Merge pull request #14823 from github/post-release-prep/codeql-cli-2.15.3

Post-release preparation for codeql-cli-2.15.3
2026-04-22 23:35:14 +02:00 · 2023-11-19 12:13:42 +01:00
parent 7c3122aade bad499e360
commit db180d9872
155 changed files with 466 additions and 210 deletions
--- a/java/ql/automodel/src/CHANGELOG.md
+++ b/java/ql/automodel/src/CHANGELOG.md
@@ -1,7 +1,10 @@
-## 0.0.7
+## 0.0.8

 No user-facing changes.

+## 0.0.7
+
+Support for extracting source candidates.
 ## 0.0.6

 No user-facing changes.
--- a/java/ql/automodel/src/change-notes/released/0.0.8.md
+++ b/java/ql/automodel/src/change-notes/released/0.0.8.md
@@ -0,0 +1,3 @@
+## 0.0.8
+
+No user-facing changes.
--- a/java/ql/automodel/src/codeql-pack.release.yml
+++ b/java/ql/automodel/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.0.7
+lastReleaseVersion: 0.0.8
--- a/java/ql/automodel/src/qlpack.yml
+++ b/java/ql/automodel/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-automodel-queries
-version: 0.0.8-dev
+version: 0.0.9-dev
 groups:
    - java
    - automodel
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,13 @@
+## 0.8.3
+
+### Deprecated APIs
+
+* In `SensitiveApi.qll`, `javaApiCallablePasswordParam`, `javaApiCallableUsernameParam`, `javaApiCallableCryptoKeyParam`, and `otherApiCallableCredentialParam` predicates have been deprecated. They have been replaced with a new class `CredentialsSinkNode` and its child classes `PasswordSink`, `UsernameSink`, and `CryptoKeySink`. The predicates have been changed to using the new classes, so there may be minor changes in results relying on these predicates.
+
+### Minor Analysis Improvements
+
+* The types `java.util.SequencedCollection`, `SequencedSet` and `SequencedMap`, as well as the related `Collections.unmodifiableSequenced*` methods are now modelled. This means alerts may be raised relating to data flow through these types and methods.
+
 ## 0.8.2

 ### Minor Analysis Improvements
--- a/java/ql/lib/change-notes/2023-11-06-jdk21-models.md
+++ b/java/ql/lib/change-notes/2023-11-06-jdk21-models.md
@@ -1,4 +0,0 @@
---
-category: minorAnalysis
---
-* The types `java.util.SequencedCollection`, `SequencedSet` and `SequencedMap`, as well as the related `Collections.unmodifiableSequenced*` methods are now modelled. This means alerts may be raised relating to data flow through these types and methods.
--- a/java/ql/lib/change-notes/2023-10-04-deprecated-sensitiveapi-predicates.md
+++ b/java/ql/lib/change-notes/2023-10-04-deprecated-sensitiveapi-predicates.md
@@ -1,4 +1,9 @@
---
-category: deprecated
---
+## 0.8.3
+
+### Deprecated APIs
+
 * In `SensitiveApi.qll`, `javaApiCallablePasswordParam`, `javaApiCallableUsernameParam`, `javaApiCallableCryptoKeyParam`, and `otherApiCallableCredentialParam` predicates have been deprecated. They have been replaced with a new class `CredentialsSinkNode` and its child classes `PasswordSink`, `UsernameSink`, and `CryptoKeySink`. The predicates have been changed to using the new classes, so there may be minor changes in results relying on these predicates.
+
+### Minor Analysis Improvements
+
+* The types `java.util.SequencedCollection`, `SequencedSet` and `SequencedMap`, as well as the related `Collections.unmodifiableSequenced*` methods are now modelled. This means alerts may be raised relating to data flow through these types and methods.
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.2
+lastReleaseVersion: 0.8.3
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 0.8.3-dev
+version: 0.8.4-dev
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
+## 0.8.3
+
+### Minor Analysis Improvements
+
+* The query `java/unsafe-deserialization` has been improved to detect insecure calls to `ObjectMessage.getObject` in JMS.
+
 ## 0.8.2

 ### Minor Analysis Improvements
--- a/java/ql/src/change-notes/2023-10-26-jms-unsafe-deserialization.md
+++ b/java/ql/src/change-notes/2023-10-26-jms-unsafe-deserialization.md
@@ -1,4 +1,5 @@
---
-category: minorAnalysis
---
+## 0.8.3
+
+### Minor Analysis Improvements
+
 * The query `java/unsafe-deserialization` has been improved to detect insecure calls to `ObjectMessage.getObject` in JMS.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.8.2
+lastReleaseVersion: 0.8.3
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 0.8.3-dev
+version: 0.8.4-dev
 groups:
  - java
  - queries