Release preparation for version 2.22.2

2025-12-16 16:53:25 +01:00 · 2025-07-07 14:00:26 +00:00
parent 8d16d0225c
commit f12daefabe
177 changed files with 466 additions and 175 deletions
--- a/actions/ql/lib/CHANGELOG.md
+++ b/actions/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.4.13
 No user-facing changes.
 ## 0.4.12
 ### Minor Analysis Improvements
--- a/actions/ql/lib/change-notes/released/0.4.13.md
+++ b/actions/ql/lib/change-notes/released/0.4.13.md
@@ -0,0 +1,3 @@
 ## 0.4.13
 No user-facing changes.
--- a/actions/ql/lib/codeql-pack.release.yml
+++ b/actions/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.4.12
+lastReleaseVersion: 0.4.13
--- a/actions/ql/lib/qlpack.yml
+++ b/actions/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-all
-version: 0.4.13-dev
+version: 0.4.13
 library: true
 warnOnImplicitThis: true
 dependencies:
--- a/actions/ql/src/CHANGELOG.md
+++ b/actions/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 0.6.5
 No user-facing changes.
 ## 0.6.4
 No user-facing changes.
--- a/actions/ql/src/change-notes/released/0.6.5.md
+++ b/actions/ql/src/change-notes/released/0.6.5.md
@@ -0,0 +1,3 @@
 ## 0.6.5
 No user-facing changes.
--- a/actions/ql/src/codeql-pack.release.yml
+++ b/actions/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.6.4
+lastReleaseVersion: 0.6.5
--- a/actions/ql/src/qlpack.yml
+++ b/actions/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/actions-queries
-version: 0.6.5-dev
+version: 0.6.5
 library: false
 warnOnImplicitThis: true
 groups: [actions, queries]
--- a/cpp/ql/lib/CHANGELOG.md
+++ b/cpp/ql/lib/CHANGELOG.md
@@ -1,3 +1,15 @@
 ## 5.3.0
 ### Deprecated APIs
 * The `UnknownDefaultLocation`, `UnknownExprLocation`, and `UnknownStmtLocation` classes have been deprecated. Use `UnknownLocation` instead.
 ### Minor Analysis Improvements
 * The analysis of C/C++ code targeting 64-bit Arm platforms has been improved. This includes support for the Arm-specific builtin functions, support for the `arm_neon.h` header and Neon vector types, and support for the `fp8` scalar type. The `arm_sve.h` header and scalable vectors are only partially supported at this point.
 * Added support for `__fp16 _Complex` and `__bf16 _Complex` types
 * Added `sql-injection` sink models for the Oracle Call Interface (OCI) database library functions `OCIStmtPrepare` and `OCIStmtPrepare2`.
 ## 5.2.0
 ### Deprecated APIs
--- a/cpp/ql/lib/change-notes/2025-06-20-oracle-oci-models.md
+++ b/cpp/ql/lib/change-notes/2025-06-20-oracle-oci-models.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added `sql-injection` sink models for the Oracle Call Interface (OCI) database library functions `OCIStmtPrepare` and `OCIStmtPrepare2`.
--- a/cpp/ql/lib/change-notes/2025-06-24-arm64.md
+++ b/cpp/ql/lib/change-notes/2025-06-24-arm64.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The analysis of C/C++ code targeting 64-bit Arm platforms has been improved. This includes support for the Arm-specific builtin functions, support for the `arm_neon.h` header and Neon vector types, and support for the `fp8` scalar type. The `arm_sve.h` header and scalable vectors are only partially supported at this point.
--- a/cpp/ql/lib/change-notes/2025-06-24-float16.md
+++ b/cpp/ql/lib/change-notes/2025-06-24-float16.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added support for `__fp16 _Complex` and `__bf16 _Complex` types
--- a/cpp/ql/lib/change-notes/2025-06-27-locations.md
+++ b/cpp/ql/lib/change-notes/2025-06-27-locations.md
@@ -1,4 +0,0 @@
 ---
 category: deprecated
 ---
 * The `UnknownDefaultLocation`, `UnknownExprLocation`, and `UnknownStmtLocation` classes have been deprecated. Use `UnknownLocation` instead.
