hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity

Release preparation for version 2.9.2

Browse Source
This commit is contained in:
github-actions[bot]
2022-05-12 10:17:28 +00:00
parent e0c74d4390
commit ee9980b31c
74 changed files with 268 additions and 127 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
java/ql/src/CHANGELOG.md
View File

@@ -1,3 +1,16 @@
## 0.1.2
### Query Metadata Changes
* Query `java/predictable-seed` now has a tag for CWE-337.
### Minor Analysis Improvements
* Query `java/insecure-cookie` now tolerates setting a cookie's secure flag to `request.isSecure()`. This means servlets that intentionally accept unencrypted connections will no longer raise an alert.
* The query `java/non-https-urls` has been simplified
and no longer requires its sinks to be `MethodAccess`es.
* The logic to detect `WebView`s with JavaScript (and optionally file access) enabled in the query `java/android/unsafe-android-webview-fetch` has been improved.
## 0.1.1
### Minor Analysis Improvements
@@ -26,7 +39,7 @@ this respect.
### Minor Analysis Improvements
* Updated "Local information disclosure in a temporary directory" (`java/local-temp-file-or-directory-information-disclosure`) to remove false-positives when OS is properly used as logical guard.
* Updated "Local information disclosure in a temporary directory" (`java/local-temp-file-or-directory-information-disclosure`) to remove false-positives when OS is properly used as logical guard.
## 0.0.11

5
java/ql/src/change-notes/2022-03-24-unsafe-android-access-improvements.md
View File

@@ -1,5 +0,0 @@
---
category: minorAnalysis
---
* The logic to detect `WebView`s with JavaScript (and optionally file access) enabled in the query `java/android/unsafe-android-webview-fetch` has been improved.

5
java/ql/src/change-notes/2022-05-02-non-https-urls-simplified.md
View File

@@ -1,5 +0,0 @@
---
category: minorAnalysis
---
* The query `java/non-https-urls` has been simplified
and no longer requires its sinks to be `MethodAccess`es.

4
java/ql/src/change-notes/2022-05-03-predictable-seed-tag.md
View File

@@ -1,4 +0,0 @@
---
category: queryMetadata
---
* Query `java/predictable-seed` now has a tag for CWE-337.

4
java/ql/src/change-notes/2022-05-11-insecure-cookie.md
View File

@@ -1,4 +0,0 @@
---
category: minorAnalysis
---
* Query `java/insecure-cookie` now tolerates setting a cookie's secure flag to `request.isSecure()`. This means servlets that intentionally accept unencrypted connections will no longer raise an alert.

12
java/ql/src/change-notes/released/0.1.2.md Normal file
View File

@@ -0,0 +1,12 @@
## 0.1.2
### Query Metadata Changes
* Query `java/predictable-seed` now has a tag for CWE-337.
### Minor Analysis Improvements
* Query `java/insecure-cookie` now tolerates setting a cookie's secure flag to `request.isSecure()`. This means servlets that intentionally accept unencrypted connections will no longer raise an alert.
* The query `java/non-https-urls` has been simplified
and no longer requires its sinks to be `MethodAccess`es.
* The logic to detect `WebView`s with JavaScript (and optionally file access) enabled in the query `java/android/unsafe-android-webview-fetch` has been improved.

2
java/ql/src/codeql-pack.release.yml
View File

@@ -1,2 +1,2 @@
---
lastReleaseVersion: 0.1.1
lastReleaseVersion: 0.1.2

2
java/ql/src/qlpack.yml
View File

@@ -1,5 +1,5 @@
name: codeql/java-queries
version: 0.1.2-dev
version: 0.1.2
groups:
- java
- queries