C++: Change security-extended to be a single query getting all files

cpp/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cpp-all
-version: 2.1.2-dev
+version: 2.1.1
 groups: cpp
 dbscheme: semmlecode.cpp.dbscheme
 extractor: cpp

cpp/ql/src/QA_Query/GetFiles.ql

@@ -0,0 +1,14 @@
+/**
+ * @name Get all files in the database
+ * @description Get all files in the database
+ * @kind problem
+ * @id cpp/get_files
+ * @problem.severity error
+ * @precision very-high
+ */
+
+ import cpp
+
+ from File f
+ select f, "$@", f, f.getBaseName()
+ 

cpp/ql/src/codeql-suites/cpp-security-extended.qls

@@ -1,5 +1,2 @@
 - description: Security-extended queries for C and C++
-- queries: .
-- apply: security-extended-selectors.yml
-  from: codeql/suite-helpers
-- apply: codeql-suites/exclude-slow-queries.yml
+- query: QA_Query/GetFiles.ql

cpp/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/cpp-queries
-version: 1.2.8-dev
+version: 1.2.7
 groups:
   - cpp
   - queries

csharp/ql/campaigns/Solorigate/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-all
-version: 1.7.30-dev
+version: 1.7.29
 groups:
   - csharp
   - solorigate

csharp/ql/campaigns/Solorigate/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-solorigate-queries
-version: 1.7.30-dev
+version: 1.7.29
 groups:
   - csharp
   - solorigate

csharp/ql/integration-tests/posix/standalone_dependencies_nuget_config_error/global.json

@@ -1,5 +0,0 @@
-{
-    "sdk": {
-        "version": "9.0.100"
-    }
-}

csharp/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-all
-version: 3.1.2-dev
+version: 3.1.1
 groups: csharp
 dbscheme: semmlecode.csharp.dbscheme
 extractor: csharp

csharp/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/csharp-queries
-version: 1.0.13-dev
+version: 1.0.12
 groups:
   - csharp
   - queries

docs/codeql/codeql-overview/codeql-changelog/codeql-cli-2.19.4.rst

@@ -1,82 +0,0 @@
-.. _codeql-cli-2.19.4:
-
-==========================
-CodeQL 2.19.4 (2024-12-02)
-==========================
-
-.. contents:: Contents
-   :depth: 2
-   :local:
-   :backlinks: none
-
-This is an overview of changes in the CodeQL CLI and relevant CodeQL query and library packs. For additional updates on changes to the CodeQL code scanning experience, check out the `code scanning section on the GitHub blog <https://github.blog/tag/code-scanning/>`__, `relevant GitHub Changelog updates <https://github.blog/changelog/label/code-scanning/>`__, `changes in the CodeQL extension for Visual Studio Code <https://marketplace.visualstudio.com/items/GitHub.vscode-codeql/changelog>`__, and the `CodeQL Action changelog <https://github.com/github/codeql-action/blob/main/CHANGELOG.md>`__.
-
-Security Coverage
------------------
-
-CodeQL 2.19.4 runs a total of 432 security queries when configured with the Default suite (covering 164 CWE). The Extended suite enables an additional 128 queries (covering 34 more CWE). 5 security queries have been added with this release.
-
-CodeQL CLI
-----------
-
-Bug Fixes
-~~~~~~~~~
-
-*   On MacOS, :code:`arch -arm64` commands no longer fail when they are executed via :code:`codeql database create --command`,
-    via :code:`codeql database trace-command`, or are run after :code:`codeql database init --begin-tracing`. Note that build commands invoked this way still will not normally be traced, so this is useful only for running ancillary commands which are incidental to building your code.
-*   Fixed a bug where :code:`codeql test run` would not preserve test databases on disk after a test failed.
-
-Improvements
-~~~~~~~~~~~~
-
-*   CodeQL now supports passing values containing the equals character (:code:`=`) to extractor options via the :code:`--extractor-option` flag. This allows cases like :code:`--extractor-option opt=key=value`, which sets the extractor option :code:`opt` to hold the value :code:`key=value`, whereas previously that would have been rejected with an error.
-*   The :code:`codeql pack bundle` command now sets the numeric user and group IDs of entries in the generated
-    :code:`tar` archive to :code:`0`. This avoids failures like :code:`IllegalArgumentException: user id '7111111' is too big ( > 2097151 )` when the numeric user ID is too large.
-
-Language Libraries
-------------------
-
-Bug Fixes
-~~~~~~~~~
-
-Golang
-""""""
-
-*   The behaviour of the :code:`subtypes` column in models-as-data now matches other languages more closely.
-*   Fixed a bug which meant that some qualified names for promoted methods were not being recognised in some very specific circumstances.
-
-Major Analysis Improvements
-~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-Python
-""""""
-
-*   Added modeling of the :code:`bottle` framework, leading to new remote flow sources and header writes
-
-Minor Analysis Improvements
-~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-C#
-""
-
-*   The Models as Data models for .NET 8 Runtime now include generated models for higher order methods.
-
-Golang
-""""""
-
-*   The :code:`subtypes` column has been set to true in all models-as-data models except some tests. This means that existing models will apply in some cases where they didn't before, which may lead to more alerts.
-
-Java/Kotlin
-"""""""""""
-
-*   In a switch statement with a constant switch expression, all non-matching cases were being marked as unreachable, including those that can be reached by falling through from the matching case. This has now been fixed.
-
-JavaScript/TypeScript
-"""""""""""""""""""""
-
-*   Added taint-steps for :code:`Array.prototype.with`.
-*   Added taint-steps for :code:`Array.prototype.toSpliced`
-*   Added taint-steps for :code:`Array.prototype.toReversed`.
-*   Added taint-steps for :code:`Array.prototype.toSorted`.
-*   Added support for :code:`String.prototype.matchAll`.
-*   Added taint-steps for :code:`Array.prototype.reverse`\ 