--- a/cpp/ql/lib/change-notes/released/5.3.0.md
+++ b/cpp/ql/lib/change-notes/released/5.3.0.md
@@ -0,0 +1,11 @@
 ## 5.3.0
 ### Deprecated APIs
 * The `UnknownDefaultLocation`, `UnknownExprLocation`, and `UnknownStmtLocation` classes have been deprecated. Use `UnknownLocation` instead.
 ### Minor Analysis Improvements
 * The analysis of C/C++ code targeting 64-bit Arm platforms has been improved. This includes support for the Arm-specific builtin functions, support for the `arm_neon.h` header and Neon vector types, and support for the `fp8` scalar type. The `arm_sve.h` header and scalable vectors are only partially supported at this point.
 * Added support for `__fp16 _Complex` and `__bf16 _Complex` types
 * Added `sql-injection` sink models for the Oracle Call Interface (OCI) database library functions `OCIStmtPrepare` and `OCIStmtPrepare2`.
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 5.2.0
+lastReleaseVersion: 5.3.0
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 5.2.1-dev
+version: 5.3.0
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
--- a/cpp/ql/src/CHANGELOG.md
+++ b/cpp/ql/src/CHANGELOG.md
@@ -1,3 +1,12 @@
 ## 1.4.4
 ### Minor Analysis Improvements
 * Added flow models for the Win32 API functions `CreateThread`, `CreateRemoteThread`, and `CreateRemoteThreadEx`.
 * Added flow models for the GNU C Library.
 * Fixed a number of false positives and false negatives in `cpp/global-use-before-init`. Note that this query is not part of any of the default query suites.
 * The query `cpp/sql-injection` now can be extended using the `sql-injection` Models as Data (MaD) sink kind.
 ## 1.4.3
 ### Minor Analysis Improvements
--- a/cpp/ql/src/change-notes/2025-06-20-sql-injection-models.md
+++ b/cpp/ql/src/change-notes/2025-06-20-sql-injection-models.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * The query `cpp/sql-injection` now can be extended using the `sql-injection` Models as Data (MaD) sink kind.
--- a/cpp/ql/src/change-notes/2025-07-01-global-vars-ubi-query-fixes.md.md
+++ b/cpp/ql/src/change-notes/2025-07-01-global-vars-ubi-query-fixes.md.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Fixed a number of false positives and false negatives in `cpp/global-use-before-init`. Note that this query is not part of any of the default query suites.
--- a/cpp/ql/src/change-notes/2025-07-04-create-thread.md
+++ b/cpp/ql/src/change-notes/2025-07-04-create-thread.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added flow models for the GNU C Library.
--- a/cpp/ql/src/change-notes/2025-07-12-create-thread.md
+++ b/cpp/ql/src/change-notes/2025-07-12-create-thread.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added flow models for the Win32 API functions `CreateThread`, `CreateRemoteThread`, and `CreateRemoteThreadEx`.
--- a/cpp/ql/src/change-notes/released/1.4.4.md
+++ b/cpp/ql/src/change-notes/released/1.4.4.md
@@ -0,0 +1,8 @@
 ## 1.4.4
 ### Minor Analysis Improvements
 * Added flow models for the Win32 API functions `CreateThread`, `CreateRemoteThread`, and `CreateRemoteThreadEx`.
 * Added flow models for the GNU C Library.
 * Fixed a number of false positives and false negatives in `cpp/global-use-before-init`. Note that this query is not part of any of the default query suites.
 * The query `cpp/sql-injection` now can be extended using the `sql-injection` Models as Data (MaD) sink kind.
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.3
+lastReleaseVersion: 1.4.4
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.4.4-dev
+version: 1.4.4
 groups:
  - cpp
  - queries
--- a/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.44
 No user-facing changes.
 ## 1.7.43
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.44.md
+++ b/csharp/ql/campaigns/Solorigate/lib/change-notes/released/1.7.44.md
@@ -0,0 +1,3 @@
 ## 1.7.44
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.43
+lastReleaseVersion: 1.7.44
--- a/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.44-dev
+version: 1.7.44
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
+++ b/csharp/ql/campaigns/Solorigate/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.7.44
 No user-facing changes.
