Move pack release state and change notes to correct location

Fix dependencies on upgrade packs
Ruby change notes
2026-05-16 04:09:27 +02:00 · 2021-11-21 08:19:42 -05:00 · 2021-11-18 18:15:31 -05:00 · 2021-11-17 17:26:57 -05:00 · 2021-11-17 17:21:09 -05:00 · 2021-11-17 17:19:03 -05:00
51 changed files with 145 additions and 42 deletions
--- a/cpp/ql/lib/change-notes/2021-11-01-isFromSystemMacroDefinition.md
+++ b/cpp/ql/lib/change-notes/2021-11-01-isFromSystemMacroDefinition.md
@@ -0,0 +1,7 @@
+---
+category: feature
+tags: [lgtm,codescanning]
+---
+* The QL library `semmle.code.cpp.commons.Exclusions` now contains a predicate
+  `isFromSystemMacroDefinition` for identifying code that originates from a
+  macro outside the project being analyzed.
--- a/cpp/ql/lib/codeql-pack.release.yml
+++ b/cpp/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/cpp/ql/lib/qlpack.yml
+++ b/cpp/ql/lib/qlpack.yml
@@ -1,7 +1,8 @@
 name: codeql/cpp-all
-version: 0.0.2
+version: 0.0.3
+groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp
 library: true
 dependencies:
-  codeql/cpp-upgrades: 0.0.2
+  codeql/cpp-upgrades: 0.0.3
--- a/cpp/ql/src/change-notes/2021-11-09-use-of-http.md
+++ b/cpp/ql/src/change-notes/2021-11-09-use-of-http.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+tags: [lgtm,codescanning]
+---
+* A new query `cpp/non-https-url` has been added for C/C++. The query flags uses of `http` URLs that might be better replaced with `https`.
--- a/cpp/ql/src/codeql-pack.release.yml
+++ b/cpp/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/cpp/ql/src/qlpack.yml
+++ b/cpp/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/cpp-queries
-version: 0.0.2
+version: 0.0.3
+groups: cpp
 dependencies:
    codeql/cpp-all: "*"
    codeql/suite-helpers: "*"
--- a/cpp/ql/test/qlpack.yml
+++ b/cpp/ql/test/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/cpp-tests
-version: 0.0.2
+groups: [cpp, test]
 dependencies:
  codeql/cpp-all: "*"
  codeql/cpp-queries: "*"
--- a/cpp/upgrades/codeql-pack.release.yml
+++ b/cpp/upgrades/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/cpp/upgrades/qlpack.yml
+++ b/cpp/upgrades/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/cpp-upgrades
+version: 0.0.3
+groups: cpp
 upgrades: .
-version: 0.0.2
 library: true
--- a/csharp/ql/lib/codeql-pack.release.yml
+++ b/csharp/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/csharp/ql/lib/qlpack.yml
+++ b/csharp/ql/lib/qlpack.yml
@@ -1,7 +1,8 @@
 name: codeql/csharp-all
-version: 0.0.2
+version: 0.0.3
+groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp
 library: true
 dependencies:
-  codeql/csharp-upgrades: 0.0.2
+  codeql/csharp-upgrades: 0.0.3
--- a/csharp/ql/src/codeql-pack.release.yml
+++ b/csharp/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/csharp/ql/src/qlpack.yml
+++ b/csharp/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/csharp-queries
-version: 0.0.2
+version: 0.0.3
+groups: csharp
 suites: codeql-suites
 extractor: csharp
 defaultSuiteFile: codeql-suites/csharp-code-scanning.qls
--- a/csharp/ql/test/qlpack.yml
+++ b/csharp/ql/test/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql-csharp-tests
-version: 0.0.2
+groups: [csharp, test]
 dependencies:
  codeql/csharp-all: "*"
  codeql/csharp-queries: "*"
--- a/csharp/upgrades/codeql-pack.release.yml
+++ b/csharp/upgrades/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/csharp/upgrades/qlpack.yml
+++ b/csharp/upgrades/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/csharp-upgrades
-upgrades: .
-version: 0.0.2
+version: 0.0.3
+groups: csharp
 library: true
+upgrades: .
--- a/java/ql/lib/codeql-pack.release.yml
+++ b/java/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/java/ql/lib/qlpack.yml
+++ b/java/ql/lib/qlpack.yml
@@ -1,7 +1,8 @@
 name: codeql/java-all
-version: 0.0.2
+version: 0.0.3
+groups: java
+library: true
 dbscheme: config/semmlecode.dbscheme
 extractor: java
-library: true
 dependencies:
-    codeql/java-upgrades: 0.0.2
+    codeql/java-upgrades: 0.0.3
--- a/java/ql/src/codeql-pack.release.yml
+++ b/java/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/java/ql/src/qlpack.yml
+++ b/java/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/java-queries
-version: 0.0.2
+version: 0.0.3
+groups: java
 suites: codeql-suites
 extractor: java
 defaultSuiteFile: codeql-suites/java-code-scanning.qls
--- a/java/ql/test/qlpack.yml
+++ b/java/ql/test/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/java-tests
-version: 0.0.2
+groups: [java, test]
 dependencies:
    codeql/java-all: "*"
    codeql/java-queries: "*"
--- a/java/upgrades/codeql-pack.release.yml
+++ b/java/upgrades/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/java/upgrades/qlpack.yml
+++ b/java/upgrades/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/java-upgrades
-upgrades: .
