Release preparation for version 2.24.2

java/ql/lib/CHANGELOG.md

@@ -1,3 +1,24 @@
+## 8.1.0
+
+### Deprecated APIs
+
+* The `UnreachableBlocks.qll` library has been deprecated.
+* Renamed the following predicates to increase uniformity across languages. The `getBody` predicate already existed on `LoopStmt`, but is now properly inherited.
+  - `UnaryExpr.getExpr` to `getOperand`.
+  - `ConditionalExpr.getTrueExpr` to `getThen`.
+  - `ConditionalExpr.getFalseExpr` to `getElse`.
+  - `ReturnStmt.getResult` to `getExpr`.
+  - `WhileStmt.getStmt` to `getBody`.
+  - `DoStmt.getStmt` to `getBody`.
+  - `ForStmt.getStmt` to `getBody`.
+  - `EnhancedForStmt.getStmt` to `getBody`.
+
+### Minor Analysis Improvements
+
+* Using a regular expression to check that a string doesn't contain any line breaks is already a sanitizer for `java/log-injection`. Additional ways of doing the regular expression check are now recognised, including annotation with `@javax.validation.constraints.Pattern`.
+* More ways of checking that a string matches a regular expression are now considered as sanitizers for various queries, including `java/ssrf` and `java/path-injection`. In particular, being annotated with `@javax.validation.constraints.Pattern` is now recognised as a sanitizer for those queries.
+* Kotlin versions up to 2.3.10 are now supported.
+
 ## 8.0.0
 
 ### Breaking Changes
@@ -6,7 +27,7 @@
 
 ### New Features
 
-* Kotlin versions up to 2.3.0*x* are now supported.
+* Kotlin versions up to 2.3.0 are now supported.
 
 ### Minor Analysis Improvements
 

java/ql/lib/change-notes/2026-02-04-renames.md

@@ -1,12 +0,0 @@
----
-category: deprecated
----
-* Renamed the following predicates to increase uniformity across languages. The `getBody` predicate already existed on `LoopStmt`, but is now properly inherited.
-  - `UnaryExpr.getExpr` to `getOperand`.
-  - `ConditionalExpr.getTrueExpr` to `getThen`.
-  - `ConditionalExpr.getFalseExpr` to `getElse`.
-  - `ReturnStmt.getResult` to `getExpr`.
-  - `WhileStmt.getStmt` to `getBody`.
-  - `DoStmt.getStmt` to `getBody`.
-  - `ForStmt.getStmt` to `getBody`.
-  - `EnhancedForStmt.getStmt` to `getBody`.

java/ql/lib/change-notes/2026-02-06-kotlin-2.3.10.md

@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Kotlin versions up to 2.3.10 are now supported.

java/ql/lib/change-notes/2026-02-12-deprecate-unreachableblocks.md

@@ -1,4 +0,0 @@
----
-category: deprecated
----
-* The `UnreachableBlocks.qll` library has been deprecated.

java/ql/lib/change-notes/2026-02-12-pattern-annotation-ssrf-sanitizer.md

@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* More ways of checking that a string matches a regular expression are now considered as sanitizers for various queries, including `java/ssrf` and `java/path-injection`. In particular, being annotated with `@javax.validation.constraints.Pattern` is now recognised as a sanitizer for those queries.

java/ql/lib/change-notes/2026-02-14-pattern-annotation-log-injection-sanitizer.md

@@ -1,4 +0,0 @@
----
-category: minorAnalysis
----
-* Using a regular expression to check that a string doesn't contain any line breaks is already a sanitizer for `java/log-injection`. Additional ways of doing the regular expression check are now recognised, including annotation with `@javax.validation.constraints.Pattern`.

java/ql/lib/change-notes/released/8.1.0.md

@@ -0,0 +1,20 @@
+## 8.1.0
+
+### Deprecated APIs
+
+* The `UnreachableBlocks.qll` library has been deprecated.
+* Renamed the following predicates to increase uniformity across languages. The `getBody` predicate already existed on `LoopStmt`, but is now properly inherited.
+  - `UnaryExpr.getExpr` to `getOperand`.
+  - `ConditionalExpr.getTrueExpr` to `getThen`.
+  - `ConditionalExpr.getFalseExpr` to `getElse`.
+  - `ReturnStmt.getResult` to `getExpr`.
+  - `WhileStmt.getStmt` to `getBody`.
+  - `DoStmt.getStmt` to `getBody`.
+  - `ForStmt.getStmt` to `getBody`.
+  - `EnhancedForStmt.getStmt` to `getBody`.
+
+### Minor Analysis Improvements
+
+* Using a regular expression to check that a string doesn't contain any line breaks is already a sanitizer for `java/log-injection`. Additional ways of doing the regular expression check are now recognised, including annotation with `@javax.validation.constraints.Pattern`.
+* More ways of checking that a string matches a regular expression are now considered as sanitizers for various queries, including `java/ssrf` and `java/path-injection`. In particular, being annotated with `@javax.validation.constraints.Pattern` is now recognised as a sanitizer for those queries.
+* Kotlin versions up to 2.3.10 are now supported.

java/ql/lib/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 8.0.0
+lastReleaseVersion: 8.1.0

java/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 8.0.1-dev
+version: 8.1.0
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java

java/ql/src/CHANGELOG.md

@@ -1,3 +1,7 @@
+## 1.10.7
+
+No user-facing changes.
+
 ## 1.10.6
 
 No user-facing changes.

java/ql/src/change-notes/released/1.10.7.md

@@ -0,0 +1,3 @@
+## 1.10.7
+
+No user-facing changes.

java/ql/src/codeql-pack.release.yml

@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.10.6
+lastReleaseVersion: 1.10.7

java/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 1.10.7-dev
+version: 1.10.7
 groups:
   - java
   - queries