 ## 1.7.43
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.44.md
+++ b/csharp/ql/campaigns/Solorigate/src/change-notes/released/1.7.44.md
@@ -0,0 +1,3 @@
 ## 1.7.44
 No user-facing changes.
--- a/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
+++ b/csharp/ql/campaigns/Solorigate/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.43
+lastReleaseVersion: 1.7.44
--- a/csharp/ql/campaigns/Solorigate/src/qlpack.yml
+++ b/csharp/ql/campaigns/Solorigate/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.44-dev
+version: 1.7.44
 groups:
  - csharp
  - solorigate
--- a/csharp/ql/lib/CHANGELOG.md
+++ b/csharp/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 5.1.10
 No user-facing changes.
 ## 5.1.9
 No user-facing changes.
--- a/csharp/ql/lib/change-notes/released/5.1.10.md
+++ b/csharp/ql/lib/change-notes/released/5.1.10.md
@@ -0,0 +1,3 @@
 ## 5.1.10
 No user-facing changes.
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 5.1.9
+lastReleaseVersion: 5.1.10
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 5.1.10-dev
+version: 5.1.10
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
--- a/csharp/ql/src/CHANGELOG.md
+++ b/csharp/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 1.3.1
 ### Minor Analysis Improvements
 * Added explicit SQL injection Models as Data models for `Microsoft.Data.SqlClient.SqlCommand` and `Microsoft.Data.SqlClient.SqlDataAdapter`. This reduces false negatives for the query `cs/sql-injection`.
 ## 1.3.0
 ### Query Metadata Changes
--- a/csharp/ql/src/change-notes/2025-06-25-sqlcommand-models.md
+++ b/csharp/ql/src/change-notes/2025-06-25-sqlcommand-models.md
@@ -1,4 +1,5 @@
---
+## 1.3.1
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Added explicit SQL injection Models as Data models for `Microsoft.Data.SqlClient.SqlCommand` and `Microsoft.Data.SqlClient.SqlDataAdapter`. This reduces false negatives for the query `cs/sql-injection`.
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.3.0
+lastReleaseVersion: 1.3.1
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.3.1-dev
+version: 1.3.1
 groups:
  - csharp
  - queries
--- a/go/ql/consistency-queries/CHANGELOG.md
+++ b/go/ql/consistency-queries/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.27
 No user-facing changes.
 ## 1.0.26
 No user-facing changes.
--- a/go/ql/consistency-queries/change-notes/released/1.0.27.md
+++ b/go/ql/consistency-queries/change-notes/released/1.0.27.md
@@ -0,0 +1,3 @@
 ## 1.0.27
 No user-facing changes.
--- a/go/ql/consistency-queries/codeql-pack.release.yml
+++ b/go/ql/consistency-queries/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.26
+lastReleaseVersion: 1.0.27
--- a/go/ql/consistency-queries/qlpack.yml
+++ b/go/ql/consistency-queries/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.27-dev
+version: 1.0.27
 groups:
  - go
  - queries
--- a/go/ql/lib/CHANGELOG.md
+++ b/go/ql/lib/CHANGELOG.md
@@ -1,3 +1,14 @@
 ## 4.3.0
 ### Deprecated APIs
 * The class `BuiltinType` is now deprecated. Use the new replacement `BuiltinTypeEntity` instead.
 * The class `DeclaredType` is now deprecated. Use the new replacement `DeclaredTypeEntity` instead.
 ### Minor Analysis Improvements
 * Previously, `DefinedType.getBaseType` gave the underlying type. It now gives the right hand side of the type declaration, as the documentation indicated that it should.
 ## 4.2.8
 No user-facing changes.
--- a/go/ql/lib/change-notes/2025-06-03-fix-definedtype-getbasetype.md
+++ b/go/ql/lib/change-notes/2025-06-03-fix-definedtype-getbasetype.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Previously, `DefinedType.getBaseType` gave the underlying type. It now gives the right hand side of the type declaration, as the documentation indicated that it should.
