codeql/0.13.0.md at codeql-cli-2.20.5 - codeql - Gitea: Git with a cup of tea

hohn/codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 17:23:36 +01:00

Files

github-actions[bot] 5228d94d42 Release preparation for version 2.17.2

2024-04-30 10:25:51 +00:00

1020 B

Raw Permalink Blame History

0.13.0

Breaking Changes

Deleted the deprecated GlobalValueNumberingImpl.qll implementation.

New Features

Models-as-Data support has been added for C/C++. This feature allows flow sources, sinks and summaries to be expressed in compact strings as an alternative to modelling each source / sink / summary with explicit QL. See dataflow/ExternalFlow.qll for documentation and specification of the model format, and models/implementations/ZMQ.qll for a simple example of models. Importing models from .yml is not yet supported.

Minor Analysis Improvements

Source models have been added for the standard library function getc (and variations).
Source, sink and flow models for the ZeroMQ (ZMQ) networking library have been added.
Parameters of functions without definitions now have ParameterNodes.
The alias analysis used internally by various libraries has been improved to answer alias questions more conservatively. As a result, some queries may report fewer false positives.