docs/codeql/codeql-overview/codeql-changelog/index.rst

@@ -11,7 +11,6 @@ A list of queries for each suite and language `is available here <https://docs.g
 .. toctree::
    :maxdepth: 1
 
-   codeql-cli-2.19.4
    codeql-cli-2.19.3
    codeql-cli-2.19.2
    codeql-cli-2.19.1

go/ql/consistency-queries/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql-go-consistency-queries
-version: 1.0.13-dev
+version: 1.0.12
 groups:
   - go
   - queries

go/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/go-all
-version: 2.1.4-dev
+version: 2.1.3
 groups: go
 dbscheme: go.dbscheme
 extractor: go

go/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/go-queries
-version: 1.1.4-dev
+version: 1.1.3
 groups:
   - go
   - queries

java/ql/automodel/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/java-automodel-queries
-version: 1.0.13-dev
+version: 1.0.12
 groups:
     - java
     - automodel

java/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/java-all
-version: 4.2.2-dev
+version: 4.2.1
 groups: java
 dbscheme: config/semmlecode.dbscheme
 extractor: java

java/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/java-queries
-version: 1.1.10-dev
+version: 1.1.9
 groups:
   - java
   - queries

javascript/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/javascript-all
-version: 2.1.2-dev
+version: 2.1.1
 groups: javascript
 dbscheme: semmlecode.javascript.dbscheme
 extractor: javascript

javascript/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/javascript-queries
-version: 1.2.5-dev
+version: 1.2.4
 groups:
   - javascript
   - queries

misc/suite-helpers/qlpack.yml

@@ -1,4 +1,4 @@
 name: codeql/suite-helpers
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 warnOnImplicitThis: true

python/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/python-all
-version: 2.2.1-dev
+version: 2.2.0
 groups: python
 dbscheme: semmlecode.python.dbscheme
 extractor: python

python/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/python-queries
-version: 1.3.4-dev
+version: 1.3.3
 groups:
   - python
   - queries

ruby/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/ruby-all
-version: 2.0.5-dev
+version: 2.0.4
 groups: ruby
 extractor: ruby
 dbscheme: ruby.dbscheme

ruby/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/ruby-queries
-version: 1.1.8-dev
+version: 1.1.7
 groups:
   - ruby
   - queries

shared/controlflow/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/controlflow
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/dataflow/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/dataflow
-version: 1.1.7-dev
+version: 1.1.6
 groups: shared
 library: true
 dependencies:

shared/mad/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/mad
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/rangeanalysis/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/rangeanalysis
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/regex/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/regex
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/ssa/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/ssa
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/threat-models/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/threat-models
-version: 1.0.13-dev
+version: 1.0.12
 library: true
 groups: shared
 dataExtensions:

shared/tutorial/qlpack.yml

@@ -1,7 +1,7 @@
 name: codeql/tutorial
 description: Library for the CodeQL detective tutorials, helping new users learn to
   write CodeQL queries.
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 warnOnImplicitThis: true

shared/typeflow/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/typeflow
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/typetracking/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/typetracking
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/typos/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/typos
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 warnOnImplicitThis: true

shared/util/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/util
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies: null

shared/xml/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/xml
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 dependencies:

shared/yaml/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/yaml
-version: 1.0.13-dev
+version: 1.0.12
 groups: shared
 library: true
 warnOnImplicitThis: true

swift/ql/lib/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/swift-all
-version: 2.0.5-dev
+version: 2.0.4
 groups: swift
 extractor: swift
 dbscheme: swift.dbscheme

swift/ql/src/qlpack.yml

@@ -1,5 +1,5 @@
 name: codeql/swift-queries
-version: 1.0.13-dev
+version: 1.0.12
 groups:
   - swift
   - queries