--- a/go/ql/lib/change-notes/2025-06-05-deprecate-DeclaredType-BuiltinType.md
+++ b/go/ql/lib/change-notes/2025-06-05-deprecate-DeclaredType-BuiltinType.md
@@ -1,5 +0,0 @@
 ---
 category: deprecated
 ---
 * The class `BuiltinType` is now deprecated. Use the new replacement `BuiltinTypeEntity` instead.
 * The class `DeclaredType` is now deprecated. Use the new replacement `DeclaredTypeEntity` instead.
--- a/go/ql/lib/change-notes/released/4.3.0.md
+++ b/go/ql/lib/change-notes/released/4.3.0.md
@@ -0,0 +1,10 @@
 ## 4.3.0
 ### Deprecated APIs
 * The class `BuiltinType` is now deprecated. Use the new replacement `BuiltinTypeEntity` instead.
 * The class `DeclaredType` is now deprecated. Use the new replacement `DeclaredTypeEntity` instead.
 ### Minor Analysis Improvements
 * Previously, `DefinedType.getBaseType` gave the underlying type. It now gives the right hand side of the type declaration, as the documentation indicated that it should.
--- a/go/ql/lib/codeql-pack.release.yml
+++ b/go/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.2.8
+lastReleaseVersion: 4.3.0
--- a/go/ql/lib/qlpack.yml
+++ b/go/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 4.2.9-dev
+version: 4.3.0
 groups: go
 dbscheme: go.dbscheme
 extractor: go
--- a/go/ql/src/CHANGELOG.md
+++ b/go/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.4.1
 No user-facing changes.
 ## 1.4.0
 ### Query Metadata Changes
--- a/go/ql/src/change-notes/released/1.4.1.md
+++ b/go/ql/src/change-notes/released/1.4.1.md
@@ -0,0 +1,3 @@
 ## 1.4.1
 No user-facing changes.
--- a/go/ql/src/codeql-pack.release.yml
+++ b/go/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.0
+lastReleaseVersion: 1.4.1
--- a/go/ql/src/qlpack.yml
+++ b/go/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 1.4.1-dev
+version: 1.4.1
 groups:
  - go
  - queries
--- a/java/ql/lib/CHANGELOG.md
+++ b/java/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 7.3.3
 No user-facing changes.
 ## 7.3.2
 ### Minor Analysis Improvements
--- a/java/ql/lib/change-notes/released/7.3.3.md
+++ b/java/ql/lib/change-notes/released/7.3.3.md
@@ -0,0 +1,3 @@
 ## 7.3.3
 No user-facing changes.
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 7.3.2
+lastReleaseVersion: 7.3.3
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 7.3.3-dev
+version: 7.3.3
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java
--- a/java/ql/src/CHANGELOG.md
+++ b/java/ql/src/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 1.6.1
 ### Minor Analysis Improvements
 * Java analysis of guards has been switched to use the new and improved shared guards library. This improves precision of a number of queries, in particular `java/dereferenced-value-may-be-null`, which now has fewer false positives, and `java/useless-null-check` and `java/constant-comparison`, which gain additional true positives.
 ## 1.6.0
 ### Query Metadata Changes
--- a/java/ql/src/change-notes/2025-06-17-improved-guards.md
+++ b/java/ql/src/change-notes/2025-06-17-improved-guards.md
@@ -1,4 +1,5 @@
---
+## 1.6.1
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Java analysis of guards has been switched to use the new and improved shared guards library. This improves precision of a number of queries, in particular `java/dereferenced-value-may-be-null`, which now has fewer false positives, and `java/useless-null-check` and `java/constant-comparison`, which gain additional true positives.
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.6.0
+lastReleaseVersion: 1.6.1
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 1.6.1-dev
+version: 1.6.1
 groups:
  - java
  - queries
--- a/javascript/ql/lib/CHANGELOG.md
+++ b/javascript/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 2.6.7
 ### Minor Analysis Improvements
 * Enhanced modeling for the `execa` library, adding support for command execution methods `execaCommand`, `execaCommandSync`, `$`, and `$.sync`, as well as file system operations through `inputFile`, `pipeStdout`, `pipeAll`, and `pipeStderr`.
