Release preparation for version 2.14.1

2025-12-24 04:36:35 +01:00 · 2023-07-20 16:32:27 +00:00
parent b21580b71f
commit c936a920b0
143 changed files with 505 additions and 273 deletions
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,20 @@
+## 0.10.1
+
+### New Features
+
+* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`. 
+  Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.
+
+### Minor Analysis Improvements
+
+* Data flow configurations can now include a predicate `neverSkip(Node node)`
+  in order to ensure inclusion of certain nodes in the path explanations. The
+  predicate defaults to the end-points of the additional flow steps provided in
+  the configuration, which means that such steps now always are visible by
+  default in path explanations.
+* Add support for Models as Data for Reflected XSS query
+* Parameters with a default value are now considered a `DefinitionNode`. This improvement was motivated by allowing type-tracking and API graphs to follow flow from such a default value to a use by a captured variable.
+
 ## 0.10.0

 ### New Features
--- a/python/ql/lib/change-notes/2023-07-07-parameter-default-value-definition-node.md
+++ b/python/ql/lib/change-notes/2023-07-07-parameter-default-value-definition-node.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Parameters with a default value are now considered a `DefinitionNode`. This improvement was motivated by allowing type-tracking and API graphs to follow flow from such a default value to a use by a captured variable.
--- a/python/ql/lib/change-notes/2023-07-12-default-stateconfigsig-predicates.md
+++ b/python/ql/lib/change-notes/2023-07-12-default-stateconfigsig-predicates.md
@@ -1,6 +0,0 @@
---
-category: feature
---
-* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`. 
-  Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.
-  
--- a/python/ql/lib/change-notes/2023-07-13-mad-xss.md
+++ b/python/ql/lib/change-notes/2023-07-13-mad-xss.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* Add support for Models as Data for Reflected XSS query
--- a/python/ql/lib/change-notes/2023-07-19-neverskip-additionalstep.md
+++ b/python/ql/lib/change-notes/2023-07-19-neverskip-additionalstep.md
@@ -1,8 +0,0 @@
---
-category: minorAnalysis
---
-* Data flow configurations can now include a predicate `neverSkip(Node node)`
-  in order to ensure inclusion of certain nodes in the path explanations. The
-  predicate defaults to the end-points of the additional flow steps provided in
-  the configuration, which means that such steps now always are visible by
-  default in path explanations.
--- a/python/ql/lib/change-notes/released/0.10.1.md
+++ b/python/ql/lib/change-notes/released/0.10.1.md
@@ -0,0 +1,16 @@
+## 0.10.1
+
+### New Features
+
+* The `DataFlow::StateConfigSig` signature module has gained default implementations for `isBarrier/2` and `isAdditionalFlowStep/4`. 
+  Hence it is no longer needed to provide `none()` implementations of these predicates if they are not needed.
+
+### Minor Analysis Improvements
+
+* Data flow configurations can now include a predicate `neverSkip(Node node)`
+  in order to ensure inclusion of certain nodes in the path explanations. The
+  predicate defaults to the end-points of the additional flow steps provided in
+  the configuration, which means that such steps now always are visible by
+  default in path explanations.
+* Add support for Models as Data for Reflected XSS query
+* Parameters with a default value are now considered a `DefinitionNode`. This improvement was motivated by allowing type-tracking and API graphs to follow flow from such a default value to a use by a captured variable.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.10.0
+lastReleaseVersion: 0.10.1
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 0.10.1-dev
+version: 0.10.1
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.8.1
+
+### Minor Analysis Improvements
+
+* Fixed modeling of `aiohttp.ClientSession` so we properly handle `async with` uses. This can impact results of server-side request forgery queries (`py/full-ssrf`, `py/partial-ssrf`).
+
 ## 0.8.0

 ### Bug Fixes
--- a/python/ql/src/change-notes/2023-07-06-aiohttp-clientsession-modeling.md
+++ b/python/ql/src/change-notes/2023-07-06-aiohttp-clientsession-modeling.md
@@ -1,4 +1,5 @@
---
-category: minorAnalysis
---
+## 0.8.1
+
+### Minor Analysis Improvements
+
 * Fixed modeling of `aiohttp.ClientSession` so we properly handle `async with` uses. This can impact results of server-side request forgery queries (`py/full-ssrf`, `py/partial-ssrf`).
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.0
+lastReleaseVersion: 0.8.1
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 0.8.1-dev
+version: 0.8.1
 groups: 
  - python
  - queries