+version: 0.0.3
+groups: java
 library: true
-version: 0.0.2
+upgrades: .
--- a/javascript/ql/lib/codeql-pack.release.yml
+++ b/javascript/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.4
--- a/javascript/ql/lib/qlpack.yml
+++ b/javascript/ql/lib/qlpack.yml
@@ -1,7 +1,8 @@
 name: codeql/javascript-all
-version: 0.0.3
+version: 0.0.4
+groups: javascript
+library: true
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript
-library: true
 dependencies:
-    codeql/javascript-upgrades: 0.0.3
+    codeql/javascript-upgrades: 0.0.4
--- a/javascript/ql/src/change-notes/2021-11-02-insufficient-key-size.md
+++ b/javascript/ql/src/change-notes/2021-11-02-insufficient-key-size.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+tags: [lgtm, codescanning]
+---
+* The `js/insufficient-key-size` query has been added. It highlights the creation of cryptographic keys with a short key size.
--- a/javascript/ql/src/change-notes/2021-11-02-session-fixation.md
+++ b/javascript/ql/src/change-notes/2021-11-02-session-fixation.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+tags: [lgtm, codescanning]
+---
+* The `js/session-fixation` query has been added. It highlights servers that reuse a session after a user has logged in.
--- a/javascript/ql/src/change-notes/2021-11-04-sensitive-get-query.md
+++ b/javascript/ql/src/change-notes/2021-11-04-sensitive-get-query.md
@@ -0,0 +1,5 @@
+---
+category: newQuery
+tags: [lgtm, codescanning]
+---
+* The `js/sensitive-get-query` query has been added. It highlights GET requests that read sensitive information from the query string.
--- a/javascript/ql/src/codeql-pack.release.yml
+++ b/javascript/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.4
--- a/javascript/ql/src/qlpack.yml
+++ b/javascript/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/javascript-queries
-version: 0.0.3
+version: 0.0.4
+groups: javascript
 suites: codeql-suites
 extractor: javascript
 defaultSuiteFile: codeql-suites/javascript-code-scanning.qls
--- a/javascript/ql/test/qlpack.yml
+++ b/javascript/ql/test/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/javascript-tests
-version: 0.0.3
+version: 0.0.4
+groups: [javascript, test]
 dependencies:
  codeql/javascript-all: "*"
  codeql/javascript-queries: "*"
--- a/javascript/upgrades/codeql-pack.release.yml
+++ b/javascript/upgrades/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.4
--- a/javascript/upgrades/qlpack.yml
+++ b/javascript/upgrades/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/javascript-upgrades
-upgrades: .
+version: 0.0.4
+groups: java
 library: true
-version: 0.0.3
+upgrades: .
--- a/misc/suite-helpers/codeql-pack.release.yml
+++ b/misc/suite-helpers/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/misc/suite-helpers/qlpack.yml
+++ b/misc/suite-helpers/qlpack.yml
@@ -1,2 +1,3 @@
 name: codeql/suite-helpers
-version: 0.0.2
+version: 0.0.3
+groups: shared
--- a/python/ql/lib/change-notes/2021-11-02-flask_admin.md
+++ b/python/ql/lib/change-notes/2021-11-02-flask_admin.md
@@ -0,0 +1,5 @@
+---
+category: majorAnalysis
+tags: [lgtm, codescanning]
+---
+* Added modeling of HTTP requests and responses when using `flask_admin` (`Flask-Admin` PyPI package), which leads to additional remote flow sources.
--- a/python/ql/lib/change-notes/2021-11-02-toml.md
+++ b/python/ql/lib/change-notes/2021-11-02-toml.md
@@ -0,0 +1,5 @@
+---
+category: majorAnalysis
+tags: [lgtm, codescanning]
+---
+* Added modeling of the PyPI package `toml`, which provides encoding/decoding of TOML documents, leading to new taint-tracking steps.
--- a/python/ql/lib/change-notes/2021-11-09-model-aiopg.md
+++ b/python/ql/lib/change-notes/2021-11-09-model-aiopg.md
@@ -0,0 +1,5 @@
+---
+category: majorAnalysis
+tags: [lgtm, codescanning]
+---
+* Added modeling of `aiopg` for sinks executing SQL.