 ## 2.6.6
 ### Minor Analysis Improvements
--- a/javascript/ql/lib/change-notes/2025-06-20-execa.md
+++ b/javascript/ql/lib/change-notes/2025-06-20-execa.md
@@ -1,4 +1,5 @@
---
+## 2.6.7
-category: minorAnalysis
+
---
+### Minor Analysis Improvements
 * Enhanced modeling for the `execa` library, adding support for command execution methods `execaCommand`, `execaCommandSync`, `$`, and `$.sync`, as well as file system operations through `inputFile`, `pipeStdout`, `pipeAll`, and `pipeStderr`.
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 2.6.6
+lastReleaseVersion: 2.6.7
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 2.6.7-dev
+version: 2.6.7
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
--- a/javascript/ql/src/CHANGELOG.md
+++ b/javascript/ql/src/CHANGELOG.md
@@ -1,3 +1,29 @@
 ## 2.0.0
 ### Breaking Changes
 * The `Type` and `Symbol` classes have been deprecated and will be empty in newly extracted databases, since the TypeScript extractor no longer populates them.
  This is a breaking change for custom queries that explicitly relied on these classes.
  Such queries will still compile, but with deprecation warnings, and may have different query results due to type information no longer being available.
  We expect most custom queries will not be affected, however. If a custom query has no deprecation warnings, it should not be affected by this change.
  Uses of `getType()` should be rewritten to use the new `getTypeBinding()` or `getNameBinding()` APIs instead.
  If the new API is not sufficient, please consider opening an issue in `github/codeql` describing your use-case.
 ### Major Analysis Improvements
 * The TypeScript extractor no longer relies on the TypeScript compiler for extracting type information.
  Instead, the information we need from types is now derived by an algorithm written in QL.
  This results in more robust extraction with faster extraction times, in some cases significantly faster.
 * Taint is now tracked through the React `use` function.
 * Parameters of React server functions, marked with the `"use server"` directive, are now seen as taint sources.
 ### Minor Analysis Improvements
 * Removed three queries from the JS qlpack, which have been superseded by newer queries that are part of the Actions qlpack:
  * `js/actions/pull-request-target` has been superseded by `actions/untrusted-checkout/{medium,high,critical}`
  * `js/actions/actions-artifact-leak` has been superseded by `actions/secrets-in-artifacts`
  * `js/actions/command-injection` has been superseded by `actions/command-injection/{medium,critical}`
 ## 1.7.0
 ### Query Metadata Changes
--- a/javascript/ql/src/change-notes/2025-06-23-react-use-server.md
+++ b/javascript/ql/src/change-notes/2025-06-23-react-use-server.md
@@ -1,5 +0,0 @@
 ---
 category: majorAnalysis
 ---
 * Taint is now tracked through the React `use` function.
 * Parameters of React server functions, marked with the `"use server"` directive, are now seen as taint sources.
--- a/javascript/ql/src/change-notes/2025-06-23-remove-legacy-actions-queries.md
+++ b/javascript/ql/src/change-notes/2025-06-23-remove-legacy-actions-queries.md
@@ -1,7 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Removed three queries from the JS qlpack, which have been superseded by newer queries that are part of the Actions qlpack:
  * `js/actions/pull-request-target` has been superseded by `actions/untrusted-checkout/{medium,high,critical}`
  * `js/actions/actions-artifact-leak` has been superseded by `actions/secrets-in-artifacts`
  * `js/actions/command-injection` has been superseded by `actions/command-injection/{medium,critical}`
--- a/javascript/ql/src/change-notes/2025-06-24-no-type-extraction-breaking.md
+++ b/javascript/ql/src/change-notes/2025-06-24-no-type-extraction-breaking.md
@@ -1,9 +0,0 @@
 ---
 category: breaking
 ---
 * The `Type` and `Symbol` classes have been deprecated and will be empty in newly extracted databases, since the TypeScript extractor no longer populates them.
  This is a breaking change for custom queries that explicitly relied on these classes.
  Such queries will still compile, but with deprecation warnings, and may have different query results due to type information no longer being available.
  We expect most custom queries will not be affected, however. If a custom query has no deprecation warnings, it should not be affected by this change.
