From ea5e6a324d6d2b0b277746049d2052f1389d80da Mon Sep 17 00:00:00 2001
From: Sauyon Lee <sauyon@github.com>
Date: Fri, 13 Mar 2020 03:10:55 -0700
Subject: [PATCH] Add change note

---
 change-notes/1.24/analysis-go.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/change-notes/1.24/analysis-go.md b/change-notes/1.24/analysis-go.md
index d8eea2c7d06..f19aec0a778 100644
--- a/change-notes/1.24/analysis-go.md
+++ b/change-notes/1.24/analysis-go.md
@@ -27,3 +27,4 @@ The CodeQL library for Go now contains a folder of simple "cookbook" queries tha
 | Incomplete regular expression for hostnames (`go/incomplete-hostname-regexp`) | More results | The query now flags unescaped dots before the TLD in a hostname regex. |
 | Reflected cross-site scripting (`go/reflected-xss`) | Fewer results | Untrusted input flowing into an HTTP header definition or into an `fmt.Fprintf` call with a constant prefix is no longer flagged, since it is in both cases often harmless. |
 | Useless assignment to field (`go/useless-assignment-to-field`) | Fewer false positives | The query now conservatively handles fields promoted through embedded pointer types. |
+| Bitwise exclusive-or used like exponentiation (`go/mistyped-exponentiation`) | Fewer false positives | The query now identifies when the value of an xor is assigned to a mask object, and excludes such results. |