.
Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.
* A `Class.isFileClass()` predicate, to identify Kotlin file classes, has been added.
### Minor Analysis Improvements
* Data flow configurations can now include a predicate `neverSkip(Node node)`
in order to ensure inclusion of certain nodes in the path explanations. The
predicate defaults to the end-points of the additional flow steps provided in
the configuration, which means that such steps now always are visible by
default in path explanations.
* Added models for Apache Commons Lang3 `ToStringBuilder.reflectionToString` method.
* Added support for the Kotlin method `apply`.
* Added models for the following packages:
* java.io
* java.lang
* java.net
* java.nio.channels
* java.nio.file
* java.util.zip
* okhttp3
* org.gradle.api.file
* retrofit2
## 0.7.0
### Deprecated APIs

14
java/ql/lib/change-notes/2023-06-08-new-models.md
View File

@@ -1,14 +0,0 @@
---
category: minorAnalysis
---
* Added models for the following packages:
* java.io
* java.lang
* java.net
* java.nio.channels
* java.nio.file
* java.util.zip
* okhttp3
* org.gradle.api.file
* retrofit2

4
java/ql/lib/change-notes/2023-07-10-kotlin-apply.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* Added support for the Kotlin method `apply`.

4
java/ql/lib/change-notes/2023-07-11-file-classes.md
View File

@@ -1,4 +0,0 @@
---
category: feature
---
* A `Class.isFileClass()` predicate, to identify Kotlin file classes, has been added.

4
java/ql/lib/change-notes/2023-07-12-apache-commons-lang3-tostringbuilder.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* Added models for Apache Commons Lang3 `ToStringBuilder.reflectionToString` method.

6
java/ql/lib/change-notes/2023-07-12-default-stateconfigsig-predicates.md
View File

@@ -1,6 +0,0 @@
---
category: feature
---
* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`.
Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.

8
java/ql/lib/change-notes/2023-07-19-neverskip-additionalstep.md
View File

@@ -1,8 +0,0 @@
---
category: minorAnalysis
---
* Data flow configurations can now include a predicate `neverSkip(Node node)`
in order to ensure inclusion of certain nodes in the path explanations. The
predicate defaults to the end-points of the additional flow steps provided in
the configuration, which means that such steps now always are visible by
default in path explanations.

28
java/ql/lib/change-notes/released/0.7.1.md Normal file
View File

@@ -0,0 +1,28 @@
## 0.7.1
### New Features
* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`.
Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.
* A `Class.isFileClass()` predicate, to identify Kotlin file classes, has been added.
### Minor Analysis Improvements
* Data flow configurations can now include a predicate `neverSkip(Node node)`
in order to ensure inclusion of certain nodes in the path explanations. The
predicate defaults to the end-points of the additional flow steps provided in
the configuration, which means that such steps now always are visible by
default in path explanations.
* Added models for Apache Commons Lang3 `ToStringBuilder.reflectionToString` method.
* Added support for the Kotlin method `apply`.
* Added models for the following packages:
* java.io
* java.lang
* java.net
* java.nio.channels
* java.nio.file
* java.util.zip
* okhttp3
* org.gradle.api.file
* retrofit2

2
java/ql/lib/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.7.0
lastReleaseVersion: 0.7.1

2
java/ql/lib/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/java-all
version: 0.7.1-dev
version: 0.7.2-dev
groups: java
dbscheme: config/semmlecode.dbscheme
extractor: java

6
java/ql/src/CHANGELOG.md
View File

@@ -1,3 +1,9 @@
## 0.7.1
### Minor Analysis Improvements
* The query "Unsafe resource fetching in Android WebView" (`java/android/unsafe-android-webview-fetch`) now recognizes WebViews where `setJavascriptEnabled`, `setAllowFileAccess`, `setAllowUniversalAccessFromFileURLs`, and/or `setAllowFileAccessFromFileURLs` are set inside the function block of the Kotlin `apply` function.
## 0.7.0
### Minor Analysis Improvements

7
java/ql/src/change-notes/2023-07-10-unsafe-android-access-apply.md → java/ql/src/change-notes/released/0.7.1.md
View File

@@ -1,4 +1,5 @@
---
category: minorAnalysis
---
## 0.7.1
### Minor Analysis Improvements
* The query "Unsafe resource fetching in Android WebView" (`java/android/unsafe-android-webview-fetch`) now recognizes WebViews where `setJavascriptEnabled`, `setAllowFileAccess`, `setAllowUniversalAccessFromFileURLs`, and/or `setAllowFileAccessFromFileURLs` are set inside the function block of the Kotlin `apply` function.

2
java/ql/src/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.7.0
lastReleaseVersion: 0.7.1

2
java/ql/src/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/java-queries
version: 0.7.1-dev
version: 0.7.2-dev
groups:
- java
- queries