  Uses of `getType()` should be rewritten to use the new `getTypeBinding()` or `getNameBinding()` APIs instead.
  If the new API is not sufficient, please consider opening an issue in `github/codeql` describing your use-case.
--- a/javascript/ql/src/change-notes/2025-06-24-no-type-extraction.md
+++ b/javascript/ql/src/change-notes/2025-06-24-no-type-extraction.md
@@ -1,6 +0,0 @@
 ---
 category: majorAnalysis
 ---
 * The TypeScript extractor no longer relies on the TypeScript compiler for extracting type information.
  Instead, the information we need from types is now derived by an algorithm written in QL.
  This results in more robust extraction with faster extraction times, in some cases significantly faster.
--- a/javascript/ql/src/change-notes/released/2.0.0.md
+++ b/javascript/ql/src/change-notes/released/2.0.0.md
@@ -0,0 +1,25 @@
 ## 2.0.0
 ### Breaking Changes
 * The `Type` and `Symbol` classes have been deprecated and will be empty in newly extracted databases, since the TypeScript extractor no longer populates them.
  This is a breaking change for custom queries that explicitly relied on these classes.
  Such queries will still compile, but with deprecation warnings, and may have different query results due to type information no longer being available.
  We expect most custom queries will not be affected, however. If a custom query has no deprecation warnings, it should not be affected by this change.
  Uses of `getType()` should be rewritten to use the new `getTypeBinding()` or `getNameBinding()` APIs instead.
  If the new API is not sufficient, please consider opening an issue in `github/codeql` describing your use-case.
 ### Major Analysis Improvements
 * The TypeScript extractor no longer relies on the TypeScript compiler for extracting type information.
  Instead, the information we need from types is now derived by an algorithm written in QL.
  This results in more robust extraction with faster extraction times, in some cases significantly faster.
 * Taint is now tracked through the React `use` function.
 * Parameters of React server functions, marked with the `"use server"` directive, are now seen as taint sources.
 ### Minor Analysis Improvements
 * Removed three queries from the JS qlpack, which have been superseded by newer queries that are part of the Actions qlpack:
  * `js/actions/pull-request-target` has been superseded by `actions/untrusted-checkout/{medium,high,critical}`
  * `js/actions/actions-artifact-leak` has been superseded by `actions/secrets-in-artifacts`
  * `js/actions/command-injection` has been superseded by `actions/command-injection/{medium,critical}`
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.7.0
+lastReleaseVersion: 2.0.0
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 1.7.1-dev
+version: 2.0.0
 groups:
  - javascript
  - queries
--- a/misc/suite-helpers/CHANGELOG.md
+++ b/misc/suite-helpers/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.0.27
 No user-facing changes.
 ## 1.0.26
 No user-facing changes.
--- a/misc/suite-helpers/change-notes/released/1.0.27.md
+++ b/misc/suite-helpers/change-notes/released/1.0.27.md
@@ -0,0 +1,3 @@
 ## 1.0.27
 No user-facing changes.
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.0.26
+lastReleaseVersion: 1.0.27
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,4 +1,4 @@
 name: codeql/suite-helpers
-version: 1.0.27-dev
+version: 1.0.27
 groups: shared
 warnOnImplicitThis: true
--- a/python/ql/lib/CHANGELOG.md
+++ b/python/ql/lib/CHANGELOG.md
@@ -1,3 +1,9 @@
 ## 4.0.11
 ### Bug Fixes
 - The Python parser is now able to correctly parse expressions such as `match[1]` and `match()` where `match` is not used as a keyword.
 ## 4.0.10
 No user-facing changes.
--- a/python/ql/lib/change-notes/2025-06-26-fix-match-as-identifier.md
+++ b/python/ql/lib/change-notes/2025-06-26-fix-match-as-identifier.md
@@ -1,5 +1,5 @@
---
+## 4.0.11
-category: fix
+
---
+### Bug Fixes
 - The Python parser is now able to correctly parse expressions such as `match[1]` and `match()` where `match` is not used as a keyword.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.0.10
+lastReleaseVersion: 4.0.11
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 4.0.11-dev
+version: 4.0.11
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python
--- a/python/ql/src/CHANGELOG.md
+++ b/python/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.6.1
 No user-facing changes.