--- a/python/ql/lib/codeql-pack.release.yml
+++ b/python/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/python/ql/lib/qlpack.yml
+++ b/python/ql/lib/qlpack.yml
@@ -1,7 +1,8 @@
 name: codeql/python-all
-version: 0.0.2
+version: 0.0.3
+groups: python
+library: true
 dbscheme: semmlecode.python.dbscheme
 extractor: python
-library: true
 dependencies:
-    codeql/python-upgrades: 0.0.2
+    codeql/python-upgrades: 0.0.3
--- a/python/ql/src/codeql-pack.release.yml
+++ b/python/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/python/ql/src/qlpack.yml
+++ b/python/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/python-queries
-version: 0.0.2
+version: 0.0.3
+groups: python
 dependencies:
    codeql/python-all: "*"
    codeql/suite-helpers: "*"
--- a/python/ql/test/qlpack.yml
+++ b/python/ql/test/qlpack.yml
@@ -1,5 +1,5 @@
 name: codeql/python-tests
-version: 0.0.2
+groups: [python, test]
 dependencies:
    codeql/python-all: "*"
    codeql/python-queries: "*"
--- a/python/upgrades/codeql-pack.release.yml
+++ b/python/upgrades/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/python/upgrades/qlpack.yml
+++ b/python/upgrades/qlpack.yml
@@ -1,4 +1,5 @@
 name: codeql/python-upgrades
-upgrades: .
+version: 0.0.3
+groups: python
 library: true
-version: 0.0.2
+upgrades: .
--- a/ruby/ql/lib/codeql-pack.release.yml
+++ b/ruby/ql/lib/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/ruby/ql/lib/qlpack.yml
+++ b/ruby/ql/lib/qlpack.yml
@@ -1,6 +1,7 @@
 name: codeql/ruby-all
-version: 0.0.2
-extractor: ruby
-dbscheme: ruby.dbscheme
-upgrades: upgrades
+version: 0.0.3
+groups: ruby
 library: true
+dbscheme: ruby.dbscheme
+extractor: ruby
+upgrades: upgrades
--- a/ruby/ql/src/change-notes/2021-11-08-hardcoded-credentials-downgrade.md
+++ b/ruby/ql/src/change-notes/2021-11-08-hardcoded-credentials-downgrade.md
@@ -0,0 +1,5 @@
+---
+category: queryMetadata
+tags: [lgtm, codescanning]
+---
+* The precision of "Hard-coded credentials" (`rb/hardcoded-credentials`) has been decreased from "high" to "medium". This query will no longer be run and displayed by default on Code Scanning and LGTM.
--- a/ruby/ql/src/codeql-pack.release.yml
+++ b/ruby/ql/src/codeql-pack.release.yml
@@ -0,0 +1,2 @@
+---
+lastReleaseVersion: 0.0.3
--- a/ruby/ql/src/qlpack.yml
+++ b/ruby/ql/src/qlpack.yml
@@ -1,5 +1,6 @@
 name: codeql/ruby-queries
-version: 0.0.2
+version: 0.0.3
+groups: ruby
 suites: codeql-suites
 defaultSuiteFile: codeql-suites/ruby-code-scanning.qls
 dependencies:
--- a/ruby/ql/test/qlpack.yml
+++ b/ruby/ql/test/qlpack.yml
@@ -1,8 +1,9 @@
 name: codeql/ruby-tests
-version: 0.0.2
+version: 0.0.3
+groups: [ruby, test]
 dependencies:
-  codeql/ruby-queries: ^0.0.2
-  codeql/ruby-examples: ^0.0.2
-  codeql/ruby-all: ^0.0.2
+  codeql/ruby-queries: "*"
+  codeql/ruby-examples: "*"
+  codeql/ruby-all: "*"
 extractor: ruby
 tests: .
Author	SHA1	Message	Date
Dave Bartolomeo	dd283a7498	Move pack release state and change notes to correct location	2021-11-21 08:19:42 -05:00
Dave Bartolomeo	f0a6cf15e1	Fix dependencies on upgrade packs	2021-11-18 18:15:31 -05:00
Dave Bartolomeo	cad0637109	Ruby change notes	2021-11-17 17:26:57 -05:00
Dave Bartolomeo	c07d13a967	Python change notes	2021-11-17 17:21:09 -05:00
Dave Bartolomeo	8eb66f484d	Javascript change notes	2021-11-17 17:19:03 -05:00
Dave Bartolomeo	5b313e11bb	Record baseline release version	2021-11-17 17:12:42 -05:00
Dave Bartolomeo	cebfd6dd15	Update packs manually to prepare for automatic release prep	2021-11-17 17:10:49 -05:00
Dave Bartolomeo	5a2aa45c54	Mark last released version	2021-11-17 13:48:44 -05:00
Dave Bartolomeo	cd3eb68a36	Fix change note path	2021-11-17 13:47:33 -05:00
Dave Bartolomeo	f733a48b0b	C++ change notes	2021-11-17 13:33:18 -05:00