 ## 1.6.0
 ### Query Metadata Changes
--- a/python/ql/src/change-notes/released/1.6.1.md
+++ b/python/ql/src/change-notes/released/1.6.1.md
@@ -0,0 +1,3 @@
 ## 1.6.1
 No user-facing changes.
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.6.0
+lastReleaseVersion: 1.6.1
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 1.6.1-dev
+version: 1.6.1
 groups:
  - python
  - queries
--- a/ruby/ql/lib/CHANGELOG.md
+++ b/ruby/ql/lib/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 4.1.10
 No user-facing changes.
 ## 4.1.9
 No user-facing changes.
--- a/ruby/ql/lib/change-notes/released/4.1.10.md
+++ b/ruby/ql/lib/change-notes/released/4.1.10.md
@@ -0,0 +1,3 @@
 ## 4.1.10
 No user-facing changes.
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 4.1.9
+lastReleaseVersion: 4.1.10
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 4.1.10-dev
+version: 4.1.10
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme
--- a/ruby/ql/src/CHANGELOG.md
+++ b/ruby/ql/src/CHANGELOG.md
@@ -1,3 +1,7 @@
 ## 1.4.1
 No user-facing changes.
 ## 1.4.0
 ### Query Metadata Changes
--- a/ruby/ql/src/change-notes/released/1.4.1.md
+++ b/ruby/ql/src/change-notes/released/1.4.1.md
@@ -0,0 +1,3 @@
 ## 1.4.1
 No user-facing changes.
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 1.4.0
+lastReleaseVersion: 1.4.1
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 1.4.1-dev
+version: 1.4.1
 groups:
  - ruby
  - queries
--- a/rust/ql/lib/CHANGELOG.md
+++ b/rust/ql/lib/CHANGELOG.md
@@ -1,3 +1,11 @@
 ## 0.1.12
 ### Minor Analysis Improvements
 * Implemented support for data flow through trait functions. For the purpose of data flow, calls to trait functions dispatch to all possible implementations.
 * `AssocItem` and `ExternItem` are now proper subclasses of `Item`.
 * Added type inference for `for` loops and array expressions.
 ## 0.1.11
 ### New Features
--- a/rust/ql/lib/change-notes/2025-06-24-type-inference.md
+++ b/rust/ql/lib/change-notes/2025-06-24-type-inference.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Added type inference for `for` loops and array expressions.
--- a/rust/ql/lib/change-notes/2025-06-25-item-reorg.md.md
+++ b/rust/ql/lib/change-notes/2025-06-25-item-reorg.md.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * `AssocItem` and `ExternItem` are now proper subclasses of `Item`.
--- a/rust/ql/lib/change-notes/2025-06-26-dataflow-traits.md
+++ b/rust/ql/lib/change-notes/2025-06-26-dataflow-traits.md
@@ -1,4 +0,0 @@
 ---
 category: minorAnalysis
 ---
 * Implemented support for data flow through trait functions. For the purpose of data flow, calls to trait functions dispatch to all possible implementations.
--- a/rust/ql/lib/change-notes/released/0.1.12.md
+++ b/rust/ql/lib/change-notes/released/0.1.12.md
@@ -0,0 +1,7 @@
 ## 0.1.12
 ### Minor Analysis Improvements
 * Implemented support for data flow through trait functions. For the purpose of data flow, calls to trait functions dispatch to all possible implementations.
 * `AssocItem` and `ExternItem` are now proper subclasses of `Item`.
 * Added type inference for `for` loops and array expressions.
--- a/rust/ql/lib/codeql-pack.release.yml
+++ b/rust/ql/lib/codeql-pack.release.yml
@@ -1,2 +1,2 @@
 ---
-lastReleaseVersion: 0.1.11
+lastReleaseVersion: 0.1.12
--- a/Show More
+++ b/Show More
`@@ -1,2 +1,2 @@`
	`---`	`---`
	`lastReleaseVersion: 0.4.12`	`lastReleaseVersion: 